last executing test programs:

16m54.99298347s ago: executing program 2 (id=28):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
r5 = memfd_create(&(0x7f00000001c0)='\x02A\xbbL\xeb\xbd]\x9c\x9aU\x9c\xcbb\xcc\xfa0\xf5JoeN\x8c\x86\xfa\xb3\x0e&\xfe\xa8NF\x96\t\x01\xceJ\xc3\x8f+\xe8\xa7v\x80\xfaj\xfe\x11\x0e\xed6\x00\x00\x00\x00\x00\x00\f\xd7\xe7\xdb?\xf3\xd9\xa3\xd6a\x1a\xfch}7K\xca\x90KA\x02\xd6\x94\xf0S\xcc\xd0\x14\x8c\xb3!\xa8\xeajy@\xa0\xdc~\xea\xfd\xfb\x12\x88Xa\x16\xcb\xe4\x03\x1e\xac\xf2\xe9\xf1<', 0x3)
pwrite64(r5, &(0x7f0000000180)='q', 0x1, 0x100004)
socket$inet6(0xa, 0x800000000000002, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x2000321, 0xe, 0x0, &(0x7f0000000040)="007f1f000000bb44bff5cc105117", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000200)={0x0, 0x0}, 0x10)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f00000005c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x44, 0x44, 0x5, [@enum={0x8, 0x7, 0x0, 0x6, 0x4, [{0x9, 0x7}, {0x10, 0x8}, {0x0, 0xa42}, {0x3, 0x800}, {0x9, 0x8}, {0x7, 0x7fffffff}, {0x8, 0xc0}]}]}, {0x0, [0x61, 0x61, 0x5f]}}, &(0x7f0000000780)=""/172, 0x61, 0xac, 0x1, 0x200, 0x10000}, 0x28)
mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x7ffffffff000, 0x3, &(0x7f0000fee000/0x2000)=nil)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000900)=@bpf_tracing={0x1a, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x7, 0x89, &(0x7f0000000380)=""/137, 0x40f00, 0x49, '\x00', 0x0, 0x17, r6, 0x8, &(0x7f0000000180)={0x8, 0x5}, 0x8, 0x10, &(0x7f0000000300)={0x1, 0xe, 0x10000, 0x100}, 0x10, 0x29fef, 0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000680)=[{0x2, 0x4, 0xe, 0xc}], 0x10, 0xc}, 0x94)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=@gettclass={0x24, 0x2a, 0x129, 0x70bd29, 0xfffffffd, {0x0, 0x0, 0x0, 0x0, {0x0, 0xd}, {}, {0xfff2, 0xfff1}}}, 0x24}}, 0x40004)
ioctl$vim2m_VIDIOC_DQBUF(0xffffffffffffffff, 0xc0585611, &(0x7f0000001680)=@multiplanar_overlay={0xa, 0x3, 0x4, 0x80, 0xf, {0x77359400}, {0x1, 0xc, 0xd, 0x16, 0x3, 0x7, "c91c16b0"}, 0xfffffffe, 0x3, {0x0}, 0x72f})

16m49.48076124s ago: executing program 2 (id=36):
r0 = openat(0xffffffffffffff9c, 0x0, 0x40042, 0x1)
close(r0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d6c2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x8, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
syz_open_dev$loop(0x0, 0xf01c, 0x141000)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
write$UHID_INPUT(r4, &(0x7f0000000580)={0x8, {"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", 0x1000}}, 0x1006)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000000)={[0x33, 0x790, 0x80000000002, 0x180, 0x400000004, 0xffffffffffffffff, 0xf1, 0x3, 0xfffffffffffffd7e, 0x45, 0x0, 0x3b9, 0xfffffffffffffffe, 0x0, 0x0, 0x8], 0x8000000, 0x3c4210})
ioctl$KVM_RUN(r5, 0xae80, 0x0)

16m45.923444585s ago: executing program 2 (id=44):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000fd0f0000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
r6 = memfd_create(&(0x7f00000001c0)='\x02A\xbbL\xeb\xbd]\x9c\x9aU\x9c\xcbb\xcc\xfa0\xf5JoeN\x8c\x86\xfa\xb3\x0e&\xfe\xa8NF\x96\t\x01\xceJ\xc3\x8f+\xe8\xa7v\x80\xfaj\xfe\x11\x0e\xed6\x00\x00\x00\x00\x00\x00\f\xd7\xe7\xdb?\xf3\xd9\xa3\xd6a\x1a\xfch}7K\xca\x90KA\x02\xd6\x94\xf0S\xcc\xd0\x14\x8c\xb3!\xa8\xeajy@\xa0\xdc~\xea\xfd\xfb\x12\x88Xa\x16\xcb\xe4\x03\x1e\xac\xf2\xe9\xf1<', 0x3)
pwrite64(r6, &(0x7f0000000180)='q', 0x1, 0x100004)
r7 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendto$inet6(r7, 0x0, 0x0, 0x4c881, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0x2000321, 0xe, 0x0, &(0x7f0000000040)="007f1f000000bb44bff5cc105117", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000200)={0x2, &(0x7f00000001c0)=[{0x48, 0x5, 0x73, 0xffe00003}, {0x6, 0x83, 0x6, 0x10400}]}, 0x10)
r8 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x7ffffffff000, 0x3, &(0x7f0000fee000/0x2000)=nil)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000900)=@bpf_tracing={0x1a, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x7, 0x89, &(0x7f0000000380)=""/137, 0x40f00, 0x49, '\x00', 0x0, 0x17, r8, 0x8, &(0x7f0000000180)={0x8, 0x5}, 0x8, 0x10, &(0x7f0000000300)={0x1, 0xe, 0x10000, 0x100}, 0x10, 0x29fef, 0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000680)=[{0x2, 0x4, 0xe, 0xc}], 0x10, 0xc}, 0x94)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=@gettclass={0x24, 0x2a, 0x129, 0x70bd29, 0xfffffffd, {0x0, 0x0, 0x0, 0x0, {0x0, 0xd}, {}, {0xfff2, 0xfff1}}}, 0x24}}, 0x40004)
r9 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000012c0), 0x2, 0x0)
ioctl$vim2m_VIDIOC_DQBUF(r9, 0xc0585611, &(0x7f0000001680)=@multiplanar_overlay={0xa, 0x3, 0x4, 0x80, 0xf, {0x77359400}, {0x1, 0xc, 0xd, 0x16, 0x3, 0x7, "c91c16b0"}, 0xfffffffe, 0x3, {0x0}, 0x72f})

16m44.089384667s ago: executing program 2 (id=46):
r0 = socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_open_dev$vim2m(0x0, 0x0, 0x2)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
mmap(&(0x7f0000fa2000/0x3000)=nil, 0x3000, 0x3, 0x13, r4, 0x0)
mremap(&(0x7f0000fa4000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000fa2000/0x1000)=nil)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'dummy0\x00'})
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendmmsg$inet6(r5, &(0x7f0000000bc0)=[{{&(0x7f0000000180)={0xa, 0x4e22, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c, &(0x7f00000001c0)=[{&(0x7f0000000280)='x', 0x1}], 0x1}}], 0x1, 0x40c40c0)
sendmsg$SOCK_DIAG_BY_FAMILY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="480000001400050124bd70007bdbdf250a84312a09"], 0x48}, 0x1, 0x0, 0x0, 0x4004081}, 0x2005c840)

16m42.603129443s ago: executing program 2 (id=47):
r0 = syz_open_dev$loop(0x0, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.kill\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
sched_setaffinity(0x0, 0xfffffffffffffd7a, &(0x7f0000000580)=0x8000000002)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x24, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000400), 0x0, 0x0)
read$msr(r1, &(0x7f000001aa40)=""/102392, 0x18ff8)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$nl_route_sched_retired(0xffffffffffffffff, &(0x7f0000024d00)={0x0, 0x0, &(0x7f0000024cc0)={0x0}, 0x1, 0x0, 0x0, 0x810}, 0x41)
capset(&(0x7f0000000080)={0x20071026}, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
syz_open_dev$dmmidi(&(0x7f0000000300), 0x2, 0x0)
fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8, 0x3)
futex_waitv(&(0x7f0000001240)=[{0x1, 0x0, 0x86}], 0x1, 0x0, 0x0, 0x1)

16m41.707836794s ago: executing program 2 (id=53):
r0 = syz_open_dev$loop(0x0, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.kill\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
sched_setaffinity(0x0, 0xfffffffffffffd7a, &(0x7f0000000580)=0x8000000002)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x24, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000400), 0x0, 0x0)
read$msr(r1, &(0x7f000001aa40)=""/102392, 0x18ff8)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20004002, 0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$nl_route_sched_retired(0xffffffffffffffff, &(0x7f0000024d00)={0x0, 0x0, &(0x7f0000024cc0)={0x0}, 0x1, 0x0, 0x0, 0x810}, 0x41)
io_uring_setup(0x524, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7})
capset(&(0x7f0000000080)={0x20071026}, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
syz_open_dev$dmmidi(&(0x7f0000000300), 0x2, 0x0)
fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8, 0x3)
futex_waitv(&(0x7f0000001240)=[{0x1, 0x0, 0x86}], 0x1, 0x0, 0x0, 0x1)

16m25.386946258s ago: executing program 32 (id=53):
r0 = syz_open_dev$loop(0x0, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.kill\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
sched_setaffinity(0x0, 0xfffffffffffffd7a, &(0x7f0000000580)=0x8000000002)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x24, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000400), 0x0, 0x0)
read$msr(r1, &(0x7f000001aa40)=""/102392, 0x18ff8)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20004002, 0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$nl_route_sched_retired(0xffffffffffffffff, &(0x7f0000024d00)={0x0, 0x0, &(0x7f0000024cc0)={0x0}, 0x1, 0x0, 0x0, 0x810}, 0x41)
io_uring_setup(0x524, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7})
capset(&(0x7f0000000080)={0x20071026}, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
syz_open_dev$dmmidi(&(0x7f0000000300), 0x2, 0x0)
fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8, 0x3)
futex_waitv(&(0x7f0000001240)=[{0x1, 0x0, 0x86}], 0x1, 0x0, 0x0, 0x1)

11m27.759878793s ago: executing program 4 (id=499):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000004c0)={'veth1_vlan\x00'})
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000080))
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r3, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000020303010000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x40841}, 0x2000c010)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="22000000040000001000000012"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f00000002c0)=@filter={'filter\x00', 0xe, 0x0, 0x0, [0x0, 0x200000000180, 0x2000000001b0, 0x2000000001e0], 0x0, 0x0, 0x0}, 0x138)
r8 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r8, 0xc008561c, &(0x7f0000000040)={0xf0f024})
ioctl$FIOCLEX(r4, 0x5451)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x38, 0x1410, 0x8b7fbbc5948fecd9, 0x70bd29, 0x25dfd9fc, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_STAT_RES={0x8}, @RDMA_NLDEV_ATTR_STAT_MODE={0x8}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8, 0x15, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x20004085}, 0x4004080)
ioctl$SIOCGSTAMP(r2, 0x8906, 0x0)

11m25.766147365s ago: executing program 4 (id=503):
mount(&(0x7f0000000040)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='ntfs3\x00', 0x1000080, 0x0)
fsopen(&(0x7f0000000140)='configfs\x00', 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000340)="41000000010001", 0x7)
io_uring_setup(0x650b, &(0x7f0000000180)={0x0, 0x2c3f, 0x0, 0x21, 0xab})
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r1)
socket(0x28, 0x5, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
recvfrom$inet_nvme(0xffffffffffffffff, 0x0, 0x0, 0x40000002, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1600000004"], 0x50)

11m21.132521839s ago: executing program 4 (id=508):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="06000000040000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
r4 = memfd_create(&(0x7f00000001c0)='\x02A\xbbL\xeb\xbd]\x9c\x9aU\x9c\xcbb\xcc\xfa0\xf5JoeN\x8c\x86\xfa\xb3\x0e&\xfe\xa8NF\x96\t\x01\xceJ\xc3\x8f+\xe8\xa7v\x80\xfaj\xfe\x11\x0e\xed6\x00\x00\x00\x00\x00\x00\f\xd7\xe7\xdb?\xf3\xd9\xa3\xd6a\x1a\xfch}7K\xca\x90KA\x02\xd6\x94\xf0S\xcc\xd0\x14\x8c\xb3!\xa8\xeajy@\xa0\xdc~\xea\xfd\xfb\x12\x88Xa\x16\xcb\xe4\x03\x1e\xac\xf2\xe9\xf1<', 0x3)
pwrite64(r4, &(0x7f0000000180), 0x0, 0x100004)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4c881, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={0xffffffffffffffff, 0x2000321, 0x7, 0x0, &(0x7f0000000040)="007f1f000000bb", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000200)={0x2, &(0x7f00000001c0)=[{0x48, 0x5, 0x73, 0xffe00003}, {0x6, 0x83, 0x6, 0x10400}]}, 0x10)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f00000005c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x44, 0x44, 0x5, [@enum={0x8, 0x7, 0x0, 0x6, 0x4, [{0x9, 0x7}, {0x10, 0x8}, {0x0, 0xa42}, {0x3, 0x800}, {0x9, 0x8}, {0x7, 0x7fffffff}, {0x8, 0xc0}]}]}, {0x0, [0x61, 0x61, 0x5f]}}, &(0x7f0000000780)=""/172, 0x61, 0xac, 0x1, 0x200, 0x10000}, 0x28)
mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x7ffffffff000, 0x3, &(0x7f0000fee000/0x2000)=nil)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000900)=@bpf_tracing={0x1a, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x7, 0x0, 0x0, 0x40f00, 0x49, '\x00', 0x0, 0x17, r5, 0x8, &(0x7f0000000180)={0x8, 0x5}, 0x8, 0x10, &(0x7f0000000300)={0x1, 0xe, 0x10000, 0x100}, 0x10, 0x29fef, 0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000680)=[{0x2, 0x4, 0xe, 0xc}], 0x10, 0xc}, 0x94)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=@gettclass={0x24, 0x2a, 0x129, 0x70bd29, 0xfffffffd, {0x0, 0x0, 0x0, 0x0, {0x0, 0xd}, {}, {0xfff2, 0xfff1}}}, 0x24}}, 0x40004)
r6 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000012c0), 0x2, 0x0)
ioctl$vim2m_VIDIOC_DQBUF(r6, 0xc0585611, &(0x7f0000001680)=@multiplanar_overlay={0xa, 0x3, 0x4, 0x80, 0xf, {0x77359400}, {0x1, 0xc, 0xd, 0x16, 0x3, 0x7, "c91c16b0"}, 0xfffffffe, 0x3, {0x0}, 0x72f})

11m19.447846137s ago: executing program 4 (id=510):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000400)=@raw={'raw\x00', 0x3c1, 0x3, 0x2c0, 0x0, 0xc8, 0x8, 0x0, 0x5803, 0x218, 0x2e8, 0x2e8, 0x218, 0x2e8, 0x3, 0x0, {[{{@ipv6={@private0, @rand_addr=' \x01\x00', [], [], 'batadv0\x00', 'wlan0\x00'}, 0x0, 0xe0, 0x100, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@quota={{0x38}, {0x0, 0x0, 0x5}}]}, @unspec=@NOTRACK={0x20}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, [0xff, 0xff000000, 0xff], [0xff000000, 0xffffffff, 0xffffffff, 0xff000000], 'pim6reg0\x00', 'ip6gre0\x00', {0xff}, {0xff}, 0x3b, 0x8, 0x1, 0x12}, 0x0, 0xa8, 0xf0}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x320)
socket$nl_generic(0x10, 0x3, 0x10)
add_key$fscrypt_v1(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='devices.list\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
ioctl$BINDER_SET_MAX_THREADS(0xffffffffffffffff, 0x40046205, &(0x7f0000000180)=0xdc39)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

11m18.177246582s ago: executing program 4 (id=512):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000004c0)={'veth1_vlan\x00'})
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000080))
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r3, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000020303010000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x40841}, 0x2000c010)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="22000000040000001000000012"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f00000002c0)=@filter={'filter\x00', 0xe, 0x0, 0x0, [0x0, 0x200000000180, 0x2000000001b0, 0x2000000001e0], 0x0, 0x0, 0x0}, 0x138)
r8 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r8, 0xc008561c, &(0x7f0000000040)={0xf0f024})
ioctl$FIOCLEX(r4, 0x5451)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x38, 0x1410, 0x8b7fbbc5948fecd9, 0x70bd29, 0x25dfd9fc, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_STAT_RES={0x8}, @RDMA_NLDEV_ATTR_STAT_MODE={0x8}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8, 0x15, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x20004085}, 0x4004080)
ioctl$SIOCGSTAMP(r2, 0x8906, 0x0)

11m16.992392753s ago: executing program 4 (id=514):
syz_usb_connect(0x5, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000096d5c4004233e0269d7010203010902"], 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4043, 0x1ff)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)

10m59.569130726s ago: executing program 33 (id=514):
syz_usb_connect(0x5, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000096d5c4004233e0269d7010203010902"], 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4043, 0x1ff)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)

4m26.760285667s ago: executing program 5 (id=1171):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x17, 0x11, 0x839, 0x70bd2c, 0x100003, {0x0, 0x0, 0x0, 0x0, {0xb, 0xfff3}, {0x2, 0xa}, {0xf, 0xfff1}}}, 0x24}}, 0x0)
ioctl$XFS_IOC_ATTRMULTI_BY_HANDLE(0xffffffffffffffff, 0x4048587b, &(0x7f0000000d40)={{0xffffffffffffffff, &(0x7f0000000300)='skcipher\x00', 0x0, 0x0, 0x3, &(0x7f0000000540)={@_ha_fsid}, 0x0}, 0x4, &(0x7f0000000e00)=[{0x1, 0x4caa, &(0x7f0000000700)='connmark\x00', &(0x7f0000000740), 0x0, 0x10}, {0x1, 0x3, &(0x7f0000000980)='\x00', &(0x7f00000009c0)="9515dde9a164bbe50de6f6d046c5f49efba9c621e80713bc2651c3ff043bdce51ea5f97c8a0488a59b00383f454e54a5c034a99082d54b10ae81624eb2f3bd23892ae9533b61cc6d5be0fad39f7d2ca574d26418ea4d537e1ac251177144ebfe2beb51f9510b95ee8837704bb908b7d9a526d1d2cacb7455e11cd6a694e0fd7d70aa7c9972293343fb", 0x89, 0x28}, {0x2, 0x0, &(0x7f0000000b40)=',^^\xd9&&\x00', &(0x7f0000000600)="04259e439e7a36b5d608631e376f97100b26723336d45c44fd927ae6e950a716363751b014753aad831b9e71ff402ce54d6eab607518bc7e57283d6fa3b51ffd4848237e0f1a5c5b22bef6dada632406006030a200904ce58a616838952375df08aa4027df471c696b2102573a78d3b644f7466df9e327b58fff8f1dbfdfa617203deb1bccd2c8bf0a135f5fecfabd0a69d343cfa644f641d7a383bf95c55a86aa19a073284d27ef88911ca72257d35ec6e1e11662ab8e0b975e790400000000000000ee38ad809b0112c0063e6b99f344069c4520f4887896d62751f58893f45a5a66568d15789bcbbaa6cf74c1367a68cfbb6d", 0xf4, 0x32}, {0x1, 0x80000001, 0x0, &(0x7f0000000c40), 0x0, 0x18}]})
sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40081c4}, 0x44000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000840)=@newsa={0xf0, 0x10, 0x713, 0x0, 0x0, {{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, @in6=@local}, {@in=@dev={0xac, 0x14, 0x14, 0x17}, 0x4d5, 0x33}, @in=@multicast1, {0x3}, {}, {0x0, 0x22}, 0x0, 0x0, 0x2}}, 0xf0}}, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4000000)
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000001080)={0x200000, 0x200000})
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x41, 0x0)
sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, 0x0, 0x8000)
r7 = socket$kcm(0x29, 0x5, 0x0)
sendfile(r7, 0xffffffffffffffff, 0x0, 0xffffffff000)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NBD_CMD_CONNECT(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c00060003000000000000000a000a00272d5d29212b0000140007"], 0x6c}, 0x1, 0x0, 0x0, 0x8040040}, 0x0)
syz_genetlink_get_family_id$netlbl_calipso(0x0, 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[], 0x6c}}, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x3a, 0x301, 0x70bd25, 0xfffffffc, {0x9}}, 0x14}}, 0x0)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r8, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r9, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

4m23.513578052s ago: executing program 5 (id=1178):
mknodat(0xffffffffffffff9c, 0x0, 0x8000, 0x0)

4m23.106951506s ago: executing program 5 (id=1181):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x20)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
mincore(&(0x7f0000ffc000/0x2000)=nil, 0x2000, &(0x7f0000000300)=""/125)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r2 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000100), 0x8000, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r4, 0x29, 0x6, &(0x7f0000000240)={0x11, {{0x29, 0x0, 0x5000000, @local, 0x7ff}}}, 0x88)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000100)={0x3, &(0x7f0000000000)=[{}, {0x94, 0x0, 0x0, 0x3}, {0x6}]}, 0x10)
linkat(r1, &(0x7f0000000300)='./file1\x00', r2, &(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

4m22.855283122s ago: executing program 5 (id=1182):
openat$kvm(0xffffffffffffff9c, 0x0, 0x1, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x40, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="000000001900010000000000000000002001000000000000000ae10000000000ac14141500000000000000000000000000000005000000000a00200000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000ac00000000000000ff0f00000000000000000000000000000000000000000000ffffffffffffffffffffff7f0000000000000000000000000200000000000000000a00000000000000000000008040000000000000000008000000000000000001000000000000004400050000000000000000000000000000000000000004d23c00000000"], 0xfc}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc000000190001002dbd70000000000064010100000000000000000000000000fc01000000000000000000000000000000000000000000000a0000"], 0xfc}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r2, &(0x7f0000006bc0)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x8080, @dev={0xfe, 0x80, '\x00', 0x29}, 0x4}, 0x1c, &(0x7f0000000040)=[{&(0x7f0000000180)='L', 0x1}], 0x1}}], 0x1, 0x4040001)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=@newtaction={0x64, 0x30, 0x1, 0x0, 0x25dfdbfc, {}, [{0x50, 0x1, [@m_csum={0x4c, 0x3, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x4, 0x0, 0x8}, 0x4c}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0)

4m21.667632058s ago: executing program 5 (id=1183):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000080))
socket$unix(0x1, 0x1, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000020303"], 0x1c}, 0x1, 0x0, 0x0, 0x40841}, 0x2000c010)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="22000000040000001000000012"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000002c0)=@filter={'filter\x00', 0xe, 0x0, 0x0, [0x0, 0x200000000180, 0x2000000001b0, 0x2000000001e0], 0x0, 0x0, 0x0}, 0x138)
r6 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r6, 0xc008561c, &(0x7f0000000040)={0xf0f024})
ioctl$FIOCLEX(r2, 0x5451)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x38, 0x1410, 0x8b7fbbc5948fecd9, 0x70bd29, 0x25dfd9fc, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_STAT_RES={0x8}, @RDMA_NLDEV_ATTR_STAT_MODE={0x8}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8, 0x15, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x20004085}, 0x4004080)

4m20.485669611s ago: executing program 5 (id=1185):
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
r0 = socket$kcm(0x29, 0x2, 0x0)
close(r0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0xa73, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
preadv(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x3, 0x4000003)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x8, 0x0, 0x0)
unshare(0x24020400)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[<r4=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r4, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f0000000680)={r5, 0x1ff, 0x0, 0x1, 0x3, [<r6=>0x0, 0x0, 0x0, <r7=>0x0], [0x800020, 0x0, 0x0, 0x2], [0x0, 0x2, 0x1], [0x0, 0x0, 0xfffffffffefffff8, 0x9]})
ioctl$DRM_IOCTL_MODE_ADDFB2(0xffffffffffffffff, 0xc06864b8, &(0x7f00000001c0)={0x0, 0xae, 0x3fb, 0x34325241, 0x0, [r6, 0x0, 0x0, r7], [0x2b8]})
ioctl$DRM_IOCTL_MODE_RMFB(0xffffffffffffffff, 0xc00464af, &(0x7f0000000480))
getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x119, 0x1, 0x0, 0x0)
sync()

