last executing test programs:

1m11.477239495s ago: executing program 3 (id=837):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000340)=0x6)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000180)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes128\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x8800)

1m8.395842353s ago: executing program 3 (id=851):
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x48)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000240)='wlan0\x00', 0x10)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
r4 = landlock_create_ruleset(&(0x7f0000000200)={0x48, 0x3}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_NET_PORT(r4, 0x2, &(0x7f0000000340)={0x0, 0x2b4}, 0x0)
syz_usb_connect(0x2, 0x24, &(0x7f0000000100)=ANY=[@ANYBLOB="03010000ac0fce405d0500904431000000010902"], 0x0)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="040e04031220"], 0x7)
connect$inet(r3, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x3000003, 0x204031, 0xffffffffffffffff, 0xffffe000)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180), 0x800, 0x0)
r5 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x100, 0x0, 0x335}, &(0x7f0000000080), &(0x7f00000001c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000923000/0x1000)=nil, 0x1000, 0x1, 0x10010, r5, 0x8000000)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f00009d0000/0x1000)=nil, 0x1000, 0x2000001, 0x100010, r5, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x108, 0x0, 0x0, 0x4)
io_uring_enter(r5, 0x47ba, 0x636d, 0x0, 0x0, 0x0)
sendmmsg$inet(r3, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x40000cf, 0x0)

1m5.120631753s ago: executing program 3 (id=862):
r0 = openat$smackfs_load(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/smackfs/load-self2\x00', 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000080)={'#! ', './file0', [{0x20, '\x11\x03\x04|\x81\x91\xb9\xd8r\x01\xdd4\xd0\xf8{'}], 0xa, '\v'}, 0x1c)

1m5.011948076s ago: executing program 0 (id=863):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000009, 0x32, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000900)={0x18, 0x10, &(0x7f0000000840)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@jmp={0x5, 0x1, 0x1, 0xa, 0x7, 0xfffffffffffffff5}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0xb, 0x0, 0x0, 0x41100, 0xd, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)

1m4.820073238s ago: executing program 3 (id=866):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000d80)={0x1, &(0x7f0000000d40)=[{0x6, 0x6, 0x38, 0x7fffffff}]})
fcntl$setownex(r0, 0xf, 0x0)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=ANY=[@ANYBLOB="0a0000000900dfff08cfb2fcbe7e2f3e3ffc5aeb", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff})
r2 = socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={&(0x7f0000000100)=@in6={0xa, 0x0, 0x0, @private1}, 0x80, &(0x7f0000000080)=[{&(0x7f00000000c0)="81", 0x1}], 0x1, &(0x7f0000000040)=[{0x18, 0x84, 0x0, 'b'}, {0x10, 0x84, 0x8}], 0x28}, 0x41)
r3 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)={0x80000000})
r4 = socket$nl_route(0x10, 0x3, 0x0)
bind(r4, &(0x7f00000004c0)=@un=@abs={0x1, 0x0, 0x4e22}, 0x80)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
setpgid(r5, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xe4)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='attr/current\x00')
writev(r6, &(0x7f00000015c0)=[{&(0x7f00000000c0)='w', 0x1}], 0x1)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000001080)={0x200000, 0x200000, 0x0, 0x0, 0x40000})
lremovexattr(&(0x7f0000000000)='./file1\x00', &(0x7f0000000340)=@random={'security.', '\'!\x00a\xd8\xc1\xff\xe3\x87\x9c\x1aZ\xf3\xdaH\x92M\xccJJ\xeb\xed\xcf>\x9a\xb6\x8d\xa5k\xfa\\\xffx\n\x06=qj\x8a\\Lh\x1a\xefl~vH\xacd\xb2\xa0W4k\x13\x9c\v\xf0\xd2_\xad\xe3c\xe1\xea\xf2\x7f\xb5\x9fCe@\xffvLG\xa9\xdea\xc3\xbb&o\xe5\xb4\xee\x8f5\xab\x9fb\x86\x8c\xc0\xb8KI|\xba(e\x00\x94\xfc\xb6\xa2\xc3\x19\xe8W\x99N\xd5\xc7\x05%\x1b-\xdb\xbd\x99\f)I\x91f\x1c\xba\xd44;\xd0\xc0h\bg\x13\x1c\xfdI\xb8\x0f\xc1L\x92\x87\f<\b\xd4T\x03)'})
setpgid(0x0, r5)

1m4.816068873s ago: executing program 0 (id=867):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.events\x00', 0x26e1, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$dri(0x0, 0x2, 0x412101)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8b06, &(0x7f0000000000)={'wlan1\x00', @random="061100000010"})

1m4.630643052s ago: executing program 0 (id=868):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000000)={0x7, 0xd, 0x0, 0xffdffffc, 0x6, "00001000"})
write$binfmt_aout(r0, &(0x7f0000000400)=ANY=[], 0xff2e)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
r2 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000500)={r1, 0x0, 0x2d, 0x0, @val=@netfilter={0xa, 0x4, 0x600, 0x1}}, 0x20)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000180)={r2, r1, 0x4, r1}, 0x10)
r3 = fsopen(&(0x7f0000000040)='devpts\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000580)={0x0, 0x0, 0x0, 0xa, 0x55, "00000000000000000000ffff00"})
r4 = syz_open_pts(r0, 0x0)
r5 = dup3(r4, r0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
sendmsg$sock(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000200)="c0d831cde8aa03f6ed057c685c117a8065aa5aea40fbf0a74511157871f94e2ae3889727f2163a744c1ebeafad862f6e587413f1456140e00fdfa5b2417812559842ac6df2d808ab32520b966f53331fc3aa518765410354649ae62916f0cc9ad8b865c3f7c5ed06659464d5002ee7f60eacce1f2e14f709de530e5eb1d221a0790680495fe59918e9c1f7e8ecc00a16be250da2e01563d4c6054d26", 0x9c}], 0x1}, 0x8000)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x3, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="7a0a00ff00000000711078000000000095"], &(0x7f0000000480)='syzkaller\x00'}, 0x94)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000000300)="8007060082762422f9a30250a90def78e5ddb9330c00000000000000ed608be45b04b15dead87306b09e800706b4914b7ea9550bb300"/64, 0x40)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r8 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xd, 0x8, &(0x7f0000000c00)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x32}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r8}, {}, {0x85, 0x0, 0x0, 0x3b}}]}, &(0x7f0000000700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x16, &(0x7f0000000340)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffff7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r7}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r8}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xe}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @call={0x85, 0x0, 0x0, 0x13}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r5}}]}, &(0x7f0000000000)='GPL\x00', 0x9, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)

