last executing test programs:

38.394130997s ago: executing program 0 (id=3164):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="440000001000030400ef00"/20, @ANYRES32=0x0, @ANYBLOB="adffa88821000000140012800b0001006d616373656300000400028008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x44}, 0x1, 0x0, 0x0, 0x4000041}, 0x8000)

37.219516024s ago: executing program 0 (id=3170):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x9a1241, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4048aecb, &(0x7f0000001440)={{0x1, 0x0, 0x80, {0xffffffffffffffff, 0xdddd0000}}, "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", "cfb220c7d481332f3f1f8079dfe27e23185fd67a407358db7892789f96b7fa9b14daa48617a10d8a91b820ecbaa470ec0bb1f3cbce7f70ec70b19a4cad082229c2788f8611d7dc306d9a45761a97828c36ed87ebde5d4a3e1609c1422a8ae2f7cca428ebdb0dd38b90b9598a353b18a600bf35a369e6e3e5abb0a1c5c0c0e48e014e7ef1b7d768b3c5657f1adfbb7ff2985082b16c99eb83ec3660990dcf1106efa6b7f8a4798fec811c2c85faec0235c83b7093b3d02367421abc40a554e0b0d7fc1bcaece4222c594f8d20e368fe625ca433c75486fe5c94103cd17291349ee12b877602936688666f82ecd8f4f83d50bb1650e08b96cd25ad147c4c956c98649806a3736d072c8d97c6e3a46a7c18535df8d828b86662400d8e9cc861fa1dd5dc193892d3168396c499e07b279fb76c7e289f2fd955691363bc1de74536dc571817615c88b0d594a136966c129e424ccb7ef1c7c7461eac7ca5f03d72ea4c9c3d1156fb4cb1bb70e097357588b5c49f6716bbae1bd118104b42786f09a3b9f7cb80f383cadfd0c462096ff2bb637b7cf79764b6a4b7ffc5d87c1f063fb48e7f08ad5af534c70079f12f28e8921abbd4280801cdf6101ea494768b1274afd0eea5939843d56022a83590920fe446d52dfe699c33977d5592dbf7e0e236b8175d7faae06e0c50f7402174023ce4b996564e945c416fa823f2f9c3213ac50b20bd1fd55bb8d9fe70ee31ea2f404ae0fcbf857bebcc9196c8c622059fea2e248e4058905b69fb98be312d3193ea1d8ff653173e8c4ad8c81d77a5bea45b3cd6fba19b6336f94ec04c8f86d24e9ca959874577d7ca0baf3c4ff30b554bc3ccc06df46d925373fbf7863e2cf684d3bc9603ab72b851ca4728294de87f2dec6f23ca9e43ed2e5cbba662d13137fc1ce0f6ae6aeb974f72f4b750825fafb67715e425f40c7da83b92d4249a0a4e96b789cceb7b07f38cb83f72dd093a345ab3cb8ae760fc14e40ea182a0d7fe1facc62a1ab0902349fd7e27bb0cd349fb5053f4734823abf020739b4b43bb11f5d69b61295068df31177959903c2ea1bb82d24eeaa93d0d475bd5d15b2a401e7ebe0d3cfbd45b2db2882cdb41408aaa718f8320fbb7f9da4f68d0eebeef175442e807e9908132731fe5e268582dcf6dffa4251ebb7121db8e412089fa9d8af9919799547a26b6b8eb44c28f1ce5f9a3021fe30841be204c1b4b3813dccae6baeef9b53fe413cbec46bb0cd95f3793cdc9bfe6cdd96ce0c4aa4a25e1cbbeeee6c9fa558b279048c7e31d07b125bac68d4e1f4253bd4dc7824cf3d722c94cf2b8f61bc8155731f072fd447082b181a13ffb8c08a1d568298c5de2d969fae2bea070a9e2688f294e76b8c200dfb993ec19778eb56ae3127c1116ccc85ef8806fdcb9ee0cb66ff03fbb0fa6c52b9b101b3830fc1650efa859163a264b4059092e5dc9a415ec09bfd1460f142fe5ef00beb6aa9032bd0de97aefc6f65e8cfeea761b3d8174caf528b6627682ff4d4450cb0f34251fc000ed01dd538ef13260984f44703b89dfb511bfb538d0b1c8aded964e1bcc5ca57437468b14a31ec0000a17e4d24369c40500449c37e7dccedba3eceb59d827dace246b5c48afb6a5988e64c560b3dc76c32d831f51cdbc5cfc4364ac8b25372b87c92bacfedc6bc8feb44098dbebc89cda03c59e4c58a31372bd574704b9e788834b9f83c6703f6709efad97c4ce499ea580dae1de282a019247cb3dce5c1906322e6d3ca5157ea6428bc42416936fac194efe136089c07faf7adf1e923003f1dc63fcbc634b389a4f351a6acee785e23c6bb04ca2f265be1e634362b87c6f9fd369bbe62a1db6b286c7ffde6370bb4d6e9e0cc3ec451e1a99d134726c9075e71319d3a683e91e4b900061c0e6d086481069cd32f4cde7816f8e3a0ac6428a7488f31f06ee0da10df3ed0c150d29085879d064f914407f60018bb588735663647bfeda930407d69abef3f72fd461c2b85b00988b412a180fd267fc646a86d297e7e40912607157b6fa873df6442579b1523d8117f0c06c87adf75843b8bff30a5bfb4fe1e9846b7fdd58774641f9cc9c4e38e53ed24a9d9e9dbc7657aa9b220a8545852b0409f5c0812e953823e841967bf55059acc7a4600818134359e72cfae0d04a0738ac8acca133d6395a455b22cdd6f901d4cdea1cf17415f7d7895a4b65f80d2f7c5c60a0dc04b40c9ae5ffc922e074a82afd704673e1766d19db9f60eab0238fb4a3169a08aded607847e5d752d4e24c4914b95bac3892bcfc2076f16a7f07583f0d418b9dec03afdb2e93335a392e1b1ef2910eb2a4b6a63fe61641f3c02bef73cd7e4a77a6f30ae821598c3160511603541bea89022b54f321c2a55cdeeb19335d78a821ab6ca0f36588a9a79a41e2123905a491d658c2a1caeee998c995bb0f816c92c5dc2b862183f80b9f9786c9c5524723c944d11f6894c7f008ab8194f577e22c03631d2a33201f508ea49653e7600639242dbaba704f700ac227f32dc575c559a0a1f4fe0cf6c22fbf7e1ca2ab4b1e4724e8379021e3c9a7c1509c6a413bd7d9c98938e440762eda2546d636597defa86c1ad31126a1182d365f858927d140fb0a97f80adcc5f4ed5efe11ac503453917a263f1d64692348d30f382e85e464ef7616067a42df5de1a1b622fabefe2ca4ceffa4801f7a02fdef40644cd1d079590d900727628d54b44db7ac700d8d664f7eea12837fcf347360d8e43a354fe51b4c49d2b800b5cc06e22c72af2a67ee7bc8ae894e841f2cf2b0a7e381caf944bf4e91ded63b6f82f7474e4f81e986fff7e5339b8e9f60103a1af81833e120f0c88893ecabac044a4a2867cda4fdcb084459a00507aa9e5a8e761a72df3322a1ae8cd918b4994c23bdb1e459b4f21651bd7fa067a00e2a2877bf6b29f289ed8018e0a78f6fb4ded9749640e0e37f6381b320ab72da404f3d70d60152f6fa6738932387b83250cb3148141edb52f109bfd4bda8054959db01f4c550609a63c08cf01ecd110cfc6f0055638c0dde039d2ac2daafe59e561f9f08a8830c3f661e4325de63e98f4a4216ec3b83fd200201ed3f647147611424286ffc6c4a8aca64a6874743242d4feeaa9153de06e51c512d9cab7ae712c6424069f3e5db4ddebe9b48b5f6caa741162edf97674d2368e03a387f798151a4b9b9fa9e3a5838a34313315836bb7291764b9a3c464c0c54a4c64ca774ad200925ac6bf59508c10a8574afde9b821741af43ec64cedc13aa220b39772195283506dfe899dd6a7b37eb21f154056a2df3564ef2bb918a928651de88c3613b84e7960bddd7b46b1304deb30f57b6fe5a3b4788629e91bcc245e748b3387f52da4bb094782326dcfde0827e2d674e41bb375247d349cade9c704e5431785009b0e53f1b45c70b237c9432e07e4c7a8464ed11608a3d2184338dd9e6f6ef4b3d751e979667b6a3953c89aff4eead7a978071a912b3de21a85a5849c57933cf53cd74a610f3e60f699766fbc7e0bb8a891a429c77bb6f3b6f9f8eb0b1bd9588ef2ce98fdf0a0838e4b0bed807d8b673093c717feec8d697e32542274887d039db7a2daed5d52c8e9767443229f8003c5d67e907376ea2f393484fa70deee159cb56f8d097b8fe2736e95f540137e20725f0940a8d049068ead4c46bb3771a671bb00de88931e03445a55868de0c220db05cbda9f996d5fe7c1070efe5e718fed4d4cb4ecacad3d6b643bc0ffe9a71b720ba7b5adbbdefe29106ef6a6ffe4547f5d02bec312147df0abe80efb2d5e598fc7c8b268e58b59e0d75728e9a18126f013c963ddc92d251405f857fe3a5cbacf443be7772975b7bf4f6d7ed6f80dfcc47a88c6d19120942adb5385be6ef3c0d7e396bcac5affc8f9276d6cd1a0b069aed72a98cde8ea7aabe6cc091b19efcfaf9368dfeb3087a05a42e3b893dae5ffeb72e6ac06e995a2a75ea0b5f7876247bb4c38cf3f0153f1f7473b522f1c440b632270e2b1d654d3a5ae16cb788482760d34ca79c8951b29c628e21029715683a3e6f8f77c5d89ecdae37e0190f79c4c1dbc9d0160e359cd6c94d6662ed53bb01a83374ff593c823acc59241b11f020902069fc0054a9b26cb320bef4fb1f8cc5bd8ae76eb029afab731b9876bc4e8708a8315512823cff1f9375d284ce66e53d4efad6c76d17bb532fc938b8f80c13ce86b5ba3e540164bc5a5d47cd321c241d8740f453ef95bd3878d578561ad6ce20877ffbd44062dce8df1d048d8d5e4045be647886108cbb1f0b26a8b74b66858afedb830a161bb02bde4c46a688a0ea3a7018ce24666aab0f422ede2f78ea29f77e28d87c744cba0285ce33dff5ac45774829699de6d725a9b6db6e7d03ad4ec9d075c386e68ca0bcd9e9911d741ed0168cbddb87a7918a964d206629da4e887277b0ef7d3f9c7082f3f15f29a0dfb39f3b0877a5ec3ac4343e0d808f5aee8f1869923aab6dfc1016821c013109f34aece6183994b853d0e9561375c02cdd26b1b55194757341929a8038864cedd6b5a3b8b51ade44637044c4ebddb190f173969a0ca4cf5d42153763a0b91da0110ae7a25204850927d81b00176d4568a3d444d8029bd010df784e3f673fe855601ec4f1b26b2df58841e6a65f0db66373f63cc14a8b07dfc52ac9957eb542d05ed687c79519609de96df18b63cb294b534ddf7d2e8f41bcc1e5a006191c4db057b6709f0a96f18e02000000be2a19c015b9c4b0b3f42e4de366b71f8da8888809473c3c7a02a1158e375f29997a43bc7118ca4d1abb8f8f21972fc589aaa3d73a4d40a1e1705e169ac6e56cff50d89fc45b6863c8fc67bb2b5939a7f33072539ba4c24077be5711ba368bf7efd4897931531d388eb5c2e56bef337777150dd59518652145c9594e110e41d2615196c6b197916c88cc2814e13a3a922b4ecb044bf31cc90e0bfe0ce07de29188bbcb0ec1a12b509f52582fbb948c3cbe0c6964f46991cec0704bfac08aec6ad8ddfc36dc68c7f547c5ee6af4a8d55c79e3dc1c49b045379811f81e9a185a92cd37ae4ee32c5d3c82d36d6202a6c84fd231fe467071d42072827fd77afa5d757e6f37247f783ef09bdfd7536b666e84bc4bb878005b7829293a04ba090272dec844f4ef0e934617c0851800c6b915ac6f3f03e4a6ab88e21c3f21f93b31d95ea3b9228e0031cb69795de5abd19c4cb4a0cf2984e53ca391cc66e33ee0d510151670331fa264753704fea5e400000f74890c49a74a47e0da13155c5470013d53dea0f05b5e088f1511c209f5be940232318af2757951d399e32eb862d915784713baa8ba93645caf04ba78fa3cf600ff92b9c5be58ad87438a340bac00a5ea9fb17e39478ba61fe36335e48d8c5a0b25f024cbd2ec7f217d0f260951da396dc13a2a74cd90df4b52db686e3b34d27cfa4cebd7bf59cbcfaf4007dc943a1da6e0bd1799a21ab449d7bb42935e50c839c5b567c59742436af15bc8d46095520dcd9273ae2b6f3c1cc2b4311ac9e5d297f0940b1552c5955adb302022022bb7457978998b56328629b7725dfbe3dedb37f37af0697a4471d1d6ff6bec633a38540adeba903f3eaaec5785fbb3c6a598f49dbd9ff93c67dea1ef39a614331b119fa8efccc8bac01595fb95a2a57eec9fc6c6fe82782aa89ea971866fd9a3bca4010182092ab6d1e2b49b964be9e3bb13bd6b77850e435f55a5d46e5bcb3330c7edefd31c33f61275e51600"})

35.384796848s ago: executing program 0 (id=3173):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x15, 0x10, 0x2}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0xd, 0xf, &(0x7f0000000c80)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x7, 0x0, 0xb, 0x2}, {0x85, 0x0, 0x0, 0x51}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x8000000}, 0x94)

34.491163897s ago: executing program 0 (id=3175):
r0 = socket$alg(0x26, 0x5, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000440)='\x00'/16, 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x80000)
r2 = accept4(r1, 0x0, 0x0, 0x0)
sendmmsg$inet6(r2, &(0x7f0000003b80)=[{{0x0, 0xd, &(0x7f00000003c0)=[{&(0x7f00000000c0)="e6", 0x1}], 0x1, 0x0, 0x0, 0x7000300}}, {{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000440)='&', 0x23fff}], 0x1}, 0xff03}], 0x4000070, 0x8000)

33.478564155s ago: executing program 0 (id=3178):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x6, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x2, 0x0, 0xb0ff}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x5, 0x0, 0xb, 0x9, 0x0, 0x2, 0x2}, {0x3, 0x2, 0x3, 0xa, 0x9, 0xfe00}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x0, 0x6, 0xa, 0x9, 0xfe04, 0xe1}, {0x7, 0x1, 0xb, 0x7, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x2, 0x2, 0x0, r4}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

32.254771738s ago: executing program 0 (id=3183):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x7, 0xe, &(0x7f00000011c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340), 0x10}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x90}, [@ldst={0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffff0}]}, &(0x7f0000000000)='syzkaller\x00', 0x5, 0xcab5, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x48)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$netlink(0x10, 0x3, 0xc)
bind$l2tp6(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r7, 0x29, 0x36, &(0x7f0000000580)=ANY=[], 0x8)
connect$inet6(r7, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000040)='batadv0\x00', 0x10)
write(r7, &(0x7f00000000c0)="842a0a6540b74e950304000e0580a7b6070d63e286a5cefe", 0x5ac)
setpriority(0x2, 0x0, 0xffffffffffffffcd)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000006000a20000000000a03000000000000000000070000040900010073797a300000000048000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000210c0009800800014000000005600000000c0a010300000000000000000700fffe0900020073797a31000000000900010073797a300000000034000380300000802c000180250001002130404c6bfef3a31e2587ebd76200eb3ea056f39e3ab8a93c358099bf8cf3007d00000014000000110001"], 0xf0}}, 0x0)
sendmsg$nl_generic(r4, 0x0, 0x4000)
socket$nl_route(0x10, 0x3, 0x0)

13.799228345s ago: executing program 1 (id=3224):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x400000)
r3 = dup(r2)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x2, 0x4, 0x388, 0xffffffff, 0x0, 0x1e8, 0xd0, 0xfeffffff, 0xffffffff, 0x2b8, 0x2b8, 0x2b8, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@dev, @empty, [], [], 'macsec0\x00', 'bond_slave_0\x00', {}, {}, 0x6, 0x0, 0x1, 0x46}, 0x2f2, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x6}}}, {{@ipv6={@private0, @empty, [], [], 'sit0\x00', 'vxcan1\x00'}, 0x0, 0xa8, 0x118}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "ddabf53d9b1435965491f65318776d8001e770b667f173dfa40b58c10327e3121114449fd20ba2be6e45cae72a972f25170163232ed996b4789b9d00"}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3e8)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYRES8=r2])
syz_genetlink_get_family_id$wireguard(&(0x7f0000000100), 0xffffffffffffffff)
socket$qrtr(0x2a, 0x2, 0x0)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000680)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = syz_open_dev$vim2m(&(0x7f0000000040), 0xa, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r5, 0xc02c564a, &(0x7f0000000140)={0x0, 0x34324142, 0x2, @discrete={0x1, 0x401}})
ioctl$EVIOCSREP(r3, 0x40084503, &(0x7f0000000480)=[0xf7, 0x80a4])
r6 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000800)={r6, r6, r6}, 0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={'sha384\x00'}})
unlink(0x0)
syz_open_dev$swradio(&(0x7f0000000000), 0x0, 0x2)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000002400)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d01008cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b3e508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247f83539d324d3b5980774af29fc2a83a345e39070278e92156d06f90ec3b82ea5bc0ead39ccf09387778e601ac9cee7093ae2c710711e2ae6b3df875b4f75a15cc54cc20df5214a3b03fd1cecbb048b90880e4095dcd5cd723c6b4c7e2cae57c62b952dde64e41ab0fb690a9d4937e2d10ee7e2f6df4f485d2014b390c403975481084c1c2d969a81099e75d8fded8f7ad256ff95798c5a5ae8f579fd88a68a55e79853"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000003c0)='virtio_transport_alloc_pkt\x00', r8}, 0x10)
r9 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r9, &(0x7f0000000140)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
getsockopt$sock_buf(r7, 0x1, 0x1a, 0x0, &(0x7f0000000000))

10.557189846s ago: executing program 1 (id=3227):
socket$inet6(0xa, 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8002, 0x0)
read$msr(r0, &(0x7f0000019540)=""/102400, 0x19000)
socket$kcm(0x23, 0x5, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv2(r1, &(0x7f0000001540)=[{0x0}, {&(0x7f0000001380)=""/129, 0x7ffff000}], 0x2, 0x0, 0x0, 0x0)

9.891577497s ago: executing program 2 (id=3231):
open(&(0x7f00000002c0)='./file0\x00', 0x2a4c0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x8000}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0xfffffffffffffffc, {0x0, 0xe}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
io_setup(0x1fd, &(0x7f0000000480)=<r3=>0x0)
setsockopt(r2, 0x3, 0x5, 0x0, 0x0)
r4 = fsopen(&(0x7f0000000100)='udf\x00', 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x2800, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = eventfd2(0x5, 0x1)
ioctl$KVM_IOEVENTFD(r6, 0x4040ae79, &(0x7f0000000900)={0x0, 0x0, 0x1, r7, 0x1})
ioctl$KVM_IOEVENTFD(r6, 0x4040ae79, &(0x7f0000000080)={0x0, 0x0, 0x1, r7, 0x1})
fsconfig$FSCONFIG_SET_BINARY(r4, 0x2, &(0x7f0000000140)='shortad', &(0x7f0000000180)='O', 0x1)
io_submit(r3, 0x2, &(0x7f0000000780)=[&(0x7f0000000440)={0xfffffffe, 0x20011004, 0x4, 0x1, 0xfff0, r2, &(0x7f00000000c0)='!', 0xb7f40}])
mremap(&(0x7f0000000000/0x9000)=nil, 0xa00000, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)
dup3(r2, r0, 0x80000)

