last executing test programs:

1m46.406991124s ago: executing program 3 (id=1392):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = openat$dlm_monitor(0xffffff9c, &(0x7f0000000000), 0x200000, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r1, 0x84, 0x15, &(0x7f0000000080)={0x6}, 0x1)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e21, 0x0, @private1, 0x20001}], 0x1c)
sendmsg$inet_sctp(r0, &(0x7f0000000540)={&(0x7f0000000340)=@in={0x2, 0x4e21, @loopback}, 0x10, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x804c044}, 0x40)
dup(r0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000100)={{0x7000, 0xdddd1000, 0x0, 0x0, 0x8, 0x8, 0x0, 0x2, 0x0, 0x6, 0x9, 0x10}, {0x8080000, 0x0, 0xc, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7, 0x7, 0x0, 0xff}, {0x3000, 0x5000, 0xc, 0x0, 0x7, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfc}, {0x100000, 0xd000, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x4}, {0xeeee8000, 0x3000, 0x9, 0x0, 0xff, 0x4, 0x0, 0xe, 0x0, 0x3c}, {0x0, 0x0, 0xd, 0x8, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x80}, {0x8080000, 0x0, 0xa, 0x6, 0x5, 0x0, 0x3}, {0x80a0000, 0xdddd0000, 0x0, 0x0, 0x0, 0x1, 0x0, 0xa, 0x26}, {0x80a0000}, {0xeeef0000}, 0xfdfcffdb, 0x0, 0x0, 0x28, 0xb, 0xf801, 0x0, [0x0, 0x0, 0x1]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1m46.223972108s ago: executing program 3 (id=1395):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=@newtaction={0x8c, 0x30, 0xffff, 0x0, 0x0, {}, [{0x78, 0x1, [@m_police={0x74, 0x1, 0x0, 0x0, {{0xb}, {0x48, 0x2, 0x0, 0x1, [[@TCA_POLICE_RESULT={0x8, 0x5, 0x2}], [@TCA_POLICE_TBF={0x3c}]]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x8c}}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x141800, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r2, 0x4068aea3, &(0x7f00000004c0)={0x79, 0x0, 0x3})
ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000000540)=ANY=[@ANYRESOCT=r2])
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
ioctl$VIDIOC_S_AUDIO(r5, 0x40345622, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r6 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
chdir(&(0x7f0000000080)='./file1\x00')
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x6625000)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f0000000380)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r6, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
sendfile(r9, r5, 0x0, 0x20000023893)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x581, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x4d814}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bond={{0x9}, {0x4}}}, @IFLA_GSO_MAX_SEGS={0x8, 0x28, 0x1233}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004002}, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000580)={"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"})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1m45.214566489s ago: executing program 3 (id=1401):
r0 = socket$kcm(0x2, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0xf, &(0x7f00000002c0), 0x161)
sendmsg$inet(r0, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x31, &(0x7f0000000640), 0x4)
r1 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x20400, 0x0)
ioctl$COMEDI_DEVCONFIG(r1, 0x40946400, 0x0)
ioctl$COMEDI_RANGEINFO(r1, 0x80086408, &(0x7f0000000200)={0x3, &(0x7f0000000180)})
r2 = openat$comedi(0xffffff9c, &(0x7f0000000000)='/dev/comedi4\x00', 0x800, 0x0)
setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000100)={0x0, 0x4}, 0x8)
r3 = socket(0xb, 0x800, 0x9)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000440), r4)
sendmsg$NLBL_MGMT_C_REMOVEDEF(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000480)={0x14, r5, 0x1, 0x70bd2c, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20044006}, 0x30000080)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="5000000010000304fcffffff3f0000000000", @ANYRES32=0x0, @ANYBLOB="0069b56b6c616e00000400028008000500", @ANYRES32=r6, @ANYBLOB="14000300"/20], 0x50}, 0x1, 0x300000000000000, 0x0, 0x4004}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000001880)={'bond_slave_0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000500)=@newqdisc={0x150, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x25dfdbfb, {0x0, 0x0, 0x0, r8, {0x0, 0x6}, {0xffff, 0xffff}, {0xfff3, 0x5}}, [@qdisc_kind_options=@q_red={{0x8}, {0x124, 0x2, [@TCA_RED_PARMS={0x14, 0x1, {0xffffffff, 0x8, 0x6, 0x16, 0x0, 0x5a, 0x5}}, @TCA_RED_STAB={0x104, 0x2, "cb030890171319da1db2ec01d014fa61d80db9d1aae91311c2fa1fbaa1b121dbc9bcb117c6d06e02899d62bff57c457012e3ede4edd01614d35a2b4811b96355622adb97b2b5d959ad0701bd80bab191266fa9b9c7ca9fa090d8fa9aa9b6d66e507bf362e54e58a05278c77be644c2166e269cfaea59f28d065bd081bae32b1b5bf1275793ff29544807b351a156f03e898356441281edfe501d38fcbc8d970ecd330863d4a6f56f2c0bf2e469dfc9c17d200edc77b7f3318b487c855b4ef49c0dd30fdaea6ac1f97860e2bedd01502759b7df9bf98fd36cd8be5045fc3c5a0aea1c48f7858aaee1d51d4137da7af9c7c68900"}, @TCA_RED_MAX_P={0x8, 0x3, 0x2}]}}]}, 0x150}, 0x1, 0x0, 0x0, 0x4048801}, 0x0)
ioctl$COMEDI_DEVCONFIG(r2, 0x40946400, &(0x7f0000000680)={'pcl812\x00', [0x83fb, 0x789b1c25, 0x28, 0x4, 0x5, 0xccd, 0x8, 0x8d, 0x9, 0x0, 0x2, 0x7a8196d4, 0x10, 0x1, 0x6, 0x81, 0x6, 0x1a449, 0x400, 0x40000003, 0x89, 0xcaa7, 0x0, 0x20001e5c, 0xb, 0xffc00004, 0x3c, 0x7, 0x3, 0xf7fffff7, 0xfffffff8]})
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r9, &(0x7f0000000040), 0x6)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000240), r3)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000280), r10)
r11 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
r12 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r12, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000005c0)={0x9c, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @ipv4={'\x00', '\xff\xff', @local}}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_PROTOINFO={0x8, 0x4, 0x0, 0x1, @CTA_PROTOINFO_SCTP={0x4}}]}, 0x9c}}, 0x0)

1m45.172590376s ago: executing program 3 (id=1402):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
pwritev2(r0, &(0x7f0000000980)=[{0x0}, {&(0x7f0000000500)="be81e1310f", 0x5}], 0x2, 0x5, 0xa, 0x14)
r1 = dup(0xffffffffffffffff)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
getgroups(0x6, &(0x7f0000003500)=[0xffffffffffffffff, 0x0, <r2=>0xee01, 0x0, 0xee00, 0xee01])
r3 = geteuid()
lstat(&(0x7f0000003640)='./file0\x00', &(0x7f0000003680)={0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0})
syz_fuse_handle_req(r1, &(0x7f0000000540)="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", 0x2000, &(0x7f0000003840)={&(0x7f0000000140)={0x50, 0x0, 0xff, {0x7, 0x2b, 0x7, 0x801000, 0xfe00, 0xe0, 0x0, 0x5, 0x0, 0x0, 0x80, 0x1}}, &(0x7f00000001c0)={0x18, 0x0, 0x4, {0x91e}}, &(0x7f0000000200)={0x18, 0x0, 0x0, {0x7}}, &(0x7f0000000240)={0x18, 0x0, 0x1, {0x3}}, &(0x7f0000000440)={0x18, 0x0, 0x8001, {0x3}}, &(0x7f0000000480)={0x28, 0xfffffffffffffff5, 0xfb, {{0x4, 0xfffffffffffffffc, 0x1}}}, &(0x7f0000002540)={0x60, 0x0, 0x12487bce, {{0x800, 0xfffffffffffffffc, 0x80000001, 0x0, 0x100000000, 0x61, 0x9, 0x3a}}}, &(0x7f00000025c0)={0x18, 0x0, 0x1000, {0x7}}, &(0x7f0000002600)=ANY=[@ANYBLOB="11000000000030"], &(0x7f0000002640)={0x20, 0x0, 0x100000001}, &(0x7f00000026c0)={0x78, 0x0, 0xc, {0x1, 0x7f, 0x0, {0x0, 0x6, 0x7f, 0xcf, 0x2, 0x8, 0x6, 0xce05, 0xffffffff, 0x1000, 0xbdf9, 0x0, 0x0, 0x5, 0x8000}}}, &(0x7f0000002940)={0x90, 0x0, 0x100000001, {0x0, 0x2, 0x200, 0x7, 0x6, 0x3, {0x6, 0xfe5, 0x9, 0x2, 0x5, 0xe, 0x9, 0x2, 0xfffffffb, 0x0, 0x7fff, 0x0, 0x0, 0x8, 0x6}}}, &(0x7f0000002a00)={0xd8, 0x0, 0x80, [{0x6, 0xe411, 0x12, 0x9, '/dev/snd/midiC#D#\x00'}, {0x5, 0xffffffffffffffff, 0x1, 0x6, '+'}, {0x4, 0xeeba, 0x5, 0x1, ':\'[..'}, {0x0, 0xffffffff, 0x0, 0xfee}, {0x4, 0x6, 0x1, 0x3dfa, '0'}, {0x2, 0x587, 0x8, 0x1, '(,%/$&-,'}]}, &(0x7f0000003040)=ANY=[@ANYBLOB="700400000000000001000000000000000100000000000000020000000000000008000000000000000800000000000000050000000c00000000000000000000006168000000000000ff0f000000000000000000000000000050b80000000000000101000000000000864b0000010000000000a000002000000e000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000060000100000000000005000000000000000600000000000000010000000200000030000000000000000000000000000000030000000000000008000000000000000200000000000000fdffffff0180000006000000000000000800000000000000810000000000000001ffffffffffffff0000000000000000190e00000000000049000000260000000400000000c0000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="b7000000faffffff0000000004000000000000007e0df5650000000012000000060000002f6465762f736e642f6d69646943234423000000000000000100000000000000000000f5ffffff0002000000000000000010000000000000f5000000000400000000000000040000000000000003000000000000e40100000000000000f7ffffffffffffff99dd0000000000000101000007000000800000000020000022000000", @ANYRES32, @ANYRES32=0x0, @ANYBLOB="0100000000000000000000000600000000000000a00000000000000000000000ffffff7f06000000000000000200000000000000020000000000000001ffffffffffffff04000000890b0000050000000000000003000000000000000000010000000000000000000000000041cb00000000000071000000000000000500000008000000f505000000a0000000040000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0100000003000000000000000100000000000000ffffffffffffffff08000000000000002d2c403a5e262e2c010000000000000000000000000000000600000000000000f60000000000000001000000277e00000500000000000000008000000000000019f1ffffffffffff0700000000000000050000000000000001000080000000001100000009000000fbffffff0040000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="030000000300000000000000060000000000000002000000000000000100000000020000300000000000000006000000000000000000000000000000040000000000000005000000000000000500000003000000030000000000000009000000000000000600000000000000020000000000000010000000000000000b0000000000000005000000070000000a00000000a0000010000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="08000000040000000000000006000000000000006100000000000000000000000400000002000000000000000100000000000000040000000000000001000000000000000a0000000500000002000000000000000800000000000000ffffff7f00000000080000000000000006000000000000000500000000000000ffff000009000000c90600000020000001000080", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0600000007000000000000000100000000000000000000000000000001000000010000002400000000000000"], &(0x7f0000003540)={0xa0, 0x0, 0x101, {{0x3, 0x2, 0x4, 0x5, 0x6, 0x4, {0x4, 0xf3c0, 0xffffffffffffffff, 0x59, 0x101, 0xe3, 0x4, 0xffffffc8, 0x1, 0x4000, 0x3, 0x0, r2, 0xbd6, 0x6}}}}, &(0x7f0000003600)={0x20, 0x0, 0x7, {0xfffff88b, 0x0, 0xcd69, 0x9}}, &(0x7f0000003700)={0x130, 0x0, 0xd, {0xe, 0x0, 0x0, '\x00', {0xc7ff, 0x4, 0xf299, 0x5, r3, r4, 0xa000, '\x00', 0x6, 0x10a0, 0x7, 0x8000000000000001, {0x3}, {0xfffffffffffffff9, 0x40}, {0x0, 0xd2}, {0x7, 0x50}, 0x4, 0x4, 0x1a72, 0x4f01}}}})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(0xffffffffffffffff, &(0x7f0000002740)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = syz_io_uring_setup(0x10d, 0x0, &(0x7f0000000340), 0x0)
r8 = socket$inet6(0xa, 0x2, 0x3a)
r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='numa_maps\x00')
read$FUSE(r9, &(0x7f0000004180)={0x2020, 0x0, 0x0, <r10=>0x0, <r11=>0x0, <r12=>0x0}, 0x2020)
sendmsg$SMC_PNETID_DEL(r9, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16, @ANYBLOB="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"], 0x64}, 0x1, 0x0, 0x0, 0x20008440}, 0x804)
connect$inet6(r8, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x1}, 0x1c)
sendto$inet6(r8, &(0x7f0000000100)="800037e9220ca1ce", 0x8, 0x0, &(0x7f0000000140)={0xa, 0x4e24, 0x6, @mcast2, 0xf}, 0x1c)
io_uring_enter(r7, 0x3516, 0x0, 0x0, 0x0, 0x0)
r13 = syz_open_dev$sg(&(0x7f0000000100), 0x0, 0x0)
ioctl$SG_IO(r13, 0x2285, &(0x7f0000002700)={0x53, 0x0, 0x6, 0x7, @scatter={0x0, 0x0, 0x0}, &(0x7f0000002680)="94cea1791a1a", 0x0, 0x1000, 0x0, 0x1, 0x0})
socketpair(0x28, 0x1, 0x9, &(0x7f0000000280)={0xffffffffffffffff, <r14=>0xffffffffffffffff})
r15 = openat$vimc2(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0)
sendmsg$unix(r6, &(0x7f00000007c0)={&(0x7f0000000380)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000000c0), 0x0, &(0x7f0000000700)=[@cred={{0x18, 0x1, 0x2, {r12, r10, r11}}}, @rights={{0x18, 0x1, 0x1, [r7, r13, r8]}}, @rights={{0x24, 0x1, 0x1, [r8, r5, r14, r9, r15, r13]}}, @rights={{0x10, 0x1, 0x1, [r8]}}, @rights={{0x10, 0x1, 0x1, [r8]}}, @rights={{0x18, 0x1, 0x1, [r5, r5, r13]}}], 0x8c, 0x200488c0}, 0x20040010)
stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, <r16=>0x0})
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x40, &(0x7f0000000200)={[{@mode={'mode', 0x3d, 0x9}}, {@gid={'gid', 0x3d, r4}}, {@mode={'mode', 0x3d, 0x6}}, {@uid={'uid', 0x3d, r10}}, {@mode={'mode', 0x3d, 0x27332867}}, {@gid={'gid', 0x3d, r16}}, {@mode={'mode', 0x3d, 0x8}}], [{@smackfsfloor={'smackfsfloor', 0x3d, 'cpuset.effective_cpus\x00'}}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}]})

1m44.274302869s ago: executing program 3 (id=1406):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0xfffffffffffffe8d, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x8d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x4, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x4}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x24000815}, 0x0)
r0 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x28, r0, 0x1, 0x0, 0x0, {}, [@SEG6_ATTR_SECRET={0x4}, @SEG6_ATTR_ALGID={0x5}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x1}]}, 0x28}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x10)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000a00000a98000000060a0b040000000000000000020000006c000480680001800a000100696e6e65720000005800028008000240000000840800034000000007080004400000000f0800014000000000340005800c0001007061796c6f61640024000280080004400000001c08000340000000b9080001400000000a08000240200000020900010073797a30000000000900020073797a32"], 0xc0}}, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'bond0\x00', <r6=>0x0})
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil)
ptrace(0x10, 0x1)
sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x90, 0x24, 0xf0b, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x12, r6, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x60, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x1, [0x5, 0x4, 0x2, 0x0, 0x8, 0x2, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x4}]}}]}, 0x90}, 0x1, 0x0, 0x0, 0xc850}, 0x0)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0)
getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0xf, 0x0, 0x0)
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x282, 0x0)
sendfile(r8, r8, 0x0, 0x40008)

1m43.869573274s ago: executing program 3 (id=1408):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000140)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_BSS(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=ANY=[@ANYBLOB="a87ec387f63edb6db7fbcf7b45df872ae3d5f02c000000", @ANYRES16=r1, @ANYBLOB="010026bd7000fbdbdf251900000008000300", @ANYRES32=r2, @ANYBLOB="05001e00f800000005001d0006000000"], 0x2c}, 0x1, 0x0, 0x0, 0x60000}, 0x0)
r3 = getpid()
sched_setaffinity(0xffffffffffffffff, 0x8, &(0x7f00000002c0))
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
inotify_init()
ioctl$F2FS_IOC_FLUSH_DEVICE(r0, 0x4008f50a, &(0x7f0000000300)={0x4, 0x210001})
gettid()
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYBLOB="03a59d0036ecb157768b4a12dc9d6269b9dd3d18d0c12ca852443f7532109063d4751eccc03e4fc079195d30579281d46cad8af8f9668e3a83954cc60186abd2853e1cc0bff2e4982f9f3b6646ff1e4e04aa69e635adf561ee2b00d11b50adafc0c49cec264e49d8f6fadb3a91787d5b67"], 0x4)
mprotect(&(0x7f0000a31000/0x1000)=nil, 0x1000, 0x1000004)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r0, &(0x7f0000000000), 0x0, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6(0xa, 0x400000000001, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = syz_open_dev$vim2m(&(0x7f0000000040), 0x1000001, 0x2)
syz_open_dev$mouse(0x0, 0x358, 0x600040)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r5, 0x89f2, &(0x7f00000003c0)={'syztnl2\x00', &(0x7f0000000340)={'syztnl2\x00', 0x0, 0x4, 0x4, 0x5, 0x3, 0xa, @private0, @empty, 0x8000, 0x700, 0x2, 0x29}})
ioctl$vim2m_VIDIOC_S_CTRL(r7, 0xc008561c, &(0x7f00000000c0)={0x980914, 0x800})
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)