1m4.49691189s ago: executing program 3 (id=870):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$kcm(0x10, 0x2, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x85}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={0x0, 0x0, 0x4a, 0x0, 0x1}, 0x28)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffe)
prctl$PR_SCHED_CORE(0x3e, 0x3, 0x0, 0x1, 0x0)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
timer_create(0x1, &(0x7f0000000800)={0x0, 0x14, 0x4}, &(0x7f0000000000))
sched_setscheduler(0x0, 0x2, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000001480))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0xd, 0x4, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000000080), &(0x7f0000000380)=r1}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r3, &(0x7f00000001c0), 0x0}, 0x20)

1m4.147598616s ago: executing program 3 (id=871):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=ANY=[@ANYBLOB="4000000000004a00000000000000000097a10000", @ANYRES32=0x0, @ANYRESHEX=r0, @ANYRES32], 0x40}, 0x1, 0x0, 0x0, 0x4000840}, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000240)='hybla', 0x5)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
r2 = socket(0x23, 0x800, 0x50000001)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x202, 0x0)
getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0xd, 0x3, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000340)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='rseq_update\x00', r4}, 0x18)
rseq(&(0x7f0000000080), 0x20, 0x0, 0x0)
write$sequencer(r3, 0x0, 0x8)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r5, 0x0, 0x33, 0x0, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x3)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f00000001c0), 0x4)
setuid(0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, &(0x7f00000002c0))
quotactl$Q_GETFMT(0xffffffff80000401, 0x0, 0x0, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r6 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
ioctl$VIDIOC_G_MODULATOR(r6, 0xc0445636, &(0x7f0000000080)={0xd, "d579fded3e6abeffca5cfb2b9dc65756858d12ec945b73d85d7b1cb6c232f4a9", 0x8, 0x9, 0xc7, 0x8, 0x5})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x4, &(0x7f0000000440)=ANY=[@ANYRESHEX=r1], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x94)

1m3.434426803s ago: executing program 32 (id=871):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=ANY=[@ANYBLOB="4000000000004a00000000000000000097a10000", @ANYRES32=0x0, @ANYRESHEX=r0, @ANYRES32], 0x40}, 0x1, 0x0, 0x0, 0x4000840}, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000240)='hybla', 0x5)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
r2 = socket(0x23, 0x800, 0x50000001)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x202, 0x0)
getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0xd, 0x3, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000340)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='rseq_update\x00', r4}, 0x18)
rseq(&(0x7f0000000080), 0x20, 0x0, 0x0)
write$sequencer(r3, 0x0, 0x8)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r5, 0x0, 0x33, 0x0, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x3)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f00000001c0), 0x4)
setuid(0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, &(0x7f00000002c0))
quotactl$Q_GETFMT(0xffffffff80000401, 0x0, 0x0, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r6 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
ioctl$VIDIOC_G_MODULATOR(r6, 0xc0445636, &(0x7f0000000080)={0xd, "d579fded3e6abeffca5cfb2b9dc65756858d12ec945b73d85d7b1cb6c232f4a9", 0x8, 0x9, 0xc7, 0x8, 0x5})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x4, &(0x7f0000000440)=ANY=[@ANYRESHEX=r1], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x94)

1m2.830191097s ago: executing program 0 (id=880):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000d80)={0x1, &(0x7f0000000d40)=[{0x6, 0x6, 0x38, 0x7fffffff}]})
fcntl$setownex(r0, 0xf, 0x0)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=ANY=[@ANYBLOB="0a0000000900dfff08cfb2fcbe7e2f3e3ffc5aeb", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff})
r2 = socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={&(0x7f0000000100)=@in6={0xa, 0x0, 0x0, @private1}, 0x80, &(0x7f0000000080)=[{&(0x7f00000000c0)="81", 0x1}], 0x1, &(0x7f0000000040)=[{0x18, 0x84, 0x0, 'b'}, {0x10, 0x84, 0x8}], 0x28}, 0x41)
r3 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)={0x80000000})
r4 = socket$nl_route(0x10, 0x3, 0x0)
bind(r4, &(0x7f00000004c0)=@un=@abs={0x1, 0x0, 0x4e22}, 0x80)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
setpgid(r5, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xe4)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='attr/current\x00')
writev(r6, &(0x7f00000015c0)=[{&(0x7f00000000c0)='w', 0x1}], 0x1)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000001080)={0x200000, 0x200000, 0x0, 0x0, 0x40000})
lremovexattr(&(0x7f0000000000)='./file1\x00', &(0x7f0000000340)=@random={'security.', '\'!\x00a\xd8\xc1\xff\xe3\x87\x9c\x1aZ\xf3\xdaH\x92M\xccJJ\xeb\xed\xcf>\x9a\xb6\x8d\xa5k\xfa\\\xffx\n\x06=qj\x8a\\Lh\x1a\xefl~vH\xacd\xb2\xa0W4k\x13\x9c\v\xf0\xd2_\xad\xe3c\xe1\xea\xf2\x7f\xb5\x9fCe@\xffvLG\xa9\xdea\xc3\xbb&o\xe5\xb4\xee\x8f5\xab\x9fb\x86\x8c\xc0\xb8KI|\xba(e\x00\x94\xfc\xb6\xa2\xc3\x19\xe8W\x99N\xd5\xc7\x05%\x1b-\xdb\xbd\x99\f)I\x91f\x1c\xba\xd44;\xd0\xc0h\bg\x13\x1c\xfdI\xb8\x0f\xc1L\x92\x87\f<\b\xd4T\x03)'})
setpgid(0x0, r5)

