last executing test programs:

7.765453625s ago: executing program 1 (id=396):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080), 0x8)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='loginuid\x00')
preadv(r0, &(0x7f0000000280)=[{&(0x7f00000000c0)=""/12, 0xc}], 0x1, 0x1, 0x82f)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{0xffffffffffffffff, <r1=>0xffffffffffffffff}, &(0x7f00000000c0), &(0x7f0000000100)}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1e, 0xa, &(0x7f0000000180)=@raw=[@generic={0xbd, 0x1, 0x5, 0x6, 0x9}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}, @ldst={0x3, 0x0, 0x6, 0x4, 0xb, 0x0, 0x4}, @map_fd={0x18, 0x4, 0x1, 0x0, r1}, @map_idx_val={0x18, 0x6, 0x6, 0x0, 0xa, 0x0, 0x0, 0x0, 0x5}], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)

7.69456894s ago: executing program 1 (id=400):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
getpeername$netrom(r3, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
r5 = dup(r4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x7}], 0x1c)
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
read(r6, &(0x7f0000000500)=""/158, 0x9e)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)={0x1c, 0x4, 0x6, 0x201, 0x0, 0x0, {0xa, 0x0, 0x5}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x11}, 0x28000080)
sendmsg$inet6(r4, &(0x7f0000000800)={&(0x7f0000000000)={0xa, 0x4e24, 0x8, @ipv4={'\x00', '\xff\xff', @local}, 0x2}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
dup(r4)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22, @empty}}, 0x10000007, 0xfffc, 0xe655, 0x2, 0x85, 0x8, 0xff}, 0x9c)

5.686240382s ago: executing program 1 (id=405):
socket(0x400000000010, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bond0\x00'})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0xba01}, 0x8014)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
socket(0x400000000010, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$udambuf(0xffffff9c, &(0x7f0000000380), 0x2)
ioctl$UDMABUF_CREATE_LIST(r2, 0x40087543, &(0x7f00000003c0)={0x1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x8]}, 0x8, 0x80800)
io_setup(0x2, &(0x7f0000000b80)=<r6=>0x0)
io_submit(r6, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r5, 0x0}])
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r4, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r7, {0x2, 0x0, @local}, 0x2}}, 0x26)
connect$pppl2tp(r3, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x2}}, 0x2e)
mkdir(0x0, 0x0)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r8=>0x0)
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r8, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
r9 = getpgid(0x0)
r10 = syz_pidfd_open(r9, 0x0)
pidfd_send_signal(r10, 0x21, 0x0, 0x4)

5.426283082s ago: executing program 1 (id=406):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000000)=0x10000)
syz_pidfd_open(0x0, 0x0)
r1 = syz_open_dev$usbfs(0x0, 0x77, 0x101301)
ioctl$USBDEVFS_CONNECTINFO(r1, 0xc0105502, &(0x7f0000002a40))
r2 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r2, &(0x7f0000000140)={0x2, 0x0, @rand_addr=0x64010100}, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581"], 0x0)
r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0)
ioctl$EVIOCGKEYCODE_V2(r3, 0x80284504, &(0x7f0000000040)=""/95)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x12, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe49, 0x11e41e7a, 0x20000000, 0xfffffffd, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x8, 0x0, 0x2}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000380)={'veth0_to_hsr\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r9, {0x0, 0xb}, {0xffff, 0xffff}, {0x5, 0xfff2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x5, 0xa}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r8, 0x0, 0x4048800)
syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)

3.566183169s ago: executing program 2 (id=415):
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0xc8601, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000080)={0x1, "0600000000000000c64c3b6e6ff82a75e5318fca4288c219bebec772020acd2c"})
r1 = syz_io_uring_setup(0xbdd, &(0x7f0000000640)={0x0, 0x6f34, 0x400, 0x200001, 0x3a1}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
ioctl$KVM_SET_CLOCK(0xffffffffffffffff, 0x4020aeb2, &(0x7f0000000000)={0x0, 0x6, 0x1, 0xffff, 0x4})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x100}, 0x94)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=@newtaction={0x44, 0x32, 0xffffffffffffffff, 0x0, 0x0, {}, [{0x30, 0x1, [@m_bpf={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x44}}, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_NEW_INTERFACE(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="4076a4f6", @ANYRES16, @ANYBLOB="01002bbd7000fedbdf25070000000a0004007770616e3000000008000100010000000800050000000000080003"], 0x40}}, 0x8084)
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r7 = syz_clone(0x80842111, 0x0, 0x0, 0x0, 0x0, 0x0)
r8 = syz_pidfd_open(r7, 0x0)
fgetxattr(r8, &(0x7f0000000040)=@random={'trusted.', 'q\x00'}, 0x0, 0x0)
sendmsg$netlink(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)=ANY=[@ANYBLOB="180100002000010000000000fcdbdf2506"], 0x118}], 0x1, 0x0, 0x0, 0x20008001}, 0x0)
syz_io_uring_setup(0x3bd4, &(0x7f0000000180)={0x0, 0xcc19, 0x130c8, 0x6, 0x30e}, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtaction={0x70, 0x30, 0x0, 0x0, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x0, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_RATE={0x8, 0x3, 0xffffffff}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x0, 0x0, 0x0, 0x0, 0x80000}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x4}}}}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x404008c}, 0x20040000)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$nl_route(0x10, 0x3, 0x0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r9, @ANYBLOB="08000100", @ANYRES32=r10], 0x90}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x847ba, 0x79c, 0xe, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000540)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x5, 0x5}, 0x50)

3.565418414s ago: executing program 3 (id=416):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001400)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x44}}, 0x0)

3.514264719s ago: executing program 3 (id=417):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc) (async)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) (async)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000080)='./file1/file0\x00', 0x0, 0x1085408, 0x0) (async)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f00000003c0), 0x40, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
unlinkat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file0\x00', 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a34000000090a01040000000000000011070000000900020073797a31ff0000000900010073797a3000000000080005400000000d140000001000010000000000000000000084000a"], 0x5c}}, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8924, &(0x7f00000000c0)={'wlan0\x00', 0x1})
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x3) (async)
r3 = epoll_create1(0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000400)={<r4=>0xffffffffffffffff}) (async, rerun: 32)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="06000020000000007910b8000000000005e9ff00000000009500060c00000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48) (rerun: 32)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) (async)
r5 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r3, &(0x7f0000000000)={0xa0000001}) (async, rerun: 32)
ppoll(&(0x7f0000000200)=[{r5, 0x1}], 0x1, 0x0, 0x0, 0x3) (async, rerun: 32)
r6 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card3/oss_mixer\x00', 0xfaf00, 0x0) (async)
r7 = socket(0x40000000015, 0x5, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000004000)=@newtaction={0x2f14, 0x30, 0x1, 0x0, 0x0, {}, [{0x2f00, 0x1, [@m_ctinfo={0x48, 0x2, 0x0, 0x0, {{0xb}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0x80, 0x5, 0x8, 0x1, 0x2}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_pedit={0x2eb4, 0x18, 0x0, 0x0, {{0xa}, {0x2e14, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xee0, 0x2, {{{0x80, 0x9, 0x0, 0xfffffffe, 0x6}, 0x54, 0xe, [{0x3, 0x1, 0x797, 0x6, 0x82f1, 0x2}, {0x2, 0x1, 0x3, 0x4, 0x4, 0x5}, {0xffffffff, 0x8, 0x8, 0x57b6d9af, 0x9, 0x5}, {0x263, 0x1ff, 0x1f, 0xfffffff9, 0x0, 0x9}, {0x70000, 0x2, 0x5, 0x101, 0x8, 0x6}, {0x0, 0x7, 0x2, 0x6, 0x9, 0xd74}, {0x1, 0x8, 0x6, 0x3, 0x85, 0xfc}, {0xc, 0x8, 0x8, 0x3, 0xffffff81, 0xa5}]}, [{0x18f, 0x1, 0x7ff, 0x95, 0xb, 0xfff}, {0x2, 0x7, 0x10000, 0x6, 0x80000000, 0x10001}, {0xcabd, 0x1000, 0x2, 0x8, 0x7, 0x8000}, {0x7f, 0x2, 0x3, 0x1, 0x262, 0xbd75}, {0xb, 0x5, 0x7, 0x5, 0x9, 0x7}, {0xffffffc2, 0x1, 0x9, 0x5, 0x0, 0x7d8}, {0x2000000, 0x1e0, 0x7f, 0x7fff, 0xff, 0xffff}, {0x10, 0x401, 0xf7, 0x8, 0x3, 0x8}, {0x8da0, 0xe, 0x48a, 0x7, 0x1ff, 0x17f3}, {0x6, 0x0, 0x100, 0x3ff, 0x80000000, 0x1}, {0x6, 0xba1, 0x4, 0x2, 0x0, 0x5}, {0x2, 0x3, 0x0, 0x7, 0x7fffffff, 0x2}, {0x200, 0xfffffffb, 0xa, 0x4f35bc79, 0x4, 0x2}, {0x6, 0x0, 0x2, 0x5, 0xfffffffb, 0x1ff}, {0x0, 0x1, 0x0, 0x10, 0x4, 0x5}, {0x8000, 0xf1, 0x8, 0x9, 0x927d, 0xa43f}, {0xffffffff, 0xf, 0x8001, 0xfff, 0x6, 0x5}, {0xfffffffa, 0x9, 0xfffff73e, 0x200, 0xf, 0x8}, {0x3, 0x3, 0xef, 0x401, 0x0, 0x5}, {0x80, 0x8, 0xb801, 0x2, 0xd, 0x1}, {0xe, 0x1, 0x9, 0x1, 0xe}, {0x6, 0x4b9d, 0x9, 0x5, 0x7, 0x93}, {0x7ff, 0x0, 0x1, 0x4, 0x9b8, 0x80}, {0x8c21, 0x6, 0x8, 0x3, 0x10, 0x9}, {0x1309, 0x3, 0xc, 0x7, 0x2, 0xc}, {0x1, 0x7f, 0x7fff, 0x7, 0x6, 0x3}, {0x8e, 0xff, 0x82d8, 0x6, 0x0, 0x5}, {0xa, 0x9, 0xa72, 0x4, 0x0, 0x8}, {0xffff, 0xfffffffd, 0x9, 0x8, 0x9, 0x3}, {0x8, 0x1, 0xffffffff, 0xc1, 0x7, 0x9}, {0x401, 0x3ff, 0x9f, 0xb, 0x0, 0x7fff}, {0xfffff692, 0x6, 0x8, 0x2, 0x5, 0x40}, {0x0, 0xa866, 0x0, 0x6, 0xc, 0x1}, {0xb, 0xff, 0x5, 0x5, 0x2, 0x4}, {0x1858a6d3, 0x3fc0, 0x92, 0x6, 0xffc, 0x2}, {0x4, 0x5, 0x7, 0x5, 0x1, 0x4}, {0x92e, 0x0, 0xfffffffa, 0xd3, 0xf2}, {0xb94, 0x4f346297, 0x4, 0x1ff, 0x6, 0x6}, {0x80000000, 0x4, 0x401, 0x6, 0x30000, 0x7}, {0x4, 0x5, 0x0, 0xb, 0x9, 0x1}, {0x2, 0x9f9, 0x0, 0xeab9, 0x7, 0x4c8}, {0x4, 0x81, 0x8, 0x5, 0x8000, 0x6}, {0x1, 0x7, 0x7f, 0xc8, 0x8, 0xfffffffd}, {0x3ff, 0x7fff, 0x3, 0x80, 0x2, 0x4}, {0x7, 0x7, 0x9, 0xfffffff5, 0x7, 0xffff0000}, {0x5, 0x5, 0x0, 0x7, 0xfff, 0x4}, {0x8, 0x3, 0x10, 0x4, 0x5}, {0x6, 0x1, 0x6908, 0x3, 0x5, 0x1}, {0x5fb1, 0xfdb, 0x4, 0x8000, 0xc, 0x8}, {0xffffffff, 0xddaf, 0x4, 0x605, 0x9, 0x3}, {0xa, 0x9, 0x7, 0x2d, 0x1a000000, 0x80000001}, {0x2, 0x8e, 0xffffffff, 0x100000, 0x10001, 0x9}, {0x911, 0x2, 0x5, 0x997, 0x28c1, 0x3}, {0x7fffffff, 0x5, 0x10430605, 0xfffffffd, 0xfffffffe, 0x9}, {0x9, 0x2, 0x5, 0x5, 0x3, 0x3}, {0x110, 0x0, 0x3, 0x7, 0x951, 0xffffffff}, {0x4, 0x1, 0x3, 0x8, 0x3, 0x4}, {0x6, 0x8, 0x9, 0xfffff9ce, 0x5, 0x7}, {0x4, 0x0, 0x81, 0xfffffff7, 0xc82, 0x69c}, {0x2, 0x8, 0x5, 0xa, 0x7, 0x8}, {0x7, 0x0, 0x2, 0x7, 0x8, 0x801}, {0x8, 0x1, 0x8, 0x2, 0x9, 0x3}, {0x10001, 0x7fff, 0xfffffff2, 0x5c, 0x9, 0x8001}, {0x2, 0xff, 0x2, 0x0, 0x3, 0x5}, {0x2, 0x7ff, 0x2, 0xffff, 0x2, 0xffff}, {0x4, 0x9, 0x81000000, 0x5f, 0x9, 0x6}, {0x3, 0xa, 0xf, 0x0, 0x5, 0x4}, {0x0, 0x1, 0x800, 0x81, 0x7, 0x100}, {0x3, 0x2, 0x0, 0x4, 0x9, 0x52f4071c}, {0xfffffff9, 0x7, 0x1, 0x401, 0x7, 0x80}, {0x1, 0xd, 0x0, 0x2, 0x1, 0x7aa}, {0x0, 0x3, 0x9, 0x10, 0xfffffff7, 0x5}, {0x5, 0x4, 0x6, 0x2, 0x179, 0xb61}, {0x1, 0x3, 0x8, 0x6, 0x1, 0x80000000}, {0xef, 0x7, 0x0, 0x0, 0x7, 0x66de}, {0x2, 0x7f0000, 0x5, 0xffff6d4a, 0xffff, 0x1000}, {0x80000000, 0x5, 0x0, 0xc, 0x6, 0x6}, {0x3, 0x1, 0x6, 0x0, 0x8, 0x1}, {0x6, 0xa, 0xe, 0x6197, 0xfffffff9, 0x10000}, {0x0, 0x6, 0x1ff, 0x1, 0xffffff80, 0x7}, {0xf043, 0x7, 0x8, 0x6, 0xd, 0x400}, {0x7, 0x0, 0x0, 0x400, 0x6, 0x6}, {0x3, 0xaa26, 0x9, 0xec, 0x3, 0x2}, {0x0, 0x7, 0x5, 0x8b, 0xfffffffc, 0x7}, {0x3ff, 0x0, 0x6800, 0x10001, 0x909d, 0xd20}, {0x1000, 0x5, 0x6, 0x9, 0x3}, {0xdb, 0x3, 0x4, 0x5, 0xbc00, 0x6}, {0xa58, 0x8, 0x5800000, 0xf, 0x9, 0x5}, {0x4, 0x8b3, 0x80, 0x7, 0x8fe, 0x8}, {0x2, 0x5, 0x8, 0x1, 0x7}, {0x100, 0x8, 0x1, 0x4, 0x1ff, 0x8}, {0x1ff, 0x7, 0xbd89, 0xa, 0x80000000, 0x3}, {0x80, 0x1, 0xfff, 0xe, 0xea3e, 0x9}, {0x2, 0x796, 0xf, 0x3, 0x5, 0x8000}, {0x7, 0x10, 0xb6, 0xc, 0x40, 0x2}, {0xb75, 0x9, 0x0, 0x4, 0xd26, 0x6}, {0x2, 0x80000000, 0x5, 0x80000000, 0x2, 0x333}, {0xb, 0x86, 0xb9e5, 0x4, 0x9, 0x8}, {0xffff, 0x1c, 0x8, 0x1, 0x5ec905b1, 0x9}, {0x9, 0x3cd1, 0x7fffffff, 0x1, 0xfffffffe, 0x5}, {0x1f45, 0x3, 0x5e2a, 0x7, 0x2, 0xe}, {0xb370, 0x8, 0x9, 0xffff, 0xc67, 0xa000}, {0x2, 0x3, 0x80, 0x7a4a, 0x4, 0x73b401ea}, {0x100, 0x3, 0xc1, 0x0, 0x2, 0x200}, {0x2, 0xda, 0xd8a, 0x9, 0x1a, 0xa6c}, {0x8, 0x6, 0x4, 0x1, 0x8000, 0x5}, {0x7ff, 0x3, 0x1, 0xfd9, 0x3, 0x118a000}, {0x1, 0x9, 0x0, 0x10000, 0x101, 0x7ff}, {0xff, 0x9, 0x1, 0x9, 0x8, 0xc}, {0xf8d6, 0x5, 0x7, 0xa36, 0x4, 0xf}, {0x7, 0x7f, 0xc, 0x10000, 0x7, 0x2}, {0x8, 0x8, 0x5, 0x7ff, 0x2, 0x3}, {0xb, 0x3, 0x0, 0x12c3f3a3, 0x5, 0xc167}, {0x9e, 0xfffffffb, 0x2, 0x40, 0x7, 0x9}, {0xbb, 0xa, 0x4, 0x10001, 0x200, 0x8}, {0x3, 0x3, 0x9e9f, 0xfffffffb, 0x80000001, 0xffffffff}, {0x0, 0xf, 0x3, 0xffffffff, 0x8, 0x7}, {0xb, 0x0, 0x1, 0x0, 0x4, 0x4}, {0x1, 0x2, 0x6, 0x9, 0xffffffff, 0x7}, {0x10000, 0x7fffffff, 0x15, 0x4, 0x2, 0x8}, {0x91f7, 0xd, 0x7, 0x9, 0x5, 0x4}, {0x1f1, 0x7, 0x8000, 0xc4, 0x6d89, 0xffffffff}, {0x7, 0x9, 0x6, 0x7fffffff, 0xe, 0x129}, {0x3, 0x7, 0x4, 0x7c, 0x8, 0x3}, {0x5, 0x2, 0x9, 0x8, 0x276b686b, 0x5}, {0x8001, 0x8, 0xffffffad, 0xd4, 0x10000004, 0x3}, {0x110f, 0xeac, 0x2, 0x7e7, 0x8, 0x7}, {0x1, 0x7fffffff, 0xe68, 0x4, 0x9, 0x2}], [{}, {0x4, 0x1}, {0x2, 0x1}, {0x5}, {0x2}, {0x1}, {0x5, 0x1}, {}, {0x3, 0x1}, {0x2}, {0x5}, {}, {0x5}, {0x2, 0x1}, {0x2, 0x81ab2345f991f393}, {0x0, 0x1}, {0x1}, {0x4}, {0x3}, {0x4, 0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x1, 0x1}, {0x2}, {0x4}, {0x5}, {0x3, 0x1}, {}, {0x1, 0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x2}, {}, {0x3, 0x1}, {0xa}, {0x5}, {0x5, 0x1}, {0x1}, {}, {0x2}, {0x5, 0x1}, {0x4}, {0x4, 0x1}, {0x4}, {0x5, 0x1}, {0x1}, {0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x3}, {}, {0x0, 0x1}, {0x2, 0x1}, {0x4, 0x1}, {0x3}, {0x4, 0x1}, {0x2, 0xda69e62956f0f79e}, {0x4}, {0x2}, {}, {0x2, 0x1}, {0x3, 0x1}, {0x1}, {0x1, 0x1}, {0x5}, {0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x5}, {0x2}, {0x2, 0x1}, {0x3, 0x1}, {0x4, 0x1}, {0x4}, {0x2}, {0x4}, {0x3}, {0x3}, {0x5}, {0x1, 0x1}, {0x4}, {0x4, 0x1}, {0x4}, {0x4, 0x1}, {0x3}, {0x2, 0x1}, {0x1}, {0x0, 0x1}, {0x3}, {0x3}, {0x3}, {0x1, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {}, {0x1, 0x1}, {0x5}, {0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x1, 0xd67ab89c734a02d3}, {0x3, 0x1}, {0x3, 0x1}, {0x3, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x5}, {0x5}, {0x4, 0x1}, {}, {0x1}, {0x5}, {0x1, 0x1}, {}, {}, {0x0, 0x1}, {0xf}, {0x0, 0x1}, {0x2, 0x1}, {0x3}, {0x4}, {0x4, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x1}]}}, @TCA_PEDIT_PARMS={0xe80, 0x2, {{{0x9, 0x9, 0x7, 0xfffffff7, 0x4d7}, 0x7, 0x2, [{0x3, 0x8, 0x0, 0xc5, 0x6, 0x84}, {0x8, 0xfffff768, 0x6, 0x2fe, 0x1, 0x8}, {0x10000, 0x1, 0x2, 0x40, 0x400, 0xc}, {0xfffffffe, 0x6, 0xffffffff, 0x3e, 0xc, 0x1}]}, [{0x7, 0x80000000, 0xadb, 0x1ff, 0x0, 0xa70}, {0x4, 0x7, 0x4, 0x2, 0x0, 0x7ff}, {0x84, 0x1, 0xb, 0xd6c, 0x101, 0x7}, {0x461, 0x7ff, 0x200, 0x2, 0x6, 0x8000}, {0xe, 0x2, 0x2, 0xa4f1, 0x8, 0x8}, {0x4f2, 0x5a3, 0x9, 0x7, 0xc1c, 0x4}, {0x10001, 0x7, 0x1ff, 0x13, 0x807e}, {0x0, 0x7ff, 0x7, 0x1000, 0x8, 0x7}, {0x80000000, 0x7, 0x9, 0x8, 0x3, 0xa}, {0x100, 0x2, 0x7, 0xffff, 0x28f, 0x5}, {0x2, 0x6, 0x6, 0x6, 0x4, 0x4}, {0x8, 0x5, 0x1, 0x8, 0xfffffff9}, {0x0, 0x75, 0x6, 0x151, 0x2, 0x603}, {0xfffffffb, 0x5, 0x800000, 0x5, 0x2, 0x6}, {0x6a, 0x1, 0x0, 0x5c, 0xeefe, 0xffffffff}, {0x5, 0x10, 0x3, 0x8}, {0x2, 0x7ff, 0x6, 0x7f97, 0x97, 0x7}, {0x1, 0xff, 0x1, 0x1000, 0x100, 0xfffffe00}, {0x7, 0x3d1bf9fd, 0xf, 0x3, 0x2, 0x7fffffff}, {0xfcb, 0x1, 0x8, 0x4, 0x2, 0x8}, {0x40, 0xf8, 0x120, 0x3ff, 0x4773, 0x5}, {0xc0b, 0xf301, 0xffff, 0x7, 0x74, 0x94f4}, {0xe9, 0x7, 0x1ff, 0x9, 0x8f, 0x3}, {0x5ec, 0xffffffff, 0x1000, 0x6, 0xfffffffa, 0x6}, {0x9, 0x6, 0x5, 0x7f, 0x3}, {0x3, 0xe74, 0x5, 0xcc3, 0x400, 0xc5}, {0x8, 0x8, 0x40, 0x2, 0x7, 0x3ff}, {0x8, 0x2, 0x8, 0x3, 0x5a99, 0xb56}, {0x5, 0x10000, 0xfffffff8, 0x1, 0x2, 0x2}, {0x3, 0x0, 0x0, 0x0, 0x4, 0x7}, {0x401, 0x2, 0x2, 0x0, 0xfffffffb, 0x1ff}, {0x9, 0x10001, 0xffffff20, 0x80000000, 0xdfee, 0x5}, {0x7fffffff, 0x401, 0x9, 0x7, 0x7ff, 0x3f80}, {0xb9, 0xb, 0x1, 0x0, 0x0, 0x80}, {0x7, 0xf, 0x2, 0xfff, 0x5, 0x8454}, {0x5, 0x1, 0x80, 0xd0, 0x9, 0x6}, {0x1, 0x1, 0x7, 0xad, 0x9, 0x401}, {0x9, 0xfffffff9, 0x1, 0x3, 0x7, 0x2}, {0x0, 0x28, 0x1, 0x6, 0x8, 0x6}, {0x331, 0x5, 0x800, 0x7, 0xf0, 0x3}, {0x8, 0x3, 0x10001, 0x7ff, 0x5, 0x7307}, {0x10, 0x8, 0x4, 0x1, 0x401, 0x2}, {0x0, 0x8, 0xfffffe00, 0x0, 0x9, 0x7fff}, {0x6, 0x9, 0x7, 0x0, 0x80000001, 0x3}, {0x56, 0x6bf9, 0x44a, 0x23, 0x4, 0x6}, {0x6, 0x4, 0x9, 0x2e, 0x2, 0x62e6}, {0x9, 0x3b, 0xedb, 0x4, 0x4, 0x2}, {0xfffffc8e, 0x0, 0x2, 0x8, 0x3, 0x9b}, {0x81, 0x9, 0x4, 0x4, 0x9, 0x101}, {0x3, 0x1, 0x8, 0x10, 0xfffffff7, 0x4}, {0x3f, 0x0, 0x8, 0x0, 0x8, 0x7}, {0x7, 0x8, 0x10000, 0xfe6, 0x8, 0x548f9490}, {0x3, 0x4, 0x4, 0x5, 0x5, 0x6}, {0x18, 0x1, 0x9, 0x2, 0x0, 0x2}, {0xdf4, 0x1, 0x0, 0x1, 0xf27, 0xffff}, {0xe, 0x1, 0x9, 0xfffffffc, 0x7, 0x2}, {0x8, 0x8001, 0x7, 0x3, 0x2, 0x100}, {0x8, 0x1, 0x4, 0xe, 0x4, 0x40}, {0x51c, 0x7, 0x3, 0x9b0, 0x7, 0x81}, {0x3, 0x6, 0xc, 0xfff, 0xf, 0xd4cb}, {0x581d9aba, 0x0, 0x0, 0xffffffff, 0x7, 0x9}, {0x7, 0x6, 0x4, 0x3, 0x506f, 0x1}, {0xa18, 0x7, 0x2, 0xd, 0x6, 0x1fc0000}, {0x3, 0x177, 0xfffff308, 0x481, 0x5, 0x1ff}, {0x8b, 0x0, 0x8, 0x7, 0x2, 0x204}, {0x4, 0xc, 0x4001, 0x40000000, 0x8, 0x1}, {0x3ff, 0x5, 0x61a, 0x80000001, 0xfffffffb, 0x4}, {0xa1b, 0x40, 0x3, 0x80000000, 0x4, 0x3}, {0x2, 0x0, 0x4, 0x81, 0xffffff5e, 0x1}, {0xd00, 0x8, 0xfff, 0x5, 0x8, 0xd4}, {0x1, 0x12772edb, 0x5, 0x4, 0xdb, 0x7}, {0x0, 0x6, 0x2, 0x2d6, 0x7b, 0x3}, {0x3ff, 0xc, 0xfffffffd, 0xbcd, 0x6, 0x862}, {0x1, 0x7ff, 0x7fff, 0xe56, 0xf, 0x1}, {0x4dc, 0x2, 0x101, 0x46d, 0x2, 0xd6e}, {0x98, 0xfffffff9, 0x40, 0x3, 0xd4b7, 0x7}, {0x3, 0xfa5, 0x8, 0xf, 0x2, 0x8}, {0x4, 0x9, 0xfffffff9, 0x200, 0x5, 0x32}, {0x6, 0x267, 0x5, 0x2, 0x2, 0x5}, {0x5, 0xa, 0x5, 0x9f4, 0xfffffffd, 0x9d0}, {0x100, 0x0, 0x0, 0x3bc77452, 0xffff, 0x8}, {0x0, 0x300000, 0x0, 0x44, 0x9f19, 0x4}, {0x2, 0x6, 0x3, 0x3, 0xc, 0x8}, {0xdddf, 0x400, 0xd, 0x4, 0x0, 0x8}, {0x4, 0x8, 0xecc0, 0x5, 0x7, 0x4af}, {0x7fffffff, 0x9, 0x3ebc, 0x1, 0xd, 0x5}, {0x0, 0xc, 0x0, 0x3, 0x7, 0x9}, {0x6, 0x1, 0x7f, 0x40, 0x2, 0x2}, {0x40, 0x9, 0xe, 0x449, 0x5a, 0x2193}, {0x3, 0x2, 0xc44, 0x80000001, 0x7, 0x5}, {0x3, 0x7, 0x9d, 0xc5, 0x8, 0xfffffffb}, {0x10000, 0x2, 0x5b, 0x80, 0x4, 0xb2d}, {0x6, 0x1, 0x1, 0x2, 0xfffffff7, 0xfffffcbf}, {0x7, 0x1, 0x7, 0x8, 0x8, 0x9f}, {0x8, 0x746f, 0x5, 0x7ff, 0x200, 0x62}, {0x10001, 0x1, 0x2cc6, 0x8, 0x9, 0x10}, {0xd2, 0x8001, 0x9, 0x3, 0x34995761}, {0xfff, 0x0, 0x5, 0x8, 0x60000, 0x7fffffff}, {0x80, 0x3, 0x2, 0x1, 0x200, 0x5}, {0x6, 0xfffff800, 0x6, 0x80, 0x7ff, 0x1}, {0xb1cf, 0x6, 0x3, 0x0, 0x2, 0x9}, {0x6, 0x8, 0x0, 0x6, 0xd, 0x7}, {0x8, 0x0, 0x5, 0x3, 0x7, 0x668000}, {0x10001, 0x5, 0x692, 0x2, 0xffff, 0x3}, {0x6, 0x7c2, 0x6c, 0x40, 0x2, 0x2}, {0x9, 0x1, 0x9, 0x2, 0x5, 0x7}, {0x1, 0x74, 0x1, 0xfff, 0x2, 0x3}, {0x7, 0x7, 0x80000000, 0x3, 0x9, 0x2}, {0x8, 0x7, 0x3, 0x2, 0x3847, 0x9}, {0x6, 0x9, 0x7, 0x0, 0x6, 0x3}, {0x1000, 0xd7e, 0x5, 0x7fff, 0x0, 0x9}, {0x7, 0x8, 0x2a6a1f1d, 0x9c35, 0xfffffffd, 0x8}, {0x2, 0xc3, 0x3, 0x3b5, 0xdb41, 0x7fffffff}, {0x4, 0xfa, 0x5, 0x5, 0x5, 0x401}, {0x956, 0x4, 0x7, 0x7, 0x7ff}, {0xffffffff, 0x0, 0x7f, 0x5, 0xec9, 0x1}, {0x100, 0x81, 0x7, 0x1, 0x7, 0xd}, {0x96, 0x800, 0x5, 0xa, 0x7cd, 0x1}, {0x8001, 0xff, 0x5, 0xa68, 0x5, 0x7}, {0x9, 0x0, 0xaf42, 0x8, 0x3, 0x1}, {0x8, 0x6, 0x56, 0x2, 0x7fffffff, 0x7}, {0x2, 0x7, 0x9, 0x6, 0x3, 0x10}, {0x0, 0xffffffff, 0x4bac9f1a, 0x648, 0x0, 0x2}, {0x800, 0x4, 0x0, 0xa, 0x9, 0x3ff}, {0x5, 0x35, 0x400, 0x2, 0x4, 0x4}, {0x0, 0xf5, 0x8, 0x6, 0x80000001}, {0x1, 0x1f, 0xf, 0x2, 0x3, 0x400}, {0x1, 0x2, 0x6, 0x8, 0xff59}], [{0x4}, {}, {0x2, 0x1}, {0x4, 0x1}, {0x0, 0x1}, {0x2}, {0x2, 0x1}, {0x3, 0x1}, {0x3, 0x1}, {0x4, 0x1}, {0x5}, {0x1}, {0x2}, {0x2}, {0x4}, {}, {0x4, 0x1}, {0x4}, {0x3}, {0x1, 0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1}, {0x4}, {0x1}, {0x5}, {0x3, 0x1}, {0x4, 0x1}, {0x4}, {0x5}, {0x4}, {0x4, 0x1}, {0x3, 0x1}, {0x2, 0x1}, {0x4}, {0x5, 0x1}, {0x5}, {}, {0x4}, {0x5, 0x1}, {0x2}, {0x5, 0x1}, {0x4}, {0x2}, {0x2}, {0x4}, {0x4, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x1}, {}, {0x1, 0x1}, {0x4}, {0x2}, {0xf}, {0x2}, {0x4}, {0x4}, {0x2, 0x1}, {}, {0x5, 0x1}, {0x3}, {0x0, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x4}, {0x1, 0x1}, {0x5}, {0x0, 0x1}, {0x5}, {0x0, 0x1}, {0x5}, {0x2}, {0x2, 0x1}, {0x3}, {0x2}, {0x5}, {0x4, 0x1}, {0x3}, {0x0, 0x1}, {0x2}, {0x2}, {}, {0x1, 0x1}, {}, {0x3}, {}, {0x3, 0x1}, {0x4}, {0x5}, {0x2, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x4}, {0x2, 0x1}, {0x3}, {0x0, 0x1}, {0x3}, {0x4}, {0x4}, {0x2, 0x1}, {0x2}, {0x0, 0x1}, {0x1, 0x1}, {0x88c2009ac5d12665, 0x1}, {0x4, 0x1}, {0x5}, {0x0, 0x1}, {0x0, 0x1}, {0x2}, {0x4, 0x1}, {0x1, 0x1}, {0x5}, {0x4}, {0x2}, {0x2}, {0x3, 0x1}, {0x4, 0x1}, {}, {0x2, 0x1}, {0x5}, {0x4, 0x1}, {0x3, 0x1}, {0x1}, {0x2}, {0x5}]}}, @TCA_PEDIT_KEYS_EX={0xf8, 0x5, 0x0, 0x1, [{0x4}, {0x54, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}]}, {0x44, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}]}, {0x4}, {0x54, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}]}]}, @TCA_PEDIT_KEYS_EX={0x9c, 0x5, 0x0, 0x1, [{0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0x44, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}]}]}, @TCA_PEDIT_KEYS_EX={0x8c, 0x5, 0x0, 0x1, [{0x44, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x8e66d028565f81db}]}, {0x2c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6}]}]}, @TCA_PEDIT_KEYS_EX={0x10, 0x5, 0x0, 0x1, [{0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}]}]}, @TCA_PEDIT_PARMS={0xe80, 0x2, {{{0xc, 0x40, 0xffffffffdffffffe, 0x9, 0x62}, 0xf, 0xf8, [{0x9, 0x78, 0xe, 0x2, 0x7, 0x972}, {0x5, 0x3, 0x81, 0x1000, 0xe215, 0xc422}, {0x9, 0x7, 0x5, 0x5, 0x4, 0x100}, {0x3ff, 0x87ce, 0xd5, 0x5, 0x3a4, 0x4}]}, [{0x9, 0x2c1, 0x9, 0x3, 0x100, 0x7}, {0x9, 0x3, 0x100, 0x7, 0x101, 0x16}, {0x378b, 0x4, 0x44, 0x0, 0x40, 0x5}, {0x7, 0x6, 0xa, 0x0, 0x8, 0x101}, {0x38, 0x2, 0x800, 0xbe, 0x3aa, 0x400}, {0xc, 0x100, 0x6, 0x80, 0x0, 0x6}, {0x9, 0x8, 0x7, 0xffffffff, 0x51, 0x96f}, {0x6, 0x401, 0x3ff, 0x9d, 0x200, 0x2}, {0x2, 0x401, 0x5, 0xa, 0x9, 0xb090}, {0x7, 0x6, 0x4, 0xa21, 0x0, 0xffff}, {0x3, 0x50000, 0x8001, 0x8, 0x8}, {0x7ff, 0x7fffffff, 0x98e, 0x10, 0x5, 0x7}, {0x7, 0x5, 0xffffff91, 0x3, 0xec, 0x101}, {0x6, 0x9, 0x1, 0x200, 0x51c, 0x9}, {0x7, 0x6f, 0x2c, 0x0, 0x8, 0x2}, {0x40, 0x8000, 0x80, 0x9, 0xfffffff7}, {0xe, 0x9, 0xfffffffc, 0x0, 0x7fff, 0x401}, {0x4, 0x3, 0x1ff, 0xbde, 0x10000, 0x2}, {0x4, 0xf, 0xae1a, 0x0, 0x3, 0x9}, {0x60000000, 0x1, 0x2, 0xea8, 0x7, 0xc1}, {0x5, 0x42000000, 0x5, 0x0, 0x8001, 0x5}, {0x7, 0xff, 0x1, 0xfffffffd, 0x0, 0xff}, {0x3, 0xfffffffe, 0x4, 0xfffffff5, 0xfffffffa, 0x2}, {0x1, 0x9, 0x0, 0xd, 0xfffffff2}, {0x3, 0xe4b0000, 0x3, 0x2, 0x0, 0x401}, {0x8001, 0x6, 0x8, 0x9, 0x2, 0x200}, {0x10001, 0x4, 0x1000, 0x1, 0x10000, 0xb7}, {0x0, 0xff, 0x81800000, 0x4, 0x2, 0x80}, {0x80000001, 0x0, 0xe, 0x6, 0x3, 0x950}, {0x6, 0x8, 0x1, 0x4, 0x5, 0xfff}, {0x7ff, 0x8, 0x8, 0x100, 0x9, 0x8}, {0x7fffffff, 0x3, 0x4, 0xffff, 0x21ff, 0x101}, {0x4, 0xd288, 0x89, 0x6, 0x8, 0xc8}, {0x7, 0x2, 0x1ff, 0x7, 0x4, 0x40}, {0x8, 0x2, 0x7, 0x380, 0x7, 0xfffffffd}, {0x3, 0x4, 0x2, 0x857, 0x6e1d, 0x5}, {0x7, 0x50, 0x1000, 0x7fff, 0x10, 0x4}, {0x11bb, 0xfffffc00, 0x313, 0x5, 0x741, 0x80}, {0x0, 0x3ff, 0x0, 0xc, 0x0, 0x9}, {0x4, 0x0, 0x8, 0x9, 0x40, 0x8000}, {0x5, 0x5, 0x2, 0x1f9, 0xf, 0x1}, {0x2, 0x4, 0x20000000, 0x2, 0x9, 0x8c}, {0x6, 0x7fffffff, 0x2, 0x10000, 0xb812, 0x2}, {0x5, 0x6, 0x6, 0x6, 0x20000000, 0x10}, {0x2, 0x7, 0x9, 0xf, 0x0, 0x6}, {0x1, 0x2, 0xd6b7, 0x891, 0x6, 0xffff}, {0x3, 0x7, 0x4, 0x80000001, 0x9, 0x2}, {0x1, 0x4a, 0x0, 0x8001, 0x8, 0x9ed7}, {0x2, 0x4, 0x401, 0xe60e, 0xb, 0x800}, {0x6, 0x6, 0x10001, 0x3, 0x93, 0x81}, {0x1, 0x1, 0xbe8d, 0x5, 0x2, 0xc}, {0x2e7, 0x1, 0x81, 0x9, 0xb24, 0xffffffff}, {0x7, 0xc05, 0xfffffffb, 0x6, 0x1, 0x732a}, {0x6, 0xff, 0xfffeffff, 0x9, 0xff, 0x8000}, {0x3, 0x8, 0x401, 0x9, 0x9, 0x2}, {0x3, 0xfffffffa, 0x8, 0x0, 0x0, 0x4}, {0x6, 0x3c84, 0x8108, 0x37, 0x6, 0x3}, {0x8, 0x2, 0x1, 0xe, 0x2, 0xfff}, {0x5, 0x5, 0x7, 0x9, 0x4, 0x80000000}, {0x8, 0x0, 0xfff, 0x0, 0x7ff, 0x9}, {0x0, 0x6, 0x6, 0x5aa3, 0x6, 0x1}, {0x1, 0x5, 0x1, 0x1, 0x0, 0x4}, {0x101, 0x10000, 0x800, 0xc174, 0xffff8000, 0x7}, {0x5, 0x6, 0x0, 0x120000, 0x1, 0x1}, {0x0, 0x1, 0x6, 0x6, 0x1a2, 0xb}, {0x81fb, 0x6926, 0x1, 0x0, 0x6, 0x5}, {0x8, 0x1, 0x8, 0x7fff, 0x1, 0x4}, {0x7, 0x3, 0xcbbf, 0x0, 0xfff, 0x5}, {0x4, 0xffffffce, 0x1000, 0x5, 0x5, 0x3}, {0x4, 0x80, 0xfffff012, 0x7c, 0xfffffffa, 0x33342681}, {0x800, 0x2, 0x800, 0x3571, 0xe, 0x4}, {0xc, 0xffff, 0x400, 0x40, 0x0, 0x2}, {0xa, 0x1ff, 0x9, 0x4, 0x8, 0x1}, {0xfffffffe, 0x2, 0x6, 0x6, 0x4, 0x4}, {0x8, 0x100, 0x2, 0x4, 0x5, 0xfffffffc}, {0x0, 0x7, 0x3, 0x5, 0x8}, {0x8001, 0xab0, 0xfffffffd, 0x80000000, 0x1ff, 0x10001}, {0x6, 0x7ff, 0x9, 0x8, 0x3, 0xff}, {0x5, 0x0, 0xd, 0xfffffff8, 0xfff, 0x5}, {0x6, 0x7f, 0x3a, 0x7, 0x4, 0x80}, {0x0, 0x401, 0xffffffb9, 0x6, 0xee0, 0x5}, {0x9, 0x0, 0x0, 0xc8, 0x3, 0xc}, {0x9, 0x354d, 0x9, 0x0, 0x8000, 0x4}, {0x2, 0x8, 0x4, 0x10001, 0x9, 0x1a}, {0x1000, 0x6, 0x80000000, 0x6, 0x1ff, 0x1}, {0x7, 0x0, 0x8, 0xd7a, 0x9643, 0x8}, {0xfffffff8, 0x2, 0x4ebc, 0x9, 0x10000, 0x2}, {0x9, 0x81, 0x170, 0x7, 0xad43, 0x4}, {0x1b5df77b, 0x3, 0x4, 0x6, 0x80000000, 0x7fffffff}, {0x9, 0x1, 0xe, 0x80000000, 0x7, 0x6}, {0x8001, 0x6, 0x10001, 0x9, 0x5, 0xfff}, {0x7ff, 0x200, 0x40, 0x8, 0x4}, {0xd6c, 0x2, 0xfff, 0x6, 0xb, 0x2}, {0x7fff, 0xa, 0x8, 0x7, 0x9, 0x1}, {0x2, 0xf, 0x1, 0x5, 0x401}, {0x2, 0x6280, 0x9, 0x4, 0x1, 0x80000000}, {0x80, 0x8, 0x7ff, 0x2, 0x4, 0xfcbf}, {0x6, 0xd095, 0x5, 0xff, 0x2e, 0xf}, {0x4, 0x2, 0x0, 0x0, 0x9, 0xfffffe5e}, {0x7b2, 0x4, 0x3, 0x1000, 0x5, 0xa}, {0x0, 0xa7b7, 0x35c80, 0x1, 0x7, 0x7fffffff}, {0x7, 0x400, 0xfffffff7, 0x5365, 0x6b51, 0xc}, {0x8, 0xf2, 0x0, 0x1, 0x5, 0xb}, {0x2, 0x400, 0x6, 0x5b58, 0xffffffac, 0x2}, {0xfffffffa, 0x80000001, 0x0, 0x2, 0x17, 0xf16d}, {0xec2, 0x6, 0xdf7, 0x0, 0x6, 0xff}, {0x4, 0x10000, 0xfffffff8, 0x9, 0x71248aa7, 0x7fff}, {0x7, 0x200, 0x4, 0x629, 0x81, 0x9}, {0x6, 0x9, 0xfffffffd, 0x2, 0xe, 0x1}, {0x7f, 0x6, 0x100, 0x4e5, 0xd89, 0x2}, {0x7, 0x3ff, 0x5, 0x9, 0x0, 0x6}, {0xaac2, 0x6, 0x2, 0x0, 0x6, 0x3}, {0x7e7, 0x8, 0x5, 0x8, 0x9, 0x4}, {0x8, 0x3, 0x5719, 0x3, 0x7}, {0x10000, 0x4, 0x8001, 0x2, 0x2, 0x7}, {0x5, 0x4, 0x4, 0x6, 0x10000, 0x4}, {0x3, 0x90, 0x80000, 0x6, 0x10000, 0x5}, {0x6b7, 0x9, 0x10, 0x5, 0x101, 0x1c7a}, {0x9, 0x80000000, 0x2, 0x0, 0x7, 0x4}, {0x9, 0x8f, 0xfff, 0x1, 0x7, 0x53c}, {0x0, 0x8, 0x81, 0x8, 0x9, 0x5}, {0x56c, 0xffffffff, 0x9, 0xffff8001, 0x0, 0x3}, {0x7, 0x7, 0x1, 0x7, 0x4, 0x1ff}, {0xff, 0x2, 0x8, 0x4, 0x7, 0x12}, {0x65a8, 0x7, 0x2, 0x8, 0x4, 0x2}, {0x4, 0x40, 0x40, 0x1, 0x1000, 0x101}, {0x3, 0x400, 0x8, 0x1, 0xffff8000, 0x5}, {0x0, 0x0, 0x10, 0x9, 0x4, 0x2}], [{0x5, 0x1}, {0x3, 0x1}, {}, {0x4}, {0x2}, {0x3, 0x1}, {0x4}, {0x0, 0x1}, {0x3, 0x1}, {0x2}, {0x3, 0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5}, {0x5, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x3}, {0x4}, {0x0, 0x1}, {0x2}, {0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {}, {0x1}, {0x1}, {0xb4fb6f33d0be728c}, {0x4}, {0x5, 0x1}, {0x1, 0x1}, {0x4, 0x60b923d3db9590d3}, {0x0, 0x1}, {0x5}, {0x2, 0x1}, {0x3, 0x1}, {0x4}, {0x2, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x3, 0x1}, {0x3, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x5}, {0x0, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x1}, {0x3, 0x1}, {0x4}, {0x4}, {0x4, 0x1}, {0x5}, {0x4, 0x1}, {0x1}, {0x0, 0x1}, {0x4}, {0x0, 0x1}, {0x5, 0x1}, {0x1, 0xa07f293bf941a2d}, {0x4, 0x1}, {0x2, 0x1}, {0x4}, {0x3, 0x1}, {0x0, 0x1}, {0x4}, {0x5, 0x1}, {0x0, 0x1}, {0x5}, {0x2}, {0x1, 0x1}, {0x4, 0x1}, {}, {0x4}, {0x4, 0x1}, {0x2, 0x1}, {0x3, 0x1}, {0x5}, {0x1}, {0x2, 0x1}, {0x2}, {0x4}, {0x4}, {0x4, 0x1}, {0x3, 0x1}, {0xfb3ffb46d97f76e8, 0x1}, {0x5}, {0x4}, {0x3}, {0x0, 0x1}, {}, {0x5}, {0x3, 0x1}, {0x5, 0x1}, {0x4}, {0x1, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x1}, {0x3}, {0x2}, {0x1, 0x1}, {0x5}, {0x3}, {0x4}, {0x4}, {0x0, 0x1}, {0x4}, {0x4}, {0x0, 0x1}, {0x3, 0x1}, {0x3, 0x1}, {0x1}, {0x4, 0x1}, {0x3}, {0x3, 0x1}, {0x2}, {0x5}, {0x5}, {0x0, 0x1}, {}, {}, {0x5, 0x1}]}}]}, {0x77, 0x6, "3365bb47bc49bfb183efcca9e79dedd2f837c5d3bae23d94d3bf3db4afa71c9f531d8448ec7a4b7990775e56a378ba43aa7bb3ebe91f1e73d146f239c57f555130e2a716840e0c4c7f8c89868d2cafa5b14d33ac9bee3910590ced2138d197b1e68c6cee399c7bb80391fe2672a34e842c1f84"}, {0xc, 0x7, {0xf3395c6b88573de}}, {0xc, 0x8, {0x3, 0x2}}}}]}]}, 0x2f14}}, 0x8000) (async)
sendmmsg(r8, &(0x7f00000002c0), 0x40000000000009f, 0x0) (async)
setsockopt$SO_RDS_TRANSPORT(r7, 0x114, 0x8, 0x0, 0x0) (async)
write$proc_mixer(r6, 0x0, 0x0) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), r7)