8.495331148s ago: executing program 4 (id=3234):
r0 = openat$smackfs_change_rule(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180)={0x0, r0}, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x2, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x100, 0x29, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x28801, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=@newtaction={0x64, 0x30, 0xb, 0x5, 0x0, {}, [{0x50, 0x1, [@m_ct={0x4c, 0x1, 0x0, 0x0, {{0x7}, {0x24, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x1, 0x0, 0x0, 0x0, 0x8}}, @TCA_CT_ACTION={0x6, 0x3, 0x6}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x8890}, 0x40)
r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x42280, 0x0)
close(r5)
ioctl$KVM_CHECK_EXTENSION(r6, 0xae01, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION2(r5, 0x40a0ae49, &(0x7f0000000080)={0x0, 0x4, 0x3000, 0x2000, &(0x7f000060b000/0x2000)=nil, 0x8000})
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000000)=0x15)
pipe2$watch_queue(&(0x7f00000000c0)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(r8, 0x5761, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"])
r9 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r9, 0x4068aea3, &(0x7f0000000600)={0xdf, 0x0, 0x14000})
close_range(r7, r8, 0x0)
readlinkat(r8, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
ioctl$KVM_CAP_HYPERV_ENLIGHTENED_VMCS(r8, 0x4068aea3, &(0x7f0000000580)={0xa3, 0x0, &(0x7f0000000540)})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
ioctl$TCSETS(r2, 0x40384708, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x0, 0x0, "3eccd8f9d20000000000001000000200000500"})
socket(0x22, 0x2, 0x4)
write$binfmt_script(r0, &(0x7f0000000880)={'#! ', './file0', [], 0xa, "77edacb8b72c32f2b2872fe912472ae220be"}, 0x1d)
openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x280042, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r1, 0x0, 0x1000, 0x34, &(0x7f00000008c0)="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", &(0x7f0000000280)=""/52, 0x7fffffff, 0x0, 0x14, 0xc0, &(0x7f00000003c0)="eb46db6414cc756b125d2acc6556272f44ba7b01", &(0x7f0000000400)="7a43e4efee9699900253751b3c0cd7308b3c22acbf7bb4e2de2f6cd99f24f53705c8a01753365e14bd273708256f4c6f1cbaa365abd175887690a378ae89511bd29ae7d23882eff4ab26b97ac1a9e1f389d222b52c1b4f6ce25462e233fe17a943501a50de2238bd6087bdc0efa86e940092146c427bca074e487a42348ba67f23111db3969abd71a33a1e328cabd7888d1d6ee84931e5474f657e69b6ac9da0bcce9e69eb0e667a1cf61fea9fbf3dd445f6ca912d158616398cfe0727d4b836", 0x2, 0x0, 0xfffffaab}, 0x50)

8.38161712s ago: executing program 2 (id=3236):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="04010000", @ANYRES16=r1, @ANYBLOB="0100000000000000000303000000f00001800d0001007564703a73797a300000000044000400200001000a004e2400000044fe80000000000000000000000000002a37200000200002000a"], 0x104}}, 0x0)

7.202952713s ago: executing program 3 (id=3237):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000002000010326bd7000000000000200000000000000"], 0x24}}, 0x0)

5.739606328s ago: executing program 4 (id=3238):
socket$pppl2tp(0x18, 0x1, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$sndpcmp(&(0x7f0000003700), 0x1ff, 0x3)
ioctl$SNDRV_PCM_IOCTL_HW_PARAMS(r3, 0xc2604111, 0x0) (fail_nth: 2)

5.591361148s ago: executing program 2 (id=3239):
socket$pppl2tp(0x18, 0x1, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
getpid()
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
msgsnd(0x0, &(0x7f0000000280)=ANY=[], 0x8, 0x0)
msgget(0x1, 0x20)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$BTRFS_IOC_WAIT_SYNC(r1, 0x40089416, &(0x7f0000000080))
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$X86_IOC_RDMSR_REGS(r2, 0xc02063a0, &(0x7f00000000c0)=[0x4f0, 0x0, 0x4, 0x3, 0x401, 0xe0, 0xe, 0x9])
r3 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000040)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x2}, 0x94)
openat$vimc1(0xffffffffffffff9c, &(0x7f0000001240), 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x101121)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
r6 = syz_io_uring_setup(0x1c57, &(0x7f0000000300)={0x0, 0x40ac, 0x10000, 0x2, 0x3f, 0x0, r5}, &(0x7f0000000180)=<r7=>0x0, &(0x7f00000001c0)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r4})
io_uring_enter(r6, 0x2def, 0x4000, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

5.590971887s ago: executing program 3 (id=3240):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$int_in(r0, 0x5421, &(0x7f0000000100)=0x5)
connect$netrom(r0, &(0x7f0000000080)={{0x6, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, [@null, @bcast, @default, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x8, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast]}, 0x48)
connect$netrom(r0, 0x0, 0x0)
r1 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r1, 0xc0184800, &(0x7f0000000100)={0x4})
socket$packet(0x11, 0x3, 0x300)
socket(0x25, 0x5, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x388}, 0x0, &(0x7f00000002c0)={0x3ff}, &(0x7f0000000300)={0x0, 0x3938700}, 0x0)

3.164054938s ago: executing program 1 (id=3241):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newlink={0x38, 0x10, 0x503, 0x70bd28, 0x0, {}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x4}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4001}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c00000010004b0400f4ed0000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800b00010062726964676500001c000280"], 0x4c}}, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="f80000003e000701feffffff00000000017c0000040042800c00018006000600800a0000d1000280cb00148008000d"], 0xf8}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000) (fail_nth: 2)

3.115769684s ago: executing program 4 (id=3242):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000980)=ANY=[@ANYBLOB="9feb010018000500000000001800000018000000070000000300000001000085220b00000500000001200000000000000030305f302e"], &(0x7f0000000f40)=""/4069, 0x37, 0xfe5, 0x8, 0xffffffff}, 0x28)

2.635139647s ago: executing program 1 (id=3243):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d032, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
pipe2(&(0x7f0000000440)={<r1=>0xffffffffffffffff}, 0x0)
pipe2(0x0, 0x0)
splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x9aa7, 0x0)
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa07, &(0x7f0000000000)={{&(0x7f0000fff000/0x1000)=nil, 0x1000}, 0x1})

1.990760963s ago: executing program 1 (id=3244):
r0 = socket$phonet(0x23, 0x2, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$SIOCPNADDRESOURCE(r0, 0x89e0, &(0x7f0000000240)=0x2)

1.727800402s ago: executing program 3 (id=3245):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4605, &(0x7f00000011c0)={0x0, 0xa0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x4}})

1.706617616s ago: executing program 2 (id=3246):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000840)=ANY=[@ANYBLOB="480000001900010025bd7000fedbdf250a801402fd03fe060010000008001700"], 0x48}}, 0x0)

1.706375687s ago: executing program 4 (id=3247):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x80)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000004c0)={r0, r2, 0x25, 0x0, @val=@tracing={0x0, 0x8}}, 0x20)
socket$inet6(0xa, 0x2, 0x0)
syz_emit_ethernet(0xd81, &(0x7f0000000600)={@random="5b1a033f2511", @remote, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x2, 0xe, 0xd73, 0x65, 0x0, 0x1, 0x2f, 0x0, @rand_addr=0x64010100, @remote}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x880b, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x1}, {0x8, 0x88be, 0x2, {{0x8, 0x1, 0xff, 0x1, 0x0, 0x1, 0x6, 0x8}, 0x1, {0x1}}}, {0x8, 0x22eb, 0x2, {{0x0, 0x2, 0xf5, 0x3, 0x0, 0x0, 0x5, 0x8}, 0x2, {0x7ff, 0x50, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1}}}, {0x8, 0x6558, 0x2, "779b8293ef66837e6b08e05ee1bd6a562cfc7155797fbab344aa9ff1e520e29defbaab543a44bae3cf7ae6a7ca3a10c256342d64447e91e5e5b9dec27a8b73eef16fa583cac050cf41dae240ca82f57319c04be9a71014bdbf3f5f9db906ce11fe42075b8878cadb8b866d4dace5e5f47796cdcffd7950f85c491f696142fcbc95fb7c868632b0b67b041f275d2d33e579c8131b591183cc34aa513b2c0755124bfbaebf15a32ee2e6349418cf7152f7849a59a87c098207ffe8de6db7884c9c4297688a01af821756a4866b38cfb552520868e9eb120e5b862c473e31a65b99991150798f20ae26d6d2c1ae5ed4d30392527c2f5697280d513489c8b1c38efc3ae5d06e579c66ae7fb261832aceb4e769f827574e8706574431b455e76a4fb8c9f6a24c6c85303588cfc740b622d7fd2ce98573f92a9737d034a1bc330d163e65cb9671a27fb98f296a26a880325808b4472f410295299b9d71f70e771d69bcc834b4598df596cb73643d149f4060a0fa2d230e3ebfdb5bee927ae7c5e06ee3b0cead7d636aa0731422977847dc37221cd8a5a96750f005dd7ba78f904b5fd9fd2d05c18258f4c25cd782bf0e19320ce16a950b05e16b04c133f0fd6517bfa438d14c309f6cc7cecc8aa8627399dba87da8fd18c4e4ffbd06d470af26a92844cecbeeb6caf7ce10fb98117d3253b957a88a34878915cb3e6b193a58aa60a18806ef8557a1f5bdfe0d1aef9f2e1f59d78d3436cffbec5f0f53a7c5135b19866c6ef61aa6eaa4f2d8a7af9219cbe9e4d43f743ac1b956c825087e0013c5ab6ddaa85155917da65fbcc7149aada82c0e783239454309ea75d2f460c96bd43f6dcfa337da1fa7851494a47ed0d8cbe17495b83a8a2dd947a9db761256223582dd4f5aa5815e52f9a2aad5d53a4522d6a3c517dd32f1fcf550852df3e41103bbca2991c25b706ab72032dfc0bb721186be78994817acd19616b302bb743cc5dc2a304fe8c51e84d0bcf78a2e819ce34b0b373a06a14aaaf0652318ebf309a4705671a4f92e844b749a7bc126fccedc598ea10de2e648c84ec402ba4dd33d8588650553574a492ab8f8b173ff320ac9fc5726225f98026024fcbde7ec88a6277bbc9b6ef5be387e7e04b5b3da13fee3106bd974d7df05b9f8ff7904eeeec3c026827de590eec9e1677d9ef8ca2c5fe899ae002d2581ab29a6b4b0f151dd4c703628485e02a89ddf6f98f48556e3f3398927d7c8cb8e29a7addd59c659d4b8421b9a3d8c5b87f6b3097d31aa3d530d450c800a39df197b89e93172df76916e5338150890ae4fd470b6857af0539b65435bc47f70c1035e069453bda4d6ce338f7a4286ad4da2a4a1686289183fd0147c257c245e73f603dd5f2bab890516477d512ebb05e78305b54a637946af643be6dc9272494aa396d43b7978f769b58c193b328ccf12a368a0bc1120d93c0ce156b795466fe8624f2a96bcb9e563fd982188a190f76f90386f27f3c9488f4ffc3f022439446c0e831c7e3b0b8a248a39a70c5539a4638daafd8709fb11166c2116797e2b08191778dfaca6e8b83222d7bf8922b4f0b27d23a1e7a4c1cbe0f00c6bc90db67d94d1a48a3f7fec9c4b693e0cc0f595cde27278ce9985840858729fa127efd9b2c61c404d7b2f86b0ab5019b8b2e7285b8e719622e8a6f9877924399a61b14742d6f159bfe58879dab9bf6fa4b12b67b64be0aae31b28f73c74ae99140410fbc0387b7beb4b43d89c6f6206965a75d7c9dfd149fc7f0a0180c44a381e2017469938d97ffa05d0916d2bc167f6b1052434a4ba0d4df46d5938b2dbc612d7b4cbd5e6be74ffb77013dc4e78d2be81e8e42f3406e720e78e46e86600e0e32cbfdb9699b93a28d44a0bb53b99f46d9573c83273f05af7b7fafd3187f2669236ae621b8aab56f8c18ac348e554f1a97c7ed18352624230d75d19e8ea3decd317af451488b4dd479ea48bae5486178727657cab3ccd50228ef532c7b04a4d4f7799696cade82b71ce138a73f61b33c624a5d56aa090fda7ca1a2750dd0a38b366b3144edd3a9b3dd698974a64c59470c3aa0f49eb73d0c958da0ecfbeacf8f9cb88f33345748758c174ef51102cf1b5ae419c56472e2f85697ced16ef7ca8121664aeb7e35b5a332df2e97812329d713329a7f4e80c4a357f80c0e4099005c3ba3076e63702c1a2a0b2113006e66b40555e6119778a60dd62408853ac62f5f83aa546572637e3464c92184cfeae7e3212e8c5c31a9e6e858b4e90bb19767fd0ff08bc12d509c5957030f166e6130ba1c5c27d74bff34c1209e1640055c7aaa93ec3eebae6a28dd8ec91437ce5825e7474a7a7b4a4c023043b68ed1bfe50c61aac60a9e8babfeacf5e99805651e9f159a4b13dcdfa57e5b37ac924a0df1732ac4550adee811870a94db2d25a73b4cac2d51ba3c7cb00dc82e19864783a70305d7e7927a41b8ffe104845775a39fcb9b9ee6056d5a6be4321de457d47c3b0ce19a488f46372877cabb4ef2d996609345bfa3fc03d297a7d43d92679629c4bcdff237a6b7ee541cc30bef85a7aa47934b6ef22e7c2c7e2e6dccb98ef86dfa0fa6f51501e9994f376ab203adcf7b6b2f9506e126f26286f3463504d13dc9636cc9f495881fd9d9a9874551cbbbb7c816d31d6243d61cde356ba03ca68a442ac26e3559197643334f303821dbdb27928852c9123f222c0cdc275673379aa7dc5668b34503e406edfe8f84f471d28b4f2bd5c8e75931cd914b6a1c95bcb0748b77c270707cdc8785050a63d3e110af4d1c1af2b17d30051c3494807669abd975f88e2711a2f2b7ca9487a276d46b8fe51f858c2fa2564716cb28d057a0c28a4864c315258cd03bdd22f113469b97463f676f2be79f395f4702f46c5dc400aa49fbc9b0e0f8e9d77c4b753dc7171dd2830bb90a933c456f2b60a240bcdc819279c72003fe2562d374f3ba750bae9ffb3d155a9b1eea766c8c478e0280e50cc735ec510b41cc9528183a362553ac5250e34a700c8f14c6a0ae7d018f41601c44c814428614d0b75648e86f76d15fa6f8aaded7c41b7aa0fef941155430b706a156f20bfd2d77a195aa4140e087f7f7758fbf87874fa1458dedc647446e002369f34c3bd644a8868269faa27d1bac2b11b545942ea847c8cbcc5625a88a13f67d19f7a00721ad1b9a2de9c36d94ae37f40f6d4fd8918cfd3eca0ad83e314894409c56ca5b96ce3df235c3b102785d15d1195dff1e29025c75ba385aada5909988b96a3bc436c6874ae64197df99836b3bf6e6192b6b1d65a9d534699eb40e9ab4e598e390ad1d7e0e6f0c7526a82270116e055606096b8fcec7a711aedce02adb081eafa32a6511aee456f2dcf55a8b7d6a8b9c04f755af2ccffc77c89cf9d6171dc34ca7b346f32abd6178e114f90a63d8038344b490fd2574b6b51905c9cd90f851c3ecd5f513f03663f31902003261d0fbf8ed241fea3898f08655c1b5b16ae259a41d1f5f7b1f27751b991029c7eb80d6599e2a2ac564c7d5aaef13a5f045d4137afd382e9afc0afc8e5774654b98f56cc0b23653c92866554036953f46145a681084dc8593db3d498fdca003d3d37c621fa1a4c89bcf4d9fd056cf28c1a158ebde6f8af589e17ab49c3e8ec63fe694d45cfd3166db938f7ac21e39455ce124751d2ace5dd5203e5ce6e0732f9e7fd46b151343035494c997dcccc76aacb876211a8b82e9a76ce1c8ba583a64266a42774a974253b468a1d8b34090f604c579243c7cfde12d1b78452a3edfaadc5922d6dddfd3f8b61e9b5fb225cd968b742af817816a176462193f2bc0b7a5c50aa652fce2c74c61a037c466840e0ed7785e31f74ab9b9480262cf15e9f21416a4b562563331e5f0299c29045cf93c6e800fd35c7e7ed1711e4d274c7c3eba9e9b14bbe79677e92d843d1050cf1e8b16928af169ee39d7e97369b745c83e9cb4d5d3d1ff5036220381a1749dfddcd37dd72fa848645a3b5af5c9e00cfbf2fa3a76e6fd0a86b743b15637a06d2652753359ee44db8e9a4cf0f98d52d866bc71495c4e744daeb7cb9c9f2b169b182907702ad69ec6abd171058a588a9a4519ed4bc616654f338def5f51954c665ff8d3fcefc48e3b716dc9ae9aba39a85cc40c31fbbb824f979a539b025fe1d3ee4d6a5fb1f206777afd5207252b00765a583da7e979810e20ecf9e63c192addf8a0e280cd2956061747e8fb45f72a915bee898c31f3ea36fe9068e617feea87b2d3c83b2468020a097a2510bd9b151a1946039046939318110f6bf6f5c5023052360c5b96fce898bd9b8bd953e8303952df40ece78e83ee8dfe24008263f00d077de007973f77ff0ebfa1413af6bd0dbe1794cefead8946728f1f9012cb64cf2091f3301e9a61ea42a5424fcc42b5f7d18b9e1e28b6af0711e26365675ecd997d96029593c45ef92a344b96c9e8bae34b2bfceafc9ce6306b747d40432a38d1697deb8ea4b1e4d4ca3917c0ca16218af51638ca81b4217b6ce8396d3e058c47e19220ed6660c8bd1df56f83c96f46c2471ddbea242d1719ba7e41f6d0bd07dd4dc504f62e1a841c910a8456d7f4c383186cc74cd33463ed587afc419d1eba7b3251e34ef566206724dfcd845e5d2919675da0215dfb35d1ee023043ac0d5d4ad7afd177cb4eab14822873de1024e0c2f8080b06f1f9e9db6009fd2c11184ec43761b6b94b1985dea8474626734189d9ff1b8494ccf98"}}}}}}, 0x0)

1.644421806s ago: executing program 2 (id=3248):
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340))
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0xfffffdfd}, 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet(0x2, 0x3, 0x6)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSARP(r3, 0x8955, &(0x7f0000000a80)={{0x2, 0x0, @rand_addr=0x64010101}, {0x0, @broadcast}, 0xe, {0x2, 0x4e20, @remote}, 'ip6tnl0\x00'})
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r4, &(0x7f00000001c0)=[{&(0x7f0000000340)=""/127, 0x7f}, {&(0x7f0000000bc0)=""/84, 0x54}], 0x2, 0x6, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(0x0, 0x880)
write$P9_RLERRORu(0xffffffffffffffff, 0x0, 0x52)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r5, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[], 0x78}}, 0x4048080)

1.571652639s ago: executing program 3 (id=3249):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="2c0000000d0a010e000000000000000001000000090001007379797a32000000000000000000000800000000"], 0x2c}}, 0x0)

1.195220431s ago: executing program 4 (id=3250):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$IPSET_CMD_CREATE(r0, 0x0, 0x0)
sendmsg$IPSET_CMD_SAVE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x8, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x4084)

1.150425493s ago: executing program 3 (id=3251):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
getsockopt(r0, 0x28, 0x1, 0x0, &(0x7f0000000000))