1m2.600048855s ago: executing program 0 (id=882):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0xc50d00)
syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000040)={0x1, 0x6575, 0x9b})
r1 = signalfd4(r0, &(0x7f0000000080)={[0x8000000000000000]}, 0x8, 0x80000)
getsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, &(0x7f00000000c0)=[{}, {}, {}], &(0x7f0000000100)=0x18)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r1, 0xc01064c2, &(0x7f0000000180)={0x0, 0x1, r1})
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r0, 0x100000000)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000100)={'team0\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@newlink={0x4c, 0x10, 0xffffffffffffffff, 0x70bd25, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x1414, 0x2021}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x14, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MACADDR_MODE={0x8}, @IFLA_MACVLAN_MODE={0x8, 0x1, 0x10}]}}}, @IFLA_LINK={0x8, 0x5, r4}]}, 0x4c}, 0x1, 0x0, 0x0, 0x1}, 0x8000002)
mbind(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x1, &(0x7f0000000140)=0x9, 0x4, 0xbbc91656ec05889b)

1m1.436250672s ago: executing program 0 (id=886):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x87}, {0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb}, {0xfffffffffffffffd}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0xb8}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=@updpolicy={0xb8, 0x14, 0x1, 0x0, 0x400300, {{@in=@multicast1=0xe0000002, @in, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x87}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb}, {0x0, 0x0, 0x200000000000000}}}, 0xb8}}, 0x2c000010)

1m0.767946439s ago: executing program 33 (id=886):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x87}, {0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb}, {0xfffffffffffffffd}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0xb8}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=@updpolicy={0xb8, 0x14, 0x1, 0x0, 0x400300, {{@in=@multicast1=0xe0000002, @in, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x87}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb}, {0x0, 0x0, 0x200000000000000}}}, 0xb8}}, 0x2c000010)

11.424384515s ago: executing program 4 (id=1058):
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$netlink(r0, 0x0, 0x0)
fcntl$setstatus(r0, 0x4, 0x42c00)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000052e8e510b1134200c4dc0102030109021b00010000000009044400012eafb200090581b4"], 0x0)
semctl$GETALL(0x0, 0x0, 0xd, &(0x7f0000000040)=""/175)
ioperm(0x1, 0x9, 0x2)
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
r3 = syz_io_uring_setup(0x48be, &(0x7f0000001280)={0x0, 0x0, 0x2, 0x2, 0xfffffffc}, 0x0, &(0x7f0000001180))
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x15, &(0x7f0000000580)={0xffffffffffffffff, 0x0, &(0x7f0000001680)=""/227}, 0x20)
write$UHID_CREATE2(r2, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x88fd537e5e114b6f, 0x12, r2, 0x0)
ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0xa13ca8e5839881a9, 0x4})
sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) (fail_nth: 6)