3.346796382s ago: executing program 3 (id=420):
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf01b}, {0x0}], 0x2)
r2 = io_uring_setup(0x669, &(0x7f00000002c0))
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0xa, 0x0, r3)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x7, 0x0, r0, 0x0, &(0x7f0000000140)="fae041126fe25bd3897844fc7a741f05f6b82497f8c5a1c236eece51ad3bffffffffe33e155992a7d537d2ce", 0x2c, 0x40020040, 0x1, {0x0, r3}})
syz_io_uring_setup(0x487, &(0x7f0000000240)={0x0, 0x159c0, 0x20000, 0x0, 0x2e0, 0x0, r0}, &(0x7f0000000340)=<r4=>0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x3, 0x3, &(0x7f00000001c0)=ANY=[@ANYRESDEC], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r6, 0x0, 0x0, 0x2204c811, &(0x7f0000b63fe4)={0xa, 0x4002, 0x1, @loopback}, 0x1c)
splice(r6, 0x0, 0xffffffffffffffff, 0x0, 0x406f413, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r5, r5, 0x2f, 0x0, @void}, 0x10)
r7 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r7, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback={0xff00000000000000}, 0x2000400}, 0x1c)
sendmmsg$inet6(r7, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x176}}], 0x400000000000172, 0x4000000) (fail_nth: 1)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$gtp(&(0x7f0000000200), 0xffffffffffffffff)

3.126975043s ago: executing program 2 (id=422):
r0 = add_key$user(&(0x7f0000000100), 0x0, 0x0, 0x0, 0xffffffffffffffff)
keyctl$instantiate(0xc, r0, &(0x7f0000000000)=@encrypted_load={'load ', 'default', 0x20, 'trusted:', 'user\x00', 0x20, 0x9, 0x20, [0x64, 0x31, 0x34, 0x30, 0x38, 0x33, 0x36]}, 0x38, 0xfffffffffffffffa)
keyctl$setperm(0x5, r0, 0xc030005)
keyctl$instantiate(0xc, r0, &(0x7f0000000140)=ANY=[@ANYBLOB="6c6f61642264356661756c74207573657286d8282cad3a7573657200203201bb2655a064f730303030303030303036303320383565333800d153498c16e534fd66f8cbc6fc2fc01dbb05ec4695bc5da8ad6f50c7248e59671bbed45833d47bd5ec113f2697d473f8b095b2239ec614150c479403197c258195f5ba0841d7731a24625bc23e7752098b2ae6f11231b8af29793bf6da8d895940db9c8f453ef54ee8aa2d4e624126e9d75822372e6c7562746f564569b5d9be9282347f5a"], 0x33, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2}, &(0x7f0000000300)=<r2=>0x0)
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000040)={0x0, 0x0, 0x8000, 0x3fd})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r2, 0x1, &(0x7f0000000040)={{0x77359400}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r3 = syz_open_dev$mouse(&(0x7f0000000340), 0x0, 0x8042)
readv(r3, &(0x7f0000000000)=[{&(0x7f0000000c40)=""/4081, 0xff1}], 0x1)
openat$mice(0xffffff9c, &(0x7f0000000200), 0x0)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[], 0x1c8}}, 0x0)
keyctl$read(0xb, 0x0, 0x0, 0x0)

2.487156555s ago: executing program 3 (id=423):
socket(0x400000000010, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bond0\x00'})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0xba01}, 0x8014)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
socket$unix(0x1, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$udambuf(0xffffff9c, &(0x7f0000000380), 0x2)
ioctl$UDMABUF_CREATE_LIST(r2, 0x40087543, &(0x7f00000003c0)={0x1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x8]}, 0x8, 0x80800)
io_setup(0x2, &(0x7f0000000b80)=<r6=>0x0)
io_submit(r6, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r5, 0x0}])
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r4, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r7, {0x2, 0x0, @local}, 0x2}}, 0x26)
connect$pppl2tp(r3, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x2}}, 0x2e)
mkdir(0x0, 0x0)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r8=>0x0)
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r8, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
r9 = getpgid(0x0)
r10 = syz_pidfd_open(r9, 0x0)
pidfd_send_signal(r10, 0x21, 0x0, 0x4)

2.316894189s ago: executing program 0 (id=425):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001400)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x44}}, 0x0)

2.315362415s ago: executing program 0 (id=426):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000003c0), 0xffffffffffffffff)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x1e, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r3 = eventfd(0xfffffff9)
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x5, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000040000000000000090000008500000011000000850000000700000095"], &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x11, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800ff5c6cc3e43f6dc437e0fffcffffff9100"/38], &(0x7f00000005c0)='GPL\x00', 0x7, 0xa8, &(0x7f00000006c0)=""/168, 0x41000, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000600)={0x4, 0x8, 0x4, 0xc37}, 0x10, 0x0, 0x0, 0x2, &(0x7f0000000780)=[0x1, 0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, r2], &(0x7f00000007c0)=[{0x1, 0x1, 0x6, 0xc}, {0x4, 0x1, 0xf, 0x1}], 0x10, 0x5}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r4, 0x0, 0x8, 0x8, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r3})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000580)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/59, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f00000008c0)=""/246, &(0x7f00000000c0)=""/87, &(0x7f00000009c0)=""/72, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_SET_VRING_ERR(r2, 0x4008af22, &(0x7f00000002c0)={0x1, r3})
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000000)=0x1)
sendmsg$RDMA_NLDEV_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)={0x10, 0x1401, 0x400, 0x70bd25, 0x25dfdbff}, 0x10}}, 0x40)
sendmsg$IEEE802154_LLSEC_DEL_DEV(r0, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[@ANYBLOB='2\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000126bd7000fcdbdf252b0000000a0001007770616e33000000"], 0x20}, 0x1, 0x0, 0x0, 0x20044051}, 0x804)
openat2(0xffffffffffffffff, 0x0, &(0x7f0000001180)={0x460600, 0x1f887e89b62ea620, 0x2}, 0x18)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x2d4, 0x12c, 0x940c, 0x3002, 0x12c, 0x2c0, 0x204, 0x3d8, 0x3d8, 0x204, 0x3d8, 0x3, 0x0, {[{{@ipv6={@mcast1, @private1, [0x0, 0xffffff00, 0xffffff00], [0xffffffff, 0xffffffff, 0x0, 0xffffff00], 'dvmrp1\x00', 'veth1_virt_wifi\x00', {0xff}, {0xff}, 0x3c, 0x1, 0x5, 0x2}, 0x0, 0xec, 0x110, 0x0, {}, [@common=@inet=@set2={{0x24}, {{0x0, 0x6, 0x1}}}, @inet=@rpfilter={{0x24}, {0xa}}]}, @common=@inet=@LOG={0x0, 'LOG\x00', 0x0, {0xfa, 0x12, "bf2d6c7c7f480586e6f0943a86de6e8793440f50a5ac19851b8354c057b6"}}}, {{@uncond, 0x0, 0xc8, 0xfc}, @common=@inet=@SET3={0x34, 'SET\x00', 0x3, {{0x0, 0x3}, {0x2, 0x3, 0x1}, {0x5, 0x4, 0x7}, 0x0, 0x1000}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0xfffffffffffffdbb)
write$UHID_INPUT(r5, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r7 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000000)='nr0\x00', 0x10)
sendmmsg$inet(r7, &(0x7f0000001040)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000001080)="b9", 0x1}], 0x1, 0x0, 0x0, 0x2000000}}], 0x1, 0x0)