4m5.38378682s ago: executing program 34 (id=1185):
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
r0 = socket$kcm(0x29, 0x2, 0x0)
close(r0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0xa73, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
preadv(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x3, 0x4000003)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x8, 0x0, 0x0)
unshare(0x24020400)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[<r4=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r4, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f0000000680)={r5, 0x1ff, 0x0, 0x1, 0x3, [<r6=>0x0, 0x0, 0x0, <r7=>0x0], [0x800020, 0x0, 0x0, 0x2], [0x0, 0x2, 0x1], [0x0, 0x0, 0xfffffffffefffff8, 0x9]})
ioctl$DRM_IOCTL_MODE_ADDFB2(0xffffffffffffffff, 0xc06864b8, &(0x7f00000001c0)={0x0, 0xae, 0x3fb, 0x34325241, 0x0, [r6, 0x0, 0x0, r7], [0x2b8]})
ioctl$DRM_IOCTL_MODE_RMFB(0xffffffffffffffff, 0xc00464af, &(0x7f0000000480))
getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x119, 0x1, 0x0, 0x0)
sync()

3m26.307632664s ago: executing program 0 (id=1291):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x6, 0x5, &(0x7f0000000340)=ANY=[@ANYBLOB="180200000f0000000000000000000000850000004100000085000000a000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$nl_audit(0x10, 0x3, 0x9)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000), 0x8)
r1 = socket(0x11, 0x3, 0x1)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000280)=0x795f, 0x4)
sendmmsg(r1, &(0x7f0000000bc0)=[{{&(0x7f0000000400)=@qipcrtr={0x2a, 0x3, 0x7ffe}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000480)="d4", 0x1}], 0x1}}], 0x1, 0x20000080)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

3m25.14467246s ago: executing program 0 (id=1296):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
mremap(&(0x7f0000006000/0x3000)=nil, 0x3000, 0x3000, 0x7, &(0x7f0000ffd000/0x3000)=nil)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0xc400, 0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000280)=0x8)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r3, 0x84, 0x19, &(0x7f0000000580)={r2, 0x7fff}, 0x8)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000040)={r2, @in={{0x2, 0x4e21, @multicast2}}}, &(0x7f0000000100)=0x84)
r4 = accept4$phonet_pipe(r0, &(0x7f0000000140), &(0x7f0000000180)=0x10, 0x5944fb211918e594)
sendmsg(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000001c0)="50bda5190e08f327788966765d6620e8108399f827d8d27f1139af7572966dafb403ce89079ac83c25d48eeb104b78fd8d4322781de8d907ddbe556d32bca12923c15c096320e2db1082110a01603afd1fa647d11963a568ef4edd644551772862b3771794", 0x65}, {&(0x7f00000005c0)="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", 0x1000}, {&(0x7f00000002c0)="d157b91fa0a8a1de5ef769249c092d4d410e90648795855efcb66b03cfa40d70e61f46aef341d1409fc818dbc616662f11895d6c2924c659e8a47ef7572912b67f10dce3838ea5372331901dbb28ff00cf06481d77a0b4293316a0eaed0231d068b52741068d336b84bcfc03e94d5bdaefb593ac8939045676b41a8b99fc323f37af17af73550f0162b5155f9b922e36f58aca97cacd056a831de8f95974ccf73930271bc54b8022141f13d3d83495d7c7591f6dfdecc5d8bf88773e0d6561063f343d693afbc89c5049e0e77101cafd0badd693cc3d5ea7a690d3033ff0a3625f72d9472af0487287448f93368192b431", 0xf1}, {&(0x7f00000015c0)="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", 0x1000}], 0x4, &(0x7f00000025c0)=[{0x58, 0x0, 0xb2b, "7d1b65144e2f8c3dc51326100dc6e98830deb01fc4e9d89549c914904a527620187dc86fd5b8f7ff904270c2916b99d4f3f7db3d4f97adcfc0b5a0d02a9bd4656f82572313d269"}, {0x98, 0x119, 0x2, "f938787fcf913e2c1ffb0ba2293c0d9019d5e20c5ea45c892fe3e16eb2104c3b6b4268ff593c60e50c194de7b74896c7d2fe82350b8c8402ebbbffb7a7b5a257094c7f162534133d7ab71994270a4d575421aff4fb931c8a42fc5fea789606e9182a52012f4e278831762ef4078781bd9815aae24889dc8791def427509a38d1a5b8cb59c2"}, {0x1010, 0x112, 0x81, "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"}], 0x1100}, 0x814)

3m24.810961164s ago: executing program 0 (id=1297):
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
r0 = socket$kcm(0x29, 0x2, 0x0)
close(r0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0xa73, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x8, 0x0, 0x0)
unshare(0x24020400)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x4b)
r4 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r3, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r5})
ioctl$DRM_IOCTL_MODE_RMFB(r3, 0xc00464af, &(0x7f0000000480))
ioctl$sock_kcm_SIOCKCMATTACH(0xffffffffffffffff, 0x89e0, 0x0)

3m19.949889187s ago: executing program 0 (id=1314):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000001d00070f000000000000000007000000", @ANYRES32=r1, @ANYBLOB="40005200060010"], 0x24}, 0x1, 0x0, 0x0, 0x4004810}, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
add_key(&(0x7f0000000000)='big_key\x00', 0x0, &(0x7f0000000100)="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", 0x679, 0xfffffffffffffffd)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@dellink={0x34, 0x11, 0x1, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x1020, 0x40000}, [@IFLA_IFNAME={0x14, 0x3, 'veth0_virt_wifi\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x4000000)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f00000000c0)={<r3=>0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}]}, &(0x7f0000000100)=0x10)
r4 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000780)='syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r4, &(0x7f00000007c0)='blkio.bfq.io_queued\x00', 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x85, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0xff, 0x3}, 0x90)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000840)={r3, @in6={{0xa, 0x4e30, 0x3ae, @empty, 0x129}}, 0x5, 0x2, 0x614, 0x1, 0x10, 0x10000007, 0x4}, 0x9c)

3m17.111436817s ago: executing program 0 (id=1320):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000070000000200000007"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000b98cad95850000000300000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7}, 0x4)
setsockopt$packet_int(r2, 0x107, 0x16, &(0x7f0000000000)=0x8, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r3, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
connect$inet(r3, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r3, &(0x7f0000000380), 0x300, 0x78c)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB='\b\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/18], 0x50)

3m16.022956904s ago: executing program 0 (id=1325):
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
r0 = socket$kcm(0x29, 0x2, 0x0)
close(r0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0xa73, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x8, 0x0, 0x0)
unshare(0x24020400)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x4b)
r4 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r3, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r5})
ioctl$DRM_IOCTL_MODE_RMFB(r3, 0xc00464af, &(0x7f0000000480))
ioctl$sock_kcm_SIOCKCMATTACH(0xffffffffffffffff, 0x89e0, 0x0)

2m59.948623902s ago: executing program 35 (id=1325):
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
r0 = socket$kcm(0x29, 0x2, 0x0)
close(r0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0xa73, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x8, 0x0, 0x0)
unshare(0x24020400)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x4b)
r4 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r3, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r5})
ioctl$DRM_IOCTL_MODE_RMFB(r3, 0xc00464af, &(0x7f0000000480))
ioctl$sock_kcm_SIOCKCMATTACH(0xffffffffffffffff, 0x89e0, 0x0)

21.315587349s ago: executing program 7 (id=1718):
r0 = syz_io_uring_setup(0x3af2, &(0x7f00000000c0)={0x0, 0xa5f5, 0x80, 0x2, 0x131}, &(0x7f0000000140), &(0x7f0000000180), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_MEM_REGION(r0, 0x22, &(0x7f0000000240)={0x0}, 0x1)
close(0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r1=>r0, {0xee00, 0xee00}}, './file0\x00'})
ioctl$sock_inet_SIOCGIFBRDADDR(r1, 0x8919, &(0x7f0000000340)={'bridge_slave_0\x00', {0x2, 0x0, @remote}})
r2 = syz_usb_connect(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="120141014813442024040075ee69010203010902240001000010000904b8070259d1ca000905060200020d0006090582020002"], 0x0)
syz_usb_control_io$uac1(r2, 0x0, 0x0)
syz_usb_control_io(r2, 0x0, &(0x7f0000000480)={0x84, &(0x7f0000000940)={0x40, 0xa, 0x4, "a0e763a8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r2, 0x0, 0x0)
syz_usb_control_io$uac2(r2, 0x0, &(0x7f0000000380)={0x44, &(0x7f00000000c0)={0x60, 0x10, 0x4, "c337e628"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$sierra_net(r2, 0x0, &(0x7f00000002c0)={0x1c, &(0x7f0000000180)={0x20, 0xd, 0x4, "33cf58cd"}, 0x0, 0x0})
syz_usb_control_io$uac2(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, 0x0, &(0x7f0000000440)={0x2c, &(0x7f0000000640)={0x20, 0xb, 0x4, "ddc6007c"}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac2(r2, 0x0, &(0x7f0000000e80)={0x44, &(0x7f0000000780)={0x40, 0xd, 0x4, "d2552db9"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
bpf$OBJ_PIN_PROG(0x6, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f00000000c0)={0x5, 0xeeee8000, 0x4, r3})

15.467840447s ago: executing program 7 (id=1733):
socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f00000004c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340), 0x10}, 0x94)
pipe(&(0x7f0000000e00)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f0000000980)=[{&(0x7f00000004c0)="18e41dbb2ed7b8c3f09c9f04a4d383dc4f19f21d34bf79ab962e9e70bd4f14bacc0726cfd4be1811d4026e544c6724b37fa1923b3c02f9f5e7a6e865c7060b0d9f7c241603fc82c9d2ae66b8ec07d11c1db3205c31597ed6089354a6c17987edece5730c65f312e5ca4e91be2553b88e202b7a65c6d2385d8849289c8e2e08a1157860f193afc69748bc4921a728c65cb6544e1b2abdb01cd63d79b90d9d2a07565ec23235c81de634b6e471fbe8dd59309c4a21f28cbb", 0xb7}, {&(0x7f0000000080)="846c95fcac70ccdc625119eece2fdf26e918577b5810fc9978", 0x19}, {&(0x7f00000002c0)="de895d62ec8e", 0x6}], 0x3, 0xc)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x2000000002ffff, 0x0)

14.107460869s ago: executing program 7 (id=1737):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000003c0)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r0, 0x9)
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x19, &(0x7f0000000000)=0x84, 0xfde1)
sendto$inet6(r1, 0x0, 0x0, 0x200cc0c5, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000001cc0)="2501d77b330b7e73d6b1d1b8a473ff7420b4b43ce0861f000000714fa228ee1f5b48", 0xfffffffffffffe57, 0x8000, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40002003, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x1, @ANYBLOB="ffffff000b0000005efe02677ee15c2000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="010000000400"/28], 0x50)
dup(r0)
openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r3, &(0x7f0000000140)=""/9, 0x9, 0x40000660, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x40002)
r4 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0)
read$msr(r4, &(0x7f0000048040)=""/102392, 0x18ff8)
getsockopt$sock_buf(r0, 0x1, 0x3d, &(0x7f0000000280)=""/89, &(0x7f00000000c0)=0x59)
socket$inet(0x2b, 0x6, 0x5)
ioctl$IOMMU_HWPT_ALLOC$NONE(r2, 0x3b89, &(0x7f0000000180)={0x28, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

12.675096428s ago: executing program 8 (id=1741):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="00000000000000000a0000000000000002000000", @ANYRES32, @ANYRES32=0x0, @ANYBLOB="00000000000000003671c6dc838f45226e"], 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48)

12.121881857s ago: executing program 1 (id=1746):
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x7)
syz_open_dev$video(&(0x7f0000003a40), 0x9, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="02c90030002c00010005050d00050002000800050100070207000c0805000007000400f3ff0100"/53], 0x35)

11.942950906s ago: executing program 1 (id=1747):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$l2tp(0x2, 0x2, 0x73)
r4 = socket(0x15, 0x5, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000540)={r5, &(0x7f0000000500)="41ffa3e8ef335673da7b7e0212ea1f9dc724e7188e3ba804a2c0d07128ba5c31dc613aa0052f02bdce2a427204121a9773b1ebdbcd1c878d", &(0x7f0000000280)=@tcp6, 0x2}, 0x20)
r6 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r6, 0x29, 0x2e, &(0x7f0000000180)={0x8, {{0xa, 0x4e21, 0xa3f, @mcast1, 0xbfd}}, {{0xa, 0x4e20, 0x5, @private0={0xfc, 0x0, '\x00', 0x1}, 0x40}}}, 0x108)
ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x1, 0x2, &(0x7f0000000180)=0x6})
getsockopt$inet6_buf(r6, 0x29, 0x30, &(0x7f0000000180)=""/214, &(0x7f0000000080)=0xd6)
getsockopt(r4, 0x200000000114, 0x2714, 0x0, &(0x7f0000000000))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, 0x0, 0x0)
getpid()
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140), 0x480, 0x0)

10.311028561s ago: executing program 1 (id=1748):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000008000000010000dc8d00", @ANYRES32, @ANYRES32], 0x48)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r0, 0x2)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000940)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5", 0x4)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x2, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000600)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "00fcff", 0x18, 0x6, 0x1, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@fastopen={0x1e, 0x2}]}}}}}}}}, 0x0)

9.98871752s ago: executing program 8 (id=1749):
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RGETLOCK(r1, &(0x7f0000000040)=ANY=[], 0xffffff6a)
pipe2(&(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
tee(r0, r2, 0xfffffffffffffc01, 0x0)
tee(r0, r2, 0x60000000000, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0})
close_range(r3, 0xffffffffffffffff, 0x0)

9.792925594s ago: executing program 1 (id=1752):
openat$kvm(0xffffffffffffff9c, 0x0, 0x1, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x40, 0x0, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3)
socket$kcm(0x10, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="000000001900010000000000000000002001000000000000000ae10000000000ac14141500000000000000000000000000000005000000000a00200000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000ac00000000000000ff0f00000000000000000000000000000000000000000000ffffffffffffffffffffff7f0000000000000000000000000200000000000000000a00000000000000000000008040000000000000000008000000000000000001000000000000004400050000000000000000000000000000000000000004d23c00000000000000ff"], 0xfc}}, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc000000190001002dbd70000000000064010100"/30], 0xfc}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r3, &(0x7f0000006bc0)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x8080, @dev={0xfe, 0x80, '\x00', 0x29}, 0x4}, 0x1c, &(0x7f0000000040)=[{&(0x7f0000000180)='L', 0x1}], 0x1}}], 0x1, 0x4040001)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=@newtaction={0x64, 0x30, 0x1, 0x0, 0x25dfdbfc, {}, [{0x50, 0x1, [@m_csum={0x4c, 0x3, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x4, 0x0, 0x8}, 0x4c}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0)

7.73080826s ago: executing program 8 (id=1755):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
syz_usb_connect$midi(0x6, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x53d0, 0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
rt_sigqueueinfo(0x0, 0xb, &(0x7f0000000080)={0x20036, 0x208, 0xfffffff3})
syz_usb_connect$uac1(0x3, 0x87, &(0x7f0000003bc0)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x40, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x75, 0x3, 0x1, 0x9, 0x90, 0x7, "", {{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x5, 0x1f}, [@output_terminal={0x9, 0x24, 0x3, 0x2, 0x302, 0x1, 0x2, 0x49}, @input_terminal={0xc, 0x24, 0x2, 0x5, 0x404, 0x3, 0x7, 0x2, 0x9, 0x2}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x400, 0x4, 0x81, 0x6, {0x7, 0x25, 0x1, 0xc, 0x2, 0x1}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0xc, 0xbb, 0x1, {0x7, 0x25, 0x1, 0x8, 0x3}}}}}}}}]}}, &(0x7f0000003ec0)={0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_ATOMIC(r1, 0xc03864bc, &(0x7f0000000580)={0x600, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xc, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="1808000000000000000000000000008018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bca90000000000003509010000000000950000000000000075090200020020007b9a00fe00000000b509000000000000c39a04fef1000000bf8700000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018290000", @ANYRES32, @ANYBLOB="0000000000000000b7050000080000004608f0ff76000000bf9800000000000056080000000000008500000007000000ce0000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x44, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe2}, 0x94)

7.581055288s ago: executing program 1 (id=1756):
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
r0 = socket$kcm(0x29, 0x2, 0x0)
close(r0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0xa73, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
preadv(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x3, 0x4000003)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x8, 0x0, 0x0)
unshare(0x24020400)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[<r4=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r4, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f0000000680)={r5, 0x1ff, 0x0, 0x1, 0x3, [<r6=>0x0, 0x0, 0x0, <r7=>0x0], [0x800020, 0x0, 0x0, 0x2], [0x0, 0x2, 0x1], [0x0, 0x0, 0xfffffffffefffff8, 0x9]})
ioctl$DRM_IOCTL_MODE_ADDFB2(0xffffffffffffffff, 0xc06864b8, &(0x7f00000001c0)={0x0, 0xae, 0x3fb, 0x34325241, 0x0, [r6, 0x0, 0x0, r7], [0x2b8]})
ioctl$DRM_IOCTL_MODE_RMFB(0xffffffffffffffff, 0xc00464af, &(0x7f0000000480))
getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x119, 0x1, 0x0, 0x0)
sync()

6.420033738s ago: executing program 3 (id=1759):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="00000000000000000a0000000000000002000000", @ANYRES32, @ANYRES32=0x0, @ANYBLOB="00000000000000003671c6dc838f45226e"], 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48)

5.725340942s ago: executing program 7 (id=1762):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(0x0, r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getpid()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000003c0)={<r4=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000100)={r4, 0x0, 0xffffffffffffffff, 0x0, 0x80000})
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)

4.299423548s ago: executing program 7 (id=1763):
r0 = gettid()
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x400)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000300)={0x10000000000000bc, 0x0, [{0x1c5, 0x0, 0x3}]})
timer_create(0x2, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r4 = signalfd4(0xffffffffffffffff, &(0x7f0000000400)={[0xfffffffffffffff5]}, 0x8, 0x80000)
ppoll(&(0x7f0000000180)=[{r4, 0x2005}], 0x1, 0x0, 0x0, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
r5 = syz_io_uring_setup(0x3eb1, &(0x7f00000034c0)={0x0, 0x764a, 0x0, 0x3, 0x70}, &(0x7f0000003540), &(0x7f0000003580), &(0x7f0000000000))
io_uring_register$IORING_UNREGISTER_RING_FDS(r5, 0x15, &(0x7f00000066c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f00000039c0)}, {0x0, 0x0, 0x0, 0x0, 0x0}], 0x2)
r6 = syz_clone(0x201a8411, 0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r6, 0x13)
getpgid(0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff, 0x8, 0x0, @val=@perf_event={0x7}}, 0x18)

4.280415954s ago: executing program 8 (id=1764):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x40, 0x0, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3)
socket$kcm(0x10, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="000000001900010000000000000000002001000000000000000ae10000000000ac14141500000000000000000000000000000005000000000a00200000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000ac00000000000000ff0f00000000000000000000000000000000000000000000ffffffffffffffffffffff7f0000000000000000000000000200000000000000000a00000000000000000000008040000000000000000008000000000000000001000000000000004400050000000000000000000000000000000000000004d23c00000000000000ff"], 0xfc}}, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc000000190001002dbd70000000000064010100000000000000000000000000fc01000000000000000000000000000000000000000000000a0000"], 0xfc}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={0x0, 0x10}}, 0x0)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r3, &(0x7f0000006bc0)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x8080, @dev={0xfe, 0x80, '\x00', 0x29}, 0x4}, 0x1c, &(0x7f0000000040)=[{&(0x7f0000000180)='L', 0x1}], 0x1}}], 0x1, 0x4040001)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=@newtaction={0x64, 0x30, 0x1, 0x0, 0x25dfdbfc, {}, [{0x50, 0x1, [@m_csum={0x4c, 0x3, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x4, 0x0, 0x8}, 0x4c}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0)

4.279776615s ago: executing program 3 (id=1765):
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RGETLOCK(r1, &(0x7f0000000040)=ANY=[], 0xffffff6a)
pipe2(&(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
tee(r0, r2, 0xfffffffffffffc01, 0x0)
tee(r0, r2, 0x60000000000, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, &(0x7f0000000100)})
close_range(r3, 0xffffffffffffffff, 0x0)

4.187445619s ago: executing program 6 (id=1766):
openat$kvm(0xffffffffffffff9c, 0x0, 0x1, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x40, 0x0, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3)
socket$kcm(0x10, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="000000001900010000000000000000002001000000000000000ae10000000000ac14141500000000000000000000000000000005000000000a00200000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000ac00000000000000ff0f00000000000000000000000000000000000000000000ffffffffffffffffffffff7f0000000000000000000000000200000000000000000a00000000000000000000008040000000000000000008000000000000000001000000000000004400050000000000000000000000000000000000000004d23c00000000000000ff"], 0xfc}}, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc000000190001002dbd70000000000064010100"/30], 0xfc}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r3, &(0x7f0000006bc0)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x8080, @dev={0xfe, 0x80, '\x00', 0x29}, 0x4}, 0x1c, &(0x7f0000000040)=[{&(0x7f0000000180)='L', 0x1}], 0x1}}], 0x1, 0x4040001)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=@newtaction={0x64, 0x30, 0x1, 0x0, 0x25dfdbfc, {}, [{0x50, 0x1, [@m_csum={0x4c, 0x3, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x4, 0x0, 0x8}, 0x4c}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0)

3.3231777s ago: executing program 6 (id=1767):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x6, 0x8, &(0x7f0000000140)=ANY=[@ANYBLOB="180200000d0000000000000000000000850000000500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)

3.224360577s ago: executing program 3 (id=1768):
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB], 0x7)
syz_open_dev$video(&(0x7f0000003a40), 0x9, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="02c90030002c00010005050d00050002000800050100070207000c0805000007000400f3ff0100"/53], 0x35)

3.171375977s ago: executing program 8 (id=1769):
r0 = socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
name_to_handle_at(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1800)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_buf(r1, 0x0, 0x8008000000010, &(0x7f0000005e40)="17000000020001000003d68c5ee17688a2003208020300ecff3f0200000300000a000000009afc5ad9485bbb6a880000d6c8db0000dba67e060180000a0000f10607bdff59100ac45761407a681f009cee4a5acb3da400001fb700674f19b44e09f9315033bf79ac2dff060115003901000000000000ea000000000000000009ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e000"/184, 0xb8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f00000007c0)={@fallback=r2, r2, 0x2f}, 0x20)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000180)={0x0, <r3=>0x0}, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000240)={@fallback=r2, r2, 0x2f, 0x2038, 0x4, @void, @void, @value=r3}, 0x20)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3a}}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="4c00000010000304000000000000000000007400", @ANYRES32=0x0, @ANYBLOB="00000000000000002c00128009000100626f6e64000000001c000280060019"], 0x4c}}, 0x0)

3.014030982s ago: executing program 3 (id=1770):
r0 = openat$panthor(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$DRM_IOCTL_GET_CAP(r0, 0xc010640c, 0x0)

2.951418713s ago: executing program 6 (id=1771):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000008000000010000dc8d00", @ANYRES32, @ANYRES32], 0x48)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r0, 0x2)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000940)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5", 0x4)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000600)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "00fcff", 0x18, 0x6, 0x1, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@fastopen={0x1e, 0x2}]}}}}}}}}, 0x0)

