last executing test programs:

16.839345158s ago: executing program 0 (id=436):
r0 = gettid()
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = syz_open_dev$sndctrl(&(0x7f0000000300), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r4, 0xc2c45512, &(0x7f0000000340)={{0x7}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x6, 0x0, 0x1000000, 0x0, 0x0, 0x29, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xc13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000]})
bind$unix(r3, &(0x7f0000000380)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
r5 = dup(r2)
syz_usb_connect(0x1, 0x2d, &(0x7f0000000200)=ANY=[@ANYBLOB="12012000f1048108cd060202d4920000000109021b1901000000d40904150001da40df0009056cdf"], 0x0)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000000640)={0x6, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r6=>0x0}], 0x5, "e24c102c5f52ca"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r3, 0xd000943e, &(0x7f0000001640)={r6, 0x0, "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", "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"})
r7 = syz_io_uring_setup(0x38fe, &(0x7f0000000300)={0x0, 0x1fffff, 0x10100}, &(0x7f0000000180)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r2})
io_uring_enter(r7, 0x2def, 0x4000, 0x1, 0x0, 0x0)
r10 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x2000)
read(r10, &(0x7f0000000200)=""/209, 0x128)
getsockopt(r1, 0x0, 0x7, &(0x7f0000000140)=""/1, &(0x7f0000000240)=0x1)
gettid()
tkill(r0, 0x2c)
r11 = getpid()
rt_tgsigqueueinfo(r11, r0, 0xb, &(0x7f0000000080)={0xfffffffc, 0xfffffffd, 0x3})
pselect6(0x40, &(0x7f0000000040)={0x7b5, 0x2, 0x3, 0xf2f, 0x1, 0x6, 0x1, 0x10}, &(0x7f0000000100)={0x3, 0xffffffff, 0x6f, 0xffffffffffff8001, 0x0, 0x1192, 0x405, 0x7fffffff}, &(0x7f0000000140)={0x5, 0x1, 0x1000, 0x6, 0x1, 0xfffffffffffffff7, 0x667555bb, 0x2}, &(0x7f0000000180)={0x0, 0x989680}, &(0x7f0000000200)={&(0x7f00000001c0)={[0xfffffff9, 0x1]}, 0x8})
r12 = socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r12, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r14=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r12, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r13, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r14}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r12, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x60, r13, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r14}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x2a, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @val, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x9b4}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x60}}, 0x0)
r15 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x40080, 0x0)
ioctl$KVM_CREATE_VM(r15, 0xae01, 0x0)

14.419136108s ago: executing program 1 (id=441):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000007c0)='/proc/bus/input/handlers\x00', 0x0, 0x0)
read$char_usb(r0, &(0x7f00000030c0)=""/4110, 0x100e)
preadv(r0, &(0x7f0000000100)=[{&(0x7f0000000280)=""/126, 0x7e}], 0x1, 0x8001, 0x4)
read$FUSE(r0, &(0x7f0000008140)={0x2020}, 0x2020)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='cdg\x00', 0x4)
bind$inet6(r1, &(0x7f0000000200)={0xa, 0x3, 0x0, @loopback}, 0x1c)
r2 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
ioctl$FS_IOC_RESVSP(r2, 0x402c5828, &(0x7f0000000100)={0x0, 0x1, 0x4, 0x7})
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f00000000c0)='westwood\x00', 0x9)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000002b00)=[{{0x0, 0x0, &(0x7f0000002c40)=[{&(0x7f00000002c0)=';', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000480)}}], 0x2, 0x10)
shutdown(r1, 0x2)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000140)={[0x989, 0xc50, 0x9, 0x80000000, 0xfffffffffffffffa, 0xffffffff, 0x7, 0x6, 0xfffffefffffff001, 0x0, 0x2, 0x7, 0x5, 0x7, 0x7, 0x81], 0x1000, 0x72200})

14.07241664s ago: executing program 1 (id=445):
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
syz_usb_connect(0x0, 0x5f, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000b1f203401e0903003bd7010203010902"], 0x0)
syz_emit_ethernet(0x52, 0x0, 0x0)
r2 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb)
r3 = openat$vcsa(0xffffff9c, &(0x7f0000000300), 0x4480, 0x0)
setsockopt$inet_buf(r3, 0x0, 0x29, &(0x7f0000000380)="67609f1bc76b660c7f522543621903dbd6dfb1322eb58ade49f7f6873e8c5b3a1e47a60fb805cbdca74d2ef9be337149a65b0c074f4b1001eff7a36fd2627258a02a3b46aba1f0f5f27cca55a28ffd26acca165107f55e8dfc020f192c7931515be26928a4af66540b951c34e67537616956b8022eaf08fef4a00257a4868b80ff3c2fcbe10ae082c9c46072d2c8e96da8a63af5cb6d56edf5d74507277a42ff37ed45231249e12d7e84a0cb2f08f24f1fd6010187f1a047", 0xb8)
request_key(&(0x7f0000000240)='encrypted\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000280)='\x00\xa8\xd8~3[q\x1f\x80\xc8\xcd\xd0\xa6\xd2G\xbb}\x1b\xd40\xb7\x1c^T\xb9\xeb\xda1\a]2F\x02\x8f\x0f\xb9K\x06S\xae\xac\x8d\xa89\xf9A\xe85\x93\xd8\xa0L8\x87\x16\xc8\xd7:\xeb\x19\xb1\xb7\xf4\x8c\xa0\xf6\xee\xdf\xf0\x11Y\x81p\xa3b\x8dvHf\xea\xe9\xe5\xce\xcb\x05\xef\x82\x8cYXo\x0e\xa2\b\x1c\xeb;J\x81c\x91[\x8a\x81O\x93g\xd9\xaf\x97\x99\t\xe6?#\x85', r2)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, r2)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r5 = socket(0x2, 0x2, 0x0)
r6 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f0000000100)={0x30000008})
epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r5, &(0x7f0000000000)={0xc2a10a980d0dcec8})
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r8 = socket(0x400000000010, 0x3, 0x0)
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r10, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001380)=@newtfilter={0xe88, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r10, {0x0, 0x7}, {}, {0x7, 0x8}}, [@filter_kind_options=@f_fw={{0x7}, {0xe5c, 0x2, [@TCA_FW_ACT={0xe58, 0x4, [@m_pedit={0xe54, 0x1, 0x0, 0x0, {{0xa}, {0xe28, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0xdcdc, 0x5fa8, 0x3, 0x839, 0x7}, 0x7, 0xb}, [{0x4, 0x2, 0x5d0, 0x8, 0x100, 0xfd}, {0x9, 0xf2, 0x688d, 0x7, 0x1, 0x2}, {0x7f, 0x8, 0x0, 0x400, 0x2557, 0x462}, {0x2, 0x0, 0x8001, 0xffc00000, 0xc9}, {0x8001, 0x6, 0x7f, 0x5, 0x7fff, 0x7fffffff}, {0x2, 0x7ff, 0xfffffffe, 0x7, 0xfffffc00, 0x3}, {0x8, 0x710, 0x80000001, 0x6, 0x4, 0x3000000}, {0xc000000, 0x400, 0x80, 0x100, 0x3, 0x12}, {0x6, 0x9, 0xa, 0xfffffffe, 0x7, 0x6}, {0x0, 0x2, 0x0, 0xff, 0x67, 0x5}, {0x0, 0x80000000, 0x0, 0xd, 0x9, 0x1}, {0x6, 0xd7, 0x2e, 0x56d, 0x4, 0x80000000}, {0x8001, 0x6, 0x1, 0x1, 0x4, 0x9}, {0x3, 0x3, 0x200, 0x7ff, 0x273, 0x2207}, {0x332400, 0x2, 0x5, 0x4d1, 0xfffffffe, 0x2}, {0x7, 0x6, 0x4, 0x5, 0x1, 0x2}, {0xe, 0xfffffffb, 0x7, 0x3ff, 0x4, 0x8}, {0x5, 0x7, 0x1, 0x1, 0x3ff, 0x3ff}, {0x0, 0xffff0001, 0x9, 0x102, 0xa0a, 0x5}, {0x7, 0x4, 0x13ca4b9a, 0xfffffffa, 0xffff, 0x9}, {0x1, 0x2, 0x7fffffff, 0x7, 0x7, 0x200}, {0x0, 0x0, 0x40, 0xffff352c, 0x5, 0x6}, {0x200, 0x3, 0x34e, 0xc, 0x4, 0x1}, {0x1, 0x9, 0x1, 0x8, 0xe163, 0x72e00000}, {0x9ee4, 0x52d, 0x5, 0x0, 0x7, 0x5}, {0x9, 0xda, 0x0, 0x5, 0xf, 0x7}, {0x4, 0x6e, 0xa, 0x8, 0x826, 0x5}, {0x9, 0x2, 0x7fff, 0xfffffff7, 0x4, 0x8}, {0xff, 0x131e, 0x5, 0x9, 0x3}, {0x6, 0x8, 0xd781, 0x7, 0xdce0, 0x101}, {0x0, 0x1ff, 0x0, 0x9, 0xfff, 0x8}, {0x8, 0x2, 0x6, 0x4, 0x69, 0x5149dc08}, {0x1, 0x0, 0x6, 0x101, 0x8, 0x18000}, {0x0, 0x9, 0x1, 0x5, 0xc}, {0x3, 0x9, 0x9, 0xe68, 0x2, 0xffff}, {0x9, 0x62, 0xe2f, 0xa, 0x44, 0x7}, {0xfffffff9, 0x7f, 0xffffffff, 0x3, 0x341, 0x3}, {0x6, 0x6, 0x4, 0x40000, 0x2, 0xa155}, {0x6d3, 0x3, 0x9, 0x9, 0xfffffffd, 0xfffffffa}, {0xd47, 0x3ff, 0x800, 0x40, 0x80000001, 0x4}, {0x5c2e, 0x8, 0x0, 0x76, 0x7}, {0xac77, 0x5, 0x0, 0x101, 0xb2a, 0x1ff}, {0x8, 0xfffffffa, 0x8, 0x4, 0xf771, 0x800}, {0xc, 0xfffffc01, 0x2, 0x4, 0x6, 0x1}, {0x4, 0x8, 0x149, 0xfffffff7, 0x2, 0xfff}, {0x8000, 0xd, 0x1, 0x101, 0x6}, {0x1000, 0xfffffffb, 0x268f, 0x80000001, 0xdf, 0x4}, {0x4, 0x0, 0x101, 0x1, 0x7, 0x9}, {0x9, 0x3, 0x20004, 0x0, 0x9, 0x8}, {0x400, 0xfe8, 0x5, 0x112, 0x10001, 0x7ff}, {0x4399, 0x0, 0x8, 0x2d1, 0x3ff}, {0xd8d2053, 0x7fffffff, 0x401, 0x6, 0x4, 0x6}, {0x3, 0x5, 0x205, 0x8, 0x6, 0xe7e1}, {0x550, 0x200, 0x342, 0x9, 0x8, 0x7}, {0x2, 0x7fffffff, 0x0, 0x8, 0x800, 0x3}, {0x4, 0x6, 0x3, 0x2, 0x2}, {0x1, 0x5d9, 0x4, 0xffffffff, 0x9, 0xac}, {0x7, 0x6, 0x7, 0xff, 0x4, 0x3}, {0x0, 0x5c6c, 0x8, 0x2, 0xffffffff, 0x4}, {0x40, 0xaa, 0x4, 0x6, 0xfffffff8, 0x3}, {0x0, 0xfffffffd, 0x7e0, 0xc, 0x7, 0x401}, {0xffff, 0x3, 0x5, 0x8, 0x47, 0xf9d}, {0xfffffbff, 0x0, 0x4, 0x0, 0x9, 0xffff}, {0xffffffff, 0x6, 0xfffffffa, 0x2, 0x8000, 0xbde}, {0x6af, 0x8001, 0x7f, 0x7, 0x7, 0x516}, {0x33, 0x8, 0x7, 0x8, 0x2, 0x80000001}, {0x9, 0x2, 0x9, 0x8000, 0x8, 0x3}, {0x6, 0x9, 0x6, 0x400, 0x1, 0xf}, {0xd424, 0x3, 0x7, 0xec, 0xb, 0x4}, {0x7, 0x7, 0xd7a, 0x80000001, 0xb137, 0x5}, {0xdcb, 0x10000, 0xe1, 0x6, 0x4, 0xfffffffb}, {0x4, 0x5, 0x3, 0x8, 0xe, 0x7}, {0x10000, 0x6, 0x80, 0x2, 0x8, 0x6}, {0x0, 0x4, 0xc779, 0x33000000, 0x100, 0x800}, {0x1000, 0x800, 0x0, 0x101, 0x4, 0x6}, {0x2, 0xffffffff, 0xb, 0x5, 0x5399, 0x4f4}, {0x5, 0x2, 0x7, 0x7, 0x1, 0x5}, {0x800, 0xde, 0x9, 0x6, 0x7, 0x3ff}, {0x1, 0x6, 0x2, 0xfffffff7, 0x0, 0xfffff000}, {0xfffffe01, 0xdc76, 0x1, 0x2, 0x2, 0xf}, {0x9, 0x1, 0xcf69, 0x0, 0x457, 0x1}, {0x0, 0x573, 0x4, 0x5, 0x5, 0x4}, {0x6, 0x1, 0xeb1, 0x80, 0xe6, 0x5}, {0x1ff, 0xa601, 0xffff7fff, 0x5, 0x100, 0x4}, {0x5, 0x2, 0x87d, 0x2, 0x8, 0x9627}, {0x81, 0xffff, 0x4, 0xee46, 0x4, 0x6ed}, {0xa4, 0x30000000, 0x200, 0x9, 0x2f056e5b, 0x4}, {0x3, 0x7, 0x3, 0x7fffffff, 0xd, 0xd}, {0x6, 0x6, 0x4, 0x100, 0x200, 0x8}, {0x40, 0xd00e, 0x22c, 0x2133ecfa, 0xffffff81, 0x1}, {0xfffffe00, 0x2, 0x10, 0x7f, 0x200}, {0x3, 0x10000, 0x4000, 0x3, 0xfb23, 0x8}, {0x8, 0xfff, 0x2, 0x7, 0x4, 0x3}, {0x8001, 0x4, 0x3, 0x1, 0x4, 0x17e3862}, {0x1, 0xe, 0x6, 0x5, 0x4, 0x1}, {0xcb67, 0x7, 0xc08c, 0x1, 0x3, 0x101}, {0x7, 0x401, 0x37, 0x3, 0x1, 0xe85}, {0x7fffffff, 0x0, 0x3, 0x10001, 0x3}, {0x8, 0x2, 0x59211cb1, 0x9, 0x1, 0x4}, {0x6, 0x3, 0x1, 0x7, 0x7, 0x100}, {0x7, 0x4, 0x2, 0x6, 0x400, 0x7}, {0xe, 0x6, 0x24, 0x3, 0x5, 0x1ff}, {0x1ff, 0x3fb, 0x2, 0x5, 0x7fff, 0x4}, {0x3ff, 0xa81, 0x5, 0x0, 0x5, 0x6}, {0xc, 0x76, 0x0, 0x2d0f3c09, 0x1, 0xbe9}, {0xffffbfb8, 0x7fff, 0x0, 0x1450e18f, 0x68c12bef, 0x6}, {0x4, 0x0, 0xc, 0x69, 0x6, 0x9}, {0x10, 0xf09, 0x1, 0x4, 0x1, 0x5}, {0xfffffffc, 0x9, 0x5, 0x4, 0xca, 0xffffffdf}, {0x0, 0x3, 0x8, 0xcf2f, 0x2, 0x1}, {0x7fff, 0xc9, 0x82, 0x6, 0x5}, {0x7, 0x4, 0x9, 0x5, 0x2, 0x9}, {0x4516, 0x3, 0x0, 0x8, 0x4, 0x1000}, {0xe4, 0xd, 0xffff, 0xc84, 0xc, 0x3}, {0xfffffffa, 0x0, 0x3, 0x9, 0xffff0000, 0xffffffff}, {0x400, 0x5, 0x9, 0x1, 0xd, 0x3}, {0x1, 0x2b, 0x5, 0xfffffff1, 0x3, 0x1}, {0x7fffffff, 0x5, 0x9, 0x80, 0x9, 0xd450}, {0x20000, 0x7ff, 0x61, 0x4, 0x8, 0x7}, {0xff, 0x1, 0x1, 0xa68b, 0x10, 0x60000}, {0x8, 0x0, 0x8, 0xf7f, 0x5, 0xfffffff8}, {0x28e, 0x1, 0xff, 0x6, 0xb3f2, 0x1}, {0x7, 0x4, 0x400040, 0x4, 0x9, 0x2}, {0x9, 0x8, 0xd, 0xe, 0x3, 0xd842}, {0x8, 0x8, 0x7, 0x0, 0xfffffff1, 0x2}, {0xffff9c2f, 0x84d, 0x4, 0x400, 0x7, 0x58}, {0x3, 0xffffffa2, 0x6, 0x0, 0x8, 0x1ff}, {0x8, 0xc1, 0x9, 0x1, 0x7ff, 0xff}], [{0x2, 0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x5}, {0x3, 0x1}, {0x4}, {0x7, 0x1}, {0x3}, {0x2, 0x1}, {0x2}, {0x3}, {0x5, 0x1}, {0x3, 0x1}, {0x5}, {0x1, 0x1}, {0x3}, {0x1, 0xffffffffffffffff}, {0x2, 0x1}, {0x5, 0x1}, {0x5}, {0x5}, {0x5}, {0x1, 0x1}, {0x1}, {0x3, 0x1}, {0x5, 0x1}, {0x5}, {}, {0x2, 0x1}, {0x1}, {0x2, 0x1}, {0x4, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x7, 0x1}, {0x3}, {0x0, 0x1}, {0x1}, {0x1}, {0x4}, {0x2, 0x1}, {0x2}, {0x5}, {0x3, 0x1}, {0x2}, {0x2, 0x1}, {0x4}, {0x1}, {0x4, 0x1}, {0x4}, {0x0, 0x1}, {0x3}, {0x0, 0x1}, {0x3, 0x1}, {0x1}, {0x1, 0x1}, {0x5}, {0x5}, {0x4}, {0x4}, {0x5, 0x1}, {0x2}, {0x3, 0x1}, {0x1}, {}, {0x2}, {0x2}, {0x5, 0x1}, {}, {0x3}, {}, {0x2}, {0x0, 0x3}, {0x5, 0x1}, {0x3, 0x1}, {0x4}, {0x3}, {0x0, 0x1}, {0x2}, {0x0, 0x1}, {0x2, 0x4e2ac20550e7fa09}, {0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x3, 0x1}, {0x3}, {}, {0x2, 0x1}, {0x2}, {0x3}, {0x3}, {0x4}, {0x5, 0x1}, {0x4}, {0x4, 0x1}, {0x2}, {0x4, 0x1}, {0x3}, {0xf, 0x1}, {0x5, 0x1}, {0x5}, {0x0, 0x1}, {0x5}, {0x1}, {0x2, 0x1}, {}, {0x2}, {0x1}, {0x3}, {0x5}, {}, {0x0, 0x1}, {0x3, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x3}, {0x5}, {0x5}, {0x2, 0x1}, {0x0, 0x1}, {0x5}, {0x3}, {0x3, 0x1}, {0x2, 0x1}, {0x1}, {0x5}, {0x0, 0x1}], 0x1}}, @TCA_PEDIT_KEYS_EX={0x4}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0xe88}, 0x1, 0x0, 0x0, 0x80}, 0x800)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f0000000200)={0xc})
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="300000002000010026bd7000000000000200000000000001000000001400030073797a6b616c6ce57230000000000000"], 0x30}}, 0x0)

12.420639998s ago: executing program 0 (id=447):
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
syz_usb_connect(0x0, 0x5f, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000b1f203401e0903003bd7010203010902"], 0x0)
syz_emit_ethernet(0x52, 0x0, 0x0)
r2 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb)
r3 = openat$vcsa(0xffffff9c, &(0x7f0000000300), 0x4480, 0x0)
setsockopt$inet_buf(r3, 0x0, 0x29, &(0x7f0000000380)="67609f1bc76b660c7f522543621903dbd6dfb1322eb58ade49f7f6873e8c5b3a1e47a60fb805cbdca74d2ef9be337149a65b0c074f4b1001eff7a36fd2627258a02a3b46aba1f0f5f27cca55a28ffd26acca165107f55e8dfc020f192c7931515be26928a4af66540b951c34e67537616956b8022eaf08fef4a00257a4868b80ff3c2fcbe10ae082c9c46072d2c8e96da8a63af5cb6d56edf5d74507277a42ff37ed45231249e12d7e84a0cb2f08f24f1fd6010187f1a047", 0xb8)
request_key(&(0x7f0000000240)='encrypted\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000280)='\x00\xa8\xd8~3[q\x1f\x80\xc8\xcd\xd0\xa6\xd2G\xbb}\x1b\xd40\xb7\x1c^T\xb9\xeb\xda1\a]2F\x02\x8f\x0f\xb9K\x06S\xae\xac\x8d\xa89\xf9A\xe85\x93\xd8\xa0L8\x87\x16\xc8\xd7:\xeb\x19\xb1\xb7\xf4\x8c\xa0\xf6\xee\xdf\xf0\x11Y\x81p\xa3b\x8dvHf\xea\xe9\xe5\xce\xcb\x05\xef\x82\x8cYXo\x0e\xa2\b\x1c\xeb;J\x81c\x91[\x8a\x81O\x93g\xd9\xaf\x97\x99\t\xe6?#\x85', r2)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, r2)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r5 = socket(0x2, 0x2, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000340), r5)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r5, &(0x7f0000000100)={0x30000008})
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r5, &(0x7f0000000000)={0xc2a10a980d0dcec8})
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = socket(0x400000000010, 0x3, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001380)=@newtfilter={0xe88, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r9, {0x0, 0x7}, {}, {0x7, 0x8}}, [@filter_kind_options=@f_fw={{0x7}, {0xe5c, 0x2, [@TCA_FW_ACT={0xe58, 0x4, [@m_pedit={0xe54, 0x1, 0x0, 0x0, {{0xa}, {0xe28, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0xdcdc, 0x5fa8, 0x3, 0x839, 0x7}, 0x7, 0xb}, [{0x4, 0x2, 0x5d0, 0x8, 0x100, 0xfd}, {0x9, 0xf2, 0x688d, 0x7, 0x1, 0x2}, {0x7f, 0x8, 0x0, 0x400, 0x2557, 0x462}, {0x2, 0x0, 0x8001, 0xffc00000, 0xc9}, {0x8001, 0x6, 0x7f, 0x5, 0x7fff, 0x7fffffff}, {0x2, 0x7ff, 0xfffffffe, 0x7, 0xfffffc00, 0x3}, {0x8, 0x710, 0x80000001, 0x6, 0x4, 0x3000000}, {0xc000000, 0x400, 0x80, 0x100, 0x3, 0x12}, {0x6, 0x9, 0xa, 0xfffffffe, 0x7, 0x6}, {0x0, 0x2, 0x0, 0xff, 0x67, 0x5}, {0x0, 0x80000000, 0x0, 0xd, 0x9, 0x1}, {0x6, 0xd7, 0x2e, 0x56d, 0x4, 0x80000000}, {0x8001, 0x6, 0x1, 0x1, 0x4, 0x9}, {0x3, 0x3, 0x200, 0x7ff, 0x273, 0x2207}, {0x332400, 0x2, 0x5, 0x4d1, 0xfffffffe, 0x2}, {0x7, 0x6, 0x4, 0x5, 0x1, 0x2}, {0xe, 0xfffffffb, 0x7, 0x3ff, 0x4, 0x8}, {0x5, 0x7, 0x1, 0x1, 0x3ff, 0x3ff}, {0x0, 0xffff0001, 0x9, 0x102, 0xa0a, 0x5}, {0x7, 0x4, 0x13ca4b9a, 0xfffffffa, 0xffff, 0x9}, {0x1, 0x2, 0x7fffffff, 0x7, 0x7, 0x200}, {0x0, 0x0, 0x40, 0xffff352c, 0x5, 0x6}, {0x200, 0x3, 0x34e, 0xc, 0x4, 0x1}, {0x1, 0x9, 0x1, 0x8, 0xe163, 0x72e00000}, {0x9ee4, 0x52d, 0x5, 0x0, 0x7, 0x5}, {0x9, 0xda, 0x0, 0x5, 0xf, 0x7}, {0x4, 0x6e, 0xa, 0x8, 0x826, 0x5}, {0x9, 0x2, 0x7fff, 0xfffffff7, 0x4, 0x8}, {0xff, 0x131e, 0x5, 0x9, 0x3}, {0x6, 0x8, 0xd781, 0x7, 0xdce0, 0x101}, {0x0, 0x1ff, 0x0, 0x9, 0xfff, 0x8}, {0x8, 0x2, 0x6, 0x4, 0x69, 0x5149dc08}, {0x1, 0x0, 0x6, 0x101, 0x8, 0x18000}, {0x0, 0x9, 0x1, 0x5, 0xc}, {0x3, 0x9, 0x9, 0xe68, 0x2, 0xffff}, {0x9, 0x62, 0xe2f, 0xa, 0x44, 0x7}, {0xfffffff9, 0x7f, 0xffffffff, 0x3, 0x341, 0x3}, {0x6, 0x6, 0x4, 0x40000, 0x2, 0xa155}, {0x6d3, 0x3, 0x9, 0x9, 0xfffffffd, 0xfffffffa}, {0xd47, 0x3ff, 0x800, 0x40, 0x80000001, 0x4}, {0x5c2e, 0x8, 0x0, 0x76, 0x7}, {0xac77, 0x5, 0x0, 0x101, 0xb2a, 0x1ff}, {0x8, 0xfffffffa, 0x8, 0x4, 0xf771, 0x800}, {0xc, 0xfffffc01, 0x2, 0x4, 0x6, 0x1}, {0x4, 0x8, 0x149, 0xfffffff7, 0x2, 0xfff}, {0x8000, 0xd, 0x1, 0x101, 0x6}, {0x1000, 0xfffffffb, 0x268f, 0x80000001, 0xdf, 0x4}, {0x4, 0x0, 0x101, 0x1, 0x7, 0x9}, {0x9, 0x3, 0x20004, 0x0, 0x9, 0x8}, {0x400, 0xfe8, 0x5, 0x112, 0x10001, 0x7ff}, {0x4399, 0x0, 0x8, 0x2d1, 0x3ff}, {0xd8d2053, 0x7fffffff, 0x401, 0x6, 0x4, 0x6}, {0x3, 0x5, 0x205, 0x8, 0x6, 0xe7e1}, {0x550, 0x200, 0x342, 0x9, 0x8, 0x7}, {0x2, 0x7fffffff, 0x0, 0x8, 0x800, 0x3}, {0x4, 0x6, 0x3, 0x2, 0x2}, {0x1, 0x5d9, 0x4, 0xffffffff, 0x9, 0xac}, {0x7, 0x6, 0x7, 0xff, 0x4, 0x3}, {0x0, 0x5c6c, 0x8, 0x2, 0xffffffff, 0x4}, {0x40, 0xaa, 0x4, 0x6, 0xfffffff8, 0x3}, {0x0, 0xfffffffd, 0x7e0, 0xc, 0x7, 0x401}, {0xffff, 0x3, 0x5, 0x8, 0x47, 0xf9d}, {0xfffffbff, 0x0, 0x4, 0x0, 0x9, 0xffff}, {0xffffffff, 0x6, 0xfffffffa, 0x2, 0x8000, 0xbde}, {0x6af, 0x8001, 0x7f, 0x7, 0x7, 0x516}, {0x33, 0x8, 0x7, 0x8, 0x2, 0x80000001}, {0x9, 0x2, 0x9, 0x8000, 0x8, 0x3}, {0x6, 0x9, 0x6, 0x400, 0x1, 0xf}, {0xd424, 0x3, 0x7, 0xec, 0xb, 0x4}, {0x7, 0x7, 0xd7a, 0x80000001, 0xb137, 0x5}, {0xdcb, 0x10000, 0xe1, 0x6, 0x4, 0xfffffffb}, {0x4, 0x5, 0x3, 0x8, 0xe, 0x7}, {0x10000, 0x6, 0x80, 0x2, 0x8, 0x6}, {0x0, 0x4, 0xc779, 0x33000000, 0x100, 0x800}, {0x1000, 0x800, 0x0, 0x101, 0x4, 0x6}, {0x2, 0xffffffff, 0xb, 0x5, 0x5399, 0x4f4}, {0x5, 0x2, 0x7, 0x7, 0x1, 0x5}, {0x800, 0xde, 0x9, 0x6, 0x7, 0x3ff}, {0x1, 0x6, 0x2, 0xfffffff7, 0x0, 0xfffff000}, {0xfffffe01, 0xdc76, 0x1, 0x2, 0x2, 0xf}, {0x9, 0x1, 0xcf69, 0x0, 0x457, 0x1}, {0x0, 0x573, 0x4, 0x5, 0x5, 0x4}, {0x6, 0x1, 0xeb1, 0x80, 0xe6, 0x5}, {0x1ff, 0xa601, 0xffff7fff, 0x5, 0x100, 0x4}, {0x5, 0x2, 0x87d, 0x2, 0x8, 0x9627}, {0x81, 0xffff, 0x4, 0xee46, 0x4, 0x6ed}, {0xa4, 0x30000000, 0x200, 0x9, 0x2f056e5b, 0x4}, {0x3, 0x7, 0x3, 0x7fffffff, 0xd, 0xd}, {0x6, 0x6, 0x4, 0x100, 0x200, 0x8}, {0x40, 0xd00e, 0x22c, 0x2133ecfa, 0xffffff81, 0x1}, {0xfffffe00, 0x2, 0x10, 0x7f, 0x200}, {0x3, 0x10000, 0x4000, 0x3, 0xfb23, 0x8}, {0x8, 0xfff, 0x2, 0x7, 0x4, 0x3}, {0x8001, 0x4, 0x3, 0x1, 0x4, 0x17e3862}, {0x1, 0xe, 0x6, 0x5, 0x4, 0x1}, {0xcb67, 0x7, 0xc08c, 0x1, 0x3, 0x101}, {0x7, 0x401, 0x37, 0x3, 0x1, 0xe85}, {0x7fffffff, 0x0, 0x3, 0x10001, 0x3}, {0x8, 0x2, 0x59211cb1, 0x9, 0x1, 0x4}, {0x6, 0x3, 0x1, 0x7, 0x7, 0x100}, {0x7, 0x4, 0x2, 0x6, 0x400, 0x7}, {0xe, 0x6, 0x24, 0x3, 0x5, 0x1ff}, {0x1ff, 0x3fb, 0x2, 0x5, 0x7fff, 0x4}, {0x3ff, 0xa81, 0x5, 0x0, 0x5, 0x6}, {0xc, 0x76, 0x0, 0x2d0f3c09, 0x1, 0xbe9}, {0xffffbfb8, 0x7fff, 0x0, 0x1450e18f, 0x68c12bef, 0x6}, {0x4, 0x0, 0xc, 0x69, 0x6, 0x9}, {0x10, 0xf09, 0x1, 0x4, 0x1, 0x5}, {0xfffffffc, 0x9, 0x5, 0x4, 0xca, 0xffffffdf}, {0x0, 0x3, 0x8, 0xcf2f, 0x2, 0x1}, {0x7fff, 0xc9, 0x82, 0x6, 0x5}, {0x7, 0x4, 0x9, 0x5, 0x2, 0x9}, {0x4516, 0x3, 0x0, 0x8, 0x4, 0x1000}, {0xe4, 0xd, 0xffff, 0xc84, 0xc, 0x3}, {0xfffffffa, 0x0, 0x3, 0x9, 0xffff0000, 0xffffffff}, {0x400, 0x5, 0x9, 0x1, 0xd, 0x3}, {0x1, 0x2b, 0x5, 0xfffffff1, 0x3, 0x1}, {0x7fffffff, 0x5, 0x9, 0x80, 0x9, 0xd450}, {0x20000, 0x7ff, 0x61, 0x4, 0x8, 0x7}, {0xff, 0x1, 0x1, 0xa68b, 0x10, 0x60000}, {0x8, 0x0, 0x8, 0xf7f, 0x5, 0xfffffff8}, {0x28e, 0x1, 0xff, 0x6, 0xb3f2, 0x1}, {0x7, 0x4, 0x400040, 0x4, 0x9, 0x2}, {0x9, 0x8, 0xd, 0xe, 0x3, 0xd842}, {0x8, 0x8, 0x7, 0x0, 0xfffffff1, 0x2}, {0xffff9c2f, 0x84d, 0x4, 0x400, 0x7, 0x58}, {0x3, 0xffffffa2, 0x6, 0x0, 0x8, 0x1ff}, {0x8, 0xc1, 0x9, 0x1, 0x7ff, 0xff}], [{0x2, 0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x5}, {0x3, 0x1}, {0x4}, {0x7, 0x1}, {0x3}, {0x2, 0x1}, {0x2}, {0x3}, {0x5, 0x1}, {0x3, 0x1}, {0x5}, {0x1, 0x1}, {0x3}, {0x1, 0xffffffffffffffff}, {0x2, 0x1}, {0x5, 0x1}, {0x5}, {0x5}, {0x5}, {0x1, 0x1}, {0x1}, {0x3, 0x1}, {0x5, 0x1}, {0x5}, {}, {0x2, 0x1}, {0x1}, {0x2, 0x1}, {0x4, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x7, 0x1}, {0x3}, {0x0, 0x1}, {0x1}, {0x1}, {0x4}, {0x2, 0x1}, {0x2}, {0x5}, {0x3, 0x1}, {0x2}, {0x2, 0x1}, {0x4}, {0x1}, {0x4, 0x1}, {0x4}, {0x0, 0x1}, {0x3}, {0x0, 0x1}, {0x3, 0x1}, {0x1}, {0x1, 0x1}, {0x5}, {0x5}, {0x4}, {0x4}, {0x5, 0x1}, {0x2}, {0x3, 0x1}, {0x1}, {}, {0x2}, {0x2}, {0x5, 0x1}, {}, {0x3}, {}, {0x2}, {0x0, 0x3}, {0x5, 0x1}, {0x3, 0x1}, {0x4}, {0x3}, {0x0, 0x1}, {0x2}, {0x0, 0x1}, {0x2, 0x4e2ac20550e7fa09}, {0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x3, 0x1}, {0x3}, {}, {0x2, 0x1}, {0x2}, {0x3}, {0x3}, {0x4}, {0x5, 0x1}, {0x4}, {0x4, 0x1}, {0x2}, {0x4, 0x1}, {0x3}, {0xf, 0x1}, {0x5, 0x1}, {0x5}, {0x0, 0x1}, {0x5}, {0x1}, {0x2, 0x1}, {}, {0x2}, {0x1}, {0x3}, {0x5}, {}, {0x0, 0x1}, {0x3, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x3}, {0x5}, {0x5}, {0x2, 0x1}, {0x0, 0x1}, {0x5}, {0x3}, {0x3, 0x1}, {0x2, 0x1}, {0x1}, {0x5}, {0x0, 0x1}], 0x1}}, @TCA_PEDIT_KEYS_EX={0x4}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0xe88}, 0x1, 0x0, 0x0, 0x80}, 0x800)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f0000000200)={0xc})
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="300000002000010026bd7000000000000200000000000001000000001400030073797a6b616c6ce57230000000000000"], 0x30}}, 0x0)