8.455295685s ago: executing program 5 (id=1062):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000200)=ANY=[@ANYBLOB="12010000cad53e20ca1602150a5f0102030109021b0001000010000904"], 0x0)
syz_usb_connect(0x4, 0xca8, &(0x7f0000000240)={{0x12, 0x1, 0x0, 0x3f, 0x46, 0x89, 0x40, 0x1bc7, 0x1260, 0xc6ed, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xc96, 0x4, 0x0, 0x8, 0x20, 0x0, [{{0x9, 0x4, 0x2, 0x8, 0xd, 0x19, 0x3f, 0x34, 0x1, [], [{{0x9, 0x5, 0xd, 0x2, 0x400, 0xc0, 0x8, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x4, 0xd0}, @uac_iso={0x7, 0x25, 0x1, 0x81, 0x1, 0x8}]}}, {{0x9, 0x5, 0x80, 0x10, 0x20, 0x9, 0x2, 0xf, [@generic={0x45, 0x0, "ccdd1b0ac3e7d65043458f82c8bf3545401c4b522080db22ccdd4b4c93bb01a021eb809af3b381751d3ef93e410a88d2a772356f1501623c945459a0bf22082bbe8940"}]}}, {{0x9, 0x5, 0xd, 0x0, 0x10, 0x7, 0x2, 0xc, [@generic={0x9c, 0x1, "675086025976c903dff89ed6fdda593e3cf956810ab2a7a7b861d8c697f62f443440abf1737d443d15b07029a18953e988021e315814c50843522c79c2c8c0684e69fe64fa898f6a4cdf9e400b0f99cbddba9cd4f06a88ab9eff4ad8f6a44c7096c18dc7950a0bd251a32411b7939a80a725a5a63068d4ede8d229c9fb33416c3b32fc70f73a6218020704ea986c3c639b0f3e3e9578789ce91f"}, @uac_iso={0x7, 0x25, 0x1, 0x3, 0x6, 0x4}]}}, {{0x9, 0x5, 0x9, 0x8, 0x40, 0x98, 0x8, 0x2}}, {{0x9, 0x5, 0xe, 0x0, 0x400, 0xf3, 0x9, 0x6, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x80, 0x6}]}}, {{0x9, 0x5, 0xb, 0x4, 0x3ff, 0x99, 0x8, 0x6, [@generic={0xa2, 0x21, "6041446963b6433d96157189c1795e3db5238d59b7e7a5873e7c9f202f000e5e0434b3a0ad68b63eb8b21dd75b9886bbacc91a134bb99f604df87d898df0dbff920942951994319579fb466383a1ef1fa419c5609a5b31c3cb61840cd66e1c10a63859eb9884170f56f3f31f41d506d3dc3142075dbb70d9b84884f82ef6b067fe382a0dfd8c0cd3e8c0eadf168f2235bc1232b1af6080f975a8aca31da9c784"}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x44, 0x3}]}}, {{0x9, 0x5, 0x5, 0x2, 0x10, 0x8, 0x4, 0x7, [@generic={0x4d, 0xa, "979672d8a53dbbba975b8be0212d8883f0ff61578bc110dcbdb7a936fbc371af709867d8a3b23e47c26a147578bb91f43db9efb5812c1ef41a335278b601aade47a9e6f23d7555d8fc6b84"}, @generic={0x8d, 0x2, "bcae5972e0fae9c27094566b4707065a555025e70a43c74aee878d1276d28facb68c242a43082c1ce491f270f7cc0eb4b0869837dc79f5a2574f930ea679a3d391604de59f9eb9ebdfdc4e26f9855647cfd0259bfdd795fab7d4939618a539640ff0ce22bdb66438d858dfc954e75e7ad56d18dc09f0ff59860c0f6be97f59f0abbe01cad693d958ba9651"}]}}, {{0x9, 0x5, 0xf, 0x0, 0x20, 0x5, 0x26, 0xe, [@uac_iso={0x7, 0x25, 0x1, 0xdd2824e3c1d55272, 0x2, 0xa469}, @generic={0xe, 0xf, "0460099f9dda3f6cefb82de7"}]}}, {{0x9, 0x5, 0x4, 0x2, 0x8, 0x2, 0xa4, 0x94, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0xa3, 0x9}, @uac_iso={0x7, 0x25, 0x1, 0x0, 0x3, 0x40}]}}, {{0x9, 0x5, 0xe, 0x0, 0x20, 0xc, 0x81, 0xe3, [@generic={0xc5, 0x21, "2fe3b194f63b112c9550c006d2c759967a2f29e6099268b9cd37987cae73f102e0d5bfab242d071a2a144c06281014eb9ce8b0e0edc6d67cc4d2338aa394b66b6a50448929824249eaf20b241ec2dc73793181c4d4a707d5e1b576062bbc17f62aa2cd8d4b63ad12fe3fbc3f4c3097a459fbc89131c49d24368bec81dd155f1b636fe106f1cc13f295a4abf4d3bb2f3865eb62f939dde65598287a0f03301e1cb6c0f2f4f998b0b71b145eb4fddf4f863ed589a2dfbd40681191702aeeaa8803d3680a"}, @generic={0x76, 0xb, "c7718fb5d878596eb5312eefb0c4709e40211537cfbb4118dc04974cdf0e408931eb0ade8c77a3035ee033b161fda96936be08627af99a9a4fdf7d14b90e3dd67515c1585a5e6d58076df3a6956637579f851560035229889cc6037b2a29618d04c3b57a4b5830fba6b668f45108b2a15e7cfba0"}]}}, {{0x9, 0x5, 0xa, 0x1, 0x200, 0x9, 0xb, 0xfe, [@generic={0x9e, 0x1, "b4bd039cffb0135ec6fac7688b23f8a7cad3d25357f269fbb34acaea4ee728d6fc8f6bb5d5c473daf1d088bd10e1cb6c78a2b416dd53141fe324ec2dcfccb73e102e7a7edd756292f394a55669e189f1e74e8da68bb75a34bfadd1902dd2421cf3127510e25d6ada3b13d5126c6b57e1064d68e00e012037ddd8620e530b6e5ba07d9d850a757381f07f3157ad67dfe46dd1e7042b97548f22417913"}, @generic={0x5b, 0x21, "a32c6b4a67d46e4ea3315485d7d050ce947c610c8c58e3ef9b92d7f4061ed57dd7f379155a1e516231fcdbc0f0e99d2849e8547a9b79ca6bed02f024ffad7c6d07073fb92ed3136fbb8b8b79c82b8d3f53f5dbd24dcd85e0b6"}]}}, {{0x9, 0x5, 0x2, 0x1, 0x8, 0x80, 0x6, 0x80, [@generic={0xa2, 0x2b, "b7b12563eca830190e498c30de2b355ab140522bb65f83c6d3d8bac68d5165e9c1d4d6a298f48635a63bf46c8c35c022f1b916f48831a48ddad7225bb430883f0255cbf679a7df9352264278cd4a1d1ac6df805eec86b1413c9b3d3986233fd29ceb396106841b8ca1b628912a41e3732aef5d1ffaf8cb86e5e47b1e9264abe459d03cfd67ff2f1930242b303fb2725571aef8bd34815498c15d4954d966fb0e"}, @generic={0x1a, 0x30, "f6930ec2345673fb55f97edce9017a1a88332774cb1d9ed7"}]}}, {{0x9, 0x5, 0x9, 0x8, 0x20, 0x0, 0x6, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x2}]}}]}}, {{0x9, 0x4, 0x8a, 0x2, 0x2, 0xda, 0x84, 0x43, 0x0, [@hid_hid={0x9, 0x21, 0xd, 0x0, 0x1, {0x22, 0x7df}}, @cdc_ecm={{0xa, 0x24, 0x6, 0x0, 0x0, "436ed49b7e"}, {0x5, 0x24, 0x0, 0x636}, {0xd, 0x24, 0xf, 0x1, 0x56f, 0x3, 0x2, 0x7d}}], [{{0x9, 0x5, 0x80, 0x10, 0x0, 0x9, 0x3, 0x28, [@generic={0xa6, 0x21, "ecd68f3ac71e90af5d1daa0f6ca268a3787134fe9a6a1618bb85bee639dc0c794f06488672119c3fafde40353c112b1359f179753ffb8d8f066c528884c1dd06dac381ea34a7c37e8132b2c90961208de6e41a032a6a6c068fb3b388caa9bdd9624abbe97f462087b7970d97b1d440f50d23dc0fe28768e1b3e90cc117c52441551c6a066d361f62b8dc9223957085ac521354180ad8b9e858829f5acbfc836736e83f2e"}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x4, 0x5}]}}, {{0x9, 0x5, 0x0, 0x10, 0x3ff, 