2.777572464s ago: executing program 3 (id=1772):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000003c0)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r0, 0x9)
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x19, &(0x7f0000000000)=0x84, 0xfde1)
sendto$inet6(r1, 0x0, 0x0, 0x200cc0c5, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000001cc0)="2501d77b330b7e73d6b1d1b8a473ff7420b4b43ce0861f000000714fa228ee1f5b48", 0xfffffffffffffe57, 0x8000, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40002003, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x1, @ANYBLOB="ffffff000b0000005efe02677ee15c2000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="010000000400"/28], 0x50)
dup(r0)
openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r3, &(0x7f0000000140)=""/9, 0x9, 0x40000660, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x40002)
r4 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0)
read$msr(r4, &(0x7f0000048040)=""/102392, 0x18ff8)
getsockopt$sock_buf(r0, 0x1, 0x3d, &(0x7f0000000280)=""/89, &(0x7f00000000c0)=0x59)
socket$inet(0x2b, 0x6, 0x5)
ioctl$IOMMU_HWPT_ALLOC$NONE(r2, 0x3b89, &(0x7f0000000180)={0x28, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

2.757722886s ago: executing program 7 (id=1773):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(0x0, r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0xff, 0x7, 0x7fc00002}]})
getpid()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f00000003c0)={<r5=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000100)={r5, 0x0, r4, 0x0, 0x80000})
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)

2.752236882s ago: executing program 6 (id=1774):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000180)={0x8, {{0xa, 0x4e21, 0xa3f, @mcast1, 0xbfd}}, {{0xa, 0x4e20, 0x5, @private0={0xfc, 0x0, '\x00', 0x1}, 0x40}}}, 0x108)
getsockopt$inet6_buf(r0, 0x29, 0x30, &(0x7f0000000180)=""/214, &(0x7f0000000080)=0xd6)

2.05184002s ago: executing program 6 (id=1775):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="00000000000000000a0000000000000002000000", @ANYRES32, @ANYRES32=0x0, @ANYBLOB="00000000000000003671c6dc838f45226e"], 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48)

2.03925009s ago: executing program 3 (id=1776):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
syz_usb_connect$midi(0x6, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x53d0, 0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
rt_sigqueueinfo(0x0, 0xb, &(0x7f0000000080)={0x20036, 0x208, 0xfffffff3})
syz_usb_connect$uac1(0x3, 0x87, &(0x7f0000003bc0)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x40, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x75, 0x3, 0x1, 0x9, 0x90, 0x7, "", {{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x5, 0x1f}, [@output_terminal={0x9, 0x24, 0x3, 0x2, 0x302, 0x1, 0x2, 0x49}, @input_terminal={0xc, 0x24, 0x2, 0x5, 0x404, 0x3, 0x7, 0x2, 0x9, 0x2}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x400, 0x4, 0x81, 0x6, {0x7, 0x25, 0x1, 0xc, 0x2, 0x1}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0xc, 0xbb, 0x1, {0x7, 0x25, 0x1, 0x8, 0x3}}}}}}}}]}}, &(0x7f0000003ec0)={0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000000580)={0x600, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xc, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="1808000000000000000000000000008018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bca90000000000003509010000000000950000000000000075090200020020007b9a00fe00000000b509000000000000c39a04fef1000000bf8700000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018290000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7050000080000004608f0ff76000000bf9800000000000056080000000000008500000007000000ce0000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x44, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe2}, 0x94)

2.010279644s ago: executing program 8 (id=1777):
openat$kvm(0xffffffffffffff9c, 0x0, 0x1, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x40, 0x0, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3)
socket$kcm(0x10, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="000000001900010000000000000000002001000000000000000ae10000000000ac14141500000000000000000000000000000005000000000a00200000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000ac00000000000000ff0f00000000000000000000000000000000000000000000ffffffffffffffffffffff7f0000000000000000000000000200000000000000000a00000000000000000000008040000000000000000008000000000000000001000000000000004400050000000000000000000000000000000000000004d23c00000000000000ff"], 0xfc}}, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc000000190001002dbd70000000000064010100"/30], 0xfc}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r3, &(0x7f0000006bc0)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x8080, @dev={0xfe, 0x80, '\x00', 0x29}, 0x4}, 0x1c, &(0x7f0000000040)=[{&(0x7f0000000180)='L', 0x1}], 0x1}}], 0x1, 0x4040001)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=@newtaction={0x64, 0x30, 0x1, 0x0, 0x25dfdbfc, {}, [{0x50, 0x1, [@m_csum={0x4c, 0x3, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x4, 0x0, 0x8}, 0x4c}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0)

75.143739ms ago: executing program 1 (id=1778):
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RGETLOCK(r1, &(0x7f0000000040)=ANY=[], 0xffffff6a)
pipe2(&(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
tee(r0, r2, 0xfffffffffffffc01, 0x0)
tee(r0, r2, 0x60000000000, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, &(0x7f0000000100)})
close_range(r3, 0xffffffffffffffff, 0x0)

0s ago: executing program 6 (id=1779):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x40, 0x0, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3)
socket$kcm(0x10, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="000000001900010000000000000000002001000000000000000ae10000000000ac14141500000000000000000000000000000005000000000a00200000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000ac00000000000000ff0f00000000000000000000000000000000000000000000ffffffffffffffffffffff7f0000000000000000000000000200000000000000000a00000000000000000000008040000000000000000008000000000000000001000000000000004400050000000000000000000000000000000000000004d23c00000000000000ff"], 0xfc}}, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc000000190001002dbd70000000000064010100000000000000000000000000fc01000000000000000000000000000000000000000000000a0000"], 0xfc}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={0x0, 0x10}}, 0x0)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r3, &(0x7f0000006bc0)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x8080, @dev={0xfe, 0x80, '\x00', 0x29}, 0x4}, 0x1c, &(0x7f0000000040)=[{&(0x7f0000000180)='L', 0x1}], 0x1}}], 0x1, 0x4040001)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=@newtaction={0x64, 0x30, 0x1, 0x0, 0x25dfdbfc, {}, [{0x50, 0x1, [@m_csum={0x4c, 0x3, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x4, 0x0, 0x8}, 0x4c}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0)

kernel console output (not intermixed with test programs):

