last executing test programs:

9m26.310236327s ago: executing program 0 (id=1038):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)

9m26.207671651s ago: executing program 0 (id=1040):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
msgctl$MSG_STAT(0x0, 0xb, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, 0x0, 0x0)
syz_open_dev$dri(&(0x7f0000000240), 0xd21, 0x4000)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42800)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0xfffffffb}, {{}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x5}}, {}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x7}}}, 0x0, 0x9, 0x0, 0x0, 0x40f00, 0x46, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x20004040)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
r4 = syz_clone(0x100011, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x1, 0x2, &(0x7f0000000140)=@raw=[@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0x8}, @exit], &(0x7f00000000c0)='GPL\x00', 0x9}, 0x94)
r5 = syz_open_dev$vim2m(&(0x7f0000000680), 0x8, 0x2)
sendmsg(r2, &(0x7f0000000380)={&(0x7f0000000000)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000340)=[{&(0x7f00000002c0)="324ec9185bccda67a12ca432b947aca5aecece4ef034d8e6973ddd555030ed93f129f81722a0b16d36c7c3718c95bbd916aa7181ec0e599bfacc7300bafdb0f9b115ce112b273dbeb35ebd0e553190962f1e16929299a1a0df227fe0f7b01f9e682542668dca82cfccb2", 0x6a}, {&(0x7f0000000100)="87e149c447c6cb0386dc3df6739d05544b728e1721eda54e1aa35d0edcdea510c7a912a8018a8f1f14f6311a", 0x2c}], 0x2, &(0x7f00000006c0)=[{0xd4, 0x108, 0x200, "cf4ebf83138a0367b376cf290a797270c2375402249f8c90238d8daad3adf4b7612047fd4bafbf9ff01cbe0e8729dc9aef278bae2e35579d5268ecf1fe604f36cb744bbf757c6239f681b2bd9e7c146bc813d58cfbf41c883f1fda724e3b7ebeae8dd913cb587acbf4a82c783d676e90c5b760696809f1edcae5bc5f2959bed1317379e78c62f6e213d8a51c1bf454ba3924610b2c679624253654aafe2160e35740176a9f07acdc10375f83b2006c2f37465f6535dc511da1803ab97c467077be529af9b4"}, {0x44, 0x3a, 0x3, "e3024c5ba164c5451c9146d8c70990558723d19bbb036278847236bffb98f96ad81ebc6c7bceb5f161874800a25ddf190eec432156963576"}, {0x108, 0x29, 0x7, "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"}, {0xc4, 0x102, 0x4, "4678ecb9c2ea3ffcbaeb2f5a1e179a1daa61c7095ea412ea89122f46ed48918d7d2fbf85294816a82ed3386cce1395f96112dc0a78f8deeec34c33da0d5d176f832d3241c8711b29c1854a1d448c87a4c68ac39990940ca976459e20f946afc0952e06a26b24a194a6b4169b28f1952723b788a5a70f0e643c75df6622a71de0f7ac584496774233ca35bb05cb8b1adf0957ce7d10044fba24606928f040f318d0219cc36ba90ef12a5eefb9d5884037d5bcaab519faab"}, {0x8c, 0x118, 0x7, "1d713e87e8c77e6578e2cfd81512368b9c204f5b4820b7fc365cb8ea44249744176c08b7fae2ea998e50a23fb39407af6d9754a6cebdfac14867a307db5f86f8117b6444280b85bd0b100b3a4e3aa423c25b2b20ca2323ff0746d1bfe35cb6aef13a8e12eff9990d5baeeb4950c11600b4eeba1e22b3efc7ea3fb43a8404f780"}, {0x7c, 0x118, 0x4, "8a7043d3c3aa3100aa3122b984261777dad61772a1a504e5e1cf3c27ab3bb7de9c3ff8acbc9276083415b74497ee6c7261870eaaa57a9e106c8d64b7d5517769c6cad4950b8d0345021efb6979be6466bd88099f2ed379dde91748b85d054236104b1fb39490c8b8137049eea2"}, {0x9c, 0x10f, 0xf9, "e8e347f9df2bbeb035c05e8bc3d2b6883084e688eeabcef1877e27e7534c0ea88aaaa46d4b982ba88e7ad426599533da98e976b4003f988068aa95a785ec492a90a17ccfd8c75d16f97290973bd76f0a6df15c10eda456c3278ec7ff1f5602aff71d8d341eabc5235f33023dcd0caa1310193147d245fb5ad374eff74ed0a8bc0be8acb5f705bc3ec3a3da95382b71"}], 0x488}, 0x4000004)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x800007, 0x11, r5, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(r4, &(0x7f0000001100), 0x0, &(0x7f0000001140))
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000540)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x34, 0x6, 0xa, 0x201, 0x0, 0x0, {0xa}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x5}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x5c}, 0x1, 0x0, 0x0, 0x4000850}, 0x20040000)

9m24.882226959s ago: executing program 0 (id=1042):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0xf, 0x0, 0x0, 0xff000000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)

9m24.809976376s ago: executing program 0 (id=1043):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='.\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}})
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100009ac0b620110f211066865578ac0109029c000100000400090400bf900b64ea00090587033b343806"], 0x0)
r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x10000)
write$char_usb(r4, 0x0, 0x0)

9m21.673292187s ago: executing program 0 (id=1061):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x123a02, 0x0)
pwritev(r0, &(0x7f0000000040)=[{&(0x7f00000000c0)="b2", 0xfdef}], 0x10000000000000bb, 0x7, 0x1)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000140)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
r3 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@ipv6_newaddr={0x34, 0x14, 0x1, 0x0, 0x0, {0xa, 0x3f, 0x21, 0x0, r5}, [@IFA_LOCAL={0x14, 0x2, @mcast1}, @IFA_FLAGS={0x8, 0x8, 0x432}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000780)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32=r2, @ANYBLOB="019800000000000520001280080001006772650014000280080001", @ANYRES32=r2], 0x40}}, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=ANY=[@ANYBLOB="4000000010003904faffffff0000000000000000", @ANYRES32=r2, @ANYBLOB="0000000000677265001400028006001000ecf90000060011004e21000000000000001d000000000012c4eccf3e8944150c331195d98f225a45bdda4b62feb60241faab5551c3af19dcfc1513449673653af5ec62b9bcbc0a8e2556a037b5be0361a47b3f8c250bc05eef80177f0eb8b36bbf989a526ddc3be2be50fb81f093d438495e3d1db8a959a0b71a3be6d84a70d3561e42466329efc82deed27d4c45b72ee4ce7245d0997a89b40d060c1cbc4122d85c3f1258e0cbb48225e248bb1de83c129023d7b129ceb7"], 0x40}, 0x1, 0x0, 0x0, 0x40080d5}, 0x0)
rseq(0x0, 0x0, 0x0, 0x0)
r7 = openat$vicodec0(0xffffff9c, &(0x7f0000000280), 0x2, 0x0)
ioctl$VIDIOC_G_FMT(r7, 0xc0cc5604, &(0x7f0000000540)={0x9, @sdr={0x32314142, 0x1}})
syz_clone(0x10027800, &(0x7f0000000100)="d109995b275615f7de48f67c16923074ef91e78b9f638a21", 0x18, &(0x7f0000000180), 0x0, &(0x7f0000000240)="35d9c751acdf1ea044ae4016238b95c328322bfb5a3162070991e1b7")
r8 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r8, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r9 = socket(0x10, 0x803, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x302, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000015c0)=@newtfilter={0x118, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xe, 0xf}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8}, {0xec, 0x2, [@TCA_U32_SEL={0x94, 0x5, {0x7, 0xef, 0x8, 0x8, 0x5, 0x9, 0x7, 0x0, [{0x1000, 0x4, 0x401, 0x6}, {0x6, 0x7, 0x1008, 0x5}, {0xfffffff9, 0x43, 0x7ffd, 0x6}, {0x7fde, 0x40, 0x51, 0x3ff}, {0x5, 0xb, 0x8, 0x42}, {0x6, 0x4, 0x8, 0x8}, {0x8001, 0x0, 0x0, 0x8001}, {0x1, 0x1800004, 0xa525}]}}, @TCA_U32_POLICE={0x40, 0x6, [@TCA_POLICE_TBF={0x63, 0x1, {0x28bf, 0x20000000, 0xebb, 0x1, 0x2, {0x5, 0x2, 0x3, 0x1da, 0x406}, {0xf3, 0x1, 0xfffb, 0x6f4, 0x6, 0x6}, 0x6, 0x0, 0xfafd}}]}, @TCA_U32_INDEV={0x14, 0x8, 'geneve1\x00'}]}}]}, 0x118}, 0x1, 0x0, 0x0, 0x80}, 0xc040)

9m21.36948708s ago: executing program 0 (id=1064):
syz_mount_image$fuse(0x0, 0x0, 0x4004a, 0x0, 0x8, 0x8, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYRESOCT=0x0], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000000c0)='xprtrdma_mrs_zap\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
ioperm(0x8, 0x9, 0x5a)
syz_io_uring_setup(0x5c2, 0x0, 0x0, 0x0)
mmap(&(0x7f0000e8f000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002300"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0, r2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x1, 0x7ffc0002}]})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x810, r3, 0x2000000)
r4 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_PROBE_HOST(r4, 0x5385, &(0x7f0000000000)={0xed, ""/237})
munlockall()
socket$pppl2tp(0x18, 0x1, 0x1)
socket(0x28, 0x807, 0x1)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r5 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\x00'/557, 0x1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
fchmod(r5, 0x10)
sendfile(r5, r5, 0x0, 0x24002de8)
ioctl$LOOP_SET_STATUS(r5, 0x4c02, &(0x7f0000000280)={0x0, {}, 0x0, {}, 0x40000004, 0x0, 0xffffffff, 0x18, "28f5c9ea1f1ae4be4111ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba7663c435aff94793ddd7aae07ef35f17bf01933bdb6fd7ecdd91b59ca8d541", "07a9310978042a8bfe1406584a128d7469166f4f07b84819e7df4af14e1df82d", [0x200000000000006, 0xb2b]})
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
rt_sigqueueinfo(r6, 0x36, &(0x7f0000000ac0)={0x1f, 0xc4, 0xff7ffffe})
ptrace$peeksig(0x4209, r6, &(0x7f0000000000)={0x2, 0x1, 0x1}, &(0x7f0000000040)=[{}])
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)

9m21.220395532s ago: executing program 32 (id=1064):
syz_mount_image$fuse(0x0, 0x0, 0x4004a, 0x0, 0x8, 0x8, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYRESOCT=0x0], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000000c0)='xprtrdma_mrs_zap\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
ioperm(0x8, 0x9, 0x5a)
syz_io_uring_setup(0x5c2, 0x0, 0x0, 0x0)
mmap(&(0x7f0000e8f000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002300"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0, r2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x1, 0x7ffc0002}]})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x810, r3, 0x2000000)
r4 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_PROBE_HOST(r4, 0x5385, &(0x7f0000000000)={0xed, ""/237})
munlockall()
socket$pppl2tp(0x18, 0x1, 0x1)
socket(0x28, 0x807, 0x1)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r5 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\x00'/557, 0x1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
fchmod(r5, 0x10)
sendfile(r5, r5, 0x0, 0x24002de8)
ioctl$LOOP_SET_STATUS(r5, 0x4c02, &(0x7f0000000280)={0x0, {}, 0x0, {}, 0x40000004, 0x0, 0xffffffff, 0x18, "28f5c9ea1f1ae4be4111ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba7663c435aff94793ddd7aae07ef35f17bf01933bdb6fd7ecdd91b59ca8d541", "07a9310978042a8bfe1406584a128d7469166f4f07b84819e7df4af14e1df82d", [0x200000000000006, 0xb2b]})
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
rt_sigqueueinfo(r6, 0x36, &(0x7f0000000ac0)={0x1f, 0xc4, 0xff7ffffe})
ptrace$peeksig(0x4209, r6, &(0x7f0000000000)={0x2, 0x1, 0x1}, &(0x7f0000000040)=[{}])
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)

36.176740414s ago: executing program 2 (id=3498):
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e26, 0x22, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xfe}}, 0x82}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaa"], 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007880)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000040)="af0ac95ab194f93f8e795a9b29420fa62d", 0x11}], 0x1}}], 0x1, 0x4000000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x8, 0x6, &(0x7f0000000200)=ANY=[@ANYBLOB="1800008080b63428e900"/20, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055"], 0x0, 0x7, 0x0, 0x0, 0x41000, 0xf72cb191e650caa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d960001000000000000000000000000000000002000", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}})

35.771406444s ago: executing program 2 (id=3500):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, 0x0, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(r0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
r2 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff0905"], 0x0)
syz_usb_control_io$printer(r2, 0x0, &(0x7f0000000040)={0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(r2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000080)}, {&(0x7f0000000100)}, {&(0x7f0000001480)="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", 0x1001}], 0x3)

32.459003042s ago: executing program 2 (id=3511):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b7000000df000000bfa300000000000007030000f0ffffff720af0fff8ffffff71a4f0ff000000005d040200000000001d400500000000004704000001ed0000620300ff000000003f900000000000007a0a00fe00ffffffc30300ff50000000b5000000000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a864a710e4d58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00c37dfca3e35208b0bb0d2cd829e654400e2438ec649dc74a28610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75dd08d123deda88c658d42ecbf28bf7076c15b463bebba2c598b4fc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff616236fd9aa58f2477184b6a89adaf17b0a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a1074649c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c0dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6acdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a22048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06faffc3a15d96c2ea3e2e04cfe031b2875353193f82ade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f7580e69db384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a8346962a350845ffa0d829e4f79adc287906943408e6df3c3bfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fed000000007baa5b6a686b50f0937f778af083e055f6138a757ebd0ed93517a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f62e96753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c25000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca485683252b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a0032f37ff559be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b393cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee07751532d5e7d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6432399f87a7a14245bbd796a09313b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e2fa3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef907000000f01ce68abff28861aac8302d268569dd42e194e330c7aaa54ebbcefd23f21ce8153b9926e12e015cb56119df72c7533a48d028ad0c74e2a9478fa3be18a1a2b65079cc1c7bc46dd12305a1ae9dd19e8d525206c0a728cfd42193abe8130b51d6c9b94c5513df2d85e8c01a2d69841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e38534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb581012fd7a8139166fd5e59c84f4ab279b1b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336d205c5913ef670000000000000000ba470bfe62fe2933082149d42e8a0000000000000000"], &(0x7f00000001c0)='GPL\x00', 0xf, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x3f}, 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)

32.048775478s ago: executing program 2 (id=3513):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet(0xa, 0x801, 0x84)
ioctl$SNDCTL_SEQ_THRESHOLD(0xffffffffffffffff, 0x4004510d, &(0x7f00000002c0)=0xd)
connect$inet(r2, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r2, 0x8)
r3 = accept4(r2, 0x0, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f0000000080)={0x7, 0x40, 0x800d, 0xf, 0xfffffffd, 0x3, 0x3, 0x8}, &(0x7f00000000c0)=0x20)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
r5 = open_tree(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x89001)
move_mount(r5, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='.\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)={{'fd', 0x3d, r6}, 0x2c, {'rootmode', 0x3d, 0x4000}})
r7 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r7, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
connect$vsock_stream(r3, &(0x7f0000000280)={0x28, 0x0, 0x2711, @host}, 0x10)
socket(0x5, 0x80000, 0x4)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000000)={<r8=>0x0, 0x6}, &(0x7f0000000140)=0x8)
getsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000180)=@sack_info={r8, 0x7, 0xffffffff}, &(0x7f00000001c0)=0xc)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000380)=@ipv4_newroute={0x24, 0x1a, 0x1, 0x70bd2b, 0x25dfdbfb, {0xa, 0x80, 0x80}, [@RTA_FLOW={0x8, 0xb, 0x4}]}, 0x24}}, 0x0)
r9 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000100))
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
write$vhost_msg_v2(r9, &(0x7f0000000200)={0x2, 0x0, {&(0x7f0000000780)=""/227, 0xffffffffffffff46, 0x0, 0x1, 0x2}}, 0x10)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_usb_connect(0x3, 0x36, &(0x7f0000000080)=ANY=[@ANYRES16=r10], 0x0)

28.806941192s ago: executing program 2 (id=3525):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff11, 0x0, 0xffffffffffffffff, 0xfffffffffffffea5}, 0x48)

28.40533749s ago: executing program 2 (id=3527):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
msgctl$MSG_STAT(0x0, 0xb, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, 0x0, 0x0)
syz_open_dev$dri(&(0x7f0000000240), 0xd21, 0x4000)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42800)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0xfffffffb}, {{}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x5}}, {}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x7}}}, 0x0, 0x9, 0x0, 0x0, 0x40f00, 0x46, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x20004040)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
r4 = syz_clone(0x100011, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x1, 0x2, &(0x7f0000000140)=@raw=[@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0x8}, @exit], &(0x7f00000000c0)='GPL\x00', 0x9}, 0x94)
r5 = syz_open_dev$vim2m(&(0x7f0000000680), 0x8, 0x2)
sendmsg(r2, &(0x7f0000000380)={&(0x7f0000000000)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000340)=[{&(0x7f00000002c0)="324ec9185bccda67a12ca432b947aca5aecece4ef034d8e6973ddd555030ed93f129f81722a0b16d36c7c3718c95bbd916aa7181ec0e599bfacc7300bafdb0f9b115ce112b273dbeb35ebd0e553190962f1e16929299a1a0df227fe0f7b01f9e682542668dca82cfccb20bef734fa27283", 0x71}, {&(0x7f0000000100)="87e149c447c6cb0386dc3df6739d05544b728e1721eda54e1aa35d0edcdea510c7a912a8018a8f1f14f6311a", 0x2c}], 0x2, &(0x7f00000006c0)=[{0xd4, 0x108, 0x200, "cf4ebf83138a0367b376cf290a797270c2375402249f8c90238d8daad3adf4b7612047fd4bafbf9ff01cbe0e8729dc9aef278bae2e35579d5268ecf1fe604f36cb744bbf757c6239f681b2bd9e7c146bc813d58cfbf41c883f1fda724e3b7ebeae8dd913cb587acbf4a82c783d676e90c5b760696809f1edcae5bc5f2959bed1317379e78c62f6e213d8a51c1bf454ba3924610b2c679624253654aafe2160e35740176a9f07acdc10375f83b2006c2f37465f6535dc511da1803ab97c467077be529af9b4"}, {0x44, 0x3a, 0x3, "e3024c5ba164c5451c9146d8c70990558723d19bbb036278847236bffb98f96ad81ebc6c7bceb5f161874800a25ddf190eec432156963576"}, {0x108, 0x29, 0x7, "55f190b8d3e61a003d5b1d35ac939f914099fd1fff660dd2e0da2e724b20f65ac6be4bebe6b910527a58e3e8bca8c6ec3af3e664b1eeeeac0b98aada64f1378b9a3101833d1313f470861a9938b40d4a1dd5a6222f72a178f79777addd4594ce9ddd41d588329bca9620e532c94d4e54b7f471c543a5446b529816f2fdfec06f46560fb8a512d51cc072883a4e5c4c939cf54bd68f9001c1501c6e90327bd116a50930c56be1137e3ddb923cfaad12de0614ae556ab537b5df5e8f09ad340468e74bb21b5478c47a333f54cbfcc211faacbddc8e731ee0175db9d88207414e3838a0ace72a9f3637d0f3cd50ca8901073dd2fe0e68569141aa"}, {0xc4, 0x102, 0x4, "4678ecb9c2ea3ffcbaeb2f5a1e179a1daa61c7095ea412ea89122f46ed48918d7d2fbf85294816a82ed3386cce1395f96112dc0a78f8deeec34c33da0d5d176f832d3241c8711b29c1854a1d448c87a4c68ac39990940ca976459e20f946afc0952e06a26b24a194a6b4169b28f1952723b788a5a70f0e643c75df6622a71de0f7ac584496774233ca35bb05cb8b1adf0957ce7d10044fba24606928f040f318d0219cc36ba90ef12a5eefb9d5884037d5bcaab519faab"}, {0x8c, 0x118, 0x7, "1d713e87e8c77e6578e2cfd81512368b9c204f5b4820b7fc365cb8ea44249744176c08b7fae2ea998e50a23fb39407af6d9754a6cebdfac14867a307db5f86f8117b6444280b85bd0b100b3a4e3aa423c25b2b20ca2323ff0746d1bfe35cb6aef13a8e12eff9990d5baeeb4950c11600b4eeba1e22b3efc7ea3fb43a8404f780"}, {0x7c, 0x118, 0x4, "8a7043d3c3aa3100aa3122b984261777dad61772a1a504e5e1cf3c27ab3bb7de9c3ff8acbc9276083415b74497ee6c7261870eaaa57a9e106c8d64b7d5517769c6cad4950b8d0345021efb6979be6466bd88099f2ed379dde91748b85d054236104b1fb39490c8b8137049eea2"}, {0x9c, 0x10f, 0xf9, "e8e347f9df2bbeb035c05e8bc3d2b6883084e688eeabcef1877e27e7534c0ea88aaaa46d4b982ba88e7ad426599533da98e976b4003f988068aa95a785ec492a90a17ccfd8c75d16f97290973bd76f0a6df15c10eda456c3278ec7ff1f5602aff71d8d341eabc5235f33023dcd0caa1310193147d245fb5ad374eff74ed0a8bc0be8acb5f705bc3ec3a3da95382b71"}], 0x488}, 0x4000004)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x800007, 0x11, r5, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(r4, &(0x7f0000001100), 0x0, &(0x7f0000001140))
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000540)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x34, 0x6, 0xa, 0x201, 0x0, 0x0, {0xa}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x5}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x5c}, 0x1, 0x0, 0x0, 0x4000850}, 0x20040000)

27.609003062s ago: executing program 33 (id=3527):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
msgctl$MSG_STAT(0x0, 0xb, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, 0x0, 0x0)
syz_open_dev$dri(&(0x7f0000000240), 0xd21, 0x4000)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42800)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0xfffffffb}, {{}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x5}}, {}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x7}}}, 0x0, 0x9, 0x0, 0x0, 0x40f00, 0x46, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x20004040)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
r4 = syz_clone(0x100011, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x1, 0x2, &(0x7f0000000140)=@raw=[@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0x8}, @exit], &(0x7f00000000c0)='GPL\x00', 0x9}, 0x94)
r5 = syz_open_dev$vim2m(&(0x7f0000000680), 0x8, 0x2)
sendmsg(r2, &(0x7f0000000380)={&(0x7f0000000000)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000340)=[{&(0x7f00000002c0)="324ec9185bccda67a12ca432b947aca5aecece4ef034d8e6973ddd555030ed93f129f81722a0b16d36c7c3718c95bbd916aa7181ec0e599bfacc7300bafdb0f9b115ce112b273dbeb35ebd0e553190962f1e16929299a1a0df227fe0f7b01f9e682542668dca82cfccb20bef734fa27283", 0x71}, {&(0x7f0000000100)="87e149c447c6cb0386dc3df6739d05544b728e1721eda54e1aa35d0edcdea510c7a912a8018a8f1f14f6311a", 0x2c}], 0x2, &(0x7f00000006c0)=[{0xd4, 0x108, 0x200, "cf4ebf83138a0367b376cf290a797270c2375402249f8c90238d8daad3adf4b7612047fd4bafbf9ff01cbe0e8729dc9aef278bae2e35579d5268ecf1fe604f36cb744bbf757c6239f681b2bd9e7c146bc813d58cfbf41c883f1fda724e3b7ebeae8dd913cb587acbf4a82c783d676e90c5b760696809f1edcae5bc5f2959bed1317379e78c62f6e213d8a51c1bf454ba3924610b2c679624253654aafe2160e35740176a9f07acdc10375f83b2006c2f37465f6535dc511da1803ab97c467077be529af9b4"}, {0x44, 0x3a, 0x3, "e3024c5ba164c5451c9146d8c70990558723d19bbb036278847236bffb98f96ad81ebc6c7bceb5f161874800a25ddf190eec432156963576"}, {0x108, 0x29, 0x7, "55f190b8d3e61a003d5b1d35ac939f914099fd1fff660dd2e0da2e724b20f65ac6be4bebe6b910527a58e3e8bca8c6ec3af3e664b1eeeeac0b98aada64f1378b9a3101833d1313f470861a9938b40d4a1dd5a6222f72a178f79777addd4594ce9ddd41d588329bca9620e532c94d4e54b7f471c543a5446b529816f2fdfec06f46560fb8a512d51cc072883a4e5c4c939cf54bd68f9001c1501c6e90327bd116a50930c56be1137e3ddb923cfaad12de0614ae556ab537b5df5e8f09ad340468e74bb21b5478c47a333f54cbfcc211faacbddc8e731ee0175db9d88207414e3838a0ace72a9f3637d0f3cd50ca8901073dd2fe0e68569141aa"}, {0xc4, 0x102, 0x4, "4678ecb9c2ea3ffcbaeb2f5a1e179a1daa61c7095ea412ea89122f46ed48918d7d2fbf85294816a82ed3386cce1395f96112dc0a78f8deeec34c33da0d5d176f832d3241c8711b29c1854a1d448c87a4c68ac39990940ca976459e20f946afc0952e06a26b24a194a6b4169b28f1952723b788a5a70f0e643c75df6622a71de0f7ac584496774233ca35bb05cb8b1adf0957ce7d10044fba24606928f040f318d0219cc36ba90ef12a5eefb9d5884037d5bcaab519faab"}, {0x8c, 0x118, 0x7, "1d713e87e8c77e6578e2cfd81512368b9c204f5b4820b7fc365cb8ea44249744176c08b7fae2ea998e50a23fb39407af6d9754a6cebdfac14867a307db5f86f8117b6444280b85bd0b100b3a4e3aa423c25b2b20ca2323ff0746d1bfe35cb6aef13a8e12eff9990d5baeeb4950c11600b4eeba1e22b3efc7ea3fb43a8404f780"}, {0x7c, 0x118, 0x4, "8a7043d3c3aa3100aa3122b984261777dad61772a1a504e5e1cf3c27ab3bb7de9c3ff8acbc9276083415b74497ee6c7261870eaaa57a9e106c8d64b7d5517769c6cad4950b8d0345021efb6979be6466bd88099f2ed379dde91748b85d054236104b1fb39490c8b8137049eea2"}, {0x9c, 0x10f, 0xf9, "e8e347f9df2bbeb035c05e8bc3d2b6883084e688eeabcef1877e27e7534c0ea88aaaa46d4b982ba88e7ad426599533da98e976b4003f988068aa95a785ec492a90a17ccfd8c75d16f97290973bd76f0a6df15c10eda456c3278ec7ff1f5602aff71d8d341eabc5235f33023dcd0caa1310193147d245fb5ad374eff74ed0a8bc0be8acb5f705bc3ec3a3da95382b71"}], 0x488}, 0x4000004)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x800007, 0x11, r5, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(r4, &(0x7f0000001100), 0x0, &(0x7f0000001140))
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000540)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x34, 0x6, 0xa, 0x201, 0x0, 0x0, {0xa}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x5}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x5c}, 0x1, 0x0, 0x0, 0x4000850}, 0x20040000)