0xf, 0xda, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0xb, 0xa}]}}]}}, {{0x9, 0x4, 0x6c, 0x9, 0x8, 0x9e, 0x9b, 0x6, 0x2, [@uac_as], [{{0x9, 0x5, 0xc, 0x10, 0x200, 0x7f, 0x3, 0x22, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x3, 0x4000}, @generic={0xff, 0x4, "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"}]}}, {{0x9, 0x5, 0x9, 0x1, 0x3ff, 0x3, 0x4, 0x2, [@generic={0x7, 0x10, "9a11baf94e"}]}}, {{0x9, 0x5, 0x8, 0xc, 0x200, 0x5, 0x3, 0xc}}, {{0x9, 0x5, 0x0, 0x18, 0x400, 0xa3, 0x9, 0x5d}}, {{0x9, 0x5, 0x15, 0x10, 0x400, 0xf9, 0x9, 0xf, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x8, 0x4}]}}, {{0x9, 0x5, 0xf, 0x0, 0x400, 0x8, 0x7, 0x5, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x3, 0x7}, @generic={0xe1, 0xa, "16fc68db3506220d4ec505673a6d58d62cce3e7b2b969285000dd9d1557b1b8bfec2717ac737b734436b2777a10ef4a77e15ca6e7a6cd7aadcba0ebcf19e448620a0d9d47feb320e70713d9e3fc8cf90c4f7c134d78ff343d18764975183d98910df3f236affe34af72fd3f30a8de13e44654cbefa1abbe8748e884ea618744ed79cdad44cad0a5ec4b179d448c5f8eb794a4a7237bf4eef476217b3953485abab42188bd33806cd36138e43ff25dd0501f93d04f6ac3ea3ba46084dac96c859335b97bece136230a1ef2cb2c855542f433d909eaa5d52d99d52ce52e5b1f7"}]}}, {{0x9, 0x5, 0x1, 0x0, 0x200, 0x2, 0x6, 0x5, [@generic={0xbe, 0xa, "3a569e1cfe791d37792c2040e377bf530e20d0e0fbb01d0d271bcef051e11375f2d62703e01e7b608b0548482c93e9c8908428802f75d40e57bcbffd5faf8050ca6abfab63be23bafd316071ee268c98e23c66e307d10a9523f3ca2c365d7c6aa882915d33ae715cda6c8a2b5ee8ad205d53b87d645a2af78943ee2df1793553945e4196579d9ff3d0a4fe5af79b1c6fafcd9db6481b19bd00fdc30195fdabaca12e8f1947a15aead3340de7b388c842ac486256caf89bcdcd93b8ee"}, @generic={0xe1, 0xa, "51e72e0348ae3c9578cab2753d442188f780ac45665b830015989de11a3aabcb3ff3b137ccc0e69fda29caba7c8fc50284c580064494150039314c2d95aba2971f59862682efb6aa9800b38f939404bf21062ab250d8e69fbea5a80cc60819f36a8b24e9d062b625414ec8956dfb6324a6a608a77e6584029bd8e37fb04086a6e74fc4ce99866c5c4f17a27de6ed39421bd95936b48b4e2b4b0522f574184289f056970ffc5e612303632bbbe6d41823e233bb4a2e2fe7a6b65cab1e9a258b70b2a8c5516f2b52e3d56f8e00c10eca18413457aeb0c24242e1183bf6442fb9"}]}}, {{0x9, 0x5, 0x5, 0x0, 0x8, 0x4, 0x5, 0x1}}]}}, {{0x9, 0x4, 0x8f, 0x0, 0x7, 0xff, 0x5, 0x18, 0x4, [@cdc_ncm={{0x6, 0x24, 0x6, 0x0, 0x1, "b8"}, {0x5, 0x24, 0x0, 0x2}, {0xd, 0x24, 0xf, 0x1, 0x5, 0x80, 0x6, 0x1}, {0x6, 0x24, 0x1a, 0x2, 0x12}, [@mbim_extended={0x8, 0x24, 0x1c, 0x7ff, 0x2, 0xc69d}, @call_mgmt={0x5, 0x24, 0x1, 0x1, 0x4}, @country_functional={0xc, 0x24, 0x7, 0x58, 0x1ff, [0x7, 0x1, 0x8]}]}, @generic={0x59, 0xc, "4be250c8af8b52d242ac637af33a4e53e76c711999fc44f45d229f0b426993dcd4840937bc3911d262d4cb32a30a58311644f93d3a0e63bf2acb4fb30417d81e910dd8f8425e94475076781439a0253ba3c2a6bae586b7"}], [{{0x9, 0x5, 0x3, 0x0, 0x260, 0x4, 0x8, 0xc0}}, {{0x9, 0x5, 0xb, 0x10, 0x3f7, 0x4, 0x2, 0x2}}, {{0x9, 0x5, 0x1, 0x10, 0x10, 0x6, 0x1, 0x5a}}, {{0x9, 0x5, 0x2, 0x10, 0x228, 0x9, 0xb}}, {{0x9, 0x5, 0x2, 0x0, 0x400, 0xb, 0x8}}, {{0x9, 0x5, 0x0, 0x3, 0x200, 0xc, 0x78, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x5, 0x4}, @uac_iso={0x7, 0x25, 0x1, 0x81, 0xf, 0x8}]}}, {{0x9, 0x5, 0xd, 0x10, 0x40, 0x8, 0x9, 0x32, [@generic={0x67, 0x7, "496f5f1dc9a9710896b924ed18a33313b306737b3d7eece78e4755651b29dc0493db82a16260098ce66689adef6a099e922ad788f6034613b704f5d457d572e97242106d051efed465c75ac5d3f44eb5e1ba6d5d1b2e2f73ee4655ecda497ec49c5f0b5a7f"}, @generic={0x48, 0xd, "30d70561a94eb0438a22819ad15a19c3230bd46305d3b754364f6c50f82cb5482c0da98fa07543c4ccd0cbddb4906540dcda204ab2d8d7c99970566b3e6a14ae97f76a92d103"}]}}]}}]}}]}}, &(0x7f00000001c0)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x300, 0x7e, 0xf, 0x5, 0x20, 0xf}, 0x11, &(0x7f0000000040)={0x5, 0xf, 0x11, 0x1, [@ssp_cap={0xc, 0x10, 0xa, 0x1, 0x0, 0x80, 0x1e, 0xcf28}]}, 0x3, [{0xbf, &(0x7f0000000080)=@string={0xbf, 0x3, "b6e04192a173cd0c82295805b6253143fbcde2c4babccb7803cf7c3dcefb9887a629ae59d359d34485a2fbdee56351d40af591d4c59695d0c9fe029eccb1d85224764cc4208e100f9d8cf885d7aec2a955416271c03d2729867d8021c4ada90dc89d7261bde2d1d44be601bc8bdc9d103b6b18baadec0c9ede4526565285b33e5bf075765da21f190ce2de0de03ecfe09636c8b6ff34a848fdec48bc68dc884300ceb573b826d1f68ff138951e57b06db8f719cf44fa85ac5107573d25"}}, {0x4, &(0x7f0000000140)=@lang_id={0x4, 0x3, 0x2c09}}, {0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x4442}}]})
socket$isdn_base(0x22, 0x3, 0x0)
unshare(0x2040400)
fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
socket$inet6(0xa, 0x800000000000002, 0x0)
socket$rds(0x15, 0x5, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, 0x2000000}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000180)=@gcm_128={{0x304}, "fb0fda000000cc00", "4cb42692506aed242aa8b6f46fcbc0c6", "aa4bc766", "5f3a3962aad66cc0"}, 0x28)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
shutdown(r0, 0x1)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, &(0x7f0000000f00)={0x0, 0xc, 0x7, 0x1, @vifc_lcl_addr=@loopback, @remote}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x2, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f0000000240)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000140)={'tunl0\x00', &(0x7f00000000c0)={'syztnl1\x00', 0x0, 0x1, 0x1, 0x80, 0x9, {{0x5, 0x4, 0x2, 0x2, 0x14, 0x67, 0x0, 0x9, 0x4, 0x0, @empty, @empty}}}})
socket(0x2, 0x80805, 0x0)