11.910062894s ago: executing program 2 (id=448):
r0 = socket(0x1e, 0x1, 0x0)
connect$tipc(r0, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xa0090199)
write$binfmt_misc(r0, &(0x7f0000000400), 0x2000011a)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), r0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000c00000000000000", @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0xfffffffffffffe8e)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(r1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
fstatat64(0xffffff9c, 0x0, 0x0, 0x3100)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r2}, 0x0, 0x0}, 0x1c)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r4, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
ppoll(0x0, 0x0, &(0x7f0000000080)={0x77359400}, 0x0, 0x0)

11.284581971s ago: executing program 4 (id=450):
socket(0x2, 0x2, 0xfffefffe)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000340), 0x228702, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
close(0x3)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r1, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @empty}], 0x1c)
sendto$inet6(r1, &(0x7f0000000500)="a4", 0x34000, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt(r0, 0x84, 0x80, &(0x7f00000002c0)="1af3050000f2bd5b", 0x8)
r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
socket(0xa, 0x3, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
bind$alg(0xffffffffffffffff, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
r4 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r4, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000001a80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$uinput_user_dev(r3, &(0x7f0000000400)={'syz1\x00', {0x3, 0x2, 0x6, 0xfffa}, 0xa, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x4d, 0x806, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x10000, 0x800, 0x3c5b, 0xffffffff, 0x24, 0xd, 0x1, 0x0, 0xffffffff, 0xe761, 0x4, 0x5, 0x3, 0xc, 0x4, 0x80000000, 0x242, 0x3, 0xe, 0x3, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8f, 0x6, 0x6, 0xc57, 0x5, 0x4, 0x3, 0x83ff, 0x80, 0x0, 0x5, 0x6, 0x1, 0x4, 0x10001, 0x40], [0x10000009, 0x9, 0x8000012f, 0x8004, 0x5, 0xfffffff5, 0x129432e6, 0xc8, 0xf9, 0x12, 0x2bf, 0x6ca, 0x9, 0xfffffffc, 0x100000, 0x0, 0xfffffffd, 0x5, 0x2f, 0xe, 0x312, 0x7c, 0xea4, 0x100, 0x4, 0x6, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0x1, 0x1, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x2, 0x4, 0xb, 0x4, 0x9, 0x7fffffff, 0x9, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0x7e78, 0x4dd3, 0x4, 0x9, 0x3, 0x5, 0x9, 0x1, 0x3, 0x3, 0xbc45, 0x48c93690, 0xfffffffc, 0x200003], [0x7, 0x408, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x4, 0x5, 0x0, 0x1ec, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x1, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x2, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0x9f, 0x7, 0x0, 0x5, 0x6, 0xac8, 0xc3, 0xb, 0x803, 0x7ff, 0x12b, 0x4, 0x1, 0x7ff, 0x0, 0x405, 0x1c, 0x120000, 0x2, 0x2006, 0x80a2ed, 0x4, 0x25], [0x8, 0xbb33, 0x7, 0xb, 0x5, 0x938, 0x6, 0xb, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x56, 0xfffffff2, 0x6bd8490e, 0x101, 0x10000, 0x80000001, 0x7fff, 0xffff, 0xa61e, 0x1, 0x5, 0x1, 0xfffffffe, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x400005, 0x4, 0xc8, 0x1, 0x5, 0x10000, 0x3, 0x7e, 0x101, 0x9602, 0x7, 0xaf, 0x8, 0x6, 0x229, 0x5, 0x5, 0x7, 0x30b1d696, 0xa1f, 0x40000f40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0xe, 0xb1e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

9.387885411s ago: executing program 1 (id=451):
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000)={0x0, <r0=>0x0})
waitid(0x1, r0, &(0x7f0000000040), 0x1000000, &(0x7f0000000140))
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='ns\x00')
getdents(r1, 0x0, 0x56)

9.198923071s ago: executing program 1 (id=452):
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc01cf509, &(0x7f0000000000)={0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x5d7})
r0 = socket$netlink(0x10, 0x3, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4000840)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r2, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(0xffffffffffffffff, 0x80dc5521, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
syz_usb_connect(0x3, 0x36, &(0x7f0000003580)=ANY=[@ANYBLOB="1201000052eb0840d107073aee44010a030109022400010000000009042d0001f92915000a2401ff0709020102cd9c8500443bc4aa40d90304f7b5d9f10905"], 0x0)
bind$alg(r3, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(des3_ede)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000c18000)="ad44b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000540)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000000c0)="e4e32dd2b696733552eca3e954943a18709f72fbd259a936c67ebe806ab21823f4a0c47bff45323c2b30982dfc67b46cc9a5a07c33fc", 0xff6d}, {&(0x7f0000000100)="3a10bd003aba0c7026336b", 0xb}], 0x2, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x60}], 0x1, 0x8001)
recvmmsg(r4, &(0x7f0000001440)=[{{0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000001c0)=""/156, 0xff78}, {&(0x7f0000000300)=""/92, 0x33}], 0x2}}], 0x1, 0x0, 0x0)

9.166817716s ago: executing program 0 (id=453):
fsopen(&(0x7f0000000000)='pipefs\x00', 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x8, 0x141101)
r2 = dup(r1)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001800)=ANY=[@ANYBLOB="2c000000180001002dbd70000000000002202000ff03c8080009000008001600ac1e000108001e001c000000"], 0x2c}, 0x1, 0x0, 0x0, 0x4008800}, 0x24040880)
write$6lowpan_enable(r2, &(0x7f0000000000)='1', 0x1)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002100)='numa_maps\x00')
read$FUSE(r4, &(0x7f0000002140)={0x2020, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x2020)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x40ead000)
madvise(&(0x7f0000130000/0xd000)=nil, 0xd000, 0x66)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x19)
sendmsg$unix(r4, &(0x7f0000000400)={&(0x7f00000000c0)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000000040)=[{&(0x7f0000000140)="68020d46669dbcb694b675aa025aef96781db0463c7c35cc9cbe99b9886e646161480b9b3a156959d11e66630848ab49cbec5cc334516dd1a289995bfb0aba6aeadd83f0eb083c6911b15d08b311cce27b700346c30dddc2711f9dc1374f7650dd0e782d35080c268173dd12e979bd1ea64c1da0a637990a28362a6fa91201e4a3b4fdacda35d119d20d47469a1549177c38e0ae9d392e8b6a72270c25f048233f6734e7547de0ba", 0xa8}, {&(0x7f0000000200)="e045db4e7c9b6e4907ab688f4174bf7acf52a8c74646e9642f647ce79d99be6928071900ee890cdd06b7a8d97cc66e049d89d370b8f7bdfd06638be503f93616e9e752e034064570ddd3abf2b287dd387ba9bb283a0f9df66ba54439d554b4c31e9a7c6064e99ed84891c5f6cb1f8479ec428177190cbe6d9bd46c44bb15f5701df3609dff9c3b7526689197901a044501ce4f52219e11eb13552d15525887898c4eab3e", 0xa4}, {&(0x7f00000002c0)="e81971a3831728de370fcbfa8efd0c3b38da7a832ff39cb737b5f60f3f241be622f6206410edc91abf772a79e21046e83a33955dc83fca8037d3543ad819558ef91b1dd7bb44facec1b2ebcf5bcad9cc3ae05461", 0x54}, {&(0x7f0000000340)="056ef0898ad1a4035906b053a729f7646ac342528725ce770f17f005261e1189089030b641f2931ae72d3ec1e0ec69475f1b8a13cc9547849236a4f02428c4c7143de73944ba3dcf479c1cc02daf97c6449bb7f68734324551cf818ac5fe3a0fdcbd5a5fadc13a2fb2287d3018a6e74159b2699521e1138ae3f8f1437946d947c2c4650569ba76af9a517830b05755f7e52c5e9eeabbe31c5b3f9bf7c6be56a77b740da09e08f4b0781f", 0xaa}], 0x4, 0x0, 0x0, 0x4040801}, 0x4000000)
syz_pidfd_open(r5, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x4a982, 0x0)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x101442, 0x0)
r7 = dup(r6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x13, r7, 0x0)
socket$alg(0x26, 0x5, 0x0)
r8 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip6_flowlabel\x00')
ioctl$AUTOFS_DEV_IOCTL_READY(r7, 0xc0189376, &(0x7f0000000440)={{0x1, 0x1, 0x18, <r9=>r8}, './file0\x00'})
r10 = syz_io_uring_setup(0x12f4, &(0x7f00000002c0)={0x0, 0x983a, 0xfe9b289c16a8ab1a, 0x2, 0xea}, &(0x7f0000000580)=<r11=>0x0, &(0x7f0000000540)=<r12=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r11, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r11, r12, &(0x7f00000005c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x51, 0x0, 0x80, 0x1, 0x0, 0x127, 0x0, 0x1, {0x2}})
io_uring_enter(r10, 0x3058, 0xdf5e, 0x7, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'echainiv(authenc(mcryptd(sha1-ni),ctr(cast5)))\x00'}, 0x2a)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="e6d3618b6ccc3314965a0fb1f24df2bd", 0x10)
sendto$l2tp(r9, &(0x7f00000004c0)="aaef3e27244c63de12e7da72c03cd71c75d5fbf71ff0cdef6d", 0x19, 0x80080d4, &(0x7f0000000500)={0x2, 0x0, @remote, 0x2}, 0x10)

8.063744583s ago: executing program 2 (id=454):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@delchain={0x168, 0x65, 0x2, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0xa}, {0x0, 0x1}, {0x0, 0xb}}, [@filter_kind_options=@f_cgroup={{0xb}, {0xf0, 0x2, [@TCA_CGROUP_ACT={0x80, 0x1, [@m_csum={0x7c, 0x4, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x101, 0xc03a, 0x4, 0x7, 0x1}, 0x5c}}]}, {0x33, 0x6, "e74670b59cabc7fa65697fe66a1ce059a1d20f485ae35387641d50a8c5c10c4c6cedb532531e5f7e635039fa9779c4"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}]}, @TCA_CGROUP_EMATCHES={0x6c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x18, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x14, 0x1, 0x0, 0x0, {{0x7, 0x2, 0xffff}, {0x4, 0x2, 0x2, "779c"}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfffb}}, @TCA_EMATCH_TREE_LIST={0x30, 0x2, 0x0, 0x1, [@TCF_EM_META={0x18, 0x2, 0x0, 0x0, {{0x0, 0x4, 0xb}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x26, 0x73, 0x1}, {0x1, 0xd6}}}]}}, @TCF_EM_CANID={0x14, 0x2, 0x0, 0x0, {{0x80, 0x7, 0x400}, {{0x4, 0x1, 0x0, 0x1}, {0x4, 0x1, 0x0, 0x1}}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6a}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x7}}]}]}}, @filter_kind_options=@f_flower={{0xb}, {0x3c, 0x2, [@TCA_FLOWER_KEY_ICMPV6_TYPE={0x5}, @TCA_FLOWER_KEY_ENC_UDP_DST_PORT={0x6}, @TCA_FLOWER_KEY_VLAN_PRIO={0x5, 0x18, 0x5}, @TCA_FLOWER_KEY_MPLS_OPTS={0x8, 0x63, 0x0, 0x1, @TCA_FLOWER_KEY_MPLS_OPTS_LSE={0x4}}, @TCA_FLOWER_KEY_IP_TTL_MASK={0x5, 0x4c, 0x1}, @TCA_FLOWER_KEY_ICMPV4_CODE_MASK={0x5}, @TCA_FLOWER_KEY_ENC_IP_TOS={0x5, 0x50, 0x2}]}}]}, 0x168}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x8, &(0x7f0000000600)=""/191, 0xbf, 0xa1ff}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400})

7.739006664s ago: executing program 3 (id=455):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x328000, 0x1000, 0x406}, 0x1c)

7.473472875s ago: executing program 2 (id=456):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='numa_maps\x00')
r1 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000040)={0xffffffffffffffff}, 0x4)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x11, r1, 0x0)
mbind(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, &(0x7f0000002580)=0x6, 0x4, 0x0)
get_mempolicy(&(0x7f0000000080), &(0x7f00000000c0), 0xc696, &(0x7f0000383000/0x4000)=nil, 0x3)
mbind(&(0x7f00001e7000/0x2000)=nil, 0x2000, 0x8003, &(0x7f0000000000)=0x9, 0x3, 0x2)
lseek(r0, 0x1000000, 0x0)

7.337705983s ago: executing program 3 (id=457):
socket$packet(0x11, 0x3, 0x300)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
socket$alg(0x26, 0x5, 0x0)
getsockopt$IP_SET_OP_GET_BYINDEX(0xffffffffffffffff, 0x1, 0x53, &(0x7f0000000100)={0x7, 0x7, 0x6}, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002100)='numa_maps\x00')
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc0100000000000000e2ff0000000000fe"], 0x0)
connect$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xa}, 0x20)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[], 0x38}, 0x1, 0x300}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x200, 0xffffffffffffffff}, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r6, 0x0, 0x40800)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_START(0xffffffffffffffff, 0x54a0)
socket$inet_smc(0x2b, 0x1, 0x0)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000200)=ANY=[@ANYBLOB="0600000004000000008000005c00000000000000", @ANYRES32, @ANYBLOB="00000000000000000000008000000000000000000000000000b46c562cddf12971e3fdf2397a35f699679da9a981967df706b010c3d85dc12d64d0339b90801bff64d664d4933f", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66b80e010f00d0b0060f21a20f01c40f009b2700000066b80c008ee00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a00b9730200000f32328fe858b660002fb90d090000b800680000ba000000000f30", 0x65}], 0x1, 0x0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

7.235826178s ago: executing program 4 (id=458):
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080), 0x0)
syz_open_dev$ttys(0xc, 0x2, 0x1)
r0 = socket$inet6(0xa, 0x3, 0x8)
setsockopt$inet6_int(r0, 0x29, 0x46, &(0x7f0000fcb000), 0x4)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r1, 0x0, 0xc8, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x1, 0x803, 0x0)
pipe(&(0x7f0000000100))
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0xf0ff, &(0x7f0000000140)={&(0x7f0000000580)=@newlink={0x44, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88adfda5}, [@IFLA_LINK={0x8, 0x5, r4}, @IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}]}, 0x44}}, 0x0)

7.057219683s ago: executing program 2 (id=459):
r0 = socket$netlink(0x10, 0x3, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4000840)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r2, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(0xffffffffffffffff, 0x80dc5521, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(des3_ede)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, 0x0, 0x0)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000540)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000000c0)="e4e32dd2b696733552eca3e954943a18709f72fbd259a936c67ebe806ab21823f4a0c47bff45323c2b30982dfc67b46cc9a5a07c33fc", 0xff6d}, {&(0x7f0000000100)="3a10bd003aba0c7026336b", 0xb}], 0x2, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x60}], 0x1, 0x8001)
recvmmsg(r4, &(0x7f0000001440)=[{{0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000001c0)=""/156, 0xff78}, {&(0x7f0000000300)=""/92, 0x33}], 0x2}}], 0x1, 0x0, 0x0)
write$vhost_msg_v2(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, {&(0x7f0000000040)=""/200, 0xc8, &(0x7f0000000540)=""/4096, 0x1, 0x2}}, 0x48)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000380)=<r5=>0x0)
syz_open_procfs$pagemap(r5, &(0x7f00000003c0))
r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r6, 0x4068aea3, &(0x7f00000004c0)={0x79, 0x0, 0x3})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000280)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee00}}, './file0\x00'})
ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4040aea0, &(0x7f0000000300)=@x86={0x4, 0x58, 0x9, 0x0, 0x4, 0x9, 0x0, 0x1, 0x1, 0xef, 0x83, 0x7, 0x0, 0x0, 0x2, 0x1, 0x9, 0x8, 0xa, '\x00', 0x7, 0x100000001})

5.711494999s ago: executing program 4 (id=460):
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000000)={&(0x7f0000000180)=[0x0], 0x0, 0x0, 0x0, 0x1})
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
syz_io_uring_setup(0x449c, &(0x7f0000000340)={0x0, 0x90a1, 0x2, 0x2, 0xa3}, 0x0, 0x0)
landlock_create_ruleset(&(0x7f00000000c0)={0x100}, 0x18, 0x0)
ioctl$FBIOBLANK(0xffffffffffffffff, 0x4611, 0x3)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
sendmsg$can_bcm(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000040)=ANY=[@ANYBLOB="0500"], 0x48}}, 0x0)
recvmmsg(r1, &(0x7f0000002240)=[{{&(0x7f0000000240)=@vsock={0x28, 0x0, 0x0, @local}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f00000002c0)=""/40, 0x28}, {&(0x7f0000000480)=""/22, 0x16}, {&(0x7f0000001580)=""/199, 0xc7}, {&(0x7f0000001680)=""/104, 0x68}, {&(0x7f0000001700)=""/177, 0xb1}, {&(0x7f00000017c0)=""/149, 0x95}], 0x7}, 0x9}, {{0x0, 0x0, &(0x7f0000001bc0)=[{&(0x7f0000001880)=""/3, 0x3}, {&(0x7f00000018c0)=""/207, 0x9}, {&(0x7f00000019c0)=""/138, 0x8a}, {&(0x7f0000001a80)=""/28, 0x1c}, {&(0x7f0000001ac0)=""/255, 0xff}], 0x5, &(0x7f0000001c00)=""/221, 0x2d}, 0x401}, {{&(0x7f0000001d00)=@ax25={{0x3, @netrom}, [@bcast, @rose, @default, @null, @default, @bcast, @netrom]}, 0x80, &(0x7f0000002200)=[{&(0x7f0000001d80)=""/181, 0xbb}, {&(0x7f0000001e40)=""/106, 0x6a}, {&(0x7f0000001ec0)=""/152, 0x98}, {&(0x7f0000001f80)=""/71, 0x47}, {&(0x7f0000002000)=""/88, 0x58}, {&(0x7f0000002080)=""/76, 0x4c}, {&(0x7f00000022c0)=""/254, 0xf7}], 0x7}, 0x6fda}], 0x3, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffff}, 0x0)
syz_usb_connect(0x0, 0x5f, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000b1f203401e0903003bd7010203010902"], 0x0)
lstat(0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1, 0xe, &(0x7f0000000380)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'veth0_to_batadv\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r5], 0x20}}, 0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r6, 0x8108551b, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)

5.479013515s ago: executing program 0 (id=461):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETCHAIN(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="2c200000040a0300000000000000000002000008090001"], 0x2c}, 0x1, 0x0, 0x0, 0x48840}, 0x0)

5.204309236s ago: executing program 1 (id=462):
socket(0x2, 0x2, 0xfffefffe)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000340), 0x228702, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
close(0x3)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r1, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @empty}], 0x1c)
sendto$inet6(r1, &(0x7f0000000500)="a4", 0x34000, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt(r0, 0x84, 0x80, &(0x7f00000002c0)="1af3050000f2bd5b", 0x8)
r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
socket(0xa, 0x3, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
bind$alg(0xffffffffffffffff, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$uinput_user_dev(r3, &(0x7f0000000400)={'syz1\x00', {0x3, 0x2, 0x6, 0xfffa}, 0xa, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x4d, 0x806, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x10000, 0x800, 0x3c5b, 0xffffffff, 0x24, 0xd, 0x1, 0x0, 0xffffffff, 0xe761, 0x4, 0x5, 0x3, 0xc, 0x4, 0x80000000, 0x242, 0x3, 0xe, 0x3, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8f, 0x6, 0x6, 0xc57, 0x5, 0x4, 0x3, 0x83ff, 0x80, 0x0, 0x5, 0x6, 0x1, 0x4, 0x10001, 0x40], [0x10000009, 0x9, 0x8000012f, 0x8004, 0x5, 0xfffffff5, 0x129432e6, 0xc8, 0xf9, 0x12, 0x2bf, 0x6ca, 0x9, 0xfffffffc, 0x100000, 0x0, 0xfffffffd, 0x5, 0x2f, 0xe, 0x312, 0x7c, 0xea4, 0x100, 0x4, 0x6, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0x1, 0x1, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x2, 0x4, 0xb, 0x4, 0x9, 0x7fffffff, 0x9, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0x7e78, 0x4dd3, 0x4, 0x9, 0x3, 0x5, 0x9, 0x1, 0x3, 0x3, 0xbc45, 0x48c93690, 0xfffffffc, 0x200003], [0x7, 0x408, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x4, 0x5, 0x0, 0x1ec, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x1, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x2, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0x9f, 0x7, 0x0, 0x5, 0x6, 0xac8, 0xc3, 0xb, 0x803, 0x7ff, 0x12b, 0x4, 0x1, 0x7ff, 0x0, 0x405, 0x1c, 0x120000, 0x2, 0x2006, 0x80a2ed, 0x4, 0x25], [0x8, 0xbb33, 0x7, 0xb, 0x5, 0x938, 0x6, 0xb, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x56, 0xfffffff2, 0x6bd8490e, 0x101, 0x10000, 0x80000001, 0x7fff, 0xffff, 0xa61e, 0x1, 0x5, 0x1, 0xfffffffe, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x400005, 0x4, 0xc8, 0x1, 0x5, 0x10000, 0x3, 0x7e, 0x101, 0x9602, 0x7, 0xaf, 0x8, 0x6, 0x229, 0x5, 0x5, 0x7, 0x30b1d696, 0xa1f, 0x40000f40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0xe, 0xb1e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

5.135985892s ago: executing program 0 (id=463):
socket(0x2, 0x2, 0xfffefffe)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000340), 0x228702, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
close(0x3)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r1, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @empty}], 0x1c)
sendto$inet6(r1, &(0x7f0000000500)="a4", 0x34000, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt(r0, 0x84, 0x80, &(0x7f00000002c0)="1af3050000f2bd5b", 0x8)
r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
socket(0xa, 0x3, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
bind$alg(0xffffffffffffffff, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$uinput_user_dev(r3, &(0x7f0000000400)={'syz1\x00', {0x3, 0x2, 0x6, 0xfffa}, 0xa, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x4d, 0x806, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x10000, 0x800, 0x3c5b, 0xffffffff, 0x24, 0xd, 0x1, 0x0, 0xffffffff, 0xe761, 0x4, 0x5, 0x3, 0xc, 0x4, 0x80000000, 0x242, 0x3, 0xe, 0x3, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8f, 0x6, 0x6, 0xc57, 0x5, 0x4, 0x3, 0x83ff, 0x80, 0x0, 0x5, 0x6, 0x1, 0x4, 0x10001, 0x40], [0x10000009, 0x9, 0x8000012f, 0x8004, 0x5, 0xfffffff5, 0x129432e6, 0xc8, 0xf9, 0x12, 0x2bf, 0x6ca, 0x9, 0xfffffffc, 0x100000, 0x0, 0xfffffffd, 0x5, 0x2f, 0xe, 0x312, 0x7c, 0xea4, 0x100, 0x4, 0x6, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0x1, 0x1, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x2, 0x4, 0xb, 0x4, 0x9, 0x7fffffff, 0x9, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0x7e78, 0x4dd3, 0x4, 0x9, 0x3, 0x5, 0x9, 0x1, 0x3, 0x3, 0xbc45, 0x48c93690, 0xfffffffc, 0x200003], [0x7, 0x408, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x4, 0x5, 0x0, 0x1ec, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x1, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x2, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0x9f, 0x7, 0x0, 0x5, 0x6, 0xac8, 0xc3, 0xb, 0x803, 0x7ff, 0x12b, 0x4, 0x1, 0x7ff, 0x0, 0x405, 0x1c, 0x120000, 0x2, 0x2006, 0x80a2ed, 0x4, 0x25], [0x8, 0xbb33, 0x7, 0xb, 0x5, 0x938, 0x6, 0xb, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x56, 0xfffffff2, 0x6bd8490e, 0x101, 0x10000, 0x80000001, 0x7fff, 0xffff, 0xa61e, 0x1, 0x5, 0x1, 0xfffffffe, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x400005, 0x4, 0xc8, 0x1, 0x5, 0x10000, 0x3, 0x7e, 0x101, 0x9602, 0x7, 0xaf, 0x8, 0x6, 0x229, 0x5, 0x5, 0x7, 0x30b1d696, 0xa1f, 0x40000f40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0xe, 0xb1e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