2.267371678s ago: executing program 3 (id=427):
socket(0xa, 0x5, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
sched_setattr(0x0, 0x0, 0x0)
timerfd_create(0x0, 0x0)
clock_adjtime(0x0, &(0x7f0000000580)={0x1ff, 0x2, 0x23e654d4, 0xa, 0x1000, 0x0, 0x0, 0x800000, 0x2, 0x100, 0x1, 0xfffffdfffffffffd, 0x9, 0x10, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1000, 0x8, 0x2, 0x2, 0x1, 0x3})
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000080))
socket$kcm(0x10, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'dummy0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000900)=@delchain={0x204, 0x11, 0x1, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r5, {0x10, 0xf}, {0x0, 0xc}, {0x9, 0x1}}, [@filter_kind_options=@f_flow={{0x9}, {0x4}}, @TCA_RATE={0x6, 0x5, {0xd, 0x9}}, @TCA_RATE={0x6, 0x5, {0x70, 0xfb}}, @TCA_CHAIN={0x8, 0xb, 0x1000}, @TCA_RATE={0x6, 0x5, {0x0, 0x8}}, @filter_kind_options=@f_bpf={{0x8}, {0x1a8, 0x2, [@TCA_BPF_FLAGS_GEN={0x8, 0x9, 0x6}, @TCA_BPF_FLAGS={0x8}, @TCA_BPF_ACT={0x188, 0x1, [@m_ctinfo={0x184, 0x13, 0x0, 0x0, {{0xb}, {0x64, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0x401, 0xef, 0x4, 0x1ff000, 0x6}}, @TCA_CTINFO_ACT={0x18, 0x3, {0xab58, 0x5, 0x4, 0xc, 0x7fff}}, @TCA_CTINFO_ACT={0x18, 0x3, {0x1, 0x6, 0x0, 0x80000000, 0x5}}, @TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0x9}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x9}, @TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0x55d}]}, {0xf8, 0x6, "8d153d307828be2daf4d4181837f0d977b8295a1d64a7d369a079538985cff0cbbfa18e81a0d2ac310f53c1651f4a29dc98edcdc8ee41b452509c90baadeb58dccfd26e6bf581e7cd54b3282223f21c9350b0df059b978b9f24554cfbfe3cfe47900eff2a10a43c9e2d62bfa6dfe8e97582b781ba4fd1e1615e5bb1a4990e3abe1d014d52e279dc5208297fb87a6ea0f5b46390ae37baa69de5d0faf5746a347c5ab3ac0863e21e042797e3c893c9cb8e2e584e08aad227a1671bdf39225426ae31243cf80be852f734af52df2c37690f7af396ee3f6dd544c8fa3986cb4926c963b9a9feceb478a9470d5eb6872bbc68c924a92"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}, @TCA_BPF_POLICE={0xc, 0x2, [@TCA_POLICE_AVRATE={0x8, 0x4, 0x2e}]}]}}]}, 0x204}}, 0x0)

2.26526837s ago: executing program 1 (id=428):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
getpeername$netrom(r3, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
r5 = dup(r4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x7}], 0x1c)
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
read(r6, &(0x7f0000000500)=""/158, 0x9e)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)={0x1c, 0x4, 0x6, 0x201, 0x0, 0x0, {0xa, 0x0, 0x5}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x11}, 0x28000080)
sendmsg$inet6(r4, &(0x7f0000000800)={&(0x7f0000000000)={0xa, 0x4e24, 0x8, @ipv4={'\x00', '\xff\xff', @local}, 0x2}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22, @empty}}, 0x10000007, 0xfffc, 0xe655, 0x2, 0x85, 0x8, 0xff}, 0x9c)

1.289636474s ago: executing program 2 (id=429):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x4, 0x4, 0x39c, 0xffffffff, 0x0, 0x120, 0x1e8, 0xfeffffff, 0xffffffff, 0x2d4, 0x2d4, 0x2d4, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@private0={0xfc, 0x0, '\x00', 0xa}, @private0, [0xffffffff, 0xff, 0x0, 0xffffffff], [0x0, 0xffffffff, 0xffffffff, 0xff000000], 'pimreg\x00', 'pimreg1\x00', {0xff}, {}, 0x62, 0xc, 0x1, 0x24}, 0x2f2, 0xfc, 0x120, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'team0\x00', {0x6f, 0x6, 0x81, 0x9, 0x8, 0xf, 0x5, 0x8, 0x80}, {0x7}}}]}, @common=@unspec=@STANDARD={0x24, '\x00', 0x0, 0xfffffffffffffffc}}, {{@uncond, 0x0, 0xa4, 0xc8}, @REJECT={0x24}}, {{@uncond, 0x0, 0xc8, 0xec, 0x0, {}, [@common=@inet=@dscp={{0x24}, {0x4, 0x1}}]}, @REJECT={0x24, 'REJECT\x00', 0x0, {0x2}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x3f8)
r3 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="1400000023000b6c8cfffdfccabb00f90429fc60", 0x14}], 0x1}, 0x20044080)
fstatfs(r3, &(0x7f0000000400)=""/23)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000340)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000800000fbdbdf25250000000e0001006e657464657673696d0000000f0002"], 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

1.228439166s ago: executing program 0 (id=430):
r0 = creat(&(0x7f0000000440)='./file0\x00', 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x3, 0x10, &(0x7f00000004c0)=@framed={{}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000140)={@map=0x1, r1, 0x2e, 0x0, r1, @void, @value=0x0}, 0x20)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = openat$ocfs2_control(0xffffff9c, &(0x7f0000000000), 0x282061, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100))
ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000140)=@arm64={0x48, 0xe, 0x8, '\x00', 0x9})
ioctl$KVM_SET_GUEST_DEBUG_x86(r6, 0x4048ae9b, &(0x7f0000000080)={0x80002, 0x0, {[0x800, 0x8, 0x2, 0x9, 0x9, 0xfffffffffffffff3, 0x200, 0x81]}})
r7 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_PORT_SPLIT(r3, &(0x7f0000000400)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB="44b66ca64a688782139d3a85d56ee475b04640de9dd0fb108f23bfbec88ce8f4cfd8938cdb1f2a17aa016fec8dad", @ANYRES16=r7, @ANYBLOB="000228bd7000fbdbdf2509000000080001007063690011000200303030303a30303a31302e300000000008000300030000000800090008000000"], 0x40}, 0x1, 0x0, 0x0, 0x4000}, 0x4008084)
sendmsg$NFT_BATCH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0xd0}}, 0x0)

1.227993456s ago: executing program 2 (id=431):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TYPE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0xd, 0x6, 0x5, 0x0, 0x0, {0x7, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x10, 0xd, 0x7fff7ffc}]})
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x76}}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000006c0)={r3, 0xe0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)
syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x103802)
syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x189482)
r4 = socket$nl_route(0x10, 0x3, 0x0)
openat$ocfs2_control(0xffffff9c, &(0x7f0000000140), 0x22c0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="4000000010003b150c00"/20, @ANYRES32=0x0, @ANYBLOB="c1900000815c00001800128008000100677470000c00028008000200", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00g'], 0x40}}, 0x48010)
close_range(r1, 0xffffffffffffffff, 0x200000000000000)

1.048532362s ago: executing program 2 (id=432):
ioctl$XFS_IOC_FSGEOMETRY_V4(0xffffffffffffffff, 0x8070587c, &(0x7f0000001100))
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x6, 0xc, &(0x7f0000000100)=ANY=[@ANYBLOB="180200000400000000000000fcffff0185000000bc0000001801000020646c2400000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000f000000850000000600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0xe, 0xffffffffffffffd8, &(0x7f0000000440)="7af1e98375837baa45a6055d1bae", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r0, &(0x7f0000001400)="e3", 0x1, 0x20008005, &(0x7f0000001200)={0x2, 0x4e20, @empty}, 0x10)
shutdown(r0, 0x1)
r2 = fsopen(&(0x7f0000001200)='btrfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x4)
r4 = openat$cgroup_ro(r3, &(0x7f00000011c0)='blkio.bfq.io_merged_recursive\x00', 0x5000000, 0x0)
readv(r4, &(0x7f00000012c0)=[{&(0x7f0000000100)=""/4080, 0xff0}], 0x1)
recvfrom(r0, 0x0, 0x2, 0x62, 0x0, 0xfe18)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x80489439, &(0x7f0000000380))
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000880)={0x28, 0x0, 0x0, @local}, 0x10)
shutdown(0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x20, 0xc, 0x77, 0xfffff035}]}, 0x8)
poll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x5208}], 0x1, 0x800)
r6 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x749})
r7 = syz_open_dev$ptys(0xc, 0x3, 0x0)
ioctl$FIONREAD(r7, 0x541b, &(0x7f0000000240))
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
r8 = memfd_create(&(0x7f0000001300)='v\xa6\xf5lj6,r\xaf\xe8\x10/\xecg\xed\xe3h\x80\xb9!y6w\xda\xdd\xb9\nR\xe8@\x99\xb9\x8a\x0fZ\t\x90\x8bp\x10\x84\x86t\x8a\xba\xc6\xfb\xd2\f\xef&\xad\xa8M\xe8\b\xb0#\xac)\x81\x1e\x8a\f\x11D\xe3l\x87\\\x15Hd~\\\x11\x95\xf8\xe6\xa7\xc3\xbc\x18+\x92\x92N\a\xa7\x7fN\x9bL\xf8\xebQs\x02\xf9\xadi\x8f\x0f\xff\x02n\x9d\x85\xea\x1a*\x1bI\xd8\x1c\xe8\x9bYS%\x1d\x10\x86\xa0\v\xea\xd9\x89\xda\xa7Wd\xa4Eu\x8csm\xa1.\xd1\xb2I\x1a\xb2\xfdA\x98\x16\xca\x83y\xf9\x1a\xe7\x06h\av\xa8\xd8\xceY\xc0\xe6v\xb5\xf5\x9d\xbe\xa58\xb42\xd8V$\xe6\xc8\x1c\xaf\x8e\xa1\xefa\xb1/\xee1=\xbfM\xeaw\f\xa2\x87\x1c(\x1a-\xeb\xfbV\xeb4\xd4C]\xc7=e\xb9\xea`IZ\x03H\xd9\x86\xe12N\x1f\xd8{\xf5z@\xe0\x00\x00\x00\x00', 0x0)
mmap(&(0x7f00001d1000/0x3000)=nil, 0x3000, 0x1800006, 0x11, r8, 0xbc4cd000)
r9 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r9, &(0x7f0000002c80)={0x0, 0x0, &(0x7f0000002c40)={&(0x7f0000001180)=ANY=[@ANYBLOB="180000000600000000000000fbdbdf25034108000100020000000000008ab4ec8160"], 0x18}, 0x1, 0x0, 0x0, 0x10}, 0x40)
readv(r6, &(0x7f0000000280)=[{&(0x7f0000000100)=""/45, 0x2d}], 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)

928.41172ms ago: executing program 3 (id=433):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0)
syz_open_dev$ndb(&(0x7f0000000480), 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$comedi(0xffffffffffffff9c, 0x0, 0x400, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r4=>0x0})
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_MPP(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c00000001a7266b092b416d0e44a44b946dcd1255fb7837a5f1b11ae3e79acc881bf862e6fe3daa358f298f6bda6d04417b427a4b227e125badfe0cef1750c0bf36962e709dd415e07adb4ad93f37ff7c15878b", @ANYRES16=r5, @ANYBLOB="010300000000ffffffff1100000008000300", @ANYRES32=r4, @ANYBLOB], 0x1c}}, 0x0)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000000c0)=0x5)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000200)=0xdc)
shutdown(r6, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000180)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@empty, 0x4e22, 0x0, 0x0, 0x8, 0x2, 0x0, 0x0, 0x1}, {0xfffffffffffffffd, 0x0, 0x6, 0x0, 0x5, 0x80000000, 0x0, 0x7fffffffffffffff}, {0x0, 0x0, 0xffffffffffffffff, 0x20000000000000}, 0x0, 0x0, 0x1}, {{@in=@empty, 0x4d5, 0x6c}, 0xa, @in=@private=0xa010102, 0x350a, 0x4, 0x0, 0x0, 0x0, 0x2, 0x200000}}, 0xe4)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000200)={<r8=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r6, 0x84, 0x7a, &(0x7f0000000040)={r8, @in6={{0xa, 0x4e25, 0xfffffff7, @ipv4={'\x00', '\xff\xff', @loopback}, 0x74}}}, &(0x7f0000000280)=0x84)
syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB, @ANYRESOCT=r8, @ANYRES8=r3], 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x30)

877.647943ms ago: executing program 0 (id=434):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200))
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = syz_io_uring_setup(0x54d, &(0x7f0000000040)={0x0, 0x735a, 0x100, 0x805, 0x350}, &(0x7f0000000100)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x6000, @fd_index=0x5, 0x73, 0x0, 0x0, 0x1e, 0x1, {0x3}})
io_uring_enter(r0, 0x47bc, 0x4000, 0x0, 0x0, 0x0)

698.514504ms ago: executing program 0 (id=435):
socket(0x400000000010, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bond0\x00'})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0xba01}, 0x8014)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
socket$unix(0x1, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$udambuf(0xffffff9c, &(0x7f0000000380), 0x2)
ioctl$UDMABUF_CREATE_LIST(r2, 0x40087543, &(0x7f00000003c0)={0x1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x8]}, 0x8, 0x80800)
io_setup(0x2, &(0x7f0000000b80)=<r6=>0x0)
io_submit(r6, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r5, 0x0}])
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r4, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r7, {0x2, 0x0, @local}, 0x2}}, 0x26)
connect$pppl2tp(r3, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x2}}, 0x2e)
mkdir(0x0, 0x0)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r8=>0x0)
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r8, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
r9 = getpgid(0x0)
r10 = syz_pidfd_open(r9, 0x0)
pidfd_send_signal(r10, 0x21, 0x0, 0x4)

653.800109ms ago: executing program 1 (id=436):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="b400000000000000dd0a00000000000278735188b7cebb63000100950000000000000046d7761b25ac860f0f657d14d7a263b0dcc17f5558a62ceb"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x94)
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
mount(0x0, 0x0, 0x0, 0x44021, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000022c000/0x3000)=nil)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
syz_pidfd_open(0x0, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480b0000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)
r4 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'bond0\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x0)
bind$netlink(r7, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbfd, 0x400}, 0xc)
getsockname$packet(r7, &(0x7f0000000600)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r6, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x40d, 0x70bd2a, 0x0, {0x0, 0x0, 0x0, r8, 0x1}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_MODE={0x5, 0x1, 0x4}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x1, 0x803, 0x0)
getsockname$packet(r10, &(0x7f0000000100)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001400)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8, 0xa, r11}]}, 0x44}}, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)

298.840173ms ago: executing program 0 (id=437):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='attr\x00')
r1 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$inet6_IPV6_DSTOPTS(r1, 0x29, 0x3b, &(0x7f0000000140)=ANY=[@ANYRESDEC=r1, @ANYRES16, @ANYBLOB="80287fa8"], 0x8)
getsockopt$inet6_opts(r1, 0x29, 0x39, 0x0, &(0x7f0000000640))
getdents(r0, &(0x7f0000000040)=""/44, 0x2c)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x2)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x1)
r4 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x8801, 0x0)
ioctl$TCSETSF(r4, 0x5404, &(0x7f0000000380)={0x2, 0x3, 0x10000, 0x9, 0x13, "a294e7003e805a9d1b78d681c441000700"})
write$UHID_INPUT(r4, &(0x7f0000001c40)={0x8, {"45707fe6c13ec0bd03e5ecc69c764fabe1f326e479445fcb5b205f8c3b622124e794bd8e155f4d904619803fd30c7c202046abd5cd2a26aeb32d246533b18dbb112bba54737fa3db4899cfbf40d3f0c487e58766cf9c7b78842142fb94c1a1c94a4b98b0cf1fed922cdbea0b164200d9f958ecd17c75d4b852a384e41367b0298b005bb13c7050e0342de230db20f9a86fe5fff6fff420f03ec7bb88747480857ed08bd7b1c7d178945f1af284d8ca636101edf9c287491e9a33df027ba595b273a8ed5aa6e64d7d3b218b76dc3566398b63e3a8dd3de57079ca6118e08a919f343ead86112d5dea53d5318814f9ddf14081758874653d15a71d0a4b7b18910a03e474208e31ca08e010c28aaa46ecc7c466cb8a06ee6047ca4ae798dc67f6e612afb9aca11097fec86fd5f12ffc6d43e70d749ed8962f2c9d7e88c49cad8b6af5ffca7d38eecafe276f318fdc229937052dee824a11519c054b9716a45703baef71e935632522ac184812313296a6599384899e8015ca5812cd608882ed02e8bc602bb3fb28b7e2bf2128e9fbe97a1e27e074586c6ebb0449ae67c56a96a0b0fcddadb770e57ef7377fed2191d519f222f8a8ce060cbeaa0428c835884f62fca487cd834ad600a5f68c28840878f9f519238abac8ab71c985bd0cdfb5bb1448cb8bb34a59ae512f2deee1f404e0d0c603c615a09be57ef4b94005ee0ef906239d56fa9f310b1be21098ac02db6302c4950496fdbc249d8ffd7cd19e7e26464e712c3184182b57546ae65b77ce55edeae4ee690a0db16b5c26977d36a3369c58ee48588f0ba502f4b584ccfe2e0f60b861930f24db34307ccfb6bf8139b0f8dea88413afc00bcf5582f211348df402e4ae1556627ac3f07dcc77d44d9454ba8eed51139ffdcea61172920c3494ff0d222e6836f8de22d66b10e3875b9b89a48c4ae134e7d81049039d186ea8995b5a289584437c54eb5d03197a7b81e2339f633dbba878eef49eeb85ee34df7789295c5491584af81f8f53487b713becb9a285f674d4c72b188ba6f767ede8ffae64842ecb82b33e799e90f7e977556884664e978e9dc7686c5d1253d4328ac7d95c67258a4fbc267a29b515f09a27a87015756c825f3ce309a2d8b089f2aed4e560d2b154d40ec1fe9cd01ecbfe3b025ff4222891757b376a9cbf325820912f8027ddd963d1ccf549baa912c0cf4817bf1a639dd5b39e56a63d108d914169c72577bc45730e1a9e20529a9f6a8aee9c83da159467c2f77212c1b9eda16804490198a29c61efec362dfa448ffa56a8e120690222f8e56ee6a820feda4173637e34c1aab938637ff82aad4f4f352f12ff9c164a9a7ebaa7a17797764b2bacae18898c33e8c759298eb94db0b8e676b6cc7971e6bd80445472af014f7470656d2566d7ca656acd4135e61dd4545f2d587ea05e6161db82f298bd71d610e50a092b817789473f5da3d32716613a1b09bbda29d501eff30e9993271f20423e74a2a0a1662f99f73c27e855d32796bc68a769e92e2b5d659f2ebd132dc9bfffbf031cd225f7e83e321160b65e55ff38462e8a36a4c533d30302d8102bcb41bec2abab1984b06733d370c2f3363a8d5e30c08f0e74e9e876f72745f574bc80fbe25943896ebe04fe72cfa9de6ee8506ad70c3be65a86eaf4f1fb913821afc85cf985b841d8ca96321dc1a31724f0b599c2ad147713692ecde7238ac87f2f426169bc060281c460f0e1346a92f464ee1f794002d3187a84fc6757f735cbbf42c41a0bb5d99ca04ef3792276491a1232fbcc00f7caf321ac9951a6517eeabaedc207c6b4d9c8f4e5a458d7def6c08a508b66ed3ccae5b544f0b84c9871129c4f6efa804404852993483d06b9227a689cb37a605b43265ca46ebe674073fbca8f83a56856cd6d5cf6e018dea75ca325b2365527888321bc8686069a7dbdc8b22a32c20e07e79eca4f83902a7d02c641bbdbe66a1bc18ff132c770b67964cce6c3800c05a5f0e0253ebd85b825e1c692887e36e4b938ac97507979aa39459ea04070fb078c63c334eabbc1e6444ce1336f98a41045d2a576a049d07368e027b182f6038ad38c3359dd3de78544dc621f9acd4f0540e117162c22e753462c4be2065724c3429b75b4db74e89d84f2795aba986dfc2b1fdcbe98346260cb9748f454a65f4b35b874ac5910184ad0fece39f01cd50663ca2462729f4cfa4e756c0cb6fc397f77c8fdcd7c9e194705e522ca83c625c7fab6ea43aad89db0b6ba71eed901209fc7330e8bc671aff44e5e48502abddc2409b52ece3779d3b19c1832b30abd3f81a9ff0c68fce42ad9c1941f03ce33ed9d37dce98dbe5e1d23519d22087f307e870c82f028e96fef580c4c8c62a32c2776eed31c3d8bddeb43cc53ab8592478253b6de3095d6828bd960989b9ed9879f863d3128f708eebe99f7701823f232444f2ac9830da973b993679e1bb510b2b6939847751cd0d4642d7bb899e21a7c26938fae9f1b149ff19032b5149b4cde635fa99c2160a8cd6f7ad6a5a242b6b31e253e04ea72f1b6f60677ef87fd8e175373c24822a3794134a3124f2e109a59d9db08e48f845254d4b68c42da5b2b2f3c3c528f4281cae4f5117cd0a4658e9ed1dba09656393623fb13fad1cda4eaa602176aba55ba251817017338193512318390fed2a914739050b1a85ca3833f71aa7c4c8fb45158b530c24bd4316f72c9b432a1bd067cd6fc64d646cc06bfbbf990dacb32de9496a8d730cc07171ce548957d435b2f121ea4bb939f70785ebce86f0ad6d89bb71cdc1d0897284ac5d09b95a76ddbfc787a98193b9cbdb1d3ffd89d5f10b9bbb5d41a2a33f73385df351db85c83786db3da558d890f414b21615160dfcb3b46f0958d492bd6d056550c48e5f0c26dd10c1c6ab3b4c6b7d911db5ac463f8e37a8bbcc2295fe79fa109f491a126fff6a1ffe161c7787f746fc8ddea5f19bd20fabca63aa81ae2d725e0b250f27fd7c8431ef6b2827904f62b5ffefc9bfdfb7d55ef6d9883c6ab43c5214b4af237d0df67afcb3d62e80041720952e837e65a22351cb3bf8a9e271568597f79f12144495d31ef72fc36a86e9eb4359790aee88c00b05473ac1a90b8bbe0c0db99570dd9bda506469c258e145841d9c26c9f32722a678cf25657acd124831cfc6a1809e341989b46b6df9db72b18f8be39cd845669bad697bc6bd9bec531047d5fa9e201e1a525c372367f8495280c5d93a62f9fb6f890c59959dcbac7de68e3a417befcd11c722067aac4726e2fdcabce2321ea64d9fbda04ab25dedbcb441faaef2d7bf024fe765591fd0354b2bcaa243a6d741272d4458e433118568944047eeec85d3b0f5b98cbdad0f77371be15af9c1bf928eceb652c581fa638e2131c22d901e6f047a5649ffab5324054389ebeb47ff283e0f0ffe074382e520c632bc440cbeaa68770877516e101709489bcb643b187cb2715e58479074cd32d53077331453fc537d34f87a7ec5e5da686c2f304116394e2bd1e480f5da74a6b725d526b71dc869df8dda3feb44f5463f4c678b6a8be34994ecb0902b3cf269de1adf0da8b8ad340b63a6d0237df7e812b94572adbc196784dfcf33e3e97a17b71a2dad7015fb2d59d4c5838ca551984c7d8ee7bf05ab3edf89029ffd20e373fcb72523bff1e63df721416a068d7b2daa3e17fbba8e831c53e29a94dc483e289cf7406a7b2da28ecc761cf9d847d39b7daa5e34a2a0e4dd19ca5c4a1ab274c7fb9a3057109ec0644579f1af210f8b8133dd87f1abd7c71ac09cfc38699573b35e6d9c5bdaa21f16442b87860e9a7f62ff7c2458160c6a64dc218a258ee06e222e47b3b8e0cf5a5c2d9985f886f32abd129ee056fae9b2e32d0571532eab27fa8f079f9c3e378125f2020064850cfb19c53aa44ad8da6f83a5d827bcb131da9d4dde6e8bd0005ef240c4a02b17051845c35725bd8668c3b27b46355febbf2bf3e5dc5ec650499669cbfe921815396d87b3ede410d492cc73ec7f3a40409eed9358131f1f75e31f24e34af6fc7b6fe2730fd043fd69269d939772e7fef5f2e08b657038a61bc8a8d5688b16029d15aacefe6631a364769d3b9b261bbac584c5ba29b7fbda146fc2ac0f1044f89141a57292b87c7275c6ec6011e5b4b40d1ebc4fc32e7c7ac96aea170225e60c189ed09f8df0a143232bd93c6a9d0fba9783f303b3375b10dde9cd501e68df3734f6278a0389418578834e1912806f07e2fa715bfed4bc707559ee3d4966f51cb652b06b747ae2d79b56759035f01953e76a2dc14c817eb0f97332e68c1d3995dcd84b2329194299944cb2c050991c409fe447ed764a9a3a1182bc30f773b0b415c1898460150c9fec8987c24ba07f87f299d014bd89049b3e9d0c9bf1c6bf159545e52cdfcf9e799b593cb411a3db12396dc9c09ddeddfcb6165a99074e531b7ceddaf344baf2e65225203da537cf09fc073d61d92c13a1c95f93e70050b99850272d0227a89faadfbfae923501b0321984b59229b7dc3c646bf4e381534fcb31783c568deb1a36f95c873df99ccab25446c77d96de6b2c70d5baa5b27786e8027b2f70be117bfdc1b2c6d72a6ab2f9e9a9ce231443d0621448e78393142f90177e7bb52976c668583c64beca45af5ea23a060ec910c6cd89ba7cb9cbbd7627ee56dd2d4d60d994cd63e81f181642b8864afa797aecc22358eea8d059d681a333caa15a8c56918523d465e94668d6ef5f3dcc089bffb13ad76dbf79c44c14f494fda3a55f61c3ed659e20a274297360576fd3230b3e4b7e79ea5b7d78c1def22741a38d17b39c646579d8d5df4cae4eca98d1c0df9371532fe89efc2c375fe433699ee14fcd4cf84495d380663aa10a374dba851536b8159deee491ed2c0e2b920bf7c5627db54562f1ff9c56795245be220391d6b681360fa221efc91faf57d80f15b5e3d881cfa30e1145dbde325c6cc8254938a9eb906d846ec5f76f63443b8f2c50db90b6563900a8f97947c82caec3ce4ee3a5e19fc3324376e4b041b7ed82d9940f7a63f9f962f6d746cb781dbbe16a90649881a77e8ac40677e74d87beadc50df2bc624aa6a707cb50c8ee749db526903f38d706df0201bf503b759d320fa940838ec74c914d0de569ed9ffc6eb2cee026ce22cd50a884bccfadbf503892930c4c4dd7efcb3caaac1695027ed66f3f29c7a1edade721bac0599ff0c400542d31d5dc235ddca7bada9cabcf427e038e5c6a54687b955131c547155036401c7a9a44b3b0437edaa30635b84e37996bcc8594307a6b6bbd8b06daa994cf238925485cd9ace35b3fdfd72788199b6f0570eed2078a4b2f36f511a68566927389ca5ce1c854cb500c2693d7a7917cc8f1215608b7dd2ab22de43a5cc91309a4db2a4c29fdeceaec4a604d13af72a60ea50070626aa6d4cfa418b95edda37a88db5218a1e096436a3551ee712ae137217cd0e941c31e86839e3a9aef8058f5f3196a5006f5a13f3343c0cbf50f9a27c7481e62614a4c51071df6c9a2e0058e534be00c510052e03148c79cc31256359b330c0de91e6130ce741d0472a838463987b9cb80693701825d0af139207f4ff1dc5cb92187170acb8c217f26b1a0544021a8ddce3e31de19b603a5eeca75a7a6234f75d890322a2dca481bc814ba65893cf8e4492094dfe534936a4378e85f680559f4ebce2cccdbea2c0c1e776c4cf50df6b0bc2effcee0f2c76b5c478f9dd02e0eef9399ddf2ba449e03cfd5d33388b0b683c3ce0d301ca1ba4ab", 0x1000}}, 0x1006)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
kexec_load(0x8, 0x0, 0x0, 0x2)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000000), 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r2, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r5 = msgget$private(0x0, 0x3ac)
msgsnd(r5, &(0x7f0000000000)=ANY=[@ANYBLOB="0e000000"], 0x8, 0x800)
msgctl$MSG_STAT(r5, 0xb, &(0x7f0000000440)=""/117)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000240)={'lo\x00'})