9.933457656s ago: executing program 1 (id=3606):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000480)=ANY=[@ANYBLOB="cc0000001b000100000000000000000000000000000000000000000000030000ff0200000000000000000000000000010000000000000000000000002f000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000e3000000000000000000000000001800000000000000040000000000400000000000000000000000810000000000000000000000000000000100000000000080000000000000000000000000000000000000000000000000000000000800000000000000000000000c0015005907"], 0xcc}}, 0x0)

9.718393549s ago: executing program 1 (id=3607):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket$inet6(0xa, 0x80002, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$dri(&(0x7f0000000000), 0x1f, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet6(0xa, 0xa, 0x6)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000100)={@dev={0xfe, 0x80, '\x00', 0x23}, 0x800, 0x0, 0x2, 0x1, 0x80, 0x7}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000240)={@loopback, 0x800, 0x0, 0x2, 0x0, 0x8, 0x8}, 0x20)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$TCFLSH(0xffffffffffffffff, 0x540b, 0x0)
r4 = add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0xfe3a, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000780)={0x0, r4}, 0x0, 0x0, 0x0)
sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x4000104)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x8911, &(0x7f0000000140)={0xa, 0xfffc, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x1}, 0x1c)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r8, {0x0, 0xb}, {0xffff, 0xffff}, {0x10, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_RSC={0x10, 0x1, {0x100, 0x0, 0x7fffffff}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@getqdisc={0x24, 0x26, 0x1, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r8, {}, {0x0, 0xb}, {0xa, 0xa}}}, 0x24}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4048000)
r9 = dup(r5)
shmget$private(0x0, 0x4000, 0x40, &(0x7f0000ffc000/0x4000)=nil)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r9, 0x2000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)

7.553671158s ago: executing program 3 (id=3621):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x88fd537e5e114b6f, 0x12, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x4, 0x89727a31546dcc4a, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) (fail_nth: 7)

7.134782543s ago: executing program 1 (id=3622):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), r1)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000002c0)={'wg2\x00'})
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000001480)={'wg2\x00', <r4=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000002040)=ANY=[@ANYBLOB='@\r\x00\x00', @ANYRES16=r3, @ANYBLOB="05000000000000000000010000000600060000000000c40c0880e400008024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b24000100000000000000000000000000000000000000000000000000000000000000000024000200fcbefe9641719404cc5c9ab2766dd4793e367b0ea55e65e2e3416ac9d4e68841240002001171ee8da334a5099295af229a5d237a7f4102f01f28b34347d6cbbe135d83ec24000100975c9d81c983c8209ee781254b899f8ed925ae9f0923c23c62f53c57cdbf691c0800030000000000240002005da952055e5857d673cddd36909746c80efa3ff95c317de1063db32bc80a0b3e0003008024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0600050000000000d002098058000080060001000200000008000200ac1e00010500030000000000060001000a00000014000200000000000000000000000000000000010500030000000000060001000200000008000200ffffffff05000300000000007c000080060001000a00000014000200000000000000000000000000000000010500030000000000060001000200000008000200ac1414bb0500030000000000060001000a00000014000200000000000000000000000000000000010500030000000000060001000200000008000200000000000500030000000000dc000080060001000a0000001400020000000000000000000000ffffac1414aa05000300000000000600010002000000080002000000000005000300000000000600010002000000080002007f0000010500030000000000060001000200000008000200000000000500030000000000060001000200000008000200e00000010500030000000000060001000a00000014000200fc0100000000000000000000000000000500030000000000060001000200000008000200000000000500030000000000060001000200000008000200ac1e0001050003000000000094000080060001000a00000014000200fc0200000000000000000000000000000500030000000000060001000a00000014000200ff0100000000000000000000000000010500030000000000060001000200000008000200e00000010500030000000000060001000200000008000200ac1414bb0500030000000000060001000200000008000200ffffffff050003000000000088000080060001000a00000014000200fe8000000000000000000000000000aa0500030000000000060001000200000008000200ac1414aa0500030000000000060001000a00000014000200fe8800000000000000000000000000010500030000000000060001000a00000014000200ff020000000000000000000000000001050003000000000064000080080003000000000008000a000100000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b3922080003000000000024000200379aa288b2244a5b504ba04bea45625d328fb93b62e607a1b2e4da2f7f76a5499400008024000100975c9d81c983c8209ee781254b899f8ed925ae9f0923c23c62f53c57cdbf691c080003000000000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b3922080003000000000024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b1400040002000000000000000000000000000000d807008000030980f4000080060001000a00000014000200000000000000000000000000000000000500030000000000060001000a00000014000200fc0000000000000000000000000000000500030000000000060001000200000008000200ffffffff0500030000000000060001000200000008000200ac1e00010500030000000000060001000200000008000200e000000105000300000000000600010002000000080002007f0000010500030000000000060001000a00000014000200000000000000000000000000000000010500030000000000060001000a00000014000200fc01000000000000000000000000000005000300000000004c000080060001000200000008000200ac1414bb0500030000000000060001000200000008000200000000000500030000000000060001000200000008000200ac1414bb05000300000000000c010080060001000a00000014000200200100000000000000000000000000010500030000000000060001000200000008000200e000000205000300000000000600010002000000080002000000000005000300000000000600010002000000080002007f0000010500030000000000060001000a00000014000200fe8800000000000000000000000000010500030000000000060001000a00000014000200fe8000000000000000000000000000bb0500030000000000060001000200000008000200ffffffff0500030000000000060001000200000008000200e00000010500030000000000060001000a00000014000200fc0100000000000000000000000000000500030000000000940000800600010002000000080002000000000005000300000000000600010002000000080002000000000005000300000000000600010002000000080002007f0000010500030000000000060001000200000008000200e00000020500030000000000060001000200000008000200ac1414000500030000000000060001000200000008000200ac14140005000300000000001c000080060001000200000008000200ffffffff0500030000000000080003000000000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b39221d0004000a0000000000000000000000000000000000ffffac1e0001000000001c04098094000080060001000a0000001400020000000000000000000000ffffac1414bb0500030000000000060001000a00000014000200fe8800000000000000000000000000010500030000000000060001000a00000014000200ff0100000000000000000000000000010500030000000000060001000a00000014000200fe880000000000000000000000000001050003000000000064000080060001000a00000014000200fe8000000000000000000000000000bb0500030000000000060001000200000008000200ac1414bb0500030000000000060001000a0000001400020000000000000000000000ffffe00000020500030000000000ac000080060001000200000008000200000000000500030000000000060001000a00000014000200fe80000000000000000000000000000005000300000000000600010002000000080002007f0000010500030000000000060001000200000008000200ac1414bb0500030000000000060001000a00000014000200000000000000000000000000000000010500030000000000060001000200000008000200e0000001050003000000000064000080060001000a00000014000200fc0100000000000000000000000000000500030000000000060001000a00000014000200fe8000000000000000000000000000bb0500030000000000060001000200000008000200ac1414000500030000000000f4000080060001000200000008000200000000000500030000000000060001000a00000014000200200100000000000000000000000000000500030000000000060001000a00000014000200fc0200000000000000000000000000000500030000000000060001000a00000014000200fe8000000000000000000000000000aa0500030000000000060001000200000008000200ac1414aa0500030000000000060001000200000008000200000000000500030000000000060001000200000008000200ac1414000500030000000000060001000a00000014000200200100000000000000000000000000020500030000000000a0000080060001000a00000014000200fc0000000000000000000000000000000500030000000000060001000200000008000200ac1414aa0500030000000000060001000a00000014000200fe8800000000000000000000000000010500030000000000060001000a00000014000200fe8000000000000000000000000000aa0500030000000000060001000200000008000200ac14140005000300000000007c000080060001000200000008000200ac1414aa0500030000000000060001000a00000014000200fe8000000000000000000000000000000500030000000000060001000200000008000200e00000010500030000000000060001000a00000014000200fe8000000000000000000000000000bb050003000000000024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b2400020055fbc2635cc801d67c589cc98f3cf65074dffe0886750dec83be49fbf628e1dc240002000f1b8b82264208ab1a2dce776c03b9f348f500ef8e7606466943f5ba2ae2881e0c0000800800030000000000060006000000000008000100", @ANYRES32=r4, @ANYBLOB="240003000000000000224e0000000000000000000000000000000000000000000000000024000300a05ca84f6c9c8e3853e2fd7a7cae0fb20fa152600cb00845174f08076f8d7843080007"], 0xd40}}, 0x0)

7.037816424s ago: executing program 1 (id=3623):
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002240)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a1c000000120a0300000000d6f810460bb38211819ea371cfd393a300000000000a000001080003400000000728000000030a0101000000000000000003000002080007006e6174000900030073797a32000000002c000000030a05000000000000000000010000090c00024000000000000000010900010073797a3000000000140000001100010000000000000000000700000a"], 0x98}}, 0x0)
fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)})
ioctl$DRM_IOCTL_MODE_GETPLANE(r2, 0xc02064b6, &(0x7f00000001c0)={0x0, 0x0, <r3=>0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000000380)={0x401, 0x1, &(0x7f00000002c0)=[r3], 0x0, 0x0, 0x0, 0x0, 0x300})
syz_usb_connect(0x0, 0x24, &(0x7f0000004200)=ANY=[@ANYBLOB="12010000e2793b10d10501200010010203010902120001000000000904"], 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r5=>0x0})
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r7=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)=ANY=[@ANYBLOB="540000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="15020000fe0f00001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r7, @ANYBLOB="080004"], 0x54}, 0x1, 0xba01, 0x0, 0x4010}, 0x4000000)
r8 = syz_open_dev$video(&(0x7f00000020c0), 0x101, 0x4000)
r9 = syz_open_procfs(0x0, &(0x7f0000000040)='net/dev_mcast\x00')
read$FUSE(r9, &(0x7f0000000080)={0x2020}, 0x2020)
pread64(r9, &(0x7f000001a240)=""/102388, 0x18ff4, 0x100008)
ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r8, 0xc034564b, &(0x7f0000000040)={0xfffffffc, 0x32344d59, 0x1280, 0x168})
syz_usb_connect(0x0, 0x24, &(0x7f0000002100)=ANY=[@ANYBLOB="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"], 0x0)
r10 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x191000)
r11 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='smaps_rollup\x00')
r12 = socket$inet6(0xa, 0x3, 0x5)
connect$inet6(r12, &(0x7f0000000200)={0xa, 0x4e24, 0x0, @empty}, 0x1c)
sendmmsg(r12, &(0x7f00000092c0), 0x4ff, 0x0)
setsockopt$inet6_int(r12, 0x29, 0x35, 0x0, 0x0)
setsockopt$XDP_RX_RING(r11, 0x11b, 0x2, &(0x7f0000000180)=0x4, 0x4)
ioctl$I2C_RDWR(r10, 0x707, &(0x7f0000000380)={&(0x7f0000000340)=[{0x8, 0x0, 0x4e, &(0x7f0000000040)="d7bc3388c8619e1ffd835c7089ecb55d62f36a888e3e068fd518e274782208ee63b4dd65d947ab030dd7c89f4e8396fc286ef12ddb2143b252b09b29d543b8b0aa72077b274d539693ea84f64d19"}], 0x1})

5.22980809s ago: executing program 1 (id=3631):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r0 = syz_clone(0x400, &(0x7f0000000000)="d3e220ca145cac19a41689358281414ff26c7ee90bf9baa8e7afc19bbeab1da0a50807703b0d571f4e38e3de00ef578604bd5e4d888d6825aeb7465a9a855665c74cb91bfac6732fbb3c097cac09d2d3d03ad38ea0250bedb2", 0x59, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)="315a7034cc6ae149a20602f2aa9e5d0e650082e9178d1143f9c4df7c45dde0309977c261c4504cb1b8a5f614a8bbce26b04f3c6b9cd6a6382d51d69df2cb078e5f4d4902e68bd6608f9aa074445bf880f8866837d0af35d5309b20a15d79fcd73c2e126a46db1f4e4e04721b0c30a04adffdf105e1bd8060ba085be315b5f9f1b3b449499b1b088157b5e5ce5a7d0e3e5cf58ce47097aad1ce7a8231f528cd35e69348")
syz_open_procfs(r0, &(0x7f00000001c0)='attr/exec\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x6, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
capset(&(0x7f00000002c0)={0x19980330}, &(0x7f0000000300))

5.164204146s ago: executing program 3 (id=3632):
r0 = syz_open_dev$dri(&(0x7f0000000040), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f0000000140)={0x0, 0x0, r1, <r2=>0x0})
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r0, 0xc01864b0, &(0x7f0000000000)={r1, r2, 0x1, 0x0, 0x3}) (fail_nth: 5)

4.341396773s ago: executing program 5 (id=3636):
r0 = socket$kcm(0x10, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r2 = syz_io_uring_setup(0x111, &(0x7f0000000380)={0x0, 0xe1a2, 0x80, 0x0, 0x2df}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000440)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x5a, 0x14, r0, 0x0, &(0x7f0000000d40)={&(0x7f0000000680)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @remote}}}, 0x80, &(0x7f0000000c80)=[{&(0x7f0000000700)=""/241, 0xf1}, {&(0x7f0000000300)=""/6, 0x5e}, {&(0x7f0000000400)=""/15, 0xf}, {&(0x7f0000000480)=""/52, 0x34}, {&(0x7f0000000800)=""/129, 0x81}, {&(0x7f0000000b80)=""/218, 0xda}, {&(0x7f0000000900)=""/117, 0x75}], 0x7, &(0x7f0000000cc0)=""/39, 0x27}, 0x0, 0x80002103, 0x1})
io_uring_enter(r2, 0x3516, 0xa5b8, 0x0, 0x0, 0x0)
r5 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000240), 0xa000, 0x0)
readv(r5, &(0x7f00000008c0)=[{&(0x7f0000000280)=""/34, 0x22}, {0x0}], 0x2)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000000, 0x20010, r0, 0xe062000)
unshare(0x66000080)
r6 = socket$netlink(0x10, 0x3, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100009dea7840b418fbff7bdc010203010902"], 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000001c0)={'netdevsim0\x00'})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, 0x0)
gettid()
r7 = signalfd4(r6, &(0x7f0000000040)={[0x7, 0x8]}, 0x8, 0x80000)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r8, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r8, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
connect$inet(r8, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r8, &(0x7f00000004c0)="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", 0x1b0, 0x805, 0x0, 0x0)
recvmmsg(r8, &(0x7f00000031c0)=[{{0x0, 0x0, &(0x7f0000000a40)=[{0x0}], 0x1}}, {{0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000000980)=""/146, 0x92}, {&(0x7f0000000080)=""/43, 0x2b}, {&(0x7f0000000a80)=""/242, 0xf2}, {0x0, 0x12}], 0x4}, 0x2}], 0x2, 0x22, 0x0)
sendmmsg$unix(r8, &(0x7f0000001f00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8841}}], 0x1, 0x4000040)
r9 = socket(0x2, 0x80805, 0x9)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r9, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x20, &(0x7f0000000200)=[@in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x2, 0x0}}, @in={0x2, 0x4e21, @multicast2}]}, &(0x7f0000000180)=0xc)
getsockopt$inet_sctp_SCTP_MAX_BURST(r9, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r10=>0x0}, &(0x7f0000000100)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r9, 0x84, 0x18, &(0x7f0000000040)={r10, 0x40}, 0x8)
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r7, 0x84, 0x18, &(0x7f0000000100)={r10, 0x5}, 0x8)
socket$kcm(0x29, 0xa, 0x0)

4.134707221s ago: executing program 4 (id=3638):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff)
r2 = socket$l2tp6(0xa, 0x2, 0x73)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x3c, r1, 0x917, 0x70bd28, 0x25dfdbff, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x1}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1}, @L2TP_ATTR_FD={0x8, 0x17, @l2tp6=r2}]}, 0x3c}, 0x1, 0x620b, 0xffe4}, 0x0)

4.010300284s ago: executing program 1 (id=3639):
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x85, &(0x7f0000000200)={0x0, @in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x39}}}}, 0x1, 0x0, 0x550, 0x833, 0x0, 0x8}, &(0x7f00000001c0)=0x9c)
r1 = socket(0x840000000002, 0x3, 0xfa)
r2 = syz_open_dev$amidi(&(0x7f0000000000), 0x2, 0x40)
ioctl$SNDRV_RAWMIDI_IOCTL_STATUS32(r2, 0xc0245720, &(0x7f0000001800))
sendmmsg$inet(r1, &(0x7f0000000bc0)=[{{&(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10, 0x0}}, {{&(0x7f0000000380)={0x2, 0x4e22, @empty}, 0x10, 0x0}}], 0x2, 0x8804)
r3 = syz_usb_connect(0x2, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x75, 0x1c, 0x1, 0x10, 0xfe6, 0x9800, 0xd19a, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x29, 0x2, 0x2, 0xb4, 0x8c, 0xbb, 0x0, [], [{{0x9, 0x5, 0x4, 0x2, 0x10, 0x0, 0xfa}}, {{0x9, 0x5, 0x82, 0x2, 0x40}}]}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ncm(r3, 0x0, 0x0)
syz_usb_control_io(r3, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r3, 0x0, &(0x7f0000000580)={0x24, &(0x7f0000000340)={0x20, 0x24}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r3, 0x0, 0x0)
r4 = syz_open_dev$video4linux(&(0x7f0000000000), 0x40000cc4, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r4, 0xc040564a, &(0x7f0000000140)={0x0, 0x0, 0x3008, 0x0, 0x0, 0x0, 0x200000, 0x1})
syz_usb_control_io$cdc_ncm(r3, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000040), 0xf)
r5 = socket(0x2, 0x6, 0x0)
sendmmsg$inet_sctp(r5, &(0x7f00000032c0)=[{&(0x7f0000000440)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)}], 0x1, 0x0)

3.89427809s ago: executing program 4 (id=3640):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'dummy0\x00', <r4=>0x0})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r5=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=@newlink={0x40, 0x10, 0x403, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x215}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @hsr={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE1={0x8, 0x1, r4}, @IFLA_HSR_SLAVE2={0x8, 0x2, r5}]}}}]}, 0x40}, 0x1, 0xba01, 0x0, 0x4000044}, 0x10)
connect$can_j1939(r0, &(0x7f0000000140)={0x1d, r1, 0x0, {0x1}}, 0xfe09)
sendmmsg(r0, &(0x7f000000a200), 0x3ffffffffffff31, 0x60000800)
r6 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r7 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000240)=@generic={&(0x7f0000000100)='./file0\x00'}, 0x14)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000003c0)={@map=0x1, 0xb, 0x0, 0x3, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x3, 0x0, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0], &(0x7f0000000380)=[0x0, 0x0], <r8=>0x0}, 0x40)
r9 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000800)=@bpf_ext={0x1c, 0x1b, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7}, [@map_fd={0x18, 0x7}, @initr0={0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x3ff}, @initr0={0x18, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x7}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, 0x1}}, @map_val={0x18, 0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1}, @ringbuf_query, @printk={@i, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x6246}}]}, &(0x7f0000000540)='syzkaller\x00', 0xf, 0xff, &(0x7f00000005c0)=""/255, 0x41000, 0x6, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000006c0)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000700)={0x1, 0x2, 0x9, 0x4}, 0x10, 0x1b4a1, 0xffffffffffffffff, 0x5, &(0x7f0000000740)=[0x1, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000780)=[{0x1, 0x4, 0xd, 0x1}, {0x4, 0x1, 0x4, 0x9}, {0x5, 0x2, 0xe}, {0x2, 0x2, 0x1, 0x1}, {0x1, 0x1, 0x8, 0x4}], 0x10, 0x4}, 0x94)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000400)={@fallback=r3, r7, 0x30, 0x18, 0x0, @void, @value=r9, @void, @void, r8}, 0x20)
pipe2$watch_queue(&(0x7f0000000140)={0xffffffffffffffff, <r10=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r6, r10, 0x67)
ioctl$KVM_CAP_HYPERV_TLBFLUSH(r10, 0x4068aea3, &(0x7f00000001c0))
connect$can_j1939(r0, &(0x7f0000000a40)={0x1d, r1, 0x1, {0x0, 0xf0, 0x1}, 0x2}, 0x18)

3.1127906s ago: executing program 4 (id=3643):
r0 = openat$qrtrtun(0xffffff9c, &(0x7f00000002c0), 0x412401)
close_range(0xffffffffffffffff, r0, 0x2)
r1 = syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000080)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x10, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0xff, 0x2, 0x7, 0x1, 0x1, 0x0, "", {{{0x9, 0x5, 0x1, 0x2, 0x0, 0x3}}}}}]}}]}}, 0x0)
r2 = syz_usb_connect$printer(0x2, 0x36, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x20, 0x4b8, 0x202, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0xf, 0x10, 0x9, [{{0x9, 0x4, 0x0, 0x80, 0x2, 0x7, 0x1, 0x1, 0xb9, "", {{{0x9, 0x5, 0x1, 0x2, 0x5d7, 0x9, 0x7, 0xee}}, [{{0x9, 0x5, 0x82, 0x2, 0x20, 0xd, 0x6, 0x2}}]}}}]}}]}}, &(0x7f0000000280)={0xa, &(0x7f0000000140)={0xa, 0x6, 0x110, 0x3b, 0x3f, 0x4a, 0xff, 0xf0}, 0x3e, &(0x7f0000000180)={0x5, 0xf, 0x3e, 0x3, [@ss_container_id={0x14, 0x10, 0x4, 0x6, "289cec7e0674b5c80a24dfb1aef622db"}, @ptm_cap={0x3}, @generic={0x22, 0x10, 0xb, "e0df0b91cc96344231fca3a501ab5491bd2a52fe497a68735b8125c9d84238"}]}, 0x2, [{0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x436}}, {0x69, &(0x7f0000000200)=@string={0x69, 0x3, "eb5e8e82049739575f9324852767220cae357143a6b02cabb4a22b824c965fc9ae9fecb84c39e788ab6226b82a2045c2e9a9bbeea4501f9aff0e8dd01b99e4d51c0341cf9af2f55b067f93fb4f6b52b50121f7694ae4399ac0cfafc15c23edda89802b2aa99c05"}}]})
syz_usb_control_io$printer(r2, 0x0, &(0x7f0000000300)={0x76, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001180)={0x20, 0x0, 0x1, 0x1b}})
getgid()
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r3, 0x0, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
r4 = openat$dlm_monitor(0xffffff9c, &(0x7f0000000340), 0x701100, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000380))
mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000)
r5 = socket$kcm(0x10, 0x2, 0x0)
syz_open_dev$vcsn(&(0x7f00000000c0), 0x4, 0x32300)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200), 0x2, 0x0, 0x0, 0x4a0f0000}, 0x20004010)
ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, &(0x7f0000000040)={0xd, 0x401, 0x61d2, 0x10000, 0x7})