1m43.752024136s ago: executing program 32 (id=1408):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000140)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_BSS(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=ANY=[@ANYBLOB="a87ec387f63edb6db7fbcf7b45df872ae3d5f02c000000", @ANYRES16=r1, @ANYBLOB="010026bd7000fbdbdf251900000008000300", @ANYRES32=r2, @ANYBLOB="05001e00f800000005001d0006000000"], 0x2c}, 0x1, 0x0, 0x0, 0x60000}, 0x0)
r3 = getpid()
sched_setaffinity(0xffffffffffffffff, 0x8, &(0x7f00000002c0))
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
inotify_init()
ioctl$F2FS_IOC_FLUSH_DEVICE(r0, 0x4008f50a, &(0x7f0000000300)={0x4, 0x210001})
gettid()
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYBLOB="03a59d0036ecb157768b4a12dc9d6269b9dd3d18d0c12ca852443f7532109063d4751eccc03e4fc079195d30579281d46cad8af8f9668e3a83954cc60186abd2853e1cc0bff2e4982f9f3b6646ff1e4e04aa69e635adf561ee2b00d11b50adafc0c49cec264e49d8f6fadb3a91787d5b67"], 0x4)
mprotect(&(0x7f0000a31000/0x1000)=nil, 0x1000, 0x1000004)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r0, &(0x7f0000000000), 0x0, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6(0xa, 0x400000000001, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = syz_open_dev$vim2m(&(0x7f0000000040), 0x1000001, 0x2)
syz_open_dev$mouse(0x0, 0x358, 0x600040)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r5, 0x89f2, &(0x7f00000003c0)={'syztnl2\x00', &(0x7f0000000340)={'syztnl2\x00', 0x0, 0x4, 0x4, 0x5, 0x3, 0xa, @private0, @empty, 0x8000, 0x700, 0x2, 0x29}})
ioctl$vim2m_VIDIOC_S_CTRL(r7, 0xc008561c, &(0x7f00000000c0)={0x980914, 0x800})
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)

8.489672192s ago: executing program 1 (id=1959):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x801, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r2 = accept4$ax25(0xffffffffffffffff, 0x0, &(0x7f0000000140), 0x80000)
bind$ax25(r2, 0x0, 0x0)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = syz_open_dev$media(&(0x7f00000006c0), 0x4007, 0x0)
r4 = openat$qrtrtun(0xffffffffffffff9c, 0x0, 0x8000)
r5 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r5, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r6 = epoll_create(0x4)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r4, &(0x7f0000000000))
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000240)=ANY=[@ANYBLOB="09000000000000007100004000000f0000a15df31cb18165c9b2efa726c88e70000000000000ff945ad0eb42ce5a866ae7bd92f2b393b27ed8565caf2dec842faf751549e8f2f88321efbf8958cd1fe51d61ab56fd7deea924"])
write$binfmt_script(r5, 0x0, 0x0)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000000)=<r8=>0x0)
prlimit64(r8, 0xc, &(0x7f0000000040)={0x0, 0xcc25}, &(0x7f0000000100))
ioctl$MEDIA_IOC_REQUEST_ALLOC(r3, 0x80047c05, 0x0)
pselect6(0x40, &(0x7f0000000080)={0x5, 0x0, 0x120000000000, 0x2, 0x500, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f0000000180)={0x3fe, 0x7, 0x0, 0x9, 0x86, 0x800, 0x80000002}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

7.305067911s ago: executing program 1 (id=1962):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r1, 0x0, 0xc4000)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x401}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x44080)
socket$kcm(0x10, 0x2, 0x4)
timer_settime(0x0, 0x0, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e23, 0x4, @local, 0x4}, 0x1c)
sendmmsg$inet(r0, &(0x7f0000000b80)=[{{&(0x7f0000000040)={0x2, 0x4e22, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x4880)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_BYTEORDER_DREG={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x80}}, 0x800)
r4 = socket$kcm(0x2, 0x5, 0x84)
ioctl$SIOCSIFHWADDR(r4, 0x8931, &(0x7f0000000000)={'dummy0\x00'})
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f0000000140)={'netdevsim0\x00', 0x1000})
openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)

7.117692572s ago: executing program 1 (id=1964):
r0 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
ioctl$SG_IO(r0, 0x2285, 0x0)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
writev(r0, &(0x7f0000000400)=[{&(0x7f0000000080)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}, {&(0x7f0000000040)="aa1d484ea0a00000f7fc08fcd111fbdf23ea32db0e8f21d5bc27bd49eb067a0689fff2a41cfbf0e9d8", 0x29}], 0x2)

7.0378014s ago: executing program 1 (id=1966):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
r1 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VIDIOC_DECODER_CMD(r1, 0xc0485660, &(0x7f00000001c0)={0x2, 0x0, @raw_data=[0x0, 0x0, 0x0, 0xffffffff]})
ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000500)={0xa, @raw_data="3aee44a9c226a51c91d96d057945493d62731d82b7b243ac2b8c09e616fac25ae19d22dde9f23f852c3c3ccc3a9bd805898c9b2332eefd90a8a3ec23a13d253cf99691b813d8bfe75bfd83c66b56546b67a6d49ef1aa41cd5fb1faa24fd3f04c0551ed1ce90da7f3c55d1722a954283520a13b98bbbda5d490614b0b944b44d09086680a995a0ef055c7b45c50f7096e53c69a5af5d8af27a799d80635b87bb98d78c265cc91f11d80f3215cb8e27902ded8695717e1bc25acbcb5f28d2e5cddcd7b000000009cae"})
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12013f00000000407f04ffff00000000000109022d000100000000090400001503000000092140000001220f000905", @ANYRES32], 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1, 0xff})
ioctl$BLKPG(r4, 0x1269, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x0})
syz_usb_control_io(r3, &(0x7f0000000b00)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000f00000009003d140f3c369197d09647190890"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r5 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCGUSAGE(r5, 0x501c4814, &(0x7f0000000100)={0x2, 0x100, 0x40000, 0x2, 0x1947, 0xf})
r6 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r7 = dup(r6)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
r8 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r8, 0x84, 0x64, &(0x7f0000000000), 0x10)
syz_io_uring_setup(0x238, &(0x7f0000000080)={0x0, 0x198b, 0x10100, 0x3, 0x3aa, 0x0, r7}, &(0x7f0000000180), &(0x7f00000001c0))
read(r7, &(0x7f0000000200)=""/94, 0x5e)
r9 = syz_open_dev$vim2m(&(0x7f0000000300), 0xd, 0x2)
ioctl$vim2m_VIDIOC_DQBUF(r9, 0xc044565d, &(0x7f0000000280)=@mmap={0x6d0, 0x1, 0xfffffffffffffd4a, 0x0, 0x0, {0x77359400}, {0x0, 0x1, 0x0, 0x0, 0x0, 0x0, "01003c66"}})
openat$cuse(0xffffff9c, &(0x7f0000000140), 0x2, 0x0)
r10 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCSETD(r10, 0x5423, &(0x7f00000003c0)=0x14)
pread64(r2, &(0x7f0000000180)=""/79, 0xfffffe69, 0x1)

4.911580932s ago: executing program 4 (id=1971):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000080)=0x4, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
socket$inet6(0xa, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000004bc0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x40, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xa}, @NFTA_SET_EXPRESSIONS={0x4}]}], {0x14, 0x10}}, 0x88}}, 0x0)
r5 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_ifreq(r5, 0x891d, &(0x7f0000000180)={'team_slave_1\x00', @ifru_hwaddr})
syz_usb_connect$cdc_ncm(0x1, 0x0, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
r6 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r6, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r6, 0x40946400, &(0x7f00000000c0)={'pcl812\x00', [0x4f27, 0x5, 0x10000, 0x4, 0x5, 0xcc7, 0x8, 0x7, 0xa, 0x100, 0x2, 0x1, 0x1, 0x1, 0x6, 0x101, 0x0, 0x1a449, 0x3, 0x40000003, 0x89, 0xcaa7, 0x0, 0x20001e58, 0xb, 0xe69, 0x3c, 0x8, 0x6, 0x0, 0xfffffff8]})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SYS_SET(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="680000000714010025bd7000ffdbdf25080001000100000008000100000000000900020073797a32000000000900020073797a3000000000050042000100000008000100010000000900020073797a30000000000900020073797a3000000000080001"], 0x68}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc400000000e0a070600000000000000000a00000a0900020073797a31000000000900010073797a31000000001400038010000080080003400000000004000180140000001100010000000000000000000100000ae2414f922e533ebe31e0f739eb6e3a51e774af177aab08cb9af8db9a79d0f5be120dfe186f963c5e1af4b2edbf1a989d67ea6c18b745534fdd0d913c608a13634b8ffedb8bf65110bf1b10193d41"], 0xa4}, 0x1, 0x0, 0x0, 0x4000851}, 0x40)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

4.724392353s ago: executing program 0 (id=1972):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000080)=0x4, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
socket$inet6(0xa, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000004bc0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x14, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}}], {0x14, 0x10}}, 0x5c}}, 0x0)
r5 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_ifreq(r5, 0x891d, &(0x7f0000000180)={'team_slave_1\x00', @ifru_hwaddr})
syz_usb_connect$cdc_ncm(0x1, 0x0, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
r6 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r6, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r6, 0x40946400, &(0x7f00000000c0)={'pcl812\x00', [0x4f27, 0x5, 0x10000, 0x4, 0x5, 0xcc7, 0x8, 0x7, 0xa, 0x100, 0x2, 0x1, 0x1, 0x1, 0x6, 0x101, 0x0, 0x1a449, 0x3, 0x40000003, 0x89, 0xcaa7, 0x0, 0x20001e58, 0xb, 0xe69, 0x3c, 0x8, 0x6, 0x0, 0xfffffff8]})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SYS_SET(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="680000000714010025bd7000ffdbdf25080001000100000008000100000000000900020073797a32000000000900020073797a3000000000050042000100000008000100010000000900020073797a30000000000900020073797a3000000000080001"], 0x68}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc400000000e0a070600000000000000000a00000a0900020073797a31000000000900010073797a31000000001400038010000080080003400000000004000180140000001100010000000000000000000100000ae2414f922e533ebe31e0f739eb6e3a51e774af177aab08cb9af8db9a79d0f5be120dfe186f963c5e1af4b2edbf1a989d67ea6c18b745534fdd0d913c608a13634b8ffedb8bf65110bf1b10193d41"], 0xa4}, 0x1, 0x0, 0x0, 0x4000851}, 0x40)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

4.157763562s ago: executing program 2 (id=1974):
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000140000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4)
sendmsg$unix(r2, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
r3 = openat$nci(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
r4 = openat$comedi(0xffffffffffffff9c, &(0x7f0000002180)='/dev/comedi1\x00', 0x8602, 0x0)
writev(r4, &(0x7f00000029c0), 0x0)
write$nci(r3, 0x0, 0x0)

3.96480749s ago: executing program 2 (id=1975):
r0 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
ioctl$SG_IO(r0, 0x2285, 0x0)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
writev(r0, &(0x7f0000000400)=[{&(0x7f0000000080)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}, {&(0x7f0000000040)="aa1d484ea0a00000f7fc08fcd111fbdf23ea32db0e8f21d5bc27bd49eb067a0689fff2a41cfbf0e9d85e", 0x2a}], 0x2)

3.876207234s ago: executing program 2 (id=1976):
socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_G_FMT(r0, 0xc0d05604, &(0x7f0000000200)={0x7, @vbi={0x1, 0x4, 0xdee, 0x30395056, [0x1000008, 0x7], [0x16, 0x1005], 0x2}})
r1 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xe0200, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(0xffffffffffffffff, 0x0, 0x48b, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r5, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r5, 0x84, 0x75, &(0x7f0000000040)={0x0, 0xaf1}, 0x8)
bind$inet6(r5, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r5, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback, 0x1}, 0x70, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r5, 0x84, 0x77, &(0x7f0000000140)={0x0, 0xffff, 0x2, [0x2, 0x1]}, 0xc)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
sendmsg$nl_route(r3, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800010009000000000000000a00000000000000080001000200000004000b"], 0x24}}, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=@delnexthop={0x20, 0x69, 0xb, 0x0, 0x0, {}, [{0x8, 0x1, 0x2}]}, 0x20}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x24, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x24, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x2, 0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000001340))
shmctl$IPC_SET(0x0, 0x1, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)

3.205641719s ago: executing program 1 (id=1977):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
r1 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VIDIOC_DECODER_CMD(r1, 0xc0485660, &(0x7f00000001c0)={0x2, 0x0, @raw_data=[0x0, 0x0, 0x0, 0xffffffff]})
ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000500)={0xa, @raw_data="3aee44a9c226a51c91d96d057945493d62731d82b7b243ac2b8c09e616fac25ae19d22dde9f23f852c3c3ccc3a9bd805898c9b2332eefd90a8a3ec23a13d253cf99691b813d8bfe75bfd83c66b56546b67a6d49ef1aa41cd5fb1faa24fd3f04c0551ed1ce90da7f3c55d1722a954283520a13b98bbbda5d490614b0b944b44d09086680a995a0ef055c7b45c50f7096e53c69a5af5d8af27a799d80635b87bb98d78c265cc91f11d80f3215cb8e27902ded8695717e1bc25acbcb5f28d2e5cddcd7b000000009cae"})
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12013f00000000407f04ffff00000000000109022d000100000000090400001503000000092140000001220f000905", @ANYRES32], 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1, 0xff})
ioctl$BLKPG(r4, 0x1269, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x0})
syz_usb_control_io(r3, &(0x7f0000000b00)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000f00000009003d140f3c369197d09647190890"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r5 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCGUSAGE(r5, 0x501c4814, &(0x7f0000000100)={0x2, 0x100, 0x40000, 0x2, 0x1947, 0xf})
r6 = dup(0xffffffffffffffff)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
r7 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r7, 0x84, 0x64, &(0x7f0000000000), 0x10)
syz_io_uring_setup(0x238, &(0x7f0000000080)={0x0, 0x198b, 0x10100, 0x3, 0x3aa, 0x0, r6}, &(0x7f0000000180)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
read(r6, &(0x7f0000000200)=""/94, 0x5e)
r10 = syz_open_dev$vim2m(&(0x7f0000000300), 0xd, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r10, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_DQBUF(r10, 0xc044565d, &(0x7f0000000280)=@mmap={0x6d0, 0x1, 0xfffffffffffffd4a, 0x0, 0x0, {0x77359400}, {0x0, 0x1, 0x0, 0x0, 0x0, 0x0, "01003c66"}})
openat$cuse(0xffffff9c, &(0x7f0000000140), 0x2, 0x0)
r11 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCSETD(r11, 0x5423, &(0x7f00000003c0)=0x14)
pread64(r2, &(0x7f0000000180)=""/79, 0xfffffe69, 0x1)

3.037393022s ago: executing program 2 (id=1978):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x801, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r2 = accept4$ax25(0xffffffffffffffff, 0x0, &(0x7f0000000140), 0x80000)
bind$ax25(r2, 0x0, 0x0)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = syz_open_dev$media(&(0x7f00000006c0), 0x4007, 0x0)
r4 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r5 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r5, 0x0, 0x0)
r6 = epoll_create(0x4)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r4, &(0x7f0000000000))
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000240)=ANY=[@ANYBLOB="09000000000000007100004000000f0000a15df31cb18165c9b2efa726c88e70000000000000ff945ad0eb42ce5a866ae7bd92f2b393b27ed8565caf2dec842faf751549e8f2f88321efbf8958cd1fe51d61ab56fd7deea924"])
write$binfmt_script(r5, 0x0, 0x0)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000000)=<r8=>0x0)
prlimit64(r8, 0xc, &(0x7f0000000040)={0x0, 0xcc25}, &(0x7f0000000100))
ioctl$MEDIA_IOC_REQUEST_ALLOC(r3, 0x80047c05, 0x0)
pselect6(0x40, &(0x7f0000000080)={0x5, 0x0, 0x120000000000, 0x2, 0x500, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f0000000180)={0x3fe, 0x7, 0x0, 0x9, 0x86, 0x800, 0x80000002}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

3.005768023s ago: executing program 4 (id=1979):
socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_G_FMT(r0, 0xc0d05604, &(0x7f0000000200)={0x7, @vbi={0x1, 0x4, 0xdee, 0x30395056, [0x1000008, 0x7], [0x16, 0x1005], 0x2}})
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xe0200, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(0xffffffffffffffff, 0x0, 0x48b, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000040)={0x0, 0xaf1}, 0x8)
bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback, 0x1}, 0x70, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x0)
sendmmsg$inet6(r2, &(0x7f0000002740)=[{{0x0, 0x0, &(0x7f00000016c0)}}, {{0x0, 0x0, &(0x7f0000001b00)=[{&(0x7f00000017c0)="f0", 0x1}], 0x1}}], 0x2, 0x20000010)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000140)={0x0, 0xffff, 0x2, [0x2, 0x1]}, 0xc)
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_OIF={0x8}]}, 0x20}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x24, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x2, 0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)

2.597234891s ago: executing program 0 (id=1980):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x58, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x20000000}, 0x8}, 0x94)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC_PROXY(r1, 0x0, 0xd2, &(0x7f0000000000)={@remote, @multicast1, 0x4, "d30f388c52647612d91de4353d68b0fa00", 0x0, 0x0, 0x4000000, 0x8}, 0x3c)
setsockopt$MRT_ADD_MFC(r1, 0x0, 0xcc, &(0x7f0000000280)={@broadcast, @multicast1, 0x0, "7ea97ddb2ac127ffa5b7216fe75ebaa2855a422a8bf8ec7caf003751804500", 0x0, 0x0, 0x4, 0xfffffffe}, 0x3c)
setsockopt$MRT_ADD_MFC(r1, 0x0, 0xcc, &(0x7f0000000200)={@empty, @private, 0x0, "606b177019716ea6ff1f4d7ed79c31e2e0f1da00000000230000002000", 0x3e1f}, 0x3c)
setsockopt$MRT_ADD_MFC(r1, 0x0, 0xcc, &(0x7f0000000180)={@private=0xa010102, @multicast2, 0x0, "941621a61c5815f4678d8fd403f2f30229a88d74d71fd55708016d20fd419884", 0x0, 0x1}, 0x3c)
bind$rds(0xffffffffffffffff, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000000)=ANY=[@ANYBLOB="84010000", @ANYRES16, @ANYBLOB="010000000000000000000100000004000480080002000100000008000100000000000400088058010c8054000b800800090000fffe00080009000000000008000a000000"], 0x184}}, 0x0)
setsockopt$MRT_FLUSH(r1, 0x0, 0xd4, &(0x7f00000003c0)=0xa, 0x4)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWTABLE={0x14, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}}, @NFT_MSG_NEWCHAIN={0x20, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x84, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x5c, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_XFRM_KEY={0x8, 0x2, 0x1, 0x0, 0x6}, @NFTA_XFRM_DIR={0x5}, @NFTA_XFRM_DREG={0x8, 0x1, 0x1, 0x0, 0x9}]}}}, {0x2c, 0x1, 0x0, 0x1, @cmp={{0x8}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_CMP_DATA={0xc, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5, 0x1, "ac"}]}, @NFTA_CMP_SREG={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_CMP_OP={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xe0}, 0x1, 0x0, 0x0, 0x4}, 0x40050)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet(0x2, 0x1, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000480)={0xb0, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'bridge0\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'macvlan1\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_team\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0xb0}}, 0x20000040)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x2c, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x203b}, [@IFLA_XDP={0x4}, @IFLA_GROUP={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20048054}, 0x8000)
bind$llc(0xffffffffffffffff, 0x0, 0x0)