5.090956373s ago: executing program 3 (id=464):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ftruncate(0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x14, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @chandef_params]}, 0x3c}}, 0x0)

4.671382417s ago: executing program 3 (id=465):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r1, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x0, @local}, 0x2}}, 0x26)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x2, @multicast2}, 0x2, 0x0, 0x4}}, 0x2e)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/pids.max\x00', 0x2, 0x0)
write$cgroup_pid(r5, &(0x7f0000000000), 0x12)
r6 = socket(0x1e, 0x1, 0x0)
sendmsg$NL80211_CMD_SET_REG(r6, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)={0xdc, r4, 0x400, 0x70bd2b, 0x25dfdbff, {}, [@NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x5}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_RULES={0xb4, 0x22, 0x0, 0x1, [{0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x8}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0xfffffff7}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x6}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xffffffff}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x2}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x10001}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x8}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x5}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x3}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x1}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x8ae}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x401}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x2}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xfffffff6}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xc}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x447}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xfffffff9}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x2}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x5}]}]}]}, 0xdc}, 0x1, 0x0, 0x0, 0x20008801}, 0x428c0)
keyctl$link(0x8, 0x0, 0x0)
shutdown(r6, 0x2)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000180)={'wlan0\x00'})
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0f0026bd7000ff0000060066000000000004006700"/34], 0x28}, 0x1, 0x0, 0x0, 0x44010}, 0x40040)

4.57982094s ago: executing program 2 (id=466):
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x40100, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000280)={'vcan0\x00'})
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
syz_open_dev$vbi(0x0, 0x0, 0x2)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r3, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0xfffffffe, 0xb45, 0x9, 0x8, 0x4000, 0x3}, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
r5 = accept4(r4, 0x0, 0x0, 0x80000)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000200)="ad00"/14, 0xe)
sendmmsg$unix(r5, &(0x7f0000003dc0)=[{{&(0x7f0000000000)=@file={0xe85d0175109ed162, './file0\x00'}, 0x6e, 0x0}}, {{&(0x7f0000000280)=@file={0x0, './file0\x00'}, 0x6e, 0x0}}], 0x2, 0x20044800)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r6 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r6, &(0x7f0000000080)={0x1d, 0x0, 0x0, {0x0, 0x0, 0x4}}, 0x18)
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x450140, 0x0)
r7 = openat$rdma_cm(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000180)={<r8=>0xffffffffffffffff}, 0x106, 0xa}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r7, &(0x7f00000009c0)={0x13, 0x10, 0xfa00, {&(0x7f00000007c0), r8, 0x1}}, 0x18)
r9 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r9, 0x0, 0xca, &(0x7f0000000340)={0x0, 0x1, 0x0, 0x0, @vifc_lcl_addr=@rand_addr=0xc0586300, @private}, 0x10)
symlink(0x0, &(0x7f0000000380)='./file0\x00')
unshare(0x24020400)
unshare(0x22020400)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xb, 0x1c, &(0x7f0000000140)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf0900000000000055090100000000009500000000000000b7020020000000007b9a00fe00000000b6090800000000007b9af0ff0000000000f8ffffffbfa400000000000007040000f0ffffffb702000008000000182800"/132, @ANYRES32, @ANYBLOB="0000000000000000b7050000080000001500000076000000bf8f07000000369ca33638e678ad000000080000000000008500000007000000b7000000"], 0x0, 0x2, 0x0, 0x0, 0x40f00, 0x2c, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})

4.304029026s ago: executing program 3 (id=467):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@delchain={0x168, 0x65, 0x2, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0xa}, {0x0, 0x1}, {0x0, 0xb}}, [@filter_kind_options=@f_cgroup={{0xb}, {0xf0, 0x2, [@TCA_CGROUP_ACT={0x80, 0x1, [@m_csum={0x7c, 0x4, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x101, 0xc03a, 0x4, 0x7, 0x1}, 0x5c}}]}, {0x33, 0x6, "e74670b59cabc7fa65697fe66a1ce059a1d20f485ae35387641d50a8c5c10c4c6cedb532531e5f7e635039fa9779c4"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}]}, @TCA_CGROUP_EMATCHES={0x6c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x18, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x14, 0x1, 0x0, 0x0, {{0x7, 0x2, 0xffff}, {0x4, 0x2, 0x2, "779c"}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfffb}}, @TCA_EMATCH_TREE_LIST={0x30, 0x2, 0x0, 0x1, [@TCF_EM_META={0x18, 0x2, 0x0, 0x0, {{0x0, 0x4, 0xb}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x26, 0x73, 0x1}, {0x1, 0xd6}}}]}}, @TCF_EM_CANID={0x14, 0x2, 0x0, 0x0, {{0x80, 0x7, 0x400}, {{0x4, 0x1, 0x0, 0x1}, {0x4, 0x1, 0x0, 0x1}}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6a}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x7}}]}]}}, @filter_kind_options=@f_flower={{0xb}, {0x3c, 0x2, [@TCA_FLOWER_KEY_ICMPV6_TYPE={0x5}, @TCA_FLOWER_KEY_ENC_UDP_DST_PORT={0x6}, @TCA_FLOWER_KEY_VLAN_PRIO={0x5, 0x18, 0x5}, @TCA_FLOWER_KEY_MPLS_OPTS={0x8, 0x63, 0x0, 0x1, @TCA_FLOWER_KEY_MPLS_OPTS_LSE={0x4}}, @TCA_FLOWER_KEY_IP_TTL_MASK={0x5, 0x4c, 0x1}, @TCA_FLOWER_KEY_ICMPV4_CODE_MASK={0x5}, @TCA_FLOWER_KEY_ENC_IP_TOS={0x5, 0x50, 0x2}]}}]}, 0x168}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x8, &(0x7f0000000600)=""/191, 0xbf, 0xa1ff}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400})

3.793731219s ago: executing program 1 (id=468):
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_clone(0x21001000, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(r2, 0x0, 0x40000000, 0xffffffffffffffff)
socket$rds(0x15, 0x5, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x8010)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000600)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_ctr_aes256\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x80000)
rseq(0x0, 0x0, 0x1, 0x0)
syslog(0x3, &(0x7f0000000a00)=""/4091, 0xffb)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000940)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, 0x0, 0x0)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
r7 = syz_genetlink_get_family_id$fou(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$FOU_CMD_GET(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x5c, r7, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_PEER_PORT={0x6}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @local}, @FOU_ATTR_PEER_V6={0x14, 0x9, @mcast2}, @FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_IFINDEX={0x8}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e22}]}, 0x5c}}, 0x0)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0xfffd, 0x0, @remote, 0x9}, 0x1c)
syz_usb_connect(0x2, 0x1b, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000b063d4089c241c179ac501020301090209c795afb41000e5dbb3e77e8bf7530e166f65f2a7f04dfd1d594d498d7b2fdd87b1014b1d30f4e100e67f4f9d2d115ceee3fb400000000000000bf75ebb6d4eeb2f6bed54e2c9eae7215617801826b757026578e605fce1a3ffd349921cbcb28bd0ab48ed9e2e5ea9affe8746c5e783f1df0c02ee152d61aa00001dc95f9dd64ca364f180579ea1d4ec06d22e191c5cf5a4b2dd1a1ed1eafc53c403030b664be5746f639a71d8aabe8133951d6613c2707394dce5bf58fc9eadc4355c596956b8d13ac56e059b6f6056"], 0x0)
socket$igmp6(0xa, 0x3, 0x2)
syz_usb_connect(0x2, 0x9a2, &(0x7f0000000280)=ANY=[], 0x0)
socket(0x10, 0x3, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
socket$packet(0x11, 0x3, 0x300)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r8=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs, 0x6e)

3.263986129s ago: executing program 3 (id=469):
socket(0x10, 0x3, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x22042, 0x0) (async, rerun: 64)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0) (async, rerun: 64)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) (async)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x1000, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000240)=0x9) (async, rerun: 64)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async, rerun: 64)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
getuid() (async)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0) (async)
syz_usb_connect(0x0, 0x5f, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000b1f203401e0903003bd7010203010902"], 0x0) (async)
r0 = socket$kcm(0x2, 0x3, 0x2)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000200)={'bond0\x00', &(0x7f0000000640)=@ethtool_per_queue_op={0x4b, 0x1d, [0x4, 0x8, 0xfffffff1, 0x8, 0x0, 0x1, 0x3e9, 0x5, 0x9, 0x6, 0x5, 0x6, 0x7ff, 0x4, 0x4, 0x3ff, 0x4, 0x8, 0x2, 0x4, 0x9, 0x4, 0x8, 0x1, 0xfffffa0c, 0x7, 0x8, 0x9be, 0x3, 0x3ff, 0x6, 0x14dc, 0x147, 0x9, 0x1, 0x3, 0x1, 0x0, 0x9, 0x6, 0x7, 0x5, 0x4, 0xfffffffb, 0x8, 0x80000000, 0x9, 0x100, 0x5, 0x19dd, 0x7, 0x3ff, 0x586, 0x6, 0xf667, 0xfffffffc, 0x7, 0x8, 0x7f, 0x6, 0xc8, 0x6, 0x0, 0xc3, 0x4, 0x10, 0xffffffa8, 0x1, 0x9, 0x1, 0x1, 0x83, 0xe39, 0xcf, 0x10, 0x401, 0x7, 0x7, 0x2a, 0x71c9, 0x1, 0x321, 0xfffffeff, 0x7f, 0x66, 0x1c24, 0xff, 0x9, 0x4, 0x2, 0x3, 0xff, 0x100, 0x126, 0x6, 0x8, 0x40000000, 0xc, 0x4, 0x8, 0xffffffc0, 0x4, 0x10001, 0x5, 0x74a000, 0x4e27, 0x3ff, 0x0, 0x8356, 0x0, 0x6, 0x9b7, 0x1, 0x80000001, 0x7f, 0xea, 0x6, 0x80000000, 0xff, 0x7, 0x4da8e6f3, 0x5, 0x10001, 0x8, 0x69e4, 0x80000001, 0xfffffff4, 0x100]}}) (async)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4c00000010000d0400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002c00128009000100626f6e64000000001c000280050001000500000008000200", @ANYRES32=0x0, @ANYBLOB="080003"], 0x4c}}, 0x0)
r2 = socket$inet_smc(0x2b, 0x1, 0x0) (async)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r4 = fcntl$dupfd(r3, 0x0, r3)
write$sndseq(r4, &(0x7f0000000180)=[{0xff, 0x0, 0x0, 0x0, @tick=0x4, {}, {}, @result={0x1, 0x2}}, {0x0, 0x0, 0xff, 0x3, @tick=0xf27, {0x1}, {}, @addr={0x2a, 0x5}}], 0x38)
readv(r4, &(0x7f0000000000), 0x0)
ioctl$I2C_RDWR(r4, 0x707, &(0x7f00000001c0)={&(0x7f00000000c0)=[{0x1, 0x3800, 0x0, 0x0}, {0x9, 0x1, 0x0, &(0x7f0000001280)}], 0x2})
setsockopt$ARPT_SO_SET_REPLACE(r2, 0x0, 0x60, &(0x7f0000000e80)={'filter\x00', 0xb001, 0x4, 0x3b0, 0x0, 0x10c, 0x1f0, 0x2d0, 0x2d0, 0x2d0, 0x7fffffe, 0x0, {[{{@uncond, 0xbc, 0x10c}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@local, @rand_addr=0x64010101, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x2, 0x1}}}, {{@uncond, 0xbc, 0xe4, 0x0, {0x0, 0x1e03}}, @unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x46e, 0xfffc}}}, {{@uncond, 0xbc, 0xe0}, @unspec=@CLASSIFY={0x24, 'CLASSIFY\x00', 0x0, {0x31caf518}}}], {{'\x00', 0xbc, 0xe0}, {0x24}}}}, 0x3fc) (async)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0) (async)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)

2.240241361s ago: executing program 4 (id=470):
socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000001380), 0x5d, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r2 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
read$watch_queue(r3, &(0x7f0000000240)=""/232, 0xe8)
ioctl$VIDIOC_G_EXT_CTRLS(r2, 0xc0205649, &(0x7f00000000c0)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x98f907, 0x0, '\x00', @p_u8=&(0x7f0000000180)}})
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0xc0a85320, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140), 0x8417f, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
syz_open_dev$usbfs(0x0, 0x75, 0x40082)
socket(0x10, 0x3, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x8, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000a0400040000000000000000b7080000000000007baaf8ff00000000b5080000000000197b8af0ff00000000bfa100000000000007010000f83f00ffbfa400000000000007040000f0ffffffb70200000c00000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000300)='GPL\x00', 0x3, 0xff7, &(0x7f0000001e00)=""/4087, 0x40f00, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x227b, &(0x7f00000000c0))
syz_open_procfs(0x0, 0x0)
r5 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r5, 0x40045532, &(0x7f0000000100))
r6 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r6, 0x80045017, 0x0)
r7 = syz_open_dev$sndpcmp(&(0x7f0000001200), 0x0, 0xa2c65)
ioctl$SNDRV_PCM_IOCTL_DRAIN(r7, 0x4144, 0x0)

1.594250484s ago: executing program 2 (id=471):
fsopen(&(0x7f0000000000)='pipefs\x00', 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x8, 0x141101)
r2 = dup(r1)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001800)=ANY=[@ANYBLOB="2c000000180001002dbd70000000000002202000ff03c8080009000008001600ac1e000108001e001c000000"], 0x2c}, 0x1, 0x0, 0x0, 0x4008800}, 0x24040880)
write$6lowpan_enable(r2, &(0x7f0000000000)='1', 0x1)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002100)='numa_maps\x00')
read$FUSE(r4, &(0x7f0000002140)={0x2020, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x2020)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x40ead000)
madvise(&(0x7f0000130000/0xd000)=nil, 0xd000, 0x66)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x19)
sendmsg$unix(r4, &(0x7f0000000400)={&(0x7f00000000c0)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000000040)=[{&(0x7f0000000140)="68020d46669dbcb694b675aa025aef96781db0463c7c35cc9cbe99b9886e646161480b9b3a156959d11e66630848ab49cbec5cc334516dd1a289995bfb0aba6aeadd83f0eb083c6911b15d08b311cce27b700346c30dddc2711f9dc1374f7650dd0e782d35080c268173dd12e979bd1ea64c1da0a637990a28362a6fa91201e4a3b4fdacda35d119d20d47469a1549177c38e0ae9d392e8b6a72270c25f048233f6734e7547de0ba", 0xa8}, {&(0x7f0000000200)="e045db4e7c9b6e4907ab688f4174bf7acf52a8c74646e9642f647ce79d99be6928071900ee890cdd06b7a8d97cc66e049d89d370b8f7bdfd06638be503f93616e9e752e034064570ddd3abf2b287dd387ba9bb283a0f9df66ba54439d554b4c31e9a7c6064e99ed84891c5f6cb1f8479ec428177190cbe6d9bd46c44bb15f5701df3609dff9c3b7526689197901a044501ce4f52219e11eb13552d15525887898c4eab3e", 0xa4}, {&(0x7f00000002c0)="e81971a3831728de370fcbfa8efd0c3b38da7a832ff39cb737b5f60f3f241be622f6206410edc91abf772a79e21046e83a33955dc83fca8037d3543ad819558ef91b1dd7bb44facec1b2ebcf5bcad9cc3ae05461", 0x54}, {&(0x7f0000000340)="056ef0898ad1a4035906b053a729f7646ac342528725ce770f17f005261e1189089030b641f2931ae72d3ec1e0ec69475f1b8a13cc9547849236a4f02428c4c7143de73944ba3dcf479c1cc02daf97c6449bb7f68734324551cf818ac5fe3a0fdcbd5a5fadc13a2fb2287d3018a6e74159b2699521e1138ae3f8f1437946d947c2c4650569ba76af9a517830b05755f7e52c5e9eeabbe31c5b3f9bf7c6be56a77b740da09e08f4b0781f", 0xaa}], 0x4, 0x0, 0x0, 0x4040801}, 0x4000000)
syz_pidfd_open(r5, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x4a982, 0x0)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x101442, 0x0)
r7 = dup(r6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x13, r7, 0x0)
socket$alg(0x26, 0x5, 0x0)
r8 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip6_flowlabel\x00')
ioctl$AUTOFS_DEV_IOCTL_READY(r7, 0xc0189376, &(0x7f0000000440)={{0x1, 0x1, 0x18, <r9=>r8}, './file0\x00'})
r10 = syz_io_uring_setup(0x12f4, &(0x7f00000002c0)={0x0, 0x983a, 0xfe9b289c16a8ab1a, 0x2, 0xea}, &(0x7f0000000580)=<r11=>0x0, &(0x7f0000000540)=<r12=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r11, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r11, r12, &(0x7f00000005c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x51, 0x0, 0x80, 0x1, 0x0, 0x127, 0x0, 0x1, {0x2}})
io_uring_enter(r10, 0x3058, 0xdf5e, 0x7, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'echainiv(authenc(mcryptd(sha1-ni),ctr(cast5)))\x00'}, 0x2a)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="e6d3618b6ccc3314965a0fb1f24df2bd", 0x10)
sendto$l2tp(r9, &(0x7f00000004c0)="aaef3e27244c63de12e7da72c03cd71c75d5fbf71ff0cdef6d", 0x19, 0x80080d4, &(0x7f0000000500)={0x2, 0x0, @remote, 0x2}, 0x10)

1.537283984s ago: executing program 0 (id=472):
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc01cf509, &(0x7f0000000000)={0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x5d7})
r0 = socket$netlink(0x10, 0x3, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4000840)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r2, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(0xffffffffffffffff, 0x80dc5521, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
syz_usb_connect(0x3, 0x36, &(0x7f0000003580)=ANY=[@ANYBLOB="1201000052eb0840d107073aee44010a030109022400010000000009042d0001f92915000a2401ff0709020102cd9c8500443bc4aa40d90304f7b5d9f10905"], 0x0)
bind$alg(r3, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(des3_ede)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000c18000)="ad44b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000540)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000000c0)="e4e32dd2b696733552eca3e954943a18709f72fbd259a936c67ebe806ab21823f4a0c47bff45323c2b30982dfc67b46cc9a5a07c33fc", 0xff6d}, {&(0x7f0000000100)="3a10bd003aba0c7026336b", 0xb}], 0x2, &(0x7f0000000740)=ANY=[@ANYBLOB="300000000000000017e2ffff010000001800000045f43a7ce45002bdb85e47ab3e39597e422ffab456dd963a00000000180000000000000017010000040000000602000000400000180000000000000017010000030000000100000000000079240809000000ac87448793609bd8299d6dfc465829b711ce28eb8f568438917ebd0699be96bd1485f6aaa8486e00000000e301f2e09aebda6eeb1c61f96b6d3f91c0f8c1ffbb85cfdd5b8b437a3720ba4cdfb681516c3a240207b6bbdfb37747cc7411886fdba55bcbfa68226644556e8117f9f9fc5be3b7095b2ab7c19b0c6fada03a7f9b9172f0cc960ee263e82e3232edea82b9736d65309e0ad2922ecbb7cde9ce78555fabb941d114e83b37255d6b43b2927696e4f4cf3b23086021fe4e33d049de5318ef3803ceacddc02734c96a9765486a9bf8d65791b000000000000000000000000000000000000000009d97cea3f950d55b265e480ff02c27bda4848c64ca7dcbcd060b9c0dea483c6069d2cdc473cfacc9052cc2c9e3ee037042fd329173c5e7c9ef8800a51332df5a08602a72a553035711cb9159757303a5e7d389786df44441dc82a9d32c56db8a8b3578cd0faabfa23fb46e22b45a464e35315d8c2dd3fae8b530cf8eb0d8dcb682772bed766be5208e61eab965c6c9a217a4e13f0085626c0408f381205251c18a8f6a44"], 0x60}], 0x1, 0x8001)
recvmmsg(r4, &(0x7f0000001440)=[{{0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000001c0)=""/156, 0xff78}, {&(0x7f0000000300)=""/92, 0x33}], 0x2}}], 0x1, 0x0, 0x0)

246.108582ms ago: executing program 4 (id=473):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r0, &(0x7f0000000bc0)=[{{&(0x7f0000000000)={0xa, 0x0, 0x3, @dev={0xfe, 0x80, '\x00', 0x15}}, 0x1c, &(0x7f0000000440)=[{&(0x7f0000000500)='p', 0x1}], 0x1}}, {{&(0x7f00000000c0)={0xa, 0x4e25, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xc}, 0x1c, &(0x7f00000003c0)=[{&(0x7f0000001440)="95", 0x1}], 0x1}}], 0x2, 0x20000004) (async)
shutdown(r0, 0x1)
getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000040)=@assoc_value={0x0, 0x5}, &(0x7f0000000080)=0x8)

0s ago: executing program 4 (id=474):
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20004015}, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0x0, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb714000008"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x4, 0x200008, 0x8, 0x20000}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c", @ANYRES32=r0], 0x4c}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

kernel console output (not intermixed with test programs):