T10191] netlink: 76 bytes leftover after parsing attributes in process `syz.1.926'.
[  749.443908][ T9834] 8021q: adding VLAN 0 to HW filter on device team0
[  749.508906][T10192] syz.1.926 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  750.133238][ T1107] bridge0: port 1(bridge_slave_0) entered blocking state
[  750.133431][ T1107] bridge0: port 1(bridge_slave_0) entered forwarding state
[  750.188865][ T6518] bridge0: port 2(bridge_slave_1) entered blocking state
[  750.199627][ T6518] bridge0: port 2(bridge_slave_1) entered forwarding state
[  751.486591][ T5813] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  752.203030][ T9959] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  752.209938][ T8751] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  752.260414][ T9959] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  752.469700][ T9959] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  752.866068][ T8751] usb 2-1: config 0 has no interfaces?
[  752.909066][ T9959] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  752.920255][ T8751] usb 2-1: New USB device found, idVendor=2304, idProduct=023e, bcdDevice=d7.69
[  752.920285][ T8751] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  752.920310][ T8751] usb 2-1: Product: syz
[  752.920320][ T8751] usb 2-1: Manufacturer: syz
[  752.920330][ T8751] usb 2-1: SerialNumber: syz
[  752.972058][ T8751] usb 2-1: config 0 descriptor??
[  753.144089][ T9834] 8021q: adding VLAN 0 to HW filter on device batadv0
[  753.618791][ T9959] 8021q: adding VLAN 0 to HW filter on device bond0
[  753.667820][ T9959] 8021q: adding VLAN 0 to HW filter on device team0
[  753.691914][ T6529] bridge0: port 1(bridge_slave_0) entered blocking state
[  753.694435][ T6529] bridge0: port 1(bridge_slave_0) entered forwarding state
[  753.748784][   T91] bridge0: port 2(bridge_slave_1) entered blocking state
[  753.749042][   T91] bridge0: port 2(bridge_slave_1) entered forwarding state
[  754.839786][ T8751] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  754.869510][ T9834] veth0_vlan: entered promiscuous mode
[  754.885737][ T9834] veth1_vlan: entered promiscuous mode
[  754.989788][ T8751] usb 1-1: Using ep0 maxpacket: 16
[  754.994808][ T8751] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  755.015851][ T8751] usb 1-1: New USB device found, idVendor=046d, idProduct=0721, bcdDevice=9c.25
[  755.015873][ T8751] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  755.015888][ T8751] usb 1-1: Product: syz
[  755.015898][ T8751] usb 1-1: Manufacturer: syz
[  755.015909][ T8751] usb 1-1: SerialNumber: syz
[  755.065789][ T8751] usb 1-1: config 0 descriptor??
[  755.090423][ T8751] uvcvideo 1-1:0.0: probe with driver uvcvideo failed with error -22
[  755.119080][ T9834] veth0_macvtap: entered promiscuous mode
[  755.162201][ T9834] veth1_macvtap: entered promiscuous mode
[  755.223249][ T9959] 8021q: adding VLAN 0 to HW filter on device batadv0
[  755.276023][ T9834] batman_adv: batadv0: Interface activated: batadv_slave_0
[  755.509432][ T9834] batman_adv: batadv0: Interface activated: batadv_slave_1
[  755.728213][T10243] netlink: 20 bytes leftover after parsing attributes in process `syz.0.932'.
[  755.815495][ T5806] usb 1-1: USB disconnect, device number 16
[  755.842469][ T1126] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  755.847906][ T1126] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  755.849398][ T1126] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  755.896680][ T1126] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  756.119213][ T5785] usb 2-1: USB disconnect, device number 16
[  756.379876][ T3595] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  756.379898][ T3595] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  756.802858][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  756.802880][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  758.298464][ T9959] veth0_vlan: entered promiscuous mode
[  758.353617][ T9959] veth1_vlan: entered promiscuous mode
[  758.429847][ T5806] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  758.579774][ T5806] usb 2-1: Using ep0 maxpacket: 8
[  758.638730][ T5806] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  758.638767][ T5806] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  758.638790][ T5806] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  758.638815][ T5806] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024
[  758.638841][ T5806] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  758.638882][ T5806] usb 2-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  758.638905][ T5806] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  758.681924][ T9959] veth0_macvtap: entered promiscuous mode
[  759.510052][ T5806] usb 2-1: config 0 descriptor??
[  759.527558][T10255] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  759.690498][ T9959] veth1_macvtap: entered promiscuous mode
[  759.772736][ T9959] batman_adv: batadv0: Interface activated: batadv_slave_0
[  759.817904][ T9959] batman_adv: batadv0: Interface activated: batadv_slave_1
[  759.854565][ T6518] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  759.855902][ T6518] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  759.856389][ T6518] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  759.857056][ T6518] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  763.120533][ T5813] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  763.133094][ T5806] usb 2-1: USB disconnect, device number 17
[  763.783358][T10293] netlink: 'syz.3.943': attribute type 39 has an invalid length.
[  764.306961][    C0] dummy_hcd dummy_hcd.1: timer fired with no URBs pending?
[  765.069801][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  765.069823][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  765.331056][T10304] netlink: 8 bytes leftover after parsing attributes in process `syz.3.948'.
[  766.457967][ T6518] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  766.457991][ T6518] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  766.959230][T10312] sp0: Synchronizing with TNC
[  767.103573][T10317] netlink: 68 bytes leftover after parsing attributes in process `syz.5.945'.
[  772.578980][T10350] netlink: 68 bytes leftover after parsing attributes in process `syz.3.956'.
[  773.677398][T10359] netlink: 8 bytes leftover after parsing attributes in process `syz.3.960'.
[  774.979993][T10364] netlink: 68 bytes leftover after parsing attributes in process `syz.3.961'.
[  775.265813][T10371] netlink: 76 bytes leftover after parsing attributes in process `syz.3.963'.
[  777.716410][T10391] netlink: 68 bytes leftover after parsing attributes in process `syz.3.968'.
[  780.395306][T10416] netlink: 68 bytes leftover after parsing attributes in process `syz.0.973'.
[  783.763153][T10433] netlink: 76 bytes leftover after parsing attributes in process `syz.3.978'.
[  786.454314][   T37] audit: type=1326 audit(1774887471.562:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10461 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5106eec819 code=0x7ffc0000
[  786.454369][   T37] audit: type=1326 audit(1774887471.562:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10461 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5106eec819 code=0x7ffc0000
[  786.524999][T10462] netlink: 68 bytes leftover after parsing attributes in process `syz.0.986'.
[  786.613676][   T37] audit: type=1326 audit(1774887471.612:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10461 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5106eec819 code=0x7ffc0000
[  786.615492][   T37] audit: type=1326 audit(1774887471.722:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10461 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5106eec819 code=0x7ffc0000
[  786.615786][   T37] audit: type=1326 audit(1774887471.722:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10461 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5106eec819 code=0x7ffc0000
[  786.686576][   T37] audit: type=1326 audit(1774887471.792:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10461 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5106eec819 code=0x7ffc0000
[  786.686726][   T37] audit: type=1326 audit(1774887471.792:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10461 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5106eec582 code=0x7ffc0000
[  786.686844][   T37] audit: type=1326 audit(1774887471.792:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10461 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f5106eec617 code=0x7ffc0000
[  786.686966][   T37] audit: type=1326 audit(1774887471.792:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10461 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f5106ea9511 code=0x7ffc0000
[  786.687099][   T37] audit: type=1326 audit(1774887471.792:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10461 comm="syz.3.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f5106eed609 code=0x7ffc0000
[  786.892509][T10463] netlink: 256 bytes leftover after parsing attributes in process `syz.3.985'.
[  787.177956][T10471] netlink: 56 bytes leftover after parsing attributes in process `syz.0.987'.
[  787.178640][T10471] netlink: 24 bytes leftover after parsing attributes in process `syz.0.987'.
[  788.688143][T10491] netlink: 'syz.1.989': attribute type 2 has an invalid length.
[  788.688166][T10491] netlink: 'syz.1.989': attribute type 8 has an invalid length.
[  788.688180][T10491] netlink: 132 bytes leftover after parsing attributes in process `syz.1.989'.
[  789.188740][T10501] netlink: 8 bytes leftover after parsing attributes in process `syz.5.993'.
[  796.369235][T10554] netlink: 'syz.1.1005': attribute type 2 has an invalid length.
[  796.369260][T10554] netlink: 'syz.1.1005': attribute type 8 has an invalid length.
[  796.369273][T10554] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1005'.
[  796.887339][T10578] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1012'.
[  801.521039][T10616] netlink: 'syz.3.1023': attribute type 2 has an invalid length.
[  801.521063][T10616] netlink: 'syz.3.1023': attribute type 8 has an invalid length.
[  801.521077][T10616] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1023'.
[  803.310651][ T5806] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  803.471518][ T5806] usb 7-1: no configurations
[  803.471541][ T5806] usb 7-1: can't read configurations, error -22
[  803.862945][ T5806] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  805.199979][T10660] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1034'.
[  810.487465][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  810.487537][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  810.999774][ T5973] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  811.150729][ T5973] usb 1-1: no configurations
[  811.150750][ T5973] usb 1-1: can't read configurations, error -22
[  811.449813][ T5973] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  811.606894][ T5973] usb 1-1: no configurations
[  811.606931][ T5973] usb 1-1: can't read configurations, error -22
[  811.607451][ T5973] usb usb1-port1: attempt power cycle
[  811.752826][T10715] fuse: Unknown parameter 'fdÀÑ‚‹w)œå0x0000000000000005'
[  811.939814][ T5973] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  811.961326][ T5973] usb 1-1: no configurations
[  811.961348][ T5973] usb 1-1: can't read configurations, error -22
[  812.173114][ T5973] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  812.271953][ T5973] usb 1-1: no configurations
[  812.271976][ T5973] usb 1-1: can't read configurations, error -22
[  812.301818][ T5973] usb usb1-port1: unable to enumerate USB device
[  814.847857][T10738] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1058'.
[  815.786368][T10750] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1062'.
[  817.833503][T10773] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  820.139795][ T5973] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  820.309815][ T5973] usb 7-1: no configurations
[  820.309829][ T5973] usb 7-1: can't read configurations, error -22
[  820.439793][ T5973] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  820.620673][ T5973] usb 7-1: no configurations
[  820.620693][ T5973] usb 7-1: can't read configurations, error -22
[  820.621497][ T5973] usb usb7-port1: attempt power cycle
[  820.809310][T10795] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1071'.
[  821.069830][ T5973] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  821.090964][ T5973] usb 7-1: no configurations
[  821.090979][ T5973] usb 7-1: can't read configurations, error -22
[  821.220170][ T5973] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  821.290317][ T5973] usb 7-1: no configurations
[  821.290404][ T5973] usb 7-1: can't read configurations, error -22
[  821.317691][ T5973] usb usb7-port1: unable to enumerate USB device
[  822.124168][T10806] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1074'.
[  825.849867][ T5785] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  826.468116][ T5813] Bluetooth: hci1: command 0x0406 tx timeout
[  826.980243][ T5785] usb 2-1: config 0 has no interfaces?
[  826.982487][ T5785] usb 2-1: New USB device found, idVendor=2304, idProduct=023e, bcdDevice=d7.69
[  826.982507][ T5785] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  826.982521][ T5785] usb 2-1: Product: syz
[  826.982531][ T5785] usb 2-1: Manufacturer: syz
[  826.982541][ T5785] usb 2-1: SerialNumber: syz
[  827.057765][ T5785] usb 2-1: config 0 descriptor??
[  828.014746][T10845] FAULT_INJECTION: forcing a failure.
[  828.014746][T10845] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  828.014784][T10845] CPU: 1 UID: 0 PID: 10845 Comm: syz.6.1085 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  828.014809][T10845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  828.014822][T10845] Call Trace:
[  828.014831][T10845]  <TASK>
[  828.014840][T10845]  dump_stack_lvl+0xe8/0x150
[  828.014880][T10845]  should_fail_ex+0x46b/0x600
[  828.014920][T10845]  _copy_from_user+0x2d/0xb0
[  828.014942][T10845]  sctp_setsockopt+0x1c4/0x12c0
[  828.014976][T10845]  ? sock_common_setsockopt+0x36/0xc0
[  828.015006][T10845]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  828.015040][T10845]  do_sock_setsockopt+0x17c/0x1b0
[  828.015068][T10845]  __x64_sys_setsockopt+0x143/0x1b0
[  828.015098][T10845]  do_syscall_64+0x14d/0xf80
[  828.015121][T10845]  ? trace_irq_disable+0x3b/0x150
[  828.015147][T10845]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  828.015169][T10845]  ? clear_bhb_loop+0x40/0x90
[  828.015196][T10845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  828.015218][T10845] RIP: 0033:0x7f2ae74ac819
[  828.015236][T10845] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  828.015255][T10845] RSP: 002b:00007f2ae56bc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  828.015277][T10845] RAX: ffffffffffffffda RBX: 00007f2ae7726180 RCX: 00007f2ae74ac819
[  828.015292][T10845] RDX: 0000000000000009 RSI: 0000000000000084 RDI: 0000000000000003
[  828.015306][T10845] RBP: 00007f2ae56bc090 R08: 000000000000009c R09: 0000000000000000
[  828.015319][T10845] R10: 0000200000000840 R11: 0000000000000246 R12: 0000000000000001
[  828.015333][T10845] R13: 00007f2ae7726218 R14: 00007f2ae7726180 R15: 00007ffe36b6d178
[  828.015366][T10845]  </TASK>
[  828.267286][T10849] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1089'.
[  828.692524][ T5877] usb 2-1: USB disconnect, device number 18
[  829.039829][    T9] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  829.190737][    T9] usb 4-1: no configurations
[  829.190759][    T9] usb 4-1: can't read configurations, error -22
[  829.629737][    T9] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  829.862444][    T9] usb 4-1: no configurations
[  829.862459][    T9] usb 4-1: can't read configurations, error -22
[  829.862725][    T9] usb usb4-port1: attempt power cycle
[  830.209821][    T9] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  830.241748][    T9] usb 4-1: no configurations
[  830.241768][    T9] usb 4-1: can't read configurations, error -22
[  830.400498][    T9] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  831.258591][    T9] usb 4-1: no configurations
[  831.258611][    T9] usb 4-1: can't read configurations, error -22
[  831.276951][    T9] usb usb4-port1: unable to enumerate USB device
[  831.509884][    T9] usb 7-1: new full-speed USB device number 8 using dummy_hcd
[  831.675098][    T9] usb 7-1: unable to get BOS descriptor or descriptor too short
[  831.675732][    T9] usb 7-1: not running at top speed; connect to a high speed hub
[  831.677323][    T9] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  831.677346][    T9] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  831.749327][    T9] usb 7-1: New USB device found, idVendor=1235, idProduct=8002, bcdDevice= 0.40
[  831.749360][    T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  831.749381][    T9] usb 7-1: Product: syz
[  831.749396][    T9] usb 7-1: Manufacturer: syz
[  831.749411][    T9] usb 7-1: SerialNumber: syz
[  832.403629][    T9] usb 7-1: USB disconnect, device number 8
[  832.543403][T10821] udevd[10821]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  832.865197][T10886] netlink: 76 bytes leftover after parsing attributes in process `syz.6.1101'.
[  832.887924][T10887] netlink: 'syz.3.1100': attribute type 10 has an invalid length.
[  833.025759][T10887] veth0_vlan: left promiscuous mode
[  833.141394][T10887] veth0_vlan: entered promiscuous mode
[  833.231019][T10887] team0: Device veth0_vlan failed to register rx_handler
[  833.329813][ T5785] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  833.484229][ T5785] usb 7-1: config 0 has no interfaces?
[  833.728734][ T5785] usb 7-1: New USB device found, idVendor=2304, idProduct=023e, bcdDevice=d7.69
[  833.728757][ T5785] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  833.728772][ T5785] usb 7-1: Product: syz
[  833.728782][ T5785] usb 7-1: Manufacturer: syz
[  833.728792][ T5785] usb 7-1: SerialNumber: syz
[  833.792219][ T5785] usb 7-1: config 0 descriptor??
[  836.939594][ T5806] usb 7-1: USB disconnect, device number 9
[  838.978940][T10927] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1112'.
[  841.009748][T10933] netlink: 'syz.5.1114': attribute type 2 has an invalid length.
[  841.009771][T10933] netlink: 'syz.5.1114': attribute type 8 has an invalid length.
[  841.009785][T10933] netlink: 132 bytes leftover after parsing attributes in process `syz.5.1114'.
[  842.552377][ T5816] Bluetooth: hci3: command 0x0406 tx timeout
[  843.125926][T10949] netlink: 'syz.0.1118': attribute type 1 has an invalid length.
[  845.323436][T10975] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1126'.
[  846.360084][ T5806] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  846.523681][ T5806] usb 1-1: Using ep0 maxpacket: 16
[  846.528997][ T5806] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  846.529047][ T5806] usb 1-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  846.529073][ T5806] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  846.582757][ T5806] usb 1-1: config 0 descriptor??
[  847.483461][T10993] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1131'.
[  848.685665][   T37] kauditd_printk_skb: 153 callbacks suppressed
[  848.685683][   T37] audit: type=1326 audit(1774887533.772:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10999 comm="syz.3.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5106eec819 code=0x7ffc0000
[  848.685732][   T37] audit: type=1326 audit(1774887533.792:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10999 comm="syz.3.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5106eec819 code=0x7ffc0000
[  848.685778][   T37] audit: type=1326 audit(1774887533.792:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10999 comm="syz.3.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5106eec819 code=0x7ffc0000
[  848.758357][   T37] audit: type=1326 audit(1774887533.862:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10999 comm="syz.3.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5106eec819 code=0x7ffc0000
[  848.775661][   T37] audit: type=1326 audit(1774887533.872:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10999 comm="syz.3.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5106eec819 code=0x7ffc0000
[  848.785807][   T37] audit: type=1326 audit(1774887533.892:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10999 comm="syz.3.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5106eec819 code=0x7ffc0000
[  848.785933][   T37] audit: type=1326 audit(1774887533.892:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10999 comm="syz.3.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5106eec819 code=0x7ffc0000
[  848.793464][   T37] audit: type=1326 audit(1774887533.892:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10999 comm="syz.3.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5106eec819 code=0x7ffc0000
[  848.824750][   T37] audit: type=1326 audit(1774887533.912:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10999 comm="syz.3.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5106eec819 code=0x7ffc0000
[  848.897703][   T37] audit: type=1326 audit(1774887534.002:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10999 comm="syz.3.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5106eec819 code=0x7ffc0000
[  848.999208][ T5806] usbhid 1-1:0.0: can't add hid device: -71
[  849.005128][ T5806] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  849.009395][ T5806] usb 1-1: USB disconnect, device number 21
[  849.530418][ T5886] usb 2-1: new full-speed USB device number 19 using dummy_hcd
[  851.875485][ T5886] usb 2-1: config 2 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[  851.876826][ T5886] usb 2-1: config 2 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  851.877630][ T5886] usb 2-1: config 2 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 7
[  851.913081][T11019] netlink: 68 bytes leftover after parsing attributes in process `syz.5.1138'.
[  851.934684][ T5886] usb 2-1: New USB device found, idVendor=0eef, idProduct=72c4, bcdDevice= 0.00
[  851.934711][ T5886] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  852.449001][T11026] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1139'.
[  852.470092][ T5886] usb 2-1: can't set config #2, error -71
[  852.475888][ T5886] usb 2-1: USB disconnect, device number 19
[  852.646243][T11033] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1142'.
[  854.131492][T11028] 9p: Bad value for 'trans'
[  854.282587][T11052] FAULT_INJECTION: forcing a failure.
[  854.282587][T11052] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  854.282614][T11052] CPU: 1 UID: 0 PID: 11052 Comm: syz.0.1147 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  854.282632][T11052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  854.282642][T11052] Call Trace:
[  854.282648][T11052]  <TASK>
[  854.282654][T11052]  dump_stack_lvl+0xe8/0x150
[  854.282683][T11052]  should_fail_ex+0x46b/0x600
[  854.282708][T11052]  _copy_from_iter+0x1d3/0x1670
[  854.282730][T11052]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  854.282752][T11052]  ? __pfx_policy_nodemask+0x10/0x10
[  854.282770][T11052]  ? __pfx__copy_from_iter+0x10/0x10
[  854.282828][T11052]  ? set_page_refcounted+0xa0/0x1e0
[  854.282853][T11052]  ? page_copy_sane+0x4e/0x270
[  854.282885][T11052]  copy_page_from_iter+0xdd/0x170
[  854.282922][T11052]  tun_get_user+0x1d4b/0x3de0
[  854.282942][T11052]  ? tun_get_user+0x6ff/0x3de0
[  854.282989][T11052]  ? __pfx_tun_get_user+0x10/0x10
[  854.283032][T11052]  ? ref_tracker_alloc+0x332/0x4a0
[  854.283066][T11052]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  854.283103][T11052]  ? tun_get+0x1c/0x2f0
[  854.283129][T11052]  ? tun_get+0x1c/0x2f0
[  854.283156][T11052]  ? tun_get+0x1c/0x2f0
[  854.283182][T11052]  tun_chr_write_iter+0x119/0x200
[  854.283220][T11052]  vfs_write+0x629/0xba0
[  854.283263][T11052]  ? __pfx_vfs_write+0x10/0x10
[  854.283308][T11052]  ? __fget_files+0x2a/0x420
[  854.283348][T11052]  ksys_write+0x156/0x270
[  854.283384][T11052]  ? __pfx_ksys_write+0x10/0x10
[  854.283431][T11052]  do_syscall_64+0x14d/0xf80
[  854.283455][T11052]  ? trace_irq_disable+0x3b/0x150
[  854.283481][T11052]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  854.283503][T11052]  ? clear_bhb_loop+0x40/0x90
[  854.283530][T11052]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  854.283552][T11052] RIP: 0033:0x7f84ea50d04e
[  854.283572][T11052] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  854.283591][T11052] RSP: 002b:00007f84e879dfb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  854.283612][T11052] RAX: ffffffffffffffda RBX: 00007f84e879e6c0 RCX: 00007f84ea50d04e
[  854.283627][T11052] RDX: 000000000000004e RSI: 0000200000000600 RDI: 00000000000000c8
[  854.283640][T11052] RBP: 00007f84e879e090 R08: 0000000000000000 R09: 0000000000000000
[  854.283653][T11052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  854.283666][T11052] R13: 00007f84ea7c6038 R14: 00007f84ea7c5fa0 R15: 00007ffee2ff9668
[  854.283700][T11052]  </TASK>
[  857.637943][T11074] netlink: 68 bytes leftover after parsing attributes in process `syz.6.1153'.
[  858.114213][T11079] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1154'.
[  858.375865][T11086] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1156'.
[  859.891113][T11091] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1157'.
[  864.236626][T11133] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1170'.
[  866.632267][T11131] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1171'.
[  867.084351][T11135] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1171'.
[  867.084395][T11135] nbd: nbd64 already in use
[  867.433012][T11164] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  867.567587][T11094] udevd[11094]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  869.236664][T11190] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1183'.
[  870.712122][   T37] kauditd_printk_skb: 223 callbacks suppressed
[  870.712143][   T37] audit: type=1326 audit(1774887555.822:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11206 comm="syz.0.1189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84ea54c819 code=0x7ffc0000
[  870.712208][   T37] audit: type=1326 audit(1774887555.822:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11206 comm="syz.0.1189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84ea54c819 code=0x7ffc0000
[  871.848679][   T37] audit: type=1326 audit(1774887556.952:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11206 comm="syz.0.1189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84ea54c819 code=0x7ffc0000
[  871.848758][   T37] audit: type=1326 audit(1774887556.952:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11206 comm="syz.0.1189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f84ea54c819 code=0x7ffc0000
[  871.848809][   T37] audit: type=1326 audit(1774887556.952:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11206 comm="syz.0.1189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84ea54c819 code=0x7ffc0000
[  871.848840][   T37] audit: type=1326 audit(1774887556.952:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11206 comm="syz.0.1189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84ea54c819 code=0x7ffc0000
[  871.848871][   T37] audit: type=1326 audit(1774887556.952:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11206 comm="syz.0.1189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84ea54c819 code=0x7ffc0000
[  871.889393][   T37] audit: type=1326 audit(1774887556.992:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11206 comm="syz.0.1189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f84ea54c819 code=0x7ffc0000
[  871.940679][   T37] audit: type=1326 audit(1774887556.952:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11206 comm="syz.0.1189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84ea54c819 code=0x7ffc0000
[  872.074519][   T37] audit: type=1326 audit(1774887557.182:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11206 comm="syz.0.1189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84ea54c819 code=0x7ffc0000