7.607656438s ago: executing program 4 (id=1066):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x6, 0x17, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000218110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200008877747ab7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000000000008500000017000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
getsockopt$bt_BT_POWER(r3, 0x112, 0x9, &(0x7f0000000000)=0x40, &(0x7f00000000c0)=0x1)
sendmsg$NFT_BATCH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0xa}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, @cmp={{0x8}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_CMP_DATA={0x10, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x9, 0x1, "91f66a3202"}]}, @NFTA_CMP_OP={0x8}, @NFTA_CMP_SREG={0x8, 0x1, 0x1, 0x0, 0x3}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0xd0}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0xfca804a0, 0xe, 0x5f, &(0x7f0000000200)="0400000098d1db1ba91d3305a782", 0x0, 0x973, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6}, 0x50)

7.460340191s ago: executing program 1 (id=1067):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8080}, 0x20004450)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0xfffe}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x1f40}, @NFTA_LIMIT_TYPE={0x8, 0x4, 0x1, 0x0, 0x9020cc2dd4ff75a0}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, "98"}]}], {0x14, 0x14, 0x1, 0x0, 0x0, {0x1}}}, 0x84}, 0x1, 0x0, 0x0, 0x850}, 0xc3c)

6.64187251s ago: executing program 1 (id=1069):
bind$alg(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0xffffffffffffffff}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x10, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000016000000000000b708000000000000007b8af8ff00000000b7080000341200007b8af0ff00000000bfa100050000000007010000f8ffffffbfa400000000000007040000f0ffffff0200000000000000182300", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000000"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f0000000200)=@name={0x1e, 0x2, 0x3, {{0x42, 0x4}}}, 0x10)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
r3 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r3, &(0x7f0000000380)={&(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x2, {0x42, 0x4, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4000884}, 0x4)

6.580131197s ago: executing program 6 (id=1070):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
write$P9_RLERRORu(r0, &(0x7f0000000340)=ANY=[@ANYRESHEX], 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x0], 0x0, 0x0, 0x1, 0x1}}, 0x40)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x20, 0x10012, r0, 0xf2)

6.3643476s ago: executing program 2 (id=1072):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000340)=0x6)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000180)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes128\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, 0x0, 0x8800)

6.284160064s ago: executing program 4 (id=1073):
syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
mount$tmpfs(0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)
r0 = openat$smackfs_relabel_self(0xffffffffffffff9c, &(0x7f0000003340), 0x2, 0x0)
socket$inet(0xa, 0x801, 0x84)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0xa82, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000440)=0x5)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$smackfs_labels_list(r0, &(0x7f0000000280)=ANY=[], 0xe)
pread64(r0, &(0x7f0000003640)=""/135, 0x87, 0x5)

5.867486806s ago: executing program 6 (id=1074):
prlimit64(0x0, 0x7, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sendmsg$AUDIT_TTY_SET(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0}, 0x440c4)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@deltfilter={0x3c, 0x2d, 0x300, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xfff3, 0x1}, {0x3, 0xf}, {0x5, 0x6}}, [@TCA_CHAIN={0x8, 0xb, 0xa4}, @TCA_RATE={0x6, 0x5, {0x5, 0x8}}, @TCA_RATE={0x6, 0x5, {0x5, 0x9}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004004}, 0x50)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000340)="120000001200e7ef0000a1001b0000000000", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="0700000004000000060000000156250002420400182227d515b3c35aa92b7c3c9ba745dd4d90d9ab6425f8b8c2824ea750603773a6b210aab961", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x3, &(0x7f0000000740)=ANY=[@ANYBLOB="08ca70f496ce6348b27f1d0cf6cd8d74000000000a"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x52, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/comedi4\x00', 0x101000, 0x0)
ioctl$COMEDI_SUBDINFO(r4, 0x80486402, &(0x7f00000003c0))
socket$nl_xfrm(0x10, 0x3, 0x6)
mount$9p_tcp(&(0x7f00000002c0), &(0x7f0000000300)='./cgroup.cpu/cgroup.procs\x00', &(0x7f00000004c0), 0x8, &(0x7f0000000640)=ANY=[@ANYBLOB="7472616e733d7463702c706f72743d3078303030303030303030303030346532322c003bab92501b62c2719b2712e84587d76a8b3d1c74a969f4e4138c582aef909c50d6a74c3cb2a78e3d72b8db179d6bc5710ebddbad7a2fd6378270ee2ac22116ac351b4dfbc1458ae71b1622a182f00284a1d567b0eae03fc452d77428dac39bce19d3207e77536ddbeedb99c895c636ead9aa1a15358d35195a2889b582f6bc3a94c1a17bbda788847bdfb8976d68d18ddd83194f"])
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000000))
r5 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r5, 0x4010640d, &(0x7f0000000280)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r5, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r6=>0x0], 0x40000012})
ioctl$DRM_IOCTL_MODE_ATOMIC(r5, 0xc03864bc, &(0x7f0000000180)={0x300, 0x1, &(0x7f0000000340)=[r6], &(0x7f0000000040)=[0x1], &(0x7f0000000200), &(0x7f0000000380)=[0x20000000000], 0x0, 0x7f})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r7, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000000000000001400000018000180140002006e657464657673696d3000000000140005000c000100000008001300ffff000005000b00010000000800090057240b2b080002000101000008000e"], 0x5c}, 0x1, 0x0, 0x0, 0x4000840}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