2.437972346s ago: executing program 0 (id=1981):
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$sock_int(r0, 0x1, 0x4000000000000002, &(0x7f0000fee000)=0x3fa, 0x4)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
r1 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) (fail_nth: 2)

2.375528613s ago: executing program 0 (id=1982):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0xcdf)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1, 0xffffffff, &(0x7f0000006680)=0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x4008032, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$rxrpc(0x21, 0x2, 0xa)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
syz_open_dev$vbi(&(0x7f0000000040), 0x3, 0x2)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmstat\x00', 0x0, 0x0)
io_submit(0x0, 0x1, &(0x7f00000001c0)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, &(0x7f0000002240)='m', 0x1, 0x100000001}])
ioctl$TCFLSH(r4, 0x540b, 0x1)
syz_io_uring_setup(0x2f5, &(0x7f0000000240)={0x0, 0x75a, 0x800, 0x2, 0x22ab, 0x0, r4}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000000c0)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount(&(0x7f00000001c0), &(0x7f00000006c0)='./file0\x00', &(0x7f0000000800)='9p\x00', 0x0, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000240), r1)
sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x41}, 0x80)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
getsockopt$inet_mreq(r4, 0x0, 0x23, &(0x7f0000000200)={@remote, @local}, &(0x7f0000000300)=0x8)
mincore(&(0x7f0000498000/0x4000)=nil, 0x4000, &(0x7f0000000140)=""/20)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1c}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0300", 0x14, 0x6, 0x0, @empty, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a9c46", 0x14, 0x6, 0x0, @dev={0xfe, 0x80, '\x00', 0x43}, @dev={0xfe, 0x80, '\x00', 0x11}, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10, 0x0, 0x0, 0xffff}}}}}}}, 0x0)

2.061177299s ago: executing program 2 (id=1983):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0x68, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000580)={0xc8, 0x0, &(0x7f0000000480)=[@register_looper, @exit_looper, @enter_looper, @request_death={0x400c630e, 0x1}, @clear_death, @reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000380)={@flat=@handle={0x73682a85, 0x1000, 0x2}, @flat=@handle={0x73682a85, 0x1000, 0x1}, @ptr={0x70742a85, 0x1, &(0x7f0000000000)=""/22, 0x16, 0x2, 0x22}}, &(0x7f0000000040)={0x0, 0x18, 0x30}}}, @register_looper, @decrefs={0x40046307, 0x1}, @transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000400)={@fd={0x66642a85, 0x0, r0}, @fd={0x66642a85, 0x0, r0}, @fd={0x66642a85, 0x0, r0}}, &(0x7f0000000100)={0x0, 0x18, 0x30}}}, @acquire={0x40046305, 0x3}], 0x2f, 0x0, &(0x7f0000000300)="9e1a36f89f21d366eadc1948ff1b0e5576413cb40407f174310432ac4cd3202535eb1506e4157ebaa1378a4f411bc4"})
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@getchain={0x23, 0x66, 0xfcd66a900070b359}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000240)='fdinfo/3\x00')
lseek(r5, 0x4, 0x0)
r6 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x6f58, 0x8000, 0x400002, 0x0, 0x0, r5}, &(0x7f0000000340)=<r7=>0x0, &(0x7f00000000c0)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}]}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}, @IPSET_ATTR_REVISION={0x5}]}, 0x58}}, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x40, 0x5, r3, 0x0, 0x0, 0x0, 0x80000})
io_uring_enter(r6, 0x3516, 0x0, 0x0, 0x0, 0x0)

2.044423815s ago: executing program 4 (id=1984):
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000140000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0)=r0, 0x4)
sendmsg$unix(r2, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
r3 = openat$nci(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
r4 = openat$comedi(0xffffffffffffff9c, &(0x7f0000002180)='/dev/comedi1\x00', 0x8602, 0x0)
writev(r4, &(0x7f00000029c0), 0x0)
write$nci(r3, 0x0, 0x0)

1.297686365s ago: executing program 4 (id=1985):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000480), r0)
sendmsg$IEEE802154_LLSEC_GETPARAMS(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x20, r1, 0x1, 0x4, 0x2000000, {0x24, 0x0, 0x300}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x24000000}, 0x40000)

1.236350257s ago: executing program 4 (id=1986):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a310000000008004100727865001400330073797a5f74756e"], 0x38}, 0x1, 0x0, 0x0, 0x8845}, 0x4000)
r1 = openat$sr(0xffffff9c, &(0x7f0000000080), 0x80000, 0x0)
ioctl$SG_IO(r1, 0x2285, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_GET(r1, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="100027bd11caf6db"], 0x24}}, 0x4080)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000700), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000100)={<r3=>0xffffffffffffffff}, 0x13f, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000180)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e25, 0x10001, @local, 0xb}, r3}}, 0x30)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r5=>0x0})
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000400000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', r5}, 0x94)
r6 = getpid()
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r8, 0xc2ddb5edb7ba9069, 0x70bd26, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r6}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x0)
r9 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)=ANY=[@ANYBLOB="c400000019000100fcffffff00000000ac14142c000000000000000000000000fe8000000000000000000000000000aa4e2200004e2400000a00006000000000", @ANYRES32=0x0, @ANYRES32=r9, @ANYBLOB="0000000000000010feffffffffffffff000000400000000000000000000000001a000000000000000100000000000000feffffffffffffffa2d5000000000000afb3f60156b150f500e03df0d4908acce9ba00000000000000ff7f040000000000080000000008"], 0xc4}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x1, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x59}}}}}}}, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000300)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0x711, @remote, 0xbf}, {0xa, 0x4e20, 0xfffffffe, @mcast2, 0x10001}, r3, 0x403}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r2, &(0x7f00000002c0)={0x4, 0x8, 0xfa00, {r3, 0x5}}, 0x10)
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x100004, 0x10001d, 0x40000}, 0x20)
write$RDMA_USER_CM_CMD_CONNECT(r2, &(0x7f0000000380)={0x6, 0x118, 0xfa00, {{0x1, 0x8, "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", 0x0, 0x4, 0x5, 0xf, 0xd, 0x0, 0x6, 0x1}, r3}}, 0x120)
write$RDMA_USER_CM_CMD_NOTIFY(r2, &(0x7f00000000c0)={0xf, 0x8, 0xfa00, {r3, 0x4}}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r10, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000006c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x14}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0xe45}]}, @NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

1.146016042s ago: executing program 2 (id=1987):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
r1 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VIDIOC_DECODER_CMD(r1, 0xc0485660, &(0x7f00000001c0)={0x2, 0x0, @raw_data=[0x0, 0x0, 0x0, 0xffffffff]})
ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000500)={0xa, @raw_data="3aee44a9c226a51c91d96d057945493d62731d82b7b243ac2b8c09e616fac25ae19d22dde9f23f852c3c3ccc3a9bd805898c9b2332eefd90a8a3ec23a13d253cf99691b813d8bfe75bfd83c66b56546b67a6d49ef1aa41cd5fb1faa24fd3f04c0551ed1ce90da7f3c55d1722a954283520a13b98bbbda5d490614b0b944b44d09086680a995a0ef055c7b45c50f7096e53c69a5af5d8af27a799d80635b87bb98d78c265cc91f11d80f3215cb8e27902ded8695717e1bc25acbcb5f28d2e5cddcd7b000000009cae"})
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12013f00000000407f04ffff00000000000109022d000100000000090400001503000000092140000001220f000905", @ANYRES32], 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1, 0xff})
ioctl$BLKPG(r4, 0x1269, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x0})
syz_usb_control_io(r3, &(0x7f0000000b00)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000f00000009003d140f3c369197d09647190890"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r5 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCGUSAGE(r5, 0x501c4814, &(0x7f0000000100)={0x2, 0x100, 0x40000, 0x2, 0x1947, 0xf})
r6 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r7 = dup(r6)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
r8 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r8, 0x84, 0x64, &(0x7f0000000000), 0x10)
syz_io_uring_setup(0x238, &(0x7f0000000080)={0x0, 0x198b, 0x10100, 0x3, 0x3aa, 0x0, r7}, &(0x7f0000000180), &(0x7f00000001c0))
read(r7, &(0x7f0000000200)=""/94, 0x5e)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_DQBUF(0xffffffffffffffff, 0xc044565d, &(0x7f0000000280)=@mmap={0x6d0, 0x1, 0xfffffffffffffd4a, 0x0, 0x0, {0x77359400}, {0x0, 0x1, 0x0, 0x0, 0x0, 0x0, "01003c66"}})
openat$cuse(0xffffff9c, &(0x7f0000000140), 0x2, 0x0)
r9 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCSETD(r9, 0x5423, &(0x7f00000003c0)=0x14)
pread64(r2, &(0x7f0000000180)=""/79, 0xfffffe69, 0x1)

990.202032ms ago: executing program 0 (id=1988):
r0 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000480)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='io_uring_file_get\x00', r1, 0x0, 0xf}, 0x18)
r2 = syz_io_uring_setup(0x1e1e, &(0x7f0000000380)={0x0, 0x86f7, 0x10100, 0x3, 0x38a}, &(0x7f0000002000)=<r3=>0x0, &(0x7f0000000440)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x22})
io_uring_enter(r2, 0x48e9, 0xf2bb, 0x2, 0x0, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r6, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
unshare(0x22020400)
listen(r6, 0x0)
connect$unix(r5, &(0x7f0000000640)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r6, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
ioctl$MON_IOCG_STATS(r0, 0x80089203, &(0x7f00000000c0))

496.212608ms ago: executing program 4 (id=1989):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8000)
ioctl$FIONREAD(r0, 0x541b, 0x0)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socket$nl_crypto(0x10, 0x3, 0x15)
r2 = openat$sndseq(0xffffff9c, &(0x7f0000001240), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r2, 0xc0a45320, &(0x7f00000000c0)={{0x80}, 'port0\x00', 0x3eb, 0x21e2f, 0x7f, 0x1681bcd7, 0x0, 0x0, 0x400, 0x0, 0x2})
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
write$apparmor_current(0xffffffffffffffff, 0x0, 0x10)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pselect6(0x0, 0x0, 0x0, &(0x7f00000002c0)={0x3fb, 0x3, 0x400000000001, 0x9, 0x40000000000000, 0xf, 0x80000002, 0x2}, 0x0, 0x0)
syz_open_dev$media(&(0x7f0000000080), 0x34, 0x0)
ioctl$MEDIA_REQUEST_IOC_QUEUE(0xffffffffffffffff, 0x7c80, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="7a0a00f500000094ef0071104300000100"/26], &(0x7f0000000480)='syzkaller\x00'}, 0x80)
close_range(r1, 0xffffffffffffffff, 0x0)

160.390332ms ago: executing program 0 (id=1990):
socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_G_FMT(r0, 0xc0d05604, &(0x7f0000000200)={0x7, @vbi={0x1, 0x4, 0xdee, 0x30395056, [0x1000008, 0x7], [0x16, 0x1005], 0x2}})
r1 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xe0200, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(0xffffffffffffffff, 0x0, 0x48b, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r5, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r5, 0x84, 0x75, &(0x7f0000000040)={0x0, 0xaf1}, 0x8)
bind$inet6(r5, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r5, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback, 0x1}, 0x70, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r5, 0x84, 0x77, &(0x7f0000000140)={0x0, 0xffff, 0x2, [0x2, 0x1]}, 0xc)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r6=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_OIF={0x8, 0x5, r6}]}, 0x20}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800010009000000000000000a00"], 0x24}}, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=@delnexthop={0x20, 0x69, 0xb, 0x0, 0x0, {}, [{0x8, 0x1, 0x2}]}, 0x20}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x24, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x24, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x2, 0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000001340))
shmctl$IPC_SET(0x0, 0x1, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)

0s ago: executing program 1 (id=1991):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0cc5605, &(0x7f0000000a40)={0x1, @win={{0x1ff, 0x20000, 0x32315559}, 0x0, 0x0, 0x0, 0x0, 0x0}})
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000100)={0x30, 0x300, 0x690, 0x1000, 0xbbba, 0x2, 0x0, 0x100, {0x0, 0x2000}, {0x5, 0xfffffffe, 0x1}, {0x3fffffc}, {0x0, 0x8}, 0x0, 0x10, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x37, 0x0, 0x0, 0x20, 0x1, 0x5})
r2 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/comedi4\x00', 0x80000, 0x0)
ioctl$COMEDI_LOCK(r2, 0x6405)
ioctl$COMEDI_SUBDINFO(r2, 0x80486402, &(0x7f0000030e80))
r3 = socket$inet6(0xa, 0x5, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)={@broadcast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x4, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty=0xac1414aa}, "17c1b7df60c70000"}}}}}, 0x0)
setsockopt$sock_int(r3, 0x1, 0x4000000000000002, &(0x7f0000fee000)=0x3fa, 0x4)
bind$inet6(r3, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000000)={0x0, 0x80000, <r4=>0xffffffffffffffff})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtaction={0x14, 0x30, 0x0, 0x870bd2d, 0x0, {0x9}}, 0x14}}, 0x20048000)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000d1d7a440041601801f44010203010902120001000000000904"], 0x0)
r5 = syz_open_dev$sndctrl(&(0x7f0000000000), 0xdc3, 0x0)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r5, 0x80dc5521, &(0x7f0000000300))
ioctl$DRM_IOCTL_DROP_MASTER(r4, 0x641f)
openat$vcsa(0xffffff9c, &(0x7f00000000c0), 0x28403, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000080)=0x15)
setresuid(0xffffffffffffffff, 0xee00, 0xffffffffffffffff)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000380)=0x7d)
r7 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r7, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)

kernel console output (not intermixed with test programs):