3.018752407s ago: executing program 3 (id=3644):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0xf, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)

3.01625304s ago: executing program 6 (id=3654):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
syz_clone(0x86000, 0x0, 0x0, 0x0, &(0x7f0000000240), 0x0) (async)
r1 = socket$kcm(0x2, 0xa, 0x2)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) (async)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0) (async)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) (async)
writev(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000180)}], 0x1) (async)
r5 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r5, 0x0, &(0x7f00000000c0)={0x44, &(0x7f0000000140)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
r6 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r6, 0x40025b0c, &(0x7f0000000040))
r7 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r7, 0x8b0b, &(0x7f0000000000)={'virt_wifi0\x00', @random="8dffffff0600"})
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="380000005500e95f25bd7000fedbdf2507000000", @ANYRES32=r2, @ANYBLOB="200001"], 0x38}}, 0x0) (async)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000040)={@val={0x0, 0x800}, @val={0x0, 0x0, 0x3}, @ipv4=@icmp={{0x8, 0x4, 0x1, 0x16, 0x28, 0x65, 0x0, 0x4, 0x1, 0x0, @private=0xa010100, @broadcast, {[@timestamp={0x44, 0xc, 0x89, 0x0, 0x4, [0x2, 0x2]}]}}, @address_reply={0x12, 0x0, 0x0, 0xffff}}}, 0x36)

2.824281244s ago: executing program 3 (id=3645):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000200)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
fchdir(0xffffffffffffffff)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), 0xffffffffffffffff)
r2 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = socket(0x22, 0x2, 0x3)
getsockopt$packet_buf(r3, 0x107, 0x1, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_PORT_GET(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x3c, r4, 0x1, 0x0, 0x0, {0x54}, [{{@nsim={{0xe, 0x2}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8001}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1b, 0x3, &(0x7f0000000100)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0xc, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14}, 0x94)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, &(0x7f0000000100)={0x1b, "5660359c3245d1c42317afad7d48ed51000000000000000100"})
r6 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x141100, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, &(0x7f0000000140)={0x1000, "340b7832ceefd131b8e6498c25f58fad9987ffe93bbabd18cf501922de974a27", <r7=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r7, 0xc0303e03, &(0x7f00000000c0)={"3c24139ed44aec57f2e2ad238a7b448ed886923c31d4b8affbf514fd00", r7, <r8=>0xffffffffffffffff})
ppoll(&(0x7f0000000000)=[{r8}], 0x1, 0x0, 0x0, 0x0)
close_range(r2, r8, 0x0)
r9 = memfd_create(&(0x7f0000000480)='[\v\xdbX\xae[5\xa9\x90\xffc\x1f\x1a\xa9\xfd\xfa\xad\xd1md\xe7\xe2\x7f\x9b\xd5R\x10\xf3\xb6\xffT\xbf\xd1\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\x9fc\xda\xa9\x83r\xd8\x98\x00\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9', 0x0)
write$binfmt_script(r9, &(0x7f0000000740)={'#! ', './file0'}, 0xb)
pwrite64(r9, &(0x7f0000000040)="ab", 0x1, 0x2)
execveat(r9, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

2.629531847s ago: executing program 6 (id=3646):
socket$nl_generic(0x10, 0x3, 0x10)
openat$audio(0xffffffffffffff9c, 0x0, 0x109842, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8000000, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19}, 0x42)

1.634951651s ago: executing program 5 (id=3647):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0xf, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0xf0}, 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)

1.314171149s ago: executing program 3 (id=3648):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff11, 0x0, 0xffffffffffffffff, 0xfffffffffffffea5}, 0x48)

1.281208684s ago: executing program 5 (id=3649):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x34, 0x10, 0x403, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x74, 0x0, 0x800}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, "fee896072000001ea89de600da2e5125960001400000000000000000000000000007000000000000000000005245000000000000000000000000000000e600", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd0000007dcbd7d6c300"}})

1.132414079s ago: executing program 3 (id=3650):
r0 = syz_usb_connect(0x1, 0x24, &(0x7f0000002280)={{0x12, 0x1, 0x200, 0xce, 0x85, 0x9b, 0x8, 0x2040, 0xb140, 0x7536, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x9, 0x3, 0x40, 0xf2, [{{0x9, 0x4, 0x1, 0x8, 0x0, 0xff, 0x4e, 0x42, 0x5}}]}}]}}, &(0x7f0000003600)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
syz_usb_control_io(r0, &(0x7f0000000140)={0x18, &(0x7f0000000000)={0x40, 0x10, 0x26, {0x26, 0x11, "a6d271baf36dabfd4bb620fd74d493a298261102e8b39344f1740893f8eeb88671d42c2d"}}, &(0x7f0000000040)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x827}}, &(0x7f0000000080)={0x0, 0xf, 0x15, {0x5, 0xf, 0x15, 0x1, [@ssp_cap={0x10, 0x10, 0xa, 0x40, 0x1, 0x3, 0xf000, 0x2, [0x0]}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x80, 0x0, 0x9, 0x4, "7075a380", "801293d8"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0xd, 0x0, 0x6, 0x84, 0x0, 0x8, 0x7}}}, &(0x7f00000005c0)={0x44, &(0x7f0000000180)={0x0, 0xc, 0x4d, "dec5c014f81aa652a525402f29eadab34042510090bdceb38609a7e4d9ecfb58f732e9d851b63716103e6695769cc46e4eef907a90f66ca22bc3e39a96b45e8128e7fe44398d111f567b1f744b"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x3f}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x9}, &(0x7f0000000280)={0x20, 0x0, 0x4, {0x0, 0x1}}, &(0x7f00000002c0)={0x20, 0x0, 0x8, {0x1c00, 0x90, [0xf0f0]}}, &(0x7f0000000300)={0x40, 0x7, 0x2, 0xea5}, &(0x7f0000000340)={0x40, 0x9, 0x1}, &(0x7f0000000380)={0x40, 0xb, 0x2, "999f"}, &(0x7f00000003c0)={0x40, 0xf, 0x2, 0x3}, &(0x7f0000000400)={0x40, 0x13, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x44}}, &(0x7f0000000440)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000480)={0x40, 0x19, 0x2, '9o'}, &(0x7f00000004c0)={0x40, 0x1a, 0x2, 0x8}, &(0x7f0000000500)={0x40, 0x1c, 0x1}, &(0x7f0000000540)={0x40, 0x1e, 0x1}, &(0x7f0000000580)={0x40, 0x21, 0x1, 0x5}})

958.472029ms ago: executing program 5 (id=3651):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), r1)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000002c0)={'wg2\x00'})
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000001480)={'wg2\x00', <r4=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000002040)=ANY=[@ANYBLOB='@\r\x00\x00', @ANYRES16=r3, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="24000300000000ffffff800000000000000000000000000000000000000000000000000024000300a05ca84f6c9c8e3853e2fd7a7cae0fb20fa152600cb00845174f08076f8d7843080007"], 0xd40}}, 0x0)

676.870687ms ago: executing program 5 (id=3652):
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$VIDIOC_S_DV_TIMINGS(0xffffffffffffffff, 0xc0845657, &(0x7f0000000380)={0x0, @bt={0x2d0, 0x190, 0x1, 0x0, 0xdd9f83, 0x1, 0x9, 0x1, 0x2, 0x8, 0x722, 0xed, 0x7, 0x7f, 0x3f, 0xb763599953cb090f, {0x10000, 0x6fd8e84b}, 0x3, 0xed}})
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x1fd, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x4)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000080)={0x4, 0xbde, 0x0, &(0x7f0000000180)="a1984ec3aec3fc2e025f90eda6dbc903939aac644fd36f1e65174cae030c42cbacc392851a695f247112e91f059460a2c031929dc0515ac7cd20775ff9da9c2b6cb48968dcd6d8d982c492932c572f084d3af58650d207eec0794b3e47c5678c36b99eed61e1dbac68ce8a79aa21a51202018bdc4a51489844f785887083841d65c129992bbe5a51c71b95a9847d2bdede66c6e3184c386faf938fd6db888e73a5c0dcc69c3de7458e68ed33226a8d1c8e17", 0x0, 0xb2})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)=@x86={0x7, 0x3, 0xc5, 0x0, 0x6, 0x9, 0x4, 0x6, 0x1, 0xf8, 0x0, 0x1, 0x0, 0xe474, 0x6, 0x6, 0x9, 0x4, 0xfe, '\x00', 0x4, 0x4})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
openat$dsp1(0xffffff9c, &(0x7f0000000040), 0x430242, 0x0)
socket(0x22, 0x2, 0x4)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r5, 0xffffffffffffffff, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e23, 0x4, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000000180)="1a", 0x1, 0x40, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
writev(r1, &(0x7f0000000480)=[{&(0x7f0000000340)='DS;', 0x3}, {0x0}], 0x2)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20)
writev(r0, &(0x7f0000000300)=[{&(0x7f00000000c0)="dccb07ef399fa77311413e3cc9adf84d8610a42dae9b113a24288a1a7f834417b381ced900f61b5f7a9cd30a51dc432a6e27e25be626f6c476ba1378fbed11fd28d3409cebcf4ff5cabb", 0x4a}, {&(0x7f0000000540)="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", 0x197}], 0x2)

558.987979ms ago: executing program 4 (id=3653):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000940)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c000200200000001f000000060001000000000003000500", @ANYRES32=r0, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}, 0x1, 0x0, 0x0, 0x8811}, 0x0)

424.362253ms ago: executing program 6 (id=3655):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x88fd537e5e114b6f, 0x12, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x4, 0x89727a31546dcc4a, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000}}], 0x1, 0x0)

265.251275ms ago: executing program 6 (id=3656):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x1, 0x18, &(0x7f0000000140)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0xd}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x6, 0x0, 0x6}, {0x6, 0x0, 0x0, 0xb}}, [@printk={@p, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x1, 0xa, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}, {0x56}}, @alu={0x7, 0x1, 0xb, 0x7, 0x7, 0x40, 0x10}], {{0x4, 0x1, 0x2, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0xf2}, {0x7, 0x0, 0xb, 0x0, 0x0, 0x85ff}}}, &(0x7f0000000780)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd6f}, 0x94)

264.240826ms ago: executing program 4 (id=3657):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_DELOBJ={0x2f, 0x14, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x9}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x4}]}, @NFT_MSG_NEWSET={0x15c, 0x9, 0xa, 0x3, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_SET_EXPRESSIONS={0x54, 0x12, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @fib={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_FIB_DREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_FIB_FLAGS={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_FIB_RESULT={0x8}]}}}, {0xc, 0x1, 0x0, 0x1, @dup_ipv4={{0x8}, @void}}, {0x1c, 0x1, 0x0, 0x1, @masq={{0x9}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_MASQ_FLAGS={0x8}]}}}]}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x8000}, @NFTA_SET_USERDATA={0xca, 0xd, 0x1, 0x0, "04d9eb8373055a1130321d2ad6ced1185bf3de71a621b48248bce21b0e6df077239d3a3254a4ee79ab015b6302e51a15f2d43d0875bf63463308664368cbebf7cf27a6c5d750a1608b2328985c5b896d7e29af31154a6ee645594420bb3dcfb9469a7b6d410c79c7e7804a806299d0e5b51a89853d7c18f6adf04157ae122866396d239bb252cb9676729d737f0b37bc5580204437bf5d8e6b32951f187b9b1dc3ef8cbeeb55207f8ecdd811aca0d21debe5dc5e2abda5596119bcbbad9b4a612ae6bbe4d2aa"}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x2}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x5b4e}]}, @NFT_MSG_DELFLOWTABLE={0x54, 0x18, 0xa, 0x201, 0x0, 0x0, {0xa, 0x0, 0x3}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x1}]}, @NFT_MSG_NEWSET={0xd4, 0x9, 0xa, 0x101, 0x0, 0x0, {0xc5e197f4fcf4aa6d, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_POLICY={0x8, 0x8, 0x1, 0x0, 0x1}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x1}, @NFTA_SET_EXPRESSIONS={0xa4, 0x12, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @osf={{0x8}, @void}}, {0x10, 0x1, 0x0, 0x1, @numgen={{0xb}, @void}}, {0xc, 0x1, 0x0, 0x1, @cmp={{0x8}, @void}}, {0x10, 0x1, 0x0, 0x1, @tunnel={{0xb}, @void}}, {0x10, 0x1, 0x0, 0x1, @meta={{0x9}, @void}}, {0x14, 0x1, 0x0, 0x1, @connlimit={{0xe}, @void}}, {0x18, 0x1, 0x0, 0x1, @rt={{0x7}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_RT_DREG={0x8, 0x1, 0x1, 0x0, 0xa}]}}}, {0x2c, 0x1, 0x0, 0x1, @numgen={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_NG_OFFSET={0x8, 0x4, 0x1, 0x0, 0x4}, @NFTA_NG_DREG={0x8, 0x1, 0x1, 0x0, 0x15}, @NFTA_NG_TYPE={0x8}]}}}]}]}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0x8}, @NFT_OBJECT_CT_EXPECT=@NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}}, @NFT_MSG_NEWSET={0x50, 0x9, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x102}, @NFTA_SET_DATA_TYPE={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_GC_INTERVAL={0x8}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0xe4}, @NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0x25}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x34c}, 0x1, 0x0, 0x0, 0x40}, 0x24004004)
clock_gettime(0x0, &(0x7f0000000180)={<r1=>0x0, <r2=>0x0})
pselect6(0x40, &(0x7f0000000000)={0x4, 0xc7, 0x7, 0x31ac, 0xffffffff, 0x4, 0xe456, 0x3}, &(0x7f0000000080)={0x4, 0x5af, 0xd7b, 0x0, 0x21, 0x100000001, 0x6, 0x7fffffffffffffff}, &(0x7f0000000100)={0x8000000000000001, 0x0, 0x1, 0x2, 0x2, 0x1, 0x101, 0x9}, &(0x7f0000000540)={r1, r2+10000000}, &(0x7f00000005c0)={&(0x7f0000000580)={[0xffff, 0x491a]}, 0x8})

155.274697ms ago: executing program 5 (id=3658):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
msgctl$MSG_STAT(0x0, 0xb, 0x0)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r2 = syz_open_dev$usbmon(&(0x7f0000000680), 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_GET_ONE_REG(r5, 0x4018aee3, &(0x7f0000000140)=@arm64_core={0x0, 0x0})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
chmod(&(0x7f0000000000)='./cgroup/cgroup.procs\x00', 0x5)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42800)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000100)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x7, '\x00', 0x0, 0x0}, 0x50)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0xfffffffb}, {{0x18, 0x1, 0x1, 0x0, r7}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x5}}, {}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f00000002c0)='GPL\x00', 0x9, 0x0, 0x0, 0x40f00, 0x46, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = dup3(r2, 0xffffffffffffffff, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
sendmsg$nl_route(r1, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x22000010)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSET(r10, &(0x7f0000000480)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)={0x30, 0xa, 0xa, 0x5, 0x0, 0x0, {0x5, 0x0, 0x2}, [@NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0x2a}, @NFTA_SET_DESC={0x4}, @NFTA_SET_KEY_TYPE={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_ID={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x8010}, 0x8800)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000340)={'ip6tnl0\x00', <r11=>0x0})
r12 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
getdents64(r12, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x20, 0x8, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x6}, [@jmp={0x5, 0x0, 0x4, 0x7, 0x4, 0xffffffffffffffff, 0xa9cb40bdd41d2fa1}, @btf_id={0x18, 0x9, 0x3, 0x0, 0x2}, @btf_id={0x18, 0xb, 0x3, 0x0, 0x2}]}, &(0x7f0000000240)='GPL\x00', 0x401, 0x0, 0x0, 0x0, 0x30, '\x00', r11, @netfilter=0x2d, r6, 0x8, &(0x7f0000000380)={0x4, 0x1}, 0x8, 0x10, &(0x7f00000004c0)={0x0, 0x5}, 0x10, 0x0, r8, 0x5, &(0x7f0000000500)=[r12, r9], &(0x7f0000000540)=[{0x1, 0x5, 0x0, 0x4}, {0x3, 0x5, 0x0, 0x1}, {0x2, 0x1, 0xc, 0x5}, {0x4, 0x3, 0x10, 0x4}, {0x5, 0x5, 0xa, 0x8}], 0x10, 0x9}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r13 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), r9)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x20, r13, 0x309, 0x0, 0x0, {0x1d}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}]}]}, 0x20}}, 0x0)

126.214914ms ago: executing program 6 (id=3659):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000480)=ANY=[@ANYBLOB="cc0000001b000100000000000000000000000000000010000000000000000000ff0200000000000000000000000000010000000000000000000000002f000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000e30000000000000000000000000018000000000000000400000000004000000000000000000000008100000000000000000000000000000001000000000000800000000000000000000000000000000000000000000000000000000008"], 0xcc}}, 0x0)

81.304851ms ago: executing program 4 (id=3660):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000200)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
fchdir(0xffffffffffffffff)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), 0xffffffffffffffff)
r2 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = socket(0x22, 0x2, 0x3)
getsockopt$packet_buf(r3, 0x107, 0x1, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_PORT_GET(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x3c, r4, 0x1, 0x0, 0x0, {0x54}, [{{@nsim={{0xe, 0x2}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8001}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1b, 0x3, &(0x7f0000000100)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0xc, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14}, 0x94)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, &(0x7f0000000100)={0x1b, "5660359c3245d1c42317afad7d48ed51000000000000000100"})
r6 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x141100, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, &(0x7f0000000140)={0x1000, "340b7832ceefd131b8e6498c25f58fad9987ffe93bbabd18cf501922de974a27", <r7=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r7, 0xc0303e03, &(0x7f00000000c0)={"3c24139ed44aec57f2e2ad238a7b448ed886923c31d4b8affbf514fd00", r7, <r8=>0xffffffffffffffff})
ppoll(&(0x7f0000000000)=[{r8}], 0x1, 0x0, 0x0, 0x0)
close_range(r2, r8, 0x0)
r9 = memfd_create(&(0x7f0000000480)='[\v\xdbX\xae[5\xa9\x90\xffc\x1f\x1a\xa9\xfd\xfa\xad\xd1md\xe7\xe2\x7f\x9b\xd5R\x10\xf3\xb6\xffT\xbf\xd1\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\x9fc\xda\xa9\x83r\xd8\x98\x00\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9', 0x0)
write$binfmt_script(r9, &(0x7f0000000740)={'#! ', './file0'}, 0xb)
pwrite64(r9, &(0x7f0000000040)="ab", 0x1, 0x2)
execveat(r9, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

0s ago: executing program 6 (id=3661):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(aes-aesni)\x00'}, 0x58)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x18, 0x0, 0x500)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000300)=@abs={0x1, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x76, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x8000})
readv(r3, &(0x7f00000001c0), 0x0)
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r4, 0x8983, &(0x7f0000000080)={0x0, 'syzkaller1\x00', {0x4}})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', @link_local})
r6 = syz_open_dev$vim2m(&(0x7f0000000000), 0x3, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r6, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r6, 0x40045612, &(0x7f0000000080)=0x2)
ioctl$USBDEVFS_CLEAR_HALT(r2, 0xc0105502, &(0x7f0000000300)={0x1, 0x1})
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89101)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
write$binfmt_script(r1, &(0x7f0000000200), 0xfffffd9d)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="fc0000001900010000000000fcdbdf2500000000000000000000000000000000fe8000000000000000000000000000bb00000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000040000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000010000004400050000000000000000000000000000000800000000022b0000000a000000fe8000000000000000000000000000aa000000000400"/176], 0xfc}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

kernel console output (not intermixed with test programs):