788][ T5852] usb 5-1: Product: syz
[  127.056885][ T5852] usb 5-1: Manufacturer: syz
[  127.086786][ T5852] usb 5-1: SerialNumber: syz
[  127.295971][ T5852] usb 5-1: config 0 descriptor??
[  127.319424][ T5852] usb 5-1: Could not find all expected endpoints
[  127.617375][   T24] usb 4-1: USB disconnect, device number 4
[  127.986056][ T5852] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  128.322285][ T5852] usb 3-1: config 0 has an invalid interface number: 45 but max is 0
[  128.553996][ T5852] usb 3-1: config 0 has an invalid descriptor of length 156, skipping remainder of the config
[  128.641962][ T5852] usb 3-1: config 0 has no interface number 0
[  128.664008][ T5852] usb 3-1: config 0 interface 45 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  128.794910][ T5852] usb 3-1: New USB device found, idVendor=07d1, idProduct=3a07, bcdDevice=44.ee
[  128.807273][ T5852] usb 3-1: New USB device strings: Mfr=1, Product=10, SerialNumber=3
[  128.825245][ T5852] usb 3-1: Product: syz
[  128.847391][ T5852] usb 3-1: Manufacturer: syz
[  128.859992][ T5852] usb 3-1: SerialNumber: syz
[  128.937566][ T5898] usb 5-1: USB disconnect, device number 4
[  129.163418][ T5852] usb 3-1: config 0 descriptor??
[  129.242653][ T5852] usb 3-1: Could not find all expected endpoints
[  129.906722][   T24] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  129.991166][ T5852] usb 2-1: USB disconnect, device number 5
[  130.100890][   T24] usb 5-1: config 0 has no interfaces?
[  130.121369][   T24] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  130.136866][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  130.176602][   T24] usb 5-1: Product: syz
[  130.218402][   T24] usb 5-1: Manufacturer: syz
[  130.255825][   T24] usb 5-1: SerialNumber: syz
[  130.272177][   T24] usb 5-1: config 0 descriptor??
[  130.355568][   T10] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  130.653378][   T10] usb 1-1: Using ep0 maxpacket: 8
[  130.726768][   T10] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  130.742886][   T10] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  130.767171][   T10] usb 1-1: config 1 has no interface number 1
[  130.869653][   T10] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  130.887326][   T10] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  130.893630][ T6188] mmap: syz.3.65 (6188) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  130.900473][   T10] usb 1-1: config 1 interface 2 has no altsetting 0
[  130.931541][   T10] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  130.964353][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  130.978568][   T10] usb 1-1: Product: syz
[  130.984671][   T10] usb 1-1: Manufacturer: syz
[  130.989820][   T10] usb 1-1: SerialNumber: syz
[  131.422668][   T10] usb 1-1: 2:1 : invalid UAC_AS_GENERAL desc
[  131.448314][   T10] usb 1-1: selecting invalid altsetting 0
[  131.644913][   T10] usb 1-1: USB disconnect, device number 7
[  132.086148][ T5898] usb 5-1: USB disconnect, device number 5
[  132.150513][ T5897] usb 3-1: USB disconnect, device number 5
[  132.365248][   T10] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  132.873759][   T10] usb 1-1: config 0 has no interfaces?
[  132.884943][ T6210] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  132.924773][   T10] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  133.021496][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.286468][ T5852] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  133.346340][   T10] usb 1-1: Product: syz
[  133.374184][   T10] usb 1-1: Manufacturer: syz
[  133.381853][   T10] usb 1-1: SerialNumber: syz
[  133.427592][   T10] usb 1-1: config 0 descriptor??
[  133.773794][ T5852] usb 3-1: config 0 has an invalid interface number: 45 but max is 0
[  133.788719][ T5852] usb 3-1: config 0 has an invalid descriptor of length 156, skipping remainder of the config
[  133.943640][   T48] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  133.961260][ T5852] usb 3-1: config 0 has no interface number 0
[  133.980255][ T5852] usb 3-1: config 0 interface 45 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  134.129646][   T48] usb 2-1: config 0 has no interfaces?
[  134.177624][ T5852] usb 3-1: New USB device found, idVendor=07d1, idProduct=3a07, bcdDevice=44.ee
[  134.265794][   T48] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  134.279285][   T48] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  134.289231][   T48] usb 2-1: Product: syz
[  134.298673][   T48] usb 2-1: Manufacturer: syz
[  134.303781][ T5852] usb 3-1: New USB device strings: Mfr=1, Product=10, SerialNumber=3
[  134.303817][ T5852] usb 3-1: Product: syz
[  134.303833][ T5852] usb 3-1: Manufacturer: syz
[  134.303849][ T5852] usb 3-1: SerialNumber: syz
[  134.358154][   T48] usb 2-1: SerialNumber: syz
[  134.423748][ T5852] usb 3-1: config 0 descriptor??
[  134.442210][   T48] usb 2-1: config 0 descriptor??
[  134.494553][ T5852] usb 3-1: Could not find all expected endpoints
[  135.396988][ T6226] program syz.3.74 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  135.411897][ T5896] usb 1-1: USB disconnect, device number 8
[  135.524192][ T6226] netlink: 16 bytes leftover after parsing attributes in process `syz.3.74'.
[  136.426853][ T5896] usb 2-1: USB disconnect, device number 6
[  136.708229][ T6240] netlink: 8 bytes leftover after parsing attributes in process `syz.4.79'.
[  137.289270][ T5852] usb 3-1: USB disconnect, device number 6
[  137.512778][ T6246] capability: warning: `syz.4.80' uses 32-bit capabilities (legacy support in use)
[  139.013718][   T10] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  139.083981][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  139.112514][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  139.361116][   T10] usb 4-1: config 0 has no interfaces?
[  139.383062][   T10] usb 4-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  139.404579][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  139.436018][   T10] usb 4-1: Product: syz
[  139.451344][   T10] usb 4-1: Manufacturer: syz
[  139.472099][   T10] usb 4-1: SerialNumber: syz
[  139.725039][   T10] usb 4-1: config 0 descriptor??
[  139.997127][ T6275] netlink: 'syz.2.86': attribute type 1 has an invalid length.
[  140.011265][   T30] audit: type=1326 audit(1744282637.905:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6245 comm="syz.4.80" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf741d579 code=0x0
[  141.067624][ T6286] netlink: 'syz.4.88': attribute type 9 has an invalid length.
[  142.356187][   T48] usb 4-1: USB disconnect, device number 5
[  142.553762][ T5896] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  142.771738][ T5896] usb 5-1: config 0 has no interfaces?
[  142.802340][ T5896] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  142.840380][ T5896] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  142.858283][ T5896] usb 5-1: Product: syz
[  142.878861][ T5896] usb 5-1: Manufacturer: syz
[  142.903710][ T5895] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  142.920143][ T5896] usb 5-1: SerialNumber: syz
[  142.940800][ T5896] usb 5-1: config 0 descriptor??
[  143.092446][ T5895] usb 2-1: config 0 has no interfaces?
[  143.117135][ T5895] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  143.133642][ T5895] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.149279][ T5895] usb 2-1: Product: syz
[  143.172010][ T5895] usb 2-1: Manufacturer: syz
[  143.191712][ T5895] usb 2-1: SerialNumber: syz
[  143.226784][ T5895] usb 2-1: config 0 descriptor??
[  143.237999][ T6309] netlink: 8 bytes leftover after parsing attributes in process `syz.3.96'.
[  143.938180][ T6323] dvmrp0: entered allmulticast mode
[  145.322535][   T24] usb 5-1: USB disconnect, device number 6
[  146.073945][ T6333] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  147.005178][ T5895] usb 2-1: USB disconnect, device number 7
[  147.353757][   T24] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  147.683398][   T24] usb 3-1: config 0 has no interfaces?
[  147.704771][   T24] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  147.723720][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.742751][   T24] usb 3-1: Product: syz
[  147.755337][   T24] usb 3-1: Manufacturer: syz
[  147.772335][   T24] usb 3-1: SerialNumber: syz
[  147.828503][   T24] usb 3-1: config 0 descriptor??
[  148.241646][   T30] audit: type=1326 audit(1744282646.195:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.0.99" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f96579 code=0x0
[  148.834970][ T5895] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  149.033936][ T5895] usb 5-1: config 0 has no interfaces?
[  149.045886][ T5895] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  149.056678][ T5895] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.088551][ T5895] usb 5-1: Product: syz
[  149.097559][ T5895] usb 5-1: Manufacturer: syz
[  149.113680][ T5895] usb 5-1: SerialNumber: syz
[  149.215159][ T5895] usb 5-1: config 0 descriptor??
[  149.971317][   T48] usb 3-1: USB disconnect, device number 7
[  149.985997][ T5896] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  150.299179][ T5896] usb 1-1: config 0 has no interfaces?
[  150.322146][ T5896] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  150.333434][ T5896] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  150.373093][ T5896] usb 1-1: Product: syz
[  150.378161][ T5896] usb 1-1: Manufacturer: syz
[  150.383346][ T5896] usb 1-1: SerialNumber: syz
[  150.408453][ T5896] usb 1-1: config 0 descriptor??
[  150.564397][   T48] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  151.105683][   T48] usb 3-1: config 0 has no interfaces?
[  151.136821][ T5895] usb 5-1: USB disconnect, device number 7
[  151.150808][   T48] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  151.249909][   T48] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.263759][ T5896] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  151.374327][   T48] usb 3-1: Product: syz
[  151.423635][   T48] usb 3-1: Manufacturer: syz
[  151.442093][ T5896] usb 2-1: config 0 has an invalid interface number: 45 but max is 0
[  151.450606][ T5896] usb 2-1: config 0 has an invalid descriptor of length 156, skipping remainder of the config
[  151.479761][   T48] usb 3-1: SerialNumber: syz
[  151.499526][ T5896] usb 2-1: config 0 has no interface number 0
[  151.529205][   T48] usb 3-1: config 0 descriptor??
[  151.547655][ T5896] usb 2-1: config 0 interface 45 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  151.564897][ T6387] netlink: 40 bytes leftover after parsing attributes in process `syz.4.115'.
[  151.665318][ T5896] usb 2-1: New USB device found, idVendor=07d1, idProduct=3a07, bcdDevice=44.ee
[  151.719977][ T5896] usb 2-1: New USB device strings: Mfr=1, Product=10, SerialNumber=3
[  151.747745][ T5896] usb 2-1: Product: syz
[  151.756889][ T5896] usb 2-1: Manufacturer: syz
[  151.769795][ T5896] usb 2-1: SerialNumber: syz
[  151.793111][ T5896] usb 2-1: config 0 descriptor??
[  151.822854][ T5896] usb 2-1: Could not find all expected endpoints
[  152.659895][ T5896] usb 1-1: USB disconnect, device number 9
[  153.715791][ T5895] usb 3-1: USB disconnect, device number 8
[  153.767711][ T5896] usb 2-1: USB disconnect, device number 8
[  154.399279][ T5895] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  154.432388][ T6412] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  154.440055][ T6412] IPv6: NLM_F_CREATE should be set when creating new route
[  154.603717][ T5852] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  154.750724][ T5895] usb 2-1: config 0 has no interfaces?
[  154.818363][ T5895] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  154.960404][ T5895] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  155.055695][ T5895] usb 2-1: Product: syz
[  155.135799][ T5852] usb 1-1: config 0 has an invalid interface number: 45 but max is 0
[  155.154164][ T5895] usb 2-1: Manufacturer: syz
[  155.208116][ T5852] usb 1-1: config 0 has an invalid descriptor of length 156, skipping remainder of the config
[  155.243778][ T5895] usb 2-1: SerialNumber: syz
[  155.283403][ T6426] netlink: 'syz.4.126': attribute type 1 has an invalid length.
[  155.353186][ T5852] usb 1-1: config 0 has no interface number 0
[  155.384891][ T5895] usb 2-1: config 0 descriptor??
[  155.476645][ T6426] 8021q: adding VLAN 0 to HW filter on device bond1
[  155.486760][ T6426] netlink: 8 bytes leftover after parsing attributes in process `syz.4.126'.
[  155.636122][ T5852] usb 1-1: config 0 interface 45 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  155.673820][   T48] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  155.784590][ T5852] usb 1-1: New USB device found, idVendor=07d1, idProduct=3a07, bcdDevice=44.ee
[  155.817006][ T5852] usb 1-1: New USB device strings: Mfr=1, Product=10, SerialNumber=3
[  155.856690][ T5852] usb 1-1: Product: syz
[  155.877577][   T48] usb 3-1: Using ep0 maxpacket: 8
[  155.885962][   T48] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  155.901978][   T48] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  155.947901][ T5852] usb 1-1: Manufacturer: syz
[  155.959740][ T6430] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  155.968360][   T48] usb 3-1: config 1 has no interface number 1
[  155.968574][   T48] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  155.975356][ T6430] IPv6: NLM_F_CREATE should be set when creating new route
[  155.977112][ T5852] usb 1-1: SerialNumber: syz
[  156.039298][   T48] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  156.166335][   T48] usb 3-1: config 1 interface 2 has no altsetting 0
[  156.190928][   T48] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  156.202129][   T48] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  156.247069][   T48] usb 3-1: Product: syz
[  156.252443][   T48] usb 3-1: Manufacturer: syz
[  156.282588][   T48] usb 3-1: SerialNumber: syz
[  156.296887][ T5852] usb 1-1: config 0 descriptor??
[  156.427166][ T5852] usb 1-1: Could not find all expected endpoints
[  156.584717][   T48] usb 3-1: 2:1 : invalid UAC_AS_GENERAL desc
[  156.601742][   T48] usb 3-1: selecting invalid altsetting 0
[  156.877049][   T48] usb 3-1: USB disconnect, device number 9
[  157.239030][ T6209] udevd[6209]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  157.473820][   T10] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  157.917842][   T10] usb 5-1: config 0 has no interfaces?
[  158.044775][   T10] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  158.058448][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  158.120754][   T10] usb 5-1: Product: syz
[  158.186069][ T5852] usb 2-1: USB disconnect, device number 9
[  158.206102][   T10] usb 5-1: Manufacturer: syz
[  158.386677][   T10] usb 5-1: SerialNumber: syz
[  158.424621][   T48] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  158.449511][   T10] usb 5-1: config 0 descriptor??
[  158.597481][ T5896] usb 1-1: USB disconnect, device number 10
[  158.797848][   T48] usb 4-1: config 0 has an invalid interface number: 45 but max is 0
[  158.836502][   T48] usb 4-1: config 0 has an invalid descriptor of length 156, skipping remainder of the config
[  158.846611][ T5852] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  158.856793][   T48] usb 4-1: config 0 has no interface number 0
[  159.054680][   T48] usb 4-1: config 0 interface 45 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  159.081918][ T5852] usb 2-1: config 0 has no interfaces?
[  159.100947][   T48] usb 4-1: New USB device found, idVendor=07d1, idProduct=3a07, bcdDevice=44.ee
[  159.111156][   T48] usb 4-1: New USB device strings: Mfr=1, Product=10, SerialNumber=3
[  159.123364][   T48] usb 4-1: Product: syz
[  159.129151][   T48] usb 4-1: Manufacturer: syz
[  159.134674][   T48] usb 4-1: SerialNumber: syz
[  159.142053][   T48] usb 4-1: config 0 descriptor??
[  159.151415][ T5852] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  159.153825][   T48] usb 4-1: Could not find all expected endpoints
[  159.190541][ T5852] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  159.221674][ T5852] usb 2-1: Product: syz
[  159.284010][ T5852] usb 2-1: Manufacturer: syz
[  159.346994][ T5852] usb 2-1: SerialNumber: syz
[  159.575043][ T5852] usb 2-1: config 0 descriptor??
[  159.866271][ T6448] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  160.096304][ T6448] batman_adv: batadv0: Removing interface: batadv_slave_0
[  160.452643][ T5895] usb 5-1: USB disconnect, device number 8
[  161.093652][ T5895] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  161.273069][ T5895] usb 5-1: config 0 has an invalid interface number: 45 but max is 0
[  161.284116][ T5896] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  161.315729][ T5895] usb 5-1: config 0 has an invalid descriptor of length 156, skipping remainder of the config
[  161.388907][ T5895] usb 5-1: config 0 has no interface number 0
[  161.422598][ T5895] usb 5-1: config 0 interface 45 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  161.487772][ T5896] usb 3-1: config 0 has no interfaces?
[  161.515429][ T5896] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  161.549650][ T5898] usb 4-1: USB disconnect, device number 6
[  161.604603][ T5896] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.657650][ T5896] usb 3-1: Product: syz
[  161.687464][ T5895] usb 5-1: New USB device found, idVendor=07d1, idProduct=3a07, bcdDevice=44.ee
[  161.710399][ T5896] usb 3-1: Manufacturer: syz
[  161.731052][ T5896] usb 3-1: SerialNumber: syz
[  161.748904][ T5895] usb 5-1: New USB device strings: Mfr=1, Product=10, SerialNumber=3
[  161.760094][ T5896] usb 3-1: config 0 descriptor??
[  161.800892][ T5895] usb 5-1: Product: syz
[  161.812283][ T6470] netlink: 28 bytes leftover after parsing attributes in process `syz.0.148'.
[  161.829071][ T5895] usb 5-1: Manufacturer: syz
[  161.852686][ T5895] usb 5-1: SerialNumber: syz
[  161.896360][ T5895] usb 5-1: config 0 descriptor??
[  162.347513][ T5852] usb 2-1: USB disconnect, device number 10
[  162.463261][ T5895] usb 5-1: Could not find all expected endpoints
[  162.493630][   T48] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  163.068045][   T48] usb 4-1: config 0 has no interfaces?
[  163.084972][   T48] usb 4-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  163.096530][   T48] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  163.105481][   T48] usb 4-1: Product: syz
[  163.112454][   T48] usb 4-1: Manufacturer: syz
[  163.247854][   T48] usb 4-1: SerialNumber: syz
[  163.255302][   T48] usb 4-1: config 0 descriptor??
[  164.043706][ T5898] usb 5-1: USB disconnect, device number 9
[  164.590388][ T5898] usb 3-1: USB disconnect, device number 10
[  164.881622][ T5897] usb 4-1: USB disconnect, device number 7
[  165.744408][ T5897] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  166.011824][ T5897] usb 3-1: config 0 has no interfaces?
[  166.022749][ T5897] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  166.138485][ T5897] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  166.222374][ T5897] usb 3-1: Product: syz
[  166.262980][ T5897] usb 3-1: Manufacturer: syz
[  166.271378][ T5897] usb 3-1: SerialNumber: syz
[  166.273740][ T5852] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  166.294686][ T5897] usb 3-1: config 0 descriptor??
[  166.433669][ T5852] usb 5-1: Using ep0 maxpacket: 8
[  166.510070][ T5852] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  166.641300][ T5852] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  166.696951][ T5852] usb 5-1: config 1 has no interface number 1
[  166.711643][ T5852] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  166.756480][ T5852] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  166.810166][ T5852] usb 5-1: config 1 interface 2 has no altsetting 0
[  166.841142][ T5852] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  166.869547][ T5852] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  166.889914][ T5852] usb 5-1: Product: syz
[  166.908167][ T5852] usb 5-1: Manufacturer: syz
[  166.923370][ T5852] usb 5-1: SerialNumber: syz
[  167.155061][ T5852] usb 5-1: 2:1 : invalid UAC_AS_GENERAL desc
[  167.161474][ T5852] usb 5-1: selecting invalid altsetting 0
[  167.775180][ T5852] usb 5-1: USB disconnect, device number 10
[  168.313754][ T5852] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  168.793664][   T24] usb 3-1: USB disconnect, device number 11
[  168.948464][ T5852] usb 5-1: config 0 has no interfaces?
[  168.968122][ T5852] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  168.995835][ T5852] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  169.012412][ T5852] usb 5-1: Product: syz
[  169.033751][ T5852] usb 5-1: Manufacturer: syz
[  169.139716][ T5852] usb 5-1: SerialNumber: syz
[  169.535771][ T5852] usb 5-1: config 0 descriptor??
[  169.624402][ T6209] udevd[6209]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  170.543653][ T5895] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  170.713633][ T5895] usb 4-1: Using ep0 maxpacket: 8
[  170.726114][ T5895] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  170.766994][ T5895] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  170.833855][ T5895] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  170.845053][ T5895] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  170.858910][ T5895] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  170.869055][ T5895] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.264118][   T24] usb 5-1: USB disconnect, device number 11
[  172.308554][ T5897] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  172.712297][ T5897] usb 5-1: config 0 has no interfaces?
[  173.069122][ T5897] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  173.154207][ T5895] usb 4-1: usb_control_msg returned -71
[  173.160291][ T5895] usbtmc 4-1:16.0: can't read capabilities
[  173.211590][ T5897] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  173.229313][ T5897] usb 5-1: Product: syz
[  173.249655][ T5897] usb 5-1: Manufacturer: syz
[  173.259914][ T5897] usb 5-1: SerialNumber: syz
[  173.262518][ T5895] usb 4-1: USB disconnect, device number 8
[  173.276627][ T5897] usb 5-1: config 0 descriptor??
[  173.284222][ T6559] netlink: 'syz.3.156': attribute type 1 has an invalid length.
[  173.578978][ T6560] 8021q: adding VLAN 0 to HW filter on device bond1
[  174.553289][ T6567] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  174.560963][ T6567] IPv6: NLM_F_CREATE should be set when creating new route
[  176.320014][ T5897] usb 5-1: USB disconnect, device number 12
[  177.344453][ T5897] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  177.702374][ T5897] usb 5-1: config 0 has no interfaces?
[  178.229682][ T5897] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  178.258322][ T5897] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  178.398941][ T5897] usb 5-1: Product: syz
[  178.403560][ T5897] usb 5-1: Manufacturer: syz
[  178.418848][ T5897] usb 5-1: SerialNumber: syz
[  178.431269][ T5897] usb 5-1: config 0 descriptor??
[  179.383864][ T5897] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  179.640516][ T5897] usb 4-1: config 0 has no interfaces?
[  179.868419][ T5897] usb 4-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  179.889161][ T5897] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.933873][ T5897] usb 4-1: Product: syz
[  179.963812][ T5897] usb 4-1: Manufacturer: syz
[  180.002124][ T5897] usb 4-1: SerialNumber: syz
[  180.054702][ T5897] usb 4-1: config 0 descriptor??
[  181.097654][   T48] usb 5-1: USB disconnect, device number 13
[  182.062609][ T6626] netlink: 'syz.1.171': attribute type 1 has an invalid length.
[  182.238376][   T48] usb 4-1: USB disconnect, device number 9
[  182.264162][ T6628] 8021q: adding VLAN 0 to HW filter on device bond1
[  183.005741][   T48] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  183.035059][ T5852] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  183.166336][   T48] usb 5-1: config 0 has no interfaces?
[  183.174729][   T48] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  183.188547][   T48] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.197328][   T48] usb 5-1: Product: syz
[  183.204203][   T48] usb 5-1: Manufacturer: syz
[  183.207022][ T5852] usb 2-1: config 0 has no interfaces?
[  183.217348][   T48] usb 5-1: SerialNumber: syz
[  183.228219][ T5852] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  183.228992][   T48] usb 5-1: config 0 descriptor??
[  183.246367][ T5852] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.297252][ T5852] usb 2-1: Product: syz
[  183.313257][ T5852] usb 2-1: Manufacturer: syz
[  183.331693][ T5852] usb 2-1: SerialNumber: syz
[  183.379091][ T5852] usb 2-1: config 0 descriptor??
[  183.783082][ T6648] FAULT_INJECTION: forcing a failure.
[  183.783082][ T6648] name failslab, interval 1, probability 0, space 0, times 1
[  183.848777][ T6648] CPU: 1 UID: 0 PID: 6648 Comm: syz.0.178 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  183.848811][ T6648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  183.848831][ T6648] Call Trace:
[  183.848840][ T6648]  <TASK>
[  183.848849][ T6648]  dump_stack_lvl+0x241/0x360
[  183.848889][ T6648]  ? __pfx_dump_stack_lvl+0x10/0x10
[  183.848918][ T6648]  ? __pfx__printk+0x10/0x10
[  183.848940][ T6648]  ? do_raw_spin_lock+0x151/0x370
[  183.848980][ T6648]  should_fail_ex+0x424/0x570
[  183.849007][ T6648]  should_failslab+0xac/0x100
[  183.849037][ T6648]  kmem_cache_alloc_node_noprof+0x7d/0x3b0
[  183.849065][ T6648]  ? __alloc_skb+0x1c2/0x480
[  183.849089][ T6648]  __alloc_skb+0x1c2/0x480
[  183.849105][ T6648]  ? __lock_acquire+0xad5/0xd80
[  183.849129][ T6648]  ? __pfx___alloc_skb+0x10/0x10
[  183.849157][ T6648]  tipc_msg_reverse+0x246/0x9d0
[  183.849179][ T6648]  ? net_generic+0x1f/0x240
[  183.849216][ T6648]  tipc_sk_rcv+0x19be/0x1d10
[  183.849278][ T6648]  ? __pfx_tipc_sk_rcv+0x10/0x10
[  183.849320][ T6648]  ? tipc_loopback_trace+0x48/0x1b0
[  183.849348][ T6648]  ? __raw_spin_lock_init+0x45/0x100
[  183.849377][ T6648]  tipc_node_xmit+0x1d1/0xf00
[  183.849397][ T6648]  ? tipc_msg_build+0x437/0x1050
[  183.849420][ T6648]  ? __copy_skb_header+0xa7/0x5a0
[  183.849441][ T6648]  ? __asan_memcpy+0x40/0x70
[  183.849458][ T6648]  ? __pfx_tipc_node_xmit+0x10/0x10
[  183.849477][ T6648]  ? __skb_clone+0x5c/0x6d0
[  183.849503][ T6648]  ? __skb_clone+0x457/0x6d0
[  183.849539][ T6648]  ? tipc_msg_skb_clone+0x2db/0x340
[  183.849570][ T6648]  __tipc_sendmsg+0x250e/0x3490
[  183.849613][ T6648]  ? __pfx___tipc_sendmsg+0x10/0x10
[  183.849642][ T6648]  ? _parse_integer_limit+0x1b4/0x200
[  183.849672][ T6648]  ? kstrtoull+0x1d3/0x2f0
[  183.849696][ T6648]  ? __pfx_kstrtoull+0x10/0x10
[  183.849731][ T6648]  ? kstrtouint+0xfc/0x190
[  183.849753][ T6648]  ? look_up_lock_class+0x7b/0x170
[  183.849786][ T6648]  ? register_lock_class+0x54/0x330
[  183.849813][ T6648]  ? __lock_acquire+0xad5/0xd80
[  183.849858][ T6648]  ? __local_bh_enable_ip+0x168/0x200
[  183.849878][ T6648]  ? __pfx_woken_wake_function+0x10/0x10
[  183.849900][ T6648]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  183.849926][ T6648]  ? iov_iter_kvec+0x4e/0x180
[  183.849954][ T6648]  tipc_connect+0x56c/0x7a0
[  183.849977][ T6648]  ? __pfx_tipc_connect+0x10/0x10
[  183.849995][ T6648]  ? aa_sk_perm+0x96f/0xac0
[  183.850028][ T6648]  ? __pfx_aa_sk_perm+0x10/0x10
[  183.850066][ T6648]  __sys_connect+0x28c/0x2d0
[  183.850094][ T6648]  ? __fget_files+0x2a/0x420
[  183.850113][ T6648]  ? __pfx___sys_connect+0x10/0x10
[  183.850167][ T6648]  __ia32_sys_connect+0x7a/0x90
[  183.850196][ T6648]  __do_fast_syscall_32+0xb4/0x110
[  183.850219][ T6648]  ? exc_page_fault+0x5f8/0x920
[  183.850247][ T6648]  do_fast_syscall_32+0x34/0x80
[  183.850270][ T6648]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  183.850294][ T6648] RIP: 0023:0xf7f96579
[  183.850313][ T6648] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  183.850329][ T6648] RSP: 002b:00000000f50b655c EFLAGS: 00000206 ORIG_RAX: 000000000000016a
[  183.850352][ T6648] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040
[  183.850365][ T6648] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  183.850376][ T6648] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  183.850387][ T6648] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  183.850397][ T6648] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  183.850428][ T6648]  </TASK>
[  184.843683][   T48] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  185.013815][   T48] usb 3-1: Using ep0 maxpacket: 32
[  185.035781][   T48] usb 3-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[  185.046254][   T48] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  185.057828][   T48] usb 3-1: Product: syz
[  185.062822][   T48] usb 3-1: Manufacturer: syz
[  185.069791][   T48] usb 3-1: SerialNumber: syz
[  185.083182][   T48] usb 3-1: config 0 descriptor??
[  185.340062][   T48] RobotFuzz Open Source InterFace, OSIF 3-1:0.0: failure sending bit rate
[  185.352217][   T48] RobotFuzz Open Source InterFace, OSIF 3-1:0.0: probe with driver RobotFuzz Open Source InterFace, OSIF failed with error -71
[  185.387297][   T48] usb 3-1: USB disconnect, device number 12