0s ago: executing program 2 (id=438):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000003c0), 0xffffffffffffffff)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x1e, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r3 = eventfd(0xfffffff9)
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x5, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000040000000000000090000008500000011000000850000000700000095"], &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x11, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800ff5c6cc3e43f6dc437e0fffcffffff9100"/38], &(0x7f00000005c0)='GPL\x00', 0x7, 0xa8, &(0x7f00000006c0)=""/168, 0x41000, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000600)={0x4, 0x8, 0x4, 0xc37}, 0x10, 0x0, 0x0, 0x2, &(0x7f0000000780)=[0x1, 0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, r2], &(0x7f00000007c0)=[{0x1, 0x1, 0x6, 0xc}, {0x4, 0x1, 0xf, 0x1}], 0x10, 0x5}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r4, 0x0, 0x8, 0x8, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r3})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000580)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/59, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f00000008c0)=""/246, &(0x7f00000000c0)=""/87, &(0x7f00000009c0)=""/72, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_SET_VRING_ERR(r2, 0x4008af22, &(0x7f00000002c0)={0x1, r3})
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000000)=0x1)
sendmsg$RDMA_NLDEV_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)={0x10, 0x1401, 0x400, 0x70bd25, 0x25dfdbff}, 0x10}}, 0x40)
sendmsg$IEEE802154_LLSEC_DEL_DEV(r0, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[@ANYBLOB='2\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000126bd7000fcdbdf252b0000000a0001007770616e33000000"], 0x20}, 0x1, 0x0, 0x0, 0x20044051}, 0x804)
openat2(0xffffffffffffffff, 0x0, &(0x7f0000001180)={0x460600, 0x1f887e89b62ea620, 0x2}, 0x18)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x2d4, 0x12c, 0x940c, 0x3002, 0x12c, 0x2c0, 0x204, 0x3d8, 0x3d8, 0x204, 0x3d8, 0x3, 0x0, {[{{@ipv6={@mcast1, @private1, [0x0, 0xffffff00, 0xffffff00], [0xffffffff, 0xffffffff, 0x0, 0xffffff00], 'dvmrp1\x00', 'veth1_virt_wifi\x00', {0xff}, {0xff}, 0x3c, 0x1, 0x5, 0x2}, 0x0, 0xec, 0x110, 0x0, {}, [@common=@inet=@set2={{0x24}, {{0x0, 0x6, 0x1}}}, @inet=@rpfilter={{0x24}, {0xa}}]}, @common=@inet=@LOG={0x0, 'LOG\x00', 0x0, {0xfa, 0x12, "bf2d6c7c7f480586e6f0943a86de6e8793440f50a5ac19851b8354c057b6"}}}, {{@uncond, 0x0, 0xc8, 0xfc}, @common=@inet=@SET3={0x34, 'SET\x00', 0x3, {{0x0, 0x3}, {0x2, 0x3, 0x1}, {0x5, 0x4, 0x7}, 0x0, 0x1000}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0xfffffffffffffdbb)
write$UHID_INPUT(r5, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r7 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000000)='nr0\x00', 0x10)
sendmmsg$inet(r7, &(0x7f0000001040)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000001080)="b9", 0x1}], 0x1, 0x0, 0x0, 0x2000000}}], 0x1, 0x0)

kernel console output (not intermixed with test programs):