should_failslab+0xa8/0x100
[  812.748409][T16830]  kmem_cache_alloc_noprof+0x74/0x6e0
[  812.748439][T16830]  ? _sctp_make_chunk+0x14e/0x430
[  812.748461][T16830]  ? skb_put+0x11b/0x210
[  812.748478][T16830]  _sctp_make_chunk+0x14e/0x430
[  812.748504][T16830]  sctp_make_datafrag_empty+0x122/0x230
[  812.748528][T16830]  ? __pfx_sctp_make_datafrag_empty+0x10/0x10
[  812.748552][T16830]  ? sctp_auth_send_cid+0x69/0x250
[  812.748576][T16830]  sctp_datamsg_from_user+0x729/0xef0
[  812.748606][T16830]  ? __genradix_ptr+0x1e1/0x220
[  812.748640][T16830]  sctp_sendmsg_to_asoc+0xffe/0x1810
[  812.748671][T16830]  ? __lock_acquire+0xab9/0xd20
[  812.748697][T16830]  ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[  812.748722][T16830]  ? __local_bh_enable_ip+0x12d/0x1c0
[  812.748739][T16830]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  812.748758][T16830]  ? sctp_sendmsg_check_sflags+0x18d/0x2e0
[  812.748815][T16830]  sctp_sendmsg+0x1941/0x2810
[  812.748853][T16830]  ? __pfx_sctp_sendmsg+0x10/0x10
[  812.748879][T16830]  ? aa_sk_perm+0x81e/0x950
[  812.748905][T16830]  ? __pfx_aa_sk_perm+0x10/0x10
[  812.748928][T16830]  ? sock_rps_record_flow+0x19/0x410
[  812.748958][T16830]  ? inet_sendmsg+0x2f4/0x370
[  812.748980][T16830]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  812.748998][T16830]  __sock_sendmsg+0x19c/0x270
[  812.749021][T16830]  sock_write_iter+0x279/0x360
[  812.749042][T16830]  ? __pfx_sock_write_iter+0x10/0x10
[  812.749078][T16830]  do_iter_readv_writev+0x623/0x8c0
[  812.749106][T16830]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  812.749128][T16830]  ? common_file_perm+0x1b5/0x230
[  812.749155][T16830]  ? bpf_lsm_file_permission+0x9/0x20
[  812.749171][T16830]  ? security_file_permission+0x75/0x290
[  812.749190][T16830]  ? rw_verify_area+0x255/0x4d0
[  812.749244][T16830]  vfs_writev+0x31a/0x960
[  812.749265][T16830]  ? __lock_acquire+0xab9/0xd20
[  812.749281][T16830]  ? __pfx_vfs_writev+0x10/0x10
[  812.749309][T16830]  ? __fget_files+0x2a/0x420
[  812.749327][T16830]  ? __fget_files+0x3a0/0x420
[  812.749340][T16830]  ? __fget_files+0x2a/0x420
[  812.749361][T16830]  do_writev+0x14d/0x2d0
[  812.749379][T16830]  ? __pfx_do_writev+0x10/0x10
[  812.749398][T16830]  ? syscall_enter_from_user_mode_prepare+0x8f/0x110
[  812.749421][T16830]  ? lockdep_hardirqs_on+0x9c/0x150
[  812.749456][T16830]  __do_fast_syscall_32+0xb6/0x2b0
[  812.749479][T16830]  ? lockdep_hardirqs_on+0x9c/0x150
[  812.749502][T16830]  do_fast_syscall_32+0x34/0x80
[  812.749523][T16830]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  812.749543][T16830] RIP: 0023:0xf707d539
[  812.749557][T16830] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  812.749571][T16830] RSP: 002b:00000000f544c55c EFLAGS: 00000206 ORIG_RAX: 0000000000000092
[  812.749587][T16830] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000300
[  812.749599][T16830] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  812.749608][T16830] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  812.749617][T16830] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  812.749626][T16830] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  812.749649][T16830]  </TASK>
[  813.124842][    C1] vkms_vblank_simulate: vblank timer overrun
[  813.165726][T16829] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3234'.
[  813.239366][T16831] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3234'.
[  813.519684][T16843] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3239'.
[  813.780405][T16856] program syz.4.3240 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  814.000722][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  814.007204][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  814.055686][ T8608] usb 5-1: new high-speed USB device number 99 using dummy_hcd
[  814.594965][ T8608] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  814.638502][T16865] netlink: 284 bytes leftover after parsing attributes in process `syz.2.3243'.
[  814.648374][ T8608] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[  814.659231][ T8608] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  814.669586][ T8608] usb 5-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[  814.680952][ T8608] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  814.701280][ T8608] usb 5-1: config 0 descriptor??
[  814.724788][ T8608] hdpvr 5-1:0.0: Could not find bulk-in endpoint
[  814.732087][ T8608] hdpvr 5-1:0.0: probe with driver hdpvr failed with error -12
[  814.915334][T13808] usb 4-1: new high-speed USB device number 75 using dummy_hcd
[  815.250048][T13808] usb 4-1: unable to get BOS descriptor or descriptor too short
[  815.273612][T13808] usb 4-1: config 1 interface 0 altsetting 5 bulk endpoint 0x81 has invalid maxpacket 33
[  815.338604][T13808] usb 4-1: config 1 interface 0 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  815.380026][T13808] usb 4-1: config 1 interface 0 has no altsetting 0
[  815.429241][T13808] usb 4-1: New USB device found, idVendor=05ac, idProduct=0252, bcdDevice= 0.40
[  815.444265][T13808] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  815.463359][T13808] usb 4-1: Product: syz
[  815.471170][T13808] usb 4-1: Manufacturer: syz
[  815.476106][T13808] usb 4-1: SerialNumber: syz
[  815.509432][T16863] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  815.771687][T13808] usbhid 4-1:1.0: couldn't find an input interrupt endpoint
[  815.815827][T13808] usb 4-1: USB disconnect, device number 75
[  815.957786][T16876] vlan2: entered promiscuous mode
[  816.357397][T16882] loop2: detected capacity change from 0 to 7
[  816.478776][T16882] Dev loop2: unable to read RDB block 7
[  816.536375][T16882]  loop2: unable to read partition table
[  816.586623][T16882] loop2: partition table beyond EOD, truncated
[  816.610117][T16882] loop_reread_partitions: partition scan of loop2 (þè– ) failed (rc=-5)
[  817.619289][ T5895] usb 5-1: USB disconnect, device number 99
[  817.876205][   T24] usb 6-1: new high-speed USB device number 62 using dummy_hcd
[  817.981583][T16920] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3263'.
[  818.085404][   T24] usb 6-1: Using ep0 maxpacket: 32
[  818.098170][   T24] usb 6-1: config 0 has an invalid interface number: 51 but max is 0
[  818.106668][   T24] usb 6-1: config 0 has no interface number 0
[  818.154600][   T24] usb 6-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  818.164074][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  818.267257][ T8608] usb 4-1: new high-speed USB device number 76 using dummy_hcd
[  818.277446][   T24] usb 6-1: Product: syz
[  818.282825][   T24] usb 6-1: Manufacturer: syz
[  818.290214][   T24] usb 6-1: SerialNumber: syz
[  818.298474][   T24] usb 6-1: config 0 descriptor??
[  818.321284][   T24] quatech2 6-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  818.405499][ T8608] usb 4-1: device descriptor read/64, error -71
[  818.642863][   T24] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  818.652311][ T8608] usb 4-1: new high-speed USB device number 77 using dummy_hcd
[  818.685396][   T24] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  818.788292][ T8608] usb 4-1: device descriptor read/64, error -71
[  818.925896][ T8608] usb usb4-port1: attempt power cycle
[  819.149581][    C1] usb 6-1: qt2_read_bulk_callback - non-zero urb status: -71
[  819.159018][ T5959] usb 6-1: USB disconnect, device number 62
[  819.179236][ T5959] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  819.218598][ T5959] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  819.245633][ T5959] quatech2 6-1:0.51: device disconnected
[  819.285532][ T8608] usb 4-1: new high-speed USB device number 78 using dummy_hcd
[  819.387642][ T8608] usb 4-1: device descriptor read/8, error -71
[  819.745707][ T8608] usb 4-1: new high-speed USB device number 79 using dummy_hcd
[  819.794189][ T8608] usb 4-1: device descriptor read/8, error -71
[  819.905469][ T8608] usb usb4-port1: unable to enumerate USB device
[  820.575119][T16942] netlink: 284 bytes leftover after parsing attributes in process `syz.4.3268'.
[  820.682439][T16938] binder: 16936:16938 ioctl 40086602 80000080 returned -22
[  821.269307][T16961] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3273'.
[  821.705258][T13808] usb 6-1: new high-speed USB device number 63 using dummy_hcd
[  821.765505][ T5895] usb 5-1: new high-speed USB device number 100 using dummy_hcd
[  821.847252][T13808] usb 6-1: device descriptor read/64, error -71
[  821.925299][ T5895] usb 5-1: Using ep0 maxpacket: 32
[  821.932929][ T5895] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  821.942574][ T5895] usb 5-1: config 0 has no interface number 0
[  821.949994][ T5895] usb 5-1: config 0 interface 12 has no altsetting 0
[  821.970780][ T5895] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  821.990377][ T5895] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  822.001830][ T5895] usb 5-1: Product: syz
[  822.008063][ T5895] usb 5-1: Manufacturer: syz
[  822.012945][ T5895] usb 5-1: SerialNumber: syz
[  822.014857][T16981] loop2: detected capacity change from 0 to 7
[  822.025638][ T8608] usb 4-1: new high-speed USB device number 80 using dummy_hcd
[  822.034112][ T5895] usb 5-1: config 0 descriptor??
[  822.035782][T16981]  loop2:
[  822.043864][T16981] loop2: partition table partially beyond EOD, truncated
[  822.127223][T13808] usb 6-1: new high-speed USB device number 64 using dummy_hcd
[  822.145777][ T1219] usb 2-1: new low-speed USB device number 82 using dummy_hcd
[  822.206514][ T8608] usb 4-1: config 0 has no interfaces?
[  822.226570][ T8608] usb 4-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  822.236077][ T8608] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  822.244136][ T8608] usb 4-1: Product: syz
[  822.249517][ T8608] usb 4-1: Manufacturer: syz
[  822.254138][ T8608] usb 4-1: SerialNumber: syz
[  822.266513][ T8608] usb 4-1: config 0 descriptor??
[  822.272361][T13808] usb 6-1: device descriptor read/64, error -71
[  822.295326][ T1219] usb 2-1: Invalid ep0 maxpacket: 16
[  822.301607][T16986] ttyS ttyS3: ldisc open failed (-12), clearing slot 3
[  822.390774][T13808] usb usb6-port1: attempt power cycle
[  822.446508][ T1219] usb 2-1: new low-speed USB device number 83 using dummy_hcd
[  822.625367][ T1219] usb 2-1: Invalid ep0 maxpacket: 16
[  822.640298][ T1219] usb usb2-port1: attempt power cycle
[  822.745297][T13808] usb 6-1: new high-speed USB device number 65 using dummy_hcd
[  822.776092][T13808] usb 6-1: device descriptor read/8, error -71
[  822.995283][ T1219] usb 2-1: new low-speed USB device number 84 using dummy_hcd
[  823.015279][T13808] usb 6-1: new high-speed USB device number 66 using dummy_hcd
[  823.023619][ T1219] usb 2-1: Invalid ep0 maxpacket: 16
[  823.047227][T13808] usb 6-1: device descriptor read/8, error -71
[  823.165533][ T1219] usb 2-1: new low-speed USB device number 85 using dummy_hcd
[  823.173504][T13808] usb usb6-port1: unable to enumerate USB device
[  823.206614][ T1219] usb 2-1: Invalid ep0 maxpacket: 16
[  823.212346][ T1219] usb usb2-port1: unable to enumerate USB device
[  823.431435][T16997] raw_sendmsg: syz.4.3278 forgot to set AF_INET. Fix it!
[  823.446307][T16999] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3285'.
[  823.629943][T17004] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3287'.
[  823.723627][T17006] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3288'.
[  823.734679][T17006] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3288'.
[  824.075542][ T1219] usb 3-1: new high-speed USB device number 94 using dummy_hcd
[  824.245271][ T1219] usb 3-1: Using ep0 maxpacket: 16
[  824.261925][ T1219] usb 3-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0
[  824.285525][ T1219] usb 3-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0
[  824.307748][ T1219] usb 3-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  824.335462][ T1219] usb 3-1: config 1 interface 0 has no altsetting 0
[  824.353681][ T1219] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  824.375186][ T1219] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  824.392923][ T1219] usb 3-1: Product: syz
[  824.413076][ T1219] usb 3-1: Manufacturer: syz
[  824.423851][ T1219] usb 3-1: SerialNumber: syz
[  824.452530][   T24] usb 4-1: USB disconnect, device number 80
[  824.633146][ T5895] f81534 5-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  824.669939][ T5895] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  824.683568][ T1219] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 94 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8
[  824.715323][ T5895] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  824.723493][ T5895] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[  824.785254][ T5895] usb 5-1: USB disconnect, device number 100
[  824.861783][T17019] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3293'.
[  825.525491][ T5895] usb 5-1: new high-speed USB device number 101 using dummy_hcd
[  825.820081][ T5895] usb 5-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7
[  825.829514][ T5895] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  825.843946][T17035] netlink: 284 bytes leftover after parsing attributes in process `syz.3.3297'.
[  826.085203][ T5895] usb 5-1: Product: syz
[  826.095840][ T5895] usb 5-1: Manufacturer: syz
[  826.111592][ T5895] usb 5-1: SerialNumber: syz
[  826.124600][ T5895] usb 5-1: config 0 descriptor??
[  826.331241][T17040] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3300'.
[  826.572596][T17048] loop2: detected capacity change from 0 to 7
[  826.582759][ T6002]  loop2:
[  826.586119][ T6002] loop2: partition table partially beyond EOD, truncated
[  826.597050][T17048]  loop2:
[  826.602788][T17048] loop2: partition table partially beyond EOD, truncated
[  826.875774][ T1219] usb 2-1: new high-speed USB device number 86 using dummy_hcd
[  827.054744][ T1219] usb 2-1: Using ep0 maxpacket: 32
[  827.083475][ T1219] usb 2-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  827.093562][ T1219] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  827.105909][ T1219] usb 2-1: Product: syz
[  827.113896][ T1219] usb 2-1: Manufacturer: syz
[  827.120444][ T1219] usb 2-1: SerialNumber: syz
[  827.136863][ T1219] usb 2-1: config 0 descriptor??
[  827.149107][ T1219] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  827.204059][ T8608] usb 3-1: USB disconnect, device number 94
[  827.229222][ T8608] usblp0: removed
[  827.394838][ T1219] gspca_stk1135: reg_w 0x2 err -71
[  827.421522][ T1219] gspca_stk1135: serial bus timeout: status=0x00
[  827.469885][ T1219] gspca_stk1135: Sensor write failed
[  827.485324][ T1219] gspca_stk1135: serial bus timeout: status=0x00
[  827.505253][ T1219] gspca_stk1135: Sensor write failed
[  827.512085][ T1219] gspca_stk1135: serial bus timeout: status=0x00
[  827.538256][ T1219] gspca_stk1135: Sensor read failed
[  827.543579][ T1219] gspca_stk1135: serial bus timeout: status=0x00
[  827.571055][ T1219] gspca_stk1135: Sensor read failed
[  827.583256][ T1219] gspca_stk1135: Detected sensor type unknown (0x0)
[  827.590236][ T1219] gspca_stk1135: serial bus timeout: status=0x00
[  827.597925][ T1219] gspca_stk1135: Sensor read failed
[  827.603210][ T1219] gspca_stk1135: serial bus timeout: status=0x00
[  827.615262][ T1219] gspca_stk1135: Sensor read failed
[  827.621230][ T1219] gspca_stk1135: serial bus timeout: status=0x00
[  827.630336][ T1219] gspca_stk1135: Sensor write failed
[  827.639929][ T1219] gspca_stk1135: serial bus timeout: status=0x00
[  827.659603][ T1219] gspca_stk1135: Sensor write failed
[  827.665319][ T8608] usb 3-1: new high-speed USB device number 95 using dummy_hcd
[  827.668556][ T1219] stk1135 2-1:0.0: probe with driver stk1135 failed with error -71
[  827.701733][ T1219] usb 2-1: USB disconnect, device number 86
[  827.818107][ T8608] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  827.852096][ T8608] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  827.862295][ T8608] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  827.887847][ T8608] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  827.897373][ T8608] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  827.928672][ T8608] usb 3-1: config 0 descriptor??
[  828.409393][ T8608] plantronics 0003:047F:FFFF.003E: unknown main item tag 0x7
[  828.504491][ T8608] plantronics 0003:047F:FFFF.003E: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  829.275684][ T5895] usb 5-1: f81604_read: reg: 100e failed: -ETIMEDOUT
[  829.330178][T17060] gretap0: entered promiscuous mode
[  829.339261][T17060] vlan2: entered promiscuous mode
[  829.486641][ T5895] usb 5-1: f81604_read: reg: 200f failed: -EPIPE
[  829.559096][ T5494] usb 5-1: f81604_read: reg: 100f failed: -EPIPE
[  829.571827][ T5494] usb 5-1: f81604_read: reg: 200f failed: -EPIPE
[  829.759133][ T5895] usb 5-1: USB disconnect, device number 101
[  829.792834][ T5895] usb 5-1: f81604_read: reg: 100f failed: -ENODEV
[  829.945749][ T1219] usb 3-1: reset high-speed USB device number 95 using dummy_hcd
[  829.955062][T17097] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3314'.
[  829.997333][ T5895] usb 5-1: f81604_read: reg: 200f failed: -ENODEV
[  830.045320][   T24] usb 2-1: new high-speed USB device number 87 using dummy_hcd
[  830.220000][   T24] usb 2-1: config 36 interface 0 altsetting 0 has an endpoint descriptor with address 0x63, changing to 0x3
[  830.232022][   T24] usb 2-1: config 36 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  830.255464][   T24] usb 2-1: config 36 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 59391, setting to 1024
[  830.270836][   T24] usb 2-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=26.29
[  830.280616][   T24] usb 2-1: New USB device strings: Mfr=244, Product=0, SerialNumber=0
[  830.289019][   T24] usb 2-1: Manufacturer: syz
[  830.305529][T17092] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  830.537003][T17111] bond3: option lacp_rate: invalid value (192)
[  830.574566][T17111] bond3 (unregistering): Released all slaves
[  830.876284][ T5943] usb 3-1: USB disconnect, device number 95
[  831.000572][T17121] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3316'.
[  831.013353][T17126] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3318'.
[  831.018043][T17121] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3316'.
[  831.060955][T17128] IPVS: set_ctl: invalid protocol: 59 0.0.0.0:20001
[  831.242287][T17137] netlink: 284 bytes leftover after parsing attributes in process `syz.4.3321'.
[  831.327466][ T5959] usb 6-1: new high-speed USB device number 67 using dummy_hcd
[  831.486196][ T5959] usb 6-1: too many configurations: 67, using maximum allowed: 8
[  831.511233][ T5959] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  831.530825][ T5959] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  831.549752][ T5959] usb 6-1: Product: syz
[  831.564893][ T5959] usb 6-1: Manufacturer: syz
[  831.581108][ T5959] usb 6-1: SerialNumber: syz
[  831.607762][T17152] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3324'.
[  831.615405][ T5959] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  831.720979][ T8608] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  832.064348][T17164] fuse: Unknown parameter '('
[  832.197721][T17170] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3329'.
[  832.433291][T17130] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  832.485408][T17126] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  832.511053][T17126] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  832.523737][T17176] loop2: detected capacity change from 0 to 7
[  832.532161][T17176] Dev loop2: unable to read RDB block 7
[  832.541428][ T5895] usb 6-1: USB disconnect, device number 67
[  832.566180][T17176]  loop2: unable to read partition table
[  832.573144][T17176] loop2: partition table beyond EOD, truncated
[  832.585454][T17176] loop_reread_partitions: partition scan of loop2 (þè– ) failed (rc=-5)
[  832.845610][ T5943] usb 5-1: new high-speed USB device number 102 using dummy_hcd
[  832.907272][   T24] usbhid 2-1:36.0: couldn't find an input interrupt endpoint
[  832.933143][   T24] usb 2-1: USB disconnect, device number 87
[  832.982128][ T8608] usb 6-1: Service connection timeout for: 256
[  833.002438][ T8608] ath9k_htc 6-1:1.0: ath9k_htc: Unable to initialize HTC services
[  833.011423][ T5943] usb 5-1: config 220 has an invalid interface number: 76 but max is 2
[  833.027959][ T8608] ath9k_htc: Failed to initialize the device
[  833.040180][ T5895] usb 6-1: ath9k_htc: USB layer deinitialized
[  833.074637][ T5943] usb 5-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  833.102540][ T5943] usb 5-1: config 220 has no interface number 2
[  833.109173][T17189] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3335'.
[  833.119703][ T5943] usb 5-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  833.153166][ T5943] usb 5-1: config 220 interface 0 has no altsetting 0
[  833.175545][ T5943] usb 5-1: config 220 interface 76 has no altsetting 0
[  833.196580][ T5943] usb 5-1: config 220 interface 1 has no altsetting 0
[  833.246348][ T5943] usb 5-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  833.263027][ T5943] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  833.291844][ T5943] usb 5-1: Product: syz
[  833.301057][ T5943] usb 5-1: Manufacturer: syz
[  833.306048][ T5943] usb 5-1: SerialNumber: syz
[  833.520500][T17178] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  833.530317][T17178] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  833.586888][ T5943] usb 5-1: selecting invalid altsetting 0
[  833.628911][ T5943] uvcvideo 5-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[  833.646818][ T5943] uvcvideo 5-1:220.0: No valid video chain found.
[  833.726755][ T5943] usb 5-1: selecting invalid altsetting 0
[  833.738181][ T5943] usbtest 5-1:220.1: probe with driver usbtest failed with error -22
[  833.757001][ T5943] usb 5-1: USB disconnect, device number 102
[  834.218974][T17212] loop2: detected capacity change from 0 to 7
[  834.237520][ T5963]  loop2:
[  834.242457][ T5963] loop2: partition table partially beyond EOD, truncated
[  834.280042][T17212]  loop2:
[  834.283135][T17212] loop2: partition table partially beyond EOD, truncated
[  834.552627][T17214] dvmrp0: entered allmulticast mode
[  834.737287][ T5918] usb 3-1: new high-speed USB device number 96 using dummy_hcd
[  834.897514][ T5918] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  834.918548][ T5918] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  834.925763][ T5895] usb 5-1: new high-speed USB device number 103 using dummy_hcd
[  834.938756][ T5918] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  834.982315][ T5918] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  834.995210][ T5918] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  835.028151][ T5918] usb 3-1: config 0 descriptor??
[  835.125269][ T5895] usb 5-1: Using ep0 maxpacket: 8
[  835.139111][ T5895] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  835.176405][ T5895] usb 5-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[  835.196946][ T5895] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  835.205007][ T5895] usb 5-1: Product: syz
[  835.235640][ T5895] usb 5-1: Manufacturer: syz
[  835.255604][ T5895] usb 5-1: SerialNumber: syz
[  835.308600][ T5895] usb 5-1: config 0 descriptor??
[  835.336297][ T5895] streamzap 5-1:0.0: streamzap_probe: Unexpected desc.bNumEndpoints (0)
[  835.477979][ T5918] plantronics 0003:047F:FFFF.003F: unknown main item tag 0x7
[  835.491140][ T5918] plantronics 0003:047F:FFFF.003F: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  835.537380][ T8608] usb 5-1: USB disconnect, device number 103
[  835.654921][T17218] dvmrp0: left allmulticast mode
[  835.910804][ T5918] usb 4-1: new full-speed USB device number 81 using dummy_hcd
[  836.001653][T17233] netlink: 284 bytes leftover after parsing attributes in process `syz.5.3348'.
[  836.117765][ T5918] usb 4-1: not running at top speed; connect to a high speed hub
[  836.148665][ T5918] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  836.297348][ T5918] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  836.307755][ T5918] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  836.325391][ T5918] usb 4-1: Product: syz
[  836.333092][ T5918] usb 4-1: Manufacturer: syz
[  836.353625][ T5918] usb 4-1: SerialNumber: syz
[  836.381354][ T5918] usb 4-1: bad CDC descriptors
[  836.705600][T13808] usb 6-1: new high-speed USB device number 68 using dummy_hcd
[  836.805692][ T5943] usb 5-1: new high-speed USB device number 104 using dummy_hcd
[  836.895256][T13808] usb 6-1: Using ep0 maxpacket: 16
[  836.903104][T13808] usb 6-1: unable to get BOS descriptor or descriptor too short
[  836.912434][T13808] usb 6-1: config 5 has an invalid interface number: 211 but max is 0
[  836.921007][T13808] usb 6-1: config 5 has no interface number 0
[  836.949472][ T5943] usb 5-1: device descriptor read/64, error -71
[  836.971626][T13808] usb 6-1: config 5 interface 211 has no altsetting 0
[  837.008710][T13808] usb 6-1: New USB device found, idVendor=061d, idProduct=c160, bcdDevice=b8.74
[  837.018258][T13808] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  837.046898][T13808] usb 6-1: Product: syz
[  837.066351][T13808] usb 6-1: Manufacturer: syz
[  837.079830][T13808] usb 6-1: SerialNumber: syz