[  185.590921][ T5852] usb 2-1: USB disconnect, device number 11
[  185.681074][ T5895] usb 5-1: USB disconnect, device number 14
[  185.943235][ T6666] netlink: 'syz.1.183': attribute type 11 has an invalid length.
[  186.353677][ T5895] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  186.513622][ T5895] usb 5-1: Using ep0 maxpacket: 8
[  186.523641][ T5895] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  186.535482][ T5895] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  186.545608][ T5895] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  186.558909][ T5895] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  186.572958][ T5895] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  186.582844][ T5895] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  186.625778][ T6676] netlink: 'syz.1.186': attribute type 1 has an invalid length.
[  186.713454][ T6676] 8021q: adding VLAN 0 to HW filter on device bond2
[  187.756121][   T48] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  187.826105][ T6690] netlink: 'syz.3.191': attribute type 10 has an invalid length.
[  187.836478][ T6690] bridge0: port 2(bridge_slave_1) entered disabled state
[  187.845880][ T6690] bridge0: port 1(bridge_slave_0) entered disabled state
[  187.871812][ T6690] bridge0: port 2(bridge_slave_1) entered blocking state
[  187.879260][ T6690] bridge0: port 2(bridge_slave_1) entered forwarding state
[  187.887997][ T6690] bridge0: port 1(bridge_slave_0) entered blocking state
[  187.895726][ T6690] bridge0: port 1(bridge_slave_0) entered forwarding state
[  187.929264][ T6690] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  187.950736][   T48] usb 2-1: config 0 has no interfaces?
[  187.988297][   T48] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  188.033888][ T5895] usb 5-1: usb_control_msg returned -71
[  188.033937][   T48] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  188.039782][ T5895] usbtmc 5-1:16.0: can't read capabilities
[  188.083280][   T48] usb 2-1: Product: syz
[  188.109332][   T48] usb 2-1: Manufacturer: syz
[  188.124201][   T48] usb 2-1: SerialNumber: syz
[  188.152968][ T5895] usb 5-1: USB disconnect, device number 15
[  188.156240][   T48] usb 2-1: config 0 descriptor??
[  188.483758][   T48] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  188.594852][ T5895] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  188.649274][   T48] usb 1-1: config 0 has no interfaces?
[  188.653722][ T5898] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  188.669398][   T48] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  188.679200][   T48] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  188.688428][   T48] usb 1-1: Product: syz
[  188.693005][   T48] usb 1-1: Manufacturer: syz
[  188.697978][   T48] usb 1-1: SerialNumber: syz
[  188.708803][   T48] usb 1-1: config 0 descriptor??
[  188.757459][ T5895] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  188.770258][ T5895] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  188.783448][ T5895] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  188.802552][ T5898] usb 4-1: device descriptor read/64, error -71
[  188.810201][ T5895] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  188.822156][ T5895] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.834915][ T5895] usb 5-1: config 0 descriptor??
[  189.064116][ T5898] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  189.214593][ T5898] usb 4-1: device descriptor read/64, error -71
[  189.257007][ T5895] plantronics 0003:047F:FFFF.0001: item fetching failed at offset 14/15
[  189.267376][ T5895] plantronics 0003:047F:FFFF.0001: parse failed
[  189.274305][ T5895] plantronics 0003:047F:FFFF.0001: probe with driver plantronics failed with error -22
[  189.381730][ T5898] usb usb4-port1: attempt power cycle
[  189.773639][ T5898] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  189.807811][ T5898] usb 4-1: device descriptor read/8, error -71
[  190.041562][ T5852] usb 5-1: USB disconnect, device number 16
[  190.054003][ T5898] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  190.086526][ T5898] usb 4-1: device descriptor read/8, error -71
[  190.406463][ T5898] usb usb4-port1: unable to enumerate USB device
[  190.442896][ T5930] usb 2-1: USB disconnect, device number 12
[  190.610483][ T6712] netlink: 'syz.4.197': attribute type 1 has an invalid length.
[  190.673183][ T6716] 8021q: adding VLAN 0 to HW filter on device bond2
[  190.983000][ T6726] FAULT_INJECTION: forcing a failure.
[  190.983000][ T6726] name failslab, interval 1, probability 0, space 0, times 0
[  191.181702][ T6726] CPU: 0 UID: 0 PID: 6726 Comm: syz.4.202 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  191.181734][ T6726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  191.181745][ T6726] Call Trace:
[  191.181752][ T6726]  <TASK>
[  191.181770][ T6726]  dump_stack_lvl+0x241/0x360
[  191.181803][ T6726]  ? __pfx_dump_stack_lvl+0x10/0x10
[  191.181820][ T6726]  ? __pfx__printk+0x10/0x10
[  191.181839][ T6726]  ? ref_tracker_alloc+0x316/0x4c0
[  191.181855][ T6726]  should_fail_ex+0x424/0x570
[  191.181870][ T6726]  should_failslab+0xac/0x100
[  191.181889][ T6726]  kmem_cache_alloc_noprof+0x78/0x390
[  191.181905][ T6726]  ? skb_clone+0x20c/0x390
[  191.181921][ T6726]  skb_clone+0x20c/0x390
[  191.181936][ T6726]  __netlink_deliver_tap+0x3c4/0x7f0
[  191.181960][ T6726]  ? netlink_deliver_tap+0x2e/0x1b0
[  191.181974][ T6726]  netlink_deliver_tap+0x19d/0x1b0
[  191.181991][ T6726]  netlink_sendskb+0x68/0x140
[  191.182006][ T6726]  netlink_unicast+0x39f/0x9a0
[  191.182018][ T6726]  ? __asan_memcpy+0x40/0x70
[  191.182035][ T6726]  ? __pfx_netlink_unicast+0x10/0x10
[  191.182056][ T6726]  netlink_rcv_skb+0x296/0x480
[  191.182072][ T6726]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  191.182096][ T6726]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  191.182141][ T6726]  ? netlink_deliver_tap+0x2e/0x1b0
[  191.182169][ T6726]  xfrm_netlink_rcv+0x79/0x90
[  191.182193][ T6726]  netlink_unicast+0x7f8/0x9a0
[  191.182226][ T6726]  ? __pfx_netlink_unicast+0x10/0x10
[  191.182252][ T6726]  ? skb_put+0x114/0x1f0
[  191.182275][ T6726]  netlink_sendmsg+0x8c3/0xcd0
[  191.182308][ T6726]  ? __pfx_netlink_sendmsg+0x10/0x10
[  191.182327][ T6726]  ? __import_iovec+0x585/0x830
[  191.182341][ T6726]  ? aa_sock_msg_perm+0x91/0x160
[  191.182361][ T6726]  ? __pfx_netlink_sendmsg+0x10/0x10
[  191.182376][ T6726]  __sock_sendmsg+0x221/0x270
[  191.182394][ T6726]  ____sys_sendmsg+0x523/0x860
[  191.182414][ T6726]  ? __pfx_____sys_sendmsg+0x10/0x10
[  191.182436][ T6726]  __sys_sendmsg+0x271/0x360
[  191.182452][ T6726]  ? __pfx___sys_sendmsg+0x10/0x10
[  191.182496][ T6726]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  191.182513][ T6726]  ? lockdep_hardirqs_on+0x9d/0x150
[  191.182528][ T6726]  __do_fast_syscall_32+0xb4/0x110
[  191.182542][ T6726]  ? exc_page_fault+0x5f8/0x920
[  191.182558][ T6726]  do_fast_syscall_32+0x34/0x80
[  191.182572][ T6726]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  191.182586][ T6726] RIP: 0023:0xf741d579
[  191.182598][ T6726] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  191.182608][ T6726] RSP: 002b:00000000f50a655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  191.182623][ T6726] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000380
[  191.182631][ T6726] RDX: 00000000000000d0 RSI: 0000000000000000 RDI: 0000000000000000
[  191.182638][ T6726] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  191.182644][ T6726] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  191.182651][ T6726] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  191.182668][ T6726]  </TASK>
[  191.532409][ T6730] netlink: 'syz.1.201': attribute type 18 has an invalid length.
[  191.879302][ T5897] usb 1-1: USB disconnect, device number 11
[  193.050333][ T6758] netlink: 'syz.2.211': attribute type 1 has an invalid length.
[  193.147326][ T6762] 8021q: adding VLAN 0 to HW filter on device bond1
[  193.753627][ T5852] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  193.911465][ T6771] FAULT_INJECTION: forcing a failure.
[  193.911465][ T6771] name failslab, interval 1, probability 0, space 0, times 0
[  193.935502][ T5852] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  193.954650][ T5852] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  193.973762][ T6771] CPU: 1 UID: 0 PID: 6771 Comm: syz.2.216 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  193.973785][ T6771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  193.973792][ T6771] Call Trace:
[  193.973798][ T6771]  <TASK>
[  193.973804][ T6771]  dump_stack_lvl+0x241/0x360
[  193.973837][ T6771]  ? __pfx_dump_stack_lvl+0x10/0x10
[  193.973854][ T6771]  ? __pfx__printk+0x10/0x10
[  193.973872][ T6771]  ? __pfx___might_resched+0x10/0x10
[  193.973889][ T6771]  should_fail_ex+0x424/0x570
[  193.973905][ T6771]  should_failslab+0xac/0x100
[  193.973923][ T6771]  kmem_cache_alloc_noprof+0x78/0x390
[  193.973939][ T6771]  ? skb_clone+0x20c/0x390
[  193.973955][ T6771]  skb_clone+0x20c/0x390
[  193.973970][ T6771]  pfkey_broadcast_one+0x99/0x330
[  193.973985][ T6771]  ? pfkey_broadcast+0x45/0x400
[  193.973995][ T6771]  pfkey_broadcast+0x3ca/0x400
[  193.974007][ T6771]  ? pfkey_broadcast+0x45/0x400
[  193.974020][ T6771]  pfkey_sendmsg+0xee1/0x1140
[  193.974041][ T6771]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  193.974063][ T6771]  ? __pfx_aa_sk_perm+0x10/0x10
[  193.974080][ T6771]  ? __import_iovec+0x585/0x830
[  193.974094][ T6771]  ? aa_sock_msg_perm+0x91/0x160
[  193.974112][ T6771]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  193.974123][ T6771]  __sock_sendmsg+0x221/0x270
[  193.974140][ T6771]  ____sys_sendmsg+0x523/0x860
[  193.974157][ T6771]  ? __pfx_____sys_sendmsg+0x10/0x10
[  193.974178][ T6771]  __sys_sendmsg+0x271/0x360
[  193.974193][ T6771]  ? __pfx___sys_sendmsg+0x10/0x10
[  193.974232][ T6771]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  193.974246][ T6771]  ? lockdep_hardirqs_on+0x9d/0x150
[  193.974263][ T6771]  __do_fast_syscall_32+0xb4/0x110
[  193.974283][ T6771]  ? exc_page_fault+0x5f8/0x920
[  193.974309][ T6771]  do_fast_syscall_32+0x34/0x80
[  193.974330][ T6771]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  193.974352][ T6771] RIP: 0023:0xf7fe6579
[  193.974370][ T6771] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  193.974384][ T6771] RSP: 002b:00000000f510655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  193.974399][ T6771] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080003880
[  193.974412][ T6771] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  193.974419][ T6771] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  193.974425][ T6771] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  193.974432][ T6771] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  193.974449][ T6771]  </TASK>
[  193.987517][ T5852] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.597592][ T5852] usb 2-1: config 0 descriptor??
[  195.039198][ T6764] netlink: 'syz.1.214': attribute type 6 has an invalid length.
[  195.048214][ T6764] netlink: 'syz.1.214': attribute type 3 has an invalid length.
[  195.053958][ T5897] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  195.071793][ T6764] netlink: 153952 bytes leftover after parsing attributes in process `syz.1.214'.
[  195.219668][ T5897] usb 3-1: config 0 has no interfaces?
[  195.420939][ T5897] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  195.463636][ T5897] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  195.495976][ T5897] usb 3-1: Product: syz
[  195.515185][ T5897] usb 3-1: Manufacturer: syz
[  195.530128][ T5897] usb 3-1: SerialNumber: syz
[  195.563614][ T5897] usb 3-1: config 0 descriptor??
[  195.842146][ T6789] netlink: 'syz.3.223': attribute type 1 has an invalid length.
[  195.920203][ T6789] 8021q: adding VLAN 0 to HW filter on device bond2
[  195.931618][ T6789] netlink: 8 bytes leftover after parsing attributes in process `syz.3.223'.
[  196.722082][ T5852] usbhid 2-1:0.0: can't add hid device: -71
[  196.785980][ T5852] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  196.847134][ T5852] usb 2-1: USB disconnect, device number 13
[  196.957440][ T6809] FAULT_INJECTION: forcing a failure.
[  196.957440][ T6809] name failslab, interval 1, probability 0, space 0, times 0
[  197.018407][ T6809] CPU: 1 UID: 0 PID: 6809 Comm: syz.0.228 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  197.018459][ T6809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  197.018472][ T6809] Call Trace:
[  197.018481][ T6809]  <TASK>
[  197.018489][ T6809]  dump_stack_lvl+0x241/0x360
[  197.018530][ T6809]  ? __pfx_dump_stack_lvl+0x10/0x10
[  197.018557][ T6809]  ? __pfx__printk+0x10/0x10
[  197.018591][ T6809]  ? __pfx___might_resched+0x10/0x10
[  197.018622][ T6809]  should_fail_ex+0x424/0x570
[  197.018650][ T6809]  should_failslab+0xac/0x100
[  197.018680][ T6809]  __kmalloc_noprof+0xdf/0x4d0
[  197.018705][ T6809]  ? ethnl_default_notify+0x19d/0x9f0
[  197.018738][ T6809]  ethnl_default_notify+0x19d/0x9f0
[  197.018769][ T6809]  ? __pfx_ethnl_set_linkmodes+0x10/0x10
[  197.018789][ T6809]  ? __pfx_ethnl_default_notify+0x10/0x10
[  197.018823][ T6809]  ? trace_kmalloc+0x1f/0xd0
[  197.018844][ T6809]  ? __kmalloc_node_track_caller_noprof+0x2b2/0x4d0
[  197.018875][ T6809]  ? mutex_is_locked+0x17/0x50
[  197.018901][ T6809]  ethnl_default_set_doit+0x678/0xb10
[  197.018939][ T6809]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  197.018971][ T6809]  ? genl_family_rcv_msg_attrs_parse+0x1d4/0x290
[  197.019000][ T6809]  genl_rcv_msg+0xb38/0xf00
[  197.019027][ T6809]  ? __pfx_genl_rcv_msg+0x10/0x10
[  197.019043][ T6809]  ? __dev_queue_xmit+0x1780/0x3f60
[  197.019062][ T6809]  ? kasan_save_track+0x3f/0x80
[  197.019081][ T6809]  ? __kasan_slab_alloc+0x66/0x80
[  197.019106][ T6809]  ? __do_fast_syscall_32+0xb4/0x110
[  197.019148][ T6809]  ? __lock_acquire+0xad5/0xd80
[  197.019172][ T6809]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  197.019213][ T6809]  netlink_rcv_skb+0x208/0x480
[  197.019240][ T6809]  ? __pfx_genl_rcv_msg+0x10/0x10
[  197.019260][ T6809]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  197.019308][ T6809]  ? netlink_deliver_tap+0x2e/0x1b0
[  197.019342][ T6809]  genl_rcv+0x28/0x40
[  197.019360][ T6809]  netlink_unicast+0x7f8/0x9a0
[  197.019394][ T6809]  ? __pfx_netlink_unicast+0x10/0x10
[  197.019418][ T6809]  ? skb_put+0x114/0x1f0
[  197.019457][ T6809]  netlink_sendmsg+0x8c3/0xcd0
[  197.019495][ T6809]  ? __pfx_netlink_sendmsg+0x10/0x10
[  197.019524][ T6809]  ? __import_iovec+0x585/0x830
[  197.019549][ T6809]  ? aa_sock_msg_perm+0x91/0x160
[  197.019583][ T6809]  ? __pfx_netlink_sendmsg+0x10/0x10
[  197.019604][ T6809]  __sock_sendmsg+0x221/0x270
[  197.019632][ T6809]  ____sys_sendmsg+0x523/0x860
[  197.019665][ T6809]  ? __pfx_____sys_sendmsg+0x10/0x10
[  197.019702][ T6809]  __sys_sendmsg+0x271/0x360
[  197.019725][ T6809]  ? __pfx___sys_sendmsg+0x10/0x10
[  197.019798][ T6809]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  197.019818][ T6809]  ? lockdep_hardirqs_on+0x9d/0x150
[  197.019844][ T6809]  __do_fast_syscall_32+0xb4/0x110
[  197.019864][ T6809]  ? exc_page_fault+0x5f8/0x920
[  197.019891][ T6809]  do_fast_syscall_32+0x34/0x80
[  197.019912][ T6809]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  197.019934][ T6809] RIP: 0023:0xf7f96579
[  197.019950][ T6809] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  197.019965][ T6809] RSP: 002b:00000000f50b655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  197.019988][ T6809] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000240
[  197.020000][ T6809] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  197.020011][ T6809] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  197.020021][ T6809] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  197.020031][ T6809] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  197.020058][ T6809]  </TASK>
[  197.807792][   T48] usb 3-1: USB disconnect, device number 13
[  198.117027][ T6823] netlink: 'syz.2.234': attribute type 1 has an invalid length.
[  198.256655][ T6823] 8021q: adding VLAN 0 to HW filter on device bond2
[  198.293812][ T5898] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  198.310373][ T6823] netlink: 8 bytes leftover after parsing attributes in process `syz.2.234'.
[  198.477212][ T5898] usb 1-1: Using ep0 maxpacket: 16
[  198.524992][ T5898] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  198.553106][ T5898] usb 1-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  198.562794][ T5898] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.645333][ T6834] FAULT_INJECTION: forcing a failure.
[  198.645333][ T6834] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  198.661695][ T6834] CPU: 1 UID: 0 PID: 6834 Comm: syz.4.237 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  198.661726][ T6834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  198.661737][ T6834] Call Trace:
[  198.661745][ T6834]  <TASK>
[  198.661753][ T6834]  dump_stack_lvl+0x241/0x360
[  198.661791][ T6834]  ? __pfx_dump_stack_lvl+0x10/0x10
[  198.661816][ T6834]  ? __pfx__printk+0x10/0x10
[  198.661852][ T6834]  should_fail_ex+0x424/0x570
[  198.661878][ T6834]  _copy_to_user+0x31/0xb0
[  198.661907][ T6834]  simple_read_from_buffer+0xc4/0x170
[  198.661937][ T6834]  proc_fail_nth_read+0x1ef/0x260
[  198.661960][ T6834]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  198.661981][ T6834]  ? rw_verify_area+0x246/0x630
[  198.662000][ T6834]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  198.662022][ T6834]  vfs_read+0x21f/0xb90
[  198.662049][ T6834]  ? __pfx___mutex_lock+0x10/0x10
[  198.662071][ T6834]  ? __pfx_vfs_read+0x10/0x10
[  198.662091][ T6834]  ? __fget_files+0x2a/0x420
[  198.662107][ T6834]  ? __fget_files+0x39d/0x420
[  198.662119][ T6834]  ? __fget_files+0x2a/0x420
[  198.662140][ T6834]  ksys_read+0x19d/0x2d0
[  198.662158][ T6834]  ? __pfx_ksys_read+0x10/0x10
[  198.662177][ T6834]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  198.662195][ T6834]  ? lockdep_hardirqs_on+0x9d/0x150
[  198.662214][ T6834]  __do_fast_syscall_32+0xb4/0x110
[  198.662232][ T6834]  ? exc_page_fault+0x5f8/0x920
[  198.662253][ T6834]  do_fast_syscall_32+0x34/0x80
[  198.662271][ T6834]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  198.662289][ T6834] RIP: 0023:0xf741d579
[  198.662304][ T6834] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  198.662316][ T6834] RSP: 002b:00000000f50a6590 EFLAGS: 00000206 ORIG_RAX: 0000000000000003
[  198.662335][ T6834] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50a6620
[  198.662345][ T6834] RDX: 000000000000000f RSI: 00000000f740dff4 RDI: 0000000000000000
[  198.662354][ T6834] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  198.662362][ T6834] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  198.662371][ T6834] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  198.662394][ T6834]  </TASK>
[  198.916688][ T5898] usb 1-1: config 0 descriptor??
[  198.986432][ T5898] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input5
[  199.241741][ T6817] input: syz0 as /devices/virtual/input/input6
[  199.610190][ T6842] FAULT_INJECTION: forcing a failure.
[  199.610190][ T6842] name failslab, interval 1, probability 0, space 0, times 0
[  199.668306][ T6842] CPU: 1 UID: 0 PID: 6842 Comm: syz.3.241 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  199.668340][ T6842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  199.668352][ T6842] Call Trace:
[  199.668360][ T6842]  <TASK>
[  199.668369][ T6842]  dump_stack_lvl+0x241/0x360
[  199.668406][ T6842]  ? __pfx_dump_stack_lvl+0x10/0x10
[  199.668432][ T6842]  ? __pfx__printk+0x10/0x10
[  199.668458][ T6842]  ? __lock_acquire+0xad5/0xd80
[  199.668491][ T6842]  should_fail_ex+0x424/0x570
[  199.668519][ T6842]  should_failslab+0xac/0x100
[  199.668547][ T6842]  kmem_cache_alloc_noprof+0x78/0x390
[  199.668572][ T6842]  ? skb_clone+0x20c/0x390
[  199.668600][ T6842]  skb_clone+0x20c/0x390
[  199.668673][ T6842]  __netlink_deliver_tap+0x3c4/0x7f0
[  199.668713][ T6842]  ? netlink_deliver_tap+0x2e/0x1b0
[  199.668737][ T6842]  netlink_deliver_tap+0x19d/0x1b0
[  199.668764][ T6842]  netlink_unicast+0x7c6/0x9a0
[  199.668799][ T6842]  ? __pfx_netlink_unicast+0x10/0x10
[  199.668825][ T6842]  ? skb_put+0x114/0x1f0
[  199.668847][ T6842]  netlink_sendmsg+0x8c3/0xcd0
[  199.668889][ T6842]  ? __pfx_netlink_sendmsg+0x10/0x10
[  199.668920][ T6842]  ? __import_iovec+0x585/0x830
[  199.668945][ T6842]  ? aa_sock_msg_perm+0x91/0x160
[  199.668977][ T6842]  ? __pfx_netlink_sendmsg+0x10/0x10
[  199.669001][ T6842]  __sock_sendmsg+0x221/0x270
[  199.669031][ T6842]  ____sys_sendmsg+0x523/0x860
[  199.669060][ T6842]  ? __pfx_____sys_sendmsg+0x10/0x10
[  199.669097][ T6842]  __sys_sendmsg+0x271/0x360
[  199.669123][ T6842]  ? __pfx___sys_sendmsg+0x10/0x10
[  199.669203][ T6842]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  199.669227][ T6842]  ? lockdep_hardirqs_on+0x9d/0x150
[  199.669253][ T6842]  __do_fast_syscall_32+0xb4/0x110
[  199.669275][ T6842]  ? exc_page_fault+0x5f8/0x920
[  199.669302][ T6842]  do_fast_syscall_32+0x34/0x80
[  199.669325][ T6842]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  199.669349][ T6842] RIP: 0023:0xf73ed579
[  199.669367][ T6842] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  199.669381][ T6842] RSP: 002b:00000000f507655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  199.669404][ T6842] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000200
[  199.669417][ T6842] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  199.669427][ T6842] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  199.669438][ T6842] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  199.669447][ T6842] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  199.669475][ T6842]  </TASK>
[  200.101957][   T30] audit: type=1326 audit(1744282698.055:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6844 comm="syz.4.242" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf741d579 code=0x0
[  200.479696][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  200.489241][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  200.835998][ T5898] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  200.857389][ T6863] 
€Â: renamed from syzkaller0
[  200.883606][ T5897] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  201.054015][ T5898] usb 4-1: config 0 has no interfaces?
[  201.075826][ T5898] usb 4-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  201.104105][ T5898] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.114171][ T5898] usb 4-1: Product: syz
[  201.119893][ T5897] usb 2-1: config 0 has no interfaces?
[  201.127842][ T5898] usb 4-1: Manufacturer: syz
[  201.130203][ T5897] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  201.143397][ T5898] usb 4-1: SerialNumber: syz
[  201.162489][ T5898] usb 4-1: config 0 descriptor??
[  201.183089][ T5897] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.203617][   T24] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  201.219299][ T5897] usb 2-1: Product: syz
[  201.260241][ T5897] usb 2-1: Manufacturer: syz
[  201.280717][ T5897] usb 2-1: SerialNumber: syz
[  201.334854][ T5196] bcm5974 1-1:0.0: could not read from device
[  201.346474][ T5898] usb 1-1: USB disconnect, device number 12
[  201.391863][ T5893] bcm5974 1-1:0.0: could not read from device
[  201.400503][   T24] usb 3-1: config 0 has no interfaces?
[  201.416648][ T5897] usb 2-1: config 0 descriptor??
[  201.601259][   T24] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  201.613767][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.637988][   T24] usb 3-1: Product: syz
[  201.654890][   T24] usb 3-1: Manufacturer: syz
[  201.678594][   T24] usb 3-1: SerialNumber: syz
[  201.729834][   T24] usb 3-1: config 0 descriptor??
[  201.937434][ T6874] netlink: 'syz.4.248': attribute type 1 has an invalid length.
[  202.177870][ T6881] netlink: 8 bytes leftover after parsing attributes in process `syz.4.248'.
[  202.318208][ T6878] 8021q: adding VLAN 0 to HW filter on device bond3
[  202.343993][ T5897] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  202.734770][ T5897] usb 1-1: config 0 has no interfaces?
[  202.917198][ T5897] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  203.018109][ T5897] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  203.322065][ T5897] usb 1-1: Product: syz
[  203.328614][ T5897] usb 1-1: Manufacturer: syz
[  203.336423][ T5897] usb 1-1: SerialNumber: syz
[  203.451547][ T5897] usb 1-1: config 0 descriptor??
[  203.510339][   T48] usb 4-1: USB disconnect, device number 14
[  203.596759][ T5897] usb 2-1: USB disconnect, device number 14
[  203.850963][ T6893] sch_tbf: burst 8787 is lower than device lo mtu (65550) !
[  203.998414][ T6892] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  205.300049][ T6907] process 'syz.3.255' launched './file0' with NULL argv: empty string added
[  205.503918][ T5852] usb 3-1: USB disconnect, device number 14
[  205.613735][ T5930] usb 1-1: USB disconnect, device number 13
[  206.283817][ T5930] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  206.467411][ T5930] usb 3-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  206.501821][ T5930] usb 3-1: config 27 has 0 interfaces, different from the descriptor's value: 1
[  206.566907][ T5930] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  206.612952][ T5930] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.930242][ T6917] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  206.941734][ T6917] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  207.223723][ T5897] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  207.431226][ T5897] usb 4-1: config 0 has no interfaces?
[  207.447287][ T5897] usb 4-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  207.471565][ T5897] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  207.483955][ T5898] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  207.518556][ T5897] usb 4-1: Product: syz
[  207.549808][ T5897] usb 4-1: Manufacturer: syz
[  207.562223][ T5897] usb 4-1: SerialNumber: syz
[  207.579722][ T5897] usb 4-1: config 0 descriptor??
[  207.655287][ T5898] usb 2-1: Using ep0 maxpacket: 8
[  207.821676][ T6935] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  207.874984][ T5898] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  207.923576][ T5898] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  207.954031][ T5898] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  207.990758][ T5898] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  208.122085][ T5898] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  208.258934][ T5898] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  208.335758][ T6935] batman_adv: batadv0: Removing interface: batadv_slave_0
[  208.724084][ T5852] usb 3-1: USB disconnect, device number 15
[  208.900851][ T6951] batman_adv: batadv0: Adding interface: dummy0
[  208.913826][ T6951] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  209.000928][ T6951] batman_adv: batadv0: Interface activated: dummy0
[  209.079851][ T6952] batadv0: mtu less than device minimum
[  209.166687][ T6952] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  209.179359][ T6952] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  209.191566][ T6952] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  209.204647][ T6952] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  209.216720][ T6952] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  209.228884][ T6952] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  209.241087][ T6952] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  209.253076][ T6952] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  209.265838][ T6952] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  210.233372][ T5898] usb 2-1: usb_control_msg returned -71
[  210.240379][ T5898] usbtmc 2-1:16.0: can't read capabilities
[  210.261783][ T5898] usb 2-1: USB disconnect, device number 15
[  210.341191][ T6960] netlink: 268 bytes leftover after parsing attributes in process `syz.4.270'.
[  210.370445][ T5852] usb 4-1: USB disconnect, device number 15
[  210.376972][ T5930] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  210.574212][ T5930] usb 3-1: config 0 has no interfaces?
[  210.593726][ T5930] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  210.615415][ T5930] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  210.650123][ T5930] usb 3-1: Product: syz
[  210.659493][ T5930] usb 3-1: Manufacturer: syz
[  210.675460][ T5930] usb 3-1: SerialNumber: syz
[  210.738601][ T5930] usb 3-1: config 0 descriptor??
[  211.354950][ T6971] netlink: 8 bytes leftover after parsing attributes in process `syz.0.276'.
[  211.846362][ T5898] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  212.023690][ T5898] usb 2-1: device descriptor read/64, error -71
[  212.334608][ T5898] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  212.512460][ T5898] usb 2-1: device descriptor read/64, error -71
[  212.646372][ T5898] usb usb2-port1: attempt power cycle
[  212.808585][   T55] Bluetooth: hci0: command 0x0406 tx timeout
[  212.813622][ T5151] Bluetooth: hci2: command 0x0406 tx timeout