799.384784ms ago: executing program 3 (id=3252):
r0 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
listen(0xffffffffffffffff, 0x2)
listen(r0, 0x80)
r1 = socket$inet(0x2, 0x80001, 0x84)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x28}}, 0x0)
getsockname$packet(r3, 0x0, 0x0)
r4 = socket(0x10, 0x803, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000180)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x0, 0x0, r6}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0)
r7 = socket(0x10, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x14)
sendmsg$nl_route(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x34, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r8}, [@IFA_LOCAL={0x14, 0x2, @ipv4}, @IFA_FLAGS={0x8, 0x8, 0x681}]}, 0x34}}, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, 0x0, 0x0)
listen(r1, 0x3a5)
socket$nl_generic(0x10, 0x3, 0x10)

52.982865ms ago: executing program 1 (id=3253):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000500)={0xa, 0x2, 0x0, @empty}, 0x1c)
listen(r1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='htcp\x00', 0x5)
sendto$inet6(r0, &(0x7f0000000200)="ae", 0x1, 0x20004002, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="84ad3daa560315", 0x7, 0x4000890, 0x0, 0x0)

52.435647ms ago: executing program 2 (id=3254):
syz_emit_ethernet(0x86, &(0x7f0000000000)={@multicast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x1b59, 0x64, 0x0, @wg=@response={0x2, 0x0, 0xe0, "000000013904030401010000000000010000e0efffffffff00", "9384bbeb3018ad591b661fe808b21b77", {"694c875dfb1be5d2a0057a62022a1564", "a329d3a13bd5b6cc6a9471314a1d8c69"}}}}}}}, 0x0)

0s ago: executing program 4 (id=3255):
r0 = syz_clone(0xa0000280, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace(0x4208, r0)

kernel console output (not intermixed with test programs):