[  270.457189][ T1140] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  270.465667][ T1254] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  270.719901][T10605] lo speed is unknown, defaulting to 1000
[  270.813053][ T1343] usb 5-1: USB disconnect, device number 7
[  272.367648][T10632] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1220'.
[  272.541479][ T1254] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  272.603955][ T1254] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  272.828390][ T1230] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  272.840547][ T1230] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  273.532127][T10659] lo speed is unknown, defaulting to 1000
[  273.681256][T10663] syz1: rxe_newlink: already configured on syz_tun
[  273.899363][T10663] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  273.942256][T10664] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1231'.
[  273.980757][T10663] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  274.164383][T10663] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  274.262116][T10663] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  274.392500][   T12] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  274.402224][   T12] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  274.411449][   T12] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  274.442291][ T1254] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  274.797267][T10689] fuse: Unknown parameter 'net/udp'
[  275.220710][T10704] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  275.913265][T10711] ptrace attach of "/syz-executor exec"[9612] was attempted by ""[10711]
[  275.971636][T10715] rdma_rxe: rxe_newlink: failed to add syz_tun
[  276.173326][T10715] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  276.205879][ T1021] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  276.211934][T10715] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  276.222961][T10716] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1246'.
[  276.267014][T10715] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  276.322928][T10715] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  276.366810][ T1021] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  276.371034][ T1021] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  276.374643][ T1021] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  276.377795][ T1021] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  276.382368][ T1021] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  276.385897][ T1021] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  276.389713][ T1021] usb 8-1: config 0 descriptor??
[  276.426143][   T13] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  276.432402][   T13] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  276.440726][   T13] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  276.451185][   T13] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  276.457826][T10722] netlink: 'syz.1.1248': attribute type 4 has an invalid length.
[  276.480260][T10722] netlink: 'syz.1.1248': attribute type 4 has an invalid length.
[  276.654948][T10728] lo speed is unknown, defaulting to 1000
[  276.896131][ T1021] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  276.979966][T10740] netlink: 'syz.0.1254': attribute type 4 has an invalid length.
[  277.109274][T10713] netlink: 'syz.3.1245': attribute type 1 has an invalid length.
[  277.113934][T10713] trusted_key: encrypted_key: insufficient parameters specified
[  277.119247][T10713] trusted_key: encrypted_key: insufficient parameters specified
[  277.177853][   T29] usb 8-1: USB disconnect, device number 9
[  277.358030][T10752] rdma_rxe: rxe_newlink: failed to add syz_tun
[  277.532883][T10753] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.581949][T10752] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1259'.
[  277.608785][T10753] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.695077][T10753] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.760071][T10753] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.883685][T10761] lo speed is unknown, defaulting to 1000
[  278.546210][T10776] Bluetooth: MGMT ver 1.23
[  278.904007][   T34] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  279.056199][   T34] usb 8-1: config index 0 descriptor too short (expected 45, got 36)
[  279.058789][   T34] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  279.062251][   T34] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  279.198516][   T34] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  279.201949][   T34] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  279.206036][   T34] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  279.208835][   T34] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  279.224201][   T34] usb 8-1: config 0 descriptor??
[  279.226704][T10778] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  279.413205][T10788] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  279.608323][   T40] kauditd_printk_skb: 42 callbacks suppressed
[  279.608377][   T40] audit: type=1326 audit(1757128613.157:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10787 comm="syz.1.1269" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  279.618602][   T40] audit: type=1326 audit(1757128613.157:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10787 comm="syz.1.1269" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  279.625519][   T40] audit: type=1326 audit(1757128613.157:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10787 comm="syz.1.1269" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf702e579 code=0x7ffc0000
[  279.632229][   T40] audit: type=1326 audit(1757128613.157:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10787 comm="syz.1.1269" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  279.641353][   T40] audit: type=1326 audit(1757128613.157:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10787 comm="syz.1.1269" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  279.643481][   T34] plantronics 0003:047F:FFFF.0007: reserved main item tag 0xd
[  279.650568][   T40] audit: type=1326 audit(1757128613.157:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10787 comm="syz.1.1269" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf702e579 code=0x7ffc0000
[  279.650618][   T40] audit: type=1326 audit(1757128613.157:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10787 comm="syz.1.1269" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  279.650642][   T40] audit: type=1326 audit(1757128613.157:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10787 comm="syz.1.1269" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  279.650661][   T40] audit: type=1326 audit(1757128613.157:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10787 comm="syz.1.1269" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf702e579 code=0x7ffc0000
[  279.658391][   T34] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  279.660108][   T40] audit: type=1326 audit(1757128613.157:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10787 comm="syz.1.1269" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  279.787786][T10792] kernel read not supported for file /eth0 (pid: 10792 comm: syz.2.1270)
[  281.442194][   T12] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  281.462231][   T12] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  281.467389][   T12] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  281.470742][   T12] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  281.543870][   T24] usb 8-1: reset high-speed USB device number 10 using dummy_hcd
[  281.550687][T10818] trusted_key: syz.1.1276 sent an empty control message without MSG_MORE.
[  281.767720][ T5987] Bluetooth: hci0: SCO packet for unknown connection handle 3493
[  281.856599][T10829] comedi comedi0: pcmda12: I/O port conflict (0x8,16)
[  282.479919][ T6059] usb 8-1: USB disconnect, device number 10
[  283.599246][T10855] block nbd3: Attempted send on invalid socket
[  283.601270][T10855] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  283.605754][T10855] vxfs: unable to read disk superblock at 1
[  283.608423][T10855] block nbd3: Attempted send on invalid socket
[  283.610436][T10855] I/O error, dev nbd3, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  283.613491][T10855] vxfs: unable to read disk superblock at 8
[  283.615501][T10855] vxfs: can't find superblock.
[  283.852687][T10858] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  284.113766][ T6057] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  284.310244][ T6057] usb 5-1: config index 0 descriptor too short (expected 45, got 36)
[  284.318924][ T6057] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  284.323743][ T6057] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  284.328193][ T6057] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  284.333312][ T6057] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  284.343453][ T6057] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  284.349515][ T6057] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.361003][ T6057] usb 5-1: config 0 descriptor??
[  284.363183][T10860] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  284.885632][T10882] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.939117][T10882] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  285.025439][T10882] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  285.146785][T10882] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  285.181704][ T6057] plantronics 0003:047F:FFFF.0008: reserved main item tag 0xd
[  285.186982][ T6057] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  285.228217][   T12] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  285.237427][   T12] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  285.246862][   T13] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  285.256649][   T13] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  286.727756][T10918] netlink: 'syz.1.1305': attribute type 3 has an invalid length.
[  287.104043][ T8056] usb 5-1: reset high-speed USB device number 8 using dummy_hcd
[  288.280719][ T1021] usb 5-1: USB disconnect, device number 8
[  288.345557][T10954] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  288.502387][T10963] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1320'.
[  288.528690][T10964] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1317'.
[  288.553523][T10963] bridge1: port 1(veth3) entered blocking state
[  288.557195][T10963] bridge1: port 1(veth3) entered disabled state
[  288.560215][T10963] veth3: entered allmulticast mode
[  288.564771][T10963] veth3: entered promiscuous mode
[  288.601422][T10963] vlan2: entered allmulticast mode
[  288.603934][T10963] veth0_to_hsr: entered allmulticast mode
[  288.606746][T10963] bridge1: port 2(vlan2) entered blocking state
[  288.609673][T10963] bridge1: port 2(vlan2) entered disabled state
[  288.614528][T10963] vlan2: entered promiscuous mode
[  288.616896][T10963] veth0_to_hsr: entered promiscuous mode
[  291.946053][T11022] wireguard0: entered promiscuous mode
[  291.948610][T11022] wireguard0: entered allmulticast mode
[  291.991200][T11028] kernel read not supported for file /eth0 (pid: 11028 comm: syz.3.1338)
[  292.018593][   T40] kauditd_printk_skb: 12 callbacks suppressed
[  292.018604][   T40] audit: type=1800 audit(1757128625.550:651): pid=11028 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1338" name="eth0" dev="mqueue" ino=42436 res=0 errno=0
[  292.382906][T11031] block device autoloading is deprecated and will be removed.
[  293.238894][T11051] FAULT_INJECTION: forcing a failure.
[  293.238894][T11051] name failslab, interval 1, probability 0, space 0, times 0
[  293.243291][T11051] CPU: 0 UID: 0 PID: 11051 Comm: syz.2.1347 Not tainted syzkaller #0 PREEMPT(full) 
[  293.243317][T11051] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  293.243324][T11051] Call Trace:
[  293.243328][T11051]  <TASK>
[  293.243332][T11051]  dump_stack_lvl+0x16c/0x1f0
[  293.243351][T11051]  should_fail_ex+0x512/0x640
[  293.243367][T11051]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  293.243379][T11051]  should_failslab+0xc2/0x120
[  293.243393][T11051]  __kmalloc_cache_noprof+0x6a/0x3e0
[  293.243403][T11051]  ? bpf_prog_alloc_no_stats+0x54/0x5d0
[  293.243415][T11051]  ? __vmalloc_node_noprof+0xad/0xf0
[  293.243424][T11051]  ? bpf_prog_alloc_no_stats+0x116/0x5d0
[  293.243438][T11051]  bpf_prog_alloc_no_stats+0x116/0x5d0
[  293.243453][T11051]  bpf_prog_alloc+0x3b/0x230
[  293.243463][T11051]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  293.243480][T11051]  bpf_prog_load+0x1a04/0x2490
[  293.243498][T11051]  ? __pfx_bpf_prog_load+0x10/0x10
[  293.243525][T11051]  __sys_bpf+0x4a3f/0x4de0
[  293.243541][T11051]  ? __pfx___sys_bpf+0x10/0x10
[  293.243556][T11051]  ? ksys_write+0x190/0x250
[  293.243570][T11051]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  293.243594][T11051]  ? fput+0x9b/0xd0
[  293.243607][T11051]  ? ksys_write+0x1ac/0x250
[  293.243631][T11051]  ? __pfx_ksys_write+0x10/0x10
[  293.243645][T11051]  __ia32_sys_bpf+0x76/0xe0
[  293.243661][T11051]  __do_fast_syscall_32+0x7c/0x3a0
[  293.243678][T11051]  do_fast_syscall_32+0x32/0x80
[  293.243693][T11051]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  293.243707][T11051] RIP: 0023:0xf70be579
[  293.243715][T11051] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  293.243726][T11051] RSP: 002b:00000000f548d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  293.243736][T11051] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000200
[  293.243742][T11051] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000
[  293.243748][T11051] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  293.243754][T11051] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  293.243759][T11051] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  293.243772][T11051]  </TASK>
[  294.042439][T11074] lo speed is unknown, defaulting to 1000
[  294.283750][ T6059] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  294.433741][ T6059] usb 7-1: Using ep0 maxpacket: 8
[  294.437395][ T6059] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  294.439812][ T6059] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  294.443378][ T6059] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  294.448257][ T6059] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  294.452367][ T6059] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  294.457067][ T6059] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  294.460504][ T6059] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  294.464833][ T6059] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  294.468494][ T6059] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  294.472024][ T6059] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  294.476491][ T6059] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  294.478937][ T6059] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  294.482479][ T6059] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  294.486897][ T6059] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  294.490385][ T6059] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  294.497465][ T6059] usb 7-1: string descriptor 0 read error: -22
[  294.499473][ T6059] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  294.502438][ T6059] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  294.509260][ T6059] adutux 7-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  294.671181][T11090] Device name cannot be null; rc = [-22]
[  297.036224][ T8056] usb 7-1: USB disconnect, device number 12
[  297.617547][T11129] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  298.506697][ T8056] IPVS: starting estimator thread 0...
[  298.510308][T11156] IPVS: ip_vs_edit_dest(): lower threshold is higher than upper threshold
[  298.593839][T11161] IPVS: using max 26 ests per chain, 62400 per kthread
[  299.200495][T11171] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  300.095293][T11193] nvme_fabrics: missing parameter 'transport=%s'
[  300.135009][T11193] nvme_fabrics: missing parameter 'nqn=%s'
[  301.282614][T11214] IPv4: Oversized IP packet from 127.0.0.1
[  301.285416][    C2] IPv4: Oversized IP packet from 127.0.0.1
[  301.495659][T11223] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  303.717340][T11276] bond0: option ad_select: unable to set because the bond device is up
[  303.914534][ T1254] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  303.995969][ T1254] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.085478][ T1254] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.147571][ T1254] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.391919][ T5986] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  304.400336][ T5986] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  304.409144][ T5986] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  304.415181][ T5986] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  304.418549][ T5986] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  305.503370][ T1254] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  305.512301][ T1254] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  305.520686][ T1254] bond0 (unregistering): (slave macvlan0): Releasing backup interface
[  305.529154][ T1254] bond0 (unregistering): Released all slaves
[  305.669729][ T1254] bond1 (unregistering): Released all slaves
[  305.687826][ T1254] bond2 (unregistering): Released all slaves
[  305.721245][T11283] lo speed is unknown, defaulting to 1000
[  305.855471][ T1254] tipc: Left network mode
[  306.030880][T11301] rdma_rxe: rxe_newlink: failed to add syz_tun
[  306.131348][T11283] chnl_net:caif_netlink_parms(): no params data found
[  306.252559][T11301] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1415'.
[  306.359855][T11283] bridge0: port 1(bridge_slave_0) entered blocking state
[  306.370867][T11283] bridge0: port 1(bridge_slave_0) entered disabled state
[  306.375017][T11283] bridge_slave_0: entered allmulticast mode
[  306.379517][T11283] bridge_slave_0: entered promiscuous mode
[  306.389918][T11283] bridge0: port 2(bridge_slave_1) entered blocking state
[  306.393231][T11283] bridge0: port 2(bridge_slave_1) entered disabled state
[  306.399087][T11283] bridge_slave_1: entered allmulticast mode
[  306.403142][T11283] bridge_slave_1: entered promiscuous mode
[  306.473844][T11283] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  306.494179][T11283] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  306.503770][ T5986] Bluetooth: hci1: command tx timeout
[  306.641101][ T1254] hsr_slave_0: left promiscuous mode
[  306.648151][ T1254] hsr_slave_1: left promiscuous mode
[  306.665164][ T1254] veth1_macvtap: left promiscuous mode
[  306.667470][ T1254] veth0_macvtap: left promiscuous mode
[  306.670059][ T1254] veth1_vlan: left promiscuous mode
[  306.672108][ T1254] veth0_vlan: left promiscuous mode
[  308.207186][ T1254] team0 (unregistering): Port device team_slave_1 removed
[  308.283454][ T1254] team0 (unregistering): Port device team_slave_0 removed
[  308.585043][ T5986] Bluetooth: hci1: command tx timeout
[  308.959455][ T6059] lo speed is unknown, defaulting to 1000
[  308.961715][T11283] team0: Port device team_slave_0 added
[  308.964584][ T6059] infiniband syz2: ib_query_port failed (-19)
[  308.973563][T11283] team0: Port device team_slave_1 added
[  309.062155][T11283] batman_adv: batadv0: Adding interface: batadv_slave_0
[  309.065546][T11283] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  309.085416][T11283] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  309.095792][T11283] batman_adv: batadv0: Adding interface: batadv_slave_1
[  309.098667][T11283] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  309.108165][T11283] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  309.176980][T11283] hsr_slave_0: entered promiscuous mode
[  309.180235][T11283] hsr_slave_1: entered promiscuous mode
[  309.382202][T11400] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  309.421385][T11283] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  309.427921][T11283] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  309.435298][T11283] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  309.441123][T11283] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  309.532519][T11283] 8021q: adding VLAN 0 to HW filter on device bond0
[  309.546711][T11283] 8021q: adding VLAN 0 to HW filter on device team0
[  309.552281][ T1254] bridge0: port 1(bridge_slave_0) entered blocking state
[  309.554587][ T1254] bridge0: port 1(bridge_slave_0) entered forwarding state
[  309.561624][   T61] bridge0: port 2(bridge_slave_1) entered blocking state
[  309.563912][   T61] bridge0: port 2(bridge_slave_1) entered forwarding state
[  309.645327][   T40] audit: type=1326 audit(1757128643.200:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11399 comm="syz.1.1444" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  309.653112][   T40] audit: type=1326 audit(1757128643.200:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11399 comm="syz.1.1444" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  309.668273][   T40] audit: type=1326 audit(1757128643.200:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11399 comm="syz.1.1444" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf702e579 code=0x7ffc0000
[  309.677207][   T40] audit: type=1326 audit(1757128643.200:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11399 comm="syz.1.1444" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  309.700996][T11283] 8021q: adding VLAN 0 to HW filter on device batadv0
[  309.705075][   T40] audit: type=1326 audit(1757128643.200:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11399 comm="syz.1.1444" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  309.712107][   T40] audit: type=1326 audit(1757128643.200:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11399 comm="syz.1.1444" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf702e579 code=0x7ffc0000
[  309.718850][   T40] audit: type=1326 audit(1757128643.200:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11399 comm="syz.1.1444" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  309.726488][   T40] audit: type=1326 audit(1757128643.200:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11399 comm="syz.1.1444" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  309.733609][   T40] audit: type=1326 audit(1757128643.200:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11399 comm="syz.1.1444" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf702e579 code=0x7ffc0000
[  309.740918][   T40] audit: type=1326 audit(1757128643.200:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11399 comm="syz.1.1444" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  309.771220][T11418] FAULT_INJECTION: forcing a failure.
[  309.771220][T11418] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  309.777144][T11418] CPU: 2 UID: 0 PID: 11418 Comm: syz.0.1445 Not tainted syzkaller #0 PREEMPT(full) 
[  309.777166][T11418] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  309.777176][T11418] Call Trace:
[  309.777181][T11418]  <TASK>
[  309.777188][T11418]  dump_stack_lvl+0x16c/0x1f0
[  309.777211][T11418]  should_fail_ex+0x512/0x640
[  309.777230][T11418]  _copy_from_user+0x2e/0xd0
[  309.777242][T11418]  copy_from_sockptr_offset.constprop.0+0x136/0x170
[  309.777259][T11418]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[  309.777276][T11418]  ? bpf_lsm_capable+0x9/0x10
[  309.777286][T11418]  ? security_capable+0x7e/0x260
[  309.777299][T11418]  ip_mroute_setsockopt+0x480/0x1040
[  309.777312][T11418]  ? __pfx_ip_mroute_setsockopt+0x10/0x10
[  309.777335][T11418]  ? find_held_lock+0x2b/0x80
[  309.777349][T11418]  do_ip_setsockopt+0x2ae/0x3130
[  309.777363][T11418]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  309.777377][T11418]  ? __pfx___might_resched+0x10/0x10
[  309.777388][T11418]  ? __lock_acquire+0x62e/0x1ce0
[  309.777403][T11418]  ? aa_sk_perm+0x2f4/0xb10
[  309.777419][T11418]  ip_setsockopt+0x59/0xf0
[  309.777432][T11418]  raw_setsockopt+0xb7/0x2a0
[  309.777445][T11418]  ? __pfx_raw_setsockopt+0x10/0x10
[  309.777459][T11418]  ? sock_common_setsockopt+0x2e/0xf0
[  309.777470][T11418]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  309.777482][T11418]  do_sock_setsockopt+0xf3/0x1d0
[  309.777495][T11418]  __sys_setsockopt+0x120/0x1a0
[  309.777512][T11418]  __ia32_sys_setsockopt+0xbc/0x160
[  309.777526][T11418]  ? lockdep_hardirqs_on+0x7c/0x110
[  309.777541][T11418]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  309.777556][T11418]  __do_fast_syscall_32+0x7c/0x3a0
[  309.777574][T11418]  do_fast_syscall_32+0x32/0x80
[  309.777589][T11418]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  309.777603][T11418] RIP: 0023:0xf7f74579
[  309.777612][T11418] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  309.777622][T11418] RSP: 002b:00000000f548655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  309.777633][T11418] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000000000000
[  309.777640][T11418] RDX: 00000000000000cb RSI: 00000000800002c0 RDI: 0000000000000010
[  309.777646][T11418] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  309.777652][T11418] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  309.777658][T11418] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  309.777671][T11418]  </TASK>
[  309.969828][T11283] veth0_vlan: entered promiscuous mode
[  309.978582][T11283] veth1_vlan: entered promiscuous mode
[  310.001777][T11283] veth0_macvtap: entered promiscuous mode
[  310.005807][T11283] veth1_macvtap: entered promiscuous mode
[  310.014722][T11283] batman_adv: batadv0: Interface activated: batadv_slave_0
[  310.021390][T11283] batman_adv: batadv0: Interface activated: batadv_slave_1
[  310.028783][   T61] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  310.035020][   T61] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  310.038229][   T61] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  310.046179][   T61] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  310.080380][ T1230] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  310.082904][ T1230] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  310.111694][ T1230] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  310.115433][ T1230] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  310.433752][ T6057] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  310.589613][ T6057] usb 9-1: config index 0 descriptor too short (expected 45, got 36)
[  310.592832][ T6057] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  310.597791][ T6057] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  310.602253][ T6057] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  310.607581][ T6057] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  310.613072][ T6057] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  310.617389][ T6057] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  310.630360][ T6057] usb 9-1: config 0 descriptor??
[  310.634530][T11436] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  310.653937][ T5986] Bluetooth: hci1: command tx timeout
[  310.756004][T11456] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  310.757898][T11456] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  310.767521][T11456] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  310.769493][T11456] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  311.226197][ T6057] plantronics 0003:047F:FFFF.0009: reserved main item tag 0xd
[  311.237059][ T6057] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  312.199693][T11493] netlink: 51 bytes leftover after parsing attributes in process `syz.1.1462'.
[  312.583894][ T6040] usb 9-1: reset high-speed USB device number 2 using dummy_hcd
[  312.623695][ T1343] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  312.806306][ T1343] usb 7-1: Using ep0 maxpacket: 8
[  312.825432][ T1343] usb 7-1: unable to get BOS descriptor or descriptor too short
[  312.829194][ T1343] usb 7-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  312.832565][ T1343] usb 7-1: config 7 has 0 interfaces, different from the descriptor's value: 1
[  312.837835][ T1343] usb 7-1: New USB device found, idVendor=1a8d, idProduct=100d, bcdDevice=30.9e
[  312.840885][ T1343] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  312.843547][ T1343] usb 7-1: Product: syz
[  312.845321][ T1343] usb 7-1: Manufacturer: syz
[  312.846951][ T1343] usb 7-1: SerialNumber: syz
[  313.043756][  T840] usb 5-1: new low-speed USB device number 9 using dummy_hcd
[  313.193892][  T840] usb 5-1: device descriptor read/64, error -71
[  313.263969][ T1343] usb 7-1: USB disconnect, device number 13
[  313.327864][T11514] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1470'.
[  313.455167][  T840] usb 5-1: new low-speed USB device number 10 using dummy_hcd