[  873.450392][T11219] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  875.310287][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  875.311650][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  875.754743][T11233] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1195'.
[  877.169792][T11024] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  877.322597][T11024] usb 4-1: config 0 has no interfaces?
[  877.327333][T11024] usb 4-1: New USB device found, idVendor=2304, idProduct=023e, bcdDevice=d7.69
[  877.327364][T11024] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  877.327386][T11024] usb 4-1: Product: syz
[  877.327401][T11024] usb 4-1: Manufacturer: syz
[  877.327416][T11024] usb 4-1: SerialNumber: syz
[  877.381951][T11024] usb 4-1: config 0 descriptor??
[  881.511326][ T8010] usb 4-1: USB disconnect, device number 10
[  885.953691][T11272] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1207'.
[  886.800390][T11279] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  887.211645][ T5816] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  887.242118][ T5816] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  887.244228][ T5816] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  887.245319][ T5816] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  887.246268][ T5816] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  889.992770][ T5816] Bluetooth: hci5: command tx timeout
[  891.999917][ T5813] Bluetooth: hci5: command tx timeout
[  892.975043][T11184] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  893.865381][T11184] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  893.930961][T11284] chnl_net:caif_netlink_parms(): no params data found
[  894.000055][ T5813] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  894.000931][ T5813] Bluetooth: hci3: Injecting HCI hardware error event
[  894.002813][ T5816] Bluetooth: hci3: hardware error 0x00
[  894.079825][ T5813] Bluetooth: hci5: command tx timeout
[  894.406306][T11184] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  896.162451][ T5813] Bluetooth: hci5: command tx timeout
[  896.986358][ T5816] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  897.076835][T11184] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  897.269756][T11339] netlink: 68 bytes leftover after parsing attributes in process `syz.6.1227'.
[  897.810814][T11350] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  898.638850][T11284] bridge0: port 1(bridge_slave_0) entered blocking state
[  898.638983][T11284] bridge0: port 1(bridge_slave_0) entered disabled state
[  898.639191][T11284] bridge_slave_0: entered allmulticast mode
[  898.644841][T11284] bridge_slave_0: entered promiscuous mode
[  898.673893][T11284] bridge0: port 2(bridge_slave_1) entered blocking state
[  898.674021][T11284] bridge0: port 2(bridge_slave_1) entered disabled state
[  898.674253][T11284] bridge_slave_1: entered allmulticast mode
[  898.687473][T11284] bridge_slave_1: entered promiscuous mode
[  899.023532][T11284] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  899.480535][T11284] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  900.002991][T11284] team0: Port device team_slave_0 added
[  900.076464][T11284] team0: Port device team_slave_1 added
[  900.119323][T11184] bridge_slave_1: left allmulticast mode
[  900.119344][T11184] bridge_slave_1: left promiscuous mode
[  900.119510][T11184] bridge0: port 2(bridge_slave_1) entered disabled state
[  900.623525][T11184] bridge_slave_0: left allmulticast mode
[  900.623547][T11184] bridge_slave_0: left promiscuous mode
[  900.623727][T11184] bridge0: port 1(bridge_slave_0) entered disabled state
[  900.837275][T11375] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1238'.
[  900.837323][T11375] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1238'.
[  900.973290][T11376] 9pnet_fd: Insufficient options for proto=fd
[  902.554129][T11184] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  902.668558][T11184] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  902.762087][T11184] bond0 (unregistering): Released all slaves
[  902.871161][T11284] batman_adv: batadv0: Adding interface: batadv_slave_0
[  902.871180][T11284] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  902.871208][T11284] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  902.873916][T11284] batman_adv: batadv0: Adding interface: batadv_slave_1
[  902.873932][T11284] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  902.873959][T11284] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  903.255420][T11385] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1241'.
[  903.897377][T11397] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  905.566543][T11407] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  906.558313][T11284] hsr_slave_0: entered promiscuous mode
[  906.559186][T11284] hsr_slave_1: entered promiscuous mode
[  906.572804][T11284] debugfs: 'hsr0' already exists in 'hsr'
[  906.572824][T11284] Cannot create hsr debugfs directory
[  908.387883][T11434] IPVS: sync thread started: state = MASTER, mcast_ifn = syz_tun, syncid = 1, id = 0
[  908.647473][T11184] hsr_slave_0: left promiscuous mode
[  908.689971][T11184] hsr_slave_1: left promiscuous mode
[  908.691076][T11184] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  908.691102][T11184] batman_adv: batadv0: Removing interface: batadv_slave_0
[  908.751677][T11184] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  908.751707][T11184] batman_adv: batadv0: Removing interface: batadv_slave_1
[  908.864439][T11444] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1255'.
[  909.554067][T11184] veth1_macvtap: left promiscuous mode
[  909.554173][T11184] veth0_macvtap: left promiscuous mode
[  909.554420][T11184] veth1_vlan: left promiscuous mode
[  909.554594][T11184] veth0_vlan: left promiscuous mode
[  911.039828][ T5806] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  911.142708][T11460] capability: warning: `syz.3.1260' uses 32-bit capabilities (legacy support in use)
[  911.204664][ T5806] usb 1-1: unable to get BOS descriptor or descriptor too short
[  911.206945][ T5806] usb 1-1: config 10 has an invalid interface number: 71 but max is 0
[  911.206972][ T5806] usb 1-1: config 10 has no interface number 0
[  911.207022][ T5806] usb 1-1: config 10 interface 71 altsetting 11 endpoint 0xF has invalid maxpacket 1112, setting to 64
[  911.207043][ T5806] usb 1-1: config 10 interface 71 has no altsetting 0
[  911.211017][ T5806] usb 1-1: New USB device found, idVendor=1b5c, idProduct=0105, bcdDevice=3f.bd
[  911.211037][ T5806] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  911.211069][ T5806] usb 1-1: Product: syz
[  911.211079][ T5806] usb 1-1: Manufacturer: syz
[  911.211090][ T5806] usb 1-1: SerialNumber: syz
[  911.513710][T11458] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  911.514237][T11458] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  911.618699][ T5806] ftdi_sio 1-1:10.71: FTDI USB Serial Device converter detected
[  911.683502][ T5806] ftdi_sio ttyUSB0: unknown device type: 0x3fbd
[  911.762065][ T5806] usb 1-1: USB disconnect, device number 22
[  911.796830][ T5806] ftdi_sio 1-1:10.71: device disconnected
[  912.170413][T11184] team0 (unregistering): Port device team_slave_1 removed
[  912.243833][T11184] team0 (unregistering): Port device team_slave_0 removed
[  912.323626][T11475] netlink: zone id is out of range
[  912.323643][T11475] netlink: zone id is out of range
[  912.323674][T11475] netlink: zone id is out of range
[  912.323739][T11475] netlink: zone id is out of range
[  912.323749][T11475] netlink: zone id is out of range
[  912.323776][T11475] netlink: zone id is out of range
[  912.367210][T11475] netlink: zone id is out of range
[  912.367290][T11475] netlink: zone id is out of range
[  912.367299][T11475] netlink: zone id is out of range
[  912.367814][T11475] netlink: zone id is out of range
[  912.817521][T11478] netlink: 68 bytes leftover after parsing attributes in process `syz.6.1264'.
[  914.236614][T11497] netlink: 'syz.6.1270': attribute type 10 has an invalid length.
[  914.474774][T11497] veth0_vlan: left promiscuous mode
[  914.477049][T11497] veth0_vlan: entered promiscuous mode
[  914.546002][T11497] team0: Device veth0_vlan failed to register rx_handler
[  915.045645][T11284] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  915.128857][T11284] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  915.228847][T11284] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  915.396841][T11284] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  918.183902][T11531] FAULT_INJECTION: forcing a failure.
[  918.183902][T11531] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  918.184115][T11531] CPU: 0 UID: 0 PID: 11531 Comm: syz.0.1275 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  918.184142][T11531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  918.184156][T11531] Call Trace:
[  918.184165][T11531]  <TASK>
[  918.184175][T11531]  dump_stack_lvl+0xe8/0x150
[  918.184214][T11531]  should_fail_ex+0x46b/0x600
[  918.184249][T11531]  _copy_from_user+0x2d/0xb0
[  918.184271][T11531]  __sys_bpf+0x229/0x950
[  918.184310][T11531]  ? __pfx___sys_bpf+0x10/0x10
[  918.184335][T11531]  ? rt_mutex_slowunlock+0x1cb/0x300
[  918.184387][T11531]  ? rcu_is_watching+0x15/0xb0
[  918.184421][T11531]  __x64_sys_bpf+0x7c/0x90
[  918.184448][T11531]  do_syscall_64+0x14d/0xf80
[  918.184472][T11531]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  918.184495][T11531]  ? clear_bhb_loop+0x40/0x90
[  918.184523][T11531]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  918.184545][T11531] RIP: 0033:0x7f84ea54c819
[  918.184566][T11531] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  918.184585][T11531] RSP: 002b:00007f84e879e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  918.184609][T11531] RAX: ffffffffffffffda RBX: 00007f84ea7c5fa0 RCX: 00007f84ea54c819
[  918.184625][T11531] RDX: 0000000000000050 RSI: 00002000000003c0 RDI: 000000000000000a
[  918.184640][T11531] RBP: 00007f84e879e090 R08: 0000000000000000 R09: 0000000000000000
[  918.184653][T11531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  918.184666][T11531] R13: 00007f84ea7c6038 R14: 00007f84ea7c5fa0 R15: 00007ffee2ff9668
[  918.184705][T11531]  </TASK>
[  918.900752][T11284] 8021q: adding VLAN 0 to HW filter on device bond0
[  919.139475][T11284] 8021q: adding VLAN 0 to HW filter on device team0
[  919.196406][   T67] bridge0: port 1(bridge_slave_0) entered blocking state
[  919.198957][   T67] bridge0: port 1(bridge_slave_0) entered forwarding state
[  919.345303][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  919.346192][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  919.724612][T11558] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  920.635022][T11562] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1281'.
[  921.241960][T11567] net_ratelimit: 803 callbacks suppressed
[  921.241976][T11567] netlink: zone id is out of range
[  921.241982][T11567] netlink: zone id is out of range
[  921.242012][T11567] netlink: zone id is out of range
[  921.242088][T11567] netlink: zone id is out of range
[  921.242094][T11567] netlink: zone id is out of range
[  921.242123][T11567] netlink: zone id is out of range
[  921.303254][T11567] netlink: zone id is out of range
[  921.303334][T11567] netlink: zone id is out of range
[  921.303345][T11567] netlink: zone id is out of range
[  921.303976][T11567] netlink: zone id is out of range
[  922.448689][T11284] 8021q: adding VLAN 0 to HW filter on device batadv0
[  922.949505][T11590] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1284'.
[  923.083050][T11587] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1284'.
[  923.508948][T11598] netlink: 'syz.3.1285': attribute type 10 has an invalid length.
[  923.518526][T11598] veth0_vlan: left promiscuous mode
[  923.552451][T11598] veth0_vlan: entered promiscuous mode
[  923.574575][T11598] team0: Device veth0_vlan failed to register rx_handler
[  923.780631][T11284] veth0_vlan: entered promiscuous mode
[  923.859486][T11284] veth1_vlan: entered promiscuous mode
[  924.065374][T11284] veth0_macvtap: entered promiscuous mode
[  924.106536][T11284] veth1_macvtap: entered promiscuous mode
[  924.176078][T11284] batman_adv: batadv0: Interface activated: batadv_slave_0
[  924.214852][T11284] batman_adv: batadv0: Interface activated: batadv_slave_1
[  924.255866][ T1007] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  924.256148][ T1007] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  924.256378][ T1007] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  924.256592][ T1007] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  925.063275][T11634] FAULT_INJECTION: forcing a failure.
[  925.063275][T11634] name failslab, interval 1, probability 0, space 0, times 0
[  925.065489][T11634] CPU: 0 UID: 0 PID: 11634 Comm: syz.1.1292 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  925.065526][T11634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  925.065540][T11634] Call Trace:
[  925.065548][T11634]  <TASK>
[  925.065558][T11634]  dump_stack_lvl+0xe8/0x150
[  925.065597][T11634]  should_fail_ex+0x46b/0x600
[  925.065633][T11634]  should_failslab+0xa8/0x100
[  925.065656][T11634]  __kvmalloc_node_noprof+0x170/0x8e0
[  925.065682][T11634]  ? file_tty_write+0x2ed/0xa30
[  925.065712][T11634]  ? _mutex_trylock_nest_lock+0x128/0x180
[  925.065751][T11634]  file_tty_write+0x2ed/0xa30
[  925.065791][T11634]  vfs_write+0x629/0xba0
[  925.065834][T11634]  ? __pfx_vfs_write+0x10/0x10
[  925.065900][T11634]  ? __fget_files+0x2a/0x420
[  925.065939][T11634]  ksys_write+0x156/0x270
[  925.065977][T11634]  ? __pfx_ksys_write+0x10/0x10
[  925.066026][T11634]  do_syscall_64+0x14d/0xf80
[  925.066049][T11634]  ? trace_irq_disable+0x3b/0x150
[  925.066076][T11634]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  925.066099][T11634]  ? clear_bhb_loop+0x40/0x90
[  925.066128][T11634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  925.066150][T11634] RIP: 0033:0x7fc7c0f6c819
[  925.066170][T11634] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  925.066190][T11634] RSP: 002b:00007fc7bf1c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  925.066214][T11634] RAX: ffffffffffffffda RBX: 00007fc7c11e5fa0 RCX: 00007fc7c0f6c819
[  925.066230][T11634] RDX: 0000000000001006 RSI: 0000200000000000 RDI: 0000000000000003
[  925.066245][T11634] RBP: 00007fc7bf1c6090 R08: 0000000000000000 R09: 0000000000000000
[  925.066258][T11634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  925.066271][T11634] R13: 00007fc7c11e6038 R14: 00007fc7c11e5fa0 R15: 00007fff5d5a52f8
[  925.066309][T11634]  </TASK>
[  926.061780][T11651] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  926.897577][ T1007] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  926.897600][ T1007] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  927.187713][T11664] net_ratelimit: 803 callbacks suppressed
[  927.187734][T11664] netlink: zone id is out of range
[  927.187744][T11664] netlink: zone id is out of range
[  927.187773][T11664] netlink: zone id is out of range
[  927.187841][T11664] netlink: zone id is out of range
[  927.187850][T11664] netlink: zone id is out of range
[  927.187879][T11664] netlink: zone id is out of range
[  927.281086][T11664] netlink: zone id is out of range
[  927.401640][T11664] netlink: set zone limit has 4 unknown bytes
[  927.780250][ T6529] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  927.780271][ T6529] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  928.354934][T11674] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  928.358243][T11674] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1303'.
[  931.782485][T11725] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1316'.
[  933.534580][T11738] FAULT_INJECTION: forcing a failure.
[  933.534580][T11738] name failslab, interval 1, probability 0, space 0, times 0
[  933.534620][T11738] CPU: 1 UID: 0 PID: 11738 Comm: syz.7.1318 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  933.534649][T11738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  933.534663][T11738] Call Trace:
[  933.534672][T11738]  <TASK>
[  933.534681][T11738]  dump_stack_lvl+0xe8/0x150
[  933.534720][T11738]  should_fail_ex+0x46b/0x600
[  933.534758][T11738]  should_failslab+0xa8/0x100
[  933.534784][T11738]  kmem_cache_alloc_noprof+0x87/0x680
[  933.534819][T11738]  ? do_getname+0x2e/0x250
[  933.534850][T11738]  do_getname+0x2e/0x250
[  933.534880][T11738]  __se_sys_renameat2+0x43/0x2c0
[  933.534912][T11738]  do_syscall_64+0x14d/0xf80
[  933.534936][T11738]  ? trace_irq_disable+0x3b/0x150
[  933.534962][T11738]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  933.534997][T11738]  ? clear_bhb_loop+0x40/0x90
[  933.535023][T11738]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  933.535046][T11738] RIP: 0033:0x7fb71471c819
[  933.535065][T11738] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  933.535084][T11738] RSP: 002b:00007fb71296e028 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[  933.535109][T11738] RAX: ffffffffffffffda RBX: 00007fb714995fa0 RCX: 00007fb71471c819
[  933.535125][T11738] RDX: 0000000000000003 RSI: 0000200000000100 RDI: 0000000000000004
[  933.535146][T11738] RBP: 00007fb71296e090 R08: 0000000000000004 R09: 0000000000000000
[  933.535160][T11738] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000001
[  933.535174][T11738] R13: 00007fb714996038 R14: 00007fb714995fa0 R15: 00007fff32ca19e8
[  933.535208][T11738]  </TASK>
[  936.803831][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  936.803908][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  937.067696][T11763] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  939.096301][T11777] program syz.6.1327 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  939.097461][T11777] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1327'.
[  939.097476][T11777] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1327'.
[  939.209732][ T5884] usb 8-1: new low-speed USB device number 2 using dummy_hcd
[  939.362818][ T5884] usb 8-1: LPM exit latency is zeroed, disabling LPM.
[  939.364122][ T5884] usb 8-1: config 1 interface 0 altsetting 4 endpoint 0x81 has invalid maxpacket 1023, setting to 8
[  939.364155][ T5884] usb 8-1: config 1 interface 0 has no altsetting 0
[  939.367769][ T5884] usb 8-1: string descriptor 0 read error: -22
[  939.367914][ T5884] usb 8-1: New USB device found, idVendor=0738, idProduct=1705, bcdDevice= 0.40
[  939.367939][ T5884] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  939.430872][T11768] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  939.549738][T11024] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  939.642275][T11768] warning: `syz.7.1328' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  939.714192][T11024] usb 4-1: Using ep0 maxpacket: 32
[  939.729153][T11024] usb 4-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b
[  939.729185][T11024] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  939.729206][T11024] usb 4-1: Product: syz
[  939.729221][T11024] usb 4-1: Manufacturer: syz
[  939.729236][T11024] usb 4-1: SerialNumber: syz
[  939.849794][T11024] usb 4-1: config 0 descriptor??
[  941.613000][ T5884] usbhid 8-1:1.0: can't add hid device: -71
[  941.613157][ T5884] usbhid 8-1:1.0: probe with driver usbhid failed with error -71
[  941.671491][ T5884] usb 8-1: USB disconnect, device number 2
[  941.711051][T11024] peak_usb 4-1:0.0 can0: unable to request usb[type=2 value=5] err=-71
[  942.453193][T11024] peak_usb 4-1:0.0: probe with driver peak_usb failed with error -71
[  942.698586][T11024] usb 4-1: USB disconnect, device number 11
[  944.181393][T11818] FAULT_INJECTION: forcing a failure.
[  944.181393][T11818] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  944.181430][T11818] CPU: 1 UID: 0 PID: 11818 Comm: syz.3.1338 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  944.181454][T11818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  944.181468][T11818] Call Trace:
[  944.181476][T11818]  <TASK>
[  944.181486][T11818]  dump_stack_lvl+0xe8/0x150
[  944.181526][T11818]  should_fail_ex+0x46b/0x600
[  944.181562][T11818]  _copy_from_user+0x2d/0xb0
[  944.181585][T11818]  iommufd_fops_ioctl+0x461/0x5d0
[  944.181622][T11818]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  944.181671][T11818]  ? __fget_files+0x2a/0x420
[  944.181705][T11818]  ? bpf_lsm_file_ioctl+0x9/0x20
[  944.181730][T11818]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  944.181764][T11818]  __se_sys_ioctl+0xff/0x170
[  944.181789][T11818]  do_syscall_64+0x14d/0xf80
[  944.181812][T11818]  ? trace_irq_disable+0x3b/0x150
[  944.181840][T11818]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  944.181864][T11818]  ? clear_bhb_loop+0x40/0x90
[  944.181892][T11818]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  944.181914][T11818] RIP: 0033:0x7f5106eec819
[  944.181934][T11818] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  944.181953][T11818] RSP: 002b:00007f5105146028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  944.181977][T11818] RAX: ffffffffffffffda RBX: 00007f5107165fa0 RCX: 00007f5106eec819
[  944.181993][T11818] RDX: 0000200000000380 RSI: 0000000000003b80 RDI: 0000000000000003
[  944.182038][T11818] RBP: 00007f5105146090 R08: 0000000000000000 R09: 0000000000000000
[  944.182052][T11818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  944.182065][T11818] R13: 00007f5107166038 R14: 00007f5107165fa0 R15: 00007ffc2ac89de8
[  944.182100][T11818]  </TASK>
[  947.265102][T11833] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1340'.
[  948.464244][T11840] FAULT_INJECTION: forcing a failure.
[  948.464244][T11840] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  948.464280][T11840] CPU: 0 UID: 0 PID: 11840 Comm: syz.6.1343 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  948.464304][T11840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  948.464317][T11840] Call Trace:
[  948.464326][T11840]  <TASK>
[  948.464335][T11840]  dump_stack_lvl+0xe8/0x150
[  948.464373][T11840]  should_fail_ex+0x46b/0x600
[  948.464407][T11840]  _copy_from_user+0x2d/0xb0
[  948.464429][T11840]  iommufd_fops_ioctl+0x461/0x5d0
[  948.464465][T11840]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  948.464511][T11840]  ? __fget_files+0x2a/0x420
[  948.464544][T11840]  ? bpf_lsm_file_ioctl+0x9/0x20
[  948.464567][T11840]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  948.464599][T11840]  __se_sys_ioctl+0xff/0x170
[  948.464624][T11840]  do_syscall_64+0x14d/0xf80
[  948.464647][T11840]  ? trace_irq_disable+0x3b/0x150
[  948.464682][T11840]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  948.464708][T11840]  ? clear_bhb_loop+0x40/0x90
[  948.464736][T11840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  948.464758][T11840] RIP: 0033:0x7f2ae74ac819
[  948.464777][T11840] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  948.464796][T11840] RSP: 002b:00007f2ae56fe028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  948.464818][T11840] RAX: ffffffffffffffda RBX: 00007f2ae7725fa0 RCX: 00007f2ae74ac819
[  948.464834][T11840] RDX: 0000200000000100 RSI: 0000000000003b88 RDI: 0000000000000003
[  948.464847][T11840] RBP: 00007f2ae56fe090 R08: 0000000000000000 R09: 0000000000000000
[  948.464860][T11840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  948.464871][T11840] R13: 00007f2ae7726038 R14: 00007f2ae7725fa0 R15: 00007ffe36b6d178
[  948.464905][T11840]  </TASK>
[  949.672386][T11851] FAULT_INJECTION: forcing a failure.
[  949.672386][T11851] name failslab, interval 1, probability 0, space 0, times 0
[  949.672444][T11851] CPU: 0 UID: 0 PID: 11851 Comm: syz.1.1346 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  949.672467][T11851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  949.672480][T11851] Call Trace:
[  949.672488][T11851]  <TASK>
[  949.672497][T11851]  dump_stack_lvl+0xe8/0x150
[  949.672550][T11851]  should_fail_ex+0x46b/0x600
[  949.672604][T11851]  should_failslab+0xa8/0x100
[  949.672628][T11851]  kmem_cache_alloc_noprof+0x87/0x680
[  949.672661][T11851]  ? sk_prot_alloc+0x57/0x210
[  949.672688][T11851]  sk_prot_alloc+0x57/0x210
[  949.672709][T11851]  ? sk_alloc+0x27/0x390
[  949.672732][T11851]  sk_alloc+0x3a/0x390
[  949.672759][T11851]  inet6_create+0x7f0/0x1270
[  949.672792][T11851]  ? inet6_create+0x83/0x1270
[  949.672838][T11851]  __sock_create+0x4b2/0x9d0
[  949.672878][T11851]  __sys_socket+0xd6/0x1b0
[  949.672913][T11851]  __x64_sys_socket+0x7a/0x90
[  949.672945][T11851]  do_syscall_64+0x14d/0xf80
[  949.672969][T11851]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  949.672992][T11851]  ? clear_bhb_loop+0x40/0x90
[  949.673019][T11851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  949.673040][T11851] RIP: 0033:0x7fc7c0f6c819
[  949.673060][T11851] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  949.673079][T11851] RSP: 002b:00007fc7bf184028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  949.673101][T11851] RAX: ffffffffffffffda RBX: 00007fc7c11e6180 RCX: 00007fc7c0f6c819
[  949.673116][T11851] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 080000000000000a
[  949.673130][T11851] RBP: 00007fc7bf184090 R08: 0000000000000000 R09: 0000000000000000
[  949.673143][T11851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  949.673155][T11851] R13: 00007fc7c11e6218 R14: 00007fc7c11e6180 R15: 00007fff5d5a52f8
[  949.673188][T11851]  </TASK>
[  950.638177][T11848] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  951.460160][ T5813] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  951.468820][ T5813] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  951.470353][ T5813] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  951.471962][ T5813] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  951.482102][ T5813] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  951.534237][  T808] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  951.609733][ T5884] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  951.681004][  T808] usb 8-1: Using ep0 maxpacket: 8
[  951.782655][ T5884] usb 7-1: config 0 has no interfaces?
[  951.787028][ T5884] usb 7-1: New USB device found, idVendor=2304, idProduct=023e, bcdDevice=d7.69
[  951.787116][ T5884] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  951.787140][ T5884] usb 7-1: Product: syz
[  951.787155][ T5884] usb 7-1: Manufacturer: syz
[  951.787171][ T5884] usb 7-1: SerialNumber: syz
[  951.867649][  T808] usb 8-1: config 0 has an invalid interface number: 31 but max is 0
[  951.867680][  T808] usb 8-1: config 0 has no interface number 0
[  951.873909][  T808] usb 8-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  951.873938][  T808] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  951.873957][  T808] usb 8-1: Product: syz
[  951.873971][  T808] usb 8-1: Manufacturer: syz
[  951.873985][  T808] usb 8-1: SerialNumber: syz
[  952.780029][ T5884] usb 7-1: config 0 descriptor??
[  952.804290][  T808] usb 8-1: config 0 descriptor??
[  953.009799][ T5877] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  953.156328][T11863] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  953.156849][T11863] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  953.177286][ T5877] usb 4-1: Using ep0 maxpacket: 8
[  953.187885][ T5877] usb 4-1: config index 0 descriptor too short (expected 1307, got 27)
[  953.187915][ T5877] usb 4-1: config 0 has an invalid interface number: 0 but max is -1
[  953.187994][ T5877] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 0
[  953.188045][ T5877] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  953.188073][ T5877] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  953.257707][ T5877] usb 4-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  953.257796][ T5877] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  953.257819][ T5877] usb 4-1: Product: syz
[  953.257835][ T5877] usb 4-1: Manufacturer: syz
[  953.257850][ T5877] usb 4-1: SerialNumber: syz
[  953.302833][  T808] uvcvideo 8-1:0.31: Found UVC 0.04 device syz (046d:08c3)
[  953.364626][ T5877] usb 4-1: config 0 descriptor??
[  953.389853][ T5877] hub 4-1:0.0: bad descriptor, ignoring hub
[  953.389892][ T5877] hub 4-1:0.0: probe with driver hub failed with error -5