or -71
[  897.001984][   T10] usb 5-1: USB disconnect, device number 57
[  898.001991][T14656] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  898.264034][T14658] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2602'.
[  898.314059][T14663] loop9: detected capacity change from 0 to 8
[  898.340102][T14663]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[  898.422783][T14663] loop9: partition table partially beyond EOD, truncated
[  898.482539][T14663] loop9: p1 size 81768186 extends beyond EOD, truncated
[  898.631323][T14667] DRBG: could not allocate digest TFM handle: hmac(sha512)
[  899.354556][ T6294] udevd[6294]: inotify_add_watch(7, /dev/loop9p1, 10) failed: No such file or directory
[  899.493542][   T30] kauditd_printk_skb: 27 callbacks suppressed
[  899.493563][   T30] audit: type=1326 audit(1751935609.253:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14677 comm="syz.3.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cadf8e929 code=0x7ffc0000
[  899.578011][   T30] audit: type=1326 audit(1751935609.253:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14677 comm="syz.3.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cadf8e929 code=0x7ffc0000
[  899.604953][   T30] audit: type=1326 audit(1751935609.253:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14677 comm="syz.3.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f4cadf8e929 code=0x7ffc0000
[  899.631859][T14682] fuse: Bad value for 'fd'
[  899.685464][   T30] audit: type=1326 audit(1751935609.253:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14677 comm="syz.3.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cadf8e929 code=0x7ffc0000
[  899.746050][T14682] FAULT_INJECTION: forcing a failure.
[  899.746050][T14682] name failslab, interval 1, probability 0, space 0, times 0
[  899.823166][T14682] CPU: 1 UID: 0 PID: 14682 Comm: syz.4.2609 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[  899.823197][T14682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  899.823210][T14682] Call Trace:
[  899.823220][T14682]  <TASK>
[  899.823229][T14682]  dump_stack_lvl+0x189/0x250
[  899.823258][T14682]  ? __pfx____ratelimit+0x10/0x10
[  899.823290][T14682]  ? __pfx_dump_stack_lvl+0x10/0x10
[  899.823324][T14682]  ? __pfx__printk+0x10/0x10
[  899.823357][T14682]  ? __pfx___might_resched+0x10/0x10
[  899.823376][T14682]  ? fs_reclaim_acquire+0x7d/0x100
[  899.823401][T14682]  should_fail_ex+0x414/0x560
[  899.823436][T14682]  should_failslab+0xa8/0x100
[  899.823469][T14682]  __kmalloc_node_track_caller_noprof+0xcc/0x4e0
[  899.823500][T14682]  ? smk_parse_smack+0x1b1/0x1f0
[  899.823530][T14682]  kstrndup+0x80/0x160
[  899.823555][T14682]  smk_parse_smack+0x1b1/0x1f0
[  899.823582][T14682]  smk_import_entry+0x20/0x1d0
[  899.823618][T14682]  smk_write_net6addr+0x512/0x13e0
[  899.823641][T14682]  ? __lock_acquire+0xab9/0xd20
[  899.823674][T14682]  ? __pfx_smk_write_net6addr+0x10/0x10
[  899.823704][T14682]  ? rcu_read_lock_any_held+0xb3/0x120
[  899.823743][T14682]  ? __pfx_smk_write_net6addr+0x10/0x10
[  899.823778][T14682]  vfs_write+0x27b/0xa90
[  899.823816][T14682]  ? __pfx_vfs_write+0x10/0x10
[  899.823853][T14682]  ? __fget_files+0x2a/0x420
[  899.823878][T14682]  ? __fget_files+0x3a0/0x420
[  899.823895][T14682]  ? __fget_files+0x2a/0x420
[  899.823925][T14682]  ksys_write+0x145/0x250
[  899.823957][T14682]  ? __pfx_ksys_write+0x10/0x10
[  899.823981][T14682]  ? rcu_is_watching+0x15/0xb0
[  899.824008][T14682]  ? do_syscall_64+0xbe/0x3b0
[  899.824031][T14682]  do_syscall_64+0xfa/0x3b0
[  899.824048][T14682]  ? lockdep_hardirqs_on+0x9c/0x150
[  899.824077][T14682]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  899.824097][T14682]  ? clear_bhb_loop+0x60/0xb0
[  899.824122][T14682]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  899.824142][T14682] RIP: 0033:0x7f3afa58e929
[  899.824160][T14682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  899.824178][T14682] RSP: 002b:00007f3afb4c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  899.824200][T14682] RAX: ffffffffffffffda RBX: 00007f3afa7b5fa0 RCX: 00007f3afa58e929
[  899.824216][T14682] RDX: 00000000000000b1 RSI: 0000200000000b00 RDI: 0000000000000005
[  899.824228][T14682] RBP: 00007f3afb4c7090 R08: 0000000000000000 R09: 0000000000000000
[  899.824240][T14682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  899.824330][T14682] R13: 0000000000000000 R14: 00007f3afa7b5fa0 R15: 00007ffc9a351cf8
[  899.824378][T14682]  </TASK>
[  899.846323][   T30] audit: type=1326 audit(1751935609.253:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14677 comm="syz.3.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4cadf8e929 code=0x7ffc0000
[  900.218435][   T30] audit: type=1326 audit(1751935609.253:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14677 comm="syz.3.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cadf8e929 code=0x7ffc0000
[  900.247344][T14690] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2611'.
[  900.320263][T14694] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2612'.
[  900.349922][   T30] audit: type=1326 audit(1751935609.253:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14677 comm="syz.3.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4cadf8e929 code=0x7ffc0000
[  900.450289][T14697] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  900.826862][T14698] evm: overlay not supported
[  901.226465][   T30] audit: type=1326 audit(1751935609.253:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14677 comm="syz.3.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cadf8e929 code=0x7ffc0000
[  901.281601][   T30] audit: type=1326 audit(1751935609.253:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14677 comm="syz.3.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f4cadf8e929 code=0x7ffc0000
[  901.304148][   T30] audit: type=1326 audit(1751935609.253:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14677 comm="syz.3.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cadf8e929 code=0x7ffc0000
[  901.536692][ T5921] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[  901.539095][T14708] program syz.0.2618 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  901.771992][ T5921] usb 4-1: Using ep0 maxpacket: 32
[  902.261439][ T5921] usb 4-1: unable to get BOS descriptor or descriptor too short
[  902.279762][ T5921] usb 4-1: unable to read config index 0 descriptor/start: -71
[  902.295336][ T5921] usb 4-1: can't read configurations, error -71
[  902.733580][T14736] IPv6: sit2: Disabled Multicast RS
[  902.953112][T14740] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2629'.
[  903.300211][T14756] xt_CT: You must specify a L4 protocol and not use inversions on it
[  904.209290][   T10] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[  904.972275][   T10] usb 1-1: New USB device found, idVendor=05ac, idProduct=0269, bcdDevice= 0.00
[  905.004761][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  905.029227][   T10] usb 1-1: config 0 descriptor??
[  906.055924][   T30] kauditd_printk_skb: 26 callbacks suppressed
[  906.055943][   T30] audit: type=1804 audit(1751935615.389:424): pid=14762 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.3.2635" name="/newroot/537/file0" dev="tmpfs" ino=2915 res=1 errno=0
[  906.280417][   T10] usbhid 1-1:0.0: can't add hid device: -71
[  906.325953][   T10] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  906.764273][   T10] usb 1-1: USB disconnect, device number 40
[  906.842598][T14776] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2638'.
[  908.464064][ T5967] usb 1-1: new high-speed USB device number 41 using dummy_hcd
[  908.645867][ T5967] usb 1-1: Using ep0 maxpacket: 16
[  908.799946][ T5967] usb 1-1: unable to get BOS descriptor or descriptor too short
[  908.881024][ T5967] usb 1-1: New USB device found, idVendor=0c88, idProduct=0021, bcdDevice=19.47
[  908.977393][ T5967] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  909.133970][ T5967] usb 1-1: Product: syz
[  909.203096][ T5967] usb 1-1: Manufacturer: syz
[  909.261341][ T5967] usb 1-1: SerialNumber: syz
[  909.320656][   T10] usb 3-1: new high-speed USB device number 54 using dummy_hcd
[  909.533559][   T10] usb 3-1: Using ep0 maxpacket: 8
[  909.555036][T14810] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2649'.
[  909.557121][   T10] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 130, changing to 11
[  909.665257][   T10] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 8
[  909.684617][ T5967] usb 1-1: palm_os_4_probe - error -71 getting connection info
[  909.737195][   T10] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023
[  909.747132][ T5967] visor 1-1:1.0: Handspring Visor / Palm OS converter detected
[  909.785167][ T5967] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[  909.809431][ T5967] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[  909.828249][   T10] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  909.849060][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  909.854137][ T5967] usb 1-1: USB disconnect, device number 41
[  909.880878][   T10] usb 3-1: Product: К
[  909.936707][ T5967] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[  910.028048][ T5967] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[  910.099162][ T5967] visor 1-1:1.0: device disconnected
[  910.118351][   T10] usb 3-1: Manufacturer: љ
[  910.125815][   T10] usb 3-1: SerialNumber: я
[  911.123115][T14824] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  912.000453][   T10] cdc_ncm 3-1:1.0: bind() failure
[  912.038775][   T10] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  912.068066][   T10] cdc_ncm 3-1:1.1: bind() failure
[  912.107269][   T10] usb 3-1: USB disconnect, device number 54
[  913.458088][T14842] set match dimension is over the limit!
[  915.834591][T14862] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2665'.
[  915.877344][T14864] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  915.892767][T14862] openvswitch: netlink: Flow actions attr not present in new flow.
[  915.994882][T14868] overlayfs: missing 'lowerdir'
[  916.983562][T14880] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  917.156145][   T10] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[  917.361866][   T10] usb 2-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  917.371691][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  917.399089][   T10] usb 2-1: config 0 descriptor??
[  917.411859][   T10] gspca_main: cpia1-2.14.0 probing 0813:0001
[  917.639846][T14882] netlink: 'syz.1.2671': attribute type 1 has an invalid length.
[  917.711475][ T5969] usb 1-1: new full-speed USB device number 42 using dummy_hcd
[  917.743083][T14882] 8021q: adding VLAN 0 to HW filter on device bond2
[  917.805372][T14901] vlan2: entered allmulticast mode
[  917.813254][T14901] veth1: entered allmulticast mode
[  917.879531][T14901] bond2: (slave vlan2): making interface the new active one
[  917.896714][ T5969] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  917.912931][T14901] bond2: (slave vlan2): Enslaving as an active interface with an up link
[  917.918172][ T5969] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[  917.955963][ T5969] usb 1-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  917.992353][ T5969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  918.022782][ T5969] usb 1-1: config 0 descriptor??
[  918.061388][ T5969] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  918.070238][   T10] gspca_cpia1: usb_control_msg 03, error -71
[  918.091025][ T5969] dvb-usb: bulk message failed: -22 (3/0)
[  918.100276][   T10] gspca_cpia1: usb_control_msg 01, error -71
[  918.106699][   T10] cpia1 2-1:0.0: only firmware version 1 is supported (got: 0)
[  918.138014][ T5969] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  918.163380][   T10] usb 2-1: USB disconnect, device number 44
[  918.189998][ T5969] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  918.200970][T14904] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  918.219428][ T5969] usb 1-1: media controller created
[  918.231889][ T5969] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  918.479494][ T5969] dvb-usb: bulk message failed: -22 (6/0)
[  918.504621][ T5969] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  919.297807][ T5969] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input41
[  919.450153][ T5969] dvb-usb: schedule remote query interval to 150 msecs.
[  919.487640][   T10] usb 3-1: new high-speed USB device number 55 using dummy_hcd
[  919.495534][ T5969] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  919.697075][ T5967] dvb-usb: bulk message failed: -22 (1/0)
[  919.801755][ T5967] dvb-usb: error while querying for an remote control event.
[  919.947866][ T5969] usb 1-1: USB disconnect, device number 42
[  919.970424][   T30] audit: type=1326 audit(1751935628.400:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14911 comm="syz.4.2682" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3afa58e929 code=0x0
[  920.027978][T14916] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2682'.
[  920.090556][ T5969] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  920.271024][   T10] usb 3-1: Using ep0 maxpacket: 8
[  920.280239][   T10] usb 3-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  920.293385][   T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  920.337186][T14922] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2684'.
[  920.362226][T14922] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2684'.
[  920.433848][   T10] pvrusb2: Hardware description: Terratec Grabster AV400
[  920.480542][   T10] pvrusb2: **********
[  920.486139][   T10] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  920.525019][T14923] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  920.542688][T14923] syzkaller0: MTU too low for tipc bearer
[  920.546319][   T10] pvrusb2: Important functionality might not be entirely working.
[  920.550834][T14927] overlayfs: maximum fs stacking depth exceeded
[  920.568148][   T10] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  920.583988][   T10] pvrusb2: **********
[  920.592774][T14910] netlink: 'syz.2.2678': attribute type 30 has an invalid length.
[  920.599814][T14923] tipc: Disabling bearer <eth:syzkaller0>
[  920.782234][ T5943] usb 4-1: new full-speed USB device number 47 using dummy_hcd
[  920.872058][T14927] xt_CT: No such helper "snmp_trap"
[  921.055747][T14936] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  921.069507][T14936] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  921.866770][ T2341] pvrusb2: Invalid write control endpoint
[  921.886781][   T10] usb 3-1: USB disconnect, device number 55
[  921.957961][T14928] vlan0: entered promiscuous mode
[  922.999599][ T5943] usb 4-1: unable to get BOS descriptor or descriptor too short
[  923.101169][ T5943] usb 4-1: no configurations
[  923.105878][ T5943] usb 4-1: can't read configurations, error -22
[  923.278732][ T2341] pvrusb2: Invalid write control endpoint
[  923.286082][ T2341] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  923.296722][ T2341] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  923.332466][ T2341] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  923.364109][ T2341] pvrusb2: Device being rendered inoperable
[  923.428881][T14954] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2691'.
[  924.141864][ T2341] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  924.154835][ T2341] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  924.182782][ T2341] pvrusb2: Attached sub-driver cx25840
[  924.188645][ T2341] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  924.201140][ T2341] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  924.501753][T14957] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  925.324431][T14969] BFS-fs: bfs_fill_super(): No BFS filesystem on nullb0 (magic=00000000)
[  926.445337][T14962] netlink: 112 bytes leftover after parsing attributes in process `syz.0.2693'.
[  929.323640][ T5967] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[  929.546458][ T5967] usb 2-1: device descriptor read/64, error -71
[  929.909594][ T5967] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[  930.047180][T14993] netlink: 152 bytes leftover after parsing attributes in process `syz.3.2706'.
[  930.088717][T14993] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  930.112555][ T5967] usb 2-1: device descriptor read/64, error -71
[  930.245714][T14997] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  930.397482][ T5967] usb usb2-port1: attempt power cycle
[  930.554276][T15004] netlink: 'syz.0.2707': attribute type 4 has an invalid length.
[  931.246496][   T10] usb 5-1: new high-speed USB device number 58 using dummy_hcd
[  931.301368][ T5967] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[  931.303661][T15005] netlink: 112 bytes leftover after parsing attributes in process `syz.2.2709'.
[  931.378241][ T5967] usb 2-1: device descriptor read/8, error -71
[  931.706895][ T5967] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[  931.750317][   T10] usb 5-1: Using ep0 maxpacket: 32
[  931.789162][ T5967] usb 2-1: device descriptor read/8, error -71
[  931.903457][   T10] usb 5-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  931.915261][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  931.931733][T15007] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  931.944505][   T10] usb 5-1: config 0 descriptor??
[  931.951753][ T5967] usb usb2-port1: unable to enumerate USB device
[  931.976316][   T10] gspca_main: nw80x-2.14.0 probing 055f:d001
[  932.460221][   T10] gspca_nw80x: reg_r err -32
[  932.473497][   T10] nw80x 5-1:0.0: probe with driver nw80x failed with error -32
[  932.907516][T15019] overlayfs: failed to resolve 'smackfsdef=&:': -2
[  933.332059][T15024] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  933.376608][T15024] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  933.460161][T15027] sctp: [Deprecated]: syz.3.2719 (pid 15027) Use of struct sctp_assoc_value in delayed_ack socket option.
[  933.460161][T15027] Use struct sctp_sack_info instead
[  933.485023][T15024] pim6reg: entered allmulticast mode
[  933.701846][ T5969] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[  933.873403][T15043] 9pnet_fd: Insufficient options for proto=fd
[  933.886624][ T5969] usb 2-1: Using ep0 maxpacket: 16
[  933.895384][ T5969] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  934.619192][ T5969] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  934.629066][ T5969] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  934.642872][ T5969] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  934.666710][ T5969] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  934.693186][ T5969] usb 2-1: Product: syz
[  934.704931][ T5969] usb 2-1: Manufacturer: syz
[  934.734351][ T5969] usb 2-1: SerialNumber: syz
[  935.019927][T15060] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2730'.
[  935.113274][T15062] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  936.124031][ T5969] usb 2-1: 2:1 : format type 0 is detected, processed as PCM
[  936.186796][ T5969] usb 2-1: failed to enable PITCH for EP 0x82
[  936.323785][T15062] netlink: 112 bytes leftover after parsing attributes in process `syz.4.2729'.
[  936.340347][ T5969] usb 2-1: 2:1: cannot set freq 9338507 to ep 0x82
[  936.994743][ T2988] Bluetooth: hci5: Frame reassembly failed (-84)
[  937.137398][T15076] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2732'.
[  937.446875][ T5969] usb 2-1: USB disconnect, device number 49
[  938.348683][T15088] xt_CT: You must specify a L4 protocol and not use inversions on it
[  939.135546][ T5849] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  939.135570][   T51] Bluetooth: hci5: command 0x1003 tx timeout
[  939.767830][ T5852] udevd[5852]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  941.073172][T15116] PKCS7: Unknown OID: [4] 5.25.43183.11314.97.496.3.846527319083.2007.15776
[  941.082392][T15116] PKCS7: Only support pkcs7_signedData type
[  943.001865][T15134] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2751'.
[  943.020472][T15134] macvtap2: entered promiscuous mode
[  943.026370][T15134] macvtap2: entered allmulticast mode
[  943.038919][T15134] 8021q: adding VLAN 0 to HW filter on device macvtap2
[  944.296602][T15148] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  944.617262][T15152] netlink: 112 bytes leftover after parsing attributes in process `syz.1.2756'.
[  945.383958][   T30] audit: type=1326 audit(1751935653.181:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15155 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3afa58e929 code=0x7ffc0000
[  945.433203][   T30] audit: type=1326 audit(1751935653.209:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15155 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3afa58e929 code=0x7ffc0000
[  945.488865][   T30] audit: type=1326 audit(1751935653.228:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15155 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f3afa58e929 code=0x7ffc0000
[  945.517638][   T10] usb 4-1: new high-speed USB device number 49 using dummy_hcd
[  945.554604][   T30] audit: type=1326 audit(1751935653.228:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15155 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3afa58e929 code=0x7ffc0000
[  945.594008][   T30] audit: type=1326 audit(1751935653.228:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15155 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3afa58e929 code=0x7ffc0000
[  945.622889][   T30] audit: type=1326 audit(1751935653.237:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15155 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3afa58e929 code=0x7ffc0000
[  945.652665][   T30] audit: type=1326 audit(1751935653.237:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15155 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3afa58e929 code=0x7ffc0000
[  945.710262][   T10] usb 4-1: Using ep0 maxpacket: 16
[  945.728821][   T30] audit: type=1326 audit(1751935653.237:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15155 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3afa58e929 code=0x7ffc0000
[  946.561648][   T30] audit: type=1326 audit(1751935653.237:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15155 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3afa58e929 code=0x7ffc0000
[  946.600315][   T30] audit: type=1326 audit(1751935653.237:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15155 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f3afa58e929 code=0x7ffc0000
[  946.623538][   T10] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  946.651949][   T10] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  946.665893][   T10] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[  946.691919][   T10] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  946.726958][   T10] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  946.747092][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  946.755392][   T10] usb 4-1: SerialNumber: syz
[  946.780007][   T10] cdc_acm 4-1:1.0: probe with driver cdc_acm failed with error -12
[  946.887931][T15171] FAULT_INJECTION: forcing a failure.
[  946.887931][T15171] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  946.907434][T15171] CPU: 0 UID: 0 PID: 15171 Comm: syz.1.2763 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[  946.907465][T15171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  946.907485][T15171] Call Trace:
[  946.907493][T15171]  <TASK>
[  946.907502][T15171]  dump_stack_lvl+0x189/0x250
[  946.907532][T15171]  ? __pfx____ratelimit+0x10/0x10
[  946.907570][T15171]  ? __pfx_dump_stack_lvl+0x10/0x10
[  946.907593][T15171]  ? __pfx__printk+0x10/0x10
[  946.907634][T15171]  should_fail_ex+0x414/0x560
[  946.907670][T15171]  _copy_from_user+0x2d/0xb0
[  946.907694][T15171]  memdup_user_nul+0x66/0x110
[  946.907719][T15171]  smk_write_rules_list+0xc5/0x370
[  946.907751][T15171]  ? __pfx_smk_write_change_rule+0x10/0x10
[  946.907786][T15171]  vfs_write+0x27b/0xa90
[  946.907922][T15171]  ? __pfx_vfs_write+0x10/0x10
[  946.907972][T15171]  ? __fget_files+0x2a/0x420
[  946.907998][T15171]  ? __fget_files+0x3a0/0x420
[  946.908014][T15171]  ? __fget_files+0x2a/0x420
[  946.908044][T15171]  ksys_write+0x145/0x250
[  946.908075][T15171]  ? __pfx_ksys_write+0x10/0x10
[  946.908100][T15171]  ? rcu_is_watching+0x15/0xb0