[  837.206509][ T5943] usb 5-1: new high-speed USB device number 105 using dummy_hcd
[  837.343577][T13808] quatech2 6-1:5.211: Quatech 2nd gen USB to Serial Driver converter detected
[  837.366911][ T5943] usb 5-1: device descriptor read/64, error -71
[  837.392990][T13808] usb 6-1: qt2_attach - failed to power on unit: -71
[  837.420819][T13808] quatech2 6-1:5.211: probe with driver quatech2 failed with error -71
[  837.488585][T13808] usb 6-1: USB disconnect, device number 68
[  837.495890][ T5943] usb usb5-port1: attempt power cycle
[  837.577176][ T1219] usb 3-1: USB disconnect, device number 96
[  837.650529][T17244] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3351'.
[  837.660391][T17243] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3351'.
[  837.868876][ T5943] usb 5-1: new high-speed USB device number 106 using dummy_hcd
[  837.898636][ T5943] usb 5-1: device descriptor read/8, error -71
[  838.086054][ T1219] usb 3-1: new full-speed USB device number 97 using dummy_hcd
[  838.405283][ T5943] usb 5-1: new high-speed USB device number 107 using dummy_hcd
[  838.448891][ T5943] usb 5-1: device descriptor read/8, error -71
[  838.475982][ T1219] usb 3-1: device descriptor read/64, error -71
[  838.577414][ T5943] usb usb5-port1: unable to enumerate USB device
[  838.915455][ T1219] usb 3-1: new full-speed USB device number 98 using dummy_hcd
[  838.998837][ T5943] usb 4-1: USB disconnect, device number 81
[  839.095256][ T1219] usb 3-1: device descriptor read/64, error -71
[  839.205577][ T1219] usb usb3-port1: attempt power cycle
[  839.565258][ T1219] usb 3-1: new full-speed USB device number 99 using dummy_hcd
[  839.600303][ T1219] usb 3-1: device descriptor read/8, error -71
[  839.666529][T17263] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3356'.
[  839.762090][T17265] loop2: detected capacity change from 0 to 7
[  839.777525][T17265] Dev loop2: unable to read RDB block 7
[  839.795489][T17265]  loop2: unable to read partition table
[  839.801407][T17265] loop2: partition table beyond EOD, truncated
[  839.845459][T17265] loop_reread_partitions: partition scan of loop2 (þè– ) failed (rc=-5)
[  839.875246][ T1219] usb 3-1: new full-speed USB device number 100 using dummy_hcd
[  839.917879][ T1219] usb 3-1: device descriptor read/8, error -71
[  840.045825][ T1219] usb usb3-port1: unable to enumerate USB device
[  840.305225][ T5918] usb 2-1: new high-speed USB device number 88 using dummy_hcd
[  840.467816][ T5918] usb 2-1: config 0 has no interfaces?
[  840.479532][ T5918] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  840.492315][ T5918] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  840.501190][ T5918] usb 2-1: Product: syz
[  840.505865][ T5918] usb 2-1: Manufacturer: syz
[  840.510625][ T5918] usb 2-1: SerialNumber: syz
[  840.519485][ T5918] usb 2-1: config 0 descriptor??
[  841.088944][T17296] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3366'.
[  841.281335][T17299] netlink: 'syz.3.3367': attribute type 1 has an invalid length.
[  841.470912][T17299] 8021q: adding VLAN 0 to HW filter on device bond1
[  841.539408][T17308] netlink: 284 bytes leftover after parsing attributes in process `syz.4.3368'.
[  841.707327][T17299] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3367'.
[  841.834540][T17303] bond1: (slave veth3): Enslaving as an active interface with a down link
[  841.859829][T17305] bond1: (slave veth0_to_bond): making interface the new active one
[  841.974031][T17305] veth0_to_bond: entered promiscuous mode
[  842.003249][T17314] delete_channel: no stack
[  842.058600][T17305] bond1: (slave veth0_to_bond): Enslaving as an active interface with an up link
[  842.145610][T17313] delete_channel: no stack
[  842.216357][T17299] vlan2: entered allmulticast mode
[  842.222460][T17299] veth1: entered allmulticast mode
[  843.203062][   T24] usb 2-1: USB disconnect, device number 88
[  843.318243][T17323] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3373'.
[  843.372662][T17323] af_packet: tpacket_rcv: packet too big, clamped from 32 to 4294967272. macoff=96
[  843.815710][   T24] usb 2-1: new high-speed USB device number 89 using dummy_hcd
[  843.878489][T17336] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3372'.
[  843.895507][T17334] vlan2: entered promiscuous mode
[  843.988962][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  844.000065][ T5918] usb 4-1: new full-speed USB device number 82 using dummy_hcd
[  844.023564][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  844.035065][   T24] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  844.049618][   T24] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  844.059077][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  844.070272][   T24] usb 2-1: config 0 descriptor??
[  844.186623][ T5918] usb 4-1: not running at top speed; connect to a high speed hub
[  844.199970][ T5918] usb 4-1: config 1 interface 0 altsetting 3 endpoint 0x1 has invalid maxpacket 1024, setting to 64
[  844.220320][ T5918] usb 4-1: config 1 interface 0 has no altsetting 0
[  844.238079][ T5918] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  844.255261][ T5918] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  844.257458][T17347] loop2: detected capacity change from 0 to 7
[  844.270346][ T5918] usb 4-1: Product: syz
[  844.280895][ T5918] usb 4-1: Manufacturer: syz
[  844.295426][T17347]  loop2:
[  844.298514][ T5918] usb 4-1: SerialNumber: syz
[  844.298774][T17348] bond3: option lacp_rate: invalid value (192)
[  844.303223][T17347] loop2: partition table partially beyond EOD, 
[  844.312108][T17348] bond3 (unregistering): Released all slaves
[  844.324039][T17332] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  844.335749][T17347] truncated
[  844.413231][T17351] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3384'.
[  844.504047][T17353] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3385'.
[  844.548256][   T24] usbhid 2-1:0.0: can't add hid device: -71
[  844.554346][   T24] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  844.601100][   T24] usb 2-1: USB disconnect, device number 89
[  844.610946][ T5918] usb 4-1: USB disconnect, device number 82
[  844.707742][T17358] can: request_module (can-proto-3) failed.
[  844.774090][T17361] binder: 17360:17361 ioctl c0306201 800003c0 returned -14
[  845.075338][ T5943] usb 5-1: new high-speed USB device number 108 using dummy_hcd
[  845.106444][ T5918] usb 6-1: new high-speed USB device number 69 using dummy_hcd
[  845.182631][   T30] audit: type=1326 audit(1761813426.101:1938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17374 comm="syz.1.3394" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70fd539 code=0x0
[  845.240676][ T5943] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  845.258756][ T5943] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  845.269709][ T5943] usb 5-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice=d6.af
[  845.281320][ T5943] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  845.295312][ T5918] usb 6-1: Using ep0 maxpacket: 16
[  845.303096][ T5943] usb 5-1: config 0 descriptor??
[  845.306563][ T5918] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  845.320117][T17379] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3395'.
[  845.329684][ T5918] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  845.357580][T17380] misc userio: No port type given on /dev/userio
[  845.366739][ T5918] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  845.380172][ T5918] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  845.389685][ T5918] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  845.401394][ T5918] usb 6-1: config 0 descriptor??
[  845.419896][T17381] misc userio: The device must be registered before sending interrupts
[  845.575272][ T1219] usb 4-1: new high-speed USB device number 83 using dummy_hcd
[  845.643994][ T5918] usbhid 6-1:0.0: can't add hid device: -71
[  845.661100][ T5918] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  845.707182][ T5918] usb 6-1: USB disconnect, device number 69
[  845.750108][ T1219] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  845.774562][T17388] netlink: 284 bytes leftover after parsing attributes in process `syz.2.3397'.
[  845.785019][ T1219] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  845.806052][ T1219] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  845.825205][ T1219] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  845.833242][ T1219] usb 4-1: SerialNumber: syz
[  846.075476][T17366] binder: BINDER_SET_CONTEXT_MGR already set
[  846.080649][ T1219] usb 4-1: 0:2 : does not exist
[  846.084637][T17366] binder: 17360:17366 ioctl 4018620d 80000080 returned -16
[  846.096881][ T1219] usb 4-1: unit 255 not found!
[  846.113286][ T1219] usb 4-1: 5:0: cannot get min/max values for control 4 (id 5)
[  846.135448][ T5943] usbhid 5-1:0.0: can't add hid device: -71
[  846.141523][ T5943] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  846.153948][T13808] usb 6-1: new high-speed USB device number 70 using dummy_hcd
[  846.186160][ T1219] usb 4-1: 5:0: cannot get min/max values for control 5 (id 5)
[  846.199114][ T5943] usb 5-1: USB disconnect, device number 108
[  846.233876][ T1219] usb 4-1: USB disconnect, device number 83
[  846.302973][T17399] binder: 17398:17399 ioctl c0306201 800004c0 returned -22
[  846.328855][ T5963] udevd[5963]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  846.345758][T13808] usb 6-1: Using ep0 maxpacket: 16
[  846.357834][T13808] usb 6-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0
[  846.379739][T13808] usb 6-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0
[  846.400176][T13808] usb 6-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  846.428370][T13808] usb 6-1: config 1 interface 0 has no altsetting 0
[  846.448984][T13808] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  846.460636][T13808] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  846.474542][T13808] usb 6-1: Product: syz
[  846.483336][T13808] usb 6-1: Manufacturer: syz
[  846.488570][T13808] usb 6-1: SerialNumber: syz
[  846.685610][ T5943] usb 5-1: new full-speed USB device number 109 using dummy_hcd
[  846.716664][T13808] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 70 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8
[  846.850339][ T5943] usb 5-1: unable to read config index 0 descriptor/start: -71
[  846.859788][ T5943] usb 5-1: can't read configurations, error -71
[  847.065266][ T5959] usb 3-1: new high-speed USB device number 101 using dummy_hcd
[  847.227638][ T5959] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  847.239561][ T5959] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  847.250636][ T5959] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  847.260472][ T5959] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  847.273690][ T5959] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  847.283135][ T5959] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  847.299841][ T5959] usb 3-1: config 0 descriptor??
[  847.744609][ T5959] usbhid 3-1:0.0: can't add hid device: -71
[  847.771498][ T5959] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  847.804705][ T5959] usb 3-1: USB disconnect, device number 101
[  848.358908][T17435] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3411'.
[  848.549617][T17439] vlan2: entered promiscuous mode
[  848.601349][T17441] bond1: option lacp_rate: invalid value (192)
[  848.609635][T17441] bond1 (unregistering): Released all slaves
[  849.103528][ T5918] usb 6-1: USB disconnect, device number 70
[  849.173901][ T5918] usblp0: removed
[  850.147427][T17462] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3421'.
[  850.175336][ T5918] usb 6-1: new high-speed USB device number 71 using dummy_hcd
[  850.345469][ T5918] usb 6-1: Using ep0 maxpacket: 8
[  850.362212][ T5918] usb 6-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  850.392623][ T5918] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  850.429581][ T5918] usb 6-1: Product: syz
[  850.444061][ T5918] usb 6-1: Manufacturer: syz
[  850.462925][ T5918] usb 6-1: SerialNumber: syz
[  850.487897][ T5918] usb 6-1: config 0 descriptor??
[  850.744084][ T5918] usb 6-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  850.837809][ T5943] usb 4-1: new high-speed USB device number 84 using dummy_hcd
[  850.948002][ T5918] dvb_usb_rtl28xxu 6-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  851.015374][ T5943] usb 4-1: Using ep0 maxpacket: 8
[  851.026114][ T5943] usb 4-1: too many configurations: 105, using maximum allowed: 8
[  851.034720][T17491] fuse: Bad value for 'rootmode'
[  851.043222][ T5943] usb 4-1: unable to read config index 0 descriptor/start: -61
[  851.062584][ T5943] usb 4-1: can't read configurations, error -61
[  851.200818][ T5943] usb 4-1: new high-speed USB device number 85 using dummy_hcd
[  851.375264][ T5943] usb 4-1: Using ep0 maxpacket: 8
[  851.417768][ T5943] usb 4-1: too many configurations: 105, using maximum allowed: 8
[  851.438215][ T5943] usb 4-1: unable to read config index 0 descriptor/start: -61
[  851.446154][ T5943] usb 4-1: can't read configurations, error -61
[  851.506145][   T24] usb 2-1: new high-speed USB device number 90 using dummy_hcd
[  851.572409][ T5943] usb usb4-port1: attempt power cycle
[  851.604577][T13808] usb 6-1: USB disconnect, device number 71
[  851.955252][ T5943] usb 4-1: new high-speed USB device number 86 using dummy_hcd
[  852.006031][ T5943] usb 4-1: Using ep0 maxpacket: 8
[  852.013987][ T5943] usb 4-1: too many configurations: 105, using maximum allowed: 8
[  852.032426][ T5943] usb 4-1: unable to read config index 0 descriptor/start: -61
[  852.040428][ T5943] usb 4-1: can't read configurations, error -61
[  852.185362][ T5943] usb 4-1: new high-speed USB device number 87 using dummy_hcd
[  852.206449][ T5943] usb 4-1: Using ep0 maxpacket: 8
[  852.214697][ T5943] usb 4-1: too many configurations: 105, using maximum allowed: 8
[  852.231725][ T5943] usb 4-1: unable to read config index 0 descriptor/start: -61
[  852.246655][ T5943] usb 4-1: can't read configurations, error -61
[  852.257992][ T5943] usb usb4-port1: unable to enumerate USB device
[  852.483242][T17509] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3438'.
[  852.555289][ T5943] usb 5-1: new high-speed USB device number 111 using dummy_hcd
[  852.696059][ T5943] usb 5-1: device descriptor read/64, error -71
[  852.946936][ T5943] usb 5-1: new high-speed USB device number 112 using dummy_hcd
[  853.045329][ T5959] usb 3-1: new high-speed USB device number 102 using dummy_hcd
[  853.095366][ T5943] usb 5-1: device descriptor read/64, error -71
[  853.205783][ T5943] usb usb5-port1: attempt power cycle
[  853.215455][ T5959] usb 3-1: Using ep0 maxpacket: 32
[  853.222672][ T5959] usb 3-1: config 0 has an invalid interface number: 85 but max is 0
[  853.231025][ T5959] usb 3-1: config 0 has no interface number 0
[  853.238676][ T5959] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  853.249973][ T5959] usb 3-1: config 0 interface 85 has no altsetting 0
[  853.259353][ T5959] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  853.268613][ T5959] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  853.278529][ T5959] usb 3-1: Product: syz
[  853.282799][ T5959] usb 3-1: Manufacturer: syz
[  853.287587][ T5959] usb 3-1: SerialNumber: syz
[  853.298284][ T5959] usb 3-1: config 0 descriptor??
[  853.555305][ T5943] usb 5-1: new high-speed USB device number 113 using dummy_hcd
[  853.595882][ T5943] usb 5-1: device descriptor read/8, error -71
[  853.661581][   T61] veth0_to_bond: left promiscuous mode
[  853.720633][ T5959] appletouch 3-1:0.85: Geyser mode initialized.
[  853.745616][ T5959] input: appletouch as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.85/input/input36
[  853.846173][T13808] usb 6-1: new high-speed USB device number 72 using dummy_hcd
[  853.854669][ T5943] usb 5-1: new high-speed USB device number 114 using dummy_hcd
[  853.887870][ T5943] usb 5-1: device descriptor read/8, error -71
[  853.995343][T13808] usb 6-1: device descriptor read/64, error -71
[  854.003283][ T5943] usb usb5-port1: unable to enumerate USB device
[  854.226794][ T1219] usb 4-1: new high-speed USB device number 88 using dummy_hcd
[  854.246474][T13808] usb 6-1: new high-speed USB device number 73 using dummy_hcd
[  854.407696][T17536] No memory to map
[  854.438853][ T1219] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  854.450405][ T1219] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  854.462233][ T1219] usb 4-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  854.473680][ T1219] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  854.481888][T13808] usb 6-1: device descriptor read/64, error -71
[  854.495934][ T1219] usb 4-1: config 0 descriptor??
[  854.597442][T13808] usb usb6-port1: attempt power cycle
[  854.959312][T13808] usb 6-1: new high-speed USB device number 74 using dummy_hcd
[  855.009100][T13808] usb 6-1: device descriptor read/8, error -71
[  855.279017][T13808] usb 6-1: new high-speed USB device number 75 using dummy_hcd
[  855.354185][ T1219] hid-thrustmaster 0003:044F:B65D.0040: unknown main item tag 0x0
[  855.390863][T13808] usb 6-1: device descriptor read/8, error -71
[  855.426080][ T1219] hid-thrustmaster 0003:044F:B65D.0040: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.3-1/input0
[  855.453034][ T1219] hid-thrustmaster 0003:044F:B65D.0040: Wrong number of endpoints?
[  855.529558][T13808] usb usb6-port1: unable to enumerate USB device
[  855.706922][T17547] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3450'.
[  855.740997][T17549] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3449'.
[  855.893528][T13808] usb 3-1: USB disconnect, device number 102
[  855.948216][T13808] appletouch 3-1:0.85: input: appletouch disconnected
[  856.159685][T17554] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3452'.
[  856.232086][T17554] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3452'.
[  856.418412][T17559] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3454'.
[  856.508621][T17564] netlink: 284 bytes leftover after parsing attributes in process `syz.1.3456'.
[  856.542865][T17559] netlink: 60 bytes leftover after parsing attributes in process `syz.2.3454'.
[  856.635441][    C0] hid-thrustmaster 0003:044F:B65D.0040: URB to get model id failed with error -108
[  856.775318][ T5959] usb 4-1: reset high-speed USB device number 88 using dummy_hcd
[  856.814109][T17569] netlink: 'syz.1.3458': attribute type 21 has an invalid length.
[  856.905234][ T5959] usb 4-1: device descriptor read/64, error -32
[  857.050511][ T5839] Bluetooth: hci5: command 0x0406 tx timeout
[  857.213056][ T5959] usb 4-1: reset high-speed USB device number 88 using dummy_hcd
[  857.405391][ T5959] usb 4-1: device descriptor read/64, error -32
[  857.826515][T17585] FAULT_INJECTION: forcing a failure.
[  857.826515][T17585] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  857.848675][T17581] vcan0: tx drop: invalid da for name 0x0000000000000001
[  857.857295][T17583] tipc: Started in network mode
[  857.862328][T17583] tipc: Node identity beebbedc3d78, cluster identity 4711
[  857.890578][T17585] CPU: 0 UID: 0 PID: 17585 Comm: syz.2.3463 Not tainted syzkaller #0 PREEMPT(full) 
[  857.890606][T17585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  857.890620][T17585] Call Trace:
[  857.890629][T17585]  <TASK>
[  857.890638][T17585]  dump_stack_lvl+0x189/0x250
[  857.890694][T17585]  ? __pfx____ratelimit+0x10/0x10
[  857.890720][T17585]  ? __pfx_dump_stack_lvl+0x10/0x10
[  857.890751][T17585]  ? __pfx__printk+0x10/0x10
[  857.890773][T17585]  ? __might_fault+0xb0/0x130
[  857.890816][T17585]  should_fail_ex+0x414/0x560
[  857.890852][T17585]  _copy_from_user+0x2d/0xb0
[  857.890880][T17585]  get_compat_msghdr+0xad/0x4a0
[  857.890909][T17585]  ? __pfx_get_compat_msghdr+0x10/0x10
[  857.890944][T17585]  ___sys_sendmsg+0x193/0x2a0
[  857.890970][T17585]  ? __pfx____sys_sendmsg+0x10/0x10
[  857.890993][T17585]  ? __lock_acquire+0xab9/0xd20
[  857.891044][T17585]  ? __fget_files+0x2a/0x420
[  857.891063][T17585]  ? __fget_files+0x3a0/0x420
[  857.891092][T17585]  __sys_sendmmsg+0x28e/0x430
[  857.891120][T17585]  ? __pfx___sys_sendmmsg+0x10/0x10
[  857.891139][T17585]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  857.891194][T17585]  ? ksys_write+0x22a/0x250
[  857.891222][T17585]  ? exc_page_fault+0x82/0x100
[  857.891249][T17585]  ? __pfx_ksys_write+0x10/0x10
[  857.891285][T17585]  __ia32_compat_sys_sendmmsg+0xa2/0xc0
[  857.891309][T17585]  __do_fast_syscall_32+0xb6/0x2b0
[  857.891338][T17585]  ? lockdep_hardirqs_on+0x9c/0x150
[  857.891369][T17585]  do_fast_syscall_32+0x34/0x80
[  857.891397][T17585]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  857.891422][T17585] RIP: 0023:0xf70cd539
[  857.891437][T17585] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  857.891453][T17585] RSP: 002b:00000000f54bd55c EFLAGS: 00000206 ORIG_RAX: 0000000000000159
[  857.891475][T17585] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000008000a200
[  857.891494][T17585] RDX: 00000000ffffff31 RSI: 0000000060000800 RDI: 0000000000000000
[  857.891508][T17585] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  857.891519][T17585] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  857.891531][T17585] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  857.891562][T17585]  </TASK>
[  858.131396][T17583] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  858.238776][T17583] syzkaller0: entered promiscuous mode
[  858.255280][ T8608] usb 2-1: new high-speed USB device number 91 using dummy_hcd
[  858.325838][T17583] syzkaller0: entered allmulticast mode
[  858.418450][T17597] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3467'.
[  858.440453][ T8608] usb 2-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  858.443333][T17600] vlan2: entered promiscuous mode
[  858.459935][ T8608] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  858.473932][ T8608] usb 2-1: Product: syz
[  858.487568][ T8608] usb 2-1: Manufacturer: syz
[  858.492262][ T8608] usb 2-1: SerialNumber: syz
[  858.516790][ T8608] usb 2-1: config 0 descriptor??
[  858.522893][T17582] tipc: Resetting bearer <eth:syzkaller0>
[  858.548289][   T24] usb 4-1: USB disconnect, device number 88
[  858.571303][ T8608] gspca_main: sunplus-2.14.0 probing 055f:c230
[  858.587139][T17582] tipc: Disabling bearer <eth:syzkaller0>
[  858.812535][T17609] binder: BINDER_SET_CONTEXT_MGR already set
[  858.825614][T17609] binder: 17602:17609 ioctl 4018620d 80000040 returned -16
[  858.856495][T17607] bond2: option lacp_rate: invalid value (192)
[  858.877490][T17607] bond2 (unregistering): Released all slaves
[  859.085427][   T24] usb 3-1: new high-speed USB device number 103 using dummy_hcd
[  859.255414][   T24] usb 3-1: Using ep0 maxpacket: 32
[  859.267317][   T24] usb 3-1: config 0 contains an unexpected descriptor of type 0x1, skipping
[  859.294179][   T24] usb 3-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  859.345494][T13808] usb 4-1: new high-speed USB device number 89 using dummy_hcd
[  859.366354][   T24] usb 3-1: config 0 interface 0 has no altsetting 0
[  859.388734][   T24] usb 3-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  859.399030][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  859.408604][   T24] usb 3-1: Product: syz
[  859.412867][   T24] usb 3-1: Manufacturer: syz
[  859.418891][   T24] usb 3-1: SerialNumber: syz
[  859.428653][   T24] usb 3-1: config 0 descriptor??
[  859.491910][   T24] gs_usb 3-1:0.0: Required endpoints not found
[  859.522112][T13808] usb 4-1: Using ep0 maxpacket: 32
[  859.541156][T13808] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  859.556409][T13808] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  859.570717][T13808] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  859.580417][T13808] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  859.612813][T13808] usb 4-1: config 0 descriptor??
[  859.683137][T13808] hub 4-1:0.0: USB hub found
[  859.706525][T17619] EXT4-fs: Conflicting test_dummy_encryption options
[  859.757518][T17611] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  859.774651][T17611] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  859.829371][T17613] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  859.844164][   T30] audit: type=1326 audit(1761813440.761:1939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17584 comm="syz.1.3461" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fd539 code=0x7ffc0000
[  859.848732][T17613] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  859.882598][T17611] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  859.948061][T17611] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  859.965615][   T30] audit: type=1326 audit(1761813440.771:1940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17584 comm="syz.1.3461" exe="/root/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf70fd539 code=0x7ffc0000
[  859.975443][T13808] hub 4-1:0.0: 1 port detected
[  860.053873][   T30] audit: type=1326 audit(1761813440.771:1941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17584 comm="syz.1.3461" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fd539 code=0x7ffc0000
[  860.076203][    C1] vkms_vblank_simulate: vblank timer overrun
[  860.154958][   T30] audit: type=1326 audit(1761813440.771:1942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17584 comm="syz.1.3461" exe="/root/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf70fd539 code=0x7ffc0000