[  313.624301][  T840] usb 5-1: device descriptor read/64, error -71
[  313.724151][ T6059] usb 9-1: USB disconnect, device number 2
[  313.734046][  T840] usb usb5-port1: attempt power cycle
[  313.761585][T11522] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  313.794549][T11526] FAULT_INJECTION: forcing a failure.
[  313.794549][T11526] name failslab, interval 1, probability 0, space 0, times 0
[  313.798447][T11526] CPU: 3 UID: 0 PID: 11526 Comm: syz.2.1473 Not tainted syzkaller #0 PREEMPT(full) 
[  313.798462][T11526] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  313.798468][T11526] Call Trace:
[  313.798472][T11526]  <TASK>
[  313.798476][T11526]  dump_stack_lvl+0x16c/0x1f0
[  313.798496][T11526]  should_fail_ex+0x512/0x640
[  313.798512][T11526]  ? fs_reclaim_acquire+0xae/0x150
[  313.798528][T11526]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  313.798544][T11526]  should_failslab+0xc2/0x120
[  313.798559][T11526]  __kmalloc_noprof+0xd2/0x510
[  313.798574][T11526]  tomoyo_realpath_from_path+0xc2/0x6e0
[  313.798590][T11526]  ? tomoyo_profile+0x47/0x60
[  313.798600][T11526]  tomoyo_path_number_perm+0x245/0x580
[  313.798612][T11526]  ? tomoyo_path_number_perm+0x237/0x580
[  313.798626][T11526]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  313.798652][T11526]  ? find_held_lock+0x2b/0x80
[  313.798663][T11526]  ? hook_file_ioctl_common+0x145/0x410
[  313.798685][T11526]  ? __fget_files+0x20e/0x3c0
[  313.798699][T11526]  security_file_ioctl_compat+0x9b/0x240
[  313.798713][T11526]  __ia32_compat_sys_ioctl+0xc3/0x370
[  313.798731][T11526]  __do_fast_syscall_32+0x7c/0x3a0
[  313.798748][T11526]  do_fast_syscall_32+0x32/0x80
[  313.798763][T11526]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  313.798776][T11526] RIP: 0023:0xf70be579
[  313.798784][T11526] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  313.798794][T11526] RSP: 002b:00000000f54ae55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  313.798804][T11526] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000004008af03
[  313.798811][T11526] RDX: 0000000080000940 RSI: 0000000000000000 RDI: 0000000000000000
[  313.798816][T11526] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  313.798822][T11526] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  313.798828][T11526] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  313.798840][T11526]  </TASK>
[  313.798844][T11526] ERROR: Out of memory at tomoyo_realpath_from_path.
[  313.911124][T11529] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  314.143806][  T840] usb 5-1: new low-speed USB device number 11 using dummy_hcd
[  314.164516][  T840] usb 5-1: device descriptor read/8, error -71
[  314.423748][  T840] usb 5-1: new low-speed USB device number 12 using dummy_hcd
[  314.444286][  T840] usb 5-1: device descriptor read/8, error -71
[  314.545498][T11538] FAULT_INJECTION: forcing a failure.
[  314.545498][T11538] name failslab, interval 1, probability 0, space 0, times 0
[  314.551071][T11538] CPU: 1 UID: 0 PID: 11538 Comm: syz.2.1476 Not tainted syzkaller #0 PREEMPT(full) 
[  314.551111][T11538] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  314.551122][T11538] Call Trace:
[  314.551129][T11538]  <TASK>
[  314.551137][T11538]  dump_stack_lvl+0x16c/0x1f0
[  314.551167][T11538]  should_fail_ex+0x512/0x640
[  314.551193][T11538]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  314.551216][T11538]  should_failslab+0xc2/0x120
[  314.551239][T11538]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  314.551259][T11538]  ? getname_flags.part.0+0x4c/0x550
[  314.551289][T11538]  getname_flags.part.0+0x4c/0x550
[  314.551318][T11538]  getname_flags+0x93/0xf0
[  314.551338][T11538]  do_sys_openat2+0xb8/0x1d0
[  314.551366][T11538]  ? __pfx_do_sys_openat2+0x10/0x10
[  314.551394][T11538]  ? __fget_files+0x20e/0x3c0
[  314.551417][T11538]  __ia32_compat_sys_openat+0x16d/0x210
[  314.551435][T11538]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  314.551451][T11538]  ? ksys_write+0x1ac/0x250
[  314.551473][T11538]  ? rcu_is_watching+0x12/0xc0
[  314.551495][T11538]  __do_fast_syscall_32+0x7c/0x3a0
[  314.551522][T11538]  do_fast_syscall_32+0x32/0x80
[  314.551547][T11538]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  314.551568][T11538] RIP: 0023:0xf70be579
[  314.551581][T11538] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  314.551599][T11538] RSP: 002b:00000000f546c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  314.551615][T11538] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000380
[  314.551627][T11538] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  314.551636][T11538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  314.551645][T11538] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  314.551654][T11538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  314.551676][T11538]  </TASK>
[  314.564118][  T840] usb usb5-port1: unable to enumerate USB device
[  314.985877][T11540] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1477'.
[  315.821157][T11570] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  315.940162][T11581] overlayfs: failed to clone upperpath
[  315.971542][T11581] netlink: 'syz.1.1488': attribute type 3 has an invalid length.
[  315.976645][T11581] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1488'.
[  316.186707][T11574] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  316.734544][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  316.737531][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  316.961192][T11612] ufs: You didn't specify the type of your ufs filesystem
[  316.961192][T11612] 
[  316.961192][T11612] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  316.961192][T11612] 
[  316.961192][T11612] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  316.975696][T11612] ufs: ufstype=old is supported read-only
[  316.981078][T11612] I/O error, dev loop5, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  317.529290][T11624] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  317.533076][T11624] block device autoloading is deprecated and will be removed.
[  320.120160][T11672] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1523'.
[  320.957383][T11681] rdma_rxe: rxe_newlink: failed to add syz_tun
[  321.235535][T11693] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  321.300320][T11681] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1525'.
[  321.500928][T11707] 9pnet_virtio: no channels available for device syz
[  322.322270][T11716] sg_write: data in/out 41084/1 bytes for SCSI command 0x1c-- guessing data in;
[  322.322270][T11716]    program syz.4.1533 not setting count and/or reply_len properly
[  324.623407][T11768] kvm: pic: single mode not supported
[  324.623430][T11768] kvm: pic: level sensitive irq not supported
[  324.626938][T11768] kvm: pic: non byte read
[  324.633097][T11768] kvm: pic: non byte read
[  324.636974][T11768] kvm: pic: non byte read
[  324.640516][T11768] kvm: pic: non byte read
[  324.646803][T11768] kvm: pic: non byte read
[  324.650060][T11768] kvm: pic: single mode not supported
[  324.650391][T11768] kvm: pic: non byte read
[  324.665026][T11768] kvm: pic: non byte read
[  324.674578][T11768] kvm: pic: non byte read
[  324.686802][T11768] kvm: pic: non byte read
[  326.018407][T11796] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1556'.
[  326.036649][T11796] vlan2: entered promiscuous mode
[  326.038684][T11796] macvtap0: entered promiscuous mode
[  326.912680][T11803] overlayfs: failed to clone upperpath
[  327.524496][T11820] netlink: 'syz.0.1561': attribute type 1 has an invalid length.
[  327.604638][T11822] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1561'.
[  327.641537][T11820] 8021q: adding VLAN 0 to HW filter on device bond1
[  328.495141][T11822] bond1 (unregistering): Released all slaves
[  329.386242][   T40] kauditd_printk_skb: 29 callbacks suppressed
[  329.386254][   T40] audit: type=1804 audit(1757128662.930:691): pid=11833 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1566" name="/newroot/386/file0" dev="tmpfs" ino=2054 res=1 errno=0
[  329.469284][T11830] /dev/sr0: Can't open blockdev
[  331.128232][T11861] netlink: 'syz.1.1575': attribute type 4 has an invalid length.
[  331.261489][T11870] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  331.283079][T11874] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1580'.
[  331.292888][T11874] overlayfs: failed to resolve './file1': -2
[  331.591860][T11882] sg_write: data in/out 41084/1 bytes for SCSI command 0x1c-- guessing data in;
[  331.591860][T11882]    program syz.4.1582 not setting count and/or reply_len properly
[  331.728595][T11884] lo speed is unknown, defaulting to 1000
[  331.735819][T11884] lo speed is unknown, defaulting to 1000
[  331.740182][T11884] lo speed is unknown, defaulting to 1000
[  331.879716][T11884] infiniband syz0: set active
[  331.881469][T11884] infiniband syz0: added lo
[  331.898443][T11884] RDS/IB: syz0: added
[  331.899909][T11884] smc: adding ib device syz0 with port count 1
[  331.902152][T11884] smc:    ib device syz0 port 1 has pnetid 
[  331.936396][T11885] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  331.957803][T11884] lo speed is unknown, defaulting to 1000
[  332.046018][T11884] lo speed is unknown, defaulting to 1000
[  332.100881][ T6057] lo speed is unknown, defaulting to 1000
[  332.103950][ T8056] lo speed is unknown, defaulting to 1000
[  332.166678][T11884] lo speed is unknown, defaulting to 1000
[  332.250985][T11884] lo speed is unknown, defaulting to 1000
[  332.393426][T11884] lo speed is unknown, defaulting to 1000
[  333.108534][T11910] FAULT_INJECTION: forcing a failure.
[  333.108534][T11910] name failslab, interval 1, probability 0, space 0, times 0
[  333.112957][T11910] CPU: 1 UID: 0 PID: 11910 Comm: syz.0.1588 Not tainted syzkaller #0 PREEMPT(full) 
[  333.112988][T11910] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  333.112994][T11910] Call Trace:
[  333.112999][T11910]  <TASK>
[  333.113004][T11910]  dump_stack_lvl+0x16c/0x1f0
[  333.113025][T11910]  should_fail_ex+0x512/0x640
[  333.113041][T11910]  ? __kvmalloc_node_noprof+0x124/0x620
[  333.113055][T11910]  should_failslab+0xc2/0x120
[  333.113069][T11910]  __kvmalloc_node_noprof+0x137/0x620
[  333.113081][T11910]  ? file_tty_write.constprop.0+0x6ef/0x9b0
[  333.113100][T11910]  ? file_tty_write.constprop.0+0x6ef/0x9b0
[  333.113114][T11910]  file_tty_write.constprop.0+0x6ef/0x9b0
[  333.113131][T11910]  ? rw_verify_area+0xcf/0x6c0
[  333.113143][T11910]  vfs_write+0x7d3/0x11d0
[  333.113155][T11910]  ? __pfx_tty_write+0x10/0x10
[  333.113171][T11910]  ? __pfx_vfs_write+0x10/0x10
[  333.113182][T11910]  ? find_held_lock+0x2b/0x80
[  333.113202][T11910]  ksys_write+0x12a/0x250
[  333.113213][T11910]  ? __pfx_ksys_write+0x10/0x10
[  333.113226][T11910]  ? rcu_is_watching+0x12/0xc0
[  333.113239][T11910]  __do_fast_syscall_32+0x7c/0x3a0
[  333.113256][T11910]  do_fast_syscall_32+0x32/0x80
[  333.113271][T11910]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  333.113286][T11910] RIP: 0023:0xf7f74579
[  333.113294][T11910] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  333.113304][T11910] RSP: 002b:00000000f544455c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  333.113314][T11910] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000800025c0
[  333.113321][T11910] RDX: 0000000000001006 RSI: 0000000000000000 RDI: 0000000000000000
[  333.113327][T11910] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  333.113332][T11910] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  333.113338][T11910] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  333.113351][T11910]  </TASK>
[  333.279628][T11912] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  333.452290][T11923] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1594'.
[  333.953784][ T6057] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  334.108945][ T6057] usb 7-1: config index 0 descriptor too short (expected 45, got 36)
[  334.112667][ T6057] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  334.118459][ T6057] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  334.131318][ T6057] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  334.133996][ T6059] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  334.150906][ T6057] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  334.305401][ T6059] usb 9-1: config index 0 descriptor too short (expected 45, got 36)
[  334.309302][ T6059] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  334.318703][ T6059] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  334.327056][ T6059] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  334.336053][ T6059] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  334.345772][ T6059] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  334.353380][ T6059] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  334.365760][ T6059] usb 9-1: config 0 descriptor??
[  334.377511][T11928] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  334.593710][ T6057] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  334.596548][ T6057] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  334.724164][   T40] audit: type=1326 audit(1757128668.280:692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11919 comm="syz.1.1593" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7fc00000
[  334.733463][   T40] audit: type=1326 audit(1757128668.280:693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11919 comm="syz.1.1593" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf702e579 code=0x7fc00000
[  334.787281][ T6057] usb 7-1: config 0 descriptor??
[  334.789400][T11926] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  334.803130][ T6059] plantronics 0003:047F:FFFF.000A: reserved main item tag 0xd
[  334.820684][ T6059] plantronics 0003:047F:FFFF.000A: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  335.205473][ T6057] plantronics 0003:047F:FFFF.000B: reserved main item tag 0xd
[  335.219568][ T6057] plantronics 0003:047F:FFFF.000B: hiddev1,hidraw2: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  335.306856][T11946] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  335.519534][   T40] audit: type=1326 audit(1757128669.050:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11945 comm="syz.0.1601" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  335.537455][   T40] audit: type=1326 audit(1757128669.050:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11945 comm="syz.0.1601" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  335.628077][   T40] audit: type=1326 audit(1757128669.060:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11945 comm="syz.0.1601" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  335.641418][   T40] audit: type=1326 audit(1757128669.060:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11945 comm="syz.0.1601" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  335.656088][   T40] audit: type=1326 audit(1757128669.060:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11945 comm="syz.0.1601" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  335.665170][   T40] audit: type=1326 audit(1757128669.060:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11945 comm="syz.0.1601" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  335.672075][   T40] audit: type=1326 audit(1757128669.060:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11945 comm="syz.0.1601" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  335.679108][   T40] audit: type=1326 audit(1757128669.060:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11945 comm="syz.0.1601" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  336.120252][   T34] usb 9-1: USB disconnect, device number 3
[  336.251950][T11971] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  336.392362][T11975] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  336.722644][ T1343] usb 7-1: USB disconnect, device number 14
[  336.725826][T11983] binder: 11982:11983 ioctl c0306201 80000040 returned -22
[  336.889111][T12000] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(9)
[  336.891263][T12000] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  336.899122][T12000] vhci_hcd vhci_hcd.0: Device attached
[  337.067724][T12001] vhci_hcd: connection closed
[  337.067979][ T1230] vhci_hcd: stop threads
[  337.070928][ T1230] vhci_hcd: release socket
[  337.072506][ T1230] vhci_hcd: disconnect device
[  337.235075][T12006] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  338.125494][T12031] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1626'.
[  339.284013][T12053] FAULT_INJECTION: forcing a failure.
[  339.284013][T12053] name fail_futex, interval 1, probability 0, space 0, times 1
[  339.296024][T12053] CPU: 2 UID: 0 PID: 12053 Comm: syz.2.1631 Not tainted syzkaller #0 PREEMPT(full) 
[  339.296039][T12053] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  339.296046][T12053] Call Trace:
[  339.296050][T12053]  <TASK>
[  339.296053][T12053]  dump_stack_lvl+0x16c/0x1f0
[  339.296072][T12053]  should_fail_ex+0x512/0x640
[  339.296090][T12053]  get_futex_key+0x293/0x1560
[  339.296103][T12053]  ? find_held_lock+0x2b/0x80
[  339.296114][T12053]  ? __pfx_get_futex_key+0x10/0x10
[  339.296126][T12053]  ? __mutex_trylock_common+0xe9/0x250
[  339.296143][T12053]  futex_wake+0xea/0x530
[  339.296164][T12053]  ? __pfx_futex_wake+0x10/0x10
[  339.296184][T12053]  do_futex+0x1e3/0x350
[  339.296197][T12053]  ? __pfx_do_futex+0x10/0x10
[  339.296209][T12053]  ? __might_fault+0xe3/0x190
[  339.296224][T12053]  mm_release+0x24e/0x300
[  339.296237][T12053]  do_exit+0x68e/0x2bf0
[  339.296254][T12053]  ? __pfx_do_exit+0x10/0x10
[  339.296267][T12053]  ? do_raw_spin_lock+0x12c/0x2b0
[  339.296282][T12053]  ? find_held_lock+0x2b/0x80
[  339.296294][T12053]  do_group_exit+0xd3/0x2a0
[  339.296310][T12053]  get_signal+0x2673/0x26d0
[  339.296323][T12053]  ? __sys_recvfrom+0x26c/0x310
[  339.296339][T12053]  ? __pfx___sys_recvfrom+0x10/0x10
[  339.296353][T12053]  ? __pfx_get_signal+0x10/0x10
[  339.296369][T12053]  arch_do_signal_or_restart+0x8f/0x790
[  339.296383][T12053]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  339.296400][T12053]  ? xfd_validate_state+0x61/0x180
[  339.296414][T12053]  ? __pfx_ksys_write+0x10/0x10
[  339.296429][T12053]  exit_to_user_mode_loop+0x84/0x110
[  339.296445][T12053]  __do_fast_syscall_32+0x2ac/0x3a0
[  339.296462][T12053]  do_fast_syscall_32+0x32/0x80
[  339.296477][T12053]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  339.296490][T12053] RIP: 0023:0xf70be579
[  339.296499][T12053] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  339.296509][T12053] RSP: 002b:00000000f546c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000173
[  339.296519][T12053] RAX: fffffffffffffe00 RBX: 000000000000000c RCX: 0000000080000080
[  339.296525][T12053] RDX: 00000000fffffd0b RSI: 0000000000000700 RDI: 0000000000000000
[  339.296531][T12053] RBP: 00000000fffffd25 R08: 0000000000000000 R09: 0000000000000000
[  339.296537][T12053] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  339.296543][T12053] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  339.296555][T12053]  </TASK>
[  340.399434][T12088] overlayfs: failed to clone upperpath
[  341.469526][T12103] delete_channel: no stack
[  342.027223][T12104] delete_channel: no stack
[  342.286854][T12115] overlayfs: failed to clone upperpath
[  342.392786][T12119] sg_write: data in/out 41084/1 bytes for SCSI command 0x1c-- guessing data in;
[  342.392786][T12119]    program syz.0.1656 not setting count and/or reply_len properly
[  343.723817][ T6040] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  343.976225][ T6040] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  343.984172][ T6040] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  343.990105][ T6040] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  343.993396][ T6040] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  344.056989][T12160] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  344.066851][   T40] kauditd_printk_skb: 32 callbacks suppressed
[  344.066865][   T40] audit: type=1326 audit(1757128677.620:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12153 comm="syz.0.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  344.088259][T12150] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  344.094110][ T6040] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  344.245901][T12161] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  344.247506][   T40] audit: type=1326 audit(1757128677.620:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12153 comm="syz.0.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  344.280789][   T40] audit: type=1326 audit(1757128677.620:736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12153 comm="syz.0.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  344.553906][   T40] audit: type=1326 audit(1757128677.620:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12153 comm="syz.0.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  344.560765][   T40] audit: type=1326 audit(1757128677.620:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12153 comm="syz.0.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  344.568990][   T40] audit: type=1326 audit(1757128677.620:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12153 comm="syz.0.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=459 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  344.576132][   T40] audit: type=1326 audit(1757128677.620:740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12153 comm="syz.0.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  344.586097][   T40] audit: type=1326 audit(1757128677.620:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12153 comm="syz.0.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  344.597563][ T5410] usb 7-1: USB disconnect, device number 15
[  344.602947][   T40] audit: type=1326 audit(1757128677.620:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12153 comm="syz.0.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  344.622683][   T40] audit: type=1326 audit(1757128677.620:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12153 comm="syz.0.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  346.583946][ T6057] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  346.736125][ T6057] usb 9-1: config index 0 descriptor too short (expected 45, got 36)
[  346.738862][ T6057] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  346.746457][ T6057] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  346.749901][ T6057] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  346.761085][ T6057] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  346.769565][ T6057] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  346.773028][ T6057] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  346.778883][ T6057] usb 9-1: config 0 descriptor??
[  346.781178][T12189] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  347.219036][ T6057] plantronics 0003:047F:FFFF.000C: reserved main item tag 0xd
[  347.349199][ T6057] plantronics 0003:047F:FFFF.000C: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  347.893037][T12220] lo speed is unknown, defaulting to 1000
[  348.425578][T12234] rdma_rxe: rxe_newlink: failed to add lo
[  348.436617][T12234] 8021q: adding VLAN 0 to HW filter on device bond0
[  348.441848][T12234] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  348.461867][ T6058] syz1: Port: 1 Link ACTIVE
[  348.803755][ T6058] usb 9-1: reset high-speed USB device number 4 using dummy_hcd
[  350.019469][T12260] rdma_rxe: rxe_newlink: failed to add lo
[  350.070127][T12260] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  350.533750][ T5410] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  350.715598][ T5410] usb 7-1: config index 0 descriptor too short (expected 45, got 36)
[  350.719493][ T5410] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  350.725682][ T5410] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  350.742943][ T5410] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  350.763942][ T5410] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  350.769588][ T5410] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  350.770114][T12281] rdma_rxe: rxe_newlink: failed to add syz_tun
[  350.773689][ T5410] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  350.799025][ T5410] usb 7-1: config 0 descriptor??
[  350.814469][T12270] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  351.249437][ T5410] plantronics 0003:047F:FFFF.000D: reserved main item tag 0xd
[  351.261964][   T40] kauditd_printk_skb: 38 callbacks suppressed
[  351.261981][   T40] audit: type=1800 audit(1757128684.810:782): pid=12286 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1707" name="SYSV00000000" dev="tmpfs" ino=2 res=0 errno=0
[  351.270498][ T5410] plantronics 0003:047F:FFFF.000D: hiddev1,hidraw2: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  351.314362][ T1343] usb 9-1: USB disconnect, device number 4
[  351.337221][T12281] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  351.366919][T12290] IPVS: set_ctl: invalid protocol: 208 172.20.20.170:20003
[  351.372465][T12290] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  351.439859][T12281] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  351.546727][T12281] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  351.735636][T12281] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  351.865375][   T12] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  351.872362][   T12] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  351.894969][   T12] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  351.927539][   T13] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  352.119576][T12302] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  352.283556][T12311] rdma_rxe: rxe_newlink: failed to add lo
[  353.898096][ T6040] usb 7-1: USB disconnect, device number 16
[  354.239666][T12364] batman_adv: batadv0: Adding interface: vlan1
[  354.242632][T12364] batman_adv: batadv0: The MTU of interface vlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  354.257921][T12364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  354.263076][T12364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  354.269358][T12364] batman_adv: batadv0: Interface activated: vlan1
[  355.938346][T12416] block nbd4: Send control failed (result -22)
[  355.940802][T12416] block nbd4: Request send failed, requeueing
[  355.947271][ T6088] block nbd4: Dead connection, failed to find a fallback
[  355.950588][ T6088] block nbd4: shutting down sockets
[  355.953034][ T6088] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 2
[  356.273741][ T5410] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  356.425252][ T5410] usb 9-1: config index 0 descriptor too short (expected 45, got 36)
[  356.428714][ T5410] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  356.434012][ T5410] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  356.438623][ T5410] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  356.442854][ T5410] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  356.448673][ T5410] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  356.452301][ T5410] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.461499][ T5410] usb 9-1: config 0 descriptor??
[  356.483932][T12427] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  356.904963][ T5410] plantronics 0003:047F:FFFF.000E: reserved main item tag 0xd
[  356.910185][ T5410] plantronics 0003:047F:FFFF.000E: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  357.034025][ T6059] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  357.091313][T12447] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1765'.
[  357.228634][ T6059] usb 5-1: config index 0 descriptor too short (expected 45, got 36)
[  357.232447][ T6059] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  357.388669][ T6059] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  357.392963][ T6059] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  357.398440][ T6059] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  357.403989][ T6059] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  357.407808][ T6059] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  357.421057][ T6059] usb 5-1: config 0 descriptor??
[  357.424204][T12437] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  357.948021][ T6059] plantronics 0003:047F:FFFF.000F: reserved main item tag 0xd
[  358.077182][ T6059] plantronics 0003:047F:FFFF.000F: hiddev1,hidraw2: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  358.254097][ T6059] usb 9-1: reset high-speed USB device number 5 using dummy_hcd
[  358.913381][T12467] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1773'.
[  358.917651][T12466] dvmrp0: entered allmulticast mode
[  359.027351][T12471] binder: BINDER_SET_CONTEXT_MGR already set
[  359.031031][T12471] binder: 12470:12471 ioctl 4018620d 800002c0 returned -16