[  946.908130][T15171]  ? do_syscall_64+0xbe/0x3b0
[  946.908155][T15171]  do_syscall_64+0xfa/0x3b0
[  946.908173][T15171]  ? lockdep_hardirqs_on+0x9c/0x150
[  946.908202][T15171]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  946.908223][T15171]  ? clear_bhb_loop+0x60/0xb0
[  946.908248][T15171]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  946.908281][T15171] RIP: 0033:0x7f0f26f8e929
[  946.908303][T15171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  946.908321][T15171] RSP: 002b:00007f0f27d1a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  946.908350][T15171] RAX: ffffffffffffffda RBX: 00007f0f271b5fa0 RCX: 00007f0f26f8e929
[  946.908364][T15171] RDX: 000000000000001d RSI: 0000200000000880 RDI: 0000000000000003
[  946.908377][T15171] RBP: 00007f0f27d1a090 R08: 0000000000000000 R09: 0000000000000000
[  946.908389][T15171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  946.908401][T15171] R13: 0000000000000000 R14: 00007f0f271b5fa0 R15: 00007ffec8f9d098
[  946.908435][T15171]  </TASK>
[  947.159001][ T5943] usb 1-1: new full-speed USB device number 43 using dummy_hcd
[  947.253176][T15176] fuse: Unknown parameter 'group_i00000000000000000000'
[  947.302238][T15177] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  947.339781][T15177] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  947.369971][T15165] vlan2: entered promiscuous mode
[  947.413144][T15183] fuse: Bad value for 'fd'
[  947.422386][   T10] usb 4-1: USB disconnect, device number 49
[  947.504268][T15187] ALSA: mixer_oss: invalid OSS volume 'u'
[  947.815020][ T5943] usb 1-1: unable to get BOS descriptor or descriptor too short
[  947.828358][ T5943] usb 1-1: no configurations
[  947.833014][ T5943] usb 1-1: can't read configurations, error -22
[  948.217424][T15191] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  948.228053][T15191] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  948.298790][T15194] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2769'.
[  948.401329][T15194] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  949.658741][T15207] FAULT_INJECTION: forcing a failure.
[  949.658741][T15207] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  949.701119][T15215] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2774'.
[  949.717289][T15207] CPU: 0 UID: 0 PID: 15207 Comm: syz.4.2773 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[  949.717324][T15207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  949.717336][T15207] Call Trace:
[  949.717345][T15207]  <TASK>
[  949.717365][T15207]  dump_stack_lvl+0x189/0x250
[  949.717396][T15207]  ? __pfx____ratelimit+0x10/0x10
[  949.717429][T15207]  ? __pfx_dump_stack_lvl+0x10/0x10
[  949.717453][T15207]  ? __pfx__printk+0x10/0x10
[  949.717486][T15207]  ? __might_fault+0xb0/0x130
[  949.717529][T15207]  should_fail_ex+0x414/0x560
[  949.717565][T15207]  _copy_from_user+0x2d/0xb0
[  949.717590][T15207]  io_submit_one+0xc2/0x1310
[  949.717628][T15207]  ? __pfx_io_submit_one+0x10/0x10
[  949.717649][T15207]  ? __might_fault+0xb0/0x130
[  949.717692][T15207]  ? __might_fault+0xb0/0x130
[  949.717725][T15207]  __se_sys_io_submit+0x185/0x2f0
[  949.717760][T15207]  ? __pfx___se_sys_io_submit+0x10/0x10
[  949.717787][T15207]  ? ksys_write+0x22a/0x250
[  949.717830][T15207]  ? do_syscall_64+0xbe/0x3b0
[  949.717855][T15207]  do_syscall_64+0xfa/0x3b0
[  949.717872][T15207]  ? lockdep_hardirqs_on+0x9c/0x150
[  949.717907][T15207]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  949.717929][T15207]  ? clear_bhb_loop+0x60/0xb0
[  949.717956][T15207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  949.717976][T15207] RIP: 0033:0x7f3afa58e929
[  949.717995][T15207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  949.718014][T15207] RSP: 002b:00007f3afb4c7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  949.718037][T15207] RAX: ffffffffffffffda RBX: 00007f3afa7b5fa0 RCX: 00007f3afa58e929
[  949.718053][T15207] RDX: 0000200000000780 RSI: 0000000000000002 RDI: 00007f3afb47e000
[  949.718066][T15207] RBP: 00007f3afb4c7090 R08: 0000000000000000 R09: 0000000000000000
[  949.718078][T15207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  949.718090][T15207] R13: 0000000000000000 R14: 00007f3afa7b5fa0 R15: 00007ffc9a351cf8
[  949.718125][T15207]  </TASK>
[  950.105427][T15218] FAULT_INJECTION: forcing a failure.
[  950.105427][T15218] name failslab, interval 1, probability 0, space 0, times 0
[  950.128736][T15218] CPU: 0 UID: 0 PID: 15218 Comm: syz.1.2776 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[  950.128767][T15218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  950.128780][T15218] Call Trace:
[  950.128788][T15218]  <TASK>
[  950.128807][T15218]  dump_stack_lvl+0x189/0x250
[  950.128838][T15218]  ? __pfx____ratelimit+0x10/0x10
[  950.128869][T15218]  ? __pfx_dump_stack_lvl+0x10/0x10
[  950.128893][T15218]  ? __pfx__printk+0x10/0x10
[  950.128926][T15218]  ? __pfx___might_resched+0x10/0x10
[  950.128954][T15218]  should_fail_ex+0x414/0x560
[  950.128989][T15218]  should_failslab+0xa8/0x100
[  950.129022][T15218]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  950.129052][T15218]  ? __alloc_skb+0x112/0x2d0
[  950.129081][T15218]  __alloc_skb+0x112/0x2d0
[  950.129108][T15218]  netlink_sendmsg+0x5c6/0xb30
[  950.129145][T15218]  ? __pfx_netlink_sendmsg+0x10/0x10
[  950.129179][T15218]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  950.129208][T15218]  ? __pfx_netlink_sendmsg+0x10/0x10
[  950.129239][T15218]  __sock_sendmsg+0x21c/0x270
[  950.129274][T15218]  ____sys_sendmsg+0x505/0x830
[  950.129306][T15218]  ? __pfx_____sys_sendmsg+0x10/0x10
[  950.129343][T15218]  ? import_iovec+0x74/0xa0
[  950.129371][T15218]  ___sys_sendmsg+0x21f/0x2a0
[  950.129399][T15218]  ? __pfx____sys_sendmsg+0x10/0x10
[  950.129467][T15218]  ? __fget_files+0x2a/0x420
[  950.129485][T15218]  ? __fget_files+0x3a0/0x420
[  950.129516][T15218]  __x64_sys_sendmsg+0x19b/0x260
[  950.129553][T15218]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  950.129591][T15218]  ? __pfx_ksys_write+0x10/0x10
[  950.129616][T15218]  ? rcu_is_watching+0x15/0xb0
[  950.129646][T15218]  ? do_syscall_64+0xbe/0x3b0
[  950.129670][T15218]  do_syscall_64+0xfa/0x3b0
[  950.129687][T15218]  ? lockdep_hardirqs_on+0x9c/0x150
[  950.129717][T15218]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  950.129737][T15218]  ? clear_bhb_loop+0x60/0xb0
[  950.129762][T15218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  950.129781][T15218] RIP: 0033:0x7f0f26f8e929
[  950.129801][T15218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  950.129818][T15218] RSP: 002b:00007f0f27d1a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  950.129840][T15218] RAX: ffffffffffffffda RBX: 00007f0f271b5fa0 RCX: 00007f0f26f8e929
[  950.129856][T15218] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  950.129868][T15218] RBP: 00007f0f27d1a090 R08: 0000000000000000 R09: 0000000000000000
[  950.129881][T15218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  950.129893][T15218] R13: 0000000000000000 R14: 00007f0f271b5fa0 R15: 00007ffec8f9d098
[  950.129927][T15218]  </TASK>
[  950.381099][T15220] fuse: Unknown parameter 'group_id00000000000000000000'
[  950.626922][T15228] netlink: 136 bytes leftover after parsing attributes in process `syz.3.2779'.
[  953.676969][T15249] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2787'.
[  953.720162][T15249] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2787'.
[  954.072472][T15253] PKCS7: Unknown OID: [4] 5.25.43183.11314.97.496.3.846527319083.2007.15776
[  954.084547][T15253] PKCS7: Only support pkcs7_signedData type
[  954.744683][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  954.840605][T10060] usb 1-1: new high-speed USB device number 45 using dummy_hcd
[  955.001756][T10060] usb 1-1: device descriptor read/64, error -71
[  955.082440][T15260] fuse: Unknown parameter 'group_id00000000000000000000'
[  955.494986][T10060] usb 1-1: new high-speed USB device number 46 using dummy_hcd
[  955.674339][T10060] usb 1-1: device descriptor read/64, error -71
[  955.838963][T10060] usb usb1-port1: attempt power cycle
[  956.315671][T10060] usb 1-1: new high-speed USB device number 47 using dummy_hcd
[  956.625364][T10060] usb 1-1: device not accepting address 47, error -71
[  957.063087][T10060] usb 1-1: new high-speed USB device number 48 using dummy_hcd
[  957.119639][T10060] usb 1-1: Using ep0 maxpacket: 16
[  957.152921][T10060] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  957.190222][T10060] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  957.220261][T10060] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  957.239711][T10060] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  957.251421][T10060] usb 1-1: Product: syz
[  957.259257][T15295] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2795'.
[  957.260315][T10060] usb 1-1: Manufacturer: syz
[  957.275906][T10060] usb 1-1: SerialNumber: syz
[  957.303172][T10060] usb 1-1: config 0 descriptor??
[  957.362209][T10060] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  957.396947][T10060] em28xx 1-1:0.0: Audio interface 0 found (Vendor Class)
[  957.885026][T10060] em28xx 1-1:0.0: unknown em28xx chip ID (0)
[  957.910278][T10060] em28xx 1-1:0.0: Config register raw data: 0xfffffffb
[  957.970414][T10060] em28xx 1-1:0.0: AC97 chip type couldn't be determined
[  958.001939][T10060] em28xx 1-1:0.0: No AC97 audio processor
[  958.059190][T10060] usb 1-1: USB disconnect, device number 48
[  958.910124][T15314] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  959.762368][T10060] em28xx 1-1:0.0: Disconnecting em28xx
[  959.787856][T10060] em28xx 1-1:0.0: Freeing device
[  961.833547][T15344] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2814'.
[  961.847529][T15344] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2814'.
[  962.435165][T15346] 9pnet_virtio: no channels available for device syz
[  962.582251][T15354] netlink: 'syz.0.2816': attribute type 1 has an invalid length.
[  962.759387][T15350] bond1: (slave gretap1): making interface the new active one
[  962.768940][T15350] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  962.872780][T15361] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2819'.
[  963.066947][T15363] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2820'.
[  963.141030][   T30] kauditd_printk_skb: 27 callbacks suppressed
[  963.141051][   T30] audit: type=1804 audit(1751935669.794:463): pid=15365 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.0.2821" name="/newroot/569/file0" dev="tmpfs" ino=3086 res=1 errno=0
[  963.303484][T15369] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2822'.
[  963.401600][   T12] Bluetooth: hci5: Frame reassembly failed (-84)
[  965.261109][T15385] xt_recent: Unsupported userspace flags (000000de)
[  965.291356][T15387] FAULT_INJECTION: forcing a failure.
[  965.291356][T15387] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  965.334443][T15387] CPU: 1 UID: 0 PID: 15387 Comm: syz.0.2829 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[  965.334475][T15387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  965.334488][T15387] Call Trace:
[  965.334497][T15387]  <TASK>
[  965.334506][T15387]  dump_stack_lvl+0x189/0x250
[  965.334536][T15387]  ? __pfx____ratelimit+0x10/0x10
[  965.334569][T15387]  ? __pfx_dump_stack_lvl+0x10/0x10
[  965.334591][T15387]  ? __pfx__printk+0x10/0x10
[  965.334632][T15387]  should_fail_ex+0x414/0x560
[  965.334667][T15387]  _copy_to_user+0x31/0xb0
[  965.334693][T15387]  bpf_test_finish+0x24e/0x700
[  965.334728][T15387]  ? __pfx_bpf_test_finish+0x10/0x10
[  965.334759][T15387]  ? bpf_test_init+0x133/0x170
[  965.334784][T15387]  bpf_prog_test_run_xdp+0x79a/0x1000
[  965.334828][T15387]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  965.334859][T15387]  ? __fget_files+0x2a/0x420
[  965.334884][T15387]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  965.334910][T15387]  bpf_prog_test_run+0x2c4/0x340
[  965.334947][T15387]  __sys_bpf+0x4a4/0x860
[  965.334980][T15387]  ? __pfx___sys_bpf+0x10/0x10
[  965.335023][T15387]  ? ksys_write+0x22a/0x250
[  965.335055][T15387]  ? __pfx_ksys_write+0x10/0x10
[  965.335080][T15387]  ? rcu_is_watching+0x15/0xb0
[  965.335112][T15387]  __x64_sys_bpf+0x7c/0x90
[  965.335141][T15387]  do_syscall_64+0xfa/0x3b0
[  965.335160][T15387]  ? lockdep_hardirqs_on+0x9c/0x150
[  965.335190][T15387]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  965.335209][T15387]  ? clear_bhb_loop+0x60/0xb0
[  965.335234][T15387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  965.335253][T15387] RIP: 0033:0x7f4d4218e929
[  965.335271][T15387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  965.335288][T15387] RSP: 002b:00007f4d42f4e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  965.335310][T15387] RAX: ffffffffffffffda RBX: 00007f4d423b5fa0 RCX: 00007f4d4218e929
[  965.335324][T15387] RDX: 0000000000000050 RSI: 0000200000000280 RDI: 000000000000000a
[  965.335337][T15387] RBP: 00007f4d42f4e090 R08: 0000000000000000 R09: 0000000000000000
[  965.335350][T15387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  965.335375][T15387] R13: 0000000000000000 R14: 00007f4d423b5fa0 R15: 00007fff3d9ebdf8
[  965.335406][T15387]  </TASK>
[  965.591001][ T5849] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  966.015250][T15403] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2831'.
[  966.133577][T15403] vxcan5: entered promiscuous mode
[  966.215331][T15401] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  970.112420][T15442] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  970.146944][T15444] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2847'.
[  970.179145][T15444] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2847'.
[  970.240961][T15447] syz.4.2848: attempt to access beyond end of device
[  970.240961][T15447] nbd4: rw=0, sector=64, nr_sectors = 1 limit=0
[  970.288971][T15447] syz.4.2848: attempt to access beyond end of device
[  970.288971][T15447] nbd4: rw=0, sector=256, nr_sectors = 1 limit=0
[  970.311473][T15447] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  970.328295][T15447] syz.4.2848: attempt to access beyond end of device
[  970.328295][T15447] nbd4: rw=0, sector=512, nr_sectors = 1 limit=0
[  970.354066][T15447] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  970.376940][T15447] syz.4.2848: attempt to access beyond end of device
[  970.376940][T15447] nbd4: rw=0, sector=64, nr_sectors = 2 limit=0
[  970.406999][T15447] syz.4.2848: attempt to access beyond end of device
[  970.406999][T15447] nbd4: rw=0, sector=512, nr_sectors = 2 limit=0
[  970.428217][T15447] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  970.445853][T15447] syz.4.2848: attempt to access beyond end of device
[  970.445853][T15447] nbd4: rw=0, sector=1024, nr_sectors = 2 limit=0
[  970.469078][T15447] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  970.494971][T15447] syz.4.2848: attempt to access beyond end of device
[  970.494971][T15447] nbd4: rw=0, sector=64, nr_sectors = 4 limit=0
[  970.583828][T15447] syz.4.2848: attempt to access beyond end of device
[  970.583828][T15447] nbd4: rw=0, sector=1024, nr_sectors = 4 limit=0
[  971.806010][T15447] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  972.004717][T15447] syz.4.2848: attempt to access beyond end of device
[  972.004717][T15447] nbd4: rw=0, sector=2048, nr_sectors = 4 limit=0
[  972.340458][   T30] audit: type=1326 audit(1751935678.371:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.4.2848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3afa58e929 code=0x7fc00000
[  972.405582][T15447] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  972.453621][   T30] audit: type=1326 audit(1751935678.371:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.4.2848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3afa58e929 code=0x7fc00000
[  972.497064][   T30] audit: type=1326 audit(1751935678.371:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.4.2848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3afa58e929 code=0x7fc00000
[  973.310017][   T30] audit: type=1326 audit(1751935678.371:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.4.2848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3afa58e929 code=0x7fc00000
[  973.341254][   T30] audit: type=1326 audit(1751935678.371:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.4.2848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3afa58e929 code=0x7fc00000
[  973.374219][   T30] audit: type=1326 audit(1751935678.371:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.4.2848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3afa58e929 code=0x7fc00000
[  973.406262][   T30] audit: type=1326 audit(1751935678.371:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.4.2848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3afa58e929 code=0x7fc00000
[  973.428475][T15447] syz.4.2848: attempt to access beyond end of device
[  973.428475][T15447] nbd4: rw=0, sector=64, nr_sectors = 8 limit=0
[  973.509294][T15447] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  973.537753][   T30] audit: type=1326 audit(1751935678.371:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.4.2848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3afa58e929 code=0x7fc00000
[  973.556932][T15447] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  973.659462][   T30] audit: type=1326 audit(1751935678.371:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.4.2848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3afa58e929 code=0x7fc00000
[  973.660648][T15447] UDF-fs: warning (device nbd4): udf_fill_super: No partition found (1)
[  973.754685][T15472] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2858'.
[  973.809898][T15445] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  973.882174][T15472] dummy0: entered promiscuous mode
[  973.888725][   T30] audit: type=1326 audit(1751935678.371:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.4.2848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3afa58e929 code=0x7fc00000
[  973.922842][T15472] macvtap3: entered promiscuous mode
[  973.925786][T15445] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  973.932157][T15472] macvtap3: entered allmulticast mode
[  973.982615][T15472] dummy0: entered allmulticast mode
[  974.012176][T15445] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  974.118435][T15478] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2861'.
[  974.126312][T15445] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  974.212741][T15445] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  974.284312][T15445] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  974.333747][T15445] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  974.446000][T15445] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  974.565790][T15445] UDF-fs: warning (device nbd4): udf_fill_super: No partition found (1)
[  977.226763][T15499] trusted_key: encrypted_key: insufficient parameters specified
[  977.319548][T15499] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2865'.
[  978.549025][T15509] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  978.789873][T15511] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2872'.
[  978.838342][T15511] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  978.850609][T15514] fuse: Bad value for 'fd'
[  978.951975][T15512] netlink: 112 bytes leftover after parsing attributes in process `syz.4.2871'.
[  980.587614][T15527] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  984.144566][T15553] fuse: Bad value for 'fd'
[  984.925690][T15567] netlink: 136 bytes leftover after parsing attributes in process `syz.1.2890'.
[  985.381731][T15583] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  985.695939][T15590] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2899'.
[  985.700773][T15583] netlink: 112 bytes leftover after parsing attributes in process `syz.2.2898'.
[  986.064553][T15597] fuse: Bad value for 'fd'
[  987.188601][T15603] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2905'.
[  987.302541][T15603] macvtap2: entered promiscuous mode
[  987.343777][T15603] macvtap2: entered allmulticast mode
[  987.382454][T15603] 8021q: adding VLAN 0 to HW filter on device macvtap2
[  987.715593][T15612] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  989.483765][T15631] fuse: Bad value for 'fd'
[  989.524551][T15620] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  990.748870][   T13] Bluetooth: hci5: Frame reassembly failed (-84)
[  990.775083][T15638] loop2: detected capacity change from 0 to 7
[  990.798870][T15638] Dev loop2: unable to read RDB block 7
[  990.800841][T15642] netlink: 180 bytes leftover after parsing attributes in process `syz.1.2918'.
[  990.817775][T15638]  loop2: unable to read partition table
[  990.823876][T15634] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2914'.
[  990.835760][T15638] loop2: partition table beyond EOD, truncated
[  990.850056][T15638] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  991.844631][T15650] IPv6: sit1: Disabled Multicast RS
[  992.000152][T15653] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  992.694922][T15656] netlink: 112 bytes leftover after parsing attributes in process `syz.0.2922'.
[  993.049720][ T5849] Bluetooth: hci5: command 0x1003 tx timeout
[  993.098396][   T51] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  993.669877][T15662] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2924'.
[  994.756394][T15669] misc userio: Invalid payload size
[  994.766300][T15669] misc userio: Invalid payload size
[  994.780972][T15669] misc userio: The device must be registered before sending interrupts
[  996.696090][T15674] fuse: Bad value for 'fd'
[  996.755261][T15675] xt_nfacct: accounting object `syz1' does not exists
[  998.311416][T15684] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  998.564806][ T5969] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[  998.878678][T15689] netlink: 180 bytes leftover after parsing attributes in process `syz.3.2931'.
[  999.013794][   T10] usb 1-1: new high-speed USB device number 49 using dummy_hcd
[  999.159921][ T5969] usb 2-1: config 0 has an invalid interface number: 171 but max is 0
[  999.182255][T15699] FAULT_INJECTION: forcing a failure.
[  999.182255][T15699] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  999.216836][ T5969] usb 2-1: config 0 has no interface number 0
[  999.225287][ T5969] usb 2-1: config 0 interface 171 has no altsetting 0
[  999.238139][   T10] usb 1-1: Using ep0 maxpacket: 8
[  999.245238][T15699] CPU: 1 UID: 0 PID: 15699 Comm: syz.4.2934 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[  999.245279][T15699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  999.245295][T15699] Call Trace:
[  999.245306][T15699]  <TASK>
[  999.245319][T15699]  dump_stack_lvl+0x189/0x250
[  999.245365][T15699]  ? __pfx____ratelimit+0x10/0x10
[  999.245403][T15699]  ? __pfx_dump_stack_lvl+0x10/0x10
[  999.245429][T15699]  ? __pfx__printk+0x10/0x10
[  999.245478][T15699]  should_fail_ex+0x414/0x560
[  999.245521][T15699]  _copy_from_user+0x2d/0xb0
[  999.245550][T15699]  memdup_user_nul+0x66/0x110
[  999.245579][T15699]  smk_write_rules_list+0xc5/0x370
[  999.245616][T15699]  ? __pfx_smk_write_change_rule+0x10/0x10
[  999.245657][T15699]  vfs_write+0x27b/0xa90
[  999.245703][T15699]  ? __pfx_vfs_write+0x10/0x10
[  999.245737][T15699]  ? __fget_files+0x2a/0x420
[  999.245767][T15699]  ? __fget_files+0x3a0/0x420
[  999.245789][T15699]  ? __fget_files+0x2a/0x420
[  999.245823][T15699]  ksys_write+0x145/0x250
[  999.245860][T15699]  ? __pfx_ksys_write+0x10/0x10
[  999.245889][T15699]  ? rcu_is_watching+0x15/0xb0
[  999.245924][T15699]  ? do_syscall_64+0xbe/0x3b0
[  999.245953][T15699]  do_syscall_64+0xfa/0x3b0
[  999.245973][T15699]  ? lockdep_hardirqs_on+0x9c/0x150
[  999.246009][T15699]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  999.246032][T15699]  ? clear_bhb_loop+0x60/0xb0
[  999.246063][T15699]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  999.246087][T15699] RIP: 0033:0x7f3afa58e929
[  999.246115][T15699] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  999.246136][T15699] RSP: 002b:00007f3afb4c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  999.246164][T15699] RAX: ffffffffffffffda RBX: 00007f3afa7b5fa0 RCX: 00007f3afa58e929
[  999.246183][T15699] RDX: 000000000000001d RSI: 0000200000000880 RDI: 0000000000000003