[  953.421774][ T5877] input: syz syz as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input5
[  953.426461][  T808] usb 8-1: USB disconnect, device number 3
[  953.505803][T11585] udevd[11585]: setting owner of /dev/bus/usb/008/003 to uid=0, gid=0 failed: No such file or directory
[  953.599776][ T5816] Bluetooth: hci1: command tx timeout
[  953.861352][T11875] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1355'.
[  953.861653][T11875] bridge_slave_0: default FDB implementation only supports local addresses
[  953.869968][T11883] usb 4-1: USB disconnect, device number 12
[  955.709175][T11914] netlink: 'syz.3.1362': attribute type 2 has an invalid length.
[  955.709235][T11914] netlink: 'syz.3.1362': attribute type 8 has an invalid length.
[  955.709249][T11914] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1362'.
[  955.786607][ T5816] Bluetooth: hci1: command tx timeout
[  955.816722][   T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  955.945226][ T5785] usb 7-1: USB disconnect, device number 10
[  956.429445][   T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  957.846565][ T5816] Bluetooth: hci1: command tx timeout
[  959.984505][ T5816] Bluetooth: hci1: command tx timeout
[  959.993223][   T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  960.245804][T11954] RDS: rds_bind could not find a transport for fc00::1, load rds_tcp or rds_rdma?
[  960.728506][   T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  960.842520][T11869] chnl_net:caif_netlink_parms(): no params data found
[  961.561194][T11869] bridge0: port 1(bridge_slave_0) entered blocking state
[  961.561338][T11869] bridge0: port 1(bridge_slave_0) entered disabled state
[  961.561561][T11869] bridge_slave_0: entered allmulticast mode
[  961.571678][T11869] bridge_slave_0: entered promiscuous mode
[  961.662504][T11869] bridge0: port 2(bridge_slave_1) entered blocking state
[  961.662638][T11869] bridge0: port 2(bridge_slave_1) entered disabled state
[  961.662865][T11869] bridge_slave_1: entered allmulticast mode
[  961.669817][T11869] bridge_slave_1: entered promiscuous mode
[  961.941338][T11869] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  961.959532][T11869] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  962.045327][   T13] bridge_slave_1: left allmulticast mode
[  962.045357][   T13] bridge_slave_1: left promiscuous mode
[  962.045624][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  962.127959][T11983] FAULT_INJECTION: forcing a failure.
[  962.127959][T11983] name failslab, interval 1, probability 0, space 0, times 0
[  962.127996][T11983] CPU: 0 UID: 0 PID: 11983 Comm: syz.1.1375 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  962.128020][T11983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  962.128034][T11983] Call Trace:
[  962.128043][T11983]  <TASK>
[  962.128052][T11983]  dump_stack_lvl+0xe8/0x150
[  962.128092][T11983]  should_fail_ex+0x46b/0x600
[  962.128126][T11983]  should_failslab+0xa8/0x100
[  962.128152][T11983]  __kmalloc_noprof+0xdf/0x7b0
[  962.128174][T11983]  ? iter_file_splice_write+0x1dd/0x10f0
[  962.128209][T11983]  iter_file_splice_write+0x1dd/0x10f0
[  962.128264][T11983]  ? __pfx_iter_file_splice_write+0x10/0x10
[  962.128296][T11983]  ? __asan_memset+0x22/0x50
[  962.128325][T11983]  ? shmem_file_splice_read+0xa7b/0xbd0
[  962.128364][T11983]  ? __pfx_iter_file_splice_write+0x10/0x10
[  962.128395][T11983]  direct_splice_actor+0x104/0x160
[  962.128438][T11983]  splice_direct_to_actor+0x545/0xc80
[  962.128475][T11983]  ? __pfx_direct_splice_actor+0x10/0x10
[  962.128510][T11983]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  962.128547][T11983]  do_splice_direct+0x19b/0x2a0
[  962.128578][T11983]  ? __pfx_do_splice_direct+0x10/0x10
[  962.128605][T11983]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  962.128641][T11983]  ? rw_verify_area+0x25b/0x4e0
[  962.128675][T11983]  do_sendfile+0x547/0x7e0
[  962.128699][T11983]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  962.128728][T11983]  ? __pfx_do_sendfile+0x10/0x10
[  962.128765][T11983]  __se_sys_sendfile64+0x144/0x1a0
[  962.128810][T11983]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  962.128854][T11983]  do_syscall_64+0x14d/0xf80
[  962.128877][T11983]  ? trace_irq_disable+0x3b/0x150
[  962.128904][T11983]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  962.128926][T11983]  ? clear_bhb_loop+0x40/0x90
[  962.128953][T11983]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  962.128975][T11983] RIP: 0033:0x7fc7c0f6c819
[  962.128996][T11983] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  962.129015][T11983] RSP: 002b:00007fc7bf184028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  962.129037][T11983] RAX: ffffffffffffffda RBX: 00007fc7c11e6180 RCX: 00007fc7c0f6c819
[  962.129053][T11983] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000006
[  962.129066][T11983] RBP: 00007fc7bf184090 R08: 0000000000000000 R09: 0000000000000000
[  962.129079][T11983] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000001
[  962.129092][T11983] R13: 00007fc7c11e6218 R14: 00007fc7c11e6180 R15: 00007fff5d5a52f8
[  962.129126][T11983]  </TASK>
[  962.226033][   T13] bridge_slave_0: left allmulticast mode
[  962.226148][   T13] bridge_slave_0: left promiscuous mode
[  962.227056][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  963.769471][T11990] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1377'.
[  965.496436][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  966.470357][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  966.533734][   T13] bond0 (unregistering): Released all slaves
[  966.858856][T11869] team0: Port device team_slave_0 added
[  966.878422][T11869] team0: Port device team_slave_1 added
[  967.121608][   T13] IPVS: stopping master sync thread 11434 ...
[  967.770685][T11869] batman_adv: batadv0: Adding interface: batadv_slave_0
[  967.770702][T11869] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  967.770728][T11869] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  967.777133][T11869] batman_adv: batadv0: Adding interface: batadv_slave_1
[  967.777150][T11869] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  967.777176][T11869] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  967.880583][T11024] usb 7-1: new full-speed USB device number 11 using dummy_hcd
[  968.291127][T11024] usb 7-1: config 0 has an invalid interface number: 113 but max is 0
[  968.291158][T11024] usb 7-1: config 0 has no interface number 0
[  968.291201][T11024] usb 7-1: config 0 interface 113 altsetting 2 has an endpoint descriptor with address 0x14, changing to 0x4
[  968.291222][T11024] usb 7-1: config 0 interface 113 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[  968.291238][T11024] usb 7-1: config 0 interface 113 has no altsetting 0
[  968.300488][T11024] usb 7-1: New USB device found, idVendor=054c, idProduct=02e1, bcdDevice=e2.c8
[  968.300518][T11024] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  968.300532][T11024] usb 7-1: Product: syz
[  968.300542][T11024] usb 7-1: Manufacturer: syz
[  968.300551][T11024] usb 7-1: SerialNumber: syz
[  968.399926][T11024] usb 7-1: config 0 descriptor??
[  968.403806][T11024] pn533_usb 7-1:0.113: NFC: Could not find bulk-in or bulk-out endpoint
[  968.979858][ T5806] usb 7-1: USB disconnect, device number 11
[  969.030290][   T37] kauditd_printk_skb: 89 callbacks suppressed
[  969.030310][   T37] audit: type=1326 audit(1774887654.072:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12014 comm="syz.6.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ae74ac819 code=0x7ffc0000
[  969.030354][   T37] audit: type=1326 audit(1774887654.082:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12014 comm="syz.6.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f2ae74ac819 code=0x7ffc0000
[  969.030399][   T37] audit: type=1326 audit(1774887654.082:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12014 comm="syz.6.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ae74ac819 code=0x7ffc0000
[  969.030439][   T37] audit: type=1326 audit(1774887654.082:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12014 comm="syz.6.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f2ae74ac819 code=0x7ffc0000
[  969.030481][   T37] audit: type=1326 audit(1774887654.082:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12014 comm="syz.6.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ae74ac819 code=0x7ffc0000
[  969.030525][   T37] audit: type=1326 audit(1774887654.102:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12014 comm="syz.6.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ae74ac819 code=0x7ffc0000
[  970.181345][ T5785] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  970.490165][ T5785] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  970.490194][ T5785] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  970.490212][ T5785] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  970.490277][ T5785] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  970.490304][ T5785] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  971.526509][ T5785] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  971.526540][ T5785] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  971.526559][ T5785] usb 8-1: Product: syz
[  971.526573][ T5785] usb 8-1: Manufacturer: syz
[  971.681832][ T5785] cdc_wdm 8-1:1.0: skipping garbage
[  971.692905][ T5785] cdc_wdm 8-1:1.0: skipping garbage
[  971.741721][T11869] hsr_slave_0: entered promiscuous mode
[  971.742612][T11869] hsr_slave_1: entered promiscuous mode
[  971.743228][T11869] debugfs: 'hsr0' already exists in 'hsr'
[  971.743245][T11869] Cannot create hsr debugfs directory
[  971.779421][ T5785] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  971.779456][ T5785] cdc_wdm 8-1:1.0: Unknown control protocol
[  971.985391][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  971.985537][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  971.985763][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  971.985778][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  971.985991][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  971.986004][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  971.986197][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  971.986211][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  971.986421][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  971.986433][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  971.986621][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  971.986633][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  971.986832][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  971.986845][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  971.986929][ T5785] usb 8-1: USB disconnect, device number 4
[  971.987038][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  971.987051][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  971.987062][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  972.210257][   T13] hsr_slave_0: left promiscuous mode
[  972.252574][   T13] hsr_slave_1: left promiscuous mode
[  972.253591][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  972.253616][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  972.319743][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  972.319785][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  972.415641][T12031] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1388'.
[  972.464352][   T13] veth1_macvtap: left promiscuous mode
[  972.464462][   T13] veth0_macvtap: left promiscuous mode
[  972.464718][   T13] veth1_vlan: left promiscuous mode
[  972.464896][   T13] veth0_vlan: left promiscuous mode
[  972.615634][T12058] FAULT_INJECTION: forcing a failure.
[  972.615634][T12058] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  972.615670][T12058] CPU: 0 UID: 0 PID: 12058 Comm: syz.6.1394 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  972.615694][T12058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  972.615707][T12058] Call Trace:
[  972.615715][T12058]  <TASK>
[  972.615725][T12058]  dump_stack_lvl+0xe8/0x150
[  972.615764][T12058]  should_fail_ex+0x46b/0x600
[  972.615798][T12058]  _copy_from_user+0x2d/0xb0
[  972.615821][T12058]  map_update_elem+0x4e0/0x9d0
[  972.615861][T12058]  __sys_bpf+0x6fa/0x950
[  972.615890][T12058]  ? __pfx___sys_bpf+0x10/0x10
[  972.615916][T12058]  ? rt_mutex_slowunlock+0x1cb/0x300
[  972.615964][T12058]  ? ksys_write+0x248/0x270
[  972.616010][T12058]  ? __pfx_ksys_write+0x10/0x10
[  972.616050][T12058]  __x64_sys_bpf+0x7c/0x90
[  972.616076][T12058]  do_syscall_64+0x14d/0xf80
[  972.616098][T12058]  ? trace_irq_disable+0x3b/0x150
[  972.616124][T12058]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  972.616145][T12058]  ? clear_bhb_loop+0x40/0x90
[  972.616172][T12058]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  972.616193][T12058] RIP: 0033:0x7f2ae74ac819
[  972.616213][T12058] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  972.616233][T12058] RSP: 002b:00007f2ae56fe028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  972.616256][T12058] RAX: ffffffffffffffda RBX: 00007f2ae7725fa0 RCX: 00007f2ae74ac819
[  972.616272][T12058] RDX: 0000000000000020 RSI: 0000200000000500 RDI: 0000000000000002
[  972.616286][T12058] RBP: 00007f2ae56fe090 R08: 0000000000000000 R09: 0000000000000000
[  972.616299][T12058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  972.616312][T12058] R13: 00007f2ae7726038 R14: 00007f2ae7725fa0 R15: 00007ffe36b6d178
[  972.616345][T12058]  </TASK>
[  974.851339][T12075] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  977.903780][   T13] team0 (unregistering): Port device team_slave_1 removed
[  978.115579][   T13] team0 (unregistering): Port device team_slave_0 removed
[  978.650348][T11024] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  978.804344][T11024] usb 8-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  978.804375][T11024] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  978.869728][T11024] usb 8-1: config 0 descriptor??
[  978.876989][T11024] cp210x 8-1:0.0: cp210x converter detected
[  979.211942][T12103] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  980.368348][T12111] FAULT_INJECTION: forcing a failure.
[  980.368348][T12111] name failslab, interval 1, probability 0, space 0, times 0
[  980.368428][T12111] CPU: 0 UID: 0 PID: 12111 Comm: syz.6.1411 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  980.368451][T12111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  980.368463][T12111] Call Trace:
[  980.368471][T12111]  <TASK>
[  980.368480][T12111]  dump_stack_lvl+0xe8/0x150
[  980.368516][T12111]  should_fail_ex+0x46b/0x600
[  980.368551][T12111]  should_failslab+0xa8/0x100
[  980.368574][T12111]  kmem_cache_alloc_noprof+0x87/0x680
[  980.368603][T12111]  ? do_getname+0x2e/0x250
[  980.368624][T12111]  ? lock_vma_under_rcu+0x45a/0x500
[  980.368650][T12111]  do_getname+0x2e/0x250
[  980.368671][T12111]  ? getname_flags+0x11/0x20
[  980.368697][T12111]  do_sys_openat2+0xca/0x200
[  980.368727][T12111]  ? __pfx_do_sys_openat2+0x10/0x10
[  980.368765][T12111]  __x64_sys_openat+0x138/0x170
[  980.368798][T12111]  do_syscall_64+0x14d/0xf80
[  980.368820][T12111]  ? trace_irq_disable+0x3b/0x150
[  980.368846][T12111]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  980.368867][T12111]  ? clear_bhb_loop+0x40/0x90
[  980.368891][T12111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  980.368912][T12111] RIP: 0033:0x7f2ae746d04e
[  980.368930][T12111] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  980.368948][T12111] RSP: 002b:00007f2ae56fdb28 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  980.368970][T12111] RAX: ffffffffffffffda RBX: 00007f2ae56fe6c0 RCX: 00007f2ae746d04e
[  980.368984][T12111] RDX: 0000000000008000 RSI: 00007f2ae56fdc00 RDI: ffffffffffffff9c
[  980.368999][T12111] RBP: 00007f2ae56fdc00 R08: 0000000000000000 R09: 0000000000000000
[  980.369011][T12111] R10: 0000000000000000 R11: 0000000000000246 R12: cccccccccccccccd
[  980.369023][T12111] R13: 00007f2ae7726038 R14: 00007f2ae7725fa0 R15: 00007ffe36b6d178
[  980.369055][T12111]  </TASK>
[  981.341922][T11024] cp210x 8-1:0.0: failed to get vendor val 0x370c size 73: -71
[  981.341950][T11024] cp210x 8-1:0.0: GPIO initialisation failed: -71
[  982.592838][T11024] usb 8-1: cp210x converter now attached to ttyUSB0
[  982.616412][T11024] usb 8-1: USB disconnect, device number 5
[  982.916723][T11024] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  982.937249][T11024] cp210x 8-1:0.0: device disconnected
[  984.735601][T12142] syz_tun: entered promiscuous mode
[  984.737021][T12142] macvtap1: entered promiscuous mode
[  984.781684][   T13] IPVS: stop unused estimator thread 0...
[  984.902657][T11869] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  984.958775][T11869] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  985.031157][T11869] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  985.096491][T11869] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  986.190938][T11869] 8021q: adding VLAN 0 to HW filter on device bond0
[  986.286683][T11869] 8021q: adding VLAN 0 to HW filter on device team0
[  986.764029][ T6531] bridge0: port 1(bridge_slave_0) entered blocking state
[  986.765106][ T6531] bridge0: port 1(bridge_slave_0) entered forwarding state
[  986.826821][T11184] bridge0: port 2(bridge_slave_1) entered blocking state
[  986.829289][T11184] bridge0: port 2(bridge_slave_1) entered forwarding state
[  987.039674][ T5813] Bluetooth: hci0: command 0x0401 tx timeout
[  987.050431][ T5816] Bluetooth: hci0: Opcode 0x0401 failed: -110
[  991.898170][T11869] 8021q: adding VLAN 0 to HW filter on device batadv0
[  992.335042][T12215] gfs2: gfs2 mount does not exist
[  994.560369][ T5816] Bluetooth: hci0: Opcode 0x0401 failed: -110
[  994.560706][ T5816] Bluetooth: hci0: command 0x0401 tx timeout
[  998.233362][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  998.233646][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  998.992783][T12314] netlink: 68 bytes leftover after parsing attributes in process `syz.6.1445'.
[  998.993780][T11869] veth0_vlan: entered promiscuous mode
[  999.065597][T11869] veth1_vlan: entered promiscuous mode
[  999.067735][   T37] audit: type=1326 audit(1774887684.162:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12316 comm="syz.1.1447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[  999.067785][   T37] audit: type=1326 audit(1774887684.162:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12316 comm="syz.1.1447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[  999.067829][   T37] audit: type=1326 audit(1774887684.172:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12316 comm="syz.1.1447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[  999.067872][   T37] audit: type=1326 audit(1774887684.172:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12316 comm="syz.1.1447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[  999.067915][   T37] audit: type=1326 audit(1774887684.172:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12316 comm="syz.1.1447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[  999.067958][   T37] audit: type=1326 audit(1774887684.172:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12316 comm="syz.1.1447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[  999.068001][   T37] audit: type=1326 audit(1774887684.172:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12316 comm="syz.1.1447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[  999.068044][   T37] audit: type=1326 audit(1774887684.172:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12316 comm="syz.1.1447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[  999.068087][   T37] audit: type=1326 audit(1774887684.172:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12316 comm="syz.1.1447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[  999.068130][   T37] audit: type=1326 audit(1774887684.172:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12316 comm="syz.1.1447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[  999.464579][T11869] veth0_macvtap: entered promiscuous mode
[  999.479229][T11869] veth1_macvtap: entered promiscuous mode
[  999.506582][T11869] batman_adv: batadv0: Interface activated: batadv_slave_0
[  999.519244][T11869] batman_adv: batadv0: Interface activated: batadv_slave_1
[  999.561386][ T8394] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  999.567372][ T8394] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1000.128891][ T8394] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1000.433922][ T6519] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1003.091822][T12344] openvswitch: netlink: Multiple metadata blocks provided
[ 1003.646589][   T91] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1003.646611][   T91] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1003.837506][   T91] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1003.837527][   T91] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1003.869714][ T5806] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[ 1004.032529][ T5806] usb 4-1: config 0 has no interfaces?
[ 1004.047723][ T5806] usb 4-1: New USB device found, idVendor=2304, idProduct=023e, bcdDevice=d7.69
[ 1004.047752][ T5806] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1004.047772][ T5806] usb 4-1: Product: syz
[ 1004.047786][ T5806] usb 4-1: Manufacturer: syz
[ 1004.047799][ T5806] usb 4-1: SerialNumber: syz
[ 1004.113979][ T5806] usb 4-1: config 0 descriptor??
[ 1004.139697][ T5786] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[ 1004.296186][ T5786] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 1004.334100][ T5786] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1004.334131][ T5786] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1004.334152][ T5786] usb 7-1: Product: syz
[ 1004.334167][ T5786] usb 7-1: Manufacturer: syz
[ 1004.334191][ T5786] usb 7-1: SerialNumber: syz
[ 1004.432500][T12363] netlink: 'syz.7.1458': attribute type 2 has an invalid length.
[ 1004.432522][T12363] netlink: 'syz.7.1458': attribute type 8 has an invalid length.
[ 1004.432636][T12363] netlink: 132 bytes leftover after parsing attributes in process `syz.7.1458'.
[ 1005.169584][  T808] usb 4-1: USB disconnect, device number 13
[ 1005.457311][T12380] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1459'.
[ 1008.181434][T12397] netlink: zone id is out of range
[ 1008.181526][T12397] netlink: zone id is out of range
[ 1008.181573][T12397] netlink: zone id is out of range
[ 1008.181698][T12397] netlink: zone id is out of range
[ 1008.181707][T12397] netlink: zone id is out of range
[ 1008.181738][T12397] netlink: zone id is out of range
[ 1008.478073][ T5786] usb 7-1: 1:1 : UAC_AS_GENERAL descriptor not found
[ 1008.518264][ T5786] usb 7-1: 2:1 : UAC_AS_GENERAL descriptor not found
[ 1010.485667][ T5813] Bluetooth: hci5: command 0x0406 tx timeout
[ 1011.250427][T12397] netlink: zone id is out of range
[ 1011.250439][T12397] netlink: zone id is out of range
[ 1011.583185][T12397] netlink: zone id is out of range
[ 1011.583202][T12397] netlink: zone id is out of range
[ 1012.605444][ T5786] usb 7-1: USB disconnect, device number 12
[ 1013.854655][T12358] udevd[12358]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1013.969686][ T5786] usb 7-1: new full-speed USB device number 13 using dummy_hcd
[ 1014.262796][ T5786] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 52, changing to 4
[ 1014.263083][ T5786] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid maxpacket 13368, setting to 1023
[ 1014.545021][ T5786] usb 7-1: New USB device found, idVendor=3823, idProduct=0001, bcdDevice= 3.eb
[ 1014.545054][ T5786] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1014.545076][ T5786] usb 7-1: Product: syz
[ 1014.545091][ T5786] usb 7-1: Manufacturer: syz
[ 1014.545106][ T5786] usb 7-1: SerialNumber: syz
[ 1014.590496][T12432] net_ratelimit: 802 callbacks suppressed
[ 1014.590516][T12432] netlink: zone id is out of range
[ 1014.590525][T12432] netlink: zone id is out of range
[ 1014.590554][T12432] netlink: zone id is out of range
[ 1014.590628][T12432] netlink: zone id is out of range
[ 1014.590637][T12432] netlink: zone id is out of range
[ 1014.590665][T12432] netlink: zone id is out of range
[ 1014.606886][T12432] netlink: zone id is out of range
[ 1014.606903][T12432] netlink: zone id is out of range
[ 1014.607429][T12432] netlink: zone id is out of range
[ 1014.607440][T12432] netlink: zone id is out of range
[ 1014.710263][ T5786] usb 7-1: config 0 descriptor??
[ 1015.100443][ T5786] input: syz syz as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/input/input6
[ 1016.766003][ T5806] usb 7-1: USB disconnect, device number 13
[ 1017.960856][ T8751] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[ 1019.299682][ T8751] usb 2-1: Using ep0 maxpacket: 32
[ 1019.303458][ T8751] usb 2-1: config 0 has an invalid interface number: 184 but max is 0
[ 1019.303487][ T8751] usb 2-1: config 0 has no interface number 0
[ 1019.303618][ T8751] usb 2-1: config 0 interface 184 has no altsetting 0
[ 1019.307918][ T8751] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1019.307947][ T8751] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1019.307969][ T8751] usb 2-1: Product: syz
[ 1019.307984][ T8751] usb 2-1: Manufacturer: syz
[ 1019.307999][ T8751] usb 2-1: SerialNumber: syz
[ 1019.491120][ T8751] usb 2-1: config 0 descriptor??
[ 1020.389775][ T8751] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[ 1020.389808][ T8751] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1022.718189][ T8751] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[ 1022.718215][ T8751] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to write PMT_CTL: -71
[ 1022.718230][ T8751] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[ 1022.718645][ T8751] smsc75xx 2-1:0.184: probe with driver smsc75xx failed with error -71
[ 1022.773445][ T8751] usb 2-1: USB disconnect, device number 20
[ 1023.089027][   T37] kauditd_printk_skb: 13 callbacks suppressed
[ 1023.089047][   T37] audit: type=1326 audit(1774887708.192:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12508 comm="syz.1.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[ 1023.089096][   T37] audit: type=1326 audit(1774887708.192:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12508 comm="syz.1.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[ 1023.089285][T12509] netlink: 68 bytes leftover after parsing attributes in process `syz.8.1489'.
[ 1023.159875][   T37] audit: type=1326 audit(1774887708.272:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12508 comm="syz.1.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[ 1023.159946][   T37] audit: type=1326 audit(1774887708.272:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12508 comm="syz.1.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[ 1023.161149][   T37] audit: type=1326 audit(1774887708.272:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12508 comm="syz.1.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[ 1023.161202][   T37] audit: type=1326 audit(1774887708.272:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12508 comm="syz.1.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[ 1023.161250][   T37] audit: type=1326 audit(1774887708.272:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12508 comm="syz.1.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[ 1023.161301][   T37] audit: type=1326 audit(1774887708.272:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12508 comm="syz.1.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[ 1023.161951][   T37] audit: type=1326 audit(1774887708.272:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12508 comm="syz.1.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[ 1023.162167][   T37] audit: type=1326 audit(1774887708.272:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12508 comm="syz.1.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7c0f6c819 code=0x7ffc0000
[ 1023.165380][T12510] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1490'.
[ 1023.556154][T12510] bond1: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[ 1023.758235][T12510] bond1 (unregistering): Released all slaves