[  359.453407][   T40] audit: type=1326 audit(1757128693.000:783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12480 comm="syz.1.1780" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x0
[  359.802743][   T59] usb 5-1: USB disconnect, device number 13
[  360.785311][T12492] netlink: 'syz.1.1782': attribute type 40 has an invalid length.
[  360.917493][T12489] lo speed is unknown, defaulting to 1000
[  361.802500][ T6040] usb 9-1: USB disconnect, device number 5
[  362.153013][T12511] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  362.328659][T12528] orangefs_devreq_open: device cannot be opened in blocking mode
[  362.343998][   T40] audit: type=1326 audit(1757128695.900:784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12513 comm="syz.0.1789" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  362.356391][T12519] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  362.359028][   T40] audit: type=1326 audit(1757128695.900:785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12513 comm="syz.0.1789" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  362.386478][T12530] dvmrp0: left allmulticast mode
[  362.406254][   T40] audit: type=1326 audit(1757128695.900:786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12513 comm="syz.0.1789" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  362.413246][   T40] audit: type=1326 audit(1757128695.900:787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12513 comm="syz.0.1789" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  362.427965][   T40] audit: type=1326 audit(1757128695.900:788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12513 comm="syz.0.1789" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  362.437581][   T40] audit: type=1326 audit(1757128695.900:789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12513 comm="syz.0.1789" exe="/syz-executor" sig=0 arch=40000003 syscall=459 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  362.446228][   T40] audit: type=1326 audit(1757128695.900:790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12513 comm="syz.0.1789" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  362.456151][   T40] audit: type=1326 audit(1757128695.900:791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12513 comm="syz.0.1789" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  362.465209][   T40] audit: type=1326 audit(1757128695.900:792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12513 comm="syz.0.1789" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  362.510407][T12536] rdma_rxe: rxe_newlink: failed to add lo
[  362.559387][T12533] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  362.595573][T12532] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  363.850261][T12569] bridge_slave_0: left allmulticast mode
[  363.852921][T12569] bridge_slave_0: left promiscuous mode
[  363.855344][T12569] bridge0: port 1(bridge_slave_0) entered disabled state
[  363.869207][T12569] bridge_slave_1: left allmulticast mode
[  363.871188][T12569] bridge_slave_1: left promiscuous mode
[  363.876320][T12569] bridge0: port 2(bridge_slave_1) entered disabled state
[  363.897264][T12569] bond0: (slave bond_slave_0): Releasing backup interface
[  363.912971][T12569] bond0: (slave bond_slave_1): Releasing backup interface
[  363.960176][T12569] team0: Port device team_slave_0 removed
[  363.973228][T12569] team0: Port device team_slave_1 removed
[  363.977558][T12569] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  363.980063][T12569] batman_adv: batadv0: Removing interface: batadv_slave_0
[  364.007406][T12569] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  364.014362][T12569] batman_adv: batadv0: Removing interface: batadv_slave_1
[  364.062594][T12569] veth3: left allmulticast mode
[  364.103954][T12569] veth3: left promiscuous mode
[  364.106251][T12569] bridge1: port 1(veth3) entered disabled state
[  364.126932][T12569] vlan2: left promiscuous mode
[  364.129204][T12569] veth0_to_hsr: left promiscuous mode
[  364.131993][T12569] bridge1: port 2(vlan2) entered disabled state
[  364.151589][T12569] batman_adv: batadv0: Interface deactivated: vlan1
[  364.159941][T12569] batman_adv: batadv0: Removing interface: vlan1
[  364.172565][T12579] overlayfs: failed to clone upperpath
[  364.192010][T12570] team0: Mode changed to "broadcast"
[  364.196051][T12574] tipc: Enabled bearer <eth:team0>, priority 0
[  364.206958][T12572] veth0_vlan: left promiscuous mode
[  364.209645][T12572] vlan0: entered promiscuous mode
[  364.211981][T12572] veth0_vlan: entered promiscuous mode
[  364.229434][T12572] team0: Port device vlan0 added
[  365.206025][   T34] tipc: Node number set to 4243357679
[  365.913225][T12611] rdma_rxe: rxe_newlink: failed to add syz_tun
[  366.274116][T10257] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  366.367454][T12625] input: syz1 as /devices/virtual/input/input32
[  366.446038][T10257] usb 7-1: config index 0 descriptor too short (expected 45, got 36)
[  366.449585][T10257] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  366.454473][T10257] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  366.477637][T10257] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  366.482481][T10257] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  366.534027][ T1343] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  366.536449][T10257] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  366.540000][T10257] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  366.545884][T10257] usb 7-1: config 0 descriptor??
[  366.548134][T12614] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  366.674575][ T1343] usb 5-1: device descriptor read/64, error -71
[  366.933796][ T1343] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  366.954800][T10257] plantronics 0003:047F:FFFF.0010: reserved main item tag 0xd
[  366.960290][T10257] plantronics 0003:047F:FFFF.0010: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  367.075747][ T1343] usb 5-1: device descriptor read/64, error -71
[  367.186150][ T1343] usb usb5-port1: attempt power cycle
[  367.543801][ T1343] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  367.564403][ T1343] usb 5-1: device descriptor read/8, error -71
[  367.822161][ T1343] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  367.856494][ T1343] usb 5-1: device descriptor read/8, error -71
[  367.967398][ T1343] usb usb5-port1: unable to enumerate USB device
[  368.284732][T12657] Mount JFS Failure: -22
[  368.286581][T12657] jfs_mount failed w/return code = -22
[  368.423847][  T840] usb 7-1: reset high-speed USB device number 17 using dummy_hcd
[  369.627270][   T34] usb 7-1: USB disconnect, device number 17
[  369.820542][T12669] rdma_rxe: rxe_newlink: failed to add syz_tun
[  370.290496][T12671] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  370.334734][T12669] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1834'.
[  370.348778][T12671] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  370.400947][T12671] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  370.413833][T10257] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  370.459737][T12671] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  370.541593][   T61] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  370.555455][   T61] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  370.565633][T10257] usb 7-1: config index 0 descriptor too short (expected 45, got 36)
[  370.570258][   T61] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  370.577345][T10257] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  370.588743][   T12] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  370.593927][T10257] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  370.597359][T10257] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  370.601951][T10257] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  370.609447][T10257] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  370.613032][T10257] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  370.617224][T10257] usb 7-1: config 0 descriptor??
[  370.620090][T12672] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  370.822484][T12689] syz0: rxe_newlink: already configured on lo
[  370.852250][T12689] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  370.868895][T12692] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1842'.
[  370.872601][ T8056] lo speed is unknown, defaulting to 1000
[  370.936149][T12696] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1844'.
[  371.055364][T10257] plantronics 0003:047F:FFFF.0011: reserved main item tag 0xd
[  371.074189][T10257] plantronics 0003:047F:FFFF.0011: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  371.203810][ T8056] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  371.395837][ T8056] usb 9-1: config index 0 descriptor too short (expected 45, got 36)
[  371.399128][ T8056] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  371.405402][ T8056] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  371.410152][ T8056] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  371.416556][ T8056] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  371.422096][ T8056] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  371.426669][ T8056] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  371.431972][ T8056] usb 9-1: config 0 descriptor??
[  371.435134][T12698] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  371.588510][T12708] rdma_rxe: rxe_newlink: failed to add syz_tun
[  371.926635][ T8056] plantronics 0003:047F:FFFF.0012: reserved main item tag 0xd
[  371.936066][ T8056] plantronics 0003:047F:FFFF.0012: hiddev1,hidraw2: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  371.983601][T12709] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.036646][T12708] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1847'.
[  372.062034][T12709] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.119796][T12709] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.225112][T12709] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.360407][   T12] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  372.374819][   T12] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  372.382703][   T12] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  372.391813][   T12] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  372.513782][T10257] usb 7-1: reset high-speed USB device number 18 using dummy_hcd
[  372.566799][T12722] rdma_rxe: rxe_newlink: failed to add lo
[  372.592244][T12722] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  372.986978][ T6058] usb 9-1: USB disconnect, device number 6
[  373.889747][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  373.889761][   T40] audit: type=1326 audit(1757128707.440:795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12744 comm="syz.4.1857" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  373.913015][T12749] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  373.943718][   T40] audit: type=1326 audit(1757128707.440:796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12744 comm="syz.4.1857" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  373.950450][   T40] audit: type=1326 audit(1757128707.460:797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12744 comm="syz.4.1857" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  373.960712][   T40] audit: type=1326 audit(1757128707.460:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12744 comm="syz.4.1857" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  373.968339][   T40] audit: type=1326 audit(1757128707.460:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12744 comm="syz.4.1857" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  373.976644][   T40] audit: type=1326 audit(1757128707.460:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12744 comm="syz.4.1857" exe="/syz-executor" sig=0 arch=40000003 syscall=459 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  373.985258][   T40] audit: type=1326 audit(1757128707.460:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12744 comm="syz.4.1857" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  373.992447][   T40] audit: type=1326 audit(1757128707.460:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12744 comm="syz.4.1857" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  374.000695][   T40] audit: type=1326 audit(1757128707.460:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12744 comm="syz.4.1857" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  374.009849][   T40] audit: type=1326 audit(1757128707.460:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12744 comm="syz.4.1857" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  374.399185][T12751] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  374.554555][ T1343] usb 7-1: USB disconnect, device number 18
[  374.583873][T12756] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  374.943755][ T6060] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  375.097898][ T6060] usb 9-1: config index 0 descriptor too short (expected 45, got 36)
[  375.101036][ T6060] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  375.113714][ T6060] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  375.117264][ T6060] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  375.121253][ T6060] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  375.125930][ T6060] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  375.128899][ T6060] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  375.132791][ T6060] usb 9-1: config 0 descriptor??
[  375.135875][T12768] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  375.577105][ T6060] plantronics 0003:047F:FFFF.0013: reserved main item tag 0xd
[  375.592410][ T6060] plantronics 0003:047F:FFFF.0013: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  375.733354][T12779] rdma_rxe: rxe_newlink: failed to add syz_tun
[  376.099303][T12784] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.148539][T12788] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1868'.
[  376.182686][T12784] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.269933][T12784] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.315488][T12792] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  376.334565][T12784] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.416420][   T13] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  376.429332][   T13] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  376.436730][   T13] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  376.443602][   T13] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  376.913987][ T6059] usb 9-1: reset high-speed USB device number 7 using dummy_hcd
[  376.955814][T12809] 9p: Unknown Cache mode or invalid value 0file1
[  377.238977][T12816] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1879'.
[  377.433808][ T6040] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  377.599720][ T6040] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  377.618454][ T6040] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  377.657571][ T6040] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  377.688740][ T6040] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  377.717800][T12814] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  377.734271][ T6040] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  378.050107][T12825] usb 5-1: USB disconnect, device number 18
[  378.106494][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  378.108581][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  378.758508][T12827] netlink: 'syz.4.1881': attribute type 10 has an invalid length.
[  378.764640][T12827] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  378.860124][T12831] FAULT_INJECTION: forcing a failure.
[  378.860124][T12831] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  378.864436][T12831] CPU: 3 UID: 0 PID: 12831 Comm: syz.4.1883 Not tainted syzkaller #0 PREEMPT(full) 
[  378.864452][T12831] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  378.864459][T12831] Call Trace:
[  378.864463][T12831]  <TASK>
[  378.864467][T12831]  dump_stack_lvl+0x16c/0x1f0
[  378.864487][T12831]  should_fail_ex+0x512/0x640
[  378.864506][T12831]  _copy_to_user+0x32/0xd0
[  378.864519][T12831]  simple_read_from_buffer+0xcb/0x170
[  378.864531][T12831]  proc_fail_nth_read+0x197/0x240
[  378.864544][T12831]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  378.864556][T12831]  ? rw_verify_area+0xcf/0x6c0
[  378.864566][T12831]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  378.864577][T12831]  vfs_read+0x1e1/0xcf0
[  378.864592][T12831]  ? __pfx_vfs_read+0x10/0x10
[  378.864602][T12831]  ? find_held_lock+0x2b/0x80
[  378.864616][T12831]  ? __fget_files+0x20e/0x3c0
[  378.864627][T12831]  ? handle_mm_fault+0x1c0/0xd10
[  378.864642][T12831]  ksys_read+0x12a/0x250
[  378.864653][T12831]  ? __pfx_ksys_read+0x10/0x10
[  378.864666][T12831]  ? rcu_is_watching+0x12/0xc0
[  378.864679][T12831]  __do_fast_syscall_32+0x7c/0x3a0
[  378.864696][T12831]  do_fast_syscall_32+0x32/0x80
[  378.864711][T12831]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  378.864724][T12831] RIP: 0023:0xf7fd1579
[  378.864733][T12831] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  378.864755][T12831] RSP: 002b:00000000f54e6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  378.864766][T12831] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f54e6620
[  378.864772][T12831] RDX: 000000000000000f RSI: 00000000f7464ff4 RDI: 0000000000000000
[  378.864778][T12831] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  378.864784][T12831] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  378.864790][T12831] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  378.864803][T12831]  </TASK>
[  379.052365][   T40] kauditd_printk_skb: 58 callbacks suppressed
[  379.052381][   T40] audit: type=1326 audit(1757128712.600:863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12828 comm="syz.0.1882" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  379.074070][   T40] audit: type=1326 audit(1757128712.600:864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12828 comm="syz.0.1882" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  379.075481][T12836] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  379.082110][   T40] audit: type=1326 audit(1757128712.620:865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12828 comm="syz.0.1882" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  379.082162][   T40] audit: type=1326 audit(1757128712.620:866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12828 comm="syz.0.1882" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  379.101061][   T40] audit: type=1326 audit(1757128712.620:867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12828 comm="syz.0.1882" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  379.110230][   T40] audit: type=1326 audit(1757128712.620:868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12828 comm="syz.0.1882" exe="/syz-executor" sig=0 arch=40000003 syscall=459 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  379.121998][   T40] audit: type=1326 audit(1757128712.620:869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12828 comm="syz.0.1882" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  379.129552][   T40] audit: type=1326 audit(1757128712.620:870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12828 comm="syz.0.1882" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  379.138597][   T40] audit: type=1326 audit(1757128712.630:871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12828 comm="syz.0.1882" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  379.146863][   T40] audit: type=1326 audit(1757128712.630:872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12828 comm="syz.0.1882" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  379.423749][ T1343] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  379.434007][ T6059] usb 9-1: device descriptor read/64, error -71
[  379.587954][ T1343] usb 7-1: config index 0 descriptor too short (expected 45, got 36)
[  379.591939][ T1343] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  379.598781][ T1343] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  379.603594][ T1343] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  379.619637][ T1343] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  379.625911][ T1343] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  379.629780][ T1343] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  379.673824][ T6059] usb 9-1: reset high-speed USB device number 7 using dummy_hcd
[  379.679672][ T1343] usb 7-1: config 0 descriptor??
[  379.693958][T12841] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  379.828121][ T6059] usb 9-1: device firmware changed
[  379.834921][   T59] usb 9-1: USB disconnect, device number 7
[  379.983884][   T59] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  380.115960][ T1343] plantronics 0003:047F:FFFF.0014: reserved main item tag 0xd
[  380.123097][ T1343] plantronics 0003:047F:FFFF.0014: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  380.138683][   T59] usb 9-1: config index 0 descriptor too short (expected 2084, got 36)
[  380.146955][   T59] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  380.150046][   T59] usb 9-1: New USB device found, idVendor=0079, idProduct=0006, bcdDevice= 0.00
[  380.153260][   T59] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  380.183227][   T59] usb 9-1: config 0 descriptor??
[  380.189769][   T59] usbhid 9-1:0.0: couldn't find an input interrupt endpoint
[  380.393338][   T59] kernel write not supported for file [eventfd] (pid: 59 comm: kworker/2:1)
[  380.401371][ T6060] usb 9-1: USB disconnect, device number 8
[  380.421923][T12855] tipc: Enabled bearer <eth:caif0>, priority 10
[  380.953868][T12863] comedi comedi0: rti802: I/O port conflict (0x8,4)
[  381.503823][T10257] usb 7-1: reset high-speed USB device number 19 using dummy_hcd
[  381.553903][ T6060] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  381.727489][ T6060] usb 5-1: config index 0 descriptor too short (expected 45, got 36)
[  381.731012][ T6060] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  381.736561][ T6060] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  381.741688][ T6060] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  381.747991][ T6060] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  381.753409][ T6060] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  381.763534][ T6060] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  381.774712][ T6060] usb 5-1: config 0 descriptor??
[  381.780386][T12873] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  381.979815][T12884] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1899'.
[  382.188227][ T6060] plantronics 0003:047F:FFFF.0015: reserved main item tag 0xd
[  382.196811][ T6060] plantronics 0003:047F:FFFF.0015: hiddev1,hidraw2: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  382.465519][T12892] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  382.470342][T12892] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  382.480595][T12892] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  382.513225][T12892] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  382.531389][T12892] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  382.571116][   T12] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  382.594965][ T5986] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  382.613731][ T5986] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  382.626258][ T5986] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  382.629470][ T5986] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  382.633484][ T5986] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  382.675394][   T12] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  382.763413][   T12] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  382.864246][   T12] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  382.882498][T12890] lo speed is unknown, defaulting to 1000
[  383.844102][   T12] bond0 (unregistering): (slave 
3
0
): Releasing backup interface
[  383.851498][ T1343] usb 7-1: USB disconnect, device number 19
[  383.851708][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  383.868209][   T12] bond0 (unregistering): (slave macvlan0): Releasing backup interface
[  383.877487][   T12] bond0 (unregistering): Released all slaves
[  384.010290][ T8056] usb 5-1: USB disconnect, device number 19
[  384.012639][   T12] bond1 (unregistering): Released all slaves
[  384.109532][   T12] tipc: Left network mode
[  384.280577][T12890] chnl_net:caif_netlink_parms(): no params data found
[  384.305749][T12913] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  384.619470][T12890] bridge0: port 1(bridge_slave_0) entered blocking state
[  384.623288][T12890] bridge0: port 1(bridge_slave_0) entered disabled state
[  384.629994][T12890] bridge_slave_0: entered allmulticast mode
[  384.637152][T12890] bridge_slave_0: entered promiscuous mode
[  384.642937][T12890] bridge0: port 2(bridge_slave_1) entered blocking state
[  384.648369][T12890] bridge0: port 2(bridge_slave_1) entered disabled state
[  384.651597][T12890] bridge_slave_1: entered allmulticast mode
[  384.653878][T12892] Bluetooth: hci2: command tx timeout
[  384.655217][T12890] bridge_slave_1: entered promiscuous mode
[  384.808762][T12890] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  384.830303][T12890] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  384.901308][T12890] team0: Port device team_slave_0 added
[  384.914513][T12890] team0: Port device team_slave_1 added
[  385.057999][   T12] hsr_slave_0: left promiscuous mode
[  385.062634][   T12] hsr_slave_1: left promiscuous mode
[  385.066845][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  385.071880][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  385.080551][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  385.085792][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  385.130807][   T12] veth1_macvtap: left promiscuous mode
[  385.133434][   T12] veth0_macvtap: left promiscuous mode
[  385.138579][   T12] veth1_vlan: left promiscuous mode
[  385.141063][   T12] veth0_vlan: left promiscuous mode
[  385.351190][T12928] syz1: rxe_newlink: already configured on syz_tun
[  385.643544][T12928] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1910'.
[  386.162695][   T12] team0 (unregistering): Port device team_slave_1 removed
[  386.212784][   T12] team0 (unregistering): Port device team_slave_0 removed
[  386.734684][T12892] Bluetooth: hci2: command tx timeout
[  386.832308][T12890] batman_adv: batadv0: Adding interface: batadv_slave_0
[  386.835505][T12890] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  386.846611][T12890] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  386.860806][T12931] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  386.887390][T12890] batman_adv: batadv0: Adding interface: batadv_slave_1
[  386.889720][T12890] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  386.900106][T12890] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  386.987484][T12931] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  387.001314][T12890] hsr_slave_0: entered promiscuous mode
[  387.003967][T12890] hsr_slave_1: entered promiscuous mode
[  387.006378][T12890] debugfs: 'hsr0' already exists in 'hsr'
[  387.008335][T12890] Cannot create hsr debugfs directory
[  387.016521][T12941] gtp0: entered promiscuous mode
[  387.026028][T12941] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1914'.
[  387.056435][T12943] syz0: rxe_newlink: already configured on lo
[  387.057111][T12931] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  387.072073][T12943] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  387.165541][T12931] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  387.189232][   T12] IPVS: stop unused estimator thread 0...
[  387.390510][ T1230] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  387.478897][   T61] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  387.531477][ T1230] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  387.539107][ T1230] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  387.737099][T12890] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  387.747955][T12890] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  387.766381][T12890] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  387.777054][T12890] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  387.785958][   T40] kauditd_printk_skb: 8 callbacks suppressed
[  387.785971][   T40] audit: type=1326 audit(1757128721.340:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12955 comm="syz.2.1919" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  387.797949][T12960] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  387.802921][   T40] audit: type=1326 audit(1757128721.340:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12955 comm="syz.2.1919" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  387.832091][   T40] audit: type=1326 audit(1757128721.350:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12955 comm="syz.2.1919" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf70be579 code=0x7ffc0000