[  999.246198][T15699] RBP: 00007f3afb4c7090 R08: 0000000000000000 R09: 0000000000000000
[  999.246214][T15699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  999.246228][T15699] R13: 0000000000000000 R14: 00007f3afa7b5fa0 R15: 00007ffc9a351cf8
[  999.246270][T15699]  </TASK>
[  999.568153][   T10] usb 1-1: config 168 has an invalid descriptor of length 0, skipping remainder of the config
[  999.574996][ T5969] usb 2-1: New USB device found, idVendor=10d6, idProduct=2200, bcdDevice= 1.00
[  999.596728][   T10] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  999.613579][ T5969] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  999.655311][ T5969] usb 2-1: Product: syz
[  999.662755][   T10] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  999.698975][ T5969] usb 2-1: Manufacturer: syz
[  999.705091][ T5969] usb 2-1: SerialNumber: syz
[  999.708347][   T10] usb 1-1: config 168 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  999.736638][ T5969] usb 2-1: config 0 descriptor??
[  999.758671][ T5969] usb-storage 2-1:0.171: USB Mass Storage device detected
[  999.841115][   T10] usb 1-1: config 168 has an invalid descriptor of length 0, skipping remainder of the config
[  999.890286][   T10] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  999.921095][   T10] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  999.969226][   T10] usb 1-1: config 168 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  999.983740][ T5969] usb 2-1: USB disconnect, device number 50
[ 1000.045356][   T10] usb 1-1: config 168 has an invalid descriptor of length 0, skipping remainder of the config
[ 1000.072127][T10060] usb 4-1: new high-speed USB device number 50 using dummy_hcd
[ 1000.088092][   T10] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[ 1000.125278][   T10] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1000.157354][   T10] usb 1-1: config 168 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1000.194617][   T10] usb 1-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1000.217186][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1000.360551][T10060] usb 4-1: Using ep0 maxpacket: 8
[ 1000.386653][T10060] usb 4-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[ 1000.406905][   T10] usb 1-1: Product: syz
[ 1000.417200][   T10] usb 1-1: Manufacturer: syz
[ 1000.424995][T10060] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1000.441169][   T10] usb 1-1: SerialNumber: syz
[ 1000.473904][   T10] usb 1-1: can't set config #168, error -71
[ 1000.505718][T10060] pvrusb2: Hardware description: Terratec Grabster AV400
[ 1000.527005][   T10] usb 1-1: USB disconnect, device number 49
[ 1000.557804][T10060] pvrusb2: **********
[ 1000.601047][T10060] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[ 1000.664054][T10060] pvrusb2: Important functionality might not be entirely working.
[ 1000.709333][T15715] fuse: Invalid rootmode
[ 1000.729748][T10060] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[ 1000.823704][T10060] pvrusb2: **********
[ 1000.856027][ T2341] pvrusb2: Invalid write control endpoint
[ 1001.919179][ T5849] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1001.935560][ T5849] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1001.946461][ T5849] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1001.960745][ T5849] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1002.017739][ T5849] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1002.080707][   T51] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1002.097004][ T2341] pvrusb2: Invalid write control endpoint
[ 1002.106450][   T51] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1002.129586][   T51] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1002.363190][   T51] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1002.374056][ T2341] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[ 1002.385721][ T2341] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[ 1002.398146][ T2341] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[ 1002.411853][ T2341] pvrusb2: Device being rendered inoperable
[ 1002.420044][   T51] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1002.430568][ T2341] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[ 1002.439654][ T2341] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[ 1002.452384][ T2341] pvrusb2: Attached sub-driver cx25840
[ 1002.460580][ T2341] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[ 1002.504295][ T2341] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[ 1002.812502][T15737] netlink: 180 bytes leftover after parsing attributes in process `syz.0.2946'.
[ 1002.847523][T13867] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1002.908783][T15723] lo speed is unknown, defaulting to 1000
[ 1003.034472][T10060] usb 4-1: USB disconnect, device number 50
[ 1003.237391][T13867] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1004.411002][T13867] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1004.647467][ T5849] Bluetooth: hci3: command tx timeout
[ 1005.031957][T15757] netlink: 788 bytes leftover after parsing attributes in process `syz.0.2952'.
[ 1005.829277][T13867] bond0: (slave netdevsim0): Releasing backup interface
[ 1005.866562][T13867] netdevsim netdevsim2 netdevsim0 (unregistering): left allmulticast mode
[ 1005.903461][T13867] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1006.489887][T15778] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2960'.
[ 1006.592921][T15783] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1006.609124][T13867] bridge_slave_1: left allmulticast mode
[ 1006.609515][T15783] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1006.656449][T13867] bridge_slave_1: left promiscuous mode
[ 1006.672988][T13867] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1006.928331][ T5849] Bluetooth: hci3: command tx timeout
[ 1006.951520][T15789] netlink: 408 bytes leftover after parsing attributes in process `syz.3.2962'.
[ 1006.965374][T15789] netlink: 104 bytes leftover after parsing attributes in process `syz.3.2962'.
[ 1007.018264][T13867] bridge_slave_0: left allmulticast mode
[ 1007.031497][T13867] bridge_slave_0: left promiscuous mode
[ 1007.048258][T13867] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1007.666212][T15800] PKCS7: Unknown OID: [4] 5.25.43183.11314.97.496.3.846527319083.2007.15776
[ 1007.678560][T15800] PKCS7: Only support pkcs7_signedData type
[ 1008.801599][T15814] netlink: 'syz.1.2968': attribute type 10 has an invalid length.
[ 1009.105491][ T5849] Bluetooth: hci3: command tx timeout
[ 1009.313260][T13867] erspan0 (unregistering): left promiscuous mode
[ 1010.264305][T13867] bond0 (unregistering): left allmulticast mode
[ 1010.272266][T13867] bond_slave_0: left allmulticast mode
[ 1010.279342][T13867] bond_slave_1: left allmulticast mode
[ 1010.379709][T13867] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1010.393407][T13867] bond_slave_0: left promiscuous mode
[ 1010.404998][T13867] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1010.418822][T13867] bond_slave_1: left promiscuous mode
[ 1010.427148][T13867] bond0 (unregistering): Released all slaves
[ 1010.700131][T13867] bond1 (unregistering): Released all slaves
[ 1010.743583][T15802] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[ 1011.177333][T13867] tipc: Left network mode
[ 1011.206035][T15840] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2972'.
[ 1011.246156][T15842] 9pnet_fd: Insufficient options for proto=fd
[ 1011.322742][ T5849] Bluetooth: hci3: command tx timeout
[ 1011.558268][T15849] fuse: Bad value for 'fd'
[ 1011.637958][T15853] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 1011.872149][T15723] chnl_net:caif_netlink_parms(): no params data found
[ 1013.031433][T15862] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2977'.
[ 1014.492254][T15877] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2980'.
[ 1014.731757][T15862] macvtap2: entered promiscuous mode
[ 1014.796784][T15862] macvtap2: entered allmulticast mode
[ 1014.814490][T15862] 8021q: adding VLAN 0 to HW filter on device macvtap2
[ 1016.752086][T15901] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1016.765541][T15901] overlayfs: "xino" feature enabled using 2 upper inode bits.
[ 1017.865179][T15909] loop6: detected capacity change from 0 to 524287999
[ 1018.376654][T15723] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1019.279672][T15723] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1019.302621][T15723] bridge_slave_0: entered allmulticast mode
[ 1019.324666][T15723] bridge_slave_0: entered promiscuous mode
[ 1020.046300][T15906] IPv6: sit1: Disabled Multicast RS
[ 1020.404414][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[ 1021.164554][T15924] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1021.769368][T15927] netlink: 112 bytes leftover after parsing attributes in process `syz.4.2993'.
[ 1022.306172][T15723] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1022.396249][T15723] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1022.465594][T15723] bridge_slave_1: entered allmulticast mode
[ 1022.716085][T15723] bridge_slave_1: entered promiscuous mode
[ 1023.228429][T13867] batadv0: left promiscuous mode
[ 1023.591250][T13867] hsr_slave_0: left promiscuous mode
[ 1023.727525][T13867] hsr_slave_1: left promiscuous mode
[ 1024.777931][T13867] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1024.959328][T13867] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1025.047493][T13867] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1025.091212][T13867] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1025.158434][T13867] dummy0: left allmulticast mode
[ 1025.182928][T13867] veth1_macvtap: left promiscuous mode
[ 1025.217767][T13867] veth0_macvtap: left promiscuous mode
[ 1026.191533][T15958] slcan: can't register candev
[ 1026.199328][T15958] Falling back ldisc for ttyS3.
[ 1026.756410][T13867] team_slave_1 (unregistering): left promiscuous mode
[ 1026.781730][T13867] team0 (unregistering): Port device team_slave_1 removed
[ 1026.870082][   T30] kauditd_printk_skb: 58 callbacks suppressed
[ 1026.870105][   T30] audit: type=1800 audit(1751935729.407:532): pid=15971 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.0.3006" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1026.939287][T13867] team_slave_0 (unregistering): left promiscuous mode
[ 1026.956256][T13867] team0 (unregistering): Port device team_slave_0 removed
[ 1027.291788][T15974] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3007'.
[ 1027.955100][T15723] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1028.013161][T15723] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1028.274913][T15723] team0: Port device team_slave_0 added
[ 1028.344981][T15723] team0: Port device team_slave_1 added
[ 1028.367863][T15968] lo speed is unknown, defaulting to 1000
[ 1028.466312][ T5969] usb 1-1: new high-speed USB device number 50 using dummy_hcd
[ 1028.669289][ T5969] usb 1-1: device descriptor read/64, error -71
[ 1028.689073][T15988] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1029.699918][T15991] netlink: 112 bytes leftover after parsing attributes in process `syz.3.3011'.
[ 1029.771468][ T5969] usb 1-1: new high-speed USB device number 51 using dummy_hcd
[ 1030.155595][ T5969] usb 1-1: device descriptor read/64, error -71
[ 1030.287254][ T5969] usb usb1-port1: attempt power cycle
[ 1030.484866][T15723] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1030.504567][T15723] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1030.595117][T15723] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1030.828885][ T5969] usb 1-1: new high-speed USB device number 52 using dummy_hcd
[ 1030.865145][T15723] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1030.877437][T15723] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1030.899224][ T5969] usb 1-1: device descriptor read/8, error -71
[ 1030.954135][T15723] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1031.207502][ T5969] usb 1-1: new high-speed USB device number 53 using dummy_hcd
[ 1031.295480][ T5969] usb 1-1: device descriptor read/8, error -71
[ 1031.489493][ T5969] usb usb1-port1: unable to enumerate USB device
[ 1031.755147][T16016] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3016'.
[ 1031.766740][T16016] openvswitch: netlink: Flow key attr not present in new flow.
[ 1032.191288][T15723] hsr_slave_0: entered promiscuous mode
[ 1032.265190][T15723] hsr_slave_1: entered promiscuous mode
[ 1032.311259][T15723] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1032.340082][T15723] Cannot create hsr debugfs directory
[ 1033.224094][ T5969] usb 2-1: new high-speed USB device number 51 using dummy_hcd
[ 1033.494539][ T5969] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1033.703046][ T5969] usb 2-1: config 1 has an invalid descriptor of length 37, skipping remainder of the config
[ 1033.726317][ T5969] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1033.764960][ T5969] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1033.789113][ T5969] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1033.879251][ T5969] usb 2-1: Product: ṱ밋픚鑓呫፧䓱썍䉶⌱敹䱲妝짇˯찹ﴦў쏼洢쥖뿝票᎒䉑墀鹻윤땛зꦤ啠ᄫ頦䦖葜餆䎦ш羑悿呋㑉淋너쥑끉ጝꔯ蔿퇣뉖לּ룠獓푞㿡౪궪質폟ꑦ鏒딟ﺀ觧礎庤ꨲ駟᳥瑫輪紊㭑頥뗕゛晃ꏦ్楘ㆬ
[ 1033.948059][T16017] Bluetooth: hci3: command 0x0405 tx timeout
[ 1033.992892][ T5969] usb 2-1: Manufacturer: 胛澀粊῕લ杺垡ٗ鯨쮾儔땟峝햍ᴠ둛쑳　局ꇳ뗖⊪蜭䌸켛㋨嘓㏈俲붾㍠騶⬣␃䱰
[ 1034.044532][ T5969] usb 2-1: SerialNumber: Л
[ 1034.281157][T16033] could not allocate digest TFM handle poly1305-generic
[ 1034.478479][T16029] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1034.513233][T16029] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1034.689340][ T5969] usb 2-1: 0:2 : does not exist
[ 1034.893173][ T5969] usb 2-1: USB disconnect, device number 51
[ 1035.017055][T15843] udevd[15843]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1035.044511][T16044] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1035.635719][T16050] netlink: 112 bytes leftover after parsing attributes in process `syz.0.3024'.
[ 1037.127864][T16067] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3027'.
[ 1039.374557][T16078] netlink: 52 bytes leftover after parsing attributes in process `syz.1.3030'.
[ 1039.443590][T16078] netlink: 'syz.1.3030': attribute type 2 has an invalid length.
[ 1039.466712][T16078] netlink: 'syz.1.3030': attribute type 1 has an invalid length.
[ 1039.505209][T15723] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1039.544603][T16078] netlink: 88 bytes leftover after parsing attributes in process `syz.1.3030'.
[ 1039.601276][T16079] netlink: 'syz.1.3030': attribute type 16 has an invalid length.
[ 1039.626186][T15723] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1039.681231][T16079] netlink: 'syz.1.3030': attribute type 3 has an invalid length.
[ 1039.690647][T16079] netlink: 64066 bytes leftover after parsing attributes in process `syz.1.3030'.
[ 1039.739652][T15723] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1039.814703][T15723] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1040.061861][T16095] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1040.516860][T16102] netlink: 112 bytes leftover after parsing attributes in process `syz.4.3035'.
[ 1040.980512][ T5969] usb 1-1: new high-speed USB device number 54 using dummy_hcd
[ 1042.775873][T15723] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1042.867665][ T5969] usb 1-1: Using ep0 maxpacket: 16
[ 1043.319045][ T5969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 78, changing to 10
[ 1043.561993][T16113] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1043.580995][T15723] 8021q: adding VLAN 0 to HW filter on device team0
[ 1043.642172][T16113] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1044.470506][ T5969] usb 1-1: New USB device found, idVendor=1241, idProduct=5015, bcdDevice= 0.00
[ 1044.480101][ T5969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1044.498175][ T5969] usb 1-1: config 0 descriptor??
[ 1044.591802][ T7078] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1044.602652][ T7078] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1044.862826][ T7078] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1044.871431][ T7078] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1044.920022][ T5969] usbhid 1-1:0.0: can't add hid device: -71
[ 1044.974572][ T5969] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1044.985809][T16126] netlink: 'syz.3.3042': attribute type 1 has an invalid length.
[ 1045.046017][ T5969] usb 1-1: USB disconnect, device number 54
[ 1045.330861][T16131] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1045.386941][T16131] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1045.720530][T16137] loop6: detected capacity change from 0 to 524287999
[ 1049.690583][   T10] usb 1-1: new high-speed USB device number 55 using dummy_hcd
[ 1050.887477][   T10] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1050.897475][   T10] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1050.910304][   T10] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1050.921799][   T10] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[ 1051.656041][   T10] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[ 1051.782369][   T10] usb 1-1: string descriptor 0 read error: -71
[ 1051.803074][   T10] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1051.874654][   T10] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1051.900501][T15723] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1051.966063][   T10] usb 1-1: can't set config #1, error -71
[ 1052.044870][   T10] usb 1-1: USB disconnect, device number 55
[ 1052.138153][T16168] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1052.169165][T15723] veth0_vlan: entered promiscuous mode
[ 1052.427109][T16177] netlink: 596 bytes leftover after parsing attributes in process `syz.3.3051'.
[ 1052.952271][T16175] netlink: 'syz.3.3051': attribute type 29 has an invalid length.
[ 1052.963493][T16176] netlink: 'syz.3.3051': attribute type 29 has an invalid length.
[ 1052.974895][T16177] workqueue: Failed to create a rescuer kthread for wq "xfs-inodegc/nbd3": -EINTR
[ 1052.992561][T15723] veth1_vlan: entered promiscuous mode
[ 1053.014785][T16173] 9pnet_fd: Insufficient options for proto=fd
[ 1053.047237][T16173] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1053.082101][T16173] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1053.095528][T15723] veth0_macvtap: entered promiscuous mode
[ 1053.137380][T15723] veth1_macvtap: entered promiscuous mode
[ 1053.202515][T15723] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1053.257698][   T10] usb 1-1: new high-speed USB device number 56 using dummy_hcd
[ 1053.296155][T15723] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1053.340228][T15723] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1053.405258][T15723] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1053.441950][T15723] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1053.459389][   T10] usb 1-1: Using ep0 maxpacket: 8
[ 1053.476261][T15723] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1053.508747][   T10] usb 1-1: config 1 interface 0 altsetting 15 endpoint 0x2 has an invalid bInterval 64, changing to 10
[ 1053.547376][   T10] usb 1-1: config 1 interface 0 has no altsetting 0
[ 1053.582590][   T10] usb 1-1: New USB device found, idVendor=046d, idProduct=c71f, bcdDevice= 0.40
[ 1053.619008][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1053.633403][   T10] usb 1-1: Product: ﳿ
[ 1053.657660][   T10] usb 1-1: Manufacturer: ꅁ뮑뾓Ĥ벾腙ഌ䄷樀
[ 1053.713841][   T10] usb 1-1: SerialNumber: ᐉ
[ 1053.947078][T16191] gretap0: entered promiscuous mode
[ 1053.994138][T16191] gretap0: left promiscuous mode
[ 1054.062142][T16194] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1054.092197][T16194] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1054.358494][ T9800] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1054.407475][ T9800] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1054.453151][   T10] usbhid 1-1:1.0: can't add hid device: -71
[ 1054.521616][   T10] usbhid 1-1:1.0: probe with driver usbhid failed with error -71
[ 1054.588619][   T10] usb 1-1: USB disconnect, device number 56
[ 1054.628514][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1054.725095][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1054.972903][T16210] FAULT_INJECTION: forcing a failure.
[ 1054.972903][T16210] name failslab, interval 1, probability 0, space 0, times 0
[ 1055.051376][T16210] CPU: 0 UID: 0 PID: 16210 Comm: syz.1.3061 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[ 1055.051409][T16210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1055.051423][T16210] Call Trace:
[ 1055.051432][T16210]  <TASK>
[ 1055.051442][T16210]  dump_stack_lvl+0x189/0x250
[ 1055.051472][T16210]  ? __pfx____ratelimit+0x10/0x10
[ 1055.051503][T16210]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1055.051525][T16210]  ? __pfx__printk+0x10/0x10
[ 1055.051558][T16210]  ? ref_tracker_alloc+0x318/0x460
[ 1055.051592][T16210]  should_fail_ex+0x414/0x560
[ 1055.051624][T16210]  should_failslab+0xa8/0x100
[ 1055.051659][T16210]  kmem_cache_alloc_noprof+0x73/0x3c0
[ 1055.051688][T16210]  ? skb_clone+0x212/0x3a0
[ 1055.051722][T16210]  skb_clone+0x212/0x3a0
[ 1055.051753][T16210]  __netlink_deliver_tap+0x404/0x850
[ 1055.051789][T16210]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1055.051815][T16210]  netlink_deliver_tap+0x19c/0x1b0
[ 1055.051840][T16210]  netlink_unicast+0x72f/0x8d0
[ 1055.051872][T16210]  netlink_sendmsg+0x805/0xb30
[ 1055.051906][T16210]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1055.051940][T16210]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1055.051970][T16210]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1055.051996][T16210]  __sock_sendmsg+0x21c/0x270
[ 1055.052033][T16210]  ____sys_sendmsg+0x505/0x830
[ 1055.052066][T16210]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1055.052113][T16210]  ? import_iovec+0x74/0xa0
[ 1055.052142][T16210]  ___sys_sendmsg+0x21f/0x2a0
[ 1055.052172][T16210]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1055.052241][T16210]  ? __fget_files+0x2a/0x420
[ 1055.052260][T16210]  ? __fget_files+0x3a0/0x420
[ 1055.052291][T16210]  __x64_sys_sendmsg+0x19b/0x260
[ 1055.052320][T16210]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1055.052355][T16210]  ? __pfx_ksys_write+0x10/0x10
[ 1055.052381][T16210]  ? rcu_is_watching+0x15/0xb0
[ 1055.052409][T16210]  ? do_syscall_64+0xbe/0x3b0
[ 1055.052434][T16210]  do_syscall_64+0xfa/0x3b0
[ 1055.052452][T16210]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1055.052482][T16210]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1055.052503][T16210]  ? clear_bhb_loop+0x60/0xb0
[ 1055.052530][T16210]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1055.052550][T16210] RIP: 0033:0x7f0f26f8e929
[ 1055.052569][T16210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1055.052588][T16210] RSP: 002b:00007f0f27d1a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1055.052612][T16210] RAX: ffffffffffffffda RBX: 00007f0f271b5fa0 RCX: 00007f0f26f8e929
[ 1055.052641][T16210] RDX: 0000000000000080 RSI: 00002000000002c0 RDI: 0000000000000004
[ 1055.052655][T16210] RBP: 00007f0f27d1a090 R08: 0000000000000000 R09: 0000000000000000
[ 1055.052669][T16210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1055.052682][T16210] R13: 0000000000000000 R14: 00007f0f271b5fa0 R15: 00007ffec8f9d098
[ 1055.052716][T16210]  </TASK>
[ 1055.424023][T16216] netlink: 120 bytes leftover after parsing attributes in process `syz.4.3063'.
[ 1056.058733][ T5969] usb 3-1: new high-speed USB device number 56 using dummy_hcd
[ 1056.266194][T16222] QAT: failed to copy from user cfg_data.
[ 1056.283639][ T5969] usb 3-1: Using ep0 maxpacket: 16
[ 1056.294311][ T5969] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1056.310086][T16222] netlink: 'syz.1.3067': attribute type 10 has an invalid length.
[ 1056.545913][T16222] mac80211_hwsim hwsim8 wlan1: entered promiscuous mode
[ 1056.553727][T16222] mac80211_hwsim hwsim8 wlan1: entered allmulticast mode
[ 1056.563589][T16222] bond0: (slave wlan1): Enslaving as an active interface with an up link
[ 1057.173611][ T5969] usb 3-1: New USB device found, idVendor=0d46, idProduct=0081, bcdDevice=19.82
[ 1057.197622][ T5969] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1057.239330][ T5969] usb 3-1: Product: syz
[ 1057.259878][ T5969] usb 3-1: Manufacturer: syz
[ 1057.316732][ T5969] usb 3-1: SerialNumber: syz