er 6 using vhci_hcd
[   79.300616][ T6183] vhci_hcd: connection closed
[   79.300821][   T79] vhci_hcd vhci_hcd.1: stop threads
[   79.301192][   T29] usb 5-1: USB disconnect, device number 4
[   79.302445][   T79] vhci_hcd vhci_hcd.1: release socket
[   79.302832][   T79] vhci_hcd vhci_hcd.1: disconnect device
[   79.496868][ T6007] usb 44-1: SetAddress Request (6) to port 0
[   79.498938][ T6007] usb 44-1: new SuperSpeed USB device number 6 using vhci_hcd
[   79.690527][ T6187] vhci_hcd: connection reset by peer
[   79.692895][ T1143] vhci_hcd vhci_hcd.3: stop threads
[   79.694622][ T1143] vhci_hcd vhci_hcd.3: release socket
[   79.697836][ T1143] vhci_hcd vhci_hcd.3: disconnect device
[   81.368303][ T6205] FAULT_INJECTION: forcing a failure.
[   81.368303][ T6205] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   81.372783][ T6205] CPU: 2 UID: 0 PID: 6205 Comm: syz.2.42 Not tainted syzkaller #0 PREEMPT(full) 
[   81.372797][ T6205] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   81.372803][ T6205] Call Trace:
[   81.372807][ T6205]  <TASK>
[   81.372811][ T6205]  dump_stack_lvl+0x100/0x190
[   81.372830][ T6205]  should_fail_ex.cold+0x5/0xa
[   81.372840][ T6205]  ? prepare_alloc_pages+0x16d/0x5f0
[   81.372854][ T6205]  should_fail_alloc_page+0xeb/0x140
[   81.372866][ T6205]  prepare_alloc_pages+0x1f0/0x5f0
[   81.372880][ T6205]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[   81.372900][ T6205]  ? kasan_save_stack+0x3f/0x50
[   81.372916][ T6205]  ? kasan_save_stack+0x30/0x50
[   81.372931][ T6205]  ? kasan_save_track+0x14/0x30
[   81.372945][ T6205]  ? __kasan_slab_alloc+0x89/0x90
[   81.372954][ T6205]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[   81.372969][ T6205]  ? ptlock_alloc+0x1f/0x70
[   81.372982][ T6205]  ? pte_alloc_one+0x84/0x3e0
[   81.372992][ T6205]  ? __pte_alloc+0x6d/0x3f0
[   81.373001][ T6205]  ? walk_pgd_range+0xb83/0x1eb0
[   81.373016][ T6205]  ? __walk_page_range+0x163/0x820
[   81.373031][ T6205]  ? walk_page_range_vma_unsafe+0x209/0x8f0
[   81.373046][ T6205]  ? madvise_guard_install+0x43f/0x7c0
[   81.373057][ T6205]  ? madvise_vma_behavior+0x11f1/0x3050
[   81.373073][ T6205]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   81.373088][ T6205]  ? __ia32_sys_madvise+0xa7/0x110
[   81.373100][ T6205]  ? __do_fast_syscall_32+0xe3/0x8c0
[   81.373113][ T6205]  ? do_fast_syscall_32+0x32/0x70
[   81.373129][ T6205]  ? look_up_lock_class+0x64/0x120
[   81.373147][ T6205]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   81.373164][ T6205]  ? policy_nodemask+0xed/0x4f0
[   81.373176][ T6205]  alloc_pages_mpol+0x1fb/0x550
[   81.373188][ T6205]  ? __pfx_alloc_pages_mpol+0x10/0x10
[   81.373198][ T6205]  ? __pfx___page_table_check_ptes_set+0x10/0x10
[   81.373215][ T6205]  ? do_raw_spin_lock+0x128/0x260
[   81.373231][ T6205]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   81.373248][ T6205]  alloc_pages_noprof+0x131/0x390
[   81.373259][ T6205]  pte_alloc_one+0x1e/0x3e0
[   81.373271][ T6205]  __pte_alloc+0x6d/0x3f0
[   81.373281][ T6205]  ? __pfx___pte_alloc+0x10/0x10
[   81.373290][ T6205]  ? walk_pgd_range+0x139e/0x1eb0
[   81.373305][ T6205]  ? walk_pgd_range+0x139e/0x1eb0
[   81.373323][ T6205]  walk_pgd_range+0xb83/0x1eb0
[   81.373341][ T6205]  ? __pfx_guard_install_set_pte+0x10/0x10
[   81.373351][ T6205]  ? __pfx_guard_install_pte_entry+0x10/0x10
[   81.373364][ T6205]  ? __pfx_guard_install_set_pte+0x10/0x10
[   81.373376][ T6205]  ? __pfx_guard_install_set_pte+0x10/0x10
[   81.373387][ T6205]  ? __pfx_guard_install_set_pte+0x10/0x10
[   81.373399][ T6205]  ? __pfx_walk_pgd_range+0x10/0x10
[   81.373418][ T6205]  __walk_page_range+0x163/0x820
[   81.373434][ T6205]  ? process_measurement+0x4c8/0x2350
[   81.373448][ T6205]  ? process_measurement+0x4c8/0x2350
[   81.373467][ T6205]  walk_page_range_vma_unsafe+0x209/0x8f0
[   81.373485][ T6205]  ? __pfx_walk_page_range_vma_unsafe+0x10/0x10
[   81.373502][ T6205]  ? tomoyo_check_open_permission+0x1db/0x3c0
[   81.373525][ T6205]  madvise_guard_install+0x43f/0x7c0
[   81.373540][ T6205]  ? __pfx_madvise_guard_install+0x10/0x10
[   81.373553][ T6205]  ? __pfx_guard_install_pud_entry+0x10/0x10
[   81.373563][ T6205]  ? __pfx_guard_install_pmd_entry+0x10/0x10
[   81.373574][ T6205]  ? __pfx_guard_install_pte_entry+0x10/0x10
[   81.373587][ T6205]  ? __pfx_guard_install_set_pte+0x10/0x10
[   81.373599][ T6205]  ? __lock_acquire+0x4a5/0x2630
[   81.373613][ T6205]  madvise_vma_behavior+0x11f1/0x3050
[   81.373627][ T6205]  ? __pfx_madvise_vma_behavior+0x10/0x10
[   81.373639][ T6205]  ? reacquire_held_locks+0xce/0x1e0
[   81.373652][ T6205]  ? lock_vma_under_rcu+0x11d/0x590
[   81.373669][ T6205]  ? lock_vma_under_rcu+0x17c/0x590
[   81.373685][ T6205]  ? lock_vma_under_rcu+0x25/0x590
[   81.373697][ T6205]  ? lock_vma_under_rcu+0x1f9/0x590
[   81.373711][ T6205]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[   81.373732][ T6205]  madvise_walk_vmas+0x71c/0xa90
[   81.373746][ T6205]  ? __pfx_madvise_walk_vmas+0x10/0x10
[   81.373762][ T6205]  madvise_do_behavior+0x1ea/0x510
[   81.373776][ T6205]  ? __pfx_madvise_do_behavior+0x10/0x10
[   81.373787][ T6205]  ? get_pid_task+0x106/0x250
[   81.373804][ T6205]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   81.373823][ T6205]  do_madvise+0x195/0x240
[   81.373835][ T6205]  ? __pfx_do_madvise+0x10/0x10
[   81.373857][ T6205]  ? ksys_write+0x1ac/0x250
[   81.373866][ T6205]  ? __pfx_ksys_write+0x10/0x10
[   81.373877][ T6205]  __ia32_sys_madvise+0xa7/0x110
[   81.373889][ T6205]  ? lockdep_hardirqs_on+0x78/0x100
[   81.373901][ T6205]  __do_fast_syscall_32+0xe3/0x8c0
[   81.373916][ T6205]  do_fast_syscall_32+0x32/0x70
[   81.373929][ T6205]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   81.373943][ T6205] RIP: 0023:0xf7fb6f6c
[   81.373951][ T6205] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[   81.373961][ T6205] RSP: 002b:00000000f547650c EFLAGS: 00000292 ORIG_RAX: 00000000000000db
[   81.373971][ T6205] RAX: ffffffffffffffda RBX: 000000008042f000 RCX: 000000000080fd00
[   81.373977][ T6205] RDX: 0000000000000066 RSI: 0000000000000000 RDI: 0000000000000000
[   81.373983][ T6205] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   81.373989][ T6205] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[   81.373994][ T6205] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   81.374007][ T6205]  </TASK>
[   82.535246][   T29] usb 8-1: new full-speed USB device number 3 using dummy_hcd
[   82.709180][   T29] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   82.712689][   T29] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   82.716187][   T29] usb 8-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   82.720856][   T29] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   82.725424][   T29] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   82.766202][   T29] usbtmc 8-1:16.0: bulk endpoints not found
[   84.336363][    T9] usb 40-1: device descriptor read/8, error -110
[   84.511189][ T6235] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   84.566517][ T6222] netlink: 'syz.2.46': attribute type 3 has an invalid length.
[   84.576273][ T6007] usb 44-1: device descriptor read/8, error -110
[   84.582036][ T6237] ip6_tunnel: non-ECT from fc02:0000:0000:0000:0000:0000:0000:0000 with DS=0x1
[   84.587747][ T6237] netlink: 28 bytes leftover after parsing attributes in process `syz.1.50'.
[   84.590779][ T6237] netlink: 28 bytes leftover after parsing attributes in process `syz.1.50'.
[   84.627991][ T6237] syz_tun: entered promiscuous mode
[   84.635402][ T6237] syz_tun: left promiscuous mode
[   84.775267][    T9] usb usb40-port1: attempt power cycle
[   84.916135][   T59] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   84.966662][ T6007] usb usb44-port1: attempt power cycle
[   85.076252][   T59] usb 5-1: Using ep0 maxpacket: 8
[   85.080157][   T59] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[   85.084108][   T59] usb 5-1: config 179 has no interface number 0
[   85.086957][   T59] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[   85.091593][   T59] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[   85.096634][   T59] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[   85.101713][   T59] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[   85.105944][   T59] usb 5-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[   85.111672][   T59] usb 5-1: config 179 interface 65 has no altsetting 0
[   85.114530][   T59] usb 5-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[   85.118493][   T59] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.134885][   T59] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:179.65/input/input7
[   85.287999][ T5975] usb 8-1: USB disconnect, device number 3
[   85.397325][    C2] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[   85.401326][   T59] usb 5-1: USB disconnect, device number 5
[   85.536581][ T6007] usb usb44-port1: unable to enumerate USB device
[   85.567632][    T9] usb usb40-port1: unable to enumerate USB device
usb_generic_handle_packet: ctrl buffer too small (16384 > 4096)
[   86.564397][  T841] cfg80211: failed to load regulatory.db
[   88.615702][ T6007] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   88.776949][ T6007] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[   88.779714][ T6007] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   88.783641][ T6007] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[   88.788020][ T6007] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[   88.791324][ T6007] usb 7-1: Manufacturer: syz
[   88.794996][ T6007] usb 7-1: config 0 descriptor??
[   88.835655][ T6007] rc_core: IR keymap rc-hauppauge not found
[   88.838119][ T6007] Registered IR keymap rc-empty
[   88.841148][ T6007] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[   88.846347][ T6007] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input8
[   89.155772][ T6007] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[   89.315898][ T6007] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   89.330267][ T6007] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   89.333454][ T6007] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   89.345911][ T6007] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   89.349939][ T6007] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   89.366434][ T6007] usbtmc 5-1:16.0: bulk endpoints not found
[   90.720606][ T6290] netlink: 8 bytes leftover after parsing attributes in process `syz.3.62'.
usb_generic_handle_packet: ctrl buffer too small (16384 > 4096)
[   91.938433][   T59] usb 5-1: USB disconnect, device number 6
[   92.023037][   T29] usb 7-1: USB disconnect, device number 2
[   92.241732][ T6310] syz_tun: entered allmulticast mode
[   92.275327][   T59] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[   92.997912][   T59] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[   93.184112][   T59] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   93.195709][   T59] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[   93.198598][   T59] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[   93.201176][   T59] usb 5-1: Manufacturer: syz
[   93.205305][   T59] usb 5-1: config 0 descriptor??
[   93.267865][   T59] rc_core: IR keymap rc-hauppauge not found
[   93.269868][   T59] Registered IR keymap rc-empty
[   93.271996][   T59] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[   93.278439][   T59] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input9
usb_generic_handle_packet: ctrl buffer too small (16384 > 4096)
[   93.645557][ T6356] FAULT_INJECTION: forcing a failure.
[   93.645557][ T6356] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   93.649946][ T6356] CPU: 2 UID: 0 PID: 6356 Comm: syz.2.75 Not tainted syzkaller #0 PREEMPT(full) 
[   93.649959][ T6356] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   93.649965][ T6356] Call Trace:
[   93.649969][ T6356]  <TASK>
[   93.649974][ T6356]  dump_stack_lvl+0x100/0x190
[   93.649994][ T6356]  should_fail_ex.cold+0x5/0xa
[   93.650010][ T6356]  _copy_from_iter+0x1f4/0x1690
[   93.650024][ T6356]  ? alloc_pages_mpol+0x25a/0x550
[   93.650035][ T6356]  ? __pfx__copy_from_iter+0x10/0x10
[   93.650045][ T6356]  ? __pfx_alloc_pages_mpol+0x10/0x10
[   93.650074][ T6356]  copy_page_from_iter+0xde/0x180
[   93.650086][ T6356]  tun_build_skb.constprop.0+0x2ea/0x15d0
[   93.650107][ T6356]  ? __pfx_tun_build_skb.constprop.0+0x10/0x10
[   93.650122][ T6356]  ? unwind_get_return_address+0x59/0xa0
[   93.650133][ T6356]  ? arch_stack_walk+0xa6/0xf0
[   93.650145][ T6356]  ? __lock_acquire+0x4a5/0x2630
[   93.650166][ T6356]  tun_get_user+0x16d0/0x3e10
[   93.650187][ T6356]  ? __pfx_tun_get_user+0x10/0x10
[   93.650203][ T6356]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   93.650218][ T6356]  ? find_held_lock+0x2b/0x80
[   93.650227][ T6356]  ? tun_get+0x191/0x370
[   93.650240][ T6356]  ? tun_get+0x191/0x370
[   93.650257][ T6356]  tun_chr_write_iter+0xdc/0x200
[   93.650273][ T6356]  vfs_write+0x6ac/0x1070
[   93.650290][ T6356]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   93.650307][ T6356]  ? __pfx_vfs_write+0x10/0x10
[   93.650321][ T6356]  ? find_held_lock+0x2b/0x80
[   93.650339][ T6356]  ksys_write+0x12a/0x250
[   93.650348][ T6356]  ? __pfx_ksys_write+0x10/0x10
[   93.650361][ T6356]  do_int80_emulation+0x141/0x6b0
[   93.650376][ T6356]  asm_int80_emulation+0x1a/0x20
[   93.650386][ T6356] RIP: 0023:0xf71b5cab
[   93.650395][ T6356] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[   93.650405][ T6356] RSP: 002b:00000000f547644c EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[   93.650416][ T6356] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000240
[   93.650422][ T6356] RDX: 000000000000007e RSI: 0000000000000000 RDI: 0000000000000000
[   93.650427][ T6356] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   93.650433][ T6356] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[   93.650439][ T6356] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   93.650451][ T6356]  </TASK>
[   93.815551][ T6358] FAULT_INJECTION: forcing a failure.
[   93.815551][ T6358] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   93.819873][ T6358] CPU: 0 UID: 0 PID: 6358 Comm: syz.3.76 Not tainted syzkaller #0 PREEMPT(full) 
[   93.819887][ T6358] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   93.819893][ T6358] Call Trace:
[   93.819896][ T6358]  <TASK>
[   93.819901][ T6358]  dump_stack_lvl+0x100/0x190
[   93.819920][ T6358]  should_fail_ex.cold+0x5/0xa
[   93.819933][ T6358]  __kvm_read_guest_page+0x186/0x250
[   93.819948][ T6358]  kvm_vcpu_read_guest+0x69/0xe0
[   93.819966][ T6358]  read_emulate+0x2b/0x50
[   93.819980][ T6358]  emulator_read_write_onepage+0x2e2/0xb20
[   93.819999][ T6358]  emulator_read_write+0x1d1/0x5c0
[   93.820015][ T6358]  read_emulated+0x12c/0x290
[   93.820033][ T6358]  x86_emulate_insn+0x7a4/0x4ad0
[   93.820052][ T6358]  ? __pfx_x86_emulate_insn+0x10/0x10
[   93.820065][ T6358]  ? init_emulate_ctxt+0x415/0x6d0
[   93.820077][ T6358]  ? __pfx_init_emulate_ctxt+0x10/0x10
[   93.820091][ T6358]  ? rcu_qs+0x2a/0xe0
[   93.820107][ T6358]  ? rcu_is_watching+0x12/0xc0
[   93.820124][ T6358]  x86_emulate_instruction+0xb1c/0x1f80
[   93.820139][ T6358]  ? __pfx_handle_io+0x10/0x10
[   93.820149][ T6358]  handle_io+0x233/0x2d0
[   93.820159][ T6358]  vmx_handle_exit+0x84d/0x1f40
[   93.820171][ T6358]  vcpu_run+0x34cf/0x5ca0
[   93.820187][ T6358]  ? __pfx_vcpu_run+0x10/0x10
[   93.820200][ T6358]  ? complete_fast_pio_in+0x1cf/0x2e0
[   93.820216][ T6358]  ? __pfx_complete_fast_pio_in+0x10/0x10
[   93.820235][ T6358]  ? rcu_is_watching+0x12/0xc0
[   93.820253][ T6358]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[   93.820263][ T6358]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[   93.820277][ T6358]  kvm_vcpu_ioctl+0x730/0x1730
[   93.820292][ T6358]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   93.820307][ T6358]  ? tomoyo_path_number_perm+0x188/0x580
[   93.820324][ T6358]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   93.820346][ T6358]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   93.820365][ T6358]  ? do_vfs_ioctl+0x226/0x13e0
[   93.820380][ T6358]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   93.820400][ T6358]  kvm_vcpu_compat_ioctl+0x20f/0x3c0
[   93.820415][ T6358]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[   93.820429][ T6358]  ? __fget_files+0x21f/0x3d0
[   93.820442][ T6358]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[   93.820456][ T6358]  __ia32_compat_sys_ioctl+0x2cf/0x360
[   93.820473][ T6358]  __do_fast_syscall_32+0xe3/0x8c0
[   93.820488][ T6358]  do_fast_syscall_32+0x32/0x70
[   93.820502][ T6358]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   93.820516][ T6358] RIP: 0023:0xf701ef6c
[   93.820525][ T6358] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[   93.820535][ T6358] RSP: 002b:00000000f540d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[   93.820549][ T6358] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[   93.820555][ T6358] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   93.820561][ T6358] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   93.820566][ T6358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   93.820572][ T6358] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   93.820585][ T6358]  </TASK>
usb_generic_handle_packet: ctrl buffer too small (16384 > 4096)
[   95.591467][ T6388] syzkaller0: entered promiscuous mode
[   95.593572][ T6388] syzkaller0: entered allmulticast mode
[   96.029022][ T6403] syzkaller0: entered promiscuous mode
[   96.031345][ T6403] syzkaller0: entered allmulticast mode
[   96.183000][ T6407] netlink: 8 bytes leftover after parsing attributes in process `syz.3.91'.
[   96.186787][ T6407] netlink: 4 bytes leftover after parsing attributes in process `syz.3.91'.
[   96.190460][ T6407] netlink: 'syz.3.91': attribute type 18 has an invalid length.
[   96.193884][ T6407] netlink: 'syz.3.91': attribute type 15 has an invalid length.
[   96.272003][ T5938] usb 5-1: USB disconnect, device number 7
[   96.328909][ T6413] netlink: 28 bytes leftover after parsing attributes in process `syz.3.94'.
[   96.333429][ T6413] netlink: 52 bytes leftover after parsing attributes in process `syz.3.94'.
usb_generic_handle_packet: ctrl buffer too small (16384 > 4096)
[   96.435993][ T6420] netlink: 4 bytes leftover after parsing attributes in process `syz.0.95'.
[   96.586213][ T6425] syzkaller0: entered promiscuous mode
[   96.588332][ T6425] syzkaller0: entered allmulticast mode
[   96.647406][ T6427] syzkaller0: entered promiscuous mode
[   96.649969][ T6427] syzkaller0: entered allmulticast mode
[   96.805522][ T6434] FAULT_INJECTION: forcing a failure.
[   96.805522][ T6434] name failslab, interval 1, probability 0, space 0, times 0
[   96.810711][ T6434] CPU: 3 UID: 0 PID: 6434 Comm: syz.3.101 Not tainted syzkaller #0 PREEMPT(full) 
[   96.810725][ T6434] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   96.810732][ T6434] Call Trace:
[   96.810737][ T6434]  <TASK>
[   96.810741][ T6434]  dump_stack_lvl+0x100/0x190
[   96.810761][ T6434]  should_fail_ex.cold+0x5/0xa
[   96.810773][ T6434]  ? drm_atomic_state_init+0x190/0x490
[   96.810785][ T6434]  should_failslab+0xc2/0x120
[   96.810796][ T6434]  __kmalloc_noprof+0xe0/0x850
[   96.810814][ T6434]  drm_atomic_state_init+0x190/0x490
[   96.810824][ T6434]  ? kasan_save_track+0x14/0x30
[   96.810841][ T6434]  drm_atomic_state_alloc+0xd3/0x120
[   96.810852][ T6434]  drm_mode_atomic_ioctl+0x395/0x2680
[   96.810864][ T6434]  ? __do_fast_syscall_32+0xe3/0x8c0
[   96.810877][ T6434]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   96.810903][ T6434]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[   96.810915][ T6434]  ? __lock_acquire+0x4a5/0x2630
[   96.810935][ T6434]  ? drm_is_current_master+0x2c/0x40
[   96.810946][ T6434]  ? drm_is_current_master+0x2c/0x40
[   96.810958][ T6434]  ? do_raw_spin_unlock+0x145/0x1e0
[   96.810998][ T6434]  drm_ioctl_kernel+0x1f3/0x3e0
[   96.811014][ T6434]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[   96.811037][ T6434]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   96.811057][ T6434]  drm_ioctl+0x5e6/0xc60
[   96.811069][ T6434]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[   96.811081][ T6434]  ? __pfx_drm_ioctl+0x10/0x10
[   96.811100][ T6434]  drm_compat_ioctl+0x376/0x4b0
[   96.811114][ T6434]  ? __pfx_drm_compat_ioctl+0x10/0x10
[   96.811127][ T6434]  __ia32_compat_sys_ioctl+0x2cf/0x360
[   96.811144][ T6434]  __do_fast_syscall_32+0xe3/0x8c0
[   96.811158][ T6434]  do_fast_syscall_32+0x32/0x70
[   96.811172][ T6434]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   96.811185][ T6434] RIP: 0023:0xf701ef6c
[   96.811194][ T6434] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[   96.811203][ T6434] RSP: 002b:00000000f540d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[   96.811214][ T6434] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00000000c03864bc
[   96.811220][ T6434] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000
[   96.811226][ T6434] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   96.811231][ T6434] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[   96.811237][ T6434] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   96.811253][ T6434]  </TASK>
[   97.242463][ T6442] netlink: 28 bytes leftover after parsing attributes in process `syz.0.104'.
[   97.262395][ T6442] netlink: 52 bytes leftover after parsing attributes in process `syz.0.104'.
usb_generic_handle_packet: ctrl buffer too small (16384 > 4096)
[   97.515518][ T6454] syzkaller0: entered promiscuous mode
[   97.517535][ T6454] syzkaller0: entered allmulticast mode
[   97.790421][ T6464] FAULT_INJECTION: forcing a failure.
[   97.790421][ T6464] name failslab, interval 1, probability 0, space 0, times 0
[   97.794607][ T6464] CPU: 3 UID: 0 PID: 6464 Comm: syz.3.113 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   97.794623][ T6464] Tainted: [L]=SOFTLOCKUP
[   97.794626][ T6464] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   97.794632][ T6464] Call Trace:
[   97.794636][ T6464]  <TASK>
[   97.794640][ T6464]  dump_stack_lvl+0x100/0x190
[   97.794660][ T6464]  should_fail_ex.cold+0x5/0xa
[   97.794673][ T6464]  should_failslab+0xc2/0x120
[   97.794684][ T6464]  kmem_cache_alloc_noprof+0x7b/0x6e0
[   97.794699][ T6464]  ? skb_clone+0x190/0x400
[   97.794715][ T6464]  skb_clone+0x190/0x400
[   97.794728][ T6464]  dev_queue_xmit_nit+0x255/0xa60
[   97.794744][ T6464]  dev_hard_start_xmit+0x2f5/0x7d0
[   97.794764][ T6464]  __dev_queue_xmit+0x32c1/0x4800
[   97.794786][ T6464]  ? __pfx___dev_queue_xmit+0x10/0x10
[   97.794810][ T6464]  ? rcu_is_watching+0x12/0xc0
[   97.794826][ T6464]  ? __asan_memcpy+0x3c/0x60
[   97.794840][ T6464]  ? __asan_memcpy+0x3c/0x60
[   97.794855][ T6464]  ? __skb_clone+0x570/0x760
[   97.794868][ T6464]  netlink_deliver_tap+0xa4d/0xcc0
[   97.794885][ T6464]  netlink_unicast+0x650/0x870
[   97.794901][ T6464]  ? __pfx_netlink_unicast+0x10/0x10
[   97.794919][ T6464]  netlink_sendmsg+0x8b0/0xda0
[   97.794935][ T6464]  ? __pfx_netlink_sendmsg+0x10/0x10
[   97.794951][ T6464]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[   97.794968][ T6464]  ____sys_sendmsg+0x9e1/0xb70
[   97.795006][ T6464]  ? __pfx_netlink_sendmsg+0x10/0x10
[   97.795021][ T6464]  ? __pfx_____sys_sendmsg+0x10/0x10
[   97.795043][ T6464]  ___sys_sendmsg+0x190/0x1e0
[   97.795060][ T6464]  ? __pfx____sys_sendmsg+0x10/0x10
[   97.795091][ T6464]  __sys_sendmsg+0x170/0x220
[   97.795104][ T6464]  ? __pfx___sys_sendmsg+0x10/0x10
[   97.795121][ T6464]  ? __pfx_ksys_write+0x10/0x10
[   97.795134][ T6464]  __do_fast_syscall_32+0xe3/0x8c0
[   97.795149][ T6464]  do_fast_syscall_32+0x32/0x70
[   97.795163][ T6464]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   97.795176][ T6464] RIP: 0023:0xf701ef6c
[   97.795186][ T6464] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[   97.795196][ T6464] RSP: 002b:00000000f540d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[   97.795207][ T6464] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000240
[   97.795213][ T6464] RDX: 0000000000000850 RSI: 0000000000000000 RDI: 0000000000000000
[   97.795219][ T6464] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   97.795224][ T6464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   97.795230][ T6464] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   97.795243][ T6464]  </TASK>
[   97.795989][ T6464] netlink: 12 bytes leftover after parsing attributes in process `syz.3.113'.
[   97.812987][ T6465] netlink: 28 bytes leftover after parsing attributes in process `syz.1.114'.
[   97.907199][ T6465] netlink: 52 bytes leftover after parsing attributes in process `syz.1.114'.
[   97.970045][ T6474] fuse: Bad value for 'fd'
[   97.973310][ T6473] nbd: must specify at least one socket
[   98.083087][   T10] usb 8-1: new full-speed USB device number 4 using dummy_hcd
usb_generic_handle_packet: ctrl buffer too small (16384 > 4096)
[   98.253999][   T10] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   98.258532][   T10] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   98.262994][   T10] usb 8-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   98.268599][   T10] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   98.272257][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   98.280182][   T10] usbtmc 8-1:16.0: bulk endpoints not found
[   99.459372][ T6489] Bluetooth: MGMT ver 1.23
[  100.012816][   T63] Bluetooth: hci2: command 0x2016 tx timeout
[  100.211538][ T1332] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  100.543747][ T1332] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[  100.547418][ T1332] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  100.553240][ T1332] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  100.557792][ T1332] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  100.563551][ T1332] usb 6-1: Manufacturer: syz
[  100.567656][ T1332] usb 6-1: config 0 descriptor??
[  100.621210][ T1332] rc_core: IR keymap rc-hauppauge not found
[  100.623876][ T1332] Registered IR keymap rc-empty
[  100.628084][ T1332] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[  100.634359][ T1332] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input10
[  100.859907][ T6080] usb 8-1: USB disconnect, device number 4
[  100.981090][ T6107] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  101.232475][ T6107] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
usb_generic_handle_packet: ctrl buffer too small (16384 > 4096)
[  101.540092][ T6107] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  102.098052][   T63] Bluetooth: hci2: command 0x2016 tx timeout
[  102.373839][ T6107] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  102.376855][ T6107] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  102.379475][ T6107] usb 5-1: Manufacturer: syz
[  102.382395][ T6107] usb 5-1: config 0 descriptor??
[  102.430290][ T6107] rc_core: IR keymap rc-hauppauge not found
[  102.432294][ T6107] Registered IR keymap rc-empty
[  102.434556][ T6107] rc rc1: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc1
[  102.438957][ T6107] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc1/input11
[  103.070735][ T6523] __nla_validate_parse: 3 callbacks suppressed
[  103.070747][ T6523] netlink: 8 bytes leftover after parsing attributes in process `syz.3.130'.
[  103.185995][ T6495] usb 6-1: USB disconnect, device number 2
[  103.371175][ T6533] netlink: 28 bytes leftover after parsing attributes in process `syz.2.135'.
[  103.375966][ T6533] netlink: 52 bytes leftover after parsing attributes in process `syz.2.135'.
[  103.379837][ T1332] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  103.418471][ T6535] syzkaller0: entered promiscuous mode
[  103.420655][ T6535] syzkaller0: entered allmulticast mode
[  103.426350][ T6535] FAULT_INJECTION: forcing a failure.
[  103.426350][ T6535] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  103.430872][ T6535] CPU: 0 UID: 0 PID: 6535 Comm: syz.2.136 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  103.430889][ T6535] Tainted: [L]=SOFTLOCKUP
[  103.430903][ T6535] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  103.430910][ T6535] Call Trace:
[  103.430914][ T6535]  <TASK>
[  103.430918][ T6535]  dump_stack_lvl+0x100/0x190
[  103.430962][ T6535]  should_fail_ex.cold+0x5/0xa
[  103.430980][ T6535]  _copy_to_user+0x32/0xd0
[  103.430991][ T6535]  simple_read_from_buffer+0xcb/0x170
[  103.431009][ T6535]  proc_fail_nth_read+0x1af/0x230
[  103.431022][ T6535]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  103.431036][ T6535]  ? rw_verify_area+0xce/0x6d0
[  103.431051][ T6535]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  103.431063][ T6535]  vfs_read+0x1e4/0xb30
[  103.431081][ T6535]  ? __pfx_vfs_read+0x10/0x10
[  103.431095][ T6535]  ? find_held_lock+0x2b/0x80
[  103.431106][ T6535]  ? __fget_files+0x215/0x3d0
[  103.431118][ T6535]  ? __fget_files+0x21f/0x3d0
[  103.431131][ T6535]  ksys_read+0x12a/0x250
[  103.431146][ T6535]  ? __pfx_ksys_read+0x10/0x10
[  103.431166][ T6535]  do_int80_emulation+0x141/0x6b0
[  103.431182][ T6535]  asm_int80_emulation+0x1a/0x20
[  103.431193][ T6535] RIP: 0023:0xf71b5cab
[  103.431201][ T6535] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  103.431211][ T6535] RSP: 002b:00000000f54764bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  103.431221][ T6535] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f54765d0
[  103.431228][ T6535] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  103.431233][ T6535] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  103.431239][ T6535] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  103.431244][ T6535] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  103.431257][ T6535]  </TASK>
[  103.539740][ T6495] usb 6-1: new full-speed USB device number 3 using dummy_hcd
[  103.579716][ T1332] usb 8-1: Using ep0 maxpacket: 32
[  103.582645][ T1332] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  103.587452][ T1332] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  103.590529][ T1332] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  103.593026][ T1332] usb 8-1: Product: syz
[  103.594455][ T1332] usb 8-1: Manufacturer: syz
[  103.596200][ T1332] usb 8-1: SerialNumber: syz
[  103.599393][ T1332] usb 8-1: config 0 descriptor??
[  103.602630][ T6527] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  103.605896][ T1332] hub 8-1:0.0: bad descriptor, ignoring hub
[  103.607843][ T1332] hub 8-1:0.0: probe with driver hub failed with error -5
[  103.691083][ T6495] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  103.694456][ T6495] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  103.697595][ T6495] usb 6-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  103.701838][ T6495] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  103.704830][ T6495] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  103.710189][ T6495] usbtmc 6-1:16.0: bulk endpoints not found
[  103.869770][ T5975] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[  103.919782][ T1332] usb 8-1: USB disconnect, device number 5