[  212.820850][   T55] Bluetooth: hci3: command 0x0406 tx timeout
[  212.823545][ T5151] Bluetooth: hci4: command 0x0406 tx timeout
[  212.832750][ T5846] Bluetooth: hci1: command 0x0406 tx timeout
[  213.003650][ T5898] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  213.040826][ T5898] usb 2-1: device descriptor read/8, error -71
[  213.303679][ T5898] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  213.356079][ T5898] usb 2-1: device descriptor read/8, error -71
[  213.416049][ T5852] usb 3-1: USB disconnect, device number 16
[  213.477281][ T5898] usb usb2-port1: unable to enumerate USB device
[  213.644151][ T5897] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  213.882777][ T5897] usb 1-1: config 0 has no interfaces?
[  213.959518][ T5897] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  214.022593][ T5897] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  214.074567][ T7014] netlink: 4 bytes leftover after parsing attributes in process `syz.3.289'.
[  214.083592][ T5897] usb 1-1: Product: syz
[  214.097857][ T5897] usb 1-1: Manufacturer: syz
[  214.105801][ T5897] usb 1-1: SerialNumber: syz
[  214.154539][ T5897] usb 1-1: config 0 descriptor??
[  214.182903][ T7010] netlink: 4 bytes leftover after parsing attributes in process `syz.2.286'.
[  214.226315][ T7010] batman_adv: batadv0: Interface deactivated: dummy0
[  214.269880][ T7010] batman_adv: batadv0: Removing interface: dummy0
[  214.270682][ T7019] usb usb8: usbfs: process 7019 (syz.3.289) did not claim interface 0 before use
[  215.944138][ T5897] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  216.184797][ T5852] usb 1-1: USB disconnect, device number 14
[  216.665166][ T5897] usb 5-1: config 0 has no interfaces?
[  216.797847][ T5897] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  216.843627][ T5897] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  216.863397][ T5897] usb 5-1: Product: syz
[  216.903702][ T5897] usb 5-1: Manufacturer: syz
[  216.915847][ T5897] usb 5-1: SerialNumber: syz
[  216.935045][ T5897] usb 5-1: config 0 descriptor??
[  218.247641][ T7069] net_ratelimit: 11 callbacks suppressed
[  218.247669][ T7069] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  218.790044][ T7072] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=778909908 (6231279264 ns) > initial count (2900669840 ns). Using initial count to start timer.
[  219.123665][ T5897] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  219.424847][ T5897] usb 4-1: config 0 has an invalid interface number: 45 but max is 0
[  219.538706][ T5897] usb 4-1: config 0 has an invalid descriptor of length 156, skipping remainder of the config
[  219.606667][ T5897] usb 4-1: config 0 has no interface number 0
[  219.713995][ T5897] usb 4-1: config 0 interface 45 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  220.161633][ T5897] usb 4-1: New USB device found, idVendor=07d1, idProduct=3a07, bcdDevice=44.ee
[  220.172374][ T5897] usb 4-1: New USB device strings: Mfr=1, Product=10, SerialNumber=3
[  220.240906][ T5898] usb 5-1: USB disconnect, device number 17
[  220.275556][ T5897] usb 4-1: Product: syz
[  220.380272][ T5897] usb 4-1: Manufacturer: syz
[  220.406446][ T5897] usb 4-1: SerialNumber: syz
[  220.564978][ T5897] usb 4-1: config 0 descriptor??
[  220.628044][ T5897] usb 4-1: Could not find all expected endpoints
[  220.818915][ T5898] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  220.987913][ T5898] usb 3-1: config 0 has no interfaces?
[  220.998286][ T5898] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  221.083263][ T5898] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  221.109279][ T5898] usb 3-1: Product: syz
[  221.127235][ T5898] usb 3-1: Manufacturer: syz
[  221.148661][ T5898] usb 3-1: SerialNumber: syz
[  221.183063][ T5898] usb 3-1: config 0 descriptor??
[  221.446556][ T5897] usb 3-1: USB disconnect, device number 17
[  221.780780][ T7100] netlink: 4 bytes leftover after parsing attributes in process `syz.1.310'.
[  222.268162][ T7107] Debayer A: =================  START STATUS  =================
[  222.277653][ T7107] Debayer A: Debayer Mean Window Size: 3
[  222.285096][ T7107] Debayer A: ==================  END STATUS  ==================
[  222.677700][ T5898] usb 4-1: USB disconnect, device number 16
[  222.843285][ T7113] FAULT_INJECTION: forcing a failure.
[  222.843285][ T7113] name failslab, interval 1, probability 0, space 0, times 0
[  222.867566][ T7113] CPU: 0 UID: 0 PID: 7113 Comm: syz.2.314 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  222.867600][ T7113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  222.867613][ T7113] Call Trace:
[  222.867622][ T7113]  <TASK>
[  222.867631][ T7113]  dump_stack_lvl+0x241/0x360
[  222.867670][ T7113]  ? __pfx_dump_stack_lvl+0x10/0x10
[  222.867697][ T7113]  ? __pfx__printk+0x10/0x10
[  222.867724][ T7113]  ? nft_pernet+0x1f5/0x240
[  222.867748][ T7113]  ? __pfx___might_resched+0x10/0x10
[  222.867776][ T7113]  should_fail_ex+0x424/0x570
[  222.867804][ T7113]  should_failslab+0xac/0x100
[  222.867833][ T7113]  kmem_cache_alloc_node_noprof+0x7d/0x3b0
[  222.867862][ T7113]  ? __alloc_skb+0x1c2/0x480
[  222.867885][ T7113]  __alloc_skb+0x1c2/0x480
[  222.867911][ T7113]  ? __pfx___alloc_skb+0x10/0x10
[  222.867936][ T7113]  ? netlink_ack_tlv_len+0x6e/0x200
[  222.867965][ T7113]  netlink_ack+0x147/0xa70
[  222.867997][ T7113]  ? __kasan_kmalloc+0x9d/0xb0
[  222.868021][ T7113]  ? nfnetlink_rcv+0x1095/0x28f0
[  222.868048][ T7113]  nfnetlink_rcv+0x2366/0x28f0
[  222.868106][ T7113]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  222.868185][ T7113]  ? skb_clone+0x240/0x390
[  222.868217][ T7113]  ? netlink_deliver_tap+0x2e/0x1b0
[  222.868244][ T7113]  ? netlink_deliver_tap+0x2e/0x1b0
[  222.868273][ T7113]  netlink_unicast+0x7f8/0x9a0
[  222.868306][ T7113]  ? __pfx_netlink_unicast+0x10/0x10
[  222.868333][ T7113]  ? skb_put+0x114/0x1f0
[  222.868356][ T7113]  netlink_sendmsg+0x8c3/0xcd0
[  222.868395][ T7113]  ? __pfx_netlink_sendmsg+0x10/0x10
[  222.868425][ T7113]  ? __import_iovec+0x585/0x830
[  222.868456][ T7113]  ? aa_sock_msg_perm+0x91/0x160
[  222.868489][ T7113]  ? __pfx_netlink_sendmsg+0x10/0x10
[  222.868513][ T7113]  __sock_sendmsg+0x221/0x270
[  222.868543][ T7113]  ____sys_sendmsg+0x523/0x860
[  222.868575][ T7113]  ? __pfx_____sys_sendmsg+0x10/0x10
[  222.868614][ T7113]  __sys_sendmsg+0x271/0x360
[  222.868640][ T7113]  ? __pfx___sys_sendmsg+0x10/0x10
[  222.868717][ T7113]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  222.868739][ T7113]  ? lockdep_hardirqs_on+0x9d/0x150
[  222.868764][ T7113]  __do_fast_syscall_32+0xb4/0x110
[  222.868786][ T7113]  ? exc_page_fault+0x5f8/0x920
[  222.868814][ T7113]  do_fast_syscall_32+0x34/0x80
[  222.868837][ T7113]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  222.868860][ T7113] RIP: 0023:0xf7fe6579
[  222.868879][ T7113] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  222.868894][ T7113] RSP: 002b:00000000f510655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  222.868918][ T7113] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000240
[  222.868932][ T7113] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  222.868943][ T7113] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  222.868954][ T7113] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  222.868965][ T7113] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  222.868995][ T7113]  </TASK>
[  223.417459][ T7121] fuse: Bad value for 'fd'
[  223.734038][ T7126] ip6tnl1: entered promiscuous mode
[  223.903636][   T48] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  224.135349][   T48] usb 1-1: Using ep0 maxpacket: 8
[  224.166315][   T48] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  224.262301][   T48] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  224.283687][ T5838] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  224.454049][   T48] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  224.483647][   T48] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  224.500359][   T48] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  224.512303][   T48] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  224.615824][ T5838] usb 3-1: config 0 has no interfaces?
[  224.793665][ T5897] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  224.846136][ T5838] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  224.905196][ T5838] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  224.951029][ T5838] usb 3-1: Product: syz
[  224.993697][ T5838] usb 3-1: Manufacturer: syz
[  225.072056][ T5897] usb 2-1: Using ep0 maxpacket: 8
[  225.102742][ T5838] usb 3-1: SerialNumber: syz
[  225.136512][ T5897] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  225.150775][ T5838] usb 3-1: config 0 descriptor??
[  225.156542][ T5897] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  225.203556][ T5897] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  225.216066][ T5897] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  225.232000][ T5897] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  225.244095][ T5897] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  226.721982][   T48] usb 1-1: usb_control_msg returned -71
[  226.796730][   T48] usbtmc 1-1:16.0: can't read capabilities
[  226.984464][   T48] usb 1-1: USB disconnect, device number 15
[  227.435716][ T5897] usb 2-1: usb_control_msg returned -71
[  227.442094][ T5897] usbtmc 2-1:16.0: can't read capabilities
[  227.544878][ T5897] usb 2-1: USB disconnect, device number 20
[  227.643859][ T5852] usb 3-1: USB disconnect, device number 18
[  227.653661][ T2154] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  227.857192][ T2154] usb 1-1: config 0 has no interfaces?
[  228.108361][ T2154] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  228.144337][ T2154] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  228.205958][ T2154] usb 1-1: Product: syz
[  228.210594][ T2154] usb 1-1: Manufacturer: syz
[  228.256692][ T7169] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  228.291159][ T2154] usb 1-1: SerialNumber: syz
[  228.303361][ T7169] x_tables: ip6_tables: rpfilter match: used from hooks POSTROUTING, but only valid from PREROUTING
[  228.304104][ T7159] netlink: 4 bytes leftover after parsing attributes in process `syz.3.324'.
[  228.379614][ T5897] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  228.419960][ T2154] usb 1-1: config 0 descriptor??
[  228.551154][ T5897] usb 2-1: config 0 has an invalid interface number: 45 but max is 0
[  228.563604][ T5897] usb 2-1: config 0 has an invalid descriptor of length 156, skipping remainder of the config
[  228.780044][ T5897] usb 2-1: config 0 has no interface number 0
[  228.899205][ T5897] usb 2-1: config 0 interface 45 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  229.081535][ T5897] usb 2-1: New USB device found, idVendor=07d1, idProduct=3a07, bcdDevice=44.ee
[  229.288822][ T5897] usb 2-1: New USB device strings: Mfr=1, Product=10, SerialNumber=3
[  229.307124][ T5897] usb 2-1: Product: syz
[  229.312281][ T2154] usb 1-1: USB disconnect, device number 16
[  229.321319][ T5897] usb 2-1: Manufacturer: syz
[  229.327627][ T5897] usb 2-1: SerialNumber: syz
[  229.371700][ T5897] usb 2-1: config 0 descriptor??
[  229.599607][ T5897] usb 2-1: Could not find all expected endpoints
[  230.523796][ T5898] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  230.706401][ T5898] usb 1-1: config 0 has no interfaces?
[  230.726554][ T5898] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  230.770341][ T5898] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  230.813092][ T5898] usb 1-1: Product: syz
[  230.829952][ T5898] usb 1-1: Manufacturer: syz
[  230.840255][ T5898] usb 1-1: SerialNumber: syz
[  230.858130][ T5898] usb 1-1: config 0 descriptor??
[  231.353643][ T2154] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  231.516842][ T2154] usb 5-1: Using ep0 maxpacket: 16
[  231.653053][ T2154] usb 5-1: unable to read config index 0 descriptor/start: -61
[  231.691904][ T2154] usb 5-1: can't read configurations, error -61
[  231.699330][ T5930] usb 2-1: USB disconnect, device number 21
[  231.853747][ T2154] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  232.013919][ T2154] usb 5-1: Using ep0 maxpacket: 16
[  232.033425][ T2154] usb 5-1: unable to read config index 0 descriptor/start: -61
[  232.041882][ T2154] usb 5-1: can't read configurations, error -61
[  232.062233][ T2154] usb usb5-port1: attempt power cycle
[  232.314452][ T5897] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  232.413652][ T2154] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  232.444441][ T2154] usb 5-1: Using ep0 maxpacket: 16
[  232.470787][ T2154] usb 5-1: unable to read config index 0 descriptor/start: -61
[  232.484219][ T5897] usb 4-1: Using ep0 maxpacket: 8
[  232.509762][ T2154] usb 5-1: can't read configurations, error -61
[  232.512017][ T5897] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  232.555072][ T5897] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  232.573171][ T7235] FAULT_INJECTION: forcing a failure.
[  232.573171][ T7235] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  232.595279][ T5897] usb 4-1: Product: syz
[  232.601416][ T5897] usb 4-1: Manufacturer: syz
[  232.610314][ T5897] usb 4-1: SerialNumber: syz
[  232.616479][ T7235] CPU: 1 UID: 0 PID: 7235 Comm: syz.2.336 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  232.616508][ T7235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  232.616520][ T7235] Call Trace:
[  232.616529][ T7235]  <TASK>
[  232.616536][ T7235]  dump_stack_lvl+0x241/0x360
[  232.616577][ T7235]  ? __pfx_dump_stack_lvl+0x10/0x10
[  232.616602][ T7235]  ? __pfx__printk+0x10/0x10
[  232.616641][ T7235]  should_fail_ex+0x424/0x570
[  232.616666][ T7235]  _copy_from_user+0x2d/0xb0
[  232.616691][ T7235]  tls_setsockopt+0x4e4/0x14b0
[  232.616713][ T7235]  ? aa_sk_perm+0x96f/0xac0
[  232.616737][ T7235]  ? __pfx_tls_setsockopt+0x10/0x10
[  232.616755][ T7235]  ? ksys_write+0x24e/0x2d0
[  232.616775][ T7235]  ? __pfx_aa_sk_perm+0x10/0x10
[  232.616798][ T7235]  ? __lock_acquire+0xad5/0xd80
[  232.616818][ T7235]  ? aa_sock_opt_perm+0x79/0x120
[  232.616843][ T7235]  ? sock_common_setsockopt+0x37/0xc0
[  232.616871][ T7235]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  232.616894][ T7235]  do_sock_setsockopt+0x3b1/0x710
[  232.616910][ T7235]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  232.616933][ T7235]  ? __fget_files+0x2a/0x420
[  232.616945][ T7235]  ? __fget_files+0x39d/0x420
[  232.616961][ T7235]  ? __fget_files+0x2a/0x420
[  232.616975][ T7235]  __ia32_sys_setsockopt+0x1f2/0x280
[  232.616991][ T7235]  __do_fast_syscall_32+0xb4/0x110
[  232.617006][ T7235]  ? exc_page_fault+0x5f8/0x920
[  232.617022][ T7235]  do_fast_syscall_32+0x34/0x80
[  232.617036][ T7235]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  232.617059][ T7235] RIP: 0023:0xf7fe6579
[  232.617071][ T7235] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  232.617081][ T7235] RSP: 002b:00000000f510655c EFLAGS: 00000206 ORIG_RAX: 000000000000016e
[  232.617096][ T7235] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000011a
[  232.617104][ T7235] RDX: 0000000000000004 RSI: 0000000080000100 RDI: 0000000000000038
[  232.617111][ T7235] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  232.617117][ T7235] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  232.617124][ T7235] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  232.617140][ T7235]  </TASK>
[  232.619578][ T7236] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=778909908 (6231279264 ns) > initial count (2900669840 ns). Using initial count to start timer.
[  232.920638][ T5897] usb 4-1: config 0 descriptor??
[  232.973877][ T2154] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  233.021015][ T2154] usb 5-1: Using ep0 maxpacket: 16
[  233.042271][ T2154] usb 5-1: unable to read config index 0 descriptor/start: -61
[  233.065327][ T2154] usb 5-1: can't read configurations, error -61
[  233.081953][ T2154] usb usb5-port1: unable to enumerate USB device
[  233.207155][ T7244] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  233.222671][ T2154] usb 1-1: USB disconnect, device number 17
[  233.249392][ T7244] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  233.783642][ T5838] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  233.982022][ T5838] usb 2-1: config 0 has no interfaces?
[  233.990191][ T5897] dvb_usb_rtl28xxu 4-1:0.0: chip type detection failed -110
[  234.016528][ T5897] dvb_usb_rtl28xxu 4-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -110
[  234.053636][ T5838] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  234.104421][ T5838] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  234.165172][ T5897] usb 4-1: USB disconnect, device number 17
[  234.176875][ T5838] usb 2-1: Product: syz
[  234.188066][ T5838] usb 2-1: Manufacturer: syz
[  234.193364][ T5838] usb 2-1: SerialNumber: syz
[  234.244075][ T5838] usb 2-1: config 0 descriptor??
[  234.768627][   T48] usb 2-1: USB disconnect, device number 22
[  235.013806][ T5930] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  235.106818][ T7275] netlink: 'syz.0.346': attribute type 1 has an invalid length.
[  235.258215][ T5930] usb 4-1: config 0 has an invalid interface number: 45 but max is 0
[  235.276777][ T5930] usb 4-1: config 0 has an invalid descriptor of length 156, skipping remainder of the config
[  235.321129][ T5930] usb 4-1: config 0 has no interface number 0
[  235.347890][ T5930] usb 4-1: config 0 interface 45 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  235.508573][ T5930] usb 4-1: New USB device found, idVendor=07d1, idProduct=3a07, bcdDevice=44.ee
[  235.544576][ T5930] usb 4-1: New USB device strings: Mfr=1, Product=10, SerialNumber=3
[  235.568498][ T5930] usb 4-1: Product: syz
[  235.599705][ T5930] usb 4-1: Manufacturer: syz
[  235.615993][ T5930] usb 4-1: SerialNumber: syz
[  235.634856][    C1] Unknown status report in ack skb
[  235.718170][ T5930] usb 4-1: config 0 descriptor??
[  235.855813][ T5930] usb 4-1: Could not find all expected endpoints
[  236.063920][ T5897] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  236.281443][ T5897] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  236.315530][ T5897] usb 1-1: New USB device found, idVendor=07b5, idProduct=0312, bcdDevice= 0.00
[  236.368671][ T5897] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  236.445526][ T5897] usb 1-1: config 0 descriptor??
[  236.554600][ T5852] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  236.752606][ T5852] usb 2-1: config 0 has no interfaces?
[  236.783824][ T5930] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  236.794429][ T7296] netlink: 20 bytes leftover after parsing attributes in process `syz.4.354'.
[  236.808788][ T7296] netlink: 84 bytes leftover after parsing attributes in process `syz.4.354'.
[  236.822444][ T5852] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  236.840379][ T5852] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  236.851302][ T7296] netlink: 'syz.4.354': attribute type 1 has an invalid length.
[  236.861383][ T5852] usb 2-1: Product: syz
[  236.875840][ T5852] usb 2-1: Manufacturer: syz
[  236.887632][ T5852] usb 2-1: SerialNumber: syz
[  236.910383][ T5852] usb 2-1: config 0 descriptor??
[  236.956315][ T5930] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  236.973903][ T5930] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  237.000816][ T5930] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  237.023910][ T5930] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  237.073114][ T5897] usbhid 1-1:0.0: can't add hid device: -71
[  237.076768][ T5930] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  237.090617][ T5897] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  237.103389][ T5897] usb 1-1: USB disconnect, device number 18
[  237.183039][ T5930] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  237.205622][ T5930] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  237.228660][ T5930] usb 3-1: Product: syz
[  237.237952][ T5930] usb 3-1: Manufacturer: syz
[  237.259469][ T5930] cdc_wdm 3-1:1.0: skipping garbage
[  237.267002][ T5930] cdc_wdm 3-1:1.0: skipping garbage
[  237.280282][ T5930] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[  237.288543][ T5930] cdc_wdm 3-1:1.0: Unknown control protocol
[  237.463784][   T48] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  237.465752][ T5930] usb 3-1: USB disconnect, device number 19
[  237.545513][ T5852] usb 4-1: USB disconnect, device number 18
[  237.630134][   T48] usb 5-1: Using ep0 maxpacket: 16
[  237.671155][   T48] usb 5-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[  237.689027][   T48] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  237.725016][   T48] usb 5-1: Product: syz
[  237.739152][   T48] usb 5-1: Manufacturer: syz
[  237.757380][   T48] usb 5-1: SerialNumber: syz
[  237.778452][   T48] usb 5-1: config 0 descriptor??
[  237.809139][   T48] visor 5-1:0.0: Sony Clie 3.5 converter detected
[  238.011386][   T48] usb 5-1: clie_3_5_startup: get config number bad return length: 0
[  238.021035][   T48] visor 5-1:0.0: probe with driver visor failed with error -5
[  238.217036][   T48] usb 5-1: USB disconnect, device number 22
[  238.323676][ T5852] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  238.494322][ T5852] usb 4-1: Using ep0 maxpacket: 8
[  238.512043][ T5852] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  238.554325][ T5852] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  238.565274][ T5852] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  238.577870][ T5852] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  238.592900][ T5852] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  238.613187][ T5852] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  238.925407][   T48] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  239.152431][   T48] usb 3-1: config 0 has no interfaces?
[  239.268695][   T48] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  239.300198][   T48] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  239.336338][ T5930] usb 2-1: USB disconnect, device number 23
[  239.374587][   T48] usb 3-1: Product: syz
[  239.404188][   T24] usb 5-1: new low-speed USB device number 23 using dummy_hcd
[  239.419810][   T48] usb 3-1: Manufacturer: syz
[  239.457889][   T48] usb 3-1: SerialNumber: syz
[  239.498714][   T48] usb 3-1: config 0 descriptor??
[  239.607056][   T24] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  239.641670][   T24] usb 5-1: config 1 has an invalid descriptor of length 13, skipping remainder of the config
[  239.665802][ T5852] usb 4-1: usb_control_msg returned -71
[  239.692268][   T24] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  239.704226][ T5852] usbtmc 4-1:16.0: can't read capabilities
[  239.708528][   T24] usb 5-1: string descriptor 0 read error: -22
[  239.719683][   T24] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  239.729667][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  239.780228][ T5852] usb 4-1: USB disconnect, device number 19
[  239.879968][   T24] usb 5-1: 0:2 : does not exist
[  240.005551][ T2154] usb 5-1: USB disconnect, device number 23
[  240.249256][ T5893] udevd[5893]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  240.751053][ T7353] syz_tun: refused to change device tx_queue_len
[  241.348169][ T2154] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  241.539646][ T5852] usb 3-1: USB disconnect, device number 20
[  241.560681][ T2154] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  241.617381][ T2154] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  241.639135][ T2154] usb 5-1: Product: syz
[  241.664147][ T2154] usb 5-1: Manufacturer: syz
[  241.669072][ T2154] usb 5-1: SerialNumber: syz
[  241.743179][ T2154] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  241.836791][ T5898] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  242.206325][ T2154] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  242.377670][ T2154] usb 3-1: config 0 has an invalid interface number: 45 but max is 0
[  242.505969][ T2154] usb 3-1: config 0 has an invalid descriptor of length 156, skipping remainder of the config
[  242.564964][ T5914] usb 5-1: USB disconnect, device number 24
[  242.580111][ T2154] usb 3-1: config 0 has no interface number 0
[  242.592426][ T2154] usb 3-1: config 0 interface 45 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  242.628317][ T2154] usb 3-1: New USB device found, idVendor=07d1, idProduct=3a07, bcdDevice=44.ee
[  242.677063][ T2154] usb 3-1: New USB device strings: Mfr=1, Product=10, SerialNumber=3
[  242.707044][ T2154] usb 3-1: Product: syz
[  242.738758][ T2154] usb 3-1: Manufacturer: syz
[  242.773281][ T2154] usb 3-1: SerialNumber: syz
[  242.813377][ T2154] usb 3-1: config 0 descriptor??
[  242.832749][ T2154] usb 3-1: Could not find all expected endpoints
[  243.208033][ T5898] usb 5-1: Service connection timeout for: 256
[  243.215734][ T5898] ath9k_htc 5-1:1.0: ath9k_htc: Unable to initialize HTC services
[  243.241438][ T5898] ath9k_htc: Failed to initialize the device
[  243.317219][ T5914] usb 5-1: ath9k_htc: USB layer deinitialized
[  243.436091][ T7377] syz_tun: refused to change device tx_queue_len
[  243.494970][ T7377] (unnamed net_device) (uninitialized): option all_slaves_active: invalid value (8)
[  243.619333][ T7377] netlink: 4 bytes leftover after parsing attributes in process `syz.4.370'.
[  243.678828][ T7380] netlink: 72 bytes leftover after parsing attributes in process `syz.4.370'.
[  244.640300][ T7390] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  244.829649][ T7388] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  244.929601][ T7389] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  245.112778][ T5898] usb 3-1: USB disconnect, device number 21
[  245.473119][ T7400] geneve1: entered promiscuous mode
[  246.044040][ T2154] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  246.288598][ T2154] usb 2-1: Using ep0 maxpacket: 16
[  246.303940][ T5914] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  246.325573][ T2154] usb 2-1: config 0 contains an unexpected descriptor of type 0x1, skipping
[  246.376110][ T2154] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  246.403807][ T2154] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  246.441208][ T2154] usb 2-1: New USB device found, idVendor=0c72, idProduct=000c, bcdDevice=f6.59
[  246.492986][ T2154] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  246.534082][ T5914] usb 4-1: config 0 has no interfaces?
[  246.538110][ T2154] usb 2-1: Product: syz
[  246.573800][ T2154] usb 2-1: Manufacturer: syz
[  246.579908][ T5914] usb 4-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  246.589158][ T2154] usb 2-1: SerialNumber: syz
[  246.606723][ T5914] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  246.630804][ T2154] usb 2-1: config 0 descriptor??
[  246.670701][ T5914] usb 4-1: Product: syz
[  246.683845][ T5914] usb 4-1: Manufacturer: syz
[  246.729569][ T5914] usb 4-1: SerialNumber: syz
[  246.802382][ T5914] usb 4-1: config 0 descriptor??
[  247.009384][ T2154] peak_usb 2-1:0.0 can0: sending cmd f=0x6 n=0x1 failure: -22
[  247.040399][ T2154] peak_usb 2-1:0.0: unable to read PCAN-USB serial number (err -22)
[  247.206441][ T2154] peak_usb 2-1:0.0: probe with driver peak_usb failed with error -22
[  247.249172][ T2154] usb 2-1: USB disconnect, device number 24
[  247.470977][ T7421] FAULT_INJECTION: forcing a failure.
[  247.470977][ T7421] name failslab, interval 1, probability 0, space 0, times 0
[  247.510327][ T7421] CPU: 0 UID: 0 PID: 7421 Comm: syz.4.381 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  247.510364][ T7421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  247.510377][ T7421] Call Trace:
[  247.510386][ T7421]  <TASK>
[  247.510396][ T7421]  dump_stack_lvl+0x241/0x360
[  247.510435][ T7421]  ? __pfx_dump_stack_lvl+0x10/0x10
[  247.510464][ T7421]  ? __pfx__printk+0x10/0x10
[  247.510485][ T7421]  ? page_table_check_set+0x4d2/0x700
[  247.510527][ T7421]  should_fail_ex+0x424/0x570
[  247.510556][ T7421]  should_failslab+0xac/0x100
[  247.510586][ T7421]  kmem_cache_alloc_node_noprof+0x7d/0x3b0
[  247.510614][ T7421]  ? __alloc_skb+0x1c2/0x480
[  247.510632][ T7421]  ? __lock_acquire+0xad5/0xd80
[  247.510658][ T7421]  __alloc_skb+0x1c2/0x480
[  247.510684][ T7421]  ? __pfx___alloc_skb+0x10/0x10
[  247.510714][ T7421]  _sctp_make_chunk+0x58/0x460
[  247.510741][ T7421]  ? _raw_spin_unlock_irqrestore+0xde/0x140
[  247.510767][ T7421]  sctp_make_abort_user+0x9c/0x6a0
[  247.510793][ T7421]  ? __local_bh_enable_ip+0x168/0x200
[  247.510835][ T7421]  ? __pfx_sctp_make_abort_user+0x10/0x10
[  247.510859][ T7421]  ? skb_dequeue+0x113/0x150
[  247.510882][ T7421]  ? sctp_queue_purge_ulpevents+0x16/0x130
[  247.510906][ T7421]  ? sctp_queue_purge_ulpevents+0x11a/0x130
[  247.510936][ T7421]  sctp_close+0x2a0/0x910
[  247.510979][ T7421]  ? __pfx_sctp_close+0x10/0x10
[  247.511011][ T7421]  ? down_write+0x18d/0x220
[  247.511035][ T7421]  ? __pfx_down_write+0x10/0x10
[  247.511055][ T7421]  ? locks_remove_posix+0x3ab/0x6f0
[  247.511087][ T7421]  inet_release+0x17d/0x200
[  247.511112][ T7421]  sock_close+0xbc/0x240
[  247.511136][ T7421]  ? __pfx_sock_close+0x10/0x10