[ 1057.627319][ T5969] usb 3-1: config 0 descriptor??
[ 1057.842595][ T5969] kobil_sct 3-1:0.0: required endpoints missing
[ 1057.928404][T13867] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1057.958802][ T5969] usb 3-1: USB disconnect, device number 56
[ 1058.517942][T13867] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1058.531497][T16232] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1058.748951][T16017] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1058.818221][T16017] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1058.830177][T16017] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1058.843218][T16017] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1058.854699][T16017] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1058.949164][T13867] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1058.967084][T13867] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1059.635603][T16255] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3071'.
[ 1059.651072][T16255] openvswitch: netlink: Flow key attr not present in new flow.
[ 1059.948010][T13867] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1060.003853][T16259] autofs: Unknown parameter 'bd'
[ 1060.016496][T13867] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1060.183147][T16244] lo speed is unknown, defaulting to 1000
[ 1060.392633][T13867] netdevsim netdevsim3 netdevsim0 (unregistering): left promiscuous mode
[ 1060.462316][T13867] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1060.529625][T13867] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1060.628684][T16270] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3075'.
[ 1060.893827][T16274] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3076'.
[ 1060.919250][T16274] netlink: 120 bytes leftover after parsing attributes in process `syz.4.3076'.
[ 1061.104556][T16017] Bluetooth: hci1: command tx timeout
[ 1061.160509][T16274] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3076'.
[ 1062.039671][T13867] bridge_slave_1: left promiscuous mode
[ 1062.095971][T13867] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1062.223153][T13867] bridge_slave_0: left allmulticast mode
[ 1062.277329][T13867] bridge_slave_0: left promiscuous mode
[ 1062.351700][T13867] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1062.572493][   T30] audit: type=1804 audit(1751935762.791:533): pid=16292 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.1.3079" name="/newroot/625/file0" dev="tmpfs" ino=3374 res=1 errno=0
[ 1062.623080][T16292] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3079'.
[ 1062.682096][T16293] netlink: 80 bytes leftover after parsing attributes in process `syz.1.3079'.
[ 1062.828788][T16292] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3079'.
[ 1063.318214][T16017] Bluetooth: hci1: command tx timeout
[ 1063.560938][T16304] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3080'.
[ 1063.577853][T16304] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3080'.
[ 1063.599303][T13867] erspan0 (unregistering): left promiscuous mode
[ 1064.259339][T16322] xt_l2tp: v2 sid > 0xffff: 262144
[ 1064.365296][   T10] usb 1-1: new high-speed USB device number 57 using dummy_hcd
[ 1064.472644][T16326] loop2: detected capacity change from 0 to 7
[ 1064.486810][T16326] Dev loop2: unable to read RDB block 7
[ 1064.493942][T16326]  loop2: unable to read partition table
[ 1064.521950][T16326] loop2: partition table beyond EOD, truncated
[ 1064.555236][T16326] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[ 1064.568278][   T10] usb 1-1: Using ep0 maxpacket: 32
[ 1064.586981][   T10] usb 1-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c
[ 1064.620846][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1064.642380][   T10] usb 1-1: Product: syz
[ 1064.653207][   T10] usb 1-1: Manufacturer: syz
[ 1064.665595][   T10] usb 1-1: SerialNumber: syz
[ 1064.681482][   T10] usb 1-1: config 0 descriptor??
[ 1064.760774][   T10] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[ 1065.009868][T13867] bond0 (unregistering): left allmulticast mode
[ 1065.023338][T13867] bond_slave_0: left allmulticast mode
[ 1065.032769][T13867] bond_slave_1: left allmulticast mode
[ 1065.617926][T13867] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1065.637977][T16017] Bluetooth: hci1: command tx timeout
[ 1065.687573][T13867] bond_slave_0: left promiscuous mode
[ 1065.843684][T13867] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1065.956091][T13867] bond_slave_1: left promiscuous mode
[ 1066.043838][T13867] bond0 (unregistering): Released all slaves
[ 1066.084216][T13867] bond1 (unregistering): Released all slaves
[ 1066.298705][T16347] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1066.345779][   T10] gspca_topro: reg_w err -71
[ 1066.375007][   T10] gspca_topro: Sensor soi763a
[ 1066.450280][   T10] usb 1-1: USB disconnect, device number 57
[ 1066.457840][T16347] __nla_validate_parse: 1 callbacks suppressed
[ 1066.457872][T16347] netlink: 112 bytes leftover after parsing attributes in process `syz.0.3088'.
[ 1066.577255][T13867] tipc: Left network mode
[ 1067.479431][T16364] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3091'.
[ 1067.850794][T16017] Bluetooth: hci1: command tx timeout
[ 1068.435655][T16364] team0: Port device virt_wifi0 removed
[ 1069.182811][   T10] usb 1-1: new high-speed USB device number 58 using dummy_hcd
[ 1069.407614][   T10] usb 1-1: Using ep0 maxpacket: 8
[ 1069.445442][T16377] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[ 1069.491881][T16377] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1069.510991][   T10] usb 1-1: config 0 has an invalid interface number: 46 but max is 0
[ 1069.544303][   T10] usb 1-1: config 0 has no interface number 0
[ 1069.575837][   T10] usb 1-1: config 0 interface 46 has no altsetting 0
[ 1069.606918][T16377] bridge0: entered allmulticast mode
[ 1069.631161][   T10] usb 1-1: New USB device found, idVendor=2c42, idProduct=16f8, bcdDevice=f3.33
[ 1069.746855][T16244] chnl_net:caif_netlink_parms(): no params data found
[ 1069.759290][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1069.790059][   T10] usb 1-1: Product: syz
[ 1069.841636][   T10] usb 1-1: Manufacturer: syz
[ 1069.863718][   T10] usb 1-1: SerialNumber: syz
[ 1069.896615][   T10] usb 1-1: config 0 descriptor??
[ 1069.996091][T16386] syz.4.3095 (16386) used obsolete PPPIOCDETACH ioctl
[ 1070.497444][T16403] FAULT_INJECTION: forcing a failure.
[ 1070.497444][T16403] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1070.520656][T16403] CPU: 1 UID: 0 PID: 16403 Comm: syz.2.3098 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[ 1070.520689][T16403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1070.520703][T16403] Call Trace:
[ 1070.520712][T16403]  <TASK>
[ 1070.520724][T16403]  dump_stack_lvl+0x189/0x250
[ 1070.520754][T16403]  ? __pfx____ratelimit+0x10/0x10
[ 1070.520786][T16403]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1070.520808][T16403]  ? __pfx__printk+0x10/0x10
[ 1070.520834][T16403]  ? __might_fault+0xb0/0x130
[ 1070.520884][T16403]  should_fail_ex+0x414/0x560
[ 1070.520920][T16403]  _copy_from_iter+0x1db/0x16f0
[ 1070.520946][T16403]  ? rcu_is_watching+0x15/0xb0
[ 1070.520972][T16403]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[ 1070.521003][T16403]  ? __pfx__copy_from_iter+0x10/0x10
[ 1070.521027][T16403]  ? __build_skb_around+0x257/0x3e0
[ 1070.521056][T16403]  ? netlink_sendmsg+0x642/0xb30
[ 1070.521079][T16403]  ? skb_put+0x11b/0x210
[ 1070.521107][T16403]  netlink_sendmsg+0x6b2/0xb30
[ 1070.521143][T16403]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1070.521177][T16403]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1070.521206][T16403]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1070.521232][T16403]  __sock_sendmsg+0x21c/0x270
[ 1070.521268][T16403]  ____sys_sendmsg+0x505/0x830
[ 1070.521301][T16403]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1070.521338][T16403]  ? import_iovec+0x74/0xa0
[ 1070.521366][T16403]  ___sys_sendmsg+0x21f/0x2a0
[ 1070.521395][T16403]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1070.521462][T16403]  ? __fget_files+0x2a/0x420
[ 1070.521490][T16403]  ? __fget_files+0x3a0/0x420
[ 1070.521549][T16403]  __x64_sys_sendmsg+0x19b/0x260
[ 1070.521580][T16403]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1070.521617][T16403]  ? __pfx_ksys_write+0x10/0x10
[ 1070.521643][T16403]  ? rcu_is_watching+0x15/0xb0
[ 1070.521682][T16403]  ? do_syscall_64+0xbe/0x3b0
[ 1070.521706][T16403]  do_syscall_64+0xfa/0x3b0
[ 1070.521724][T16403]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1070.521755][T16403]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1070.521776][T16403]  ? clear_bhb_loop+0x60/0xb0
[ 1070.521802][T16403]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1070.521823][T16403] RIP: 0033:0x7eff40b8e929
[ 1070.521842][T16403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1070.522832][T16403] RSP: 002b:00007eff419ae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1070.522899][T16403] RAX: ffffffffffffffda RBX: 00007eff40db5fa0 RCX: 00007eff40b8e929
[ 1070.522926][T16403] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[ 1070.522940][T16403] RBP: 00007eff419ae090 R08: 0000000000000000 R09: 0000000000000000
[ 1070.522952][T16403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1070.522972][T16403] R13: 0000000000000000 R14: 00007eff40db5fa0 R15: 00007ffdc34e0e18
[ 1070.523002][T16403]  </TASK>
[ 1070.975715][   T10] f81534a_ctrl 1-1:0.46: failed to set register 0x116: -5
[ 1071.009330][   T10] f81534a_ctrl 1-1:0.46: failed to enable ports: -5
[ 1071.097557][   T10] f81534a_ctrl 1-1:0.46: probe with driver f81534a_ctrl failed with error -5
[ 1071.236298][   T10] usb 1-1: USB disconnect, device number 58
[ 1072.223516][T16413] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1072.597229][T16415] loop6: detected capacity change from 0 to 524287999
[ 1072.839647][T16413] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1072.939806][T16413] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1072.985114][T16413] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1073.751956][T16428] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3104'.
[ 1073.804284][T13867] dummy0: left promiscuous mode
[ 1073.902601][T13867] batadv0: left promiscuous mode
[ 1074.190745][T13867] hsr_slave_0: left promiscuous mode
[ 1074.217898][T13867] hsr_slave_1: left promiscuous mode
[ 1074.237529][T16437] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3105'.
[ 1074.249173][T16437] openvswitch: netlink: Flow key attr not present in new flow.
[ 1074.262155][T13867] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1074.367132][T13867] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1074.502194][T13867] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1074.640936][T13867] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1074.758847][T13867] batman_adv: batadv0: Removing interface: macvtap0
[ 1075.176469][T10060] usb 3-1: new high-speed USB device number 57 using dummy_hcd
[ 1075.350094][T13867] veth1_macvtap: left promiscuous mode
[ 1075.360023][T13867] veth1_vlan: left promiscuous mode
[ 1075.369611][T13867] veth0_vlan: left promiscuous mode
[ 1075.441195][T10060] usb 3-1: Using ep0 maxpacket: 16
[ 1075.460179][T10060] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1075.474990][T10060] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1075.488797][T10060] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1075.505590][T10060] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1075.519214][T10060] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1075.547998][T10060] usb 3-1: config 0 descriptor??
[ 1076.054493][T10060] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[ 1076.068399][T10060] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[ 1076.085910][T10060] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[ 1076.097886][T10060] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[ 1076.113361][T10060] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[ 1076.122815][T10060] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[ 1076.137780][T10060] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[ 1076.150634][T10060] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[ 1076.163116][T10060] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[ 1076.176670][T10060] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[ 1076.185889][T10060] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[ 1076.197960][T10060] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[ 1076.208227][T10060] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[ 1076.217604][T10060] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[ 1076.228997][T10060] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[ 1076.284483][T10060] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0016/input/input42
[ 1076.311811][T16444] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1076.346829][T16444] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1076.358684][T10060] microsoft 0003:045E:07DA.0016: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[ 1077.676587][ T3521] smc: removing ib device syz0
[ 1077.691127][T16244] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1077.720583][T16244] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1077.732802][T16244] bridge_slave_0: entered allmulticast mode
[ 1077.755256][T16244] bridge_slave_0: entered promiscuous mode
[ 1077.780531][T16244] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1077.804534][T16244] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1077.838260][T16244] bridge_slave_1: entered allmulticast mode
[ 1077.855762][T16244] bridge_slave_1: entered promiscuous mode
[ 1078.202526][T12912] usb 3-1: USB disconnect, device number 57
[ 1079.513565][T16244] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1079.563979][T16244] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1079.967258][T16468] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1080.085402][T16244] team0: Port device team_slave_0 added
[ 1080.200887][T16244] team0: Port device team_slave_1 added
[ 1080.264636][T16477] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3117'.
[ 1080.892674][T16244] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1080.933629][T16244] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1081.087751][T16244] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1082.037629][T16244] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1082.048631][T16244] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1082.310291][T16244] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1084.106006][T16244] hsr_slave_0: entered promiscuous mode
[ 1084.132317][T16244] hsr_slave_1: entered promiscuous mode
[ 1084.148016][T16515] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 1085.758339][T16529] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3129'.
[ 1086.031923][T16534] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3131'.
[ 1086.045775][T16534] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3131'.
[ 1086.076288][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[ 1087.738837][T13867] IPVS: stop unused estimator thread 0...
[ 1089.237445][T16545] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1089.251589][T16545] overlayfs: "xino" feature enabled using 2 upper inode bits.
[ 1090.478390][T16562] fuse: Bad value for 'fd'
[ 1093.076194][T16588] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3144'.
[ 1095.083927][T16608] netlink: 'syz.0.3147': attribute type 10 has an invalid length.
[ 1095.356589][T16244] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1095.593140][T16244] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1095.731185][T16244] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1096.051004][T16244] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1096.148777][    T9] usb 1-1: new high-speed USB device number 59 using dummy_hcd
[ 1096.176390][T16619] ptrace attach of "./syz-executor exec"[5842] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[ 1096.199805][T16619] ptrace attach of "./syz-executor exec"[5842] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[ 1096.318748][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1096.445685][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1096.472806][    T9] usb 1-1: Using ep0 maxpacket: 16
[ 1096.558068][    T9] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1096.576268][    T9] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1096.649715][    T9] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1096.691701][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1096.780850][T16632] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3153'.
[ 1096.798557][    T9] usb 1-1: Product: syz
[ 1096.805879][    T9] usb 1-1: Manufacturer: syz
[ 1096.810569][    T9] usb 1-1: SerialNumber: syz
[ 1096.820319][T16632] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1097.052064][T16244] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1097.070940][    T9] usb 1-1: 0:2 : does not exist
[ 1097.663246][    T9] usb 1-1: cannot find UAC_HEADER
[ 1097.670862][T16244] 8021q: adding VLAN 0 to HW filter on device team0
[ 1097.711229][ T9800] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1097.719918][ T9800] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1097.724420][    T9] snd-usb-audio 1-1:1.1: probe with driver snd-usb-audio failed with error -22
[ 1097.809575][ T9800] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1097.817771][ T9800] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1097.867718][    T9] usb 1-1: USB disconnect, device number 59
[ 1099.080932][T16244] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1099.462894][T15843] udevd[15843]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1101.172385][T16663] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3159'.
[ 1101.183537][T16663] openvswitch: netlink: Flow key attr not present in new flow.
[ 1102.780915][T16674] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3161'.
[ 1102.808818][T16674] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3161'.
[ 1102.839444][ T5849] Bluetooth: hci1: command 0x0405 tx timeout
[ 1103.256357][T16685] gretap0: entered promiscuous mode
[ 1103.320144][T16685] gretap0: left promiscuous mode
[ 1104.140583][T16244] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1104.494737][T16244] veth0_vlan: entered promiscuous mode
[ 1105.253792][   T43] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[ 1105.460140][   T43] usb 3-1: Using ep0 maxpacket: 32
[ 1105.661861][   T43] usb 3-1: unable to get BOS descriptor or descriptor too short
[ 1105.774466][T16705] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1105.789982][   T43] usb 3-1: config index 0 descriptor too short (expected 34347, got 43)
[ 1105.898986][T16244] veth1_vlan: entered promiscuous mode
[ 1105.982342][   T43] usb 3-1: config 31 has too many interfaces: 196, using maximum allowed: 32
[ 1106.048452][   T43] usb 3-1: config 31 has an invalid descriptor of length 0, skipping remainder of the config
[ 1106.101382][   T43] usb 3-1: config 31 has 1 interface, different from the descriptor's value: 196
[ 1106.145208][   T43] usb 3-1: config 31 has no interface number 0
[ 1106.204604][   T43] usb 3-1: config 31 interface 81 altsetting 3 has an endpoint descriptor with address 0x93, changing to 0x83
[ 1106.551337][   T43] usb 3-1: config 31 interface 81 altsetting 3 bulk endpoint 0x83 has invalid maxpacket 150
[ 1106.831781][   T43] usb 3-1: config 31 interface 81 has no altsetting 0
[ 1106.853930][T16244] veth0_macvtap: entered promiscuous mode
[ 1106.881204][T16244] veth1_macvtap: entered promiscuous mode
[ 1106.889892][   T43] usb 3-1: string descriptor 0 read error: -22
[ 1106.911651][   T43] usb 3-1: New USB device found, idVendor=0dfc, idProduct=0001, bcdDevice=24.ac
[ 1106.946076][   T43] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1107.029470][   T43] usb 3-1: can't set config #31, error -71
[ 1107.072461][   T43] usb 3-1: USB disconnect, device number 58
[ 1107.126072][T16244] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1107.168948][T16726] netlink: 136 bytes leftover after parsing attributes in process `syz.1.3174'.
[ 1107.221472][T16244] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1107.475749][T16736] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3177'.
[ 1107.504425][T16736] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3177'.
[ 1107.652044][T16736] netlink: 'syz.4.3177': attribute type 6 has an invalid length.
[ 1107.855874][T16739] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1107.866710][T16244] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1107.880415][T16739] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1107.899765][T16244] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1107.934650][T16244] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1107.957667][T16244] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1108.759461][T16755] vxcan1: tx drop: invalid da for name 0x0000000000000001
[ 1109.137571][    T9] usb 3-1: new high-speed USB device number 59 using dummy_hcd
[ 1109.233356][ T7078] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1109.246066][ T7078] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1109.265734][ T5969] usb 2-1: new high-speed USB device number 52 using dummy_hcd
[ 1109.330153][    T9] usb 3-1: Using ep0 maxpacket: 16
[ 1109.351527][    T9] usb 3-1: too many configurations: 240, using maximum allowed: 8
[ 1109.380562][ T9800] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1109.438875][    T9] usb 3-1: unable to read config index 0 descriptor/start: -61
[ 1109.463109][    T9] usb 3-1: can't read configurations, error -61
[ 1109.608647][ T5969] usb 2-1: device descriptor read/64, error -71
[ 1109.619451][ T9800] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1109.665368][    T9] usb 3-1: new high-speed USB device number 60 using dummy_hcd
[ 1109.933514][ T5969] usb 2-1: new high-speed USB device number 53 using dummy_hcd
[ 1110.186492][ T5969] usb 2-1: device descriptor read/64, error -71
[ 1110.394062][ T5969] usb usb2-port1: attempt power cycle
[ 1110.437103][    T9] usb 3-1: Using ep0 maxpacket: 16
[ 1110.461540][    T9] usb 3-1: too many configurations: 240, using maximum allowed: 8
[ 1110.499770][    T9] usb 3-1: unable to read config index 0 descriptor/start: -61
[ 1110.538255][    T9] usb 3-1: can't read configurations, error -61
[ 1110.580743][    T9] usb usb3-port1: attempt power cycle
[ 1110.774758][ T5969] usb 2-1: new high-speed USB device number 54 using dummy_hcd
[ 1110.864733][ T5969] usb 2-1: device descriptor read/8, error -71
[ 1111.041997][T16774] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3186'.
[ 1111.249150][    T9] usb 3-1: new high-speed USB device number 61 using dummy_hcd
[ 1111.287942][ T5969] usb 2-1: new high-speed USB device number 55 using dummy_hcd
[ 1111.389750][    T9] usb 3-1: Using ep0 maxpacket: 16
[ 1111.411103][    T9] usb 3-1: too many configurations: 240, using maximum allowed: 8
[ 1111.411220][ T5969] usb 2-1: device descriptor read/8, error -71
[ 1111.445905][    T9] usb 3-1: unable to read config index 0 descriptor/start: -61
[ 1111.455896][    T9] usb 3-1: can't read configurations, error -61
[ 1111.622217][ T5969] usb usb2-port1: unable to enumerate USB device
[ 1111.630743][    T9] usb 3-1: new high-speed USB device number 62 using dummy_hcd
[ 1111.885529][    T9] usb 3-1: device not accepting address 62, error -71
[ 1111.959150][    T9] usb usb3-port1: unable to enumerate USB device
[ 1112.312875][    T9] usb 3-1: new high-speed USB device number 63 using dummy_hcd
[ 1112.676166][    T9] usb 3-1: Using ep0 maxpacket: 32
[ 1112.711000][    T9] usb 3-1: config 0 has an invalid interface number: 12 but max is 2
[ 1112.767004][ T5849] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1112.782712][    T9] usb 3-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[ 1112.791348][ T5849] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1112.805609][ T5849] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1112.836683][    T9] usb 3-1: config 0 contains an unexpected descriptor of type 0x1, skipping
[ 1112.858716][    T9] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1112.899698][    T9] usb 3-1: config 0 has 2 interfaces, different from the descriptor's value: 3
[ 1112.927108][    T9] usb 3-1: config 0 has no interface number 0