[  387.853351][   T40] audit: type=1326 audit(1757128721.350:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12955 comm="syz.2.1919" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  387.874164][   T40] audit: type=1326 audit(1757128721.350:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12955 comm="syz.2.1919" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  387.901554][   T40] audit: type=1326 audit(1757128721.350:886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12955 comm="syz.2.1919" exe="/syz-executor" sig=0 arch=40000003 syscall=459 compat=1 ip=0xf70be579 code=0x7ffc0000
[  387.924914][   T40] audit: type=1326 audit(1757128721.350:887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12955 comm="syz.2.1919" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  387.946624][   T40] audit: type=1326 audit(1757128721.350:888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12955 comm="syz.2.1919" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  387.966969][T12890] 8021q: adding VLAN 0 to HW filter on device bond0
[  387.969942][   T40] audit: type=1326 audit(1757128721.350:889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12955 comm="syz.2.1919" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70be579 code=0x7ffc0000
[  388.041057][   T40] audit: type=1326 audit(1757128721.350:890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12955 comm="syz.2.1919" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  388.049468][T12890] 8021q: adding VLAN 0 to HW filter on device team0
[  388.069689][   T61] bridge0: port 1(bridge_slave_0) entered blocking state
[  388.072130][   T61] bridge0: port 1(bridge_slave_0) entered forwarding state
[  388.090246][   T61] bridge0: port 2(bridge_slave_1) entered blocking state
[  388.092473][   T61] bridge0: port 2(bridge_slave_1) entered forwarding state
[  388.178237][T12968] bridge0: port 2(bridge_slave_1) entered disabled state
[  388.182015][T12968] bridge0: port 1(bridge_slave_0) entered disabled state
[  388.303515][T12968] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  388.326823][T12968] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  388.462381][T12890] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  388.463833][ T6057] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  388.484196][T12890] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  388.504882][ T6060] lo speed is unknown, defaulting to 1000
[  388.506761][ T6060] syz0: Port: 1 Link DOWN
[  388.508188][ T6060] lo speed is unknown, defaulting to 1000
[  388.510464][   T12] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  388.514536][   T12] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  388.517034][   T12] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  388.519608][   T12] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  388.613823][ T6057] usb 9-1: Using ep0 maxpacket: 8
[  388.619514][ T6057] usb 9-1: unable to get BOS descriptor or descriptor too short
[  388.623555][ T6057] usb 9-1: config 4 interface 0 has no altsetting 0
[  388.631316][ T6057] usb 9-1: string descriptor 0 read error: -22
[  388.642186][ T6057] usb 9-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  388.646846][ T6057] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  388.662946][T12890] 8021q: adding VLAN 0 to HW filter on device batadv0
[  388.668154][ T6057] usb 9-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  388.672357][ T6057] usb 9-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  388.675843][ T6057] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  388.678854][ T6057] usb 9-1: media controller created
[  388.688573][ T6057] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  388.692659][T12890] veth0_vlan: entered promiscuous mode
[  388.700121][T12890] veth1_vlan: entered promiscuous mode
[  388.720924][T12890] veth0_macvtap: entered promiscuous mode
[  388.727100][T12890] veth1_macvtap: entered promiscuous mode
[  388.742360][T12890] batman_adv: batadv0: Interface activated: batadv_slave_0
[  388.750634][T12890] batman_adv: batadv0: Interface activated: batadv_slave_1
[  388.761562][ T1230] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  388.765093][ T1230] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  388.768309][ T1230] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  388.771418][ T1230] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  388.813783][T12892] Bluetooth: hci2: command tx timeout
[  388.818319][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  388.821375][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  388.836158][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  388.838734][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  388.904415][ T6057] zl10353_read_register: readreg error (reg=127, ret==0)
[  388.924161][ T6057] usb 9-1: USB disconnect, device number 9
[  389.098635][T12983] rdma_rxe: rxe_newlink: failed to add syz_tun
[  389.259865][T12983] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  389.309158][T12984] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1922'.
[  389.331373][T12983] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  389.429246][T12983] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  389.499039][T12983] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  389.606015][   T12] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  389.613535][   T12] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  389.680466][ T1230] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  389.690839][   T61] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  390.073716][  T840] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  390.202875][T13005] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1927'.
[  390.235169][  T840] usb 5-1: config index 0 descriptor too short (expected 45, got 36)
[  390.238171][  T840] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  390.241895][  T840] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  390.245464][  T840] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  390.249047][  T840] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  390.253222][  T840] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  390.264062][  T840] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  390.270523][  T840] usb 5-1: config 0 descriptor??
[  390.274857][T12994] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  390.782777][  T840] plantronics 0003:047F:FFFF.0016: reserved main item tag 0xd
[  390.788749][  T840] plantronics 0003:047F:FFFF.0016: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  391.143832][T12892] Bluetooth: hci2: command tx timeout
[  391.859638][T13023] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  392.123954][ T6057] usb 5-1: reset high-speed USB device number 20 using dummy_hcd
[  392.485242][T13043] rdma_rxe: rxe_newlink: failed to add syz_tun
[  392.634021][ T1343] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  392.671780][T13044] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1939'.
[  392.682930][T13043] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  392.808547][ T1343] usb 9-1: config index 0 descriptor too short (expected 45, got 36)
[  392.811150][ T1343] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  392.815966][ T1343] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  392.819486][ T1343] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  392.823023][ T1343] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  392.832677][ T1343] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  392.835876][ T1343] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  392.839655][ T1343] usb 9-1: config 0 descriptor??
[  392.842807][T13043] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  392.850517][T13037] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  392.904318][T13054] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1941'.
[  392.955503][ T8056] usb 5-1: USB disconnect, device number 20
[  392.980584][T13043] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  393.095145][T13043] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  393.270467][ T1343] plantronics 0003:047F:FFFF.0017: reserved main item tag 0xd
[  393.276745][ T1343] plantronics 0003:047F:FFFF.0017: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  393.295559][   T13] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  393.303312][ T1254] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  393.310889][ T1254] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  393.339453][ T1254] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  393.354207][T13057] rdma_rxe: rxe_newlink: failed to add syz_tun
[  393.664859][T13060] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  393.693306][T13057] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1942'.
[  393.738919][T13060] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  393.799309][T13060] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  393.910446][T13060] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.149338][ T1140] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  394.256841][ T1230] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  394.314457][   T13] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  394.432380][ T1254] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  394.483726][   T34] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  394.643779][ T1343] usb 9-1: reset high-speed USB device number 10 using dummy_hcd
[  394.645678][   T34] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  394.655483][   T34] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  394.659812][   T34] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  394.676292][   T34] usb 6-1: Product: syz
[  394.696714][   T34] usb 6-1: Manufacturer: syz
[  394.698811][   T34] usb 6-1: SerialNumber: syz
[  394.952486][T13072] AppArmor: change_hat: Invalid input 'Ûâ&b00-:'
[  395.160806][   T34] cdc_ncm 6-1:1.0: bind() failure
[  395.176183][   T34] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[  395.178331][   T34] cdc_ncm 6-1:1.1: bind() failure
[  395.181760][   T34] usb 6-1: USB disconnect, device number 6
[  395.474920][T10257] usb 9-1: USB disconnect, device number 10
[  395.582673][T13083] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1946'.
[  395.589344][T13087] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1948'.
[  396.204697][T13097] rdma_rxe: rxe_newlink: failed to add syz_tun
[  396.273795][   T59] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  396.411391][T13100] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  396.460802][T13103] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1951'.
[  396.477481][T13100] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  396.552073][T13100] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  396.572670][   T59] usb 5-1: config index 0 descriptor too short (expected 45, got 36)
[  396.610273][T13100] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  396.928773][   T59] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  396.932378][   T59] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  397.241565][   T59] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  397.247958][   T59] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  397.251981][   T59] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  397.254863][   T59] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  397.258606][   T59] usb 5-1: config 0 descriptor??
[  397.260760][T13095] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  397.291476][T13107] syz0: rxe_newlink: already configured on lo
[  397.312040][T13107] 8021q: adding VLAN 0 to HW filter on device bond0
[  397.315360][T13107] 8021q: adding VLAN 0 to HW filter on device team0
[  397.321526][T13107] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  397.327898][ T8056] lo speed is unknown, defaulting to 1000
[  397.329892][ T8056] syz0: Port: 1 Link ACTIVE
[  397.331512][ T8056] lo speed is unknown, defaulting to 1000
[  397.671488][   T59] plantronics 0003:047F:FFFF.0018: reserved main item tag 0xd
[  397.676794][   T59] plantronics 0003:047F:FFFF.0018: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  398.686704][T13120] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1957'.
[  398.710982][   T13] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  398.713770][T13120] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1957'.
[  398.846715][ T1140] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  398.876376][ T1140] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  398.917549][ T1140] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  398.965921][ T1140] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  398.975623][ T1140] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  398.994638][ T1140] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  399.006524][ T1140] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  399.113765][ T5410] usb 5-1: reset high-speed USB device number 21 using dummy_hcd
[  399.677843][T13133] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  400.331243][   T40] kauditd_printk_skb: 20 callbacks suppressed
[  400.331255][   T40] audit: type=1326 audit(1757128733.230:911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13130 comm="syz.4.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  400.340012][   T40] audit: type=1326 audit(1757128733.230:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13130 comm="syz.4.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  400.353698][   T40] audit: type=1326 audit(1757128733.230:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13130 comm="syz.4.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  400.369131][   T40] audit: type=1326 audit(1757128733.230:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13130 comm="syz.4.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  400.375948][   T40] audit: type=1326 audit(1757128733.230:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13130 comm="syz.4.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  400.382631][   T40] audit: type=1326 audit(1757128733.340:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13130 comm="syz.4.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=306 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  400.389368][   T40] audit: type=1326 audit(1757128733.340:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13130 comm="syz.4.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  400.396498][   T40] audit: type=1326 audit(1757128733.340:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13130 comm="syz.4.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  400.403102][   T40] audit: type=1326 audit(1757128733.340:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13130 comm="syz.4.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  400.414038][   T40] audit: type=1326 audit(1757128733.360:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13130 comm="syz.4.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000
[  400.952211][T13162] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  401.023764][ T6057] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  401.235098][ T6057] usb 6-1: config index 0 descriptor too short (expected 45, got 36)
[  401.237658][ T6057] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  401.241201][ T6057] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  401.244891][ T6057] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  401.248398][ T6057] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  401.252484][ T6057] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  401.255750][ T6057] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  401.259917][ T6057] usb 6-1: config 0 descriptor??
[  401.263279][T13155] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  401.266884][ T6060] usb 5-1: USB disconnect, device number 21
[  401.684472][ T6057] plantronics 0003:047F:FFFF.0019: reserved main item tag 0xd
[  401.784234][ T6057] plantronics 0003:047F:FFFF.0019: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  402.929233][T13174] rdma_rxe: rxe_newlink: failed to add lo
[  402.933262][T13173] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  402.940876][T13174] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  403.143723][ T6057] usb 6-1: reset high-speed USB device number 7 using dummy_hcd
[  404.934510][ T6057] usb 6-1: device descriptor read/64, error -71
[  405.187320][ T6057] usb 6-1: reset high-speed USB device number 7 using dummy_hcd
[  405.215309][T13206] rdma_rxe: rxe_newlink: failed to add lo
[  405.230143][T13206] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  405.307711][T13208] FAULT_INJECTION: forcing a failure.
[  405.307711][T13208] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  405.311809][T13208] CPU: 1 UID: 0 PID: 13208 Comm: syz.0.1981 Not tainted syzkaller #0 PREEMPT(full) 
[  405.311823][T13208] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  405.311830][T13208] Call Trace:
[  405.311835][T13208]  <TASK>
[  405.311839][T13208]  dump_stack_lvl+0x16c/0x1f0
[  405.311858][T13208]  should_fail_ex+0x512/0x640
[  405.311877][T13208]  _copy_to_user+0x32/0xd0
[  405.311890][T13208]  simple_read_from_buffer+0xcb/0x170
[  405.311903][T13208]  proc_fail_nth_read+0x197/0x240
[  405.311915][T13208]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  405.311927][T13208]  ? rw_verify_area+0xcf/0x6c0
[  405.311938][T13208]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  405.311949][T13208]  vfs_read+0x1e1/0xcf0
[  405.311963][T13208]  ? __pfx_vfs_read+0x10/0x10
[  405.311973][T13208]  ? find_held_lock+0x2b/0x80
[  405.311988][T13208]  ? __fget_files+0x20e/0x3c0
[  405.312003][T13208]  ksys_read+0x12a/0x250
[  405.312014][T13208]  ? __pfx_ksys_read+0x10/0x10
[  405.312027][T13208]  ? rcu_is_watching+0x12/0xc0
[  405.312040][T13208]  __do_fast_syscall_32+0x7c/0x3a0
[  405.312057][T13208]  do_fast_syscall_32+0x32/0x80
[  405.312072][T13208]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  405.312086][T13208] RIP: 0023:0xf7f74579
[  405.312094][T13208] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  405.312104][T13208] RSP: 002b:00000000f5486590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  405.312115][T13208] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5486620
[  405.312121][T13208] RDX: 000000000000000f RSI: 00000000f7404ff4 RDI: 0000000000000000
[  405.312128][T13208] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  405.312137][T13208] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  405.312143][T13208] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  405.312156][T13208]  </TASK>
[  405.394909][T13197] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  405.697333][T13212] 9pnet_virtio: no channels available for device €
[  406.607212][T13226] rdma_rxe: rxe_newlink: failed to add syz_tun
[  406.718764][   T59] usb 6-1: USB disconnect, device number 7
[  406.920039][T13231] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1986'.
[  406.983713][ T6060] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  407.148598][ T6060] usb 7-1: config index 0 descriptor too short (expected 45, got 36)
[  407.151233][ T6060] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  407.162898][ T6060] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  407.173697][ T6060] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  407.177359][ T6060] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  407.190008][ T6060] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  407.192955][ T6060] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  407.202588][ T6060] usb 7-1: config 0 descriptor??
[  407.205010][T13228] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  407.615494][ T6060] plantronics 0003:047F:FFFF.001A: reserved main item tag 0xd
[  407.629202][ T6060] plantronics 0003:047F:FFFF.001A: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  407.712097][T13242] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1990'.
[  407.989525][T13246] ==================================================================
[  407.992935][T13246] BUG: KASAN: vmalloc-out-of-bounds in tpg_fill_plane_buffer+0x21d2/0x43c0
[  407.996539][T13246] Write of size 255 at addr ffffc90003fc2f8a by task vivid-000-vid-c/13246
[  408.001703][T13246] 
[  408.002725][T13246] CPU: 2 UID: 0 PID: 13246 Comm: vivid-000-vid-c Not tainted syzkaller #0 PREEMPT(full) 
[  408.002747][T13246] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  408.002758][T13246] Call Trace:
[  408.002764][T13246]  <TASK>
[  408.002771][T13246]  dump_stack_lvl+0x116/0x1f0
[  408.002798][T13246]  print_report+0xcd/0x630
[  408.002818][T13246]  ? __virt_addr_valid+0x81/0x610
[  408.002846][T13246]  ? tpg_fill_plane_buffer+0x21d2/0x43c0
[  408.002874][T13246]  kasan_report+0xe0/0x110
[  408.002893][T13246]  ? tpg_fill_plane_buffer+0x21d2/0x43c0
[  408.002922][T13246]  kasan_check_range+0x100/0x1b0
[  408.002947][T13246]  __asan_memcpy+0x3c/0x60
[  408.002963][T13246]  tpg_fill_plane_buffer+0x21d2/0x43c0
[  408.003001][T13246]  ? __pfx_tpg_fill_plane_buffer+0x10/0x10
[  408.003030][T13246]  vivid_fillbuff+0x8d2/0x4250
[  408.003057][T13246]  ? lock_acquire+0x179/0x350
[  408.003078][T13246]  ? find_held_lock+0x2b/0x80
[  408.003099][T13246]  ? __pfx_vivid_fillbuff+0x10/0x10
[  408.003129][T13246]  ? v4l2_ctrl_request_setup+0x45e/0xa60
[  408.003149][T13246]  ? lockdep_hardirqs_on+0x7c/0x110
[  408.003174][T13246]  ? vivid_thread_vid_cap_tick+0x814/0x15d0
[  408.003198][T13246]  vivid_thread_vid_cap_tick+0x814/0x15d0
[  408.003226][T13246]  vivid_thread_vid_cap+0x454/0xda0
[  408.003253][T13246]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[  408.003276][T13246]  ? do_raw_spin_lock+0x12c/0x2b0
[  408.003301][T13246]  ? find_held_lock+0x2b/0x80
[  408.003317][T13246]  ? rcu_is_watching+0x12/0xc0
[  408.003334][T13246]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  408.003357][T13246]  ? lockdep_hardirqs_on+0x7c/0x110
[  408.003380][T13246]  ? __kthread_parkme+0x19e/0x250
[  408.003401][T13246]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[  408.003424][T13246]  kthread+0x3c5/0x780
[  408.003447][T13246]  ? __pfx_kthread+0x10/0x10
[  408.003469][T13246]  ? rcu_is_watching+0x12/0xc0
[  408.003483][T13246]  ? __pfx_kthread+0x10/0x10
[  408.003504][T13246]  ret_from_fork+0x5d7/0x6f0
[  408.003528][T13246]  ? __pfx_kthread+0x10/0x10
[  408.003552][T13246]  ret_from_fork_asm+0x1a/0x30
[  408.003578][T13246]  </TASK>
[  408.003584][T13246] 
[  408.043741][ T6057] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  408.046063][T13246] The buggy address belongs to a vmalloc virtual mapping
[  408.094241][T13246] The buggy address belongs to the physical page:
[  408.096870][T13246] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x556 pfn:0x6ed9c
[  408.100558][T13246] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  408.103568][T13246] raw: 04fff00000000000 0000000000000000 dead000000000122 0000000000000000
[  408.107114][T13246] raw: 0000000000000556 0000000000000000 00000001ffffffff 0000000000000000
[  408.110678][T13246] page dumped because: kasan: bad access detected
[  408.113288][T13246] page_owner tracks the page as allocated
[  408.115602][T13246] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 13245, tgid 13227 (syz.2.1987), ts 407965325503, free_ts 406873386584
[  408.123415][T13246]  post_alloc_hook+0x1c0/0x230
[  408.125446][T13246]  get_page_from_freelist+0x132b/0x38e0
[  408.127732][T13246]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  408.130231][T13246]  alloc_pages_mpol+0x1fb/0x550
[  408.132278][T13246]  alloc_pages_noprof+0x131/0x390
[  408.134402][T13246]  __vmalloc_node_range_noprof+0x72f/0x14b0
[  408.136850][T13246]  vmalloc_user_noprof+0x9e/0xe0
[  408.138937][T13246]  vb2_vmalloc_alloc+0x135/0x3f0
[  408.141016][T13246]  __vb2_queue_alloc+0x8c6/0x1280
[  408.143147][T13246]  vb2_core_reqbufs+0xa90/0xfe0
[  408.145189][T13246]  __vb2_init_fileio+0x3f1/0x1100
[  408.147304][T13246]  __vb2_perform_fileio+0x9c2/0x1660
[  408.149533][T13246]  vb2_fop_read+0x215/0x3e0
[  408.151407][T13246]  v4l2_read+0x226/0x360
[  408.153203][T13246]  vfs_read+0x1e1/0xcf0
[  408.154975][T13246]  ksys_pread64+0x161/0x1a0
[  408.156893][T13246] page last free pid 13196 tgid 13196 stack trace:
[  408.159606][T13246]  __free_frozen_pages+0x7d5/0x10f0
[  408.161793][T13246]  vfree+0x1fd/0xb50
[  408.163458][T13246]  vb2_vmalloc_put+0x7b/0xc0
[  408.165353][T13246]  __vb2_buf_mem_free+0x15d/0x2d0
[  408.167466][T13246]  __vb2_queue_free+0x7ee/0xa30
[  408.169519][T13246]  vb2_core_reqbufs+0x276/0xfe0
[  408.171421][T13246]  __vb2_cleanup_fileio+0xed/0x190
[  408.173493][T13246]  vb2_core_queue_release+0x1f/0x190
[  408.175507][T13246]  _vb2_fop_release+0xe8/0x280
[  408.177518][T13246]  vivid_fop_release+0x155/0xc40
[  408.179611][T13246]  v4l2_release+0x232/0x460
[  408.181275][T13246]  __fput+0x3ff/0xb70
[  408.182785][T13246]  task_work_run+0x14d/0x240
[  408.184737][T13246]  exit_to_user_mode_loop+0xeb/0x110
[  408.186962][T13246]  __do_fast_syscall_32+0x2ac/0x3a0
[  408.189158][T13246]  do_fast_syscall_32+0x32/0x80
[  408.191233][T13246] 
[  408.192296][T13246] Memory state around the buggy address:
[  408.194702][T13246]  ffffc90003fc2f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  408.198045][T13246]  ffffc90003fc2f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  408.201356][T13246] >ffffc90003fc3000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  408.204625][T13246]                    ^
[  408.206335][T13246]  ffffc90003fc3080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  408.209664][T13246]  ffffc90003fc3100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  408.212930][T13246] ==================================================================
[  408.222219][T13246] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  408.225357][T13246] CPU: 1 UID: 0 PID: 13246 Comm: vivid-000-vid-c Not tainted syzkaller #0 PREEMPT(full) 
[  408.229573][T13246] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  408.234082][T13246] Call Trace:
[  408.235523][T13246]  <TASK>
[  408.236811][T13246]  dump_stack_lvl+0x3d/0x1f0
[  408.238822][T13246]  vpanic+0x6e8/0x7a0
[  408.240561][T13246]  ? __pfx_vpanic+0x10/0x10
[  408.242510][T13246]  ? tpg_fill_plane_buffer+0x21d2/0x43c0
[  408.244926][T13246]  panic+0xca/0xd0
[  408.246555][T13246]  ? __pfx_panic+0x10/0x10
[  408.248514][T13246]  ? tpg_fill_plane_buffer+0x21d2/0x43c0
[  408.251319][T13246]  ? preempt_schedule_common+0x44/0xc0
[  408.253758][T13246]  ? preempt_schedule_thunk+0x16/0x30
[  408.256051][T13246]  ? check_panic_on_warn+0x1f/0xb0
[  408.258253][T13246]  check_panic_on_warn+0xab/0xb0
[  408.260397][T13246]  end_report+0x107/0x170
[  408.262291][T13246]  kasan_report+0xee/0x110
[  408.264293][T13246]  ? tpg_fill_plane_buffer+0x21d2/0x43c0
[  408.266595][T13246]  kasan_check_range+0x100/0x1b0
[  408.268727][T13246]  __asan_memcpy+0x3c/0x60
[  408.271076][T13246]  tpg_fill_plane_buffer+0x21d2/0x43c0
[  408.273906][T13246]  ? __pfx_tpg_fill_plane_buffer+0x10/0x10
[  408.276421][T13246]  vivid_fillbuff+0x8d2/0x4250
[  408.278514][T13246]  ? lock_acquire+0x179/0x350
[  408.280554][T13246]  ? find_held_lock+0x2b/0x80
[  408.282655][T13246]  ? __pfx_vivid_fillbuff+0x10/0x10
[  408.284903][T13246]  ? v4l2_ctrl_request_setup+0x45e/0xa60
[  408.287342][T13246]  ? lockdep_hardirqs_on+0x7c/0x110
[  408.289628][T13246]  ? vivid_thread_vid_cap_tick+0x814/0x15d0
[  408.292177][T13246]  vivid_thread_vid_cap_tick+0x814/0x15d0
[  408.294643][T13246]  vivid_thread_vid_cap+0x454/0xda0
[  408.296914][T13246]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[  408.299455][T13246]  ? do_raw_spin_lock+0x12c/0x2b0
[  408.301719][T13246]  ? find_held_lock+0x2b/0x80
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  408.303764][T13246]  ? rcu_is_watching+0x12/0xc0
[  408.305994][T13246]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  408.308558][T13246]  ? lockdep_hardirqs_on+0x7c/0x110
[  408.310834][T13246]  ? __kthread_parkme+0x19e/0x250
[  408.313001][T13246]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[  408.315494][T13246]  kthread+0x3c5/0x780
[  408.317282][T13246]  ? __pfx_kthread+0x10/0x10
[  408.319285][T13246]  ? rcu_is_watching+0x12/0xc0
[  408.321464][T13246]  ? __pfx_kthread+0x10/0x10
[  408.323501][T13246]  ret_from_fork+0x5d7/0x6f0
[  408.325517][T13246]  ? __pfx_kthread+0x10/0x10
[  408.327480][T13246]  ret_from_fork_asm+0x1a/0x30
[  408.329501][T13246]  </TASK>
[  408.331519][T13246] Kernel Offset: disabled
[  408.332972][T13246] Rebooting in 86400 seconds..