[  247.511160][ T7421]  __fput+0x3e9/0x9f0
[  247.511193][ T7421]  fput_close_sync+0x1ef/0x270
[  247.511217][ T7421]  ? __pfx_fput_close_sync+0x10/0x10
[  247.511243][ T7421]  ? filp_flush+0x116/0x190
[  247.511265][ T7421]  __ia32_sys_close+0x7f/0x110
[  247.511287][ T7421]  __do_fast_syscall_32+0xb4/0x110
[  247.511310][ T7421]  ? exc_page_fault+0x5f8/0x920
[  247.511339][ T7421]  do_fast_syscall_32+0x34/0x80
[  247.511363][ T7421]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  247.511388][ T7421] RIP: 0023:0xf741d579
[  247.511407][ T7421] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  247.511424][ T7421] RSP: 002b:00000000f50a655c EFLAGS: 00000206 ORIG_RAX: 0000000000000006
[  247.511448][ T7421] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  247.511461][ T7421] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  247.511472][ T7421] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  247.511484][ T7421] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  247.511496][ T7421] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  247.511527][ T7421]  </TASK>
[  248.485464][ T7429] netlink: 'syz.4.383': attribute type 3 has an invalid length.
[  248.703805][ T5898] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  248.817718][ T5914] usb 4-1: USB disconnect, device number 20
[  249.110999][ T5898] usb 1-1: config 0 has an invalid interface number: 45 but max is 0
[  249.194632][ T5898] usb 1-1: config 0 has an invalid descriptor of length 156, skipping remainder of the config
[  249.259988][ T5898] usb 1-1: config 0 has no interface number 0
[  249.313177][ T5898] usb 1-1: config 0 interface 45 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  249.396350][ T5898] usb 1-1: New USB device found, idVendor=07d1, idProduct=3a07, bcdDevice=44.ee
[  249.413159][ T5898] usb 1-1: New USB device strings: Mfr=1, Product=10, SerialNumber=3
[  249.512567][ T5898] usb 1-1: Product: syz
[  249.565177][ T5898] usb 1-1: Manufacturer: syz
[  249.570007][ T5898] usb 1-1: SerialNumber: syz
[  249.609718][ T5898] usb 1-1: config 0 descriptor??
[  249.641737][ T5898] usb 1-1: Could not find all expected endpoints
[  249.668397][ T7451] netlink: 8 bytes leftover after parsing attributes in process `syz.1.390'.
[  250.690593][ T7469] netlink: 12 bytes leftover after parsing attributes in process `syz.1.396'.
[  251.144132][   T24] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  251.248618][ T7482] netlink: 12 bytes leftover after parsing attributes in process `syz.1.401'.
[  251.339794][   T24] usb 4-1: config 0 has no interfaces?
[  251.354709][   T24] usb 4-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  251.378289][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  251.407744][   T24] usb 4-1: Product: syz
[  251.423736][   T24] usb 4-1: Manufacturer: syz
[  251.442093][   T24] usb 4-1: SerialNumber: syz
[  251.489065][   T24] usb 4-1: config 0 descriptor??
[  251.495585][ T5897] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  251.531996][ T5898] usb 1-1: USB disconnect, device number 19
[  251.687443][ T5897] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2dbe, bcdDevice= 0.00
[  251.703746][ T5897] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  251.731702][ T5897] usb 3-1: config 0 descriptor??
[  251.986984][   T24] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  252.134179][   T24] usb 2-1: device descriptor read/64, error -71
[  252.181590][ T5897] konepure 0003:1E7D:2DBE.0002: unknown main item tag 0x0
[  252.198255][ T5897] konepure 0003:1E7D:2DBE.0002: unknown main item tag 0x0
[  252.222829][ T5897] konepure 0003:1E7D:2DBE.0002: hidraw0: USB HID v0.0a Device [HID 1e7d:2dbe] on usb-dummy_hcd.2-1/input0
[  252.294677][ T7499] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  252.359252][ T7499] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  252.379904][ T5897] usb 3-1: USB disconnect, device number 22
[  252.404793][   T24] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  252.424596][ T7499] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  252.557656][   T24] usb 2-1: device descriptor read/64, error -71
[  252.684808][   T24] usb usb2-port1: attempt power cycle
[  252.951805][ T7501] netlink: 'syz.4.407': attribute type 10 has an invalid length.
[  252.963020][ T7501] netlink: 20 bytes leftover after parsing attributes in process `syz.4.407'.
[  252.989377][ T7501] bond0: option arp_all_targets: invalid value (196616)
[  253.036607][   T24] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  253.087290][   T24] usb 2-1: device descriptor read/8, error -71
[  253.170955][ T7506] netlink: 'syz.0.409': attribute type 16 has an invalid length.
[  253.180290][ T7506] netlink: 'syz.0.409': attribute type 3 has an invalid length.
[  253.189149][ T7506] netlink: 64066 bytes leftover after parsing attributes in process `syz.0.409'.
[  253.356416][   T24] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  253.404668][   T24] usb 2-1: device descriptor read/8, error -71
[  253.528097][   T24] usb usb2-port1: unable to enumerate USB device
[  253.612145][ T7512] netlink: 'syz.0.412': attribute type 1 has an invalid length.
[  253.660478][ T7512] 8021q: adding VLAN 0 to HW filter on device bond1
[  253.672622][ T7512] netlink: 16 bytes leftover after parsing attributes in process `syz.0.412'.
[  253.883013][ T5897] usb 4-1: USB disconnect, device number 21
[  254.124447][ T7521] netlink: 'syz.3.415': attribute type 2 has an invalid length.
[  254.144201][   T24] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  254.236192][ T7521] : entered promiscuous mode
[  254.791577][   T24] usb 3-1: config 0 has an invalid interface number: 45 but max is 0
[  254.819100][   T24] usb 3-1: config 0 has an invalid descriptor of length 156, skipping remainder of the config
[  254.934043][   T24] usb 3-1: config 0 has no interface number 0
[  254.951548][   T24] usb 3-1: config 0 interface 45 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  255.060390][   T24] usb 3-1: New USB device found, idVendor=07d1, idProduct=3a07, bcdDevice=44.ee
[  255.107953][   T24] usb 3-1: New USB device strings: Mfr=1, Product=10, SerialNumber=3
[  255.152473][   T24] usb 3-1: Product: syz
[  255.201274][   T24] usb 3-1: Manufacturer: syz
[  255.254084][   T24] usb 3-1: SerialNumber: syz
[  255.312712][   T24] usb 3-1: config 0 descriptor??
[  255.347898][   T24] usb 3-1: Could not find all expected endpoints
[  257.600416][ T5914] usb 3-1: USB disconnect, device number 23
[  257.965263][ T7559] IPv6: NLM_F_CREATE should be specified when creating new route
[  258.082832][ T7559] netlink: 1 bytes leftover after parsing attributes in process `syz.3.422'.
[  258.771381][ T7568] netlink: 'syz.4.424': attribute type 1 has an invalid length.
[  258.810237][ T7568] 8021q: adding VLAN 0 to HW filter on device bond4
[  258.820384][ T7568] netlink: 16 bytes leftover after parsing attributes in process `syz.4.424'.
[  259.394164][ T7576] FAULT_INJECTION: forcing a failure.
[  259.394164][ T7576] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  259.494502][ T7576] CPU: 0 UID: 0 PID: 7576 Comm: syz.0.427 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  259.494527][ T7576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  259.494534][ T7576] Call Trace:
[  259.494542][ T7576]  <TASK>
[  259.494549][ T7576]  dump_stack_lvl+0x241/0x360
[  259.494575][ T7576]  ? __pfx_dump_stack_lvl+0x10/0x10
[  259.494592][ T7576]  ? __pfx__printk+0x10/0x10
[  259.494616][ T7576]  should_fail_ex+0x424/0x570
[  259.494633][ T7576]  prepare_alloc_pages+0x220/0x610
[  259.494652][ T7576]  __alloc_frozen_pages_noprof+0x162/0x5b0
[  259.494668][ T7576]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  259.494695][ T7576]  alloc_pages_mpol+0x339/0x690
[  259.494724][ T7576]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  259.494750][ T7576]  ? xas_start+0x3d2/0x7c0
[  259.494769][ T7576]  alloc_pages_noprof+0x121/0x190
[  259.494788][ T7576]  folio_alloc_noprof+0x1e/0x30
[  259.494803][ T7576]  filemap_alloc_folio_noprof+0xe4/0x550
[  259.494820][ T7576]  ? filemap_get_entry+0x32a/0x3b0
[  259.494834][ T7576]  ? filemap_get_entry+0x125/0x3b0
[  259.494848][ T7576]  ? __pfx_filemap_alloc_folio_noprof+0x10/0x10
[  259.494860][ T7576]  ? do_sync_mmap_readahead+0x3ed/0x6c0
[  259.494879][ T7576]  ? __pfx_down_read+0x10/0x10
[  259.494894][ T7576]  ? __pfx_do_sync_mmap_readahead+0x10/0x10
[  259.494914][ T7576]  __filemap_get_folio+0x423/0xb40
[  259.494934][ T7576]  filemap_fault+0x9f6/0x13d0
[  259.494974][ T7576]  ? __pfx_filemap_fault+0x10/0x10
[  259.494988][ T7576]  ? ___pte_offset_map+0x29a/0x350
[  259.495006][ T7576]  ? __pfx____pte_offset_map+0x10/0x10
[  259.495029][ T7576]  __do_fault+0x135/0x390
[  259.495044][ T7576]  handle_pte_fault+0xfcc/0x61c0
[  259.495064][ T7576]  ? __pfx_cgroup_rstat_updated+0x10/0x10
[  259.495082][ T7576]  ? __pfx_handle_pte_fault+0x10/0x10
[  259.495101][ T7576]  ? rcu_is_watching+0x15/0xb0
[  259.495118][ T7576]  ? __lock_acquire+0xad5/0xd80
[  259.495140][ T7576]  ? __lock_acquire+0xad5/0xd80
[  259.495155][ T7576]  ? do_raw_spin_lock+0x151/0x370
[  259.495177][ T7576]  handle_mm_fault+0x1129/0x1bf0
[  259.495212][ T7576]  ? __pfx_handle_mm_fault+0x10/0x10
[  259.495228][ T7576]  ? follow_page_pte+0x9ff/0x15e0
[  259.495249][ T7576]  ? vma_is_secretmem+0xd/0x50
[  259.495264][ T7576]  ? check_vma_flags+0x51b/0x590
[  259.495284][ T7576]  __get_user_pages+0x1adc/0x4180
[  259.495314][ T7576]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  259.495339][ T7576]  ? __pfx___get_user_pages+0x10/0x10
[  259.495354][ T7576]  ? faultin_page_range+0x392/0x850
[  259.495371][ T7576]  ? __pfx_down_read_killable+0x10/0x10
[  259.495400][ T7576]  faultin_page_range+0x4e7/0x850
[  259.495421][ T7576]  madvise_do_behavior+0x23a/0x4640
[  259.495438][ T7576]  ? is_bpf_text_address+0x288/0x2a0
[  259.495451][ T7576]  ? is_bpf_text_address+0x26/0x2a0
[  259.495466][ T7576]  ? kernel_text_address+0xa7/0xe0
[  259.495484][ T7576]  ? kstrtoull+0x1d3/0x2f0
[  259.495499][ T7576]  ? __pfx_kstrtoull+0x10/0x10
[  259.495515][ T7576]  ? __pfx_madvise_do_behavior+0x10/0x10
[  259.495534][ T7576]  ? kstrtouint+0xfc/0x190
[  259.495551][ T7576]  ? __lock_acquire+0xad5/0xd80
[  259.495577][ T7576]  ? __lock_acquire+0xad5/0xd80
[  259.495604][ T7576]  ? down_read+0x813/0xa50
[  259.495621][ T7576]  ? __mutex_unlock_slowpath+0x229/0x800
[  259.495637][ T7576]  ? __pfx_down_read+0x10/0x10
[  259.495655][ T7576]  ? __fget_files+0x2a/0x420
[  259.495675][ T7576]  __ia32_sys_madvise+0x183/0x220
[  259.495696][ T7576]  ? __pfx___ia32_sys_madvise+0x10/0x10
[  259.495716][ T7576]  ? syscall_enter_from_user_mode_prepare+0x7f/0xe0
[  259.495730][ T7576]  ? lockdep_hardirqs_on+0x9d/0x150
[  259.495745][ T7576]  __do_fast_syscall_32+0xb4/0x110
[  259.495760][ T7576]  ? exc_page_fault+0x5f8/0x920
[  259.495776][ T7576]  do_fast_syscall_32+0x34/0x80
[  259.495790][ T7576]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  259.495805][ T7576] RIP: 0023:0xf7f96579
[  259.495819][ T7576] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  259.495829][ T7576] RSP: 002b:00000000f50b655c EFLAGS: 00000206 ORIG_RAX: 00000000000000db
[  259.495845][ T7576] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000c00000
[  259.495853][ T7576] RDX: 0000000000000017 RSI: 0000000000000000 RDI: 0000000000000000
[  259.495861][ T7576] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  259.495867][ T7576] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  259.495874][ T7576] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  259.495891][ T7576]  </TASK>
[  260.530637][ T2154] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  260.747654][ T2154] usb 5-1: config 0 has no interfaces?
[  260.759340][ T2154] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  260.785103][ T2154] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  260.957096][ T2154] usb 5-1: Product: syz
[  260.961579][ T2154] usb 5-1: Manufacturer: syz
[  261.040823][ T2154] usb 5-1: SerialNumber: syz
[  261.187901][ T2154] usb 5-1: config 0 descriptor??
[  261.814807][ T2154] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  261.909941][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  261.923325][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  262.101206][ T2154] usb 2-1: config 0 has no interfaces?
[  262.167563][ T2154] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  262.191202][ T2154] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  262.213126][ T2154] usb 2-1: Product: syz
[  262.233649][ T2154] usb 2-1: Manufacturer: syz
[  262.233656][ T5914] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  262.322217][ T2154] usb 2-1: SerialNumber: syz
[  262.371129][ T2154] usb 2-1: config 0 descriptor??
[  262.474567][ T5852] usb 5-1: USB disconnect, device number 25
[  262.970530][ T5914] usb 3-1: config 0 has an invalid interface number: 45 but max is 0
[  262.996500][ T5914] usb 3-1: config 0 has an invalid descriptor of length 156, skipping remainder of the config
[  263.030443][ T5914] usb 3-1: config 0 has no interface number 0
[  263.218355][ T5914] usb 3-1: config 0 interface 45 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  263.346142][ T7612] netlink: 'syz.3.435': attribute type 1 has an invalid length.
[  263.447670][ T5914] usb 3-1: New USB device found, idVendor=07d1, idProduct=3a07, bcdDevice=44.ee
[  263.459732][ T5914] usb 3-1: New USB device strings: Mfr=1, Product=10, SerialNumber=3
[  263.487204][ T7615] netlink: 8 bytes leftover after parsing attributes in process `syz.3.435'.
[  263.537243][ T5914] usb 3-1: Product: syz
[  263.575383][ T5914] usb 3-1: Manufacturer: syz
[  263.580531][ T5914] usb 3-1: SerialNumber: syz
[  263.638406][ T7614] 8021q: adding VLAN 0 to HW filter on device bond3
[  263.662138][ T5914] usb 3-1: config 0 descriptor??
[  263.699914][ T5914] usb 3-1: Could not find all expected endpoints
[  263.963696][   T48] usb 1-1: new low-speed USB device number 20 using dummy_hcd
[  264.606217][   T48] usb 1-1: config index 0 descriptor too short (expected 6427, got 27)
[  264.676927][   T48] usb 1-1: config 0 has an invalid interface number: 21 but max is 0
[  264.813103][   T48] usb 1-1: config 0 has no interface number 0
[  264.831236][   T48] usb 1-1: config 0 interface 21 altsetting 0 has an endpoint descriptor with address 0x6C, changing to 0xC
[  264.844762][   T48] usb 1-1: config 0 interface 21 altsetting 0 endpoint 0xC has an invalid bInterval 0, changing to 10
[  264.869188][   T48] usb 1-1: config 0 interface 21 altsetting 0 endpoint 0xC has invalid wMaxPacketSize 0
[  264.875348][ T2154] usb 2-1: USB disconnect, device number 29
[  264.907699][   T48] usb 1-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4
[  264.970645][   T48] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  265.060318][   T48] usb 1-1: config 0 descriptor??
[  265.226992][ T7627] FAULT_INJECTION: forcing a failure.
[  265.226992][ T7627] name failslab, interval 1, probability 0, space 0, times 0
[  265.287168][ T7627] CPU: 1 UID: 0 PID: 7627 Comm: syz.1.438 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  265.287204][ T7627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  265.287216][ T7627] Call Trace:
[  265.287227][ T7627]  <TASK>
[  265.287236][ T7627]  dump_stack_lvl+0x241/0x360
[  265.287275][ T7627]  ? __pfx_dump_stack_lvl+0x10/0x10
[  265.287302][ T7627]  ? __pfx__printk+0x10/0x10
[  265.287336][ T7627]  ? __pfx___might_resched+0x10/0x10
[  265.287369][ T7627]  should_fail_ex+0x424/0x570
[  265.287398][ T7627]  should_failslab+0xac/0x100
[  265.287427][ T7627]  __kmalloc_cache_noprof+0x73/0x370
[  265.287454][ T7627]  ? vlan_vid_add+0x147/0x760
[  265.287489][ T7627]  vlan_vid_add+0x147/0x760
[  265.287515][ T7627]  ? trace_kmalloc+0x1f/0xd0
[  265.287550][ T7627]  register_vlan_dev+0x9f/0x820
[  265.287572][ T7627]  ? vlan_changelink+0x4c8/0x570
[  265.287591][ T7627]  ? vlan_check_real_dev+0x13e/0x370
[  265.287624][ T7627]  vlan_newlink+0x4a7/0x5f0
[  265.287650][ T7627]  ? __pfx_vlan_newlink+0x10/0x10
[  265.287675][ T7627]  rtnl_newlink_create+0x39b/0xcb0
[  265.287708][ T7627]  ? __mutex_lock+0x380/0x10c0
[  265.287736][ T7627]  ? __pfx_aa_get_newest_label+0x10/0x10
[  265.287768][ T7627]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  265.287802][ T7627]  ? __pfx___mutex_lock+0x10/0x10
[  265.287854][ T7627]  ? ns_capable+0x8a/0xf0
[  265.287880][ T7627]  rtnl_newlink+0x18b0/0x1fe0
[  265.287907][ T7627]  ? stack_depot_save_flags+0x44/0x940
[  265.287942][ T7627]  ? __pfx_rtnl_newlink+0x10/0x10
[  265.287963][ T7627]  ? __netlink_deliver_tap+0x561/0x7f0
[  265.287986][ T7627]  ? netlink_deliver_tap+0x19d/0x1b0
[  265.288009][ T7627]  ? netlink_unicast+0x7c6/0x9a0
[  265.288030][ T7627]  ? netlink_sendmsg+0x8c3/0xcd0
[  265.288053][ T7627]  ? __sock_sendmsg+0x221/0x270
[  265.288076][ T7627]  ? ____sys_sendmsg+0x523/0x860
[  265.288094][ T7627]  ? __sys_sendmsg+0x271/0x360
[  265.288111][ T7627]  ? __do_fast_syscall_32+0xb4/0x110
[  265.288133][ T7627]  ? do_fast_syscall_32+0x34/0x80
[  265.288154][ T7627]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  265.288227][ T7627]  ? kasan_quarantine_put+0xdc/0x230
[  265.288247][ T7627]  ? lockdep_hardirqs_on+0x9d/0x150
[  265.288274][ T7627]  ? nlmon_xmit+0xaf/0x100
[  265.288312][ T7627]  ? __local_bh_enable_ip+0x168/0x200
[  265.288331][ T7627]  ? lockdep_hardirqs_on+0x9d/0x150
[  265.288362][ T7627]  ? aa_get_newest_label+0x101/0x6f0
[  265.288397][ T7627]  ? __lock_acquire+0xad5/0xd80
[  265.288444][ T7627]  ? __pfx_rtnl_newlink+0x10/0x10
[  265.288472][ T7627]  rtnetlink_rcv_msg+0x80f/0xd70
[  265.288497][ T7627]  ? rtnetlink_rcv_msg+0x1ba/0xd70
[  265.288529][ T7627]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  265.288565][ T7627]  ? ref_tracker_free+0x63e/0x7e0
[  265.288592][ T7627]  netlink_rcv_skb+0x208/0x480
[  265.288621][ T7627]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  265.288650][ T7627]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  265.288698][ T7627]  ? netlink_deliver_tap+0x2e/0x1b0
[  265.288728][ T7627]  ? netlink_deliver_tap+0x2e/0x1b0
[  265.288756][ T7627]  netlink_unicast+0x7f8/0x9a0
[  265.288793][ T7627]  ? __pfx_netlink_unicast+0x10/0x10
[  265.288819][ T7627]  ? skb_put+0x114/0x1f0
[  265.288855][ T7627]  netlink_sendmsg+0x8c3/0xcd0
[  265.288898][ T7627]  ? __pfx_netlink_sendmsg+0x10/0x10
[  265.288928][ T7627]  ? __import_iovec+0x585/0x830
[  265.288954][ T7627]  ? aa_sock_msg_perm+0x91/0x160
[  265.288988][ T7627]  ? __pfx_netlink_sendmsg+0x10/0x10
[  265.289012][ T7627]  __sock_sendmsg+0x221/0x270
[  265.289044][ T7627]  ____sys_sendmsg+0x523/0x860
[  265.289074][ T7627]  ? __pfx_____sys_sendmsg+0x10/0x10
[  265.289114][ T7627]  __sys_sendmsg+0x271/0x360
[  265.289143][ T7627]  ? __pfx___sys_sendmsg+0x10/0x10
[  265.289235][ T7627]  __do_fast_syscall_32+0xb4/0x110
[  265.289257][ T7627]  ? exc_page_fault+0x5f8/0x920
[  265.289287][ T7627]  do_fast_syscall_32+0x34/0x80
[  265.289312][ T7627]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  265.289336][ T7627] RIP: 0023:0xf73ad579
[  265.289357][ T7627] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  265.289375][ T7627] RSP: 002b:00000000f503655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  265.289398][ T7627] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000280
[  265.289411][ T7627] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  265.289421][ T7627] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  265.289433][ T7627] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  265.289444][ T7627] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  265.289476][ T7627]  </TASK>
[  265.964301][ T5852] usb 3-1: USB disconnect, device number 24
[  266.573722][ T5852] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  266.747972][ T5852] usb 5-1: config 0 has no interfaces?
[  266.760766][ T5852] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  266.791838][ T5852] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  266.812744][ T5852] usb 5-1: Product: syz
[  266.831632][ T5852] usb 5-1: Manufacturer: syz
[  266.845865][ T5852] usb 5-1: SerialNumber: syz
[  266.874840][ T5852] usb 5-1: config 0 descriptor??
[  266.958952][   T48] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[  267.396207][   T48] usb 2-1: config 0 has no interfaces?
[  267.420068][   T48] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  267.431118][   T48] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  267.449527][   T48] usb 2-1: Product: syz
[  267.478055][   T48] usb 2-1: Manufacturer: syz
[  267.487368][   T48] usb 2-1: SerialNumber: syz
[  267.552785][   T48] usb 2-1: config 0 descriptor??
[  267.981962][ T2154] usb 1-1: USB disconnect, device number 20
[  268.513968][   T48] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  268.703611][ T7663] futex_wake_op: syz.2.448 tries to shift op by 144; fix this program
[  268.753264][   T48] usb 1-1: config 0 has no interfaces?
[  268.937032][   T48] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  269.046604][ T2154] usb 5-1: USB disconnect, device number 26
[  269.052204][   T48] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  269.218216][   T48] usb 1-1: Product: syz
[  269.247219][   T48] usb 1-1: Manufacturer: syz
[  269.267656][   T48] usb 1-1: SerialNumber: syz
[  269.291284][   T48] usb 1-1: config 0 descriptor??
[  269.673662][ T5898] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  269.873538][ T5898] usb 5-1: Using ep0 maxpacket: 8
[  269.900107][ T5898] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  269.968846][ T5898] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  270.062153][ T5898] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  270.296793][ T5898] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  270.342154][ T5898] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  270.380724][ T5898] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  270.954622][ T5852] usb 2-1: USB disconnect, device number 30
[  271.226974][ T5852] usb 1-1: USB disconnect, device number 21
[  271.663063][ T7202] tipc: Subscription rejected, illegal request
[  271.760373][   T30] audit: type=1326 audit(1744282769.705:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7662 comm="syz.2.448" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  271.822330][   T30] audit: type=1326 audit(1744282769.705:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7662 comm="syz.2.448" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  271.854217][ T5914] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[  271.877254][   T30] audit: type=1326 audit(1744282769.705:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7662 comm="syz.2.448" exe="/root/syz-executor" sig=0 arch=40000003 syscall=300 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  271.971304][   T30] audit: type=1326 audit(1744282769.715:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7662 comm="syz.2.448" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  272.037410][   T30] audit: type=1326 audit(1744282769.715:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7662 comm="syz.2.448" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  272.139531][   T30] audit: type=1326 audit(1744282769.715:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7662 comm="syz.2.448" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  272.292332][ T5914] usb 2-1: config 0 has an invalid interface number: 45 but max is 0
[  272.336148][ T5914] usb 2-1: config 0 has an invalid descriptor of length 156, skipping remainder of the config
[  272.439406][ T5914] usb 2-1: config 0 has no interface number 0
[  272.504235][ T5914] usb 2-1: config 0 interface 45 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  272.505291][   T30] audit: type=1326 audit(1744282769.715:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7662 comm="syz.2.448" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  272.895569][   T30] audit: type=1326 audit(1744282769.715:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7662 comm="syz.2.448" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  272.954020][ T5914] usb 2-1: New USB device found, idVendor=07d1, idProduct=3a07, bcdDevice=44.ee
[  272.965806][   T30] audit: type=1326 audit(1744282769.715:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7662 comm="syz.2.448" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  272.977290][ T5914] usb 2-1: New USB device strings: Mfr=1, Product=10, SerialNumber=3
[  273.031793][   T30] audit: type=1326 audit(1744282769.715:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7662 comm="syz.2.448" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  273.076989][ T5898] usb 5-1: usb_control_msg returned -71
[  273.096699][ T5914] usb 2-1: Product: syz
[  273.108106][ T5898] usbtmc 5-1:16.0: can't read capabilities
[  273.124062][ T5914] usb 2-1: Manufacturer: syz
[  273.140367][ T5914] usb 2-1: SerialNumber: syz
[  273.221530][ T5914] usb 2-1: config 0 descriptor??
[  273.249203][ T5898] usb 5-1: USB disconnect, device number 27
[  273.382509][ T5914] usb 2-1: Could not find all expected endpoints
[  273.441812][ T7694] vlan2: entered promiscuous mode
[  273.457179][ T7694] bridge0: entered promiscuous mode
[  275.123155][ T5898] usb 2-1: USB disconnect, device number 31
[  275.132214][ T5852] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  275.341481][ T5852] usb 5-1: config 0 has no interfaces?
[  275.371495][ T5852] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  275.402416][ T5852] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  275.445668][ T5852] usb 5-1: Product: syz
[  275.453685][ T5852] usb 5-1: Manufacturer: syz
[  275.474215][ T5852] usb 5-1: SerialNumber: syz
[  275.511000][ T5852] usb 5-1: config 0 descriptor??
[  276.103671][ T5838] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  276.304302][ T5861] cgroup: fork rejected by pids controller in /syz3
[  276.503646][ T5838] usb 1-1: Using ep0 maxpacket: 8
[  276.550890][ T5838] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  276.573845][ T5838] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  276.588823][ T5838] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  276.618518][ T5838] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  276.873747][ T5838] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  276.890526][ T5838] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  277.787693][ T7200] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.859023][   T48] usb 5-1: USB disconnect, device number 28
[  278.477382][ T7200] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  278.854964][ T5838] usb 1-1: usb_control_msg returned -71
[  278.884160][ T5914] usb 2-1: new full-speed USB device number 32 using dummy_hcd
[  278.894732][ T5838] usbtmc 1-1:16.0: can't read capabilities
[  278.911180][ T7200] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  278.969532][ T5838] usb 1-1: USB disconnect, device number 22
[  279.105666][ T5914] usb 2-1: config index 0 descriptor too short (expected 50953, got 9)
[  279.130581][ T5914] usb 2-1: config 175 has too many interfaces: 149, using maximum allowed: 32
[  279.175849][ T5914] usb 2-1: config 175 has 0 interfaces, different from the descriptor's value: 149
[  279.196735][ T7200] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  279.223633][ T5914] usb 2-1: New USB device found, idVendor=249c, idProduct=171c, bcdDevice=c5.9a
[  279.550030][ T5914] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  279.563144][ T5914] usb 2-1: Product: syz
[  279.567852][ T5914] usb 2-1: Manufacturer: syz
[  279.572894][ T5914] usb 2-1: SerialNumber: syz
[  279.814026][ T5849] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  279.830443][ T7732] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  279.845552][ T7732] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  279.864431][ T5849] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  279.875287][ T5849] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  279.897792][ T5849] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  279.916615][ T5849] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  280.055075][ T7732] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  280.135227][ T5852] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  280.334591][ T5852] usb 1-1: config 0 has an invalid interface number: 45 but max is 0
[  280.370176][ T5852] usb 1-1: config 0 has an invalid descriptor of length 156, skipping remainder of the config
[  280.386785][ T5852] usb 1-1: config 0 has no interface number 0
[  280.396858][ T5852] usb 1-1: config 0 interface 45 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  280.450839][ T5852] usb 1-1: New USB device found, idVendor=07d1, idProduct=3a07, bcdDevice=44.ee
[  280.494612][ T5852] usb 1-1: New USB device strings: Mfr=1, Product=10, SerialNumber=3
[  280.501984][ T7200] bridge_slave_1: left allmulticast mode
[  280.510932][ T7200] bridge_slave_1: left promiscuous mode
[  280.519175][ T7200] bridge0: port 2(bridge_slave_1) entered disabled state
[  280.538587][ T5852] usb 1-1: Product: syz
[  280.547134][ T7200] bridge_slave_0: left allmulticast mode
[  280.558391][ T7200] bridge_slave_0: left promiscuous mode
[  280.562638][ T5852] usb 1-1: Manufacturer: syz