[  104.021093][ T5975] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  104.024855][ T5975] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  104.028972][ T5975] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  104.032196][ T5975] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.241457][ T5975] usb 7-1: usb_control_msg returned -32
[  104.243796][ T5975] usbtmc 7-1:16.0: can't read capabilities
[  104.259462][ T6107] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  104.270057][ T6116] usb 5-1: USB disconnect, device number 8
[  104.409664][ T6107] usb 8-1: Using ep0 maxpacket: 32
[  104.412992][ T6107] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  104.418237][ T6107] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  104.421304][ T6107] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  104.424097][ T6107] usb 8-1: Product: syz
[  104.425493][ T6107] usb 8-1: Manufacturer: syz
[  104.427189][ T6107] usb 8-1: SerialNumber: syz
[  104.434439][ T6107] usb 8-1: config 0 descriptor??
[  104.436666][ T6527] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  104.441820][ T6107] hub 8-1:0.0: bad descriptor, ignoring hub
[  104.443841][ T6107] hub 8-1:0.0: probe with driver hub failed with error -5
[  104.750004][ T6107] usb 8-1: USB disconnect, device number 6
[  104.803791][ T6546] warning: `syz.2.137' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  105.583948][ T6562] netlink: 52 bytes leftover after parsing attributes in process `syz.0.144'.
[  105.756436][ T6564] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  105.761369][ T6564] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  106.258198][ T1332] usb 6-1: USB disconnect, device number 3
[  106.624272][ T6107] usb 7-1: USB disconnect, device number 3
[  107.224453][ T6579] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  107.227312][ T6579] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  107.232708][ T6579] vhci_hcd vhci_hcd.0: Device attached
[  107.317047][ T6585] netlink: 36 bytes leftover after parsing attributes in process `syz.0.151'.
usb_generic_handle_packet: ctrl buffer too small (16384 > 4096)
[  107.527861][ T1332] usb 42-1: SetAddress Request (6) to port 0
[  107.530471][ T1332] usb 42-1: new SuperSpeed USB device number 6 using vhci_hcd
[  107.859264][ T6580] vhci_hcd: connection reset by peer
[  107.862670][ T1184] vhci_hcd vhci_hcd.2: stop threads
[  107.865164][ T1184] vhci_hcd vhci_hcd.2: release socket
[  107.867705][ T1184] vhci_hcd vhci_hcd.2: disconnect device
[  109.027535][ T6601] netlink: 8 bytes leftover after parsing attributes in process `syz.1.155'.
[  109.109004][   T40] audit: type=1800 audit(1772940392.376:2): pid=6609 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.155" name="SYSV00000000" dev="tmpfs" ino=1 res=0 errno=0
[  109.253581][ T6622] netlink: 'syz.1.161': attribute type 6 has an invalid length.
[  109.539208][ T6629] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  109.541408][ T6629] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  109.544339][ T6629] vhci_hcd vhci_hcd.0: Device attached
[  109.816643][ T5975] usb 38-1: SetAddress Request (2) to port 0
[  110.101664][ T5975] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[  110.167501][ T6630] vhci_hcd: connection reset by peer
[  110.170881][ T1184] vhci_hcd vhci_hcd.0: stop threads
[  110.172953][ T1184] vhci_hcd vhci_hcd.0: release socket
[  110.174965][ T1184] vhci_hcd vhci_hcd.0: disconnect device
[  110.285943][ T6639] netlink: 'syz.3.165': attribute type 1 has an invalid length.
[  110.297219][ T6639] 8021q: adding VLAN 0 to HW filter on device bond1
[  110.481740][ T6639] bond1: (slave geneve2): making interface the new active one
[  110.488746][ T6639] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  110.492618][  T117] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 20004 - 0
[  110.497252][  T117] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 20004 - 0
[  110.503187][  T117] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 20004 - 0
[  110.516832][  T117] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 20004 - 0
[  110.541523][ T6643] syzkaller0: entered promiscuous mode
[  110.543583][ T6643] syzkaller0: entered allmulticast mode
[  110.665585][ T6645] netlink: 12 bytes leftover after parsing attributes in process `syz.3.167'.
[  110.774253][ T6651] netlink: 'syz.0.168': attribute type 7 has an invalid length.
[  110.800613][ T1184] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  110.806174][ T1184] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  110.809173][ T1184] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  110.812468][ T1184] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  110.830440][ T6651] syzkaller0: entered promiscuous mode
[  110.832451][ T6651] syzkaller0: entered allmulticast mode
[  110.868522][ T6651] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  110.939160][ T6657] netlink: 12 bytes leftover after parsing attributes in process `syz.1.171'.
[  110.988359][ T6662] syzkaller0: entered promiscuous mode
[  110.990144][ T6662] syzkaller0: entered allmulticast mode
[  110.996813][ T6660] netlink: 8 bytes leftover after parsing attributes in process `syz.0.173'.
[  111.001223][ T6660] netlink: 8 bytes leftover after parsing attributes in process `syz.0.173'.
[  111.004258][ T6660] netlink: 8 bytes leftover after parsing attributes in process `syz.0.173'.
[  111.009002][ T6660] netlink: 8 bytes leftover after parsing attributes in process `syz.0.173'.
[  111.447335][ T6670] netlink: 56 bytes leftover after parsing attributes in process `syz.2.175'.
[  111.509499][ T6675] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  111.511508][ T6675] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  111.516451][ T6675] vhci_hcd vhci_hcd.0: Device attached
[  111.991443][ T6688] netlink: 12 bytes leftover after parsing attributes in process `syz.3.181'.
[  112.015335][ T6690] FAULT_INJECTION: forcing a failure.
[  112.015335][ T6690] name failslab, interval 1, probability 0, space 0, times 0
[  112.020483][ T6690] CPU: 1 UID: 0 PID: 6690 Comm: syz.2.182 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  112.020512][ T6690] Tainted: [L]=SOFTLOCKUP
[  112.020515][ T6690] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  112.020521][ T6690] Call Trace:
[  112.020525][ T6690]  <TASK>
[  112.020529][ T6690]  dump_stack_lvl+0x100/0x190
[  112.020548][ T6690]  should_fail_ex.cold+0x5/0xa
[  112.020561][ T6690]  should_failslab+0xc2/0x120
[  112.020573][ T6690]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  112.020589][ T6690]  ? __alloc_skb+0x140/0x710
[  112.020603][ T6690]  __alloc_skb+0x140/0x710
[  112.020614][ T6690]  ? __alloc_skb+0x5b7/0x710
[  112.020625][ T6690]  ? __pfx___alloc_skb+0x10/0x10
[  112.020635][ T6690]  ? genl_rcv_msg+0x4be/0x800
[  112.020655][ T6690]  netlink_ack+0x117/0xb80
[  112.020673][ T6690]  netlink_rcv_skb+0x333/0x420
[  112.020687][ T6690]  ? __pfx_genl_rcv_msg+0x10/0x10
[  112.020703][ T6690]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  112.020722][ T6690]  ? netlink_deliver_tap+0x1ae/0xcc0
[  112.020738][ T6690]  genl_rcv+0x28/0x40
[  112.020751][ T6690]  netlink_unicast+0x5aa/0x870
[  112.020767][ T6690]  ? __pfx_netlink_unicast+0x10/0x10
[  112.020780][ T6690]  ? __pfx___might_resched+0x10/0x10
[  112.020801][ T6690]  netlink_sendmsg+0x8b0/0xda0
[  112.020817][ T6690]  ? __pfx_netlink_sendmsg+0x10/0x10
[  112.020832][ T6690]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  112.020850][ T6690]  ____sys_sendmsg+0x9e1/0xb70
[  112.020864][ T6690]  ? __pfx_netlink_sendmsg+0x10/0x10
[  112.020879][ T6690]  ? __pfx_____sys_sendmsg+0x10/0x10
[  112.020901][ T6690]  ___sys_sendmsg+0x190/0x1e0
[  112.020918][ T6690]  ? __pfx____sys_sendmsg+0x10/0x10
[  112.020970][ T6690]  __sys_sendmsg+0x170/0x220
[  112.020986][ T6690]  ? __pfx___sys_sendmsg+0x10/0x10
[  112.021003][ T6690]  ? __pfx_ksys_write+0x10/0x10
[  112.021016][ T6690]  __do_fast_syscall_32+0xe3/0x8c0
[  112.021032][ T6690]  do_fast_syscall_32+0x32/0x70
[  112.021045][ T6690]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  112.021059][ T6690] RIP: 0023:0xf7fb6f6c
[  112.021068][ T6690] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  112.021077][ T6690] RSP: 002b:00000000f547650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  112.021088][ T6690] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000040
[  112.021094][ T6690] RDX: 00000000000400c0 RSI: 0000000000000000 RDI: 0000000000000000
[  112.021100][ T6690] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  112.021105][ T6690] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  112.021111][ T6690] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  112.021124][ T6690]  </TASK>
[  112.316487][ T6676] vhci_hcd: connection closed
[  112.317788][   T46] vhci_hcd vhci_hcd.0: stop threads
[  112.329660][   T46] vhci_hcd vhci_hcd.0: release socket
[  112.337764][   T46] vhci_hcd vhci_hcd.0: disconnect device
[  112.378715][ T6696] netlink: 16 bytes leftover after parsing attributes in process `syz.3.184'.
[  113.366815][   T40] audit: type=1326 audit(1772940396.638:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.3.190" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  113.376460][   T40] audit: type=1326 audit(1772940396.638:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.3.190" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  113.387808][   T40] audit: type=1326 audit(1772940396.658:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.3.190" exe="/syz-executor" sig=0 arch=40000003 syscall=243 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  113.397255][   T40] audit: type=1326 audit(1772940396.658:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.3.190" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  113.414450][   T40] audit: type=1326 audit(1772940396.658:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.3.190" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  113.423874][   T40] audit: type=1326 audit(1772940396.658:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.3.190" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  113.433213][   T40] audit: type=1326 audit(1772940396.658:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.3.190" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  113.442976][   T40] audit: type=1326 audit(1772940396.658:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.3.190" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  113.556980][ T1332] usb 42-1: device descriptor read/8, error -110
[  114.114497][ T6007] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  114.266348][ T6007] usb 8-1: config index 0 descriptor too short (expected 23569, got 27)
[  114.270021][ T6007] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  114.276504][ T6007] usb 8-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  114.280464][ T6007] usb 8-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  114.283940][ T6007] usb 8-1: Manufacturer: syz
[  114.294718][ T6007] usb 8-1: config 0 descriptor??
[  114.354374][ T6007] rc_core: IR keymap rc-hauppauge not found
[  114.357007][ T6007] Registered IR keymap rc-empty
[  114.363292][ T6007] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0
[  114.371095][ T6007] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0/input13
[  114.457296][ T1332] usb usb42-port1: attempt power cycle
[  114.509970][ T6731] __nla_validate_parse: 3 callbacks suppressed
[  114.509986][ T6731] netlink: 56 bytes leftover after parsing attributes in process `syz.0.196'.
[  115.204366][ T5975] usb 38-1: device descriptor read/8, error -110
[  115.359272][ T1332] usb usb42-port1: unable to enumerate USB device
[  115.612100][ T5975] usb usb38-port1: attempt power cycle
[  116.118249][ T6758] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  116.120743][ T6758] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  116.124566][ T6758] vhci_hcd vhci_hcd.0: Device attached
[  116.277570][ T5975] usb usb38-port1: unable to enumerate USB device
[  118.055470][ T1332] usb 42-1: SetAddress Request (10) to port 0
[  118.058174][ T1332] usb 42-1: new SuperSpeed USB device number 10 using vhci_hcd
[  118.181170][ T6495] usb 8-1: USB disconnect, device number 7
[  118.232748][ T6771] IPVS: length: 4096 != 24
[  118.239826][ T6771] netlink: 12 bytes leftover after parsing attributes in process `syz.0.209'.
[  118.276153][ T6759] vhci_hcd: connection reset by peer
[  118.279959][ T1201] vhci_hcd vhci_hcd.2: stop threads
[  118.281771][ T1201] vhci_hcd vhci_hcd.2: release socket
[  118.283736][ T1201] vhci_hcd vhci_hcd.2: disconnect device
[  119.065027][ T6788] netlink: 4 bytes leftover after parsing attributes in process `syz.2.214'.
[  121.617651][ T6815] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(12)
[  121.620399][ T6815] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  121.623299][ T6815] vhci_hcd vhci_hcd.0: Device attached
[  121.738033][ T6822] vhci_hcd: connection closed
[  121.739925][ T1184] vhci_hcd vhci_hcd.2: stop threads
[  121.743869][ T1184] vhci_hcd vhci_hcd.2: release socket
[  121.747074][ T1184] vhci_hcd vhci_hcd.2: disconnect device
[  121.990720][   T10] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  121.994893][ T6833] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  121.997033][ T6833] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  121.999713][ T6833] vhci_hcd vhci_hcd.0: Device attached
[  122.003771][ T6833] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(7)
[  122.006624][ T6833] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  122.010231][ T6833] vhci_hcd vhci_hcd.0: Device attached
[  122.018917][ T6833] vhci_hcd vhci_hcd.0: pdev(0) rhport(2) sockfd(11)
[  122.021143][ T6833] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  122.023921][ T6833] vhci_hcd vhci_hcd.0: Device attached
[  122.027960][ T6833] vhci_hcd vhci_hcd.0: pdev(0) rhport(3) sockfd(16)
[  122.030096][ T6833] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  122.032853][ T6833] vhci_hcd vhci_hcd.0: Device attached
[  122.081227][ T6840] vhci_hcd: connection closed
[  122.081481][ T6838] vhci_hcd: connection closed
[  122.081566][ T6836] vhci_hcd: connection closed
[  122.084082][ T6842] vhci_hcd: connection closed
[  122.090748][   T60] vhci_hcd vhci_hcd.0: stop threads
[  122.095243][   T60] vhci_hcd vhci_hcd.0: release socket
[  122.097671][   T60] vhci_hcd vhci_hcd.0: disconnect device
[  122.101580][   T60] vhci_hcd vhci_hcd.0: stop threads
[  122.104007][   T60] vhci_hcd vhci_hcd.0: release socket
[  122.106389][   T60] vhci_hcd vhci_hcd.0: disconnect device
[  122.111427][   T60] vhci_hcd vhci_hcd.0: stop threads
[  122.113629][   T60] vhci_hcd vhci_hcd.0: release socket
[  122.118224][   T60] vhci_hcd vhci_hcd.0: disconnect device
[  122.123095][   T60] vhci_hcd vhci_hcd.0: stop threads
[  122.127576][   T60] vhci_hcd vhci_hcd.0: release socket
[  122.132639][   T60] vhci_hcd vhci_hcd.0: disconnect device
[  122.160440][   T10] usb 6-1: Using ep0 maxpacket: 8
[  122.164018][   T10] usb 6-1: config 179 has an invalid descriptor of length 52, skipping remainder of the config
[  122.168277][   T10] usb 6-1: config 179 has 0 interfaces, different from the descriptor's value: 1
[  122.172038][   T10] usb 6-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  122.175819][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.260262][ T6850] netlink: 4 bytes leftover after parsing attributes in process `syz.0.227'.
[  122.392051][ T6080] usb 6-1: USB disconnect, device number 4
[  122.948962][ T6866] FAULT_INJECTION: forcing a failure.
[  122.948962][ T6866] name failslab, interval 1, probability 0, space 0, times 0
[  122.953655][ T6866] CPU: 0 UID: 0 PID: 6866 Comm: syz.1.233 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  122.953671][ T6866] Tainted: [L]=SOFTLOCKUP
[  122.953675][ T6866] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  122.953681][ T6866] Call Trace:
[  122.953684][ T6866]  <TASK>
[  122.953688][ T6866]  dump_stack_lvl+0x100/0x190
[  122.953708][ T6866]  should_fail_ex.cold+0x5/0xa
[  122.953721][ T6866]  should_failslab+0xc2/0x120
[  122.953732][ T6866]  __kmalloc_cache_noprof+0x7a/0x6f0
[  122.953745][ T6866]  ? resv_map_alloc+0x46/0x400
[  122.953760][ T6866]  ? ksys_write+0x190/0x250
[  122.953772][ T6866]  resv_map_alloc+0x46/0x400
[  122.953788][ T6866]  hugetlbfs_get_inode+0x2fe/0x750
[  122.953798][ T6866]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  122.953814][ T6866]  hugetlb_file_setup+0x15b/0x5b0
[  122.953827][ T6866]  ksys_mmap_pgoff+0x232/0x650
[  122.953838][ T6866]  ? fput+0x79/0x100
[  122.953855][ T6866]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  122.953865][ T6866]  ? __pfx_ksys_write+0x10/0x10
[  122.953877][ T6866]  __do_fast_syscall_32+0xe3/0x8c0
[  122.953893][ T6866]  do_fast_syscall_32+0x32/0x70
[  122.953906][ T6866]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  122.953920][ T6866] RIP: 0023:0xf7f73f6c
[  122.953932][ T6866] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  122.953942][ T6866] RSP: 002b:00000000f543650c EFLAGS: 00000292 ORIG_RAX: 00000000000000c0
[  122.953952][ T6866] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000400000
[  122.953958][ T6866] RDX: 0000000000000002 RSI: 00000000000c3072 RDI: 00000000ffffffff
[  122.953964][ T6866] RBP: 0000000000200000 R08: 0000000000000000 R09: 0000000000000000
[  122.953970][ T6866] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  122.953976][ T6866] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  122.953988][ T6866]  </TASK>
[  123.120021][ T1332] usb 42-1: device descriptor read/8, error -110
[  123.510458][ T1332] usb usb42-port1: attempt power cycle
[  124.032677][ T6884] netlink: 36 bytes leftover after parsing attributes in process `syz.2.240'.
[  124.080121][ T1332] usb usb42-port1: unable to enumerate USB device
[  124.102125][ T6899] netlink: 4 bytes leftover after parsing attributes in process `syz.3.244'.
[  124.191442][ T6900] FAULT_INJECTION: forcing a failure.
[  124.191442][ T6900] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  124.195751][ T6900] CPU: 0 UID: 0 PID: 6900 Comm: syz.1.243 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  124.195767][ T6900] Tainted: [L]=SOFTLOCKUP
[  124.195770][ T6900] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  124.195776][ T6900] Call Trace:
[  124.195780][ T6900]  <TASK>
[  124.195785][ T6900]  dump_stack_lvl+0x100/0x190
[  124.195804][ T6900]  should_fail_ex.cold+0x5/0xa
[  124.195817][ T6900]  _copy_from_user+0x2e/0xd0
[  124.195828][ T6900]  move_addr_to_kernel+0x65/0x170
[  124.195846][ T6900]  get_compat_msghdr+0x3ee/0x4b0
[  124.195859][ T6900]  ? __pfx_get_compat_msghdr+0x10/0x10
[  124.195876][ T6900]  ___sys_sendmsg+0x1b6/0x1e0
[  124.195893][ T6900]  ? __pfx____sys_sendmsg+0x10/0x10
[  124.195925][ T6900]  __sys_sendmsg+0x170/0x220
[  124.195938][ T6900]  ? __pfx___sys_sendmsg+0x10/0x10
[  124.195955][ T6900]  ? __pfx_ksys_write+0x10/0x10
[  124.195968][ T6900]  __do_fast_syscall_32+0xe3/0x8c0
[  124.195983][ T6900]  do_fast_syscall_32+0x32/0x70
[  124.195997][ T6900]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  124.196010][ T6900] RIP: 0023:0xf7f73f6c
[  124.196019][ T6900] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  124.196028][ T6900] RSP: 002b:00000000f541550c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  124.196038][ T6900] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000800
[  124.196045][ T6900] RDX: 0000000004048043 RSI: 0000000000000000 RDI: 0000000000000000
[  124.196050][ T6900] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  124.196056][ T6900] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  124.196061][ T6900] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  124.196074][ T6900]  </TASK>
[  124.719210][ T6906] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  124.721961][ T6906] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  124.739145][ T6906] vhci_hcd vhci_hcd.0: Device attached
[  125.713203][ T6007] usb 42-1: SetAddress Request (14) to port 0
[  125.715662][ T6007] usb 42-1: new SuperSpeed USB device number 14 using vhci_hcd
[  126.271786][ T6907] vhci_hcd: connection reset by peer
[  126.298421][ T1143] vhci_hcd vhci_hcd.2: stop threads
[  126.300281][ T1143] vhci_hcd vhci_hcd.2: release socket
[  126.307996][ T1143] vhci_hcd vhci_hcd.2: disconnect device
[  126.894537][ T6939] FAULT_INJECTION: forcing a failure.
[  126.894537][ T6939] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  126.900385][ T6939] CPU: 0 UID: 0 PID: 6939 Comm: syz.2.256 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  126.900409][ T6939] Tainted: [L]=SOFTLOCKUP
[  126.900415][ T6939] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  126.900426][ T6939] Call Trace:
[  126.900433][ T6939]  <TASK>
[  126.900440][ T6939]  dump_stack_lvl+0x100/0x190
[  126.900471][ T6939]  should_fail_ex.cold+0x5/0xa
[  126.900497][ T6939]  ? prepare_alloc_pages+0x16d/0x5f0
[  126.900520][ T6939]  should_fail_alloc_page+0xeb/0x140
[  126.900541][ T6939]  prepare_alloc_pages+0x1f0/0x5f0
[  126.900566][ T6939]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  126.900593][ T6939]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  126.900613][ T6939]  ? is_bpf_text_address+0x8a/0x1a0
[  126.900640][ T6939]  ? lock_release+0x263/0x320
[  126.900661][ T6939]  ? bpf_ksym_find+0x124/0x1c0
[  126.900683][ T6939]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  126.900702][ T6939]  ? is_bpf_text_address+0x94/0x1a0
[  126.900729][ T6939]  ? kernel_text_address+0x8d/0x100
[  126.900755][ T6939]  ? __kernel_text_address+0xd/0x30
[  126.900780][ T6939]  ? unwind_get_return_address+0x59/0xa0
[  126.900800][ T6939]  ? arch_stack_walk+0xa6/0xf0
[  126.900825][ T6939]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  126.900883][ T6939]  ? check_noncircular+0x97/0x160
[  126.900903][ T6939]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  126.900933][ T6939]  ? policy_nodemask+0xed/0x4f0
[  126.900953][ T6939]  alloc_pages_mpol+0x1fb/0x550
[  126.900972][ T6939]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  126.900990][ T6939]  ? __kasan_kmalloc+0xaa/0xb0
[  126.901014][ T6939]  ? __get_vm_area_node+0x101/0x330
[  126.901037][ T6939]  alloc_pages_noprof+0x131/0x390
[  126.901057][ T6939]  get_free_pages_noprof+0x10/0xb0
[  126.901074][ T6939]  __kasan_populate_vmalloc+0xa0/0x210
[  126.901106][ T6939]  alloc_vmap_area+0x95d/0x2bd0
[  126.901134][ T6939]  ? __pfx_alloc_vmap_area+0x10/0x10
[  126.901156][ T6939]  __get_vm_area_node+0x1ca/0x330
[  126.901180][ T6939]  __vmalloc_node_range_noprof+0x213/0x1530
[  126.901199][ T6939]  ? bpf_prog_alloc_no_stats+0x58/0x640
[  126.901222][ T6939]  ? kernel_text_address+0x8d/0x100
[  126.901245][ T6939]  ? __kernel_text_address+0xd/0x30
[  126.901271][ T6939]  ? bpf_prog_alloc_no_stats+0x58/0x640
[  126.901302][ T6939]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  126.901321][ T6939]  ? stack_trace_save+0x8e/0xc0
[  126.901337][ T6939]  ? __pfx_stack_trace_save+0x10/0x10
[  126.901356][ T6939]  ? check_noncircular+0x97/0x160
[  126.901377][ T6939]  ? bpf_prog_alloc_no_stats+0x58/0x640
[  126.901399][ T6939]  __vmalloc_node_noprof+0xad/0xf0
[  126.901417][ T6939]  ? bpf_prog_alloc_no_stats+0x58/0x640
[  126.901443][ T6939]  __vmalloc_noprof+0xa3/0x120
[  126.901462][ T6939]  ? __pfx___vmalloc_noprof+0x10/0x10
[  126.901492][ T6939]  bpf_prog_alloc_no_stats+0x58/0x640
[  126.901521][ T6939]  bpf_prog_alloc+0x3b/0x200
[  126.901546][ T6939]  __get_filter+0x112/0x2d0
[  126.901571][ T6939]  sk_attach_filter+0x1c/0x160
[  126.901593][ T6939]  tun_attach.isra.0+0xc57/0x17b0
[  126.901624][ T6939]  ? tun_get+0x191/0x370
[  126.901649][ T6939]  ? netdev_name_node_lookup+0x107/0x150
[  126.901671][ T6939]  __tun_chr_ioctl+0x1302/0x47c0
[  126.901694][ T6939]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  126.901724][ T6939]  ? __pfx___tun_chr_ioctl+0x10/0x10
[  126.901750][ T6939]  ? find_held_lock+0x2b/0x80
[  126.901766][ T6939]  ? hook_file_ioctl_common+0x146/0x410
[  126.901800][ T6939]  ? __fget_files+0x21f/0x3d0
[  126.901827][ T6939]  ? __pfx_tun_chr_compat_ioctl+0x10/0x10
[  126.901853][ T6939]  __ia32_compat_sys_ioctl+0x2cf/0x360
[  126.901882][ T6939]  __do_fast_syscall_32+0xe3/0x8c0
[  126.901908][ T6939]  do_fast_syscall_32+0x32/0x70
[  126.901931][ T6939]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  126.901954][ T6939] RIP: 0023:0xf7fb6f6c
[  126.901968][ T6939] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  126.901984][ T6939] RSP: 002b:00000000f547650c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  126.902001][ T6939] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000400454ca
[  126.902011][ T6939] RDX: 0000000080002280 RSI: 0000000000000000 RDI: 0000000000000000
[  126.902021][ T6939] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  126.902031][ T6939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  126.902041][ T6939] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  126.902065][ T6939]  </TASK>
[  126.903075][ T6939] syz.2.256: vmalloc error: size 12288, vm_struct allocation failed, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  127.080409][ T6939] CPU: 0 UID: 0 PID: 6939 Comm: syz.2.256 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  127.080426][ T6939] Tainted: [L]=SOFTLOCKUP
[  127.080430][ T6939] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  127.080436][ T6939] Call Trace:
[  127.080440][ T6939]  <TASK>
[  127.080444][ T6939]  dump_stack_lvl+0x100/0x190
[  127.080463][ T6939]  warn_alloc.cold+0x95/0x1c1
[  127.080482][ T6939]  ? __pfx_warn_alloc+0x10/0x10
[  127.080496][ T6939]  ? lockdep_hardirqs_on+0x78/0x100
[  127.080511][ T6939]  ? __get_vm_area_node+0x2c5/0x330
[  127.080526][ T6939]  ? __get_vm_area_node+0x208/0x330
[  127.080541][ T6939]  __vmalloc_node_range_noprof+0xbf4/0x1530
[  127.080554][ T6939]  ? kernel_text_address+0x8d/0x100
[  127.080569][ T6939]  ? __kernel_text_address+0xd/0x30
[  127.080585][ T6939]  ? bpf_prog_alloc_no_stats+0x58/0x640
[  127.080605][ T6939]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  127.080618][ T6939]  ? stack_trace_save+0x8e/0xc0
[  127.080628][ T6939]  ? __pfx_stack_trace_save+0x10/0x10
[  127.080640][ T6939]  ? check_noncircular+0x97/0x160
[  127.080654][ T6939]  ? bpf_prog_alloc_no_stats+0x58/0x640
[  127.080669][ T6939]  __vmalloc_node_noprof+0xad/0xf0
[  127.080681][ T6939]  ? bpf_prog_alloc_no_stats+0x58/0x640
[  127.080697][ T6939]  __vmalloc_noprof+0xa3/0x120
[  127.080710][ T6939]  ? __pfx___vmalloc_noprof+0x10/0x10
[  127.080727][ T6939]  bpf_prog_alloc_no_stats+0x58/0x640
[  127.080744][ T6939]  bpf_prog_alloc+0x3b/0x200
[  127.080760][ T6939]  __get_filter+0x112/0x2d0
[  127.080775][ T6939]  sk_attach_filter+0x1c/0x160
[  127.080790][ T6939]  tun_attach.isra.0+0xc57/0x17b0
[  127.080809][ T6939]  ? tun_get+0x191/0x370
[  127.080829][ T6939]  ? netdev_name_node_lookup+0x107/0x150
[  127.080842][ T6939]  __tun_chr_ioctl+0x1302/0x47c0
[  127.080856][ T6939]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  127.080888][ T6939]  ? __pfx___tun_chr_ioctl+0x10/0x10
[  127.080904][ T6939]  ? find_held_lock+0x2b/0x80
[  127.080913][ T6939]  ? hook_file_ioctl_common+0x146/0x410
[  127.080933][ T6939]  ? __fget_files+0x21f/0x3d0
[  127.080946][ T6939]  ? __pfx_tun_chr_compat_ioctl+0x10/0x10
[  127.080962][ T6939]  __ia32_compat_sys_ioctl+0x2cf/0x360
[  127.080979][ T6939]  __do_fast_syscall_32+0xe3/0x8c0
[  127.080994][ T6939]  do_fast_syscall_32+0x32/0x70
[  127.081008][ T6939]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  127.081021][ T6939] RIP: 0023:0xf7fb6f6c
[  127.081029][ T6939] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  127.081039][ T6939] RSP: 002b:00000000f547650c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  127.081049][ T6939] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000400454ca
[  127.081055][ T6939] RDX: 0000000080002280 RSI: 0000000000000000 RDI: 0000000000000000
[  127.081061][ T6939] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  127.081067][ T6939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  127.081073][ T6939] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  127.081086][ T6939]  </TASK>
[  127.081090][ T6939] Mem-Info:
[  127.180411][ T6939] active_anon:8387 inactive_anon:100 isolated_anon:100
[  127.180411][ T6939]  active_file:8892 inactive_file:42933 isolated_file:300
[  127.180411][ T6939]  unevictable:1768 dirty:402 writeback:0
[  127.180411][ T6939]  slab_reclaimable:8401 slab_unreclaimable:53421
[  127.180411][ T6939]  mapped:27704 shmem:5404 pagetables:1184
[  127.180411][ T6939]  sec_pagetables:298 bounce:0
[  127.180411][ T6939]  kernel_misc_reclaimable:0
[  127.180411][ T6939]  free:29612 free_pcp:17954 free_cma:0
[  127.194881][ T6939] Node 0 active_anon:56kB inactive_anon:56kB active_file:40kB inactive_file:24kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:36kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8224kB pagetables:1556kB sec_pagetables:1116kB all_unreclaimable? yes Balloon:0kB
[  127.204404][ T6939] Node 1 active_anon:33492kB inactive_anon:344kB active_file:35528kB inactive_file:171708kB unevictable:3536kB isolated(anon):400kB isolated(file):1200kB mapped:110480kB dirty:1608kB writeback:0kB shmem:18080kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:4896kB pagetables:2980kB sec_pagetables:76kB all_unreclaimable? no Balloon:0kB
[  127.214661][ T6939] Node 0 DMA free:2044kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:532kB local_pcp:140kB free_cma:0kB
[  127.224499][ T6939] lowmem_reserve[]: 0 285 285 285 285
[  127.225572][ T6944] netlink: 4 bytes leftover after parsing attributes in process `syz.0.258'.
[  127.226349][ T6939] Node 0 DMA32 free:15332kB boost:4096kB min:17168kB low:20436kB high:23704kB reserved_highatomic:0KB free_highatomic:0KB active_anon:56kB inactive_anon:56kB active_file:40kB inactive_file:24kB unevictable:3536kB writepending:0kB zspages:0kB present:1032196kB managed:292640kB mlocked:0kB bounce:0kB free_pcp:14908kB local_pcp:3840kB free_cma:0kB
[  127.241239][ T6939] lowmem_reserve[]: 0 0 0 0 0
[  127.242897][ T6939] Node 1 DMA32 free:105096kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:33368kB inactive_anon:344kB active_file:35020kB inactive_file:172424kB unevictable:3536kB writepending:1612kB zspages:3216kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:51992kB local_pcp:9596kB free_cma:0kB
[  127.253748][ T6939] lowmem_reserve[]: 0 0 0 0 0
[  127.255434][ T6939] Node 0 DMA: 15*4kB (U) 0*8kB 0*16kB 2*32kB (U) 0*64kB 1*128kB (U) 1*256kB (U) 1*512kB (U) 1*1024kB (U) 0*2048kB 0*4096kB = 2044kB
[  127.260470][ T6939] Node 0 DMA32: 193*4kB (UM) 188*8kB (UME) 72*16kB (UME) 58*32kB (UME) 49*64kB (UME) 14*128kB (UME) 8*256kB (UME) 6*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 15332kB
[  127.265873][ T6939] Node 1 DMA32: 861*4kB (UM) 629*8kB (UME) 479*16kB (UM) 57*32kB (UME) 219*64kB (UME) 115*128kB (UME) 68*256kB (UM) 26*512kB (UME) 19*1024kB (UME) 2*2048kB (UM) 1*4096kB (U) = 105068kB