VM DIAGNOSIS:
03:19:01  Registers:
info registers vcpu 0

CPU#0
RAX=00000000007f5d91 RBX=0000000000000000 RCX=ffffffff8b912bf9 RDX=0000000000000000
RSI=ffffffff8de4e281 RDI=ffffffff8c162f00 RBP=fffffbfff1c52ef8 RSP=ffffffff8e207e08
R8 =0000000000000001 R9 =ffffed1005646655 R10=ffff88802b2332ab R11=0000000000000000
R12=0000000000000000 R13=ffffffff8e2977c0 R14=ffffffff90ab9790 R15=0000000000000000
RIP=ffffffff8b91175f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880974bd000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000802ec000 CR3=0000000024b5e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000011 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffff88807111e508 RBX=0000000000000004 RCX=ffffffff8197acbc RDX=1ffff1100e223ca1
RSI=0000000000000000 RDI=ffff88807111e520 RBP=ffffc90003717d60 RSP=ffffc90003717c30
R8 =0000000000000001 R9 =fffff520006e2f74 R10=0000000000000003 R11=0000000000000000
R12=dffffc0000000000 R13=ffff88801329e600 R14=ffff88807111e1f8 R15=ffff88801329f600
RIP=ffffffff84e85500 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fc55e45d880 ffffffff 00c00000
GS =0000 ffff8880975bd000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000003290eff8 CR3=000000004c613000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000011 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000004 Opmask01=0000000000020000 Opmask02=00000000effffdff Opmask03=0000000020400004
Opmask04=00000000ffffefff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000559b02c96a00 0000559b02c96a00
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000559b02c9f900
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000559b02c903d0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc55ddf1b20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 ffffff00000000ff
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1c1f115c435d4316 10120300161e121d
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5c431d1c1a141601 5c43000611171d5c
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6961660064657373 65636f727020756c 6c2520716573006e 6f69746974726170
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 30302c443230302c 433230302c423230 302c393230003831 3d5145534b534944
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0d0d11440f0d0d11 430f0d0d11420f0d 0d11040f0d00050c 005145534b534944
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f30737562646e2f 30303a3231303049 5043412f30303a53 55425953584e4c2f
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000161 6c2f007365007974 00736576616c7300 306d656d702f6b63
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 322e392d3533712d 63707276703a2939 3030322c39484349 2b35335128435064
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7261646e6174536e 703a554d45516e76 733a302e3072623a 343130322f31302f
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343064623a312b32 316f70627e322d33 2e36312e312d6e61 696265642d332e36
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000061 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85618635 RDI=ffffffff9b0ff700 RBP=ffffffff9b0ff6c0 RSP=ffffc90003057158
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=666f206574697257
R12=0000000000000000 R13=0000000000000061 R14=ffffffff9b0ff6c0 R15=ffffffff856185d0
RIP=ffffffff8561865f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880976bd000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73df198 CR3=0000000052198000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000009800 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000005ee0b5 RBX=0000000000000003 RCX=ffffffff8b912bf9 RDX=0000000000000000
RSI=ffffffff8de4e281 RDI=ffffffff8c162f00 RBP=ffffed1003bdd000 RSP=ffffc9000048fdf8
R8 =0000000000000001 R9 =ffffed10056a6655 R10=ffff88802b5332ab R11=0000000000000000
R12=0000000000000003 R13=ffff88801dee8000 R14=ffffffff90ab9790 R15=0000000000000000
RIP=ffffffff8b91175f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977bd000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000802f1000 CR3=0000000052198000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000011 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000