[  860.177155][    C1] vkms_vblank_simulate: vblank timer overrun
[  860.180504][T17613] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  860.188052][ T8608] gspca_sunplus: reg_r err -110
[  860.203554][ T8608] sunplus 2-1:0.0: probe with driver sunplus failed with error -110
[  860.222290][   T30] audit: type=1326 audit(1761813440.811:1943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17584 comm="syz.1.3461" exe="/root/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fd558 code=0x7ffc0000
[  860.224721][T17622] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  860.244612][    C1] vkms_vblank_simulate: vblank timer overrun
[  860.288369][   T30] audit: type=1326 audit(1761813440.811:1944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17584 comm="syz.1.3461" exe="/root/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fd558 code=0x7ffc0000
[  860.303336][T17613] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  860.310510][    C1] vkms_vblank_simulate: vblank timer overrun
[  860.349305][   T30] audit: type=1326 audit(1761813440.811:1945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17584 comm="syz.1.3461" exe="/root/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fd558 code=0x7ffc0000
[  860.378215][   T30] audit: type=1326 audit(1761813440.811:1946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17584 comm="syz.1.3461" exe="/root/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fd558 code=0x7ffc0000
[  860.396249][T17622] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  860.406868][   T30] audit: type=1326 audit(1761813440.811:1947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17584 comm="syz.1.3461" exe="/root/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fd558 code=0x7ffc0000
[  860.430118][    C1] vkms_vblank_simulate: vblank timer overrun
[  860.440006][T13808] hub 4-1:0.0: hub_hub_status failed (err = -71)
[  860.448204][   T30] audit: type=1326 audit(1761813440.811:1948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17584 comm="syz.1.3461" exe="/root/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fd558 code=0x7ffc0000
[  860.470675][T13808] hub 4-1:0.0: config failed, can't get hub status (err -71)
[  860.475424][T13808] usbhid 4-1:0.0: can't add hid device: -71
[  860.491070][T13808] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  860.569083][T13808] usb 4-1: USB disconnect, device number 89
[  860.820618][T17635] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3481'.
[  860.898300][   T24] usb 2-1: USB disconnect, device number 91
[  861.085850][T17641] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3484'.
[  861.097137][T17642] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  861.117798][T17642] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  861.355483][   T24] usb 4-1: new high-speed USB device number 90 using dummy_hcd
[  861.385359][ T8608] usb 6-1: new high-speed USB device number 76 using dummy_hcd
[  861.505378][   T24] usb 4-1: Using ep0 maxpacket: 16
[  861.512327][   T24] usb 4-1: config 1 has an invalid descriptor of length 23, skipping remainder of the config
[  861.523139][   T24] usb 4-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[  861.535828][   T24] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  861.544976][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  861.553124][ T8608] usb 6-1: Using ep0 maxpacket: 16
[  861.558343][   T24] usb 4-1: Product: syz
[  861.562501][   T24] usb 4-1: Manufacturer: syz
[  861.567299][   T24] usb 4-1: SerialNumber: syz
[  861.583382][ T8608] usb 6-1: New USB device found, idVendor=046d, idProduct=0721, bcdDevice=9c.25
[  861.592866][ T8608] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  861.602255][ T8608] usb 6-1: Product: syz
[  861.606602][ T8608] usb 6-1: Manufacturer: syz
[  861.611249][ T8608] usb 6-1: SerialNumber: syz
[  861.619818][ T8608] usb 6-1: config 0 descriptor??
[  861.630899][ T8608] uvcvideo 6-1:0.0: Found UVC 0.00 device syz (046d:0721)
[  861.639837][ T8608] uvcvideo 6-1:0.0: No valid video chain found.
[  861.842504][T17645] netlink: 44 bytes leftover after parsing attributes in process `syz.5.3485'.
[  861.864308][ T1219] usb 6-1: USB disconnect, device number 76
[  862.001936][T17657] FAULT_INJECTION: forcing a failure.
[  862.001936][T17657] name failslab, interval 1, probability 0, space 0, times 0
[  862.015687][T17657] CPU: 0 UID: 0 PID: 17657 Comm: syz.1.3488 Not tainted syzkaller #0 PREEMPT(full) 
[  862.015715][T17657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  862.015729][T17657] Call Trace:
[  862.015738][T17657]  <TASK>
[  862.015747][T17657]  dump_stack_lvl+0x189/0x250
[  862.015781][T17657]  ? __pfx____ratelimit+0x10/0x10
[  862.015809][T17657]  ? __pfx_dump_stack_lvl+0x10/0x10
[  862.015838][T17657]  ? __pfx__printk+0x10/0x10
[  862.015866][T17657]  ? __pfx___might_resched+0x10/0x10
[  862.015888][T17657]  ? fs_reclaim_acquire+0x7d/0x100
[  862.015926][T17657]  should_fail_ex+0x414/0x560
[  862.015965][T17657]  should_failslab+0xa8/0x100
[  862.015989][T17657]  kmem_cache_alloc_node_noprof+0x77/0x710
[  862.016019][T17657]  ? __alloc_skb+0x112/0x2d0
[  862.016065][T17657]  __alloc_skb+0x112/0x2d0
[  862.016105][T17657]  alloc_skb_with_frags+0xca/0x890
[  862.016128][T17657]  ? css_rstat_updated+0x23a/0x4f0
[  862.016164][T17657]  sock_alloc_send_pskb+0x84d/0x980
[  862.016209][T17657]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  862.016281][T17657]  ? __local_bh_enable_ip+0x12d/0x1c0
[  862.016305][T17657]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  862.016339][T17657]  j1939_sk_sendmsg+0x6f5/0x1350
[  862.016373][T17657]  ? lockdep_hardirqs_on+0x9c/0x150
[  862.016417][T17657]  ? __pfx_j1939_sk_sendmsg+0x10/0x10
[  862.016436][T17657]  ? __import_iovec+0x40e/0x7f0
[  862.016459][T17657]  ? aa_sock_msg_perm+0xf1/0x1d0
[  862.016489][T17657]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  862.016527][T17657]  ? __pfx_j1939_sk_sendmsg+0x10/0x10
[  862.016549][T17657]  __sock_sendmsg+0x21c/0x270
[  862.016580][T17657]  ____sys_sendmsg+0x52d/0x830
[  862.016609][T17657]  ? __pfx_____sys_sendmsg+0x10/0x10
[  862.016649][T17657]  ___sys_sendmsg+0x21f/0x2a0
[  862.016674][T17657]  ? __pfx____sys_sendmsg+0x10/0x10
[  862.016735][T17657]  ? __fget_files+0x2a/0x420
[  862.016755][T17657]  ? __fget_files+0x3a0/0x420
[  862.016786][T17657]  __sys_sendmmsg+0x28e/0x430
[  862.016815][T17657]  ? __pfx___sys_sendmmsg+0x10/0x10
[  862.016835][T17657]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  862.016891][T17657]  ? ksys_write+0x22a/0x250
[  862.016928][T17657]  ? exc_page_fault+0x82/0x100
[  862.016954][T17657]  ? __pfx_ksys_write+0x10/0x10
[  862.016989][T17657]  __ia32_compat_sys_sendmmsg+0xa2/0xc0
[  862.017014][T17657]  __do_fast_syscall_32+0xb6/0x2b0
[  862.017049][T17657]  ? lockdep_hardirqs_on+0x9c/0x150
[  862.017078][T17657]  do_fast_syscall_32+0x34/0x80
[  862.017107][T17657]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  862.017131][T17657] RIP: 0023:0xf70fd539
[  862.017150][T17657] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  862.017167][T17657] RSP: 002b:00000000f54ed55c EFLAGS: 00000206 ORIG_RAX: 0000000000000159
[  862.017188][T17657] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000008000a200
[  862.017202][T17657] RDX: 00000000ffffff31 RSI: 0000000060000800 RDI: 0000000000000000
[  862.017215][T17657] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  862.017227][T17657] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  862.017239][T17657] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  862.017269][T17657]  </TASK>
[  862.030764][   T24] usb 4-1: USB disconnect, device number 90
[  862.376389][ T5943] usb 3-1: USB disconnect, device number 103
[  863.175766][T17675] netlink: 'syz.3.3492': attribute type 1 has an invalid length.
[  863.204502][T17677] loop2: detected capacity change from 0 to 7
[  863.211948][T17677] Dev loop2: unable to read RDB block 7
[  863.219823][T17678] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3491'.
[  863.220323][T17677]  loop2: unable to read partition table
[  863.237345][T17677] loop2: partition table beyond EOD, truncated
[  863.243615][T17677] loop_reread_partitions: partition scan of loop2 (þè– ) failed (rc=-5)
[  863.419154][T17675] 8021q: adding VLAN 0 to HW filter on device bond2
[  863.726966][T17686] vlan2: entered promiscuous mode
[  863.832533][T17685] vcan0: tx drop: invalid da for name 0x0000000000000001
[  864.184528][T17697] loop2: detected capacity change from 0 to 7
[  864.203088][T17698] netlink: 'syz.5.3497': attribute type 16 has an invalid length.
[  864.226395][T17698] netlink: 'syz.5.3497': attribute type 17 has an invalid length.
[  864.277718][T17697]  loop2:
[  864.280888][T17697] loop2: partition table partially beyond EOD, truncated
[  864.295392][T17698] macvlan0: left promiscuous mode
[  864.538571][T17698] bond1: left promiscuous mode
[  864.614779][T17704] netlink: 'syz.3.3499': attribute type 1 has an invalid length.
[  864.659729][T17704] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  864.667121][T17704] IPv6: NLM_F_CREATE should be set when creating new route
[  864.674384][T17704] IPv6: NLM_F_CREATE should be set when creating new route
[  864.807557][T17707] netlink: 'syz.3.3499': attribute type 1 has an invalid length.
[  864.833992][T17707] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  865.268632][ T5943] usb 3-1: new high-speed USB device number 104 using dummy_hcd
[  865.475439][ T5943] usb 3-1: Using ep0 maxpacket: 8
[  865.492441][ T5943] usb 3-1: config index 0 descriptor too short (expected 301, got 45)
[  865.537019][ T5943] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  865.602521][ T5943] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  865.665198][ T5943] usb 3-1: config 16 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  865.725667][ T5943] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  865.765459][ T5943] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  865.788139][ T5943] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  865.965768][ T5943] usbtmc 3-1:16.0: bulk endpoints not found
[  865.975055][T17713] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3503'.
[  866.276580][   T24] usb 2-1: new high-speed USB device number 92 using dummy_hcd
[  866.455249][   T24] usb 2-1: device descriptor read/64, error -71
[  866.705227][   T24] usb 2-1: new high-speed USB device number 93 using dummy_hcd
[  866.845518][   T24] usb 2-1: device descriptor read/64, error -71
[  866.968351][   T24] usb usb2-port1: attempt power cycle
[  867.061708][T17723] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3507'.
[  867.096083][T17723] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3507'.
[  867.315264][   T24] usb 2-1: new high-speed USB device number 94 using dummy_hcd
[  867.336618][   T24] usb 2-1: device descriptor read/8, error -71
[  867.585413][   T24] usb 2-1: new high-speed USB device number 95 using dummy_hcd
[  867.615981][   T24] usb 2-1: device descriptor read/8, error -71
[  867.715472][ T8608] usb 3-1: USB disconnect, device number 104
[  867.729316][   T24] usb usb2-port1: unable to enumerate USB device
[  867.785429][ T5959] usb 4-1: new high-speed USB device number 91 using dummy_hcd
[  867.851196][T17729] FAULT_INJECTION: forcing a failure.
[  867.851196][T17729] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  867.880790][T17729] CPU: 1 UID: 0 PID: 17729 Comm: syz.5.3510 Not tainted syzkaller #0 PREEMPT(full) 
[  867.880828][T17729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  867.880840][T17729] Call Trace:
[  867.880849][T17729]  <TASK>
[  867.880858][T17729]  dump_stack_lvl+0x189/0x250
[  867.880893][T17729]  ? __pfx____ratelimit+0x10/0x10
[  867.880920][T17729]  ? __pfx_dump_stack_lvl+0x10/0x10
[  867.880951][T17729]  ? __pfx__printk+0x10/0x10
[  867.880974][T17729]  ? __might_fault+0xb0/0x130
[  867.881018][T17729]  should_fail_ex+0x414/0x560
[  867.881057][T17729]  _copy_from_user+0x2d/0xb0
[  867.881087][T17729]  kstrtouint_from_user+0xc4/0x170
[  867.881113][T17729]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  867.881153][T17729]  proc_fail_nth_write+0x88/0x200
[  867.881183][T17729]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  867.881217][T17729]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  867.881248][T17729]  vfs_write+0x27e/0xb30
[  867.881289][T17729]  ? __pfx_vfs_write+0x10/0x10
[  867.881323][T17729]  ? __fget_files+0x2a/0x420
[  867.881350][T17729]  ? __fget_files+0x3a0/0x420
[  867.881369][T17729]  ? __fget_files+0x2a/0x420
[  867.881399][T17729]  ksys_write+0x145/0x250
[  867.881428][T17729]  ? exc_page_fault+0x82/0x100
[  867.881458][T17729]  ? __pfx_ksys_write+0x10/0x10
[  867.881492][T17729]  ? syscall_enter_from_user_mode_prepare+0x8f/0x110
[  867.881524][T17729]  ? lockdep_hardirqs_on+0x9c/0x150
[  867.881557][T17729]  __do_fast_syscall_32+0xb6/0x2b0
[  867.881588][T17729]  ? lockdep_hardirqs_on+0x9c/0x150
[  867.881621][T17729]  do_fast_syscall_32+0x34/0x80
[  867.881652][T17729]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  867.881679][T17729] RIP: 0023:0xf7f67539
[  867.881698][T17729] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  867.881716][T17729] RSP: 002b:00000000f5456590 EFLAGS: 00000206 ORIG_RAX: 0000000000000004
[  867.881741][T17729] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5456620
[  867.881757][T17729] RDX: 0000000000000001 RSI: 00000000f73f5ff4 RDI: 0000000000000000
[  867.881772][T17729] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  867.881785][T17729] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  867.881806][T17729] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  867.881842][T17729]  </TASK>
[  868.116371][    C1] vkms_vblank_simulate: vblank timer overrun
[  868.217124][ T5959] usb 4-1: unable to get BOS descriptor or descriptor too short
[  868.226743][ T5959] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  868.236020][ T5959] usb 4-1: config 1 interface 0 altsetting 247 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  868.249081][ T5959] usb 4-1: config 1 interface 0 has no altsetting 1
[  868.258079][ T5959] usb 4-1: New USB device found, idVendor=2040, idProduct=b990, bcdDevice=f6.75
[  868.267194][ T5959] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  868.275258][ T5959] usb 4-1: Product: syz
[  868.279418][ T5959] usb 4-1: Manufacturer: syz
[  868.284007][ T5959] usb 4-1: SerialNumber: syz
[  868.294563][ T5959] smsusb:smsusb_probe: board id=8, interface number 0
[  868.509310][T17725] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  868.531776][T17725] xt_HMARK: spi-set and port-set can't be combined
[  868.564975][ T5959] smsusb:smsusb_probe: Device initialized with return code -19
[  868.585408][   T24] usb 6-1: new high-speed USB device number 77 using dummy_hcd
[  868.715743][ T5943] usb 3-1: new high-speed USB device number 105 using dummy_hcd
[  868.765240][   T24] usb 6-1: Using ep0 maxpacket: 16
[  868.780001][   T24] usb 6-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0
[  868.796199][   T24] usb 6-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0
[  868.846114][   T24] usb 6-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  868.863940][   T24] usb 6-1: config 1 interface 0 has no altsetting 0
[  868.866832][ T5943] usb 3-1: device descriptor read/64, error -71
[  868.874224][   T24] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  868.895235][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  868.906421][T17725] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  868.925515][T17725] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  868.943478][   T24] usb 6-1: Product: syz
[  868.947857][   T24] usb 6-1: Manufacturer: syz
[  868.952548][   T24] usb 6-1: SerialNumber: syz
[  868.958352][ T1219] usb 4-1: USB disconnect, device number 91
[  869.137056][ T5943] usb 3-1: new high-speed USB device number 106 using dummy_hcd
[  869.184652][   T24] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 77 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8
[  869.201036][T17742] bond1: option lacp_rate: invalid value (192)
[  869.209082][T17742] bond1 (unregistering): Released all slaves
[  869.285250][ T5943] usb 3-1: device descriptor read/64, error -71
[  869.405954][ T5943] usb usb3-port1: attempt power cycle
[  869.724233][T17749] loop2: detected capacity change from 0 to 7
[  869.740115][T17749] Dev loop2: unable to read RDB block 7
[  869.775417][ T5943] usb 3-1: new high-speed USB device number 107 using dummy_hcd
[  869.785239][T17749]  loop2: unable to read partition table
[  869.810092][T17749] loop2: partition table beyond EOD, truncated
[  869.827923][ T5943] usb 3-1: device descriptor read/8, error -71
[  869.835811][T17749] loop_reread_partitions: partition scan of loop2 (þè– ) failed (rc=-5)
[  870.065096][T17756] loop2: detected capacity change from 0 to 7
[  870.095759][ T5943] usb 3-1: new high-speed USB device number 108 using dummy_hcd
[  870.113193][T17756]  loop2:
[  870.117069][T17756] loop2: partition table partially beyond EOD, truncated
[  870.148985][ T5943] usb 3-1: device descriptor read/8, error -71
[  870.280402][ T5943] usb usb3-port1: unable to enumerate USB device
[  871.368923][ T5895] usb 6-1: USB disconnect, device number 77
[  871.396524][ T5895] usblp0: removed
[  871.805433][T17777] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3526'.
[  872.083552][T13808] usb 6-1: new high-speed USB device number 78 using dummy_hcd
[  872.305259][T13808] usb 6-1: Using ep0 maxpacket: 16
[  872.319861][T13808] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  872.357186][T13808] usb 6-1: New USB device found, idVendor=0458, idProduct=0087, bcdDevice= 0.00
[  872.425338][T13808] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  872.441426][T13808] usb 6-1: config 0 descriptor??
[  872.860008][T13808] kye 0003:0458:0087.0041: unknown main item tag 0x0
[  872.878826][T13808] kye 0003:0458:0087.0041: unknown main item tag 0x0
[  872.905723][T13808] kye 0003:0458:0087.0041: unknown main item tag 0x0
[  872.912496][T13808] kye 0003:0458:0087.0041: unknown main item tag 0x0
[  872.956421][T13808] kye 0003:0458:0087.0041: unknown main item tag 0x0
[  872.985636][T13808] kye 0003:0458:0087.0041: unknown main item tag 0x0
[  873.025380][T13808] kye 0003:0458:0087.0041: unknown main item tag 0x0
[  873.035824][T17782] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3530'.
[  873.050287][T13808] kye 0003:0458:0087.0041: unknown main item tag 0x0
[  873.065728][T17782] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3530'.
[  873.085443][T13808] kye 0003:0458:0087.0041: unknown main item tag 0x0
[  873.121499][T13808] kye 0003:0458:0087.0041: unknown main item tag 0x0
[  873.166344][T13808] kye 0003:0458:0087.0041: hidraw0: USB HID v0.09 Device [HID 0458:0087] on usb-dummy_hcd.5-1/input0
[  873.228809][T13808] usb 6-1: USB disconnect, device number 78
[  873.419155][T17783] fido_id[17783]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  873.661730][ T5839] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  873.671722][ T5839] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  873.680244][ T5839] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  873.697584][ T5839] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  873.706884][ T5839] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  873.975996][T17792] FAULT_INJECTION: forcing a failure.
[  873.975996][T17792] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  874.015316][T17792] CPU: 1 UID: 0 PID: 17792 Comm: syz.3.3533 Not tainted syzkaller #0 PREEMPT(full) 
[  874.015345][T17792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  874.015360][T17792] Call Trace:
[  874.015369][T17792]  <TASK>
[  874.015379][T17792]  dump_stack_lvl+0x189/0x250
[  874.015415][T17792]  ? __pfx____ratelimit+0x10/0x10
[  874.015442][T17792]  ? __pfx_dump_stack_lvl+0x10/0x10
[  874.015472][T17792]  ? __pfx__printk+0x10/0x10
[  874.015494][T17792]  ? __might_fault+0xb0/0x130
[  874.015536][T17792]  should_fail_ex+0x414/0x560
[  874.015573][T17792]  copy_fpstate_to_sigframe+0xa18/0xce0
[  874.015605][T17792]  ? do_fast_syscall_32+0x34/0x80
[  874.015639][T17792]  ? copy_fpstate_to_sigframe+0x181/0xce0
[  874.015679][T17792]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[  874.015738][T17792]  ? fpu__alloc_mathframe+0xad/0x130
[  874.015774][T17792]  get_sigframe+0x58d/0x7d0
[  874.015812][T17792]  ? __pfx_get_sigframe+0x10/0x10
[  874.015862][T17792]  ia32_setup_rt_frame+0x106/0xb70
[  874.015888][T17792]  ? _raw_spin_unlock_irq+0x23/0x50
[  874.015914][T17792]  ? lockdep_hardirqs_on+0x9c/0x150
[  874.015943][T17792]  ? _raw_spin_unlock_irq+0x2e/0x50
[  874.015966][T17792]  ? get_signal+0x1150/0x1340
[  874.015996][T17792]  ? __pfx_ia32_setup_rt_frame+0x10/0x10
[  874.016023][T17792]  ? arch_do_signal_or_restart+0x385/0x790
[  874.016060][T17792]  arch_do_signal_or_restart+0x429/0x790
[  874.016096][T17792]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  874.016149][T17792]  ? exit_to_user_mode_loop+0x40/0x130
[  874.016174][T17792]  exit_to_user_mode_loop+0x72/0x130
[  874.016196][T17792]  __do_fast_syscall_32+0x1f4/0x2b0
[  874.016235][T17792]  ? lockdep_hardirqs_on+0x9c/0x150
[  874.016267][T17792]  do_fast_syscall_32+0x34/0x80
[  874.016297][T17792]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  874.016334][T17792] RIP: 0023:0xf704d539
[  874.016352][T17792] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  874.016370][T17792] RSP: 002b:00000000f543d55c EFLAGS: 00000206 ORIG_RAX: 0000000000000159
[  874.016392][T17792] RAX: ffffffffffffffe0 RBX: 0000000000000003 RCX: 0000000080003c00
[  874.016406][T17792] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  874.016418][T17792] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  874.016430][T17792] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  874.016442][T17792] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  874.016472][T17792]  </TASK>
[  874.272737][    C1] vkms_vblank_simulate: vblank timer overrun
[  874.518133][T17795] FAULT_INJECTION: forcing a failure.
[  874.518133][T17795] name failslab, interval 1, probability 0, space 0, times 0
[  874.589510][T17795] CPU: 1 UID: 0 PID: 17795 Comm: syz.4.3536 Not tainted syzkaller #0 PREEMPT(full) 
[  874.589531][T17795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  874.589542][T17795] Call Trace:
[  874.589548][T17795]  <TASK>
[  874.589555][T17795]  dump_stack_lvl+0x189/0x250
[  874.589581][T17795]  ? __pfx____ratelimit+0x10/0x10
[  874.589601][T17795]  ? __pfx_dump_stack_lvl+0x10/0x10
[  874.589623][T17795]  ? __pfx__printk+0x10/0x10
[  874.589643][T17795]  ? __pfx___might_resched+0x10/0x10
[  874.589664][T17795]  should_fail_ex+0x414/0x560
[  874.589691][T17795]  should_failslab+0xa8/0x100
[  874.589709][T17795]  __kmalloc_noprof+0xcb/0x7f0
[  874.589730][T17795]  ? kfree+0x4d/0x6d0
[  874.589747][T17795]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  874.589777][T17795]  tomoyo_realpath_from_path+0xe3/0x5d0
[  874.589802][T17795]  ? tomoyo_domain+0xd9/0x130
[  874.589820][T17795]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  874.589840][T17795]  tomoyo_path_number_perm+0x1e8/0x5a0
[  874.589862][T17795]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  874.589895][T17795]  ? __lock_acquire+0xab9/0xd20
[  874.589929][T17795]  ? __fget_files+0x2a/0x420
[  874.589947][T17795]  ? __fget_files+0x3a0/0x420
[  874.589961][T17795]  ? __fget_files+0x2a/0x420
[  874.589979][T17795]  security_file_ioctl_compat+0xcb/0x2d0
[  874.590000][T17795]  __ia32_compat_sys_ioctl+0x128/0x840
[  874.590023][T17795]  ? __pfx___ia32_compat_sys_ioctl+0x10/0x10
[  874.590044][T17795]  ? __fget_files+0x3a0/0x420
[  874.590063][T17795]  ? fput+0xa0/0xd0
[  874.590081][T17795]  ? ksys_write+0x22a/0x250
[  874.590101][T17795]  ? exc_page_fault+0x82/0x100
[  874.590122][T17795]  ? __pfx_ksys_write+0x10/0x10
[  874.590146][T17795]  ? syscall_enter_from_user_mode_prepare+0x8f/0x110
[  874.590178][T17795]  ? lockdep_hardirqs_on+0x9c/0x150
[  874.590201][T17795]  __do_fast_syscall_32+0xb6/0x2b0
[  874.590236][T17795]  ? lockdep_hardirqs_on+0x9c/0x150
[  874.590258][T17795]  do_fast_syscall_32+0x34/0x80
[  874.590279][T17795]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  874.590297][T17795] RIP: 0023:0xf707d539
[  874.590311][T17795] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  874.590324][T17795] RSP: 002b:00000000f546d55c EFLAGS: 00000206 ORIG_RAX: 0000000000000036
[  874.590340][T17795] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c01864b0
[  874.590351][T17795] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  874.590360][T17795] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  874.590369][T17795] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  874.590378][T17795] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  874.590400][T17795]  </TASK>
[  874.590406][T17795] ERROR: Out of memory at tomoyo_realpath_from_path.
[  875.204131][T17788] chnl_net:caif_netlink_parms(): no params data found
[  875.446723][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  875.453106][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  875.594525][T13808] usb 2-1: new high-speed USB device number 96 using dummy_hcd
[  875.687735][T17830] netlink: 180 bytes leftover after parsing attributes in process `syz.3.3538'.
[  875.709653][T17830] xt_time: unknown flags 0xf4