[ 1112.943935][ T5849] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1112.955072][ T5849] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1113.027038][    T9] usb 3-1: config 0 has no interface number 1
[ 1113.070972][    T9] usb 3-1: config 0 interface 12 altsetting 4 has 0 endpoint descriptors, different from the interface descriptor's value: 11
[ 1113.443980][    T9] usb 3-1: config 0 interface 2 has no altsetting 0
[ 1113.482263][    T9] usb 3-1: config 0 interface 12 has no altsetting 0
[ 1113.947753][    T9] usb 3-1: New USB device found, idVendor=1bc7, idProduct=1050, bcdDevice=b4.17
[ 1114.011323][T13876] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1114.165766][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1114.183389][    T9] usb 3-1: Product: 㐊
[ 1114.198326][    T9] usb 3-1: Manufacturer: Ф
[ 1114.219021][T16808] overlayfs: upper fs does not support RENAME_WHITEOUT.
[ 1114.230105][    T9] usb 3-1: SerialNumber: syz
[ 1114.237702][T16808] overlayfs: failed to set xattr on upper
[ 1114.255415][    T9] usb 3-1: config 0 descriptor??
[ 1114.266666][T16808] overlayfs: ...falling back to redirect_dir=nofollow.
[ 1114.327611][T16808] overlayfs: ...falling back to metacopy=off.
[ 1114.342282][T16808] overlayfs: ...falling back to index=off.
[ 1114.349001][T16808] overlayfs: ...falling back to uuid=null.
[ 1114.410596][T13876] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1115.057144][T13876] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1115.231992][ T5849] Bluetooth: hci5: command tx timeout
[ 1115.317500][    T9] usb 3-1: USB disconnect, device number 63
[ 1115.450720][T16816] FAULT_INJECTION: forcing a failure.
[ 1115.450720][T16816] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1115.470190][T16816] CPU: 1 UID: 0 PID: 16816 Comm: syz.1.3197 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[ 1115.470228][T16816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1115.470242][T16816] Call Trace:
[ 1115.470252][T16816]  <TASK>
[ 1115.470265][T16816]  dump_stack_lvl+0x189/0x250
[ 1115.470298][T16816]  ? __pfx____ratelimit+0x10/0x10
[ 1115.470333][T16816]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1115.470357][T16816]  ? __pfx__printk+0x10/0x10
[ 1115.470399][T16816]  should_fail_ex+0x414/0x560
[ 1115.470437][T16816]  _copy_from_user+0x2d/0xb0
[ 1115.470464][T16816]  memdup_user_nul+0x66/0x110
[ 1115.470491][T16816]  smk_write_rules_list+0xc5/0x370
[ 1115.470526][T16816]  ? __pfx_smk_write_change_rule+0x10/0x10
[ 1115.470562][T16816]  vfs_write+0x27b/0xa90
[ 1115.470603][T16816]  ? __pfx_vfs_write+0x10/0x10
[ 1115.470634][T16816]  ? __fget_files+0x2a/0x420
[ 1115.470661][T16816]  ? __fget_files+0x3a0/0x420
[ 1115.470679][T16816]  ? __fget_files+0x2a/0x420
[ 1115.470709][T16816]  ksys_write+0x145/0x250
[ 1115.470742][T16816]  ? __pfx_ksys_write+0x10/0x10
[ 1115.470767][T16816]  ? rcu_is_watching+0x15/0xb0
[ 1115.470798][T16816]  ? do_syscall_64+0xbe/0x3b0
[ 1115.470824][T16816]  do_syscall_64+0xfa/0x3b0
[ 1115.470843][T16816]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1115.470872][T16816]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1115.470895][T16816]  ? clear_bhb_loop+0x60/0xb0
[ 1115.470921][T16816]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1115.470942][T16816] RIP: 0033:0x7f0f26f8e929
[ 1115.470962][T16816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1115.470982][T16816] RSP: 002b:00007f0f27d1a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1115.471006][T16816] RAX: ffffffffffffffda RBX: 00007f0f271b5fa0 RCX: 00007f0f26f8e929
[ 1115.471021][T16816] RDX: 000000000000001d RSI: 0000200000000880 RDI: 0000000000000003
[ 1115.471035][T16816] RBP: 00007f0f27d1a090 R08: 0000000000000000 R09: 0000000000000000
[ 1115.471049][T16816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1115.471062][T16816] R13: 0000000000000000 R14: 00007f0f271b5fa0 R15: 00007ffec8f9d098
[ 1115.471097][T16816]  </TASK>
[ 1115.816379][T13876] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1116.204559][ T5969] usb 4-1: new high-speed USB device number 51 using dummy_hcd
[ 1116.421755][ T5969] usb 4-1: Using ep0 maxpacket: 32
[ 1116.583924][ T5969] usb 4-1: config 0 has an invalid interface number: 244 but max is 0
[ 1116.690615][ T5969] usb 4-1: config 0 has no interface number 0
[ 1116.749886][ T5969] usb 4-1: config 0 interface 244 altsetting 109 endpoint 0x2 has invalid maxpacket 512, setting to 64
[ 1116.795239][ T5969] usb 4-1: config 0 interface 244 has no altsetting 0
[ 1116.822712][ T5969] usb 4-1: New USB device found, idVendor=0e41, idProduct=4750, bcdDevice=26.9c
[ 1116.871647][ T5969] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1116.952326][ T5969] usb 4-1: Product: syz
[ 1116.968964][ T5969] usb 4-1: Manufacturer: syz
[ 1116.990603][ T5969] usb 4-1: SerialNumber: syz
[ 1117.022462][ T5969] usb 4-1: config 0 descriptor??
[ 1117.073637][T16792] chnl_net:caif_netlink_parms(): no params data found
[ 1117.086149][ T5969] snd_usb_toneport 4-1:0.244: Line 6 GuitarPort found
[ 1117.099697][ T5969] usb 4-1: selecting invalid altsetting 2
[ 1117.106714][ T5969] snd_usb_toneport 4-1:0.244: set_interface failed
[ 1117.126213][ T5969] snd_usb_toneport 4-1:0.244: Line 6 GuitarPort now disconnected
[ 1117.145015][ T5969] snd_usb_toneport 4-1:0.244: probe with driver snd_usb_toneport failed with error -22
[ 1117.457660][ T5849] Bluetooth: hci5: command tx timeout
[ 1118.759128][T13876] bridge_slave_1: left allmulticast mode
[ 1118.764865][T13876] bridge_slave_1: left promiscuous mode
[ 1118.798776][T13876] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1118.938467][T13876] bridge_slave_0: left allmulticast mode
[ 1118.988624][T13876] bridge_slave_0: left promiscuous mode
[ 1119.048898][T13876] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1119.757699][ T5849] Bluetooth: hci5: command tx timeout
[ 1121.396847][T16875] netlink: 596 bytes leftover after parsing attributes in process `syz.2.3210'.
[ 1121.598844][T16875] bio_check_eod: 14 callbacks suppressed
[ 1121.598891][T16875] syz.2.3210: attempt to access beyond end of device
[ 1121.598891][T16875] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[ 1121.929048][ T5849] Bluetooth: hci5: command tx timeout
[ 1123.221216][T13876] erspan0 (unregistering): left promiscuous mode
[ 1123.285527][T13876] bond1 (unregistering): (slave gretap1): Releasing active interface
[ 1123.650031][T13876] bond0 (unregistering): left allmulticast mode
[ 1123.656617][T13876] bond_slave_0: left allmulticast mode
[ 1123.663328][T13876] bond_slave_1: left allmulticast mode
[ 1123.713151][T13876] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1123.724371][T13876] bond_slave_0: left promiscuous mode
[ 1123.734272][T13876] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1123.743877][T13876] bond_slave_1: left promiscuous mode
[ 1123.751074][T13876] bond0 (unregistering): Released all slaves
[ 1123.768616][T13876] bond1 (unregistering): Released all slaves
[ 1123.797921][T16873] netlink: 'syz.2.3210': attribute type 29 has an invalid length.
[ 1123.798655][T16847] delete_channel: no stack
[ 1123.813189][T16891] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[ 1123.822892][T16891] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[ 1123.834645][T16891] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1123.994237][T16792] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1124.005051][T16792] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1124.025440][    T9] usb 4-1: USB disconnect, device number 51
[ 1124.029650][T16792] bridge_slave_0: entered allmulticast mode
[ 1124.039302][T16792] bridge_slave_0: entered promiscuous mode
[ 1124.137242][T16792] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1124.154110][T16792] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1124.446576][T16792] bridge_slave_1: entered allmulticast mode
[ 1124.479168][T16792] bridge_slave_1: entered promiscuous mode
[ 1124.812960][T13876] IPVS: stopping backup sync thread 10760 ...
[ 1125.726413][T16922] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3216'.
[ 1126.094321][T16792] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1126.136232][T16792] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1126.155173][T16930] netlink: 136 bytes leftover after parsing attributes in process `syz.3.3217'.
[ 1127.927712][T16792] team0: Port device team_slave_0 added
[ 1127.979389][T16792] team0: Port device team_slave_1 added
[ 1130.201781][T16792] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1130.586637][T16792] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1130.796820][T16792] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1130.939198][T16966] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[ 1130.948952][T16966] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[ 1130.959045][T16966] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1131.131913][T16792] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1131.151908][T16792] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1131.393076][T16792] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1131.591024][T13876] batadv0: left promiscuous mode
[ 1131.724632][T13876] hsr_slave_0: left promiscuous mode
[ 1131.778236][T13876] hsr_slave_1: left promiscuous mode
[ 1131.821436][T13876] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1131.852146][T13876] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1131.918768][T13876] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1131.961548][T13876] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1132.566166][T13876] veth1_macvtap: left promiscuous mode
[ 1132.683992][T13876] veth0_macvtap: left promiscuous mode
[ 1132.778855][T17000] netlink: 68 bytes leftover after parsing attributes in process `syz.4.3233'.
[ 1132.895148][T13876] veth1_vlan: left promiscuous mode
[ 1132.900483][T13876] veth0_vlan: left promiscuous mode
[ 1134.364252][T17012] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3237'.
[ 1135.698776][T17007] netlink: 152 bytes leftover after parsing attributes in process `syz.2.3236'.
[ 1135.722251][T17007] tipc: Started in network mode
[ 1135.728218][T17007] tipc: Node identity fe80000000000000000000000000002a, cluster identity 4711
[ 1135.747092][T17007] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[ 1136.092376][T17020] FAULT_INJECTION: forcing a failure.
[ 1136.092376][T17020] name failslab, interval 1, probability 0, space 0, times 0
[ 1136.106079][T17020] CPU: 1 UID: 0 PID: 17020 Comm: syz.4.3238 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[ 1136.106115][T17020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1136.106128][T17020] Call Trace:
[ 1136.106137][T17020]  <TASK>
[ 1136.106148][T17020]  dump_stack_lvl+0x189/0x250
[ 1136.106180][T17020]  ? __pfx____ratelimit+0x10/0x10
[ 1136.106215][T17020]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1136.106239][T17020]  ? __pfx__printk+0x10/0x10
[ 1136.106270][T17020]  ? __pfx___might_resched+0x10/0x10
[ 1136.106294][T17020]  ? fs_reclaim_acquire+0x7d/0x100
[ 1136.106319][T17020]  should_fail_ex+0x414/0x560
[ 1136.106357][T17020]  should_failslab+0xa8/0x100
[ 1136.106391][T17020]  __kmalloc_noprof+0xcb/0x4f0
[ 1136.106419][T17020]  ? tomoyo_encode+0x28b/0x550
[ 1136.106447][T17020]  tomoyo_encode+0x28b/0x550
[ 1136.106476][T17020]  tomoyo_realpath_from_path+0x58d/0x5d0
[ 1136.106510][T17020]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 1136.106542][T17020]  tomoyo_path_number_perm+0x1e8/0x5a0
[ 1136.106589][T17020]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1136.106619][T17020]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1136.106657][T17020]  ? rcu_is_watching+0x15/0xb0
[ 1136.106691][T17020]  ? __lock_acquire+0xab9/0xd20
[ 1136.106734][T17020]  ? __fget_files+0x2a/0x420
[ 1136.106758][T17020]  ? __fget_files+0x2a/0x420
[ 1136.106777][T17020]  ? __fget_files+0x3a0/0x420
[ 1136.106795][T17020]  ? __fget_files+0x2a/0x420
[ 1136.106819][T17020]  security_file_ioctl+0xcb/0x2d0
[ 1136.106854][T17020]  __se_sys_ioctl+0x47/0x170
[ 1136.106884][T17020]  do_syscall_64+0xfa/0x3b0
[ 1136.106906][T17020]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1136.106926][T17020]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 1136.106948][T17020]  ? clear_bhb_loop+0x60/0xb0
[ 1136.106974][T17020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1136.106995][T17020] RIP: 0033:0x7f3afa58e929
[ 1136.107015][T17020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1136.107035][T17020] RSP: 002b:00007f3afb485038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1136.107058][T17020] RAX: ffffffffffffffda RBX: 00007f3afa7b6160 RCX: 00007f3afa58e929
[ 1136.107074][T17020] RDX: 0000000000000000 RSI: 00000000c2604111 RDI: 0000000000000006
[ 1136.107087][T17020] RBP: 00007f3afb485090 R08: 0000000000000000 R09: 0000000000000000
[ 1136.107101][T17020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1136.107114][T17020] R13: 0000000000000000 R14: 00007f3afa7b6160 R15: 00007ffc9a351cf8
[ 1136.107147][T17020]  </TASK>
[ 1136.107297][T17020] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1136.439795][T17017] syzkaller1: entered promiscuous mode
[ 1136.447027][T17017] syzkaller1: entered allmulticast mode
[ 1137.553373][T16017] Bluetooth: hci3: command 0x0405 tx timeout
[ 1137.560473][T16792] hsr_slave_0: entered promiscuous mode
[ 1138.422965][T17023] FAULT_INJECTION: forcing a failure.
[ 1138.422965][T17023] name failslab, interval 1, probability 0, space 0, times 0
[ 1138.449094][T17023] CPU: 1 UID: 0 PID: 17023 Comm: syz.1.3241 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[ 1138.449127][T17023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1138.449147][T17023] Call Trace:
[ 1138.449157][T17023]  <TASK>
[ 1138.449167][T17023]  dump_stack_lvl+0x189/0x250
[ 1138.449197][T17023]  ? __pfx____ratelimit+0x10/0x10
[ 1138.449230][T17023]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1138.449254][T17023]  ? __pfx__printk+0x10/0x10
[ 1138.449288][T17023]  ? __pfx___might_resched+0x10/0x10
[ 1138.449318][T17023]  should_fail_ex+0x414/0x560
[ 1138.449354][T17023]  should_failslab+0xa8/0x100
[ 1138.449389][T17023]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[ 1138.449420][T17023]  ? __alloc_skb+0x112/0x2d0
[ 1138.449449][T17023]  __alloc_skb+0x112/0x2d0
[ 1138.449478][T17023]  netlink_sendmsg+0x5c6/0xb30
[ 1138.449514][T17023]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1138.449549][T17023]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1138.449579][T17023]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1138.449606][T17023]  __sock_sendmsg+0x21c/0x270
[ 1138.449642][T17023]  ____sys_sendmsg+0x505/0x830
[ 1138.449675][T17023]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1138.449712][T17023]  ? import_iovec+0x74/0xa0
[ 1138.449741][T17023]  ___sys_sendmsg+0x21f/0x2a0
[ 1138.449771][T17023]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1138.449837][T17023]  ? __fget_files+0x2a/0x420
[ 1138.449856][T17023]  ? __fget_files+0x3a0/0x420
[ 1138.449887][T17023]  __x64_sys_sendmsg+0x19b/0x260
[ 1138.449917][T17023]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1138.449972][T17023]  do_syscall_64+0xfa/0x3b0
[ 1138.449992][T17023]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1138.450022][T17023]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1138.450043][T17023]  ? clear_bhb_loop+0x60/0xb0
[ 1138.450069][T17023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1138.450090][T17023] RIP: 0033:0x7f0f26f8e929
[ 1138.450109][T17023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1138.450136][T17023] RSP: 002b:00007f0f27d1a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1138.450160][T17023] RAX: ffffffffffffffda RBX: 00007f0f271b5fa0 RCX: 00007f0f26f8e929
[ 1138.450177][T17023] RDX: 000000000000c000 RSI: 0000200000000000 RDI: 0000000000000003
[ 1138.450191][T17023] RBP: 00007f0f27d1a090 R08: 0000000000000000 R09: 0000000000000000
[ 1138.450205][T17023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1138.450218][T17023] R13: 0000000000000000 R14: 00007f0f271b5fa0 R15: 00007ffec8f9d098
[ 1138.450252][T17023]  </TASK>
[ 1138.971797][T16792] hsr_slave_1: entered promiscuous mode
[ 1138.986383][T16792] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1139.004568][T16792] Cannot create hsr debugfs directory
[ 1139.788636][T17033] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3246'.
[ 1140.169779][T17047] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3249'.
[ 1141.541282][T15780] ------------[ cut here ]------------
[ 1141.548907][T15780] WARNING: CPU: 0 PID: 15780 at kernel/softirq.c:387 __local_bh_enable_ip+0x180/0x1c0
[ 1141.560030][T15780] Modules linked in:
[ 1141.565620][T15780] CPU: 0 UID: 0 PID: 15780 Comm: krxrpcio/7001 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[ 1141.582545][T15780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1141.596828][T15780] RIP: 0010:__local_bh_enable_ip+0x180/0x1c0
[ 1141.604550][T15780] Code: 48 3b 44 24 48 75 57 48 8d 65 e0 5b 41 5c 41 5e 41 5f 5d c3 cc cc cc cc cc 90 0f 0b 90 e9 f9 fe ff ff e8 53 00 00 00 eb 9f 90 <0f> 0b 90 e9 24 ff ff ff 48 c7 c1 30 ed a0 8f 80 e1 07 80 c1 03 38
[ 1141.629534][T15780] RSP: 0018:ffffc9000ec9f4c0 EFLAGS: 00010046
[ 1141.638878][T15780] RAX: 0000000000000000 RBX: 0000000000000201 RCX: 0000000000000000
[ 1141.648108][T15780] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff89d750a3
[ 1141.656128][T15780] RBP: ffffc9000ec9f548 R08: ffff8880b863bd83 R09: 1ffff110170c77b0
[ 1141.668640][T15780] R10: dffffc0000000000 R11: ffffed10170c77b1 R12: ffff8880b863bd80
[ 1141.677854][T15780] R13: ffff8880785fb370 R14: dffffc0000000000 R15: 1ffff92001d93e98
[ 1141.687356][T15780] FS:  0000000000000000(0000) GS:ffff888125c51000(0000) knlGS:0000000000000000
[ 1141.700830][T15780] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1141.707944][T15780] CR2: 00007eff419adf98 CR3: 000000003537c000 CR4: 00000000003526f0
[ 1141.720660][T15780] Call Trace:
[ 1141.725186][T15780]  <TASK>
[ 1141.728248][T15780]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 1141.735505][T15780]  ? do_raw_spin_unlock+0x122/0x240
[ 1141.741598][T15780]  ? rt_set_nexthop+0x693/0xa80
[ 1141.749584][T15780]  rt_set_nexthop+0x693/0xa80
[ 1141.755311][T15780]  ip_route_output_key_hash_rcu+0x18f6/0x23a0
[ 1141.762669][T15780]  ? ip_route_output_key_hash+0xde/0x2e0
[ 1141.769364][T15780]  ip_route_output_key_hash+0x1b9/0x2e0
[ 1141.776348][T15780]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[ 1141.783135][T15780]  ? make_kuid+0x1d9/0x680
[ 1141.789266][T15780]  ? lockdep_unlock+0x89/0x120
[ 1141.794248][T15780]  ? __pfx_make_kuid+0x10/0x10
[ 1141.799795][T15780]  ip_route_output_flow+0x2a/0x150
[ 1141.805281][T15780]  rxrpc_init_peer+0x50a/0xc60
[ 1141.811074][T15780]  ? __pfx_rxrpc_init_peer+0x10/0x10
[ 1141.817795][T15780]  ? __lock_acquire+0xab9/0xd20
[ 1141.823416][T15780]  ? do_raw_spin_lock+0x121/0x290
[ 1141.829907][T15780]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1141.835966][T15780]  rxrpc_new_incoming_peer+0x281/0x5a0
[ 1141.841568][T15780]  rxrpc_new_incoming_call+0x612/0x14f0
[ 1141.849222][T15780]  rxrpc_io_thread+0x18b2/0x2cd0
[ 1141.856509][T15780]  ? rxrpc_io_thread+0x1171/0x2cd0
[ 1141.862583][T15780]  ? __pfx_rxrpc_io_thread+0x10/0x10
[ 1141.868550][T15780]  ? do_raw_spin_lock+0x121/0x290
[ 1141.877818][T15780]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 1141.884958][T15780]  ? __kthread_parkme+0x1a1/0x200
[ 1141.893358][T15780]  kthread+0x711/0x8a0
[ 1141.897779][T15780]  ? __pfx_rxrpc_io_thread+0x10/0x10
[ 1141.905034][T15780]  ? __pfx_kthread+0x10/0x10
[ 1141.909775][T15780]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1141.916124][T15780]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1141.922222][T15780]  ? __pfx_kthread+0x10/0x10
[ 1141.927477][T15780]  ret_from_fork+0x3fc/0x770
[ 1141.936287][T15780]  ? __pfx_ret_from_fork+0x10/0x10
[ 1141.942784][T15780]  ? __switch_to_asm+0x39/0x70
[ 1141.949202][T15780]  ? __switch_to_asm+0x33/0x70
[ 1141.954251][T15780]  ? __pfx_kthread+0x10/0x10
[ 1141.958989][T15780]  ret_from_fork_asm+0x1a/0x30
[ 1141.963977][T15780]  </TASK>
[ 1141.967496][T15780] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1141.975698][T15780] CPU: 0 UID: 0 PID: 15780 Comm: krxrpcio/7001 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[ 1141.987984][T15780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1142.000594][T15780] Call Trace:
[ 1142.004347][T15780]  <TASK>
[ 1142.008156][T15780]  dump_stack_lvl+0x99/0x250
[ 1142.013200][T15780]  ? __asan_memcpy+0x40/0x70
[ 1142.021366][T15780]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1142.026622][T15780]  ? __pfx__printk+0x10/0x10
[ 1142.032158][T15780]  panic+0x2db/0x790
[ 1142.036705][T15780]  ? __pfx_panic+0x10/0x10
[ 1142.041232][T15780]  ? show_trace_log_lvl+0x4fb/0x550
[ 1142.046477][T15780]  ? ret_from_fork_asm+0x1a/0x30
[ 1142.052700][T15780]  __warn+0x31b/0x4b0
[ 1142.056850][T15780]  ? __local_bh_enable_ip+0x180/0x1c0
[ 1142.063316][T15780]  ? __local_bh_enable_ip+0x180/0x1c0
[ 1142.069623][T15780]  report_bug+0x2be/0x4f0
[ 1142.074211][T15780]  ? __local_bh_enable_ip+0x180/0x1c0
[ 1142.079987][T15780]  ? __local_bh_enable_ip+0x180/0x1c0
[ 1142.088635][T15780]  ? __local_bh_enable_ip+0x182/0x1c0
[ 1142.094708][T15780]  handle_bug+0x84/0x160
[ 1142.099809][T15780]  exc_invalid_op+0x1a/0x50
[ 1142.104615][T15780]  asm_exc_invalid_op+0x1a/0x20
[ 1142.110647][T15780] RIP: 0010:__local_bh_enable_ip+0x180/0x1c0
[ 1142.117370][T15780] Code: 48 3b 44 24 48 75 57 48 8d 65 e0 5b 41 5c 41 5e 41 5f 5d c3 cc cc cc cc cc 90 0f 0b 90 e9 f9 fe ff ff e8 53 00 00 00 eb 9f 90 <0f> 0b 90 e9 24 ff ff ff 48 c7 c1 30 ed a0 8f 80 e1 07 80 c1 03 38
[ 1142.138252][T15780] RSP: 0018:ffffc9000ec9f4c0 EFLAGS: 00010046
[ 1142.145373][T15780] RAX: 0000000000000000 RBX: 0000000000000201 RCX: 0000000000000000
[ 1142.154414][T15780] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff89d750a3
[ 1142.162940][T15780] RBP: ffffc9000ec9f548 R08: ffff8880b863bd83 R09: 1ffff110170c77b0
[ 1142.172938][T15780] R10: dffffc0000000000 R11: ffffed10170c77b1 R12: ffff8880b863bd80
[ 1142.182516][T15780] R13: ffff8880785fb370 R14: dffffc0000000000 R15: 1ffff92001d93e98
[ 1142.191433][T15780]  ? rt_set_nexthop+0x693/0xa80
[ 1142.197592][T15780]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 1142.203545][T15780]  ? do_raw_spin_unlock+0x122/0x240
[ 1142.209579][T15780]  ? rt_set_nexthop+0x693/0xa80
[ 1142.215133][T15780]  rt_set_nexthop+0x693/0xa80
[ 1142.220236][T15780]  ip_route_output_key_hash_rcu+0x18f6/0x23a0
[ 1142.227675][T15780]  ? ip_route_output_key_hash+0xde/0x2e0
[ 1142.234498][T15780]  ip_route_output_key_hash+0x1b9/0x2e0
[ 1142.240452][T15780]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[ 1142.246978][T15780]  ? make_kuid+0x1d9/0x680
[ 1142.252217][T15780]  ? lockdep_unlock+0x89/0x120
[ 1142.257845][T15780]  ? __pfx_make_kuid+0x10/0x10
[ 1142.263582][T15780]  ip_route_output_flow+0x2a/0x150
[ 1142.269972][T15780]  rxrpc_init_peer+0x50a/0xc60
[ 1142.275326][T15780]  ? __pfx_rxrpc_init_peer+0x10/0x10
[ 1142.282931][T15780]  ? __lock_acquire+0xab9/0xd20
[ 1142.288693][T15780]  ? do_raw_spin_lock+0x121/0x290
[ 1142.295449][T15780]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1142.301756][T15780]  rxrpc_new_incoming_peer+0x281/0x5a0
[ 1142.308952][T15780]  rxrpc_new_incoming_call+0x612/0x14f0
[ 1142.315804][T15780]  rxrpc_io_thread+0x18b2/0x2cd0
[ 1142.321226][T15780]  ? rxrpc_io_thread+0x1171/0x2cd0
[ 1142.326918][T15780]  ? __pfx_rxrpc_io_thread+0x10/0x10
[ 1142.333175][T15780]  ? do_raw_spin_lock+0x121/0x290
[ 1142.339057][T15780]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 1142.345517][T15780]  ? __kthread_parkme+0x1a1/0x200
[ 1142.350794][T15780]  kthread+0x711/0x8a0
[ 1142.355606][T15780]  ? __pfx_rxrpc_io_thread+0x10/0x10
[ 1142.361278][T15780]  ? __pfx_kthread+0x10/0x10
[ 1142.366022][T15780]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1142.371346][T15780]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1142.376744][T15780]  ? __pfx_kthread+0x10/0x10
[ 1142.381445][T15780]  ret_from_fork+0x3fc/0x770
[ 1142.386086][T15780]  ? __pfx_ret_from_fork+0x10/0x10
[ 1142.391346][T15780]  ? __switch_to_asm+0x39/0x70
[ 1142.396168][T15780]  ? __switch_to_asm+0x33/0x70
[ 1142.400979][T15780]  ? __pfx_kthread+0x10/0x10
[ 1142.405706][T15780]  ret_from_fork_asm+0x1a/0x30
[ 1142.410516][T15780]  </TASK>
[ 1142.413850][T15780] Kernel Offset: disabled
[ 1142.418466][T15780] Rebooting in 86400 seconds..