[ 1023.941397][T12517] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1026.379222][T12539] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1496'.
[ 1026.470955][T12539] bond1: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[ 1026.536254][T12539] bond1 (unregistering): Released all slaves
[ 1029.178098][   T37] kauditd_printk_skb: 38 callbacks suppressed
[ 1029.178112][   T37] audit: type=1326 audit(1774887714.282:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12558 comm="syz.7.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb71471c819 code=0x7ffc0000
[ 1029.178150][   T37] audit: type=1326 audit(1774887714.282:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12558 comm="syz.7.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb71471c819 code=0x7ffc0000
[ 1029.199632][   T37] audit: type=1326 audit(1774887714.302:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12558 comm="syz.7.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7fb71471c819 code=0x7ffc0000
[ 1029.199688][   T37] audit: type=1326 audit(1774887714.302:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12558 comm="syz.7.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb71471c819 code=0x7ffc0000
[ 1029.204758][   T37] audit: type=1326 audit(1774887714.312:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12558 comm="syz.7.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb71471c819 code=0x7ffc0000
[ 1029.207774][   T37] audit: type=1326 audit(1774887714.312:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12558 comm="syz.7.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb71471c819 code=0x7ffc0000
[ 1029.207827][   T37] audit: type=1326 audit(1774887714.312:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12558 comm="syz.7.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb71471c819 code=0x7ffc0000
[ 1029.263037][   T37] audit: type=1326 audit(1774887714.372:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12558 comm="syz.7.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb71471c819 code=0x7ffc0000
[ 1029.267896][   T37] audit: type=1326 audit(1774887714.372:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12558 comm="syz.7.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fb71471c819 code=0x7ffc0000
[ 1029.267948][   T37] audit: type=1326 audit(1774887714.372:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12558 comm="syz.7.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb71471c819 code=0x7ffc0000
[ 1029.420957][T12562] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1505'.
[ 1029.510374][T12565] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1503'.
[ 1031.678553][T12562] bond1: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[ 1031.715707][T12562] bond1 (unregistering): Released all slaves
[ 1033.597615][T12584] program syz.1.1510 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1034.077699][T12594] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1513'.
[ 1039.791515][   T37] kauditd_printk_skb: 14 callbacks suppressed
[ 1039.791534][   T37] audit: type=1326 audit(1774887724.892:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12634 comm="syz.8.1523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd63e8cc819 code=0x7ffc0000
[ 1039.791585][   T37] audit: type=1326 audit(1774887724.892:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12634 comm="syz.8.1523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd63e8cc819 code=0x7ffc0000
[ 1039.791633][   T37] audit: type=1326 audit(1774887724.902:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12634 comm="syz.8.1523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7fd63e8cc819 code=0x7ffc0000
[ 1039.791689][   T37] audit: type=1326 audit(1774887724.902:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12634 comm="syz.8.1523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd63e8cc819 code=0x7ffc0000
[ 1039.791735][   T37] audit: type=1326 audit(1774887724.902:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12634 comm="syz.8.1523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd63e8cc819 code=0x7ffc0000
[ 1039.791783][   T37] audit: type=1326 audit(1774887724.902:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12634 comm="syz.8.1523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd63e8cc819 code=0x7ffc0000
[ 1039.791830][   T37] audit: type=1326 audit(1774887724.902:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12634 comm="syz.8.1523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd63e8cc819 code=0x7ffc0000
[ 1039.791878][   T37] audit: type=1326 audit(1774887724.902:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12634 comm="syz.8.1523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd63e8cc819 code=0x7ffc0000
[ 1039.794745][   T37] audit: type=1326 audit(1774887724.902:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12634 comm="syz.8.1523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fd63e8cc819 code=0x7ffc0000
[ 1039.794798][   T37] audit: type=1326 audit(1774887724.902:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12634 comm="syz.8.1523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd63e8cc819 code=0x7ffc0000
[ 1039.940964][T12637] netlink: 16 bytes leftover after parsing attributes in process `syz.8.1523'.
[ 1040.109884][T12640] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1525'.
[ 1040.187016][T12642] netlink: 277 bytes leftover after parsing attributes in process `syz.1.1526'.
[ 1040.202165][T12637] bond1: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[ 1040.280491][T12637] bond1 (unregistering): Released all slaves
[ 1040.473950][ T5806] usb 2-1: new full-speed USB device number 21 using dummy_hcd
[ 1040.657093][ T5806] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1040.666501][ T5806] usb 2-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1040.666593][ T5806] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1040.666651][ T5806] usb 2-1: Product: syz
[ 1040.666686][ T5806] usb 2-1: Manufacturer: syz
[ 1040.666726][ T5806] usb 2-1: SerialNumber: syz
[ 1040.715771][T12653] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1527'.
[ 1040.762011][ T5806] usb 2-1: config 0 descriptor??
[ 1040.765813][ T5806] hub 2-1:0.0: bad descriptor, ignoring hub
[ 1040.774568][ T5806] hub 2-1:0.0: probe with driver hub failed with error -5
[ 1040.860194][ T5806] input: syz syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input7
[ 1041.684837][T12670] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1529'.
[ 1042.089570][T12680] netlink: 'syz.6.1531': attribute type 2 has an invalid length.
[ 1042.091561][T12680] netlink: 'syz.6.1531': attribute type 8 has an invalid length.
[ 1042.091582][T12680] netlink: 132 bytes leftover after parsing attributes in process `syz.6.1531'.
[ 1044.078622][T12696] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1536'.
[ 1044.352943][ T5973] usb 2-1: USB disconnect, device number 21
[ 1044.418911][T12700] netlink: 68 bytes leftover after parsing attributes in process `syz.8.1535'.
[ 1044.964002][T12712] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1539'.
[ 1047.108412][T12727] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1543'.
[ 1047.759771][ T5884] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[ 1047.941462][ T5884] usb 8-1: unable to get BOS descriptor or descriptor too short
[ 1047.945172][ T5884] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1047.945205][ T5884] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1047.945226][ T5884] usb 8-1: Product: syz
[ 1047.945241][ T5884] usb 8-1: Manufacturer: syz
[ 1047.945258][ T5884] usb 8-1: SerialNumber: syz
[ 1051.815403][T12758] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1550'.
[ 1051.859948][ T5884] usb 8-1: 1:1 : UAC_AS_GENERAL descriptor not found
[ 1051.862529][ T5884] usb 8-1: 2:1 : UAC_AS_GENERAL descriptor not found
[ 1052.196015][ T5884] usb 8-1: USB disconnect, device number 6
[ 1052.454091][T12763] netlink: 68 bytes leftover after parsing attributes in process `syz.7.1551'.
[ 1052.562690][T12769] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1553'.
[ 1052.596711][T12358] udevd[12358]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1053.488608][T12784] netlink: 68 bytes leftover after parsing attributes in process `syz.6.1558'.
[ 1055.437292][T12797] FAULT_INJECTION: forcing a failure.
[ 1055.437292][T12797] name failslab, interval 1, probability 0, space 0, times 0
[ 1055.437343][T12797] CPU: 0 UID: 0 PID: 12797 Comm: syz.6.1562 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1055.437377][T12797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1055.437399][T12797] Call Trace:
[ 1055.437413][T12797]  <TASK>
[ 1055.437423][T12797]  dump_stack_lvl+0xe8/0x150
[ 1055.437478][T12797]  should_fail_ex+0x46b/0x600
[ 1055.437527][T12797]  should_failslab+0xa8/0x100
[ 1055.437565][T12797]  kmem_cache_alloc_node_noprof+0x8f/0x6e0
[ 1055.437614][T12797]  ? preload_this_cpu_lock+0x49/0xc0
[ 1055.437659][T12797]  preload_this_cpu_lock+0x49/0xc0
[ 1055.437693][T12797]  alloc_vmap_area+0x3ed/0x14b0
[ 1055.437763][T12797]  ? __pfx_alloc_vmap_area+0x10/0x10
[ 1055.437809][T12797]  ? __kmalloc_cache_node_noprof+0x27d/0x6c0
[ 1055.437846][T12797]  ? __get_vm_area_node+0x171/0x350
[ 1055.437885][T12797]  ? bpf_prog_alloc_no_stats+0x4a/0x4f0
[ 1055.437930][T12797]  __get_vm_area_node+0x226/0x350
[ 1055.437987][T12797]  __vmalloc_node_range_noprof+0x372/0x1730
[ 1055.438035][T12797]  ? bpf_prog_alloc_no_stats+0x4a/0x4f0
[ 1055.438095][T12797]  ? __lock_acquire+0x6b5/0x2cf0
[ 1055.438143][T12797]  ? kernel_text_address+0xa5/0xe0
[ 1055.438187][T12797]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1055.438236][T12797]  ? arch_stack_walk+0xfb/0x150
[ 1055.438276][T12797]  ? bpf_prog_alloc_no_stats+0x4a/0x4f0
[ 1055.438306][T12797]  __vmalloc_noprof+0xd2/0x120
[ 1055.438346][T12797]  ? bpf_prog_alloc_no_stats+0x4a/0x4f0
[ 1055.438391][T12797]  bpf_prog_alloc_no_stats+0x4a/0x4f0
[ 1055.438444][T12797]  bpf_prog_alloc+0x3c/0x1a0
[ 1055.438489][T12797]  bpf_prog_load+0x7ba/0x1ae0
[ 1055.438554][T12797]  ? __pfx_bpf_prog_load+0x10/0x10
[ 1055.438627][T12797]  ? bpf_lsm_bpf+0x9/0x20
[ 1055.438657][T12797]  ? security_bpf+0x7e/0x2d0
[ 1055.438698][T12797]  __sys_bpf+0x618/0x950
[ 1055.438741][T12797]  ? __pfx___sys_bpf+0x10/0x10
[ 1055.438775][T12797]  ? rt_mutex_slowunlock+0x1cb/0x300
[ 1055.438845][T12797]  ? ksys_write+0x248/0x270
[ 1055.438895][T12797]  ? __pfx_ksys_write+0x10/0x10
[ 1055.438953][T12797]  __x64_sys_bpf+0x7c/0x90
[ 1055.438988][T12797]  do_syscall_64+0x14d/0xf80
[ 1055.439020][T12797]  ? trace_irq_disable+0x3b/0x150
[ 1055.439061][T12797]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1055.439092][T12797]  ? clear_bhb_loop+0x40/0x90
[ 1055.439137][T12797]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1055.439164][T12797] RIP: 0033:0x7f2ae74ac819
[ 1055.439192][T12797] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1055.439221][T12797] RSP: 002b:00007f2ae56fe028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1055.439249][T12797] RAX: ffffffffffffffda RBX: 00007f2ae7725fa0 RCX: 00007f2ae74ac819
[ 1055.439270][T12797] RDX: 0000000000000094 RSI: 0000200000000200 RDI: 0000000000000005
[ 1055.439292][T12797] RBP: 00007f2ae56fe090 R08: 0000000000000000 R09: 0000000000000000
[ 1055.439311][T12797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1055.439328][T12797] R13: 00007f2ae7726038 R14: 00007f2ae7725fa0 R15: 00007ffe36b6d178
[ 1055.439374][T12797]  </TASK>
[ 1055.509706][ T5884] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[ 1055.669615][ T5884] usb 2-1: Using ep0 maxpacket: 32
[ 1055.684904][ T5884] usb 2-1: config 0 has an invalid interface number: 184 but max is 0
[ 1055.684933][ T5884] usb 2-1: config 0 has no interface number 0
[ 1055.684980][ T5884] usb 2-1: config 0 interface 184 has no altsetting 0
[ 1055.705709][ T5884] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1055.705740][ T5884] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1055.705761][ T5884] usb 2-1: Product: syz
[ 1055.705776][ T5884] usb 2-1: Manufacturer: syz
[ 1055.705791][ T5884] usb 2-1: SerialNumber: syz
[ 1055.847240][ T5884] usb 2-1: config 0 descriptor??
[ 1055.884427][T12801] netlink: 68 bytes leftover after parsing attributes in process `syz.7.1563'.
[ 1058.729732][ T5884] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[ 1058.729764][ T5884] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[ 1058.729785][ T5884] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[ 1058.730082][ T5884] smsc75xx 2-1:0.184: probe with driver smsc75xx failed with error -71
[ 1058.786194][ T5884] usb 2-1: USB disconnect, device number 22
[ 1059.196413][T12821] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1568'.
[ 1059.665800][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1059.666306][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1060.772371][T12827] netlink: 68 bytes leftover after parsing attributes in process `syz.6.1571'.
[ 1062.869701][ T5806] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[ 1063.046778][ T5806] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 1063.079862][ T5806] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1063.079897][ T5806] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1063.079918][ T5806] usb 7-1: Product: syz
[ 1063.079933][ T5806] usb 7-1: Manufacturer: syz
[ 1063.079949][ T5806] usb 7-1: SerialNumber: syz
[ 1064.871332][ T5806] usb 7-1: 1:1 : UAC_AS_GENERAL descriptor not found
[ 1064.871782][ T5806] usb 7-1: 2:1 : UAC_AS_GENERAL descriptor not found
[ 1064.954296][ T5806] usb 7-1: USB disconnect, device number 14
[ 1065.018779][T12870] FAULT_INJECTION: forcing a failure.
[ 1065.018779][T12870] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1065.018815][T12870] CPU: 0 UID: 0 PID: 12870 Comm: syz.7.1581 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1065.018839][T12870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1065.018853][T12870] Call Trace:
[ 1065.018861][T12870]  <TASK>
[ 1065.018872][T12870]  dump_stack_lvl+0xe8/0x150
[ 1065.018912][T12870]  should_fail_ex+0x46b/0x600
[ 1065.018948][T12870]  _copy_to_user+0x31/0xb0
[ 1065.018972][T12870]  media_device_get_topology+0x800/0x1670
[ 1065.019009][T12870]  ? __pfx_media_device_get_topology+0x10/0x10
[ 1065.019072][T12870]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1065.019097][T12870]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1065.019123][T12870]  ? mutex_lock_nested+0x152/0x1d0
[ 1065.019152][T12870]  ? media_device_ioctl+0x2e6/0x4c0
[ 1065.019178][T12870]  media_device_ioctl+0x315/0x4c0
[ 1065.019205][T12870]  ? __pfx_media_device_ioctl+0x10/0x10
[ 1065.019254][T12870]  ? __fget_files+0x3a6/0x420
[ 1065.019283][T12870]  ? __fget_files+0x2a/0x420
[ 1065.019311][T12870]  ? __pfx_media_device_ioctl+0x10/0x10
[ 1065.019334][T12870]  ? media_ioctl+0x101/0x120
[ 1065.019357][T12870]  ? __pfx_media_ioctl+0x10/0x10
[ 1065.019382][T12870]  __se_sys_ioctl+0xff/0x170
[ 1065.019407][T12870]  do_syscall_64+0x14d/0xf80
[ 1065.019430][T12870]  ? trace_irq_disable+0x3b/0x150
[ 1065.019457][T12870]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1065.019481][T12870]  ? clear_bhb_loop+0x40/0x90
[ 1065.019514][T12870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1065.019546][T12870] RIP: 0033:0x7fb71471c819
[ 1065.019565][T12870] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1065.019582][T12870] RSP: 002b:00007fb71296e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1065.019610][T12870] RAX: ffffffffffffffda RBX: 00007fb714995fa0 RCX: 00007fb71471c819
[ 1065.019625][T12870] RDX: 00002000000005c0 RSI: 00000000c0487c04 RDI: 0000000000000003
[ 1065.019637][T12870] RBP: 00007fb71296e090 R08: 0000000000000000 R09: 0000000000000000
[ 1065.019649][T12870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1065.019661][T12870] R13: 00007fb714996038 R14: 00007fb714995fa0 R15: 00007fff32ca19e8
[ 1065.019693][T12870]  </TASK>
[ 1065.395865][T12358] udevd[12358]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1067.849798][T12895] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1587'.
[ 1069.408176][T12903] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1591'.
[ 1072.969804][ T5877] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[ 1073.122144][ T5877] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1073.139439][ T5877] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1073.139462][ T5877] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1073.139476][ T5877] usb 4-1: Product: syz
[ 1073.139486][ T5877] usb 4-1: Manufacturer: syz
[ 1073.165849][ T5877] usb 4-1: SerialNumber: syz
[ 1073.444052][T12943] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1605'.
[ 1073.718372][ T5877] usb 4-1: 1:1 : UAC_AS_GENERAL descriptor not found
[ 1073.754443][ T5877] usb 4-1: 2:1 : UAC_AS_GENERAL descriptor not found
[ 1073.956501][ T5877] usb 4-1: USB disconnect, device number 14
[ 1074.056357][T12358] udevd[12358]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1077.891499][T12977] netlink: 68 bytes leftover after parsing attributes in process `syz.7.1617'.
[ 1077.928277][ T5816] Bluetooth: hci1: command 0x0406 tx timeout
[ 1078.120038][T12983] netlink: 68 bytes leftover after parsing attributes in process `syz.8.1618'.
[ 1078.140629][T12978] net_ratelimit: 802 callbacks suppressed
[ 1078.140682][T12978] netlink: zone id is out of range
[ 1078.140726][T12978] netlink: zone id is out of range
[ 1078.301576][T12982] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1619'.
[ 1078.328668][T12978] netlink: zone id is out of range
[ 1078.328717][T12978] netlink: zone id is out of range
[ 1078.328757][T12978] netlink: zone id is out of range
[ 1078.328794][T12978] netlink: zone id is out of range
[ 1078.328803][T12978] netlink: zone id is out of range
[ 1078.328852][T12978] netlink: zone id is out of range
[ 1078.328892][T12978] netlink: zone id is out of range
[ 1078.328933][T12978] netlink: zone id is out of range
[ 1080.615830][T12998] netlink: 'syz.8.1623': attribute type 2 has an invalid length.
[ 1080.615848][T12998] netlink: 'syz.8.1623': attribute type 8 has an invalid length.
[ 1080.615858][T12998] netlink: 132 bytes leftover after parsing attributes in process `syz.8.1623'.
[ 1083.160024][T13016] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1627'.
[ 1083.356677][T13019] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1628'.
[ 1083.677708][T13022] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1630'.
[ 1085.285610][T13042] netlink: 'syz.8.1637': attribute type 39 has an invalid length.
[ 1087.027716][T13062] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1642'.
[ 1088.522241][T13078] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1647'.
[ 1091.630689][T13102] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1654'.
[ 1091.814621][T13106] netlink: 277 bytes leftover after parsing attributes in process `syz.8.1656'.
[ 1092.099674][ T5806] usb 9-1: new full-speed USB device number 2 using dummy_hcd
[ 1092.269134][ T5806] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1092.294273][ T5806] usb 9-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1092.294307][ T5806] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1092.294328][ T5806] usb 9-1: Product: syz
[ 1092.294343][ T5806] usb 9-1: Manufacturer: syz
[ 1092.294358][ T5806] usb 9-1: SerialNumber: syz
[ 1092.358611][ T5806] usb 9-1: config 0 descriptor??
[ 1092.374092][ T5806] hub 9-1:0.0: bad descriptor, ignoring hub
[ 1092.374134][ T5806] hub 9-1:0.0: probe with driver hub failed with error -5
[ 1092.404435][ T5806] input: syz syz as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/input/input8
[ 1092.550249][   T37] kauditd_printk_skb: 11 callbacks suppressed
[ 1092.550268][   T37] audit: type=1326 audit(1774887777.662:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13114 comm="syz.6.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ae74ac819 code=0x7ffc0000
[ 1092.550417][   T37] audit: type=1326 audit(1774887777.662:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13114 comm="syz.6.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ae74ac819 code=0x7ffc0000
[ 1092.551020][   T37] audit: type=1326 audit(1774887777.662:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13114 comm="syz.6.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7f2ae74ac819 code=0x7ffc0000
[ 1092.551190][   T37] audit: type=1326 audit(1774887777.662:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13114 comm="syz.6.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ae74ac819 code=0x7ffc0000
[ 1092.551335][   T37] audit: type=1326 audit(1774887777.662:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13114 comm="syz.6.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ae74ac819 code=0x7ffc0000
[ 1092.640148][   T37] audit: type=1326 audit(1774887777.702:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13114 comm="syz.6.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2ae74ac819 code=0x7ffc0000
[ 1092.640315][   T37] audit: type=1326 audit(1774887777.702:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13114 comm="syz.6.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ae74ac819 code=0x7ffc0000
[ 1092.640441][   T37] audit: type=1326 audit(1774887777.702:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13114 comm="syz.6.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ae74ac819 code=0x7ffc0000
[ 1092.647658][   T37] audit: type=1326 audit(1774887777.752:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13114 comm="syz.6.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2ae74ac819 code=0x7ffc0000
[ 1092.647804][   T37] audit: type=1326 audit(1774887777.752:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13114 comm="syz.6.1660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ae74ac819 code=0x7ffc0000
[ 1092.843788][T13118] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1660'.
[ 1092.881932][T13117] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1661'.
[ 1093.087833][T13118] bond1: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[ 1093.192616][T13118] bond1 (unregistering): Released all slaves
[ 1093.261980][T13124] input: syz0 as /devices/virtual/input/input9
[ 1093.623656][ T5877] usb 9-1: USB disconnect, device number 2
[ 1094.886438][T13138] netlink: 68 bytes leftover after parsing attributes in process `syz.8.1667'.
[ 1095.097614][T13140] netlink: 277 bytes leftover after parsing attributes in process `syz.8.1668'.
[ 1095.641238][ T5877] usb 9-1: new full-speed USB device number 3 using dummy_hcd
[ 1095.802380][ T5877] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1095.805311][ T5877] usb 9-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1095.805341][ T5877] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1095.805362][ T5877] usb 9-1: Product: syz
[ 1095.805376][ T5877] usb 9-1: Manufacturer: syz
[ 1095.805391][ T5877] usb 9-1: SerialNumber: syz
[ 1095.893077][ T5877] usb 9-1: config 0 descriptor??
[ 1095.897866][ T5877] hub 9-1:0.0: bad descriptor, ignoring hub
[ 1095.897907][ T5877] hub 9-1:0.0: probe with driver hub failed with error -5
[ 1095.928247][ T5877] input: syz syz as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/input/input10
[ 1096.002941][T13150] input: syz1 as /devices/virtual/input/input11
[ 1096.309219][T13156] netlink: 260 bytes leftover after parsing attributes in process `syz.3.1672'.
[ 1096.907419][T13164] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1675'.
[ 1098.215071][T13170] netlink: 68 bytes leftover after parsing attributes in process `syz.8.1678'.
[ 1098.229110][ T5877] usb 9-1: USB disconnect, device number 3
[ 1099.563800][T13184] netlink: 277 bytes leftover after parsing attributes in process `syz.3.1682'.
[ 1099.888639][T13194] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1099.902604][T13195] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1686'.
[ 1100.196800][T13197] netlink: 277 bytes leftover after parsing attributes in process `syz.1.1689'.
[ 1100.789646][ T5877] usb 4-1: new full-speed USB device number 15 using dummy_hcd
[ 1100.963263][ T5877] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1100.968191][ T5877] usb 4-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1100.968219][ T5877] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1100.968238][ T5877] usb 4-1: Product: syz
[ 1100.968252][ T5877] usb 4-1: Manufacturer: syz
[ 1100.968266][ T5877] usb 4-1: SerialNumber: syz
[ 1101.019689][ T5884] usb 2-1: new full-speed USB device number 23 using dummy_hcd
[ 1101.073705][ T5877] usb 4-1: config 0 descriptor??
[ 1101.077091][ T5877] hub 4-1:0.0: bad descriptor, ignoring hub
[ 1101.077129][ T5877] hub 4-1:0.0: probe with driver hub failed with error -5
[ 1101.119459][ T5877] input: syz syz as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input12
[ 1101.182118][ T5884] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1101.184889][ T5884] usb 2-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1101.184918][ T5884] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1101.184939][ T5884] usb 2-1: Product: syz
[ 1101.184953][ T5884] usb 2-1: Manufacturer: syz
[ 1101.184968][ T5884] usb 2-1: SerialNumber: syz
[ 1101.234212][ T5884] usb 2-1: config 0 descriptor??
[ 1101.247427][ T5884] hub 2-1:0.0: bad descriptor, ignoring hub
[ 1101.247464][ T5884] hub 2-1:0.0: probe with driver hub failed with error -5
[ 1101.268981][ T5884] input: syz syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input13
[ 1101.419752][ T8751] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[ 1101.429907][ T5973] usb 8-1: new full-speed USB device number 7 using dummy_hcd
[ 1102.832364][ T5973] usb 8-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[ 1102.832405][ T5973] usb 8-1: config 2 interface 0 has no altsetting 0
[ 1102.833422][ T8751] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 1102.869818][ T5973] usb 8-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[ 1102.869866][ T5973] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1102.869887][ T5973] usb 8-1: Product: syz
[ 1102.869903][ T5973] usb 8-1: Manufacturer: syz
[ 1102.869918][ T5973] usb 8-1: SerialNumber: syz
[ 1102.905569][ T5973] usb 8-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state
[ 1102.905604][ T5973] usb 8-1: selecting invalid altsetting 0
[ 1102.945583][ T8751] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1102.945614][ T8751] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1102.945634][ T8751] usb 7-1: Product: syz
[ 1102.945647][ T8751] usb 7-1: Manufacturer: syz
[ 1102.945677][ T8751] usb 7-1: SerialNumber: syz
[ 1103.029774][ T5785] usb 2-1: USB disconnect, device number 23
[ 1103.059252][ T5973] usb 8-1: dvb_usb_v2: this USB2.0 device cannot be run on a USB1.1 port (it lacks a hardware PID filter)
[ 1103.235830][ T5973] usb 8-1: USB disconnect, device number 7
[ 1103.554933][ T8751] usb 7-1: 1:1 : UAC_AS_GENERAL descriptor not found
[ 1103.555379][ T8751] usb 7-1: 2:1 : UAC_AS_GENERAL descriptor not found
[ 1104.613394][T13227] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1698'.
[ 1104.775461][ T8751] usb 7-1: USB disconnect, device number 15
[ 1104.819081][T13235] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1104.948197][T13237] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1702'.
[ 1106.300061][T13246] netlink: 68 bytes leftover after parsing attributes in process `syz.8.1704'.
[ 1106.603528][T13262] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1709'.
[ 1106.751165][T13262] bond1: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[ 1106.838618][T13262] bond1 (unregistering): Released all slaves
[ 1107.508034][T13269] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1713'.
[ 1108.144572][T13278] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1109.519198][T13287] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1717'.
[ 1109.809907][ T5806] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[ 1110.050887][ T5806] usb 8-1: Using ep0 maxpacket: 32
[ 1110.381056][ T5806] usb 8-1: config 0 has an invalid interface number: 184 but max is 0
[ 1110.381085][ T5806] usb 8-1: config 0 has no interface number 0
[ 1110.381135][ T5806] usb 8-1: config 0 interface 184 has no altsetting 0
[ 1110.390194][ T5806] usb 8-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1110.390225][ T5806] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1110.390245][ T5806] usb 8-1: Product: syz