[  875.755683][ T5839] Bluetooth: hci2: command tx timeout
[  875.850664][T13808] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  875.871066][T13808] usb 2-1: too many endpoints for config 0 interface 0 altsetting 209: 129, using maximum allowed: 30
[  875.940494][T13808] usb 2-1: config 0 interface 0 altsetting 209 has 0 endpoint descriptors, different from the interface descriptor's value: 129
[  876.124279][T13808] usb 2-1: config 0 interface 0 has no altsetting 0
[  876.135286][T13808] usb 2-1: New USB device found, idVendor=1b96, idProduct=0009, bcdDevice= 0.00
[  876.167221][T13808] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  876.206451][T13808] usb 2-1: config 0 descriptor??
[  876.321964][T17833] bond3 (unregistering): Released all slaves
[  876.533963][T17788] bridge0: port 1(bridge_slave_0) entered blocking state
[  876.546640][T17788] bridge0: port 1(bridge_slave_0) entered disabled state
[  876.564252][T17788] bridge_slave_0: entered allmulticast mode
[  876.609936][T17788] bridge_slave_0: entered promiscuous mode
[  876.619741][T17788] bridge0: port 2(bridge_slave_1) entered blocking state
[  876.627439][T17788] bridge0: port 2(bridge_slave_1) entered disabled state
[  876.634817][T17788] bridge_slave_1: entered allmulticast mode
[  876.665749][T17788] bridge_slave_1: entered promiscuous mode
[  876.723131][T17846] loop2: detected capacity change from 0 to 7
[  876.739654][ T5963] Dev loop2: unable to read RDB block 7
[  876.745885][ T5963]  loop2: unable to read partition table
[  876.752775][ T5963] loop2: partition table beyond EOD, truncated
[  876.760992][T17846] Dev loop2: unable to read RDB block 7
[  876.769007][T17788] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  876.795911][T17846]  loop2: unable to read partition table
[  876.800365][T17788] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  876.802186][T17846] loop2: partition table beyond EOD, truncated
[  876.822855][T17846] loop_reread_partitions: partition scan of loop2 (þè– ) failed (rc=-5)
[  876.831678][ T5959] usb 5-1: new high-speed USB device number 115 using dummy_hcd
[  876.995287][ T5959] usb 5-1: Using ep0 maxpacket: 16
[  877.002935][ T5959] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  877.015417][ T5959] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  877.025934][ T5959] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  877.041682][ T5959] usb 5-1: New USB device found, idVendor=1e7d, idProduct=31ce, bcdDevice= 0.00
[  877.051206][ T5959] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  877.062819][ T5959] usb 5-1: config 0 descriptor??
[  877.102613][T17788] team0: Port device team_slave_0 added
[  877.111866][T17788] team0: Port device team_slave_1 added
[  877.222078][T17788] batman_adv: batadv0: Adding interface: batadv_slave_0
[  877.352776][T17788] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  877.378824][    C1] vkms_vblank_simulate: vblank timer overrun
[  877.401175][T17788] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  877.428993][T17788] batman_adv: batadv0: Adding interface: batadv_slave_1
[  877.438775][T17788] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  877.464716][    C1] vkms_vblank_simulate: vblank timer overrun
[  877.471446][T17788] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  877.488229][ T5959] ryos 0003:1E7D:31CE.0042: unbalanced delimiter at end of report description
[  877.501892][ T5959] ryos 0003:1E7D:31CE.0042: parse failed
[  877.509650][ T5959] ryos 0003:1E7D:31CE.0042: probe with driver ryos failed with error -22
[  877.556790][T17788] hsr_slave_0: entered promiscuous mode
[  877.563261][T17788] hsr_slave_1: entered promiscuous mode
[  877.570216][T17788] debugfs: 'hsr0' already exists in 'hsr'
[  877.576244][T17788] Cannot create hsr debugfs directory
[  877.715050][   T24] usb 5-1: USB disconnect, device number 115
[  877.835398][ T5839] Bluetooth: hci2: command tx timeout
[  877.899382][T17788] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  877.912777][T17788] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  877.928634][T17788] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  877.954340][T17788] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  878.105708][T17788] 8021q: adding VLAN 0 to HW filter on device bond0
[  878.154359][T17788] 8021q: adding VLAN 0 to HW filter on device team0
[  878.169283][   T50] bridge0: port 1(bridge_slave_0) entered blocking state
[  878.176464][   T50] bridge0: port 1(bridge_slave_0) entered forwarding state
[  878.205465][   T24] usb 5-1: new high-speed USB device number 116 using dummy_hcd
[  878.217625][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[  878.224782][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[  878.320617][T17788] 8021q: adding VLAN 0 to HW filter on device batadv0
[  878.355380][   T24] usb 5-1: Using ep0 maxpacket: 8
[  878.363132][   T24] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[  878.374189][   T24] usb 5-1: config 179 has no interface number 0
[  878.387911][   T24] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  878.401041][   T24] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  878.413644][   T24] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  878.428820][ T5959] usb 2-1: USB disconnect, device number 96
[  878.434545][T17788] veth0_vlan: entered promiscuous mode
[  878.458874][T17788] veth1_vlan: entered promiscuous mode
[  878.532437][   T24] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  878.564771][   T24] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  878.586930][   T24] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  878.597067][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  878.613789][T17788] veth0_macvtap: entered promiscuous mode
[  878.708653][T17861] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  878.758023][T17788] veth1_macvtap: entered promiscuous mode
[  878.935871][T17861] loop2: detected capacity change from 0 to 7
[  878.946507][T17861] Dev loop2: unable to read RDB block 7
[  878.952262][T17861]  loop2: unable to read partition table
[  878.989428][T17861] loop2: partition table beyond EOD, truncated
[  879.012907][T17788] batman_adv: batadv0: Interface activated: batadv_slave_0
[  879.049516][T17874] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  879.058492][T17874] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  879.082549][T17788] batman_adv: batadv0: Interface activated: batadv_slave_1
[  879.120064][T17861] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  879.138802][ T8528] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  879.155028][ T8528] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  879.193860][ T8528] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  879.220600][ T5895] usb 5-1: USB disconnect, device number 116
[  879.220600][    C1] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  879.294314][ T8528] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  879.475839][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  879.497664][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  879.671535][   T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  879.705219][   T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  879.747256][T17879] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3552'.
[  879.916634][ T5839] Bluetooth: hci2: command tx timeout
[  880.035243][   T24] usb 6-1: new high-speed USB device number 79 using dummy_hcd
[  880.050336][T17887] loop6: detected capacity change from 0 to 524279808
[  880.100390][T17888] bond1: option lacp_rate: invalid value (192)
[  880.113553][T17888] bond1 (unregistering): Released all slaves
[  880.128007][T17887] loop6: detected capacity change from 524279808 to 1
[  880.175728][T17887] Dev loop6: unable to read RDB block 1
[  880.181373][T17887]  loop6: unable to read partition table
[  880.190045][T17887] loop6: partition table beyond EOD, truncated
[  880.204377][T17887] loop_reread_partitions: partition scan of loop6 (‰u0v°Ï	) failed (rc=-5)
[  880.214847][   T24] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  880.228599][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  880.271373][   T24] usb 6-1: Product: syz
[  880.283171][   T24] usb 6-1: Manufacturer: syz
[  880.452511][ T5199] Dev loop6: unable to read RDB block 1
[  880.467221][ T5199]  loop6: unable to read partition table
[  880.482197][   T24] usb 6-1: SerialNumber: syz
[  880.489304][ T5199] loop6: partition table beyond EOD, truncated
[  880.518984][   T24] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  880.594517][ T5959] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  880.818803][T17879] random: crng reseeded on system resumption
[  881.675880][ T5959] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[  881.682971][ T5959] ath9k_htc: Failed to initialize the device
[  881.843512][ T5959] usb 6-1: ath9k_htc: USB layer deinitialized
[  882.000148][T15682] Bluetooth: hci2: command tx timeout
[  882.639653][T15682] Bluetooth: hci1: command 0x0406 tx timeout
[  882.661440][ T5959] usb 6-1: USB disconnect, device number 79
[  882.720694][T17925] FAULT_INJECTION: forcing a failure.
[  882.720694][T17925] name failslab, interval 1, probability 0, space 0, times 0
[  882.765767][T17925] CPU: 1 UID: 0 PID: 17925 Comm: syz.6.3563 Not tainted syzkaller #0 PREEMPT(full) 
[  882.765798][T17925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  882.765812][T17925] Call Trace:
[  882.765822][T17925]  <TASK>
[  882.765832][T17925]  dump_stack_lvl+0x189/0x250
[  882.765868][T17925]  ? __pfx____ratelimit+0x10/0x10
[  882.765895][T17925]  ? __pfx_dump_stack_lvl+0x10/0x10
[  882.765925][T17925]  ? __pfx__printk+0x10/0x10
[  882.765956][T17925]  ? __pfx___might_resched+0x10/0x10
[  882.765986][T17925]  should_fail_ex+0x414/0x560
[  882.766026][T17925]  should_failslab+0xa8/0x100
[  882.766063][T17925]  __kmalloc_noprof+0xcb/0x7f0
[  882.766092][T17925]  ? __kasan_kmalloc+0x93/0xb0
[  882.766122][T17925]  ? drm_atomic_state_init+0x9c/0x310
[  882.766162][T17925]  drm_atomic_state_init+0x9c/0x310
[  882.766197][T17925]  drm_atomic_state_alloc+0xbc/0x100
[  882.766229][T17925]  drm_client_modeset_commit_atomic+0xe2/0x760
[  882.766264][T17925]  ? trace_contention_end+0x39/0x120
[  882.766296][T17925]  ? __mutex_lock+0x335/0x1350
[  882.766330][T17925]  ? trace_contention_end+0x39/0x120
[  882.766357][T17925]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  882.766388][T17925]  ? __mutex_lock+0x335/0x1350
[  882.766461][T17925]  drm_client_modeset_commit_locked+0xcb/0x4d0
[  882.766500][T17925]  drm_client_modeset_commit+0x4a/0x70
[  882.766534][T17925]  drm_fb_helper_lastclose+0xa4/0x1c0
[  882.766566][T17925]  drm_fbdev_client_restore+0x34/0x40
[  882.766589][T17925]  drm_client_dev_restore+0x13c/0x270
[  882.766629][T17925]  drm_release+0x318/0x3f0
[  882.766663][T17925]  ? __pfx_drm_release+0x10/0x10
[  882.766693][T17925]  __fput+0x44c/0xa70
[  882.766731][T17925]  fput_close_sync+0x119/0x200
[  882.766760][T17925]  ? __pfx_fput_close_sync+0x10/0x10
[  882.766800][T17925]  __ia32_sys_close+0x7f/0x110
[  882.766828][T17925]  __do_fast_syscall_32+0xb6/0x2b0
[  882.766860][T17925]  ? lockdep_hardirqs_on+0x9c/0x150
[  882.766893][T17925]  do_fast_syscall_32+0x34/0x80
[  882.766923][T17925]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  882.766949][T17925] RIP: 0023:0xf7f96539
[  882.766968][T17925] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  882.766987][T17925] RSP: 002b:00000000f548655c EFLAGS: 00000206 ORIG_RAX: 0000000000000006
[  882.767009][T17925] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  882.767024][T17925] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  882.767036][T17925] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  882.767048][T17925] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  882.767061][T17925] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  882.767096][T17925]  </TASK>
[  883.046091][    C1] vkms_vblank_simulate: vblank timer overrun
[  883.075688][T17924] vcan0: tx drop: invalid da for name 0x0000000000000001
[  883.179212][T17933] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3565'.
[  883.364817][T17940] netlink: 'syz.4.3570': attribute type 21 has an invalid length.
[  883.902690][T17971] FAULT_INJECTION: forcing a failure.
[  883.902690][T17971] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  883.918869][T17971] CPU: 0 UID: 0 PID: 17971 Comm: syz.4.3578 Not tainted syzkaller #0 PREEMPT(full) 
[  883.918890][T17971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  883.918899][T17971] Call Trace:
[  883.918905][T17971]  <TASK>
[  883.918911][T17971]  dump_stack_lvl+0x189/0x250
[  883.918938][T17971]  ? __pfx____ratelimit+0x10/0x10
[  883.918957][T17971]  ? __pfx_dump_stack_lvl+0x10/0x10
[  883.918976][T17971]  ? __pfx__printk+0x10/0x10
[  883.919001][T17971]  should_fail_ex+0x414/0x560
[  883.919046][T17971]  _copy_to_user+0x31/0xb0
[  883.919067][T17971]  __copy_siginfo_to_user32+0xa2/0x110
[  883.919088][T17971]  ? __pfx___copy_siginfo_to_user32+0x10/0x10
[  883.919124][T17971]  ? get_sigframe+0x596/0x7d0
[  883.919169][T17971]  ia32_setup_rt_frame+0x6b0/0xb70
[  883.919200][T17971]  ? __pfx_ia32_setup_rt_frame+0x10/0x10
[  883.919220][T17971]  ? arch_do_signal_or_restart+0x385/0x790
[  883.919246][T17971]  arch_do_signal_or_restart+0x429/0x790
[  883.919273][T17971]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  883.919310][T17971]  ? exit_to_user_mode_loop+0x40/0x130
[  883.919327][T17971]  exit_to_user_mode_loop+0x72/0x130
[  883.919342][T17971]  __do_fast_syscall_32+0x1f4/0x2b0
[  883.919365][T17971]  ? lockdep_hardirqs_on+0x9c/0x150
[  883.919389][T17971]  do_fast_syscall_32+0x34/0x80
[  883.919410][T17971]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  883.919429][T17971] RIP: 0023:0xf707d539
[  883.919443][T17971] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  883.919457][T17971] RSP: 002b:00000000f546d55c EFLAGS: 00000206 ORIG_RAX: 0000000000000159
[  883.919473][T17971] RAX: ffffffffffffffe0 RBX: 0000000000000003 RCX: 0000000080003c00
[  883.919484][T17971] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  883.919493][T17971] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  883.919502][T17971] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  883.919512][T17971] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  883.919533][T17971]  </TASK>
[  884.143973][T17966] bond3: option lacp_rate: invalid value (192)
[  884.166859][T17966] bond3 (unregistering): Released all slaves
[  884.412210][   T30] kauditd_printk_skb: 632 callbacks suppressed
[  884.412224][   T30] audit: type=1326 audit(1761813465.331:2581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17976 comm="syz.5.3580" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f67539 code=0x0
[  884.603207][T17980] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  884.613041][T17980] macsec1: entered promiscuous mode
[  884.630115][T17980] macsec1: entered allmulticast mode
[  884.643277][T17980] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[  884.685247][T13808] usb 6-1: new high-speed USB device number 80 using dummy_hcd
[  884.856249][T13808] usb 6-1: Using ep0 maxpacket: 8
[  884.873840][T13808] usb 6-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  884.900004][T13808] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  884.950119][T13808] usb 6-1: Product: syz
[  884.954974][T17980] netdevsim netdevsim4 netdevsim0: left allmulticast mode
[  885.008193][T13808] usb 6-1: Manufacturer: syz
[  885.012872][T13808] usb 6-1: SerialNumber: syz
[  885.108624][T17980] netdevsim netdevsim4 netdevsim0: left promiscuous mode
[  885.142156][T13808] usb 6-1: config 0 descriptor??
[  885.377705][T13808] usb 6-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  886.046034][ T5895] usb 5-1: new high-speed USB device number 117 using dummy_hcd
[  886.186142][T13808] dvb_usb_rtl28xxu 6-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  886.200165][T13808] usb 6-1: USB disconnect, device number 80
[  886.213313][ T5895] usb 5-1: New USB device found, idVendor=2770, idProduct=9052, bcdDevice=15.f5
[  886.223112][ T5895] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  886.231790][ T5895] usb 5-1: Product: syz
[  886.245450][ T5895] usb 5-1: Manufacturer: syz
[  886.269318][ T5895] usb 5-1: SerialNumber: syz
[  886.380333][ T5895] usb 5-1: config 0 descriptor??
[  886.420377][ T5895] gspca_main: sq905c-2.14.0 probing 2770:9052
[  886.629356][ T5895] gspca_sq905c: sq905c_command: usb_control_msg failed (-71)
[  886.653381][ T5895] sq905c 5-1:0.0: Get version command failed
[  886.674383][ T5895] sq905c 5-1:0.0: probe with driver sq905c failed with error -71
[  886.712404][ T5895] usb 5-1: USB disconnect, device number 117
[  886.921460][T17999] kAFS: unable to lookup cell '(0.Â|dÒùyx²LTrwˆž0	Æâœí\Ø[È ó¬]V'
[  887.094490][T18001] loop2: detected capacity change from 0 to 7
[  887.208382][T18001]  loop2:
[  887.211401][T18001] loop2: partition table partially beyond EOD, truncated
[  887.507479][T18011] loop2: detected capacity change from 0 to 7
[  887.519615][T18011] Dev loop2: unable to read RDB block 7
[  887.530249][T18011]  loop2: unable to read partition table
[  887.543135][T18011] loop2: partition table beyond EOD, truncated
[  887.572559][T18011] loop_reread_partitions: partition scan of loop2 (þè– ) failed (rc=-5)
[  887.844604][T18020] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3593'.
[  887.885500][T18020] bridge_slave_1: left allmulticast mode
[  887.891310][T18020] bridge_slave_1: left promiscuous mode
[  887.897478][T18020] bridge0: port 2(bridge_slave_1) entered disabled state
[  887.916959][T18020] bridge_slave_0: left allmulticast mode
[  887.924763][T18020] bridge_slave_0: left promiscuous mode
[  887.932080][T18020] bridge0: port 1(bridge_slave_0) entered disabled state
[  887.969819][T18024] FAULT_INJECTION: forcing a failure.
[  887.969819][T18024] name failslab, interval 1, probability 0, space 0, times 0
[  887.983007][T18024] CPU: 1 UID: 0 PID: 18024 Comm: syz.1.3595 Not tainted syzkaller #0 PREEMPT(full) 
[  887.983036][T18024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  887.983051][T18024] Call Trace:
[  887.983061][T18024]  <TASK>
[  887.983071][T18024]  dump_stack_lvl+0x189/0x250
[  887.983107][T18024]  ? __pfx____ratelimit+0x10/0x10
[  887.983136][T18024]  ? __pfx_dump_stack_lvl+0x10/0x10
[  887.983167][T18024]  ? __pfx__printk+0x10/0x10
[  887.983202][T18024]  ? __lock_acquire+0xab9/0xd20
[  887.983236][T18024]  should_fail_ex+0x414/0x560
[  887.983273][T18024]  should_failslab+0xa8/0x100
[  887.983298][T18024]  kmem_cache_alloc_noprof+0x74/0x6e0
[  887.983328][T18024]  ? __send_signal_locked+0x22a/0xeb0
[  887.983356][T18024]  ? sig_get_ucounts+0x26/0x450
[  887.983375][T18024]  ? sig_get_ucounts+0x3e4/0x450
[  887.983399][T18024]  __send_signal_locked+0x22a/0xeb0
[  887.983433][T18024]  ? mt_find+0x5be/0x5e0
[  887.983465][T18024]  force_sig_info_to_task+0x30c/0x590
[  887.983508][T18024]  force_sig_fault+0xdc/0x130
[  887.983545][T18024]  ? __pfx_force_sig_fault+0x10/0x10
[  887.983584][T18024]  ? fixup_vdso_exception+0x205/0x300
[  887.983617][T18024]  __bad_area_nosemaphore+0x3b3/0x780
[  887.983652][T18024]  ? __pfx___bad_area_nosemaphore+0x10/0x10
[  887.983679][T18024]  ? rcu_is_watching+0x15/0xb0
[  887.983705][T18024]  ? trace_page_fault_user+0x84/0x1e0
[  887.983736][T18024]  exc_page_fault+0x82/0x100
[  887.983767][T18024]  asm_exc_page_fault+0x26/0x30
[  887.983787][T18024] RIP: 0023:0x80000006
[  887.983811][T18024] Code: Unable to access opcode bytes at 0x7fffffdc.
[  887.983823][T18024] RSP: 002b:00000000f54ed07c EFLAGS: 00010202
[  887.983843][T18024] RAX: ffffffffffffffea RBX: 0000000000000003 RCX: 00000000f54ed10c
[  887.983859][T18024] RDX: 00000000f54ed08c RSI: 0000000000000000 RDI: 0000000000000000
[  887.983873][T18024] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  887.983885][T18024] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  887.983898][T18024] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  887.983930][T18024]  </TASK>
[  888.095261][ T5895] usb 6-1: new high-speed USB device number 81 using dummy_hcd
[  888.099205][    C1] vkms_vblank_simulate: vblank timer overrun
[  888.197672][    C1] vkms_vblank_simulate: vblank timer overrun
[  888.365267][ T5895] usb 6-1: Using ep0 maxpacket: 16
[  888.417461][ T5895] usb 6-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0
[  888.444442][ T5895] usb 6-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0
[  888.506339][ T5895] usb 6-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  888.535590][ T5895] usb 6-1: config 1 interface 0 has no altsetting 0
[  888.547148][ T5895] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  888.556690][ T5895] usb 6-1: New USB device strings: Mfr=160, Product=188, SerialNumber=7
[  888.567387][ T5895] usb 6-1: Product: syz
[  888.571606][ T5895] usb 6-1: Manufacturer: syz
[  888.577603][ T5895] usb 6-1: SerialNumber: syz
[  888.731689][T18035] vlan3: entered promiscuous mode
[  888.839582][ T5895] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 81 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8
[  889.255274][T13808] usb 5-1: new high-speed USB device number 118 using dummy_hcd
[  889.325322][ T5959] usb 4-1: new high-speed USB device number 92 using dummy_hcd
[  889.725184][T13808] usb 5-1: Using ep0 maxpacket: 16
[  889.725376][ T5959] usb 4-1: Using ep0 maxpacket: 16
[  889.746760][ T5959] usb 4-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0
[  889.751930][T13808] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  889.774231][ T5959] usb 4-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0
[  889.774416][T18050] netlink: 284 bytes leftover after parsing attributes in process `syz.1.3604'.
[  889.803877][ T5959] usb 4-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  889.804962][T13808] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  889.838608][ T5959] usb 4-1: config 1 interface 0 has no altsetting 0
[  889.857012][T13808] usb 5-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00
[  889.903743][T13808] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  889.931025][ T5959] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  889.941331][ T5959] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  889.955603][T13808] usb 5-1: config 0 descriptor??
[  889.968701][ T5959] usb 4-1: Product: syz
[  890.008420][ T5959] usb 4-1: Manufacturer: syz
[  890.020279][ T5959] usb 4-1: SerialNumber: syz
[  890.271943][ T5959] usblp 4-1:1.0: usblp1: USB Unidirectional printer dev 92 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8
[  890.329103][T18055] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3606'.
[  890.404090][T13808] corsair 0003:1B1C:1B02.0043: hidraw0: USB HID v0.00 Device [HID 1b1c:1b02] on usb-dummy_hcd.4-1/input0
[  890.600949][T13808] corsair 0003:1B1C:1B02.0043: Read invalid backlight brightness: 19.
[  890.828179][T13808] usb 5-1: USB disconnect, device number 118
[  891.284543][T13808] usb 6-1: USB disconnect, device number 81
[  891.311127][T18068] vcan0: tx drop: invalid da for name 0x0000000000000001
[  891.547336][T18077] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3612'.
[  891.557899][T18077] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3612'.
[  891.974752][T18087] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3615'.
[  892.070873][T18044] usblp0: removed
[  892.079859][T13808] usb 6-1: new full-speed USB device number 82 using dummy_hcd
[  892.125299][ T1219] usb 4-1: USB disconnect, device number 92
[  892.129392][ T1219] usblp1: removed
[  892.231428][T18094] loop2: detected capacity change from 0 to 7
[  892.241868][ T5963] Dev loop2: unable to read RDB block 7
[  892.247586][T13808] usb 6-1: device descriptor read/64, error -71
[  892.258049][ T5963]  loop2: unable to read partition table
[  892.264379][ T5963] loop2: partition table beyond EOD, truncated
[  892.293836][T18094] Dev loop2: unable to read RDB block 7
[  892.338293][T18094]  loop2: unable to read partition table
[  892.361890][T18094] loop2: partition table beyond EOD, truncated
[  892.381689][T18094] loop_reread_partitions: partition scan of loop2 (þè– ) failed (rc=-5)
[  892.475225][ T5959] usb 5-1: new high-speed USB device number 119 using dummy_hcd
[  892.508668][T13808] usb 6-1: new full-speed USB device number 83 using dummy_hcd
[  892.576436][T18098] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3620'.
[  892.590653][T18099] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3620'.
[  892.645448][ T5959] usb 5-1: Using ep0 maxpacket: 8
[  892.653854][ T5959] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  892.665458][T13808] usb 6-1: device descriptor read/64, error -71
[  892.685550][ T5959] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  892.695657][ T5959] usb 5-1: New USB device found, idVendor=0755, idProduct=2626, bcdDevice= 0.00
[  892.698990][T18101] FAULT_INJECTION: forcing a failure.
[  892.698990][T18101] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  892.704720][ T5959] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  892.735337][ T8608] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  892.739167][T18101] CPU: 0 UID: 0 PID: 18101 Comm: syz.3.3621 Not tainted syzkaller #0 PREEMPT(full) 
[  892.739200][T18101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  892.739217][T18101] Call Trace:
[  892.739227][T18101]  <TASK>