[  127.272142][ T6939] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  127.275307][ T6939] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  127.278465][ T6939] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  127.281720][ T6939] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  127.284806][ T6939] 57928 total pagecache pages
[  127.286864][ T6939] 405 pages in swap cache
[  127.288491][ T6939] Free swap  = 117056kB
[  127.289945][ T6939] Total swap = 124996kB
[  127.291385][ T6939] 524155 pages RAM
[  127.292694][ T6939] 0 pages HighMem/MovableOnly
[  127.294339][ T6939] 210102 pages reserved
[  127.295795][ T6939] 0 pages cma reserved
[  129.376851][ T6107] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  129.556800][ T6107] usb 6-1: Using ep0 maxpacket: 32
[  129.561030][ T6107] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  129.567804][ T6107] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  129.571711][ T6107] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  129.575230][ T6107] usb 6-1: Product: syz
[  129.577518][ T6107] usb 6-1: Manufacturer: syz
[  129.579569][ T6107] usb 6-1: SerialNumber: syz
[  129.583910][ T6107] usb 6-1: config 0 descriptor??
[  129.589092][ T6955] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  129.596433][ T6107] hub 6-1:0.0: bad descriptor, ignoring hub
[  129.599627][ T6107] hub 6-1:0.0: probe with driver hub failed with error -5
[  129.926869][ T5975] usb 6-1: USB disconnect, device number 5
usb_generic_handle_packet: ctrl buffer too small (16384 > 4096)
[  130.511795][ T6495] libceph: connect (1)[c::]:6789 error -101
[  130.516306][ T6495] libceph: mon0 (1)[c::]:6789 connect error
[  130.555898][ T6971] ceph: No mds server is up or the cluster is laggy
[  131.196083][ T6007] usb 42-1: device descriptor read/8, error -110
[  131.414490][ T6984] netlink: 4 bytes leftover after parsing attributes in process `syz.2.268'.
[  131.586198][ T6007] usb usb42-port1: attempt power cycle
[  131.995602][ T6107] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  132.158522][ T6007] usb usb42-port1: unable to enumerate USB device
[  132.161649][ T6107] usb 8-1: Using ep0 maxpacket: 32
[  132.167162][ T6107] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  132.174815][ T6107] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[  132.188602][ T6107] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  132.192533][ T6107] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  132.205439][ T6107] usb 8-1: Product: syz
[  132.207330][ T6107] usb 8-1: Manufacturer: syz
[  132.209378][ T6107] usb 8-1: SerialNumber: syz
[  132.222834][ T6107] usb 8-1: config 0 descriptor??
[  132.228452][ T6107] hub 8-1:0.0: bad descriptor, ignoring hub
[  132.235423][ T6107] hub 8-1:0.0: probe with driver hub failed with error -5
[  132.535511][ T5975] usb 8-1: USB disconnect, device number 8
[  133.531942][ T7003] ieee802154 phy0 wpan0: encryption failed: -22
[  133.553104][ T7014] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  133.563809][ T7014] batman_adv: batadv0: Removing interface: batadv_slave_0
[  134.057088][ T7014] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  134.060388][ T7014] batman_adv: batadv0: Removing interface: batadv_slave_1
[  134.265149][ T7021] netlink: 4 bytes leftover after parsing attributes in process `syz.1.280'.
usb_generic_handle_packet: ctrl buffer too small (16384 > 4096)
[  135.452758][ T7043] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  135.455715][ T7043] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  135.459743][ T7043] vhci_hcd vhci_hcd.0: Device attached
[  135.512846][ T7045] vhci_hcd: connection closed
[  135.513188][   T60] vhci_hcd vhci_hcd.1: stop threads
[  135.518216][   T60] vhci_hcd vhci_hcd.1: release socket
[  135.520949][   T60] vhci_hcd vhci_hcd.1: disconnect device
[  135.877861][ T7050] ieee802154 phy0 wpan0: encryption failed: -22
[  136.803257][   T59] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  137.356791][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[  137.359536][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[  138.518156][ T7072] netlink: 4 bytes leftover after parsing attributes in process `syz.3.295'.
[  138.545735][   T59] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[  138.549265][   T59] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  138.554217][   T59] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  138.558034][   T59] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  138.561348][   T59] usb 6-1: Manufacturer: syz
[  138.565569][   T59] usb 6-1: config 0 descriptor??
[  138.622332][   T59] rc_core: IR keymap rc-hauppauge not found
[  138.628936][   T59] Registered IR keymap rc-empty
[  138.641516][   T59] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[  138.648372][   T59] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input15
[  138.789440][ T7088] netlink: 52 bytes leftover after parsing attributes in process `syz.3.298'.
[  139.242473][ T7086] ieee802154 phy0 wpan0: encryption failed: -22
[  142.004849][ T6116] usb 6-1: USB disconnect, device number 6
[  142.553110][ T6495] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  142.970084][ T6495] usb 5-1: Using ep0 maxpacket: 8
[  142.976422][ T6495] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[  142.979515][ T6495] usb 5-1: config 179 has an invalid descriptor of length 52, skipping remainder of the config
[  142.984213][ T6495] usb 5-1: config 179 has no interface number 0
[  142.986472][ T6495] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[  142.991018][ T6495] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  142.994832][ T6495] usb 5-1: config 179 interface 65 altsetting 12 has 1 endpoint descriptor, different from the interface descriptor's value: 23
[  142.999196][ T6495] usb 5-1: config 179 interface 65 has no altsetting 0
[  143.003119][ T6495] usb 5-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  143.006238][ T6495] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.085050][ T7118] FAULT_INJECTION: forcing a failure.
[  143.085050][ T7118] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  143.093858][ T7118] CPU: 3 UID: 0 PID: 7118 Comm: syz.2.307 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  143.093888][ T7118] Tainted: [L]=SOFTLOCKUP
[  143.093893][ T7118] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  143.093903][ T7118] Call Trace:
[  143.093909][ T7118]  <TASK>
[  143.093917][ T7118]  dump_stack_lvl+0x100/0x190
[  143.093949][ T7118]  should_fail_ex.cold+0x5/0xa
[  143.093971][ T7118]  _copy_to_user+0x32/0xd0
[  143.093993][ T7118]  simple_read_from_buffer+0xcb/0x170
[  143.094022][ T7118]  proc_fail_nth_read+0x1af/0x230
[  143.094047][ T7118]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  143.094069][ T7118]  ? rw_verify_area+0xce/0x6d0
[  143.094096][ T7118]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  143.094116][ T7118]  vfs_read+0x1e4/0xb30
[  143.094146][ T7118]  ? __pfx_vfs_read+0x10/0x10
[  143.094171][ T7118]  ? find_held_lock+0x2b/0x80
[  143.094189][ T7118]  ? __fget_files+0x215/0x3d0
[  143.094211][ T7118]  ? __fget_files+0x21f/0x3d0
[  143.094236][ T7118]  ksys_read+0x12a/0x250
[  143.094265][ T7118]  ? __pfx_ksys_read+0x10/0x10
[  143.094298][ T7118]  do_int80_emulation+0x141/0x6b0
[  143.094327][ T7118]  asm_int80_emulation+0x1a/0x20
[  143.094344][ T7118] RIP: 0023:0xf71b5cab
[  143.094359][ T7118] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  143.094377][ T7118] RSP: 002b:00000000f54764bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  143.094393][ T7118] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f54765d0
[  143.094404][ T7118] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  143.094414][ T7118] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  143.094425][ T7118] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  143.094435][ T7118] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  143.094457][ T7118]  </TASK>
[  143.208916][ T7119] netlink: 4 bytes leftover after parsing attributes in process `syz.3.306'.
[  143.303481][ T5975] usb 5-1: USB disconnect, device number 9
[  143.856138][ T7125] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  143.859216][ T7125] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  143.869899][ T7125] vhci_hcd vhci_hcd.0: Device attached
[  143.903413][ T7125] netlink: 'syz.2.308': attribute type 1 has an invalid length.
[  144.129505][ T5975] usb 41-1: new low-speed USB device number 2 using vhci_hcd
[  144.451686][ T7143] =======================================================
[  144.451686][ T7143] WARNING: The mand mount option has been deprecated and
[  144.451686][ T7143]          and is ignored by this kernel. Remove the mand
[  144.451686][ T7143]          option from the mount to silence this warning.
[  144.451686][ T7143] =======================================================
[  144.466818][ T7143] tmpfs: Too few inodes for current use
[  144.628345][ T7126] vhci_hcd: connection reset by peer
[  144.919181][   T12] vhci_hcd vhci_hcd.2: stop threads
[  144.920989][   T12] vhci_hcd vhci_hcd.2: release socket
[  144.929299][   T12] vhci_hcd vhci_hcd.2: disconnect device
[  145.351609][ T7149] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  145.402011][ T7149] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  145.989589][   T59] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  146.138502][   T59] usb 5-1: Using ep0 maxpacket: 8
[  146.142087][   T59] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[  146.144946][   T59] usb 5-1: config 179 has an invalid descriptor of length 52, skipping remainder of the config
[  146.148305][   T59] usb 5-1: config 179 has no interface number 0
[  146.152375][   T59] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[  146.156348][   T59] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  146.161642][   T59] usb 5-1: config 179 interface 65 altsetting 12 has 1 endpoint descriptor, different from the interface descriptor's value: 23
[  146.166084][   T59] usb 5-1: config 179 interface 65 has no altsetting 0
[  146.168652][   T59] usb 5-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  146.171533][   T59] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  146.380307][   T59] usb 5-1: USB disconnect, device number 10
[  146.529775][ T7155] netlink: 28 bytes leftover after parsing attributes in process `syz.3.320'.
[  146.535737][ T7155] netlink: 52 bytes leftover after parsing attributes in process `syz.3.320'.
[  146.713673][ T7161] tipc: Started in network mode
[  146.715705][ T7161] tipc: Node identity aaaaaaaaaa33, cluster identity 4711
[  146.720175][ T7161] tipc: Enabled bearer <eth:vlan1>, priority 0
[  146.727792][   T40] audit: type=1326 audit(1772940942.008:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.3.323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  146.729797][ T7164] netlink: 4 bytes leftover after parsing attributes in process `syz.1.319'.
[  146.739473][   T40] audit: type=1326 audit(1772940942.018:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.3.323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  146.752352][   T40] audit: type=1326 audit(1772940942.018:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.3.323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  146.759893][   T40] audit: type=1326 audit(1772940942.018:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.3.323" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  146.766538][   T40] audit: type=1326 audit(1772940942.018:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.3.323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  146.773462][   T40] audit: type=1326 audit(1772940942.018:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.3.323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  146.781111][   T40] audit: type=1326 audit(1772940942.018:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.3.323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  146.788172][   T40] audit: type=1326 audit(1772940942.018:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.3.323" exe="/syz-executor" sig=0 arch=40000003 syscall=340 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  146.794913][   T40] audit: type=1326 audit(1772940942.018:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.3.323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  146.807828][   T40] audit: type=1326 audit(1772940942.018:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.3.323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701ef6c code=0x7ffc0000
[  146.940171][ T7172] FAULT_INJECTION: forcing a failure.
[  146.940171][ T7172] name failslab, interval 1, probability 0, space 0, times 0
[  146.944549][ T7172] CPU: 0 UID: 0 PID: 7172 Comm: syz.0.326 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  146.944567][ T7172] Tainted: [L]=SOFTLOCKUP
[  146.944570][ T7172] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  146.944577][ T7172] Call Trace:
[  146.944581][ T7172]  <TASK>
[  146.944585][ T7172]  dump_stack_lvl+0x100/0x190
[  146.944606][ T7172]  should_fail_ex.cold+0x5/0xa
[  146.944618][ T7172]  should_failslab+0xc2/0x120
[  146.944630][ T7172]  __kvmalloc_node_noprof+0xfa/0xa00
[  146.944646][ T7172]  ? vmemdup_user+0x2a/0xe0
[  146.944659][ T7172]  vmemdup_user+0x2a/0xe0
[  146.944669][ T7172]  kvm_vcpu_ioctl_set_cpuid2+0x84/0x160
[  146.944690][ T7172]  kvm_arch_vcpu_ioctl+0x1f62/0x5740
[  146.944701][ T7172]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  146.944713][ T7172]  ? is_bpf_text_address+0x94/0x1a0
[  146.944729][ T7172]  ? kernel_text_address+0x8d/0x100
[  146.944744][ T7172]  ? __pfx_widen_string+0x10/0x10
[  146.944760][ T7172]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  146.944771][ T7172]  ? arch_stack_walk+0xa6/0xf0
[  146.944787][ T7172]  ? __lock_acquire+0x4a5/0x2630
[  146.944802][ T7172]  ? stack_depot_save_flags+0x27/0x9d0
[  146.944814][ T7172]  ? __lock_acquire+0x4a5/0x2630
[  146.944829][ T7172]  ? lock_acquire+0x1cf/0x380
[  146.944844][ T7172]  ? rcu_is_watching+0x12/0xc0
[  146.944860][ T7172]  ? trace_contention_end+0x140/0x180
[  146.944875][ T7172]  ? __mutex_lock+0x26a/0x1b90
[  146.944889][ T7172]  ? kvm_vcpu_ioctl+0x322/0x1730
[  146.944905][ T7172]  ? __pfx___mutex_lock+0x10/0x10
[  146.944923][ T7172]  ? tomoyo_path_number_perm+0x46d/0x580
[  146.944940][ T7172]  ? kasan_quarantine_put+0x104/0x240
[  146.944958][ T7172]  ? kvm_vcpu_ioctl+0x8a0/0x1730
[  146.944970][ T7172]  kvm_vcpu_ioctl+0x8a0/0x1730
[  146.944985][ T7172]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  146.945000][ T7172]  ? tomoyo_path_number_perm+0x188/0x580
[  146.945017][ T7172]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  146.945039][ T7172]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  146.945057][ T7172]  ? do_vfs_ioctl+0x226/0x13e0
[  146.945071][ T7172]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  146.945092][ T7172]  kvm_vcpu_compat_ioctl+0x20f/0x3c0
[  146.945107][ T7172]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  146.945121][ T7172]  ? __fget_files+0x21f/0x3d0
[  146.945134][ T7172]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  146.945152][ T7172]  __ia32_compat_sys_ioctl+0x2cf/0x360
[  146.945169][ T7172]  __do_fast_syscall_32+0xe3/0x8c0
[  146.945186][ T7172]  do_fast_syscall_32+0x32/0x70
[  146.945200][ T7172]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  146.945213][ T7172] RIP: 0023:0xf70cef6c
[  146.945222][ T7172] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  146.945232][ T7172] RSP: 002b:00000000f54bd50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  146.945242][ T7172] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000004008ae90
[  146.945249][ T7172] RDX: 00000000800003c0 RSI: 0000000000000000 RDI: 0000000000000000
[  146.945255][ T7172] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  146.945260][ T7172] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  146.945266][ T7172] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  146.945279][ T7172]  </TASK>
[  147.112446][ T7177] netlink: 460 bytes leftover after parsing attributes in process `syz.2.325'.
[  147.704395][ T7187] rtc_cmos 00:05: Alarms can be up to one day in the future
[  147.708910][   T34] tipc: Node number set to 10070698
[  147.718013][   T59] rtc_cmos 00:05: Alarms can be up to one day in the future
[  147.724034][   T59] rtc_cmos 00:05: Alarms can be up to one day in the future
[  147.738420][   T59] rtc_cmos 00:05: Alarms can be up to one day in the future
[  147.747067][   T59] rtc_cmos 00:05: Alarms can be up to one day in the future
[  147.765329][   T59] rtc rtc0: __rtc_set_alarm: err=-22
[  147.866899][ T7194] FAULT_INJECTION: forcing a failure.
[  147.866899][ T7194] name failslab, interval 1, probability 0, space 0, times 0
[  147.874300][ T7194] CPU: 3 UID: 0 PID: 7194 Comm: syz.3.332 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  147.874318][ T7194] Tainted: [L]=SOFTLOCKUP
[  147.874321][ T7194] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  147.874328][ T7194] Call Trace:
[  147.874332][ T7194]  <TASK>
[  147.874336][ T7194]  dump_stack_lvl+0x100/0x190
[  147.874357][ T7194]  should_fail_ex.cold+0x5/0xa
[  147.874369][ T7194]  ? tomoyo_realpath_from_path+0xb6/0x690
[  147.874382][ T7194]  should_failslab+0xc2/0x120
[  147.874394][ T7194]  __kmalloc_noprof+0xe0/0x850
[  147.874413][ T7194]  tomoyo_realpath_from_path+0xb6/0x690
[  147.874428][ T7194]  tomoyo_path_number_perm+0x23c/0x580
[  147.874444][ T7194]  ? tomoyo_path_number_perm+0x22e/0x580
[  147.874462][ T7194]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  147.874493][ T7194]  ? find_held_lock+0x2b/0x80
[  147.874503][ T7194]  ? hook_file_ioctl_common+0x146/0x410
[  147.874524][ T7194]  ? __fget_files+0x215/0x3d0
[  147.874537][ T7194]  ? __fget_files+0x21f/0x3d0
[  147.874549][ T7194]  security_file_ioctl_compat+0xd3/0x230
[  147.874567][ T7194]  __ia32_compat_sys_ioctl+0xc2/0x360
[  147.874584][ T7194]  __do_fast_syscall_32+0xe3/0x8c0
[  147.874601][ T7194]  do_fast_syscall_32+0x32/0x70
[  147.874614][ T7194]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  147.874628][ T7194] RIP: 0023:0xf701ef6c
[  147.874637][ T7194] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  147.874647][ T7194] RSP: 002b:00000000f540d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  147.874658][ T7194] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000007003
[  147.874665][ T7194] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  147.874725][ T7194] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  147.874731][ T7194] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  147.874737][ T7194] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  147.874751][ T7194]  </TASK>
[  147.875033][ T7194] ERROR: Out of memory at tomoyo_realpath_from_path.
[  147.919313][ T7197] rtc_cmos 00:05: Alarms can be up to one day in the future
[  147.958780][   T10] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  148.117507][   T10] usb 6-1: Using ep0 maxpacket: 8
[  148.120521][   T10] usb 6-1: config 179 has an invalid interface number: 65 but max is 0
[  148.123235][   T10] usb 6-1: config 179 has an invalid descriptor of length 52, skipping remainder of the config
[  148.126546][   T10] usb 6-1: config 179 has no interface number 0
[  148.129416][   T10] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[  148.132990][   T10] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  148.136653][   T10] usb 6-1: config 179 interface 65 altsetting 12 has 1 endpoint descriptor, different from the interface descriptor's value: 23
[  148.141035][   T10] usb 6-1: config 179 interface 65 has no altsetting 0
[  148.143362][   T10] usb 6-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  148.146268][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.307436][ T5938] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  148.357834][   T10] usb 6-1: USB disconnect, device number 7
[  148.467867][ T5938] usb 7-1: Using ep0 maxpacket: 8
[  148.471816][ T5938] usb 7-1: config 179 has an invalid interface number: 65 but max is 0
[  148.475340][ T5938] usb 7-1: config 179 has no interface number 0
[  148.477972][ T5938] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[  148.481472][ T5938] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  148.497978][ T5938] usb 7-1: config 179 interface 65 altsetting 12 has 1 endpoint descriptor, different from the interface descriptor's value: 23
[  148.502347][ T5938] usb 7-1: config 179 interface 65 has no altsetting 0
[  148.504572][ T5938] usb 7-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  148.530837][ T5938] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.552999][ T7211] netlink: 'syz.0.337': attribute type 4 has an invalid length.
[  148.743275][ T5938] usb 7-1: USB disconnect, device number 4
[  148.897103][ T6116] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  149.067018][ T6116] usb 5-1: Using ep0 maxpacket: 16
[  149.073762][ T6116] usb 5-1: config 0 has no interfaces?
[  149.080508][ T6116] usb 5-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  149.084463][ T6116] usb 5-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  149.088971][ T6116] usb 5-1: Manufacturer: syz
[  149.108554][ T6116] usb 5-1: config 0 descriptor??
[  149.133296][ T7223] netlink: 'syz.1.340': attribute type 4 has an invalid length.
[  149.241206][ T7226] FAULT_INJECTION: forcing a failure.
[  149.241206][ T7226] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  149.246798][ T7226] CPU: 1 UID: 0 PID: 7226 Comm: syz.1.341 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  149.246826][ T7226] Tainted: [L]=SOFTLOCKUP
[  149.246832][ T7226] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  149.246841][ T7226] Call Trace:
[  149.246848][ T7226]  <TASK>
[  149.246855][ T7226]  dump_stack_lvl+0x100/0x190
[  149.246884][ T7226]  should_fail_ex.cold+0x5/0xa
[  149.246904][ T7226]  _copy_from_user+0x2e/0xd0
[  149.246923][ T7226]  get_compat_msghdr+0xb3/0x4b0
[  149.246943][ T7226]  ? _parse_integer_limit+0x17f/0x1d0
[  149.246965][ T7226]  ? __pfx_get_compat_msghdr+0x10/0x10
[  149.246987][ T7226]  ? _kstrtoull+0x13c/0x1f0
[  149.247006][ T7226]  ? __pfx__kstrtoull+0x10/0x10
[  149.247029][ T7226]  ___sys_sendmsg+0x1b6/0x1e0
[  149.247058][ T7226]  ? __pfx____sys_sendmsg+0x10/0x10
[  149.247083][ T7226]  ? __lock_acquire+0x4a5/0x2630
[  149.247115][ T7226]  ? find_held_lock+0x2b/0x80
[  149.247147][ T7226]  __sys_sendmmsg+0x2ff/0x430
[  149.247169][ T7226]  ? __pfx___sys_sendmmsg+0x10/0x10
[  149.247187][ T7226]  ? rcu_is_watching+0x12/0xc0
[  149.247230][ T7226]  ? __pfx___schedule+0x10/0x10
[  149.247250][ T7226]  ? fput+0x79/0x100
[  149.247270][ T7226]  ? exit_to_user_mode_loop+0xdd/0x4a0
[  149.247296][ T7226]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  149.247317][ T7226]  ? lockdep_hardirqs_on+0x78/0x100
[  149.247338][ T7226]  __do_fast_syscall_32+0xe3/0x8c0
[  149.247363][ T7226]  do_fast_syscall_32+0x32/0x70
[  149.247385][ T7226]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  149.247409][ T7226] RIP: 0023:0xf7f73f6c
[  149.247423][ T7226] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  149.247440][ T7226] RSP: 002b:00000000f541550c EFLAGS: 00000292 ORIG_RAX: 0000000000000159
[  149.247457][ T7226] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 0000000080003cc0
[  149.247467][ T7226] RDX: 0000000000000172 RSI: 0000000004000000 RDI: 0000000000000000
[  149.247477][ T7226] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  149.247487][ T7226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  149.247497][ T7226] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  149.247520][ T7226]  </TASK>
[  149.267908][ T5975] vhci_hcd vhci_hcd.2: vhci_device speed not set
[  149.916694][ T7232] netlink: 460 bytes leftover after parsing attributes in process `syz.3.342'.
[  150.148180][ T7239] FAULT_INJECTION: forcing a failure.
[  150.148180][ T7239] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  150.153309][ T7239] CPU: 2 UID: 0 PID: 7239 Comm: syz.1.345 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  150.153335][ T7239] Tainted: [L]=SOFTLOCKUP
[  150.153341][ T7239] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  150.153351][ T7239] Call Trace:
[  150.153358][ T7239]  <TASK>
[  150.153364][ T7239]  dump_stack_lvl+0x100/0x190
[  150.153395][ T7239]  should_fail_ex.cold+0x5/0xa
[  150.153416][ T7239]  _copy_from_user+0x2e/0xd0
[  150.153435][ T7239]  get_compat_msghdr+0xb3/0x4b0
[  150.153456][ T7239]  ? __pfx_get_compat_msghdr+0x10/0x10
[  150.153485][ T7239]  ___sys_sendmsg+0x1b6/0x1e0
[  150.153512][ T7239]  ? __pfx____sys_sendmsg+0x10/0x10
[  150.153558][ T7239]  __sys_sendmsg+0x170/0x220
[  150.153575][ T7239]  ? __pfx___sys_sendmsg+0x10/0x10
[  150.153598][ T7239]  ? __pfx_ksys_write+0x10/0x10
[  150.153616][ T7239]  __do_fast_syscall_32+0xe3/0x8c0
[  150.153642][ T7239]  do_fast_syscall_32+0x32/0x70
[  150.153660][ T7239]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  150.153678][ T7239] RIP: 0023:0xf7f73f6c
[  150.153690][ T7239] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  150.153704][ T7239] RSP: 002b:00000000f543650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  150.153718][ T7239] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000080
[  150.153727][ T7239] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  150.153735][ T7239] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  150.153743][ T7239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  150.153751][ T7239] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  150.153769][ T7239]  </TASK>
[  150.441279][ T7247] netlink: 8 bytes leftover after parsing attributes in process `syz.2.347'.
[  150.465620][ T7247] netlink: 20 bytes leftover after parsing attributes in process `syz.2.347'.
[  151.431284][  T841] usb 5-1: USB disconnect, device number 11
[  151.717853][ T7262] mkiss: ax0: crc mode is auto.
[  152.489252][ T7275] netlink: 4 bytes leftover after parsing attributes in process `syz.3.355'.
[  152.861126][   T40] kauditd_printk_skb: 554 callbacks suppressed
[  152.861144][   T40] audit: type=1326 audit(1772941460.139:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7259 comm="syz.2.351" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000
[  152.861189][   T40] audit: type=1326 audit(1772941460.139:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7259 comm="syz.2.351" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000
[  152.861822][   T40] audit: type=1326 audit(1772941460.139:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7259 comm="syz.2.351" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7fb6f6c code=0x7ffc0000
[  152.863125][   T40] audit: type=1326 audit(1772941460.139:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7259 comm="syz.2.351" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000
[  152.863173][   T40] audit: type=1326 audit(1772941460.139:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7259 comm="syz.2.351" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000
[  152.863209][   T40] audit: type=1326 audit(1772941460.139:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7259 comm="syz.2.351" exe="/syz-executor" sig=0 arch=40000003 syscall=310 compat=1 ip=0xf7fb6f6c code=0x7ffc0000
[  152.863247][   T40] audit: type=1326 audit(1772941460.139:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7259 comm="syz.2.351" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000
[  152.863284][   T40] audit: type=1326 audit(1772941460.139:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7259 comm="syz.2.351" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000
[  152.863321][   T40] audit: type=1326 audit(1772941460.139:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7259 comm="syz.2.351" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fb6f6c code=0x7ffc0000
[  152.863357][   T40] audit: type=1326 audit(1772941460.139:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7259 comm="syz.2.351" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000
[  152.863903][ T7260] comedi comedi1: pcl812: I/O port conflict (0x10,16)
[  153.124088][ T7292] netlink: 28 bytes leftover after parsing attributes in process `syz.1.360'.
[  153.127964][ T7292] netlink: 52 bytes leftover after parsing attributes in process `syz.1.360'.
[  153.173450][ T7294] FAULT_INJECTION: forcing a failure.
[  153.173450][ T7294] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  153.179073][ T7294] CPU: 3 UID: 0 PID: 7294 Comm: syz.1.361 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  153.179091][ T7294] Tainted: [L]=SOFTLOCKUP
[  153.179094][ T7294] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  153.179101][ T7294] Call Trace:
[  153.179104][ T7294]  <TASK>
[  153.179109][ T7294]  dump_stack_lvl+0x100/0x190
[  153.179129][ T7294]  should_fail_ex.cold+0x5/0xa
[  153.179142][ T7294]  _copy_to_user+0x32/0xd0
[  153.179154][ T7294]  simple_read_from_buffer+0xcb/0x170
[  153.179171][ T7294]  proc_fail_nth_read+0x1af/0x230
[  153.179184][ T7294]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  153.179198][ T7294]  ? rw_verify_area+0xce/0x6d0
[  153.179213][ T7294]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  153.179226][ T7294]  vfs_read+0x1e4/0xb30
[  153.179244][ T7294]  ? __pfx_vfs_read+0x10/0x10
[  153.179258][ T7294]  ? find_held_lock+0x2b/0x80
[  153.179269][ T7294]  ? __fget_files+0x215/0x3d0
[  153.179281][ T7294]  ? __fget_files+0x21f/0x3d0
[  153.179294][ T7294]  ksys_read+0x12a/0x250
[  153.179310][ T7294]  ? __pfx_ksys_read+0x10/0x10
[  153.179330][ T7294]  do_int80_emulation+0x141/0x6b0
[  153.179346][ T7294]  asm_int80_emulation+0x1a/0x20
[  153.179357][ T7294] RIP: 0023:0xf7175cab
[  153.179366][ T7294] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  153.179376][ T7294] RSP: 002b:00000000f54364bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  153.179388][ T7294] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f54365d0
[  153.179394][ T7294] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  153.179400][ T7294] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  153.179406][ T7294] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  153.179412][ T7294] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  153.179425][ T7294]  </TASK>
[  153.438071][ T7298] netlink: 28 bytes leftover after parsing attributes in process `syz.1.362'.
[  153.641703][ T7311] syz_tun: entered allmulticast mode
[  153.645743][ T7310] syz_tun: left allmulticast mode
[  153.688120][ T7313] netlink: 28 bytes leftover after parsing attributes in process `syz.0.369'.
[  153.692366][ T7313] netlink: 52 bytes leftover after parsing attributes in process `syz.0.369'.
[  153.844589][   T10] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  153.884576][ T1332] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  153.974567][ T5938] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  154.005785][   T10] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  154.008589][   T10] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  154.012234][   T10] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  154.015324][   T10] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  154.018801][   T10] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  154.024049][   T10] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  154.026861][   T10] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  154.029480][   T10] usb 8-1: Product: syz