5.790704449s ago: executing program 1 (id=1075):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r3)
openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./control\x00', 0x1, 0x101)
rmdir(&(0x7f0000000040)='./control\x00')
r4 = openat$cgroup_freezer_state(r3, &(0x7f0000000080), 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x8000002)
r5 = socket(0x840000000002, 0x3, 0xfa)
sendmmsg$inet(r5, &(0x7f0000006b80)=[{{&(0x7f0000000580)={0x2, 0x4e22, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000001a00)=[@ip_tos_int={{0x10, 0x0, 0x1, 0x3}}, @ip_retopts={{0x1c, 0x0, 0x7, {[@cipso={0x86, 0xe, 0x1, [{0x0, 0x2}, {0x42a603aea45759fa, 0x2}, {0x6, 0x2}, {0x6, 0x2}]}]}}}, @ip_tos_u8={{0xd, 0x0, 0x1, 0xa}}], 0x3c}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)
copy_file_range(r0, 0x0, r5, &(0x7f0000000240)=0xffffffffffff4eea, 0xd11, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20a00, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
read$FUSE(r4, &(0x7f00000014c0)={0x2020, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}, 0x2020)
syz_open_procfs$pagemap(r8, &(0x7f0000000200))
r9 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_GET_MSRS_cpu(r9, 0xc008ae88, &(0x7f0000000080)={0x1, 0x0, [{0x40000090, 0x0, 0x4}]})
r10 = socket$tipc(0x1e, 0x2, 0x0)
getsockopt$TIPC_SRC_DROPPABLE(r10, 0x10f, 0x80, &(0x7f00000000c0), &(0x7f0000000180)=0x4)

5.699963286s ago: executing program 5 (id=1076):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000"], 0x48) (async)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94) (async)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000100)='kfree\x00', r2, 0x0, 0x4000000080000000}, 0x18)
r3 = io_uring_setup(0x1345, &(0x7f0000000940)={0x0, 0xdf07, 0x40, 0x1, 0x8105}) (async)
r4 = socket(0x40000000015, 0x5, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x18, 0x7, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000e50003000000000085"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c}, 0x94)
connect$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10) (async)
bind$inet(r4, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r4, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) (async)
sendmsg$NL80211_CMD_JOIN_MESH(r4, 0x0, 0x40) (async)
close_range(r3, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r0}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5, 0x0, 0xfffffffffffffffd}, 0x18) (async)
r6 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r6, 0xc0105512, &(0x7f0000000200)) (async)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000020601080000000000000000000000080c00078008000640200000000500010006000000050005000a00000005000400000000000900020073797a31000000000c000300686173683a6970"], 0x50}, 0x1, 0x0, 0x0, 0x4010}, 0x20040000)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="44000000090601020000000000000000000000000900020073797a310000000005000100070000001c0007801800018014000240"], 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)

5.517936647s ago: executing program 5 (id=1077):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000900)={0x18, 0xf, &(0x7f0000000840)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0xb, 0x0, 0x0, 0x41100, 0xd, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)

5.499651389s ago: executing program 1 (id=1078):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
mount(&(0x7f0000000280)=@filename='./file1\x00', &(0x7f0000000240)='./file1\x00', &(0x7f0000000140)='f2fs\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f0000000140)=0xb)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="5c0000002000010000000000000000000220000000000000000000000500150002000000080009000000000008000b0005000000080017004e214e22080001"], 0x5c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='\\\x00\x00\x00!'], 0x5c}}, 0x0)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000005d00)={0x114, 0x20, 0x1, 0x0, 0x25dfdbfb, "", [@nested={0x101, 0x117, 0x0, 0x1, [@typed={0xc, 0x16, 0x0, 0x0, @u64=0xfac06}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @empty}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c", @typed={0x4, 0xeb}]}]}, 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000580)={'ip6gre0\x00', &(0x7f0000000500)={'syztnl1\x00', <r3=>0x0, 0x2f, 0x8, 0x7, 0x4, 0x44, @loopback, @rand_addr=' \x01\x00', 0x8000, 0x710, 0x1, 0x9}})
sendmsg$nl_route(r1, &(0x7f0000000780)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)=ANY=[@ANYBLOB="3c0000007000200026bd7000ffdbdf250700ddff", @ANYRES32=r3, @ANYBLOB="0c00018008000100040002000c00018005000300010000000c0001800500030001000000"], 0x3c}, 0x1, 0x0, 0x0, 0x80c0}, 0x8c4)
sendto$packet(0xffffffffffffffff, &(0x7f0000000340)="5f02", 0x2, 0xec882023cc1f2782, 0x0, 0x0)
r4 = syz_open_dev$vim2m(&(0x7f0000000040), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000400)={0xf0f021})
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1, 0x0, 0x0, 0x4ee59ce4, 0xfffffffffffffffe, 0xfffffffc}, 0x0)
ioprio_set$pid(0x3, 0x0, 0x0)
r5 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000180)={0xa0, 0xfffffffffffffff5, 0x0, {{0x4, 0x1, 0x5, 0x6, 0x3, 0x1, {0x1, 0x180, 0xff, 0x5, 0x100, 0x7cf4, 0x9, 0x7ffffffd, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0)
sendfile(r5, r5, &(0x7f0000000080)=0x2, 0x7f03)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a20000000000a01020000000000000000010000030900010073797a30000000002c000000030a01010000000000000000010000000900010073797a30000000000900030073797a320000000084000000060a010400000000000000000100000008000b40000000005c000480340001800b000100657874686472000024000280080001400000000c0800034000000000080004400000002d0500020007000000240001800a000100726564697200000014000280080001400000000c08000340000000100900010073797a30"], 0xf8}}, 0x0)
ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000100)={0xf0f017, 0x2})
r7 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(r7, 0xc0045009, &(0x7f0000000000)=0x1)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x4, 0x20011, r1, 0x7a943000)
ioctl$SNDCTL_DSP_SUBDIVIDE(r7, 0xc0045009, &(0x7f00000000c0)=0x1001)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f00000005c0)={r8, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x1e, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r8, 0xc08c5335, &(0x7f0000000180)={0x4, 0x1, 0x1, 'queue1\x00', 0x4})