[  892.739240][T18101]  dump_stack_lvl+0x189/0x250
[  892.739280][T18101]  ? __pfx____ratelimit+0x10/0x10
[  892.739323][T18101]  ? __pfx_dump_stack_lvl+0x10/0x10
[  892.739357][T18101]  ? __pfx__printk+0x10/0x10
[  892.739382][T18101]  ? __might_fault+0xb0/0x130
[  892.739431][T18101]  should_fail_ex+0x414/0x560
[  892.739474][T18101]  copy_fpstate_to_sigframe+0xa18/0xce0
[  892.739518][T18101]  ? copy_fpstate_to_sigframe+0x181/0xce0
[  892.739563][T18101]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[  892.739599][T18101]  ? kmem_cache_free+0x19b/0x690
[  892.739635][T18101]  ? get_signal+0xa4b/0x1340
[  892.739659][T18101]  ? arch_do_signal_or_restart+0xa0/0x790
[  892.739696][T18101]  ? irqentry_exit_to_user_mode+0x7e/0x110
[  892.739728][T18101]  ? exc_page_fault+0xab/0x100
[  892.739758][T18101]  ? asm_exc_page_fault+0x26/0x30
[  892.739805][T18101]  ? fpu__alloc_mathframe+0xad/0x130
[  892.739847][T18101]  get_sigframe+0x58d/0x7d0
[  892.739891][T18101]  ? __pfx_get_sigframe+0x10/0x10
[  892.739942][T18101]  ia32_setup_rt_frame+0x106/0xb70
[  892.739972][T18101]  ? _raw_spin_unlock_irq+0x23/0x50
[  892.740001][T18101]  ? lockdep_hardirqs_on+0x9c/0x150
[  892.740035][T18101]  ? _raw_spin_unlock_irq+0x2e/0x50
[  892.740063][T18101]  ? get_signal+0x1150/0x1340
[  892.740096][T18101]  ? __pfx_ia32_setup_rt_frame+0x10/0x10
[  892.740129][T18101]  ? arch_do_signal_or_restart+0x385/0x790
[  892.740172][T18101]  arch_do_signal_or_restart+0x429/0x790
[  892.740225][T18101]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  892.740264][T18101]  ? __bad_area_nosemaphore+0x3fb/0x780
[  892.740321][T18101]  ? local_irq_enable_exit_to_user+0x5/0x10
[  892.740349][T18101]  irqentry_exit_to_user_mode+0x7e/0x110
[  892.740381][T18101]  exc_page_fault+0xab/0x100
[  892.740413][T18101]  asm_exc_page_fault+0x26/0x30
[  892.740435][T18101] RIP: 0023:0x80000006
[  892.740462][T18101] Code: Unable to access opcode bytes at 0x7fffffdc.
[  892.740473][T18101] RSP: 002b:00000000f543d07c EFLAGS: 00010202
[  892.740493][T18101] RAX: ffffffffffffffea RBX: 0000000000000003 RCX: 00000000f543d10c
[  892.740510][T18101] RDX: 00000000f543d08c RSI: 0000000000000000 RDI: 0000000000000000
[  892.740523][T18101] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  892.740535][T18101] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  892.740549][T18101] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  892.740582][T18101]  </TASK>
[  892.790438][T13808] usb usb6-port1: attempt power cycle
[  892.802575][ T5959] usb 5-1: config 0 descriptor??
[  893.165553][ T8608] usb 7-1: Using ep0 maxpacket: 32
[  893.185377][T13808] usb 6-1: new full-speed USB device number 84 using dummy_hcd
[  893.186800][ T8608] usb 7-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[  893.205901][ T8608] usb 7-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  893.209358][T13808] usb 6-1: device descriptor read/8, error -71
[  893.240767][ T8608] usb 7-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  893.262121][ T8608] usb 7-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  893.268973][T18105] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3623'.
[  893.298339][ T8608] usb 7-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  893.307689][ T8608] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  893.325157][ T8608] usb 7-1: Product: syz
[  893.329821][ T8608] usb 7-1: Manufacturer: syz
[  893.335767][ T8608] usb 7-1: SerialNumber: syz
[  893.361202][    C1] imon 7-1:155.0: imon usb_rx_callback_intf0: status(-71)
[  893.378521][ T8608] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:155.0/input/input37
[  893.456328][T13808] usb 6-1: new full-speed USB device number 85 using dummy_hcd
[  893.496009][T13808] usb 6-1: device descriptor read/8, error -71
[  893.497438][ T5959] hid_parser_main: 150 callbacks suppressed
[  893.497488][ T5959] aureal 0003:0755:2626.0044: unknown main item tag 0x0
[  893.523092][ T5959] aureal 0003:0755:2626.0044: unknown main item tag 0x0
[  893.534275][ T5959] aureal 0003:0755:2626.0044: unknown main item tag 0x0
[  893.535297][ T1219] usb 2-1: new high-speed USB device number 97 using dummy_hcd
[  893.542068][ T5959] aureal 0003:0755:2626.0044: unknown main item tag 0x0
[  893.562314][ T5959] aureal 0003:0755:2626.0044: unknown main item tag 0x0
[  893.576470][ T5959] aureal 0003:0755:2626.0044: unknown main item tag 0x0
[  893.586423][ T5959] aureal 0003:0755:2626.0044: unknown main item tag 0x0
[  893.593477][ T5959] aureal 0003:0755:2626.0044: unknown main item tag 0x0
[  893.600795][ T8608] imon 7-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[  893.609363][ T8608]  (id 0x00)
[  893.616085][ T5959] aureal 0003:0755:2626.0044: unknown main item tag 0x0
[  893.623975][ T5959] aureal 0003:0755:2626.0044: unknown main item tag 0x0
[  893.626872][T13808] usb usb6-port1: unable to enumerate USB device
[  893.636909][ T5959] aureal 0003:0755:2626.0044: hidraw0: USB HID v0.00 Device [HID 0755:2626] on usb-dummy_hcd.4-1/input0
[  893.725189][ T1219] usb 2-1: Using ep0 maxpacket: 16
[  893.739502][ T1219] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=10.00
[  893.741393][ T8608] rc_core: IR keymap rc-imon-pad not found
[  893.756497][ T1219] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  893.764521][ T1219] usb 2-1: Product: syz
[  893.768754][ T8608] Registered IR keymap rc-empty
[  893.768846][ T8608] imon 7-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[  893.797420][ T8608] imon 7-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  893.814545][ T1219] usb 2-1: Manufacturer: syz
[  893.823274][ T1219] usb 2-1: SerialNumber: syz
[  893.839660][ T8608] rc rc0: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:155.0/rc/rc0
[  893.840965][ T1219] usb 2-1: config 0 descriptor??
[  893.863136][ T1219] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected
[  893.864419][ T8608] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:155.0/rc/rc0/input38
[  893.891655][ T1219] usb 2-1: Detected FT-X
[  893.896916][ T8608] imon 7-1:155.0: iMON device (15c2:ffdc, intf0) on usb<7:2> initialized
[  894.034993][T18096] imon:vfd_write: invalid payload size
[  894.055844][ T8608] usb 7-1: USB disconnect, device number 2
[  894.077269][T18105] vlan3: entered allmulticast mode
[  894.082728][T18105] bridge0: port 3(vlan3) entered blocking state
[  894.095643][T18105] bridge0: port 3(vlan3) entered disabled state
[  894.104955][T18105] vlan3: entered promiscuous mode
[  894.119789][ T5881] udevd[5881]: setting owner of /dev/input/event5 to uid=0, gid=104 failed: No such file or directory
[  894.148449][T18105] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  894.160524][T18105] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  894.213486][T13808] usb 5-1: USB disconnect, device number 119
[  894.408264][ T1219] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  894.426191][ T1219] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  894.440754][ T1219] ftdi_sio 2-1:0.0: GPIO initialisation failed: -71
[  894.455987][ T1219] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  894.484648][ T1219] usb 2-1: USB disconnect, device number 97
[  894.497860][ T1219] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  894.525852][ T1219] ftdi_sio 2-1:0.0: device disconnected
[  894.628308][T18115] vlan2: entered promiscuous mode
[  894.758112][T18118] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  894.790078][T18118] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  895.199712][T18136] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3633'.
[  895.349023][T18135] bridge3: port 1(veth0_to_bond) entered blocking state
[  895.380381][T18135] bridge3: port 1(veth0_to_bond) entered disabled state
[  895.455553][T18135] veth0_to_bond: entered allmulticast mode
[  895.605675][T18135] veth0_to_bond: entered promiscuous mode
[  895.892081][T18145] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3635'.
[  895.902089][T18145] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3635'.
[  896.536636][T18159] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3641'.
[  896.541453][T18157] dummy0: entered promiscuous mode
[  896.545782][ T1219] usb 6-1: new high-speed USB device number 86 using dummy_hcd
[  896.592543][T18157] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  896.638920][T18157] hsr1: entered allmulticast mode
[  896.644105][T18157] dummy0: entered allmulticast mode
[  896.650428][T18157] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[  896.661998][T18162] FAULT_INJECTION: forcing a failure.
[  896.661998][T18162] name failslab, interval 1, probability 0, space 0, times 0
[  896.715775][T18162] CPU: 0 UID: 0 PID: 18162 Comm: syz.3.3632 Not tainted syzkaller #0 PREEMPT(full) 
[  896.715809][T18162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  896.715823][T18162] Call Trace:
[  896.715832][T18162]  <TASK>
[  896.715842][T18162]  dump_stack_lvl+0x189/0x250
[  896.715877][T18162]  ? __pfx____ratelimit+0x10/0x10
[  896.715904][T18162]  ? __pfx_dump_stack_lvl+0x10/0x10
[  896.715931][T18162]  ? __pfx__printk+0x10/0x10
[  896.715956][T18162]  ? __pfx___might_resched+0x10/0x10
[  896.715977][T18162]  ? fs_reclaim_acquire+0x7d/0x100
[  896.716014][T18162]  should_fail_ex+0x414/0x560
[  896.716046][T18162]  should_failslab+0xa8/0x100
[  896.716065][T18162]  __kmalloc_cache_noprof+0x6f/0x6f0
[  896.716091][T18162]  ? drm_atomic_state_alloc+0xa9/0x100
[  896.716124][T18162]  drm_atomic_state_alloc+0xa9/0x100
[  896.716151][T18162]  drm_atomic_helper_page_flip+0x6a/0x160
[  896.716179][T18162]  drm_mode_page_flip_ioctl+0xc6d/0x11d0
[  896.716236][T18162]  ? __pfx_drm_mode_page_flip_ioctl+0x10/0x10
[  896.716280][T18162]  ? do_raw_spin_unlock+0x122/0x240
[  896.716308][T18162]  ? _raw_spin_unlock+0x28/0x50
[  896.716332][T18162]  ? drm_is_current_master+0x19f/0x200
[  896.716359][T18162]  drm_ioctl_kernel+0x2cf/0x390
[  896.716387][T18162]  ? __pfx_drm_mode_page_flip_ioctl+0x10/0x10
[  896.716418][T18162]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  896.716463][T18162]  drm_ioctl+0x67f/0xb10
[  896.716486][T18162]  ? __lock_acquire+0xab9/0xd20
[  896.716508][T18162]  ? __pfx_drm_mode_page_flip_ioctl+0x10/0x10
[  896.716543][T18162]  ? __pfx_drm_ioctl+0x10/0x10
[  896.716584][T18162]  ? __fget_files+0x3a0/0x420
[  896.716605][T18162]  ? __fget_files+0x2a/0x420
[  896.716624][T18162]  ? drm_compat_ioctl+0x112/0x330
[  896.716655][T18162]  ? bpf_lsm_file_ioctl_compat+0x9/0x20
[  896.716686][T18162]  __ia32_compat_sys_ioctl+0x543/0x840
[  896.716719][T18162]  ? __pfx___ia32_compat_sys_ioctl+0x10/0x10
[  896.716749][T18162]  ? __fget_files+0x3a0/0x420
[  896.716776][T18162]  ? fput+0xa0/0xd0
[  896.716801][T18162]  ? ksys_write+0x22a/0x250
[  896.716830][T18162]  ? exc_page_fault+0x82/0x100
[  896.716858][T18162]  ? __pfx_ksys_write+0x10/0x10
[  896.716892][T18162]  ? syscall_enter_from_user_mode_prepare+0x8f/0x110
[  896.716923][T18162]  ? lockdep_hardirqs_on+0x9c/0x150
[  896.716956][T18162]  __do_fast_syscall_32+0xb6/0x2b0
[  896.716988][T18162]  ? lockdep_hardirqs_on+0x9c/0x150
[  896.717022][T18162]  do_fast_syscall_32+0x34/0x80
[  896.717053][T18162]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  896.717079][T18162] RIP: 0023:0xf704d539
[  896.717099][T18162] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  896.717119][T18162] RSP: 002b:00000000f543d55c EFLAGS: 00000206 ORIG_RAX: 0000000000000036
[  896.717143][T18162] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c01864b0
[  896.717159][T18162] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  896.717172][T18162] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  896.717184][T18162] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  896.717205][T18162] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  896.717237][T18162]  </TASK>
[  897.097062][ T5943] usb 2-1: new full-speed USB device number 98 using dummy_hcd
[  897.108226][ T1219] usb 6-1: config 0 has no interfaces?
[  897.122800][ T1219] usb 6-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  897.132435][ T1219] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  897.140931][ T1219] usb 6-1: Product: syz
[  897.145449][ T1219] usb 6-1: Manufacturer: syz
[  897.150187][ T1219] usb 6-1: SerialNumber: syz
[  897.213034][ T1219] usb 6-1: config 0 descriptor??
[  897.257454][ T5943] usb 2-1: config 0 has an invalid interface number: 41 but max is 0
[  897.265704][ T5943] usb 2-1: config 0 has no interface number 0
[  897.273907][ T5943] usb 2-1: config 0 interface 41 has no altsetting 0
[  897.283606][ T5943] usb 2-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  897.292741][ T5943] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  897.304137][ T5943] usb 2-1: Product: syz
[  897.308437][ T5943] usb 2-1: Manufacturer: syz
[  897.313059][ T5943] usb 2-1: SerialNumber: syz
[  897.321156][ T5943] usb 2-1: config 0 descriptor??
[  897.456932][ T8608] usb 5-1: new high-speed USB device number 120 using dummy_hcd
[  897.661642][ T8608] usb 5-1: Using ep0 maxpacket: 16
[  897.670128][ T8608] usb 5-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0
[  897.691600][ T8608] usb 5-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0
[  897.812663][ T8608] usb 5-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  897.830958][ T5959] usb 6-1: USB disconnect, device number 86
[  897.871780][ T8608] usb 5-1: config 1 interface 0 has no altsetting 0
[  897.898160][ T8608] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  897.907697][ T8608] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  897.916073][ T8608] usb 5-1: Product: syz
[  897.933118][ T8608] usb 5-1: Manufacturer: syz
[  897.944609][ T8608] usb 5-1: SerialNumber: syz
[  897.973095][ T5943] CoreChips 2-1:0.41: probe with driver CoreChips failed with error -22
[  898.171501][T18165] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  898.182562][T18165] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  898.198224][ T8608] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 120 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8
[  899.080888][T18195] loop2: detected capacity change from 0 to 7
[  899.109925][T18195] Dev loop2: unable to read RDB block 7
[  899.154569][T18195]  loop2: unable to read partition table
[  899.170172][T18195] loop2: partition table beyond EOD, truncated
[  899.191654][T18195] loop_reread_partitions: partition scan of loop2 (þè– ) failed (rc=-5)
[  899.485410][ T8608] usb 4-1: new low-speed USB device number 93 using dummy_hcd
[  899.626488][ T5959] usb 5-1: USB disconnect, device number 120
[  899.635760][ T5959] usblp0: removed
[  899.648083][ T8608] usb 4-1: config 9 has an invalid interface number: 1 but max is 0
[  899.665322][ T8608] usb 4-1: config 9 has no interface number 0
[  899.686902][ T8608] usb 4-1: config 9 interface 1 has no altsetting 0
[  899.720199][ T8608] usb 4-1: string descriptor 0 read error: -22
[  899.735426][ T8608] usb 4-1: New USB device found, idVendor=2040, idProduct=b140, bcdDevice=75.36
[  899.781296][ T8608] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  899.787977][T18206] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3653'.
[  899.834658][ T8608] cx231xx 4-1:9.1: New device   @ 1.5 Mbps (2040:b140) with 1 interfaces
[  899.875296][ T8608] cx231xx 4-1:9.1: Not found matching IAD interface
[  900.084413][T18214] netlink: 11 bytes leftover after parsing attributes in process `syz.4.3657'.
[  900.189826][T18217] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3659'.
[  900.412326][   T30] audit: type=1326 audit(1761813481.301:2582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18215 comm="syz.5.3658" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  900.548439][   T30] audit: type=1326 audit(1761813481.301:2583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18215 comm="syz.5.3658" exe="/root/syz-executor" sig=0 arch=40000003 syscall=15 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  900.584713][   T30] audit: type=1326 audit(1761813481.301:2584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18215 comm="syz.5.3658" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  900.728697][   T30] audit: type=1326 audit(1761813481.301:2585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18215 comm="syz.5.3658" exe="/root/syz-executor" sig=0 arch=40000003 syscall=55 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  900.761046][   T30] audit: type=1326 audit(1761813481.301:2586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18215 comm="syz.5.3658" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  900.989923][T18227] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3661'.
[  900.991289][   T30] audit: type=1326 audit(1761813481.301:2587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18215 comm="syz.5.3658" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  901.045645][   T31] INFO: task kworker/u8:11:13231 blocked for more than 143 seconds.
[  901.053849][ T5943] usb 2-1: USB disconnect, device number 98
[  901.076671][   T31]       Not tainted syzkaller #0
[  901.097418][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  901.113362][   T31] task:kworker/u8:11   state:D stack:24200 pid:13231 tgid:13231 ppid:2      task_flags:0x4208160 flags:0x00080000
[  901.153893][   T31] Workqueue: netns cleanup_net
[  901.217539][   T30] audit: type=1326 audit(1761813481.311:2588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18215 comm="syz.5.3658" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  901.242632][   T31] Call Trace:
[  901.252309][   T31]  <TASK>
[  901.262948][   T31]  __schedule+0x1798/0x4cc0
[  901.293421][   T31]  ? __lock_acquire+0xab9/0xd20
[  901.327246][   T31]  ? __pfx___schedule+0x10/0x10
[  901.362155][   T30] audit: type=1326 audit(1761813481.311:2589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18215 comm="syz.5.3658" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  901.392069][   T31]  ? schedule+0x91/0x360
[  901.398300][   T31]  schedule+0x165/0x360
[  901.586391][   T31]  afs_cell_purge+0x3d9/0x540
[  901.594920][   T31]  ? __pfx_afs_cell_purge+0x10/0x10
[  901.618824][   T31]  ? __pfx_var_wake_function+0x10/0x10
[  901.625309][   T30] audit: type=1326 audit(1761813481.311:2590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18215 comm="syz.5.3658" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  901.657451][   T31]  ? afs_net+0x45/0x270
[  901.672698][   T31]  ? afs_net+0x45/0x270
[  901.682868][   T31]  afs_net_exit+0x50/0x100
[  901.699544][   T31]  ops_undo_list+0x49a/0x990
[  901.717674][   T31]  ? __pfx_ops_undo_list+0x10/0x10
[  901.741898][   T30] audit: type=1326 audit(1761813481.311:2591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18215 comm="syz.5.3658" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  901.768375][   T31]  ? do_raw_spin_unlock+0x122/0x240
[  901.789561][   T31]  cleanup_net+0x4d8/0x820
[  901.805256][   T31]  ? __pfx_cleanup_net+0x10/0x10
[  901.815589][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  901.821392][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  901.827454][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  901.833480][   T31]  process_scheduled_works+0xae1/0x17b0
[  901.839381][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[  901.845847][   T31]  worker_thread+0x8a0/0xda0
[  901.850672][   T31]  kthread+0x711/0x8a0
[  901.857106][   T31]  ? __pfx_worker_thread+0x10/0x10
[  901.866851][   T31]  ? __pfx_kthread+0x10/0x10
[  901.876011][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  901.881630][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  901.888214][   T31]  ? __pfx_kthread+0x10/0x10
[  901.894165][   T31]  ret_from_fork+0x4bc/0x870
[  901.899253][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  901.909095][   T31]  ? __switch_to_asm+0x39/0x70
[  901.916427][   T31]  ? __switch_to_asm+0x33/0x70
[  901.921521][   T31]  ? __pfx_kthread+0x10/0x10
[  901.932155][   T31]  ret_from_fork_asm+0x1a/0x30
[  901.937248][   T31]  </TASK>
[  901.967323][   T31] 
[  901.967323][   T31] Showing all locks held in the system:
[  901.975529][   T31] 2 locks held by ksoftirqd/0/15:
[  901.982004][   T31]  #0: ffff8880b883a058 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0xad/0x140
[  902.024636][   T31]  #1: ffff8880b8824048 (psi_seq){-.-.}-{0:0}, at: psi_task_switch+0x53/0x880
[  902.058873][   T31] 1 lock held by khungtaskd/31:
[  902.083156][   T31]  #0: ffffffff8df3d2e0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  902.113220][   T31] 2 locks held by kworker/u8:3/50:
[  902.165184][   T31]  #0: ffff8880b883a058 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0xad/0x140
[  902.212706][ T5903] usb 4-1: USB disconnect, device number 93
[  902.260526][   T31]  #1: ffff8880b8824048 (psi_seq){-.-.}-{0:0}, at: psi_task_switch+0x53/0x880
[  902.300517][   T31] 2 locks held by getty/5590:
[  902.305313][   T31]  #0: ffff88802fee50a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  902.318293][   T31]  #1: ffffc900036bb2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[  902.331997][   T31] 3 locks held by kworker/1:3/5903:
[  902.339088][   T31]  #0: ffff888143ea0948 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  902.350624][   T31]  #1: ffffc9000a9c7ba0 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  902.363709][   T31]  #2: ffff888027781198 (&dev->mutex){....}-{4:4}, at: hub_event+0x184/0x4a20
[  902.374342][   T31] 3 locks held by kworker/u8:11/13231:
[  902.381189][   T31]  #0: ffff88801aedf148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  902.393438][   T31]  #1: ffffc9000dec7ba0 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  902.407285][   T31]  #2: ffffffff8f2be2b0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf7/0x820
[  902.417435][   T31] 1 lock held by syz.4.3660/18223:
[  902.422823][   T31] 
[  902.425249][   T31] =============================================
[  902.425249][   T31] 
[  902.436014][   T31] NMI backtrace for cpu 1
[  902.436037][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  902.436060][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  902.436073][   T31] Call Trace:
[  902.436082][   T31]  <TASK>
[  902.436092][   T31]  dump_stack_lvl+0x189/0x250
[  902.436128][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  902.436156][   T31]  ? __pfx__printk+0x10/0x10
[  902.436189][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[  902.436213][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  902.436232][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  902.436268][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  902.436302][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  902.436325][   T31]  watchdog+0xf60/0xfa0
[  902.436351][   T31]  ? watchdog+0x1e2/0xfa0
[  902.436376][   T31]  kthread+0x711/0x8a0
[  902.436407][   T31]  ? __pfx_watchdog+0x10/0x10
[  902.436511][   T31]  ? __pfx_kthread+0x10/0x10
[  902.436540][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  902.436563][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  902.436587][   T31]  ? __pfx_kthread+0x10/0x10
[  902.436615][   T31]  ret_from_fork+0x4bc/0x870
[  902.436639][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  902.436666][   T31]  ? __switch_to_asm+0x39/0x70
[  902.436742][   T31]  ? __switch_to_asm+0x33/0x70
[  902.436763][   T31]  ? __pfx_kthread+0x10/0x10
[  902.436793][   T31]  ret_from_fork_asm+0x1a/0x30
[  902.436829][   T31]  </TASK>
[  902.436840][   T31] Sending NMI from CPU 1 to CPUs 0:
[  902.584561][    C0] NMI backtrace for cpu 0
[  902.584579][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0 PREEMPT(full) 
[  902.584599][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  902.584610][    C0] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  902.584638][    C0] Code: cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 33 21 22 00 f3 0f 1e fa fb f4 <e9> c8 e6 02 00 cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[  902.584656][    C0] RSP: 0018:ffffffff8dc07d80 EFLAGS: 000002c6
[  902.584673][    C0] RAX: c590f56dd62d4e00 RBX: ffffffff81967be7 RCX: c590f56dd62d4e00
[  902.584691][    C0] RDX: 0000000000000001 RSI: ffffffff8d70bf53 RDI: ffffffff8bbf05e0
[  902.584704][    C0] RBP: ffffffff8dc07ea8 R08: ffff8880b8832fdb R09: 1ffff110171065fb
[  902.584718][    C0] R10: dffffc0000000000 R11: ffffed10171065fc R12: ffffffff8f7cd470
[  902.584732][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1b92a40
[  902.584743][    C0] FS:  0000000000000000(0000) GS:ffff88812613e000(0000) knlGS:0000000000000000
[  902.584758][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  902.584770][    C0] CR2: 00000000f74189b4 CR3: 0000000077034000 CR4: 00000000003526f0
[  902.584785][    C0] DR0: ffffffffffffffff DR1: 00000000000001f8 DR2: 0000000000000083
[  902.584798][    C0] DR3: ffffffffefffff15 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  902.584810][    C0] Call Trace:
[  902.584818][    C0]  <TASK>
[  902.584826][    C0]  default_idle+0x13/0x20
[  902.584851][    C0]  default_idle_call+0x73/0xb0
[  902.584879][    C0]  do_idle+0x1e7/0x510
[  902.584901][    C0]  ? __pfx_do_idle+0x10/0x10
[  902.584928][    C0]  cpu_startup_entry+0x44/0x60
[  902.584946][    C0]  rest_init+0x2de/0x300
[  902.584964][    C0]  start_kernel+0x3ae/0x410
[  902.584991][    C0]  x86_64_start_reservations+0x24/0x30
[  902.585011][    C0]  x86_64_start_kernel+0x143/0x1c0
[  902.585029][    C0]  common_startup_64+0x13e/0x147
[  902.585061][    C0]  </TASK>