[  154.030912][   T10] usb 8-1: Manufacturer: syz
[  154.035650][   T10] cdc_wdm 8-1:1.0: skipping garbage
[  154.037500][   T10] cdc_wdm 8-1:1.0: skipping garbage
[  154.040314][   T10] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  154.042266][   T10] cdc_wdm 8-1:1.0: Unknown control protocol
[  154.044508][ T1332] usb 6-1: Using ep0 maxpacket: 8
[  154.051774][ T1332] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  154.056635][ T1332] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  154.059761][ T1332] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  154.062763][ T1332] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 235
[  154.066188][ T1332] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  154.070306][ T1332] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  154.073171][ T1332] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.075769][ T1022] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  154.125238][ T5938] usb 5-1: Using ep0 maxpacket: 8
[  154.129150][ T5938] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  154.132240][ T5938] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  154.135778][ T5938] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  154.138902][ T5938] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 235
[  154.142045][ T5938] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  154.146318][ T5938] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  154.149557][ T5938] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.236059][ T1022] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  154.238917][ T1022] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  154.242391][ T1022] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  154.245396][ T1022] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  154.248851][ T1022] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  154.253967][ T1022] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  154.257044][ T1022] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  154.259642][ T1022] usb 7-1: Product: syz
[  154.261089][ T1022] usb 7-1: Manufacturer: syz
[  154.266453][ T1022] cdc_wdm 7-1:1.0: skipping garbage
[  154.268222][ T1022] cdc_wdm 7-1:1.0: skipping garbage
[  154.272126][ T1022] cdc_wdm 7-1:1.0: cdc-wdm1: USB WDM device
[  154.274123][ T1022] cdc_wdm 7-1:1.0: Unknown control protocol
[  154.282884][ T1332] usb 6-1: usb_control_msg returned -32
[  154.284815][ T1332] usbtmc 6-1:16.0: can't read capabilities
[  154.340631][ T7318] netlink: 'syz.1.368': attribute type 10 has an invalid length.
[  154.350437][ T7318] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  154.360725][ T5938] usb 5-1: usb_control_msg returned -32
[  154.362572][ T5938] usbtmc 5-1:16.0: can't read capabilities
[  154.376457][ T7318] 8021q: adding VLAN 0 to HW filter on device bond1
[  154.389647][ T7318] bond_slave_0: entered promiscuous mode
[  154.391618][ T7318] bond_slave_1: entered promiscuous mode
[  154.393539][ T7318] syz_tun: entered promiscuous mode
[  154.396608][ T7318] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  154.399199][ T7318] bond1: (slave macvlan2): speed changed to 0 on port 1
[  154.402328][ T7318] bond1: (slave macvlan2): Enslaving as a backup interface with an up link
[  154.420710][ T7320] netlink: 'syz.0.370': attribute type 10 has an invalid length.
[  154.429248][ T7320] bond1: option mode: unable to set because the bond device has slaves
[  154.438337][ T7320] bond1: (slave macvlan3): Error -98 calling set_mac_address
[  154.994090][ T5938] usb 8-1: USB disconnect, device number 9
[  155.017203][ T7322] FAULT_INJECTION: forcing a failure.
[  155.017203][ T7322] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  155.022526][ T7322] CPU: 3 UID: 0 PID: 7322 Comm: syz.2.371 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  155.022545][ T7322] Tainted: [L]=SOFTLOCKUP
[  155.022549][ T7322] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  155.022555][ T7322] Call Trace:
[  155.022559][ T7322]  <TASK>
[  155.022564][ T7322]  dump_stack_lvl+0x100/0x190
[  155.022583][ T7322]  should_fail_ex.cold+0x5/0xa
[  155.022597][ T7322]  _copy_to_user+0x32/0xd0
[  155.022610][ T7322]  simple_read_from_buffer+0xcb/0x170
[  155.022652][ T7322]  proc_fail_nth_read+0x1af/0x230
[  155.022675][ T7322]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  155.022696][ T7322]  ? rw_verify_area+0xce/0x6d0
[  155.022712][ T7322]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  155.022724][ T7322]  vfs_read+0x1e4/0xb30
[  155.022743][ T7322]  ? __pfx_vfs_read+0x10/0x10
[  155.022758][ T7322]  ? find_held_lock+0x2b/0x80
[  155.022768][ T7322]  ? __fget_files+0x215/0x3d0
[  155.022780][ T7322]  ? __fget_files+0x21f/0x3d0
[  155.022794][ T7322]  ksys_read+0x12a/0x250
[  155.022809][ T7322]  ? __pfx_ksys_read+0x10/0x10
[  155.022829][ T7322]  do_int80_emulation+0x141/0x6b0
[  155.022846][ T7322]  asm_int80_emulation+0x1a/0x20
[  155.022856][ T7322] RIP: 0023:0xf71b5cab
[  155.022865][ T7322] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  155.022875][ T7322] RSP: 002b:00000000f54554bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  155.022886][ T7322] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f54555d0
[  155.022892][ T7322] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  155.022898][ T7322] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  155.022904][ T7322] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  155.022910][ T7322] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  155.022923][ T7322]  </TASK>
[  155.109164][ T5975] usb 7-1: USB disconnect, device number 5
[  155.843643][ T6107] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  156.014879][ T6107] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  156.017966][ T6107] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  156.021498][ T6107] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  156.025416][ T6107] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  156.029529][ T6107] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  156.034913][ T6107] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  156.038101][ T6107] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  156.040780][ T6107] usb 8-1: Product: syz
[  156.042244][ T6107] usb 8-1: Manufacturer: syz
[  156.047391][ T6107] cdc_wdm 8-1:1.0: skipping garbage
[  156.049734][ T6107] cdc_wdm 8-1:1.0: skipping garbage
[  156.052508][ T6107] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  156.054865][ T6107] cdc_wdm 8-1:1.0: Unknown control protocol
[  156.748707][ T6107] usb 5-1: USB disconnect, device number 12
[  156.790671][ T1332] usb 6-1: USB disconnect, device number 8
[  157.892052][ T7346] fuse: Unknown parameter '��������0x0000000000000007'
[  158.200291][   T34] usb 8-1: USB disconnect, device number 10
[  158.392308][ T1332] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  158.422375][ T5975] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  158.567999][ T1332] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[  158.571350][ T1332] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  158.575331][ T5975] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[  158.577044][ T1332] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  158.578218][ T5975] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  158.582052][ T1332] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  158.586426][ T5975] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  158.588424][ T1332] usb 6-1: Manufacturer: syz
[  158.591138][ T5975] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  158.591150][ T5975] usb 7-1: Manufacturer: syz
[  158.594213][ T1332] usb 6-1: config 0 descriptor??
[  158.599757][ T5975] usb 7-1: config 0 descriptor??
[  158.652278][ T1332] rc_core: IR keymap rc-hauppauge not found
[  158.652303][ T1332] Registered IR keymap rc-empty
[  158.653449][ T1332] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[  158.662595][ T1332] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input16
[  158.672289][ T5975] rc_core: IR keymap rc-hauppauge not found
[  158.672303][ T5975] Registered IR keymap rc-empty
[  158.673149][ T5975] rc rc1: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc1
[  158.674774][ T5975] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc1/input17
[  159.144819][ T7372] FAULT_INJECTION: forcing a failure.
[  159.144819][ T7372] name failslab, interval 1, probability 0, space 0, times 0
[  159.149103][ T7372] CPU: 3 UID: 0 PID: 7372 Comm: syz.3.382 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  159.149120][ T7372] Tainted: [L]=SOFTLOCKUP
[  159.149124][ T7372] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  159.149130][ T7372] Call Trace:
[  159.149135][ T7372]  <TASK>
[  159.149139][ T7372]  dump_stack_lvl+0x100/0x190
[  159.149163][ T7372]  should_fail_ex.cold+0x5/0xa
[  159.149176][ T7372]  should_failslab+0xc2/0x120
[  159.149187][ T7372]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  159.149203][ T7372]  ? security_inode_alloc+0x3b/0x2c0
[  159.149234][ T7372]  ? lockdep_init_map_type+0x5c/0x250
[  159.149250][ T7372]  security_inode_alloc+0x3b/0x2c0
[  159.149266][ T7372]  inode_init_always_gfp+0xced/0x1040
[  159.149279][ T7372]  alloc_inode+0x8e/0x250
[  159.149293][ T7372]  new_inode+0x22/0x1c0
[  159.149308][ T7372]  __debugfs_create_file+0x105/0x4f0
[  159.149327][ T7372]  debugfs_create_file_full+0x41/0x60
[  159.149345][ T7372]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  159.149358][ T7372]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  159.149381][ T7372]  ? __kvmalloc_node_noprof+0x6af/0xa00
[  159.149397][ T7372]  ? alloc_netdev_mqs+0xd7/0x14f0
[  159.149410][ T7372]  ? lockdep_init_map_type+0x5c/0x250
[  159.149426][ T7372]  ? __pfx_tun_setup+0x10/0x10
[  159.149439][ T7372]  alloc_netdev_mqs+0x314/0x14f0
[  159.149451][ T7372]  ? bpf_lsm_capable+0x9/0x10
[  159.149466][ T7372]  __tun_chr_ioctl+0x1878/0x47c0
[  159.149480][ T7372]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  159.149498][ T7372]  ? __pfx___tun_chr_ioctl+0x10/0x10
[  159.149513][ T7372]  ? find_held_lock+0x2b/0x80
[  159.149523][ T7372]  ? hook_file_ioctl_common+0x146/0x410
[  159.149543][ T7372]  ? __fget_files+0x21f/0x3d0
[  159.149555][ T7372]  ? __pfx_tun_chr_compat_ioctl+0x10/0x10
[  159.149571][ T7372]  __ia32_compat_sys_ioctl+0x2cf/0x360
[  159.149589][ T7372]  __do_fast_syscall_32+0xe3/0x8c0
[  159.149604][ T7372]  do_fast_syscall_32+0x32/0x70
[  159.149618][ T7372]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  159.149632][ T7372] RIP: 0023:0xf701ef6c
[  159.149641][ T7372] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  159.149651][ T7372] RSP: 002b:00000000f540d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  159.149662][ T7372] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000400454ca
[  159.149668][ T7372] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  159.149674][ T7372] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  159.149680][ T7372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  159.149686][ T7372] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  159.149700][ T7372]  </TASK>
[  159.149757][ T7372] debugfs: out of free dentries, can not create file 'netdev@ffff888078cf4620'
[  159.453457][ T7376] FAULT_INJECTION: forcing a failure.
[  159.453457][ T7376] name failslab, interval 1, probability 0, space 0, times 0
[  159.459200][ T7376] CPU: 2 UID: 0 PID: 7376 Comm: syz.3.384 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  159.459223][ T7376] Tainted: [L]=SOFTLOCKUP
[  159.459227][ T7376] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  159.459235][ T7376] Call Trace:
[  159.459240][ T7376]  <TASK>
[  159.459245][ T7376]  dump_stack_lvl+0x100/0x190
[  159.459269][ T7376]  should_fail_ex.cold+0x5/0xa
[  159.459286][ T7376]  should_failslab+0xc2/0x120
[  159.459301][ T7376]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  159.459321][ T7376]  ? proc_alloc_inode+0x25/0x200
[  159.459343][ T7376]  ? __pfx_proc_alloc_inode+0x10/0x10
[  159.459362][ T7376]  proc_alloc_inode+0x25/0x200
[  159.459380][ T7376]  alloc_inode+0x68/0x250
[  159.459398][ T7376]  new_inode+0x22/0x1c0
[  159.459416][ T7376]  proc_pid_make_inode+0x22/0x160
[  159.459435][ T7376]  proc_pident_instantiate+0x85/0x310
[  159.459471][ T7376]  proc_pident_lookup+0x1e3/0x270
[  159.459496][ T7376]  lookup_open.isra.0+0x631/0x11b0
[  159.459520][ T7376]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  159.459550][ T7376]  ? mnt_get_write_access+0x1e9/0x2f0
[  159.459571][ T7376]  path_openat+0xa98/0x31a0
[  159.459588][ T7376]  ? asm_exc_alignment_check+0x11/0x30
[  159.459604][ T7376]  ? __pfx_path_openat+0x10/0x10
[  159.459625][ T7376]  do_file_open+0x20e/0x430
[  159.459640][ T7376]  ? __pfx_do_file_open+0x10/0x10
[  159.459661][ T7376]  ? __pfx_kfree_link+0x10/0x10
[  159.459685][ T7376]  ? _raw_spin_unlock+0x28/0x50
[  159.459699][ T7376]  ? alloc_fd+0x476/0x790
[  159.459717][ T7376]  do_sys_openat2+0x10d/0x1e0
[  159.459735][ T7376]  ? __pfx_do_sys_openat2+0x10/0x10
[  159.459751][ T7376]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  159.459771][ T7376]  ? __fget_files+0x21f/0x3d0
[  159.459787][ T7376]  __ia32_compat_sys_openat+0x12d/0x210
[  159.459806][ T7376]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  159.459823][ T7376]  ? ksys_write+0x1ac/0x250
[  159.459846][ T7376]  do_int80_emulation+0x141/0x6b0
[  159.459869][ T7376]  asm_int80_emulation+0x1a/0x20
[  159.459885][ T7376] RIP: 0023:0xf7155cab
[  159.459898][ T7376] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  159.459914][ T7376] RSP: 002b:00000000f540d3cc EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  159.459929][ T7376] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f540d490
[  159.459939][ T7376] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  159.459949][ T7376] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  159.459958][ T7376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  159.459967][ T7376] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  159.459989][ T7376]  </TASK>
[  159.837602][ T7381] netlink: 28 bytes leftover after parsing attributes in process `syz.3.386'.
[  159.932921][ T7383] netlink: 'syz.3.387': attribute type 1 has an invalid length.
[  159.935436][ T7383] nbd: illegal input index 5767176
[  160.048199][ T7387] netlink: 4 bytes leftover after parsing attributes in process `syz.0.388'.
[  160.388151][ T7395] Driver unsupported XDP return value 0 on prog  (id 40) dev N/A, expect packet loss!
usb_generic_handle_packet: ctrl buffer too small (16384 > 4096)
[  161.283359][ T5938] usb 6-1: USB disconnect, device number 9
[  161.343403][ T6116] usb 7-1: USB disconnect, device number 6
[  161.662947][ T7428] program syz.2.401 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  161.720917][ T1332] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  162.929029][ T1332] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  162.931953][ T1332] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  162.936053][ T1332] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  162.939034][ T1332] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  162.942033][ T1332] usb 5-1: Manufacturer: syz
[  162.948753][ T1332] usb 5-1: config 0 descriptor??
[  162.990033][ T1332] rc_core: IR keymap rc-hauppauge not found
[  162.991946][ T1332] Registered IR keymap rc-empty
[  162.995518][ T1332] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  163.004554][ T1332] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input18
[  163.949655][ T6007] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  164.100721][ T6007] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[  164.103512][ T6007] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  164.107392][ T6007] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  164.110411][ T6007] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  164.113024][ T6007] usb 6-1: Manufacturer: syz
[  164.115917][ T6007] usb 6-1: config 0 descriptor??
[  164.159441][ T6007] rc_core: IR keymap rc-hauppauge not found
[  164.161473][ T6007] Registered IR keymap rc-empty
[  164.163849][ T6007] rc rc1: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc1
[  164.168077][ T6007] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc1/input19
[  165.139706][ T7468] netlink: 28 bytes leftover after parsing attributes in process `syz.2.413'.
[  165.574059][ T6116] usb 5-1: USB disconnect, device number 13
[  165.594173][ T7472] netlink: 'syz.2.415': attribute type 4 has an invalid length.
[  165.596689][ T7472] netlink: 'syz.2.415': attribute type 8 has an invalid length.
[  165.604038][ T7472] netlink: 212 bytes leftover after parsing attributes in process `syz.2.415'.
[  165.659539][ T7472] netlink: 4 bytes leftover after parsing attributes in process `syz.2.415'.
[  165.663040][ T7472] netlink: 'syz.2.415': attribute type 7 has an invalid length.
[  165.676692][ T7472] netlink: 'syz.2.415': attribute type 8 has an invalid length.
[  165.680568][ T7472] netlink: 4 bytes leftover after parsing attributes in process `syz.2.415'.
[  165.846380][ T7488] FAULT_INJECTION: forcing a failure.
[  165.846380][ T7488] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  165.852166][ T7488] CPU: 3 UID: 0 PID: 7488 Comm: syz.3.420 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  165.852207][ T7488] Tainted: [L]=SOFTLOCKUP
[  165.852213][ T7488] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  165.852222][ T7488] Call Trace:
[  165.852228][ T7488]  <TASK>
[  165.852235][ T7488]  dump_stack_lvl+0x100/0x190
[  165.852279][ T7488]  should_fail_ex.cold+0x5/0xa
[  165.852301][ T7488]  _copy_from_user+0x2e/0xd0
[  165.852318][ T7488]  get_compat_msghdr+0xb3/0x4b0
[  165.852336][ T7488]  ? _parse_integer_limit+0x17f/0x1d0
[  165.852356][ T7488]  ? __pfx_get_compat_msghdr+0x10/0x10
[  165.852375][ T7488]  ? _kstrtoull+0x13c/0x1f0
[  165.852394][ T7488]  ? __pfx__kstrtoull+0x10/0x10
[  165.852415][ T7488]  ___sys_sendmsg+0x1b6/0x1e0
[  165.852442][ T7488]  ? __pfx____sys_sendmsg+0x10/0x10
[  165.852465][ T7488]  ? __lock_acquire+0x4a5/0x2630
[  165.852495][ T7488]  ? find_held_lock+0x2b/0x80
[  165.852525][ T7488]  __sys_sendmmsg+0x2ff/0x430
[  165.852554][ T7488]  ? __pfx___sys_sendmmsg+0x10/0x10
[  165.852572][ T7488]  ? rcu_is_watching+0x12/0xc0
[  165.852612][ T7488]  ? __pfx___schedule+0x10/0x10
[  165.852630][ T7488]  ? fput+0x79/0x100
[  165.852649][ T7488]  ? exit_to_user_mode_loop+0xdd/0x4a0
[  165.852672][ T7488]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  165.852691][ T7488]  ? lockdep_hardirqs_on+0x78/0x100
[  165.852710][ T7488]  __do_fast_syscall_32+0xe3/0x8c0
[  165.852732][ T7488]  do_fast_syscall_32+0x32/0x70
[  165.852759][ T7488]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  165.852778][ T7488] RIP: 0023:0xf701ef6c
[  165.852791][ T7488] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  165.852806][ T7488] RSP: 002b:00000000f53ec50c EFLAGS: 00000292 ORIG_RAX: 0000000000000159
[  165.852822][ T7488] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000080003cc0
[  165.852832][ T7488] RDX: 0000000000000172 RSI: 0000000004000000 RDI: 0000000000000000
[  165.852842][ T7488] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  165.852850][ T7488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  165.852860][ T7488] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  165.852882][ T7488]  </TASK>
[  166.758901][ T6116] usb 6-1: USB disconnect, device number 10
[  167.149323][ T7511] netlink: 472 bytes leftover after parsing attributes in process `syz.3.427'.
[  168.412804][ T7536] mkiss: ax0: crc mode is auto.
[  168.767164][ T1332] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  168.917052][ T1332] usb 6-1: Using ep0 maxpacket: 8
[  168.921040][ T1332] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  168.924298][ T1332] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  168.928761][ T1332] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  168.932025][ T1332] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 235
[  168.935169][ T1332] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  168.942812][ T1332] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  168.946664][ T1332] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.224690][ T7545] [U] 
[  169.224766][ T7545] [U] K{�
[  169.225037][ T7545] [U] �T �1��Š�F���Fˊ�`G�Jǘ�G���������O��/�MC�
[  169.226422][ T7545] [U] T�ؖ/,�~�Ĝ��J���}8���'O1��"�7-΂JQ�K��W��Q�5C%"�H12��Y������X�`���ȼ`+��(�¿!(���Z'�TXLN�I�G�J����ݭ�P�~�7�!���"ب���(�5�OBܤ�̓J�
[  169.226959][ T7545] [U] �K\&�}6�6�X�HX��Ե���.`�A�$�40|϶��9��ި����U��4��ĮVBZ��}�W�M�T���Q��ΦR�4��
[  169.229338][ T7545] [U] ".H6��"�KÇ[����J�4��I�N��[Z(��C|T�]Z{��3�C=��X�Ԟ˅�4�W�)\T�XJ��SH{Q;̹���T��+���G��߮D�.˂�>Y����WUH�FN����HL]S�2���\G%�O�&Z)�К'�PUL�_<�	�ذ�Ү��`ұT��ޜ���;_�"(�U{7J��2X �/�'��C���I����H�C�ճ�V�=��AI�%W�ES� R��J�Μ���G��R��͡HI
���A��6-�D��V�� I"��Nƨ ��ASC~4���8C�*�OO5/ߜJ�~���W�VK+����3��Y)��M���V��YQƽ�DTR�
OTPEM%F��EJ�A5��T_-X~�^AAۂҘ�Q��
[  169.233757][ T7545] [U] 	+�W�G?]��'A:	��)�
����' B>T���F/��<'�U�'��H�I�.+]E�.�-ɿ߿�%��>2`�^U�8F.�6��3��+�A�«���G3�P��6:�^0��T��V�'E�T����YC�N��Rϩ�N�PJ�;�Z����ۑ8!��\م�A�ʖ2��$е�­WI.��#��/BAI���`��4J��D�Y@�Z��GW�5˿B��ٜ�N�Y"VI2��
[  169.235393][ T7545] [U] �T�_K5�T�YJ���9��C�$BR�L�NUL��9W���|�G�"ʃ�%�ڶ�C�؝���Q��
 ��3��Q��N^HP*��$	�.�7Yӱ�2�
[  169.236505][ T7545] [U] �?���H��*����3͝7�ɍ�^#Q�"0~���(�O�XL�B�,'V��=���C�S���G�S��0�ւ��`���ه��=1(�ξ��P#�2DO*Ƀ
[  169.238534][ T7545] [U] �S��G������GU��D-{���|&�����ѐ2��L�C_��!`��OZ֥�B��%>�RѶ�WχݎSS�H"�YA4�O.�Y��ď�RTԶ�B�[+/<<R�B����|ФE���۠�V96#���ͤʦJ�U�%
S851���ҩS�P��\��?Q�|L��QX�0�K�1ORɴ2��|��D�F���ِ��2ޔ���0��H�}C[/����PX^��O
[  169.241478][ T7545] [U] �؛���(J�Л��M��XZ�;�����؝_����*3�3��5�\�XM��U��AK!AQ`��;FЕ�I+��VUH���M�J��Ʒ��Z�C��Z���)_ǟ�	ԑ�&�֡��A�XTO���_� ڼ�:���%��P���Cֲ�Y�+_�ܛ��}U�M��ƫC�!KJ�7пG��=B�
[  169.247738][ T7545] [U] ٽ�F�%�XA��L�2R*G��VW��$��J	�A��F����+ؾ9̈́VI�֗�Kپ�1}_��
��%�R6��(]��/��ؐřYܺ��Hä���R G��RN/ܫ�#!�D����%���D��-{�$�VU��T���$:MTR�E�C1V�D~��];[�����SQ����(��E,X�8�"�
��G�D�ڵ2@T8���҃����T8.RC+�@�ʦ�P�U�
P����C���'ńYL�-SS1E?�7�O���^]����C�½H]�JKR]RKQ܆��ݣ޴OTC��X���4�N�	��&����ڋ��@�:M7�~�+�W*���XM��>>��{Q���
_�՝LX8�U����{�Z��ؐ)��7?�RR;�C�R�Hײڣ����1�>)�Mă‰�T���(��Aϝ�}9�ڥ�J*Mќ�ġ�'L��Q	�DW��ظ=��|Q�	�Æ�W;5��Ž�!�DB�X`ɧ�/��E�`ƦM��X��"�\
[  169.248657][ T7545] [U] {;�ե�٘_�O2��)�O��.2�W2ʲ��Y���X_  HPϱ�S�D����:]�{�����Ƚ
[  169.250748][ T7545] [U] I,�>�Ӥ	��5�1��^1�N4�OǶ�'0�?֒I�9W.�_.�W�A���V��`)�Z���C6GIӹ�A��XL[����F�*��O�W)+��'\N�
[K@����2�Ǭ���P"^`���	ؿ
[  169.251183][ T7545] [U] 22��Ʃ�۩X?0;3U�
[  169.255572][ T7545] [U] ޜ�
ƍ�SOBX�8�W�4��(�~/���K�U��ԖOQ�E+�G�-Y�GY_
�>V�����3.H�ә]̈́�2��)�D�,	��	�D~�D���+�W;A\�F
P��Ș|$��)�
KؐI���ɿK�YT^R���Ǚ���A=�#�ܜ	�Ϳ�AE��T�1��ݯ4K�.E"R�S|П�S���:��>P��R�"Z�ڭ���#P!�KY"�}��F�N84ܳ��Hޱ�O��S��̫%DLW�MƲ�
[  169.256266][ T7545] [U] [�['XN�'�����,MR��/����1D=!D�X91B�
WǻR�LF���K̤Z��#�`̑L؛�˜��B~�M���
[  169.356915][   T34] ------------[ cut here ]------------
[  169.361599][   T34] [CRTC:35:crtc-0] vblank wait timed out
[  169.361612][   T34] WARNING: drivers/gpu/drm/drm_atomic_helper.c:1921 at drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0, CPU#3: kworker/3:0/34
[  169.361649][   T34] Modules linked in:
[  169.361685][   T34] CPU: 3 UID: 0 PID: 34 Comm: kworker/3:0 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  169.361705][   T34] Tainted: [L]=SOFTLOCKUP
[  169.361710][   T34] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  169.361718][   T34] Workqueue: events drm_fb_helper_damage_work
[  169.361731][   T34] RIP: 0010:drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
[  169.361745][   T34] Code: 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 0f b6 04 01 84 c0 74 08 3c 03 0f 8e 44 01 00 00 48 8d 3d b8 2e 44 0b 8b b3 d8 00 00 00 <67> 48 0f b9 3a e9 e1 fc ff ff e8 f3 66 67 fc e9 7c fe ff ff e8 99
[  169.361756][   T34] RSP: 0018:ffffc900005cf6f0 EFLAGS: 00010246
[  169.361766][   T34] RAX: 0000000000000000 RBX: ffff888025eed320 RCX: 1ffff11004bdda7f
[  169.361773][   T34] RDX: ffff8880259549c0 RSI: 0000000000000023 RDI: ffffffff90e4d750
[  169.361780][   T34] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000
[  169.361787][   T34] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  169.361794][   T34] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88800b90f200
[  169.361801][   T34] FS:  0000000000000000(0000) GS:ffff88809744f000(0000) knlGS:0000000000000000
[  169.361826][   T34] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  169.361835][   T34] CR2: 00000000f5454ff4 CR3: 000000006aeff000 CR4: 0000000000352ef0
[  169.361843][   T34] Call Trace:
[  169.361848][   T34]  <TASK>
[  169.361857][   T34]  ? __pfx_drm_atomic_helper_wait_for_vblanks.part.0+0x10/0x10
[  169.361871][   T34]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  169.361886][   T34]  ? lockdep_hardirqs_on+0x78/0x100
[  169.361899][   T34]  ? __pfx_autoremove_wake_function+0x10/0x10
[  169.361913][   T34]  ? drm_atomic_helper_commit_hw_done+0x36d/0x490
[  169.361930][   T34]  drm_atomic_helper_commit_tail+0xff/0x130
[  169.361943][   T34]  commit_tail+0x338/0x430
[  169.361959][   T34]  drm_atomic_helper_commit+0x303/0x380
[  169.361979][   T34]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  169.361999][   T34]  drm_atomic_commit+0x230/0x300
[  169.362019][   T34]  ? __pfx_drm_atomic_commit+0x10/0x10
[  169.362037][   T34]  ? __pfx___drm_printfn_info+0x10/0x10
[  169.362060][   T34]  ? drm_mode_object_get+0x108/0x170
[  169.362088][   T34]  drm_atomic_helper_dirtyfb+0x603/0x790
[  169.362118][   T34]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  169.362159][   T34]  ? do_raw_spin_lock+0x128/0x260
[  169.362193][   T34]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  169.362220][   T34]  drm_fbdev_shmem_helper_fb_dirty+0x1cc/0x310
[  169.362239][   T34]  drm_fb_helper_damage_work+0x348/0x640
[  169.362252][   T34]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  169.362265][   T34]  ? rcu_is_watching+0x12/0xc0
[  169.362284][   T34]  process_one_work+0x9d7/0x1920
[  169.362305][   T34]  ? __pfx_process_one_work+0x10/0x10
[  169.362325][   T34]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  169.362338][   T34]  worker_thread+0x5da/0xe40
[  169.362359][   T34]  ? kthread+0x13a/0x450
[  169.362378][   T34]  ? __pfx_worker_thread+0x10/0x10
[  169.362393][   T34]  kthread+0x370/0x450
[  169.362406][   T34]  ? __pfx_kthread+0x10/0x10
[  169.362421][   T34]  ret_from_fork+0x754/0xd80
[  169.362439][   T34]  ? __pfx_ret_from_fork+0x10/0x10
[  169.362456][   T34]  ? __switch_to+0x7b4/0x1120
[  169.362468][   T34]  ? __pfx_kthread+0x10/0x10
[  169.362483][   T34]  ret_from_fork_asm+0x1a/0x30
[  169.362502][   T34]  </TASK>
[  169.362509][   T34] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  169.362517][   T34] CPU: 3 UID: 0 PID: 34 Comm: kworker/3:0 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  169.362532][   T34] Tainted: [L]=SOFTLOCKUP
[  169.362535][   T34] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  169.362571][   T34] Workqueue: events drm_fb_helper_damage_work
[  169.362584][   T34] Call Trace:
[  169.362588][   T34]  <TASK>
[  169.362592][   T34]  dump_stack_lvl+0x100/0x190
[  169.362609][   T34]  vpanic+0x552/0x970
[  169.362619][   T34]  ? __pfx_vpanic+0x10/0x10
[  169.362634][   T34]  panic+0xd1/0xe0
[  169.362644][   T34]  ? __pfx_panic+0x10/0x10
[  169.362658][   T34]  ? check_panic_on_warn+0x1f/0x90
[  169.362675][   T34]  check_panic_on_warn.cold+0x19/0x34
[  169.362687][   T34]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0
[  169.362699][   T34]  __warn.cold+0x191/0x348
[  169.362711][   T34]  __report_bug+0x296/0x3d0
[  169.362722][   T34]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0
[  169.362736][   T34]  ? __pfx___report_bug+0x10/0x10
[  169.362747][   T34]  ? lockdep_hardirqs_on+0x78/0x100
[  169.362767][   T34]  report_bug_entry+0xe1/0x290
[  169.362778][   T34]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
[  169.362791][   T34]  handle_bug+0x1cd/0x2a0
[  169.362806][   T34]  exc_invalid_op+0x17/0x50
[  169.362821][   T34]  asm_exc_invalid_op+0x1a/0x20
[  169.362831][   T34] RIP: 0010:drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
[  169.362844][   T34] Code: 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 0f b6 04 01 84 c0 74 08 3c 03 0f 8e 44 01 00 00 48 8d 3d b8 2e 44 0b 8b b3 d8 00 00 00 <67> 48 0f b9 3a e9 e1 fc ff ff e8 f3 66 67 fc e9 7c fe ff ff e8 99
[  169.362854][   T34] RSP: 0018:ffffc900005cf6f0 EFLAGS: 00010246
[  169.362862][   T34] RAX: 0000000000000000 RBX: ffff888025eed320 RCX: 1ffff11004bdda7f
[  169.362869][   T34] RDX: ffff8880259549c0 RSI: 0000000000000023 RDI: ffffffff90e4d750
[  169.362878][   T34] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000
[  169.362885][   T34] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  169.362891][   T34] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88800b90f200
[  169.362908][   T34]  ? __pfx_drm_atomic_helper_wait_for_vblanks.part.0+0x10/0x10
[  169.362920][   T34]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  169.362932][   T34]  ? lockdep_hardirqs_on+0x78/0x100
[  169.362945][   T34]  ? __pfx_autoremove_wake_function+0x10/0x10
[  169.362958][   T34]  ? drm_atomic_helper_commit_hw_done+0x36d/0x490
[  169.362974][   T34]  drm_atomic_helper_commit_tail+0xff/0x130
[  169.362987][   T34]  commit_tail+0x338/0x430
[  169.363001][   T34]  drm_atomic_helper_commit+0x303/0x380
[  169.363014][   T34]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  169.363028][   T34]  drm_atomic_commit+0x230/0x300
[  169.363038][   T34]  ? __pfx_drm_atomic_commit+0x10/0x10
[  169.363049][   T34]  ? __pfx___drm_printfn_info+0x10/0x10
[  169.363063][   T34]  ? drm_mode_object_get+0x108/0x170
[  169.363079][   T34]  drm_atomic_helper_dirtyfb+0x603/0x790
[  169.363096][   T34]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  169.363119][   T34]  ? do_raw_spin_lock+0x128/0x260
[  169.363138][   T34]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  169.363154][   T34]  drm_fbdev_shmem_helper_fb_dirty+0x1cc/0x310
[  169.363170][   T34]  drm_fb_helper_damage_work+0x348/0x640
[  169.363183][   T34]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  169.363195][   T34]  ? rcu_is_watching+0x12/0xc0
[  169.363213][   T34]  process_one_work+0x9d7/0x1920
[  169.363233][   T34]  ? __pfx_process_one_work+0x10/0x10
[  169.363252][   T34]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  169.363265][   T34]  worker_thread+0x5da/0xe40
[  169.363285][   T34]  ? kthread+0x13a/0x450
[  169.363297][   T34]  ? __pfx_worker_thread+0x10/0x10
[  169.363312][   T34]  kthread+0x370/0x450
[  169.363325][   T34]  ? __pfx_kthread+0x10/0x10
[  169.363339][   T34]  ret_from_fork+0x754/0xd80
[  169.363355][   T34]  ? __pfx_ret_from_fork+0x10/0x10
[  169.363376][   T34]  ? __switch_to+0x7b4/0x1120
[  169.363387][   T34]  ? __pfx_kthread+0x10/0x10
[  169.363402][   T34]  ret_from_fork_asm+0x1a/0x30
[  169.363420][   T34]  </TASK>
[  169.364154][   T34] Kernel Offset: disabled