[ 1110.390259][ T5806] usb 8-1: Manufacturer: syz
[ 1110.390273][ T5806] usb 8-1: SerialNumber: syz
[ 1110.419736][ T5806] usb 8-1: config 0 descriptor??
[ 1111.056894][ T5806] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[ 1111.056933][ T5806] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1111.617279][T13312] netlink: 68 bytes leftover after parsing attributes in process `syz.8.1725'.
[ 1112.802353][T13321] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1727'.
[ 1113.315126][ T5806] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[ 1113.315155][ T5806] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): Failed to write PMT_CTL: -71
[ 1113.315175][ T5806] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[ 1113.315553][ T5806] smsc75xx 8-1:0.184: probe with driver smsc75xx failed with error -71
[ 1113.319019][T13321] bond1: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[ 1113.390293][ T5806] usb 8-1: USB disconnect, device number 8
[ 1114.551853][T13321] bond1 (unregistering): Released all slaves
[ 1115.161607][T11024] usb 4-1: USB disconnect, device number 15
[ 1115.576700][T13353] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1735'.
[ 1118.313391][T13381] netlink: 'syz.6.1740': attribute type 2 has an invalid length.
[ 1118.313417][T13381] netlink: 'syz.6.1740': attribute type 8 has an invalid length.
[ 1118.313443][T13381] netlink: 132 bytes leftover after parsing attributes in process `syz.6.1740'.
[ 1121.054096][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1121.054187][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1122.768970][T13407] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1752'.
[ 1123.163020][T13419] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1754'.
[ 1123.773893][T13419] bond1: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[ 1124.062067][T13419] bond1 (unregistering): Released all slaves
[ 1124.447865][ T5884] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[ 1124.655020][ T5884] usb 9-1: unable to get BOS descriptor or descriptor too short
[ 1124.679627][ T5884] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1124.679657][ T5884] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1124.679676][ T5884] usb 9-1: Product: syz
[ 1124.679689][ T5884] usb 9-1: Manufacturer: syz
[ 1124.679702][ T5884] usb 9-1: SerialNumber: syz
[ 1125.063714][ T5884] usb 9-1: 1:1 : UAC_AS_GENERAL descriptor not found
[ 1125.064193][ T5884] usb 9-1: 2:1 : UAC_AS_GENERAL descriptor not found
[ 1125.254949][ T5884] usb 9-1: USB disconnect, device number 4
[ 1126.733426][T13456] netlink: 68 bytes leftover after parsing attributes in process `syz.6.1766'.
[ 1127.694639][T13469] netlink: 16 bytes leftover after parsing attributes in process `syz.8.1769'.
[ 1127.853490][T13469] bond1: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[ 1127.994920][T13469] bond1 (unregistering): Released all slaves
[ 1129.203816][T13492] netlink: 68 bytes leftover after parsing attributes in process `syz.8.1777'.
[ 1129.371520][  T992] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[ 1129.377142][    C1] raw-gadget.0 gadget.3: ignoring, device is not running
[ 1259.999466][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1259.999492][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P13489/2:b..l P67/1:b..l P6531/1:b..l P1512/1:b..l P12271/1:b..l P9959/5:b..l
[ 1259.999602][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=48513, q=162 ncpus=2)
[ 1259.999629][    C0] task:syz-executor    state:R  running task     stack:21504 pid:9959  tgid:9959  ppid:9953   task_flags:0x400140 flags:0x00080000
[ 1259.999700][    C0] Call Trace:
[ 1259.999708][    C0]  <TASK>
[ 1259.999725][    C0]  __schedule+0x1553/0x5240
[ 1259.999787][    C0]  ? __pfx___schedule+0x10/0x10
[ 1259.999813][    C0]  ? __lock_acquire+0x6b5/0x2cf0
[ 1259.999850][    C0]  preempt_schedule_irq+0x4d/0xa0
[ 1259.999874][    C0]  irqentry_exit+0x599/0x620
[ 1259.999900][    C0]  ? trace_irq_disable+0x3b/0x150
[ 1259.999936][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1259.999963][    C0] RIP: 0010:lock_acquire+0x20b/0x2e0
[ 1259.999986][    C0] Code: e9 30 ff ff ff e8 95 89 83 09 f7 c3 00 02 00 00 0f 84 38 ff ff ff 65 48 8b 05 01 67 ae 10 48 3b 44 24 30 75 33 fb 48 83 c4 38 <5b> 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 48 8d 3d ee 54 cd
[ 1260.000007][    C0] RSP: 0018:ffffc900052d72c8 EFLAGS: 00000282
[ 1260.000025][    C0] RAX: c711d4c9923bd700 RBX: 0000000000000246 RCX: 0000000000000046
[ 1260.000050][    C0] RDX: 0000000001628b72 RSI: ffffffff8d7c0dbe RDI: ffffffff8ba67680
[ 1260.000067][    C0] RBP: 0000000000000000 R08: ffffffff82320c58 R09: ffffffff8ddcb9c0
[ 1260.000083][    C0] R10: dffffc0000000000 R11: fffff94000440e39 R12: 0000000000000002
[ 1260.000099][    C0] R13: ffffffff8ddcb9c0 R14: 0000000000000000 R15: 0000000000000000
[ 1260.000122][    C0]  ? page_table_check_set+0x148/0x610
[ 1260.000156][    C0]  ? page_table_check_set+0x148/0x610
[ 1260.000180][    C0]  page_table_check_set+0x165/0x610
[ 1260.000201][    C0]  ? page_table_check_set+0x148/0x610
[ 1260.000230][    C0]  copy_pmd_range+0x3ad6/0x7c00
[ 1260.000293][    C0]  ? __pfx_copy_pmd_range+0x10/0x10
[ 1260.000324][    C0]  ? __lock_acquire+0x6b5/0x2cf0
[ 1260.000365][    C0]  copy_page_range+0xaf4/0x1120
[ 1260.000416][    C0]  ? __pfx_copy_page_range+0x10/0x10
[ 1260.000452][    C0]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1260.000479][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1260.000503][    C0]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1260.000533][    C0]  dup_mmap+0xf4c/0x1d50
[ 1260.000579][    C0]  ? __pfx_dup_mmap+0x10/0x10
[ 1260.000603][    C0]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1260.000647][    C0]  ? rt_spin_unlock+0x160/0x200
[ 1260.000703][    C0]  copy_mm+0x13b/0x4a0
[ 1260.000740][    C0]  copy_process+0x18be/0x3cd0
[ 1260.000787][    C0]  ? copy_process+0x921/0x3cd0
[ 1260.000835][    C0]  ? __pfx_copy_process+0x10/0x10
[ 1260.000884][    C0]  kernel_clone+0x249/0x840
[ 1260.000923][    C0]  ? __pfx_kernel_clone+0x10/0x10
[ 1260.000981][    C0]  __x64_sys_clone+0x1b6/0x230
[ 1260.001008][    C0]  ? __pfx___x64_sys_clone+0x10/0x10
[ 1260.001055][    C0]  ? do_user_addr_fault+0xc6f/0x1340
[ 1260.001102][    C0]  do_syscall_64+0x14d/0xf80
[ 1260.001126][    C0]  ? trace_irq_disable+0x3b/0x150
[ 1260.001154][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1260.001178][    C0]  ? clear_bhb_loop+0x40/0x90
[ 1260.001225][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1260.001249][    C0] RIP: 0033:0x7f2ae74d5292
[ 1260.001270][    C0] RSP: 002b:00007ffe36b6d390 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 1260.001292][    C0] RAX: ffffffffffffffda RBX: 00007ffe36b6d390 RCX: 00007f2ae74d5292
[ 1260.001310][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 1260.001324][    C0] RBP: 00007ffe36b6d51c R08: 0000000000000000 R09: 0000000000000001
[ 1260.001339][    C0] R10: 00005555779ae7d0 R11: 0000000000000246 R12: 0000000000000001
[ 1260.001354][    C0] R13: 00000000000927c0 R14: 0000000000113f0d R15: 00007ffe36b6d570
[ 1260.001391][    C0]  </TASK>
[ 1260.001401][    C0] task:kworker/u8:32   state:R  running task     stack:24224 pid:12271 tgid:12271 ppid:2      task_flags:0x4208060 flags:0x00080000
[ 1260.001476][    C0] Workqueue: bat_events batadv_tt_purge
[ 1260.001509][    C0] Call Trace:
[ 1260.001517][    C0]  <TASK>
[ 1260.001530][    C0]  __schedule+0x1553/0x5240
[ 1260.001565][    C0]  ? rtlock_slowlock_locked+0xfb/0x3c80
[ 1260.001620][    C0]  ? __pfx___schedule+0x10/0x10
[ 1260.001644][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1260.001670][    C0]  ? irqentry_exit+0x59e/0x620
[ 1260.001703][    C0]  ? preempt_schedule_thunk+0x16/0x30
[ 1260.001736][    C0]  preempt_schedule_common+0x82/0xd0
[ 1260.001761][    C0]  preempt_schedule_thunk+0x16/0x30
[ 1260.001797][    C0]  _raw_spin_unlock_irqrestore+0x74/0x80
[ 1260.001825][    C0]  rt_mutex_slowunlock+0x4a7/0x8b0
[ 1260.001860][    C0]  ? rt_spin_lock+0x1e0/0x400
[ 1260.001899][    C0]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1260.001942][    C0]  ? rt_spin_unlock+0x160/0x200
[ 1260.001980][    C0]  batadv_tt_local_purge+0x2ed/0x380
[ 1260.002018][    C0]  ? batadv_tt_local_purge+0x98/0x380
[ 1260.002069][    C0]  batadv_tt_purge+0x35/0xa10
[ 1260.002110][    C0]  ? process_scheduled_works+0xa8d/0x18c0
[ 1260.002144][    C0]  ? process_scheduled_works+0xa8d/0x18c0
[ 1260.002180][    C0]  process_scheduled_works+0xb6e/0x18c0
[ 1260.002249][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1260.002291][    C0]  ? assign_work+0x3d5/0x5e0
[ 1260.002331][    C0]  worker_thread+0xa53/0xfc0
[ 1260.002410][    C0]  kthread+0x388/0x470
[ 1260.002435][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1260.002467][    C0]  ? __pfx_kthread+0x10/0x10
[ 1260.002493][    C0]  ret_from_fork+0x51e/0xb90
[ 1260.002530][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[ 1260.002562][    C0]  ? __switch_to+0xc7d/0x1450
[ 1260.002595][    C0]  ? __pfx_kthread+0x10/0x10
[ 1260.002621][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1260.002662][    C0]  </TASK>
[ 1260.002670][    C0] task:kworker/u8:12   state:R  running task     stack:21184 pid:1512  tgid:1512  ppid:2      task_flags:0x4208060 flags:0x00080000
[ 1260.002737][    C0] Workqueue: events_unbound cfg80211_wiphy_work
[ 1260.002767][    C0] Call Trace:
[ 1260.002773][    C0]  <TASK>
[ 1260.002786][    C0]  __schedule+0x1553/0x5240
[ 1260.002825][    C0]  ? enqueue_task+0x341/0x410
[ 1260.002871][    C0]  ? __pfx___schedule+0x10/0x10
[ 1260.002904][    C0]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1260.002929][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1260.002952][    C0]  ? preempt_schedule_thunk+0x16/0x30
[ 1260.002982][    C0]  preempt_schedule_common+0x82/0xd0
[ 1260.003006][    C0]  preempt_schedule_thunk+0x16/0x30
[ 1260.003046][    C0]  rt_mutex_slowunlock+0x681/0x8b0
[ 1260.003079][    C0]  ? reacquire_held_locks+0x104/0x190
[ 1260.003112][    C0]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1260.003148][    C0]  ? rt_spin_unlock+0x14f/0x200
[ 1260.003185][    C0]  ? rt_spin_unlock+0x160/0x200
[ 1260.003220][    C0]  ? cfg80211_inform_single_bss_data+0xbb7/0x1bd0
[ 1260.003247][    C0]  cfg80211_inform_single_bss_data+0x141d/0x1bd0
[ 1260.003274][    C0]  ? cfg80211_inform_single_bss_data+0xbb7/0x1bd0
[ 1260.003310][    C0]  ? __pfx_cfg80211_inform_single_bss_data+0x10/0x10
[ 1260.003369][    C0]  ? cfg80211_inform_bss_data+0x253/0x3c40
[ 1260.003401][    C0]  cfg80211_inform_bss_data+0x266/0x3c40
[ 1260.003459][    C0]  ? __pfx_cfg80211_inform_bss_data+0x10/0x10
[ 1260.003533][    C0]  ? __lock_acquire+0x6b5/0x2cf0
[ 1260.003583][    C0]  cfg80211_inform_bss_frame_data+0x3c7/0x760
[ 1260.003617][    C0]  ? ieee80211_bss_info_update+0x316/0xa40
[ 1260.003651][    C0]  ieee80211_bss_info_update+0x794/0xa40
[ 1260.003686][    C0]  ? __pfx_ieee80211_bss_info_update+0x10/0x10
[ 1260.003713][    C0]  ? sta_info_get+0x4f/0x300
[ 1260.003755][    C0]  ? ieee80211_ibss_rx_queued_mgmt+0xf0f/0x2cd0
[ 1260.003790][    C0]  ieee80211_ibss_rx_queued_mgmt+0x1901/0x2cd0
[ 1260.003817][    C0]  ? __lock_acquire+0x6b5/0x2cf0
[ 1260.003857][    C0]  ? __lock_acquire+0x6b5/0x2cf0
[ 1260.003879][    C0]  ? ieee80211_ibss_rx_queued_mgmt+0xf0f/0x2cd0
[ 1260.003908][    C0]  ? __pfx_ieee80211_ibss_rx_queued_mgmt+0x10/0x10
[ 1260.003936][    C0]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1260.003982][    C0]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1260.004007][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1260.004031][    C0]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1260.004062][    C0]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1260.004095][    C0]  ? rt_spin_lock+0x1e0/0x400
[ 1260.004143][    C0]  ? rt_spin_unlock+0x160/0x200
[ 1260.004184][    C0]  ieee80211_iface_work+0x84e/0x1340
[ 1260.004227][    C0]  cfg80211_wiphy_work+0x2ab/0x4a0
[ 1260.004259][    C0]  ? process_scheduled_works+0xa8d/0x18c0
[ 1260.004295][    C0]  process_scheduled_works+0xb6e/0x18c0
[ 1260.004362][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1260.004402][    C0]  ? assign_work+0x3d5/0x5e0
[ 1260.004440][    C0]  worker_thread+0xa53/0xfc0
[ 1260.004503][    C0]  kthread+0x388/0x470
[ 1260.004528][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1260.004560][    C0]  ? __pfx_kthread+0x10/0x10
[ 1260.004586][    C0]  ret_from_fork+0x51e/0xb90
[ 1260.004623][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[ 1260.004655][    C0]  ? __switch_to+0xc7d/0x1450
[ 1260.004688][    C0]  ? __pfx_kthread+0x10/0x10
[ 1260.004714][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1260.004755][    C0]  </TASK>
[ 1260.004763][    C0] task:kworker/u8:18   state:R  running task     stack:20400 pid:6531  tgid:6531  ppid:2      task_flags:0x4208060 flags:0x00080000
[ 1260.004827][    C0] Workqueue: events_unbound cfg80211_wiphy_work
[ 1260.004856][    C0] Call Trace:
[ 1260.004863][    C0]  <TASK>
[ 1260.004876][    C0]  __schedule+0x1553/0x5240
[ 1260.004915][    C0]  ? enqueue_task+0x341/0x410
[ 1260.004959][    C0]  ? __pfx___schedule+0x10/0x10
[ 1260.004992][    C0]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1260.005017][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1260.005046][    C0]  ? preempt_schedule_thunk+0x16/0x30
[ 1260.005076][    C0]  preempt_schedule_common+0x82/0xd0
[ 1260.005101][    C0]  preempt_schedule_thunk+0x16/0x30
[ 1260.005134][    C0]  rt_mutex_slowunlock+0x681/0x8b0
[ 1260.005167][    C0]  ? reacquire_held_locks+0x104/0x190
[ 1260.005200][    C0]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1260.005235][    C0]  ? rt_spin_unlock+0x14f/0x200
[ 1260.005273][    C0]  ? rt_spin_unlock+0x160/0x200
[ 1260.005308][    C0]  ? cfg80211_inform_single_bss_data+0xbb7/0x1bd0
[ 1260.005334][    C0]  cfg80211_inform_single_bss_data+0x141d/0x1bd0
[ 1260.005362][    C0]  ? cfg80211_inform_single_bss_data+0xbb7/0x1bd0
[ 1260.005399][    C0]  ? __pfx_cfg80211_inform_single_bss_data+0x10/0x10
[ 1260.005457][    C0]  ? cfg80211_inform_bss_data+0x253/0x3c40
[ 1260.005490][    C0]  cfg80211_inform_bss_data+0x266/0x3c40
[ 1260.005547][    C0]  ? __pfx_cfg80211_inform_bss_data+0x10/0x10
[ 1260.005620][    C0]  ? __lock_acquire+0x6b5/0x2cf0
[ 1260.005671][    C0]  cfg80211_inform_bss_frame_data+0x3c7/0x760
[ 1260.005705][    C0]  ? ieee80211_bss_info_update+0x316/0xa40
[ 1260.005738][    C0]  ieee80211_bss_info_update+0x794/0xa40
[ 1260.005773][    C0]  ? __pfx_ieee80211_bss_info_update+0x10/0x10
[ 1260.005798][    C0]  ? sta_info_get+0x4f/0x300
[ 1260.005840][    C0]  ? ieee80211_ibss_rx_queued_mgmt+0xf0f/0x2cd0
[ 1260.005875][    C0]  ieee80211_ibss_rx_queued_mgmt+0x1901/0x2cd0
[ 1260.005902][    C0]  ? __lock_acquire+0x6b5/0x2cf0
[ 1260.005942][    C0]  ? __lock_acquire+0x6b5/0x2cf0
[ 1260.005964][    C0]  ? ieee80211_ibss_rx_queued_mgmt+0xf0f/0x2cd0
[ 1260.005993][    C0]  ? __pfx_ieee80211_ibss_rx_queued_mgmt+0x10/0x10
[ 1260.006021][    C0]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1260.006074][    C0]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1260.006100][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1260.006124][    C0]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1260.006149][    C0]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1260.006182][    C0]  ? rt_spin_lock+0x1e0/0x400
[ 1260.006230][    C0]  ? rt_spin_unlock+0x160/0x200
[ 1260.006273][    C0]  ieee80211_iface_work+0x84e/0x1340
[ 1260.006315][    C0]  cfg80211_wiphy_work+0x2ab/0x4a0
[ 1260.006347][    C0]  ? process_scheduled_works+0xa8d/0x18c0
[ 1260.006382][    C0]  process_scheduled_works+0xb6e/0x18c0
[ 1260.006449][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1260.006489][    C0]  ? assign_work+0x3d5/0x5e0
[ 1260.006527][    C0]  worker_thread+0xa53/0xfc0
[ 1260.006591][    C0]  kthread+0x388/0x470
[ 1260.006615][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1260.006647][    C0]  ? __pfx_kthread+0x10/0x10
[ 1260.006673][    C0]  ret_from_fork+0x51e/0xb90
[ 1260.006710][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[ 1260.006742][    C0]  ? __switch_to+0xc7d/0x1450
[ 1260.006775][    C0]  ? __pfx_kthread+0x10/0x10
[ 1260.006801][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1260.006841][    C0]  </TASK>
[ 1260.006849][    C0] task:kworker/u8:4    state:R  running task     stack:21856 pid:67    tgid:67    ppid:2      task_flags:0x4208060 flags:0x00080000
[ 1260.006916][    C0] Workqueue: events_unbound cfg80211_wiphy_work
[ 1260.006946][    C0] Call Trace:
[ 1260.006953][    C0]  <TASK>
[ 1260.006966][    C0]  __schedule+0x1553/0x5240
[ 1260.007005][    C0]  ? enqueue_task+0x341/0x410
[ 1260.007057][    C0]  ? __pfx___schedule+0x10/0x10
[ 1260.007089][    C0]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1260.007115][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1260.007138][    C0]  ? preempt_schedule_thunk+0x16/0x30
[ 1260.007168][    C0]  preempt_schedule_common+0x82/0xd0
[ 1260.007192][    C0]  preempt_schedule_thunk+0x16/0x30
[ 1260.007227][    C0]  rt_mutex_slowunlock+0x681/0x8b0
[ 1260.007260][    C0]  ? reacquire_held_locks+0x104/0x190
[ 1260.007293][    C0]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1260.007329][    C0]  ? rt_spin_unlock+0x14f/0x200
[ 1260.007367][    C0]  ? rt_spin_unlock+0x160/0x200
[ 1260.007401][    C0]  ? cfg80211_inform_single_bss_data+0xbb7/0x1bd0
[ 1260.007428][    C0]  cfg80211_inform_single_bss_data+0x141d/0x1bd0
[ 1260.007456][    C0]  ? cfg80211_inform_single_bss_data+0xbb7/0x1bd0
[ 1260.007492][    C0]  ? __pfx_cfg80211_inform_single_bss_data+0x10/0x10
[ 1260.007550][    C0]  ? cfg80211_inform_bss_data+0x253/0x3c40
[ 1260.007583][    C0]  cfg80211_inform_bss_data+0x266/0x3c40
[ 1260.007640][    C0]  ? __pfx_cfg80211_inform_bss_data+0x10/0x10
[ 1260.007713][    C0]  ? __lock_acquire+0x6b5/0x2cf0
[ 1260.007764][    C0]  cfg80211_inform_bss_frame_data+0x3c7/0x760
[ 1260.007811][    C0]  ? ieee80211_bss_info_update+0x316/0xa40
[ 1260.007844][    C0]  ieee80211_bss_info_update+0x794/0xa40
[ 1260.007880][    C0]  ? __pfx_ieee80211_bss_info_update+0x10/0x10
[ 1260.007906][    C0]  ? sta_info_get+0x4f/0x300
[ 1260.007948][    C0]  ? ieee80211_ibss_rx_queued_mgmt+0xf0f/0x2cd0
[ 1260.007982][    C0]  ieee80211_ibss_rx_queued_mgmt+0x1901/0x2cd0
[ 1260.008010][    C0]  ? __lock_acquire+0x6b5/0x2cf0
[ 1260.008056][    C0]  ? __lock_acquire+0x6b5/0x2cf0
[ 1260.008079][    C0]  ? ieee80211_ibss_rx_queued_mgmt+0xf0f/0x2cd0
[ 1260.008108][    C0]  ? __pfx_ieee80211_ibss_rx_queued_mgmt+0x10/0x10
[ 1260.008135][    C0]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1260.008181][    C0]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1260.008207][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1260.008231][    C0]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1260.008257][    C0]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1260.008290][    C0]  ? rt_spin_lock+0x1e0/0x400
[ 1260.008338][    C0]  ? rt_spin_unlock+0x160/0x200
[ 1260.008380][    C0]  ieee80211_iface_work+0x84e/0x1340
[ 1260.008422][    C0]  cfg80211_wiphy_work+0x2ab/0x4a0
[ 1260.008454][    C0]  ? process_scheduled_works+0xa8d/0x18c0
[ 1260.008489][    C0]  process_scheduled_works+0xb6e/0x18c0
[ 1260.008557][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1260.008597][    C0]  ? assign_work+0x3d5/0x5e0
[ 1260.008635][    C0]  worker_thread+0xa53/0xfc0
[ 1260.008698][    C0]  kthread+0x388/0x470
[ 1260.008723][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1260.008755][    C0]  ? __pfx_kthread+0x10/0x10
[ 1260.008782][    C0]  ret_from_fork+0x51e/0xb90
[ 1260.008817][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[ 1260.008869][    C0]  ? __switch_to+0xc7d/0x1450
[ 1260.008902][    C0]  ? __pfx_kthread+0x10/0x10
[ 1260.008929][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1260.008972][    C0]  </TASK>
[ 1260.008980][    C0] task:syz.3.1776      state:R  running task     stack:26880 pid:13489 tgid:13485 ppid:5802   task_flags:0x40054c flags:0x00080002
[ 1260.009067][    C0] Call Trace:
[ 1260.009075][    C0]  <TASK>
[ 1260.009088][    C0]  __schedule+0x1553/0x5240
[ 1260.009142][    C0]  ? __pfx___schedule+0x10/0x10
[ 1260.009184][    C0]  preempt_schedule_irq+0x4d/0xa0
[ 1260.009209][    C0]  irqentry_exit+0x599/0x620
[ 1260.009234][    C0]  ? trace_irq_disable+0x3b/0x150
[ 1260.009270][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1260.009296][    C0] RIP: 0010:vm_normal_page+0x33/0x1a0
[ 1260.009325][    C0] Code: 41 55 41 54 53 49 89 d6 49 89 f7 49 89 fc e8 04 2c b4 ff 31 ff 4c 89 f6 e8 5a 31 b4 ff 4d 85 f6 0f 95 c3 4c 89 f6 48 83 e6 01 <40> 0f 94 c5 31 ff e8 42 31 b4 ff 40 20 dd 40 0f b6 c5 48 f7 d8 4c
[ 1260.009346][    C0] RSP: 0018:ffffc90004047368 EFLAGS: 00000202
[ 1260.009365][    C0] RAX: ffffffff82105476 RBX: 800000004d286001 RCX: ffff88806e4c0000
[ 1260.009384][    C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 1260.009399][    C0] RBP: ffffc90004047670 R08: 0000000000000000 R09: 0000000000000000
[ 1260.009415][    C0] R10: dffffc0000000000 R11: fffff9400026942f R12: ffff88802a3a1780
[ 1260.009432][    C0] R13: dffffc0000000000 R14: 800000004d286007 R15: 00007f51067d3000
[ 1260.009455][    C0]  ? vm_normal_page+0x26/0x1a0
[ 1260.009489][    C0]  ? vm_normal_page+0x26/0x1a0
[ 1260.009521][    C0]  unmap_page_range+0xb4a/0x4540
[ 1260.009605][    C0]  ? __pfx_unmap_page_range+0x10/0x10
[ 1260.009647][    C0]  ? mas_find+0xb0e/0xd30
[ 1260.009670][    C0]  ? unmap_vmas+0x1c4/0x6a0
[ 1260.009704][    C0]  unmap_vmas+0x48f/0x6a0
[ 1260.009747][    C0]  ? __pfx_unmap_vmas+0x10/0x10
[ 1260.009806][    C0]  exit_mmap+0x280/0xa10
[ 1260.009832][    C0]  ? __pfx_exit_mmap+0x10/0x10
[ 1260.009853][    C0]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1260.009900][    C0]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1260.009939][    C0]  ? __pfx_exit_aio+0x10/0x10
[ 1260.009987][    C0]  ? uprobe_clear_state+0x288/0x2a0
[ 1260.010040][    C0]  __mmput+0xcb/0x3d0
[ 1260.010076][    C0]  exit_mm+0x168/0x220
[ 1260.010106][    C0]  do_exit+0x6a2/0x23c0
[ 1260.010136][    C0]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1260.010166][    C0]  ? __pfx_do_exit+0x10/0x10
[ 1260.010190][    C0]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1260.010223][    C0]  ? reacquire_held_locks+0x104/0x190
[ 1260.010251][    C0]  ? rt_spin_lock+0x1e0/0x400
[ 1260.010298][    C0]  do_group_exit+0x21b/0x2d0
[ 1260.010325][    C0]  ? rt_spin_unlock+0x160/0x200
[ 1260.010362][    C0]  get_signal+0x125c/0x1310
[ 1260.010430][    C0]  arch_do_signal_or_restart+0xbc/0x830
[ 1260.010461][    C0]  ? __pfx_smack_file_ioctl+0x10/0x10
[ 1260.010498][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1260.010537][    C0]  ? __fget_files+0x2a/0x420
[ 1260.010579][    C0]  exit_to_user_mode_loop+0x86/0x480
[ 1260.010614][    C0]  ? rcu_is_watching+0x15/0xb0
[ 1260.010645][    C0]  do_syscall_64+0x32d/0xf80
[ 1260.010669][    C0]  ? trace_irq_disable+0x3b/0x150
[ 1260.010697][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1260.010721][    C0]  ? clear_bhb_loop+0x40/0x90
[ 1260.010750][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1260.010774][    C0] RIP: 0033:0x7f5106eec4ab
[ 1260.010792][    C0] RSP: 002b:00007f5105143f00 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1260.010813][    C0] RAX: fffffffffffffffc RBX: 0000000000000005 RCX: 00007f5106eec4ab
[ 1260.010829][    C0] RDX: 00007f5105144fd0 RSI: 0000000080085502 RDI: 0000000000000005
[ 1260.010844][    C0] RBP: 00007f5105144fd0 R08: 0000000000000001 R09: 00000000ffffffff
[ 1260.010860][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000080085502
[ 1260.010874][    C0] R13: 0000000800000000 R14: 0000000000000003 R15: 00007f5106fa0ede
[ 1260.010910][    C0]  </TASK>
[ 1260.010926][    C0] rcu: rcu_preempt kthread starved for 8642 jiffies! g48513 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[ 1260.010951][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1260.010963][    C0] rcu: RCU grace-period kthread stack dump:
[ 1260.010970][    C0] task:rcu_preempt     state:R  running task     stack:27776 pid:18    tgid:18    ppid:2      task_flags:0x208040 flags:0x00080000
[ 1260.011049][    C0] Call Trace:
[ 1260.011057][    C0]  <TASK>
[ 1260.011070][    C0]  __schedule+0x1553/0x5240
[ 1260.011122][    C0]  ? __pfx___schedule+0x10/0x10
[ 1260.011155][    C0]  ? schedule+0x90/0x360
[ 1260.011180][    C0]  schedule+0x164/0x360
[ 1260.011204][    C0]  schedule_timeout+0x158/0x2c0
[ 1260.011264][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[ 1260.011302][    C0]  ? __pfx_process_timeout+0x10/0x10
[ 1260.011339][    C0]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1260.011365][    C0]  ? prepare_to_swait_event+0x340/0x370
[ 1260.011408][    C0]  rcu_gp_fqs_loop+0x312/0x11d0
[ 1260.011447][    C0]  ? __pfx_rcu_watching_snap_recheck+0x10/0x10
[ 1260.011472][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[ 1260.011494][    C0]  ? _raw_spin_unlock_irq+0x2e/0x50
[ 1260.011525][    C0]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1260.011556][    C0]  rcu_gp_kthread+0x9e/0x2b0
[ 1260.011582][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1260.011603][    C0]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1260.011631][    C0]  ? __kthread_parkme+0x7a/0x1f0
[ 1260.011668][    C0]  ? __kthread_parkme+0x19c/0x1f0
[ 1260.011711][    C0]  kthread+0x388/0x470
[ 1260.011736][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1260.011757][    C0]  ? __pfx_kthread+0x10/0x10
[ 1260.011783][    C0]  ret_from_fork+0x51e/0xb90
[ 1260.011821][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[ 1260.011854][    C0]  ? __switch_to+0xc7d/0x1450
[ 1260.011887][    C0]  ? __pfx_kthread+0x10/0x10
[ 1260.011914][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1260.011955][    C0]  </TASK>
[ 1260.011963][    C0] rcu: Stack dump where RCU GP kthread last ran:
[ 1260.011981][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1260.012006][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1260.012020][    C0] RIP: 0010:pv_native_safe_halt+0xf/0x20
[ 1260.012051][    C0] Code: ae 5c 02 e9 13 c4 03 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d f3 ac 25 00 fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90
[ 1260.012071][    C0] RSP: 0000:ffffffff8da07dc0 EFLAGS: 00000246
[ 1260.012089][    C0] RAX: 0000000002148b5f RBX: ffffffff8199709a RCX: 0000000080000001
[ 1260.012106][    C0] RDX: 0000000000000001 RSI: ffffffff8d5648b1 RDI: ffffffff8ba67680
[ 1260.012122][    C0] RBP: ffffffff8da07eb0 R08: ffff8880b8833e1b R09: 1ffff110171067c3
[ 1260.012139][    C0] R10: dffffc0000000000 R11: ffffed10171067c4 R12: 0000000000000000
[ 1260.012156][    C0] R13: 1ffffffff1b605d8 R14: 0000000000000000 R15: 1ffffffff1b605d8
[ 1260.012172][    C0] FS:  0000000000000000(0000) GS:ffff888126336000(0000) knlGS:0000000000000000
[ 1260.012192][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1260.012207][    C0] CR2: 000000110c3250a8 CR3: 00000000612a2000 CR4: 00000000003526f0
[ 1260.012227][    C0] Call Trace:
[ 1260.012235][    C0]  <TASK>
[ 1260.012242][    C0]  default_idle+0x9/0x20
[ 1260.012270][    C0]  default_idle_call+0x72/0xb0
[ 1260.012299][    C0]  do_idle+0x36a/0x5f0
[ 1260.012326][    C0]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 1260.012358][    C0]  ? __pfx_do_idle+0x10/0x10
[ 1260.012397][    C0]  cpu_startup_entry+0x43/0x60
[ 1260.012438][    C0]  rest_init+0x2de/0x300
[ 1260.012471][    C0]  start_kernel+0x385/0x3d0
[ 1260.012650][    C0]  x86_64_start_reservations+0x24/0x30
[ 1260.012680][    C0]  x86_64_start_kernel+0x143/0x1c0
[ 1260.012709][    C0]  common_startup_64+0x13e/0x147
[ 1260.012752][    C0]  </TASK>
[ 1261.969949][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1261.970030][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1262.049790][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1262.049874][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
SYZFAIL: failed to send rpc
fd=3 want=176 sent=0 n=-1 (errno 32: Broken pipe)
[ 1270.615544][ T6531] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1270.890798][ T6531] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0