[  280.572682][ T5852] usb 1-1: SerialNumber: syz
[  280.582750][ T7200] bridge0: port 1(bridge_slave_0) entered disabled state
[  280.594191][ T7202] 
[  280.599910][ T7202] =============================
[  280.606472][ T7202] WARNING: suspicious RCU usage
[  280.613394][ T7202] 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 Not tainted
[  280.622079][ T7202] -----------------------------
[  280.627311][ T7202] net/sched/sch_generic.c:1285 suspicious rcu_dereference_protected() usage!
[  280.637342][ T7202] 
[  280.637342][ T7202] other info that might help us debug this:
[  280.637342][ T7202] 
[  280.648249][ T7202] 
[  280.648249][ T7202] rcu_scheduler_active = 2, debug_locks = 1
[  280.656472][ T7202] 3 locks held by kworker/u8:13/7202:
[  280.662493][ T7202]  #0: ffff88805c820948 ((wq_completion)bond0#4){+.+.}-{0:0}, at: process_scheduled_works+0x990/0x18e0
[  280.675536][ T7202]  #1: ffffc900036afc60 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9cb/0x18e0
[  280.690238][ T7202]  #2: ffffffff8ed3dfe0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x17f/0x3170
[  280.700771][ T7202] 
[  280.700771][ T7202] stack backtrace:
[  280.707399][ T7202] CPU: 0 UID: 0 PID: 7202 Comm: kworker/u8:13 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  280.707429][ T7202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  280.707443][ T7202] Workqueue: bond0 bond_mii_monitor
[  280.707479][ T7202] Call Trace:
[  280.707488][ T7202]  <TASK>
[  280.707498][ T7202]  dump_stack_lvl+0x241/0x360
[  280.707532][ T7202]  ? __pfx_dump_stack_lvl+0x10/0x10
[  280.707560][ T7202]  ? __pfx__printk+0x10/0x10
[  280.707591][ T7202]  ? print_lock+0x171/0x1a0
[  280.707620][ T7202]  lockdep_rcu_suspicious+0x175/0x200
[  280.707658][ T7202]  dev_deactivate_queue+0x8f/0x1b0
[  280.707702][ T7202]  dev_deactivate_many+0x14c/0xca0
[  280.707735][ T7202]  ? __pfx_dev_deactivate_many+0x10/0x10
[  280.707768][ T7202]  ? _raw_spin_unlock_irqrestore+0x90/0x140
[  280.707792][ T7202]  dev_deactivate+0x186/0x280
[  280.707824][ T7202]  ? __pfx_dev_deactivate+0x10/0x10
[  280.707848][ T7202]  ? _raw_spin_unlock_irqrestore+0xde/0x140
[  280.707868][ T7202]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  280.707890][ T7202]  ? rfc2863_policy+0x1ce/0x3f0
[  280.707915][ T7202]  linkwatch_do_dev+0x10a/0x170
[  280.707937][ T7202]  ethtool_op_get_link+0x15/0x60
[  280.707964][ T7202]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  280.707989][ T7202]  bond_check_dev_link+0x1fb/0x4b0
[  280.708017][ T7202]  ? __pfx_bond_check_dev_link+0x10/0x10
[  280.708061][ T7202]  bond_mii_monitor+0x49d/0x3170
[  280.708100][ T7202]  ? bond_mii_monitor+0x17f/0x3170
[  280.708129][ T7202]  ? do_raw_spin_unlock+0x13c/0x8b0
[  280.708159][ T7202]  ? __pfx_bond_mii_monitor+0x10/0x10
[  280.708185][ T7202]  ? register_lock_class+0x54/0x330
[  280.708210][ T7202]  ? __lock_acquire+0xad5/0xd80
[  280.708232][ T7202]  ? lockdep_hardirqs_on+0x9d/0x150
[  280.708272][ T7202]  ? process_scheduled_works+0x9cb/0x18e0
[  280.708293][ T7202]  process_scheduled_works+0xac3/0x18e0
[  280.708342][ T7202]  ? __pfx_process_scheduled_works+0x10/0x10
[  280.708373][ T7202]  ? assign_work+0x367/0x3d0
[  280.708399][ T7202]  worker_thread+0x870/0xd50
[  280.708435][ T7202]  ? __kthread_parkme+0x1a8/0x200
[  280.708460][ T7202]  ? __pfx_worker_thread+0x10/0x10
[  280.708482][ T7202]  kthread+0x7b7/0x940
[  280.708510][ T7202]  ? __pfx_worker_thread+0x10/0x10
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  280.708533][ T7202]  ? __pfx_kthread+0x10/0x10
[  280.708554][ T7202]  ? __pfx_kthread+0x10/0x10
[  280.708577][ T7202]  ? __pfx_kthread+0x10/0x10
[  280.708601][ T7202]  ? __pfx_kthread+0x10/0x10
[  280.708636][ T7202]  ? _raw_spin_unlock_irq+0x23/0x50
[  280.708653][ T7202]  ? lockdep_hardirqs_on+0x9d/0x150
[  280.708674][ T7202]  ? __pfx_kthread+0x10/0x10
[  280.708701][ T7202]  ret_from_fork+0x4b/0x80
[  280.708721][ T7202]  ? __pfx_kthread+0x10/0x10
[  280.708745][ T7202]  ret_from_fork_asm+0x1a/0x30
[  280.708781][ T7202]  </TASK>
[  281.012398][ T7202] 
[  281.015518][ T7202] =============================
[  281.020901][ T7202] WARNING: suspicious RCU usage
[  281.026012][ T7202] 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 Not tainted
[  281.034454][ T7202] -----------------------------
[  281.039397][ T7202] ./include/linux/rtnetlink.h:163 suspicious rcu_dereference_protected() usage!
[  281.044302][ T5852] usb 1-1: config 0 descriptor??
[  281.048691][ T7202] 
[  281.048691][ T7202] other info that might help us debug this:
[  281.048691][ T7202] 
[  281.062983][ T5852] usb 1-1: Could not find all expected endpoints
[  281.064678][ T7202] 
[  281.064678][ T7202] rcu_scheduler_active = 2, debug_locks = 1
[  281.080894][ T7202] 3 locks held by kworker/u8:13/7202:
[  281.086863][ T7202]  #0: ffff88805c820948 ((wq_completion)bond0#4){+.+.}-{0:0}, at: process_scheduled_works+0x990/0x18e0
[  281.100376][ T7202]  #1: ffffc900036afc60 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9cb/0x18e0
[  281.117297][ T7202]  #2: ffffffff8ed3dfe0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x17f/0x3170
[  281.127820][ T7202] 
[  281.127820][ T7202] stack backtrace:
[  281.134125][ T7202] CPU: 1 UID: 0 PID: 7202 Comm: kworker/u8:13 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  281.134146][ T7202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  281.134155][ T7202] Workqueue: bond0 bond_mii_monitor
[  281.134178][ T7202] Call Trace:
[  281.134184][ T7202]  <TASK>
[  281.134190][ T7202]  dump_stack_lvl+0x241/0x360
[  281.134218][ T7202]  ? __pfx_dump_stack_lvl+0x10/0x10
[  281.134238][ T7202]  ? __pfx__printk+0x10/0x10
[  281.134260][ T7202]  lockdep_rcu_suspicious+0x175/0x200
[  281.134278][ T7202]  dev_deactivate_many+0x228/0xca0
[  281.134301][ T7202]  ? __pfx_dev_deactivate_many+0x10/0x10
[  281.134320][ T7202]  ? _raw_spin_unlock_irqrestore+0x90/0x140
[  281.134336][ T7202]  dev_deactivate+0x186/0x280
[  281.134354][ T7202]  ? __pfx_dev_deactivate+0x10/0x10
[  281.134368][ T7202]  ? _raw_spin_unlock_irqrestore+0xde/0x140
[  281.134382][ T7202]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  281.134398][ T7202]  ? rfc2863_policy+0x1ce/0x3f0
[  281.134412][ T7202]  linkwatch_do_dev+0x10a/0x170
[  281.134426][ T7202]  ethtool_op_get_link+0x15/0x60
[  281.134443][ T7202]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  281.134459][ T7202]  bond_check_dev_link+0x1fb/0x4b0
[  281.134476][ T7202]  ? __pfx_bond_check_dev_link+0x10/0x10
[  281.134500][ T7202]  bond_mii_monitor+0x49d/0x3170
[  281.134523][ T7202]  ? bond_mii_monitor+0x17f/0x3170
[  281.134539][ T7202]  ? do_raw_spin_unlock+0x13c/0x8b0
[  281.134559][ T7202]  ? __pfx_bond_mii_monitor+0x10/0x10
[  281.134576][ T7202]  ? register_lock_class+0x54/0x330
[  281.134590][ T7202]  ? __lock_acquire+0xad5/0xd80
[  281.134603][ T7202]  ? lockdep_hardirqs_on+0x9d/0x150
[  281.134626][ T7202]  ? process_scheduled_works+0x9cb/0x18e0
[  281.134648][ T7202]  process_scheduled_works+0xac3/0x18e0
[  281.134677][ T7202]  ? __pfx_process_scheduled_works+0x10/0x10
[  281.134695][ T7202]  ? assign_work+0x367/0x3d0
[  281.134711][ T7202]  worker_thread+0x870/0xd50
[  281.134733][ T7202]  ? __kthread_parkme+0x1a8/0x200
[  281.134749][ T7202]  ? __pfx_worker_thread+0x10/0x10
[  281.134762][ T7202]  kthread+0x7b7/0x940
[  281.134780][ T7202]  ? __pfx_worker_thread+0x10/0x10
[  281.134793][ T7202]  ? __pfx_kthread+0x10/0x10
[  281.134807][ T7202]  ? __pfx_kthread+0x10/0x10
[  281.134822][ T7202]  ? __pfx_kthread+0x10/0x10
[  281.134836][ T7202]  ? __pfx_kthread+0x10/0x10
[  281.134851][ T7202]  ? _raw_spin_unlock_irq+0x23/0x50
[  281.134861][ T7202]  ? lockdep_hardirqs_on+0x9d/0x150
[  281.134873][ T7202]  ? __pfx_kthread+0x10/0x10
[  281.134889][ T7202]  ret_from_fork+0x4b/0x80
[  281.134902][ T7202]  ? __pfx_kthread+0x10/0x10
[  281.134917][ T7202]  ret_from_fork_asm+0x1a/0x30
[  281.134936][ T7202]  </TASK>
[  281.544320][ T7202] 
[  281.547297][ T7202] =============================
[  281.553241][ T7202] WARNING: suspicious RCU usage
[  281.559808][ T7202] 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 Not tainted
[  281.569289][ T7202] -----------------------------
[  281.576116][ T7202] net/sched/sch_generic.c:1301 suspicious rcu_dereference_protected() usage!
[  281.587981][ T7202] 
[  281.587981][ T7202] other info that might help us debug this:
[  281.587981][ T7202] 
[  281.599536][ T7202] 
[  281.599536][ T7202] rcu_scheduler_active = 2, debug_locks = 1
[  281.608566][ T7202] 3 locks held by kworker/u8:13/7202:
[  281.614584][ T7202]  #0: ffff88805c820948 ((wq_completion)bond0#4){+.+.}-{0:0}, at: process_scheduled_works+0x990/0x18e0
[  281.627422][ T7202]  #1: ffffc900036afc60 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9cb/0x18e0
[  281.641204][ T7202]  #2: ffffffff8ed3dfe0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x17f/0x3170
[  281.652517][ T7202] 
[  281.652517][ T7202] stack backtrace:
[  281.659346][ T7202] CPU: 1 UID: 0 PID: 7202 Comm: kworker/u8:13 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  281.659377][ T7202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  281.659390][ T7202] Workqueue: bond0 bond_mii_monitor
[  281.659432][ T7202] Call Trace:
[  281.659445][ T7202]  <TASK>
[  281.659454][ T7202]  dump_stack_lvl+0x241/0x360
[  281.659486][ T7202]  ? __pfx_dump_stack_lvl+0x10/0x10
[  281.659510][ T7202]  ? __pfx__printk+0x10/0x10
[  281.659537][ T7202]  ? print_lock+0x171/0x1a0
[  281.659562][ T7202]  lockdep_rcu_suspicious+0x175/0x200
[  281.659588][ T7202]  dev_reset_queue+0x88/0x1b0
[  281.659631][ T7202]  dev_deactivate_many+0x61d/0xca0
[  281.659658][ T7202]  ? dev_deactivate_many+0x2e5/0xca0
[  281.659683][ T7202]  ? __pfx_dev_deactivate_many+0x10/0x10
[  281.659716][ T7202]  ? _raw_spin_unlock_irqrestore+0x90/0x140
[  281.659742][ T7202]  dev_deactivate+0x186/0x280
[  281.659773][ T7202]  ? __pfx_dev_deactivate+0x10/0x10
[  281.659798][ T7202]  ? _raw_spin_unlock_irqrestore+0xde/0x140
[  281.659818][ T7202]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  281.659843][ T7202]  ? rfc2863_policy+0x1ce/0x3f0
[  281.659867][ T7202]  linkwatch_do_dev+0x10a/0x170
[  281.659890][ T7202]  ethtool_op_get_link+0x15/0x60
[  281.659918][ T7202]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  281.659944][ T7202]  bond_check_dev_link+0x1fb/0x4b0
[  281.659973][ T7202]  ? __pfx_bond_check_dev_link+0x10/0x10
[  281.660015][ T7202]  bond_mii_monitor+0x49d/0x3170
[  281.660053][ T7202]  ? bond_mii_monitor+0x17f/0x3170
[  281.660082][ T7202]  ? do_raw_spin_unlock+0x13c/0x8b0
[  281.660117][ T7202]  ? __pfx_bond_mii_monitor+0x10/0x10
[  281.660145][ T7202]  ? register_lock_class+0x54/0x330
[  281.660172][ T7202]  ? __lock_acquire+0xad5/0xd80
[  281.660194][ T7202]  ? lockdep_hardirqs_on+0x9d/0x150
[  281.660238][ T7202]  ? process_scheduled_works+0x9cb/0x18e0
[  281.660260][ T7202]  process_scheduled_works+0xac3/0x18e0
[  281.660316][ T7202]  ? __pfx_process_scheduled_works+0x10/0x10
[  281.660348][ T7202]  ? assign_work+0x367/0x3d0
[  281.660374][ T7202]  worker_thread+0x870/0xd50
[  281.660415][ T7202]  ? __kthread_parkme+0x1a8/0x200
[  281.660443][ T7202]  ? __pfx_worker_thread+0x10/0x10
[  281.660467][ T7202]  kthread+0x7b7/0x940
[  281.660495][ T7202]  ? __pfx_worker_thread+0x10/0x10
[  281.660519][ T7202]  ? __pfx_kthread+0x10/0x10
[  281.660542][ T7202]  ? __pfx_kthread+0x10/0x10
[  281.660567][ T7202]  ? __pfx_kthread+0x10/0x10
[  281.660593][ T7202]  ? __pfx_kthread+0x10/0x10
[  281.660630][ T7202]  ? _raw_spin_unlock_irq+0x23/0x50
[  281.660647][ T7202]  ? lockdep_hardirqs_on+0x9d/0x150
[  281.660669][ T7202]  ? __pfx_kthread+0x10/0x10
[  281.660696][ T7202]  ret_from_fork+0x4b/0x80
[  281.660716][ T7202]  ? __pfx_kthread+0x10/0x10
[  281.660742][ T7202]  ret_from_fork_asm+0x1a/0x30
[  281.660780][ T7202]  </TASK>
[  281.660871][ T7202] 
[  281.968994][ T7202] =============================
[  281.974597][ T7202] WARNING: suspicious RCU usage
[  281.979803][ T7202] 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 Not tainted
[  281.987796][ T7202] -----------------------------
[  281.988522][ T5849] Bluetooth: hci2: command tx timeout
[  281.993336][ T7202] net/sched/sch_generic.c:1332 suspicious rcu_dereference_protected() usage!
[  281.993360][ T7202] 
[  281.993360][ T7202] other info that might help us debug this:
[  281.993360][ T7202] 
[  281.993370][ T7202] 
[  281.993370][ T7202] rcu_scheduler_active = 2, debug_locks = 1
[  281.993385][ T7202] 3 locks held by kworker/u8:13/7202:
[  281.993399][ T7202]  #0: ffff88805c820948 ((wq_completion)bond0#4){+.+.}-{0:0}, at: process_scheduled_works+0x990/0x18e0
[  282.049396][ T7202]  #1: ffffc900036afc60 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9cb/0x18e0
[  282.063858][ T7202]  #2: ffffffff8ed3dfe0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x17f/0x3170
[  282.074090][ T7202] 
[  282.074090][ T7202] stack backtrace:
[  282.080842][ T7202] CPU: 1 UID: 0 PID: 7202 Comm: kworker/u8:13 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  282.080865][ T7202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  282.080879][ T7202] Workqueue: bond0 bond_mii_monitor
[  282.080917][ T7202] Call Trace:
[  282.080932][ T7202]  <TASK>
[  282.080939][ T7202]  dump_stack_lvl+0x241/0x360
[  282.080966][ T7202]  ? __pfx_dump_stack_lvl+0x10/0x10
[  282.080982][ T7202]  ? __pfx__printk+0x10/0x10
[  282.081015][ T7202]  lockdep_rcu_suspicious+0x175/0x200
[  282.081037][ T7202]  dev_deactivate_many+0x93b/0xca0
[  282.081062][ T7202]  ? __pfx_dev_deactivate_many+0x10/0x10
[  282.081082][ T7202]  ? _raw_spin_unlock_irqrestore+0x90/0x140
[  282.081109][ T7202]  dev_deactivate+0x186/0x280
[  282.081135][ T7202]  ? __pfx_dev_deactivate+0x10/0x10
[  282.081153][ T7202]  ? _raw_spin_unlock_irqrestore+0xde/0x140
[  282.081165][ T7202]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  282.081179][ T7202]  ? rfc2863_policy+0x1ce/0x3f0
[  282.081195][ T7202]  linkwatch_do_dev+0x10a/0x170
[  282.081209][ T7202]  ethtool_op_get_link+0x15/0x60
[  282.081230][ T7202]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  282.081245][ T7202]  bond_check_dev_link+0x1fb/0x4b0
[  282.081428][ T7202]  ? __pfx_bond_check_dev_link+0x10/0x10
[  282.081488][ T7202]  bond_mii_monitor+0x49d/0x3170
[  282.081519][ T7202]  ? bond_mii_monitor+0x17f/0x3170
[  282.081539][ T7202]  ? do_raw_spin_unlock+0x13c/0x8b0
[  282.081564][ T7202]  ? __pfx_bond_mii_monitor+0x10/0x10
[  282.081583][ T7202]  ? register_lock_class+0x54/0x330
[  282.081599][ T7202]  ? __lock_acquire+0xad5/0xd80
[  282.081614][ T7202]  ? lockdep_hardirqs_on+0x9d/0x150
[  282.081641][ T7202]  ? process_scheduled_works+0x9cb/0x18e0
[  282.081657][ T7202]  process_scheduled_works+0xac3/0x18e0
[  282.081688][ T7202]  ? __pfx_process_scheduled_works+0x10/0x10
[  282.081711][ T7202]  ? assign_work+0x367/0x3d0
[  282.081727][ T7202]  worker_thread+0x870/0xd50
[  282.081749][ T7202]  ? __kthread_parkme+0x1a8/0x200
[  282.081766][ T7202]  ? __pfx_worker_thread+0x10/0x10
[  282.081779][ T7202]  kthread+0x7b7/0x940
[  282.081797][ T7202]  ? __pfx_worker_thread+0x10/0x10
[  282.081811][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.081825][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.081840][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.081855][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.081870][ T7202]  ? _raw_spin_unlock_irq+0x23/0x50
[  282.081881][ T7202]  ? lockdep_hardirqs_on+0x9d/0x150
[  282.081894][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.081909][ T7202]  ret_from_fork+0x4b/0x80
[  282.081923][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.081938][ T7202]  ret_from_fork_asm+0x1a/0x30
[  282.081960][ T7202]  </TASK>
[  282.085337][ T7202] BUG: sleeping function called from invalid context at kernel/locking/rwsem.c:1523
[  282.385991][ T7202] in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 7202, name: kworker/u8:13
[  282.397210][ T7202] preempt_count: 0, expected: 0
[  282.404740][ T7202] RCU nest depth: 1, expected: 0
[  282.410507][ T7202] 3 locks held by kworker/u8:13/7202:
[  282.416157][ T7202]  #0: ffff88805c820948 ((wq_completion)bond0#4){+.+.}-{0:0}, at: process_scheduled_works+0x990/0x18e0
[  282.427937][ T7202]  #1: ffffc900036afc60 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9cb/0x18e0
[  282.442220][ T7202]  #2: ffffffff8ed3dfe0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x17f/0x3170
[  282.452728][ T7202] CPU: 0 UID: 0 PID: 7202 Comm: kworker/u8:13 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  282.452759][ T7202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  282.452773][ T7202] Workqueue: bond0 bond_mii_monitor
[  282.452806][ T7202] Call Trace:
[  282.452819][ T7202]  <TASK>
[  282.452829][ T7202]  dump_stack_lvl+0x241/0x360
[  282.452854][ T7202]  ? __pfx_dump_stack_lvl+0x10/0x10
[  282.452883][ T7202]  __might_resched+0x558/0x6c0
[  282.452913][ T7202]  ? __pfx___might_resched+0x10/0x10
[  282.452943][ T7202]  ? dump_stack_lvl+0x2fd/0x360
[  282.452976][ T7202]  down_read+0x90/0xa50
[  282.452999][ T7202]  ? __local_bh_enable_ip+0x168/0x200
[  282.453011][ T7202]  ? lockdep_hardirqs_on+0x9d/0x150
[  282.453026][ T7202]  ? __local_bh_enable_ip+0x168/0x200
[  282.453037][ T7202]  ? __pfx_down_read+0x10/0x10
[  282.453054][ T7202]  ? dev_deactivate_many+0xa9b/0xca0
[  282.453082][ T7202]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  282.453112][ T7202]  ? dev_get_flags+0x147/0x1d0
[  282.453138][ T7202]  wext_netdev_notifier_call+0x1f/0x120
[  282.453165][ T7202]  notifier_call_chain+0x1a5/0x3f0
[  282.453186][ T7202]  netdev_state_change+0x123/0x1a0
[  282.453202][ T7202]  ? __pfx_netdev_state_change+0x10/0x10
[  282.453227][ T7202]  ? _raw_spin_unlock_irqrestore+0xde/0x140
[  282.453247][ T7202]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  282.453271][ T7202]  ? rfc2863_policy+0x1ce/0x3f0
[  282.453294][ T7202]  linkwatch_do_dev+0x112/0x170
[  282.453314][ T7202]  ethtool_op_get_link+0x15/0x60
[  282.453333][ T7202]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  282.453349][ T7202]  bond_check_dev_link+0x1fb/0x4b0
[  282.453369][ T7202]  ? __pfx_bond_check_dev_link+0x10/0x10
[  282.453411][ T7202]  bond_mii_monitor+0x49d/0x3170
[  282.453456][ T7202]  ? bond_mii_monitor+0x17f/0x3170
[  282.453483][ T7202]  ? do_raw_spin_unlock+0x13c/0x8b0
[  282.453515][ T7202]  ? __pfx_bond_mii_monitor+0x10/0x10
[  282.453542][ T7202]  ? register_lock_class+0x54/0x330
[  282.453565][ T7202]  ? __lock_acquire+0xad5/0xd80
[  282.453585][ T7202]  ? lockdep_hardirqs_on+0x9d/0x150
[  282.453625][ T7202]  ? process_scheduled_works+0x9cb/0x18e0
[  282.453646][ T7202]  process_scheduled_works+0xac3/0x18e0
[  282.453707][ T7202]  ? __pfx_process_scheduled_works+0x10/0x10
[  282.453741][ T7202]  ? assign_work+0x367/0x3d0
[  282.453769][ T7202]  worker_thread+0x870/0xd50
[  282.453811][ T7202]  ? __kthread_parkme+0x1a8/0x200
[  282.453837][ T7202]  ? __pfx_worker_thread+0x10/0x10
[  282.453860][ T7202]  kthread+0x7b7/0x940
[  282.453889][ T7202]  ? __pfx_worker_thread+0x10/0x10
[  282.453914][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.453936][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.453960][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.453983][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.454007][ T7202]  ? _raw_spin_unlock_irq+0x23/0x50
[  282.454025][ T7202]  ? lockdep_hardirqs_on+0x9d/0x150
[  282.454046][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.454073][ T7202]  ret_from_fork+0x4b/0x80
[  282.454093][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.454118][ T7202]  ret_from_fork_asm+0x1a/0x30
[  282.454156][ T7202]  </TASK>
[  282.792961][ T7202] 
[  282.795697][ T7202] =============================
[  282.800950][ T7202] [ BUG: Invalid wait context ]
[  282.806135][ T7202] 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 Tainted: G        W          
[  282.815134][ T7202] -----------------------------
[  282.820239][ T7202] kworker/u8:13/7202 is trying to lock:
[  282.826096][ T7202] ffffffff900f07d0 (net_rwsem){++++}-{4:4}, at: wext_netdev_notifier_call+0x1f/0x120
[  282.836098][ T7202] other info that might help us debug this:
[  282.842188][ T7202] context-{5:5}
[  282.846612][ T7202] 3 locks held by kworker/u8:13/7202:
[  282.852635][ T7202]  #0: ffff88805c820948 ((wq_completion)bond0#4){+.+.}-{0:0}, at: process_scheduled_works+0x990/0x18e0
[  282.865717][ T7202]  #1: ffffc900036afc60 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9cb/0x18e0
[  282.878857][ T7202]  #2: ffffffff8ed3dfe0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x17f/0x3170
[  282.888825][ T7202] stack backtrace:
[  282.892772][ T7202] CPU: 0 UID: 0 PID: 7202 Comm: kworker/u8:13 Tainted: G        W           6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  282.892798][ T7202] Tainted: [W]=WARN
[  282.892803][ T7202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  282.892816][ T7202] Workqueue: bond0 bond_mii_monitor
[  282.892839][ T7202] Call Trace:
[  282.892851][ T7202]  <TASK>
[  282.892859][ T7202]  dump_stack_lvl+0x241/0x360
[  282.892883][ T7202]  ? __pfx_dump_stack_lvl+0x10/0x10
[  282.892904][ T7202]  ? __pfx__printk+0x10/0x10
[  282.892927][ T7202]  __lock_acquire+0xc30/0xd80
[  282.892946][ T7202]  lock_acquire+0x116/0x2f0
[  282.892960][ T7202]  ? wext_netdev_notifier_call+0x1f/0x120
[  282.892987][ T7202]  down_read+0xb3/0xa50
[  282.893006][ T7202]  ? wext_netdev_notifier_call+0x1f/0x120
[  282.893027][ T7202]  ? __local_bh_enable_ip+0x168/0x200
[  282.893042][ T7202]  ? lockdep_hardirqs_on+0x9d/0x150
[  282.893058][ T7202]  ? __local_bh_enable_ip+0x168/0x200
[  282.893073][ T7202]  ? __pfx_down_read+0x10/0x10
[  282.893090][ T7202]  ? dev_deactivate_many+0xa9b/0xca0
[  282.893112][ T7202]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  282.893129][ T7202]  ? dev_get_flags+0x147/0x1d0
[  282.893144][ T7202]  wext_netdev_notifier_call+0x1f/0x120
[  282.893166][ T7202]  notifier_call_chain+0x1a5/0x3f0
[  282.893187][ T7202]  netdev_state_change+0x123/0x1a0
[  282.893208][ T7202]  ? __pfx_netdev_state_change+0x10/0x10
[  282.893228][ T7202]  ? _raw_spin_unlock_irqrestore+0xde/0x140
[  282.893243][ T7202]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  282.893259][ T7202]  ? rfc2863_policy+0x1ce/0x3f0
[  282.893275][ T7202]  linkwatch_do_dev+0x112/0x170
[  282.893290][ T7202]  ethtool_op_get_link+0x15/0x60
[  282.893313][ T7202]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  282.893333][ T7202]  bond_check_dev_link+0x1fb/0x4b0
[  282.893353][ T7202]  ? __pfx_bond_check_dev_link+0x10/0x10
[  282.893508][ T7202]  bond_mii_monitor+0x49d/0x3170
[  282.893539][ T7202]  ? bond_mii_monitor+0x17f/0x3170
[  282.893563][ T7202]  ? do_raw_spin_unlock+0x13c/0x8b0
[  282.893589][ T7202]  ? __pfx_bond_mii_monitor+0x10/0x10
[  282.893611][ T7202]  ? register_lock_class+0x54/0x330
[  282.893631][ T7202]  ? __lock_acquire+0xad5/0xd80
[  282.893649][ T7202]  ? lockdep_hardirqs_on+0x9d/0x150
[  282.893675][ T7202]  ? process_scheduled_works+0x9cb/0x18e0
[  282.893696][ T7202]  process_scheduled_works+0xac3/0x18e0
[  282.893726][ T7202]  ? __pfx_process_scheduled_works+0x10/0x10
[  282.893750][ T7202]  ? assign_work+0x367/0x3d0
[  282.893770][ T7202]  worker_thread+0x870/0xd50
[  282.893797][ T7202]  ? __kthread_parkme+0x1a8/0x200
[  282.893821][ T7202]  ? __pfx_worker_thread+0x10/0x10
[  282.893841][ T7202]  kthread+0x7b7/0x940
[  282.893867][ T7202]  ? __pfx_worker_thread+0x10/0x10
[  282.893888][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.893911][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.893936][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.893961][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.893985][ T7202]  ? _raw_spin_unlock_irq+0x23/0x50
[  282.894003][ T7202]  ? lockdep_hardirqs_on+0x9d/0x150
[  282.894023][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.894046][ T7202]  ret_from_fork+0x4b/0x80
[  282.894066][ T7202]  ? __pfx_kthread+0x10/0x10
[  282.894088][ T7202]  ret_from_fork_asm+0x1a/0x30
[  282.894109][ T7202]  </TASK>
[  283.247780][ T7202] BUG: sleeping function called from invalid context at kernel/locking/mutex.c:578
[  283.258159][ T7202] in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 7202, name: kworker/u8:13
[  283.268214][ T7202] preempt_count: 0, expected: 0
[  283.273264][ T7202] RCU nest depth: 1, expected: 0
[  283.279559][ T7202] INFO: lockdep is turned off.
[  283.285002][ T7202] CPU: 1 UID: 0 PID: 7202 Comm: kworker/u8:13 Tainted: G        W           6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  283.285025][ T7202] Tainted: [W]=WARN
[  283.285030][ T7202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  283.285038][ T7202] Workqueue: bond0 bond_mii_monitor
[  283.285061][ T7202] Call Trace:
[  283.285068][ T7202]  <TASK>
[  283.285074][ T7202]  dump_stack_lvl+0x241/0x360
[  283.285100][ T7202]  ? __pfx_dump_stack_lvl+0x10/0x10
[  283.285116][ T7202]  ? __pfx__printk+0x10/0x10
[  283.285131][ T7202]  ? rcu_is_watching+0x15/0xb0
[  283.285147][ T7202]  __might_resched+0x558/0x6c0
[  283.285161][ T7202]  ? __pfx___might_resched+0x10/0x10
[  283.285174][ T7202]  ? br_get_link_ksettings+0x376/0x420
[  283.285192][ T7202]  ? __pfx_br_get_link_ksettings+0x10/0x10
[  283.285234][ T7202]  ? rcu_is_watching+0x15/0xb0
[  283.285249][ T7202]  __mutex_lock+0x12c/0x10c0
[  283.285267][ T7202]  ? tee_netdev_event+0x86/0x460
[  283.285281][ T7202]  ? __pfx___mutex_lock+0x10/0x10
[  283.285296][ T7202]  ? net_generic+0x1f/0x240
[  283.285309][ T7202]  tee_netdev_event+0x86/0x460
[  283.285321][ T7202]  ? nft_offload_netdev_event+0x27d/0x360
[  283.285342][ T7202]  notifier_call_chain+0x1a5/0x3f0
[  283.285363][ T7202]  netdev_state_change+0x123/0x1a0
[  283.285383][ T7202]  ? __pfx_netdev_state_change+0x10/0x10
[  283.285403][ T7202]  ? _raw_spin_unlock_irqrestore+0xde/0x140
[  283.285416][ T7202]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  283.285428][ T7202]  ? rfc2863_policy+0x1ce/0x3f0
[  283.285441][ T7202]  linkwatch_do_dev+0x112/0x170
[  283.285453][ T7202]  ethtool_op_get_link+0x15/0x60
[  283.285470][ T7202]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  283.285486][ T7202]  bond_check_dev_link+0x1fb/0x4b0
[  283.285502][ T7202]  ? __pfx_bond_check_dev_link+0x10/0x10
[  283.285519][ T7202]  bond_mii_monitor+0x49d/0x3170
[  283.285537][ T7202]  ? bond_mii_monitor+0x17f/0x3170
[  283.285552][ T7202]  ? do_raw_spin_unlock+0x13c/0x8b0
[  283.285569][ T7202]  ? __pfx_bond_mii_monitor+0x10/0x10
[  283.285593][ T7202]  ? register_lock_class+0x54/0x330
[  283.285606][ T7202]  ? __lock_acquire+0xad5/0xd80
[  283.285617][ T7202]  ? lockdep_hardirqs_on+0x9d/0x150
[  283.285634][ T7202]  ? process_scheduled_works+0x9cb/0x18e0
[  283.285647][ T7202]  process_scheduled_works+0xac3/0x18e0
[  283.285665][ T7202]  ? __pfx_process_scheduled_works+0x10/0x10
[  283.285680][ T7202]  ? assign_work+0x367/0x3d0
[  283.285692][ T7202]  worker_thread+0x870/0xd50
[  283.285708][ T7202]  ? __kthread_parkme+0x1a8/0x200
[  283.285722][ T7202]  ? __pfx_worker_thread+0x10/0x10
[  283.285735][ T7202]  kthread+0x7b7/0x940
[  283.285751][ T7202]  ? __pfx_worker_thread+0x10/0x10
[  283.285763][ T7202]  ? __pfx_kthread+0x10/0x10
[  283.285777][ T7202]  ? __pfx_kthread+0x10/0x10
[  283.285792][ T7202]  ? __pfx_kthread+0x10/0x10
[  283.285805][ T7202]  ? __pfx_kthread+0x10/0x10
[  283.285820][ T7202]  ? _raw_spin_unlock_irq+0x23/0x50
[  283.285830][ T7202]  ? lockdep_hardirqs_on+0x9d/0x150
[  283.285842][ T7202]  ? __pfx_kthread+0x10/0x10
[  283.285856][ T7202]  ret_from_fork+0x4b/0x80
[  283.285869][ T7202]  ? __pfx_kthread+0x10/0x10
[  283.285883][ T7202]  ret_from_fork_asm+0x1a/0x30
[  283.285897][ T7202]  </TASK>
[  283.937054][ T7200] dvmrp0 (unregistering): left allmulticast mode
[  283.962420][ T7200] bond0 (unregistering): (slave bridge0): Releasing backup interface
[  284.023199][ T7200] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  284.042605][ T7200] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  284.054562][ T7200] bond0 (unregistering): Released all slaves
[  284.079316][ T5849] Bluetooth: hci2: command tx timeout
[  284.166339][ T7200] bond1 (unregistering): Released all slaves
[  284.179426][ T7200] bond2 (unregistering): Released all slaves
[  284.192314][ T7200] bond3 (unregistering): Released all slaves
[  284.203223][ T7753] netlink: 28 bytes leftover after parsing attributes in process `syz.4.474'.
[  284.301686][ T5914] usb 2-1: USB disconnect, device number 32
[  284.376165][ T7200] : left promiscuous mode
[  284.427103][ T5852] usb 1-1: USB disconnect, device number 23
[  284.651930][ T7200] hsr_slave_0: left promiscuous mode
[  284.661374][ T7200] hsr_slave_1: left promiscuous mode
[  284.668301][ T7200] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  284.682610][ T7200] batman_adv: batadv0: Removing interface: batadv_slave_1
[  284.693246][ T7200] veth1_macvtap: left promiscuous mode
[  284.701532][ T7200] veth0_macvtap: left promiscuous mode
[  284.707545][ T7200] veth1_vlan: left promiscuous mode
[  284.713193][ T7200] veth0_vlan: left promiscuous mode
[  284.892980][ T7200] team0 (unregistering): Port device team_slave_1 removed
[  284.921117][ T7200] team0 (unregistering): Port device team_slave_0 removed