5.382468712s ago: executing program 5 (id=1079):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f00000001c0)=0x2001)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
r1 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r1, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800006, 0x7000001, 0x6e073, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x600000, 0x9)
r2 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r2, &(0x7f0000000480)={0xa, 0xfffe, 0x3, @mcast1, 0x5}, 0x1c)
r3 = dup2(r2, r2)
sendmmsg$unix(r3, &(0x7f0000000040)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=[@cred={{0x1c}}], 0x20, 0x800}}], 0x1, 0x4008890)
setsockopt$SO_TIMESTAMP(r1, 0x1, 0x40, &(0x7f00000000c0)=0xd95, 0x4019e2060d4e3ac7)
r4 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f00000001c0)={@loopback, 0x800, 0x1, 0xff, 0xd, 0x0, 0x880}, 0x20)
sendto$inet(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
r6 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r5, &(0x7f0000000c40)={0x6000001b})

4.899966429s ago: executing program 2 (id=1080):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8080}, 0x20004450)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0xfffe}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x1f40}, @NFTA_LIMIT_TYPE={0x8, 0x4, 0x1, 0x0, 0x9020cc2dd4ff75a0}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, "98"}]}], {0x14, 0x14, 0x1, 0x0, 0x0, {0x1}}}, 0x84}, 0x1, 0x0, 0x0, 0x850}, 0xc3c)

4.684019176s ago: executing program 1 (id=1081):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f00000001c0)=0x2001)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
r1 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r1, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800006, 0x7000001, 0x6e073, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x600000, 0x9)
r2 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r2, &(0x7f0000000480)={0xa, 0xfffe, 0x3, @mcast1, 0x5}, 0x1c)
r3 = dup2(r2, r2)
sendmmsg$unix(r3, &(0x7f0000000040)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=[@cred={{0x1c}}], 0x20, 0x800}}], 0x1, 0x4008890)
setsockopt$SO_TIMESTAMP(r1, 0x1, 0x40, &(0x7f00000000c0)=0xd95, 0x4019e2060d4e3ac7)
r4 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f00000001c0)={@loopback, 0x800, 0x1, 0xff, 0xd, 0x0, 0x880}, 0x20)
sendto$inet(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000005a00)=[{{0x0, 0x0, 0x0}, 0x3}], 0x1, 0x20102, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
r6 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r5, &(0x7f0000000c40)={0x6000001b})

4.616646885s ago: executing program 2 (id=1082):
unshare(0x26020400)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000d80)={0x0, 0x0})
fcntl$setownex(r0, 0xf, 0x0)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=ANY=[@ANYBLOB="0a0000000900dfff08cfb2fcbe7e2f3e3ffc5aeb", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/14], 0x48)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff})
r2 = socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={&(0x7f0000000100)=@in6={0xa, 0x0, 0x0, @private1}, 0x80, &(0x7f0000000080)=[{&(0x7f00000000c0)="81", 0x1}], 0x1, &(0x7f0000000040)=[{0x18, 0x84, 0x0, 'b'}, {0x10, 0x84, 0x8}], 0x28}, 0x41)
r3 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)={0x80000000})
r4 = socket$nl_route(0x10, 0x3, 0x0)
bind(r4, &(0x7f00000004c0)=@un=@abs={0x1, 0x0, 0x4e22}, 0x80)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
setpgid(r5, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xe4)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='attr/current\x00')
writev(r6, &(0x7f00000015c0)=[{&(0x7f00000000c0)='w', 0x1}], 0x1)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000001080)={0x200000, 0x200000, 0x0, 0x0, 0x40000})
lremovexattr(&(0x7f0000000000)='./file1\x00', &(0x7f0000000340)=@random={'security.', '\'!\x00a\xd8\xc1\xff\xe3\x87\x9c\x1aZ\xf3\xdaH\x92M\xccJJ\xeb\xed\xcf>\x9a\xb6\x8d\xa5k\xfa\\\xffx\n\x06=qj\x8a\\Lh\x1a\xefl~vH\xacd\xb2\xa0W4k\x13\x9c\v\xf0\xd2_\xad\xe3c\xe1\xea\xf2\x7f\xb5\x9fCe@\xffvLG\xa9\xdea\xc3\xbb&o\xe5\xb4\xee\x8f5\xab\x9fb\x86\x8c\xc0\xb8KI|\xba(e\x00\x94\xfc\xb6\xa2\xc3\x19\xe8W\x99N\xd5\xc7\x05%\x1b-\xdb\xbd\x99\f)I\x91f\x1c\xba\xd44;\xd0\xc0h\bg\x13\x1c\xfdI\xb8\x0f\xc1L\x92\x87\f<\b\xd4T\x03)'})
setpgid(0x0, r5)

4.321194658s ago: executing program 2 (id=1083):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/\x00et/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44\x8cm\xa0\x8dN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000400))
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0x9d7f, 0x800, 0x0, 0xfffffffc}, &(0x7f0000000100), 0x0)
unshare(0x26020480)
r1 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x2001)
fstat(r1, &(0x7f0000000440))
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00')
syz_usb_connect(0x0, 0x5a, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000ec13b2106d04f308280b0102030109024800010000000009046900000e0100002b4101", @ANYRESHEX=0x0, @ANYRES64=r2], 0x0)
fchdir(r0)
getdents64(0xffffffffffffffff, 0x0, 0x0)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r3 = epoll_create1(0x80000)
r4 = syz_open_dev$sg(&(0x7f00000003c0), 0x4a38, 0x201)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000200)={0xa0000004})
poll(&(0x7f0000000000)=[{r3, 0xe0f9c53bdbf16675}], 0x1, 0x8)
open(&(0x7f00000000c0)='.\x00', 0x8000, 0x50)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2000000000000022, 0x0, 0x0)
fanotify_init(0x200, 0x0)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc)=<r6=>0x0)
timer_settime(r6, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x1, 0xfffffffc, 0x0, 0x0, 0xfffffffc)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r7, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

3.900227719s ago: executing program 6 (id=1084):
lsetxattr$trusted_overlay_redirect(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), &(0x7f0000000200)='./file0\x00', 0x8, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000005580)=""/102392, 0x18ff8)
sendmsg$nl_route_sched(r0, 0x0, 0x0)
getpid()
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x3}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x48)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f00000000c0)='./file0\x00')
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x100)
getdents(r2, &(0x7f0000000100)=""/162, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000100)={'vcan0\x00'})

3.224597416s ago: executing program 5 (id=1085):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000700000001000500090000"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000280), 0x8000, 0x0)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
r7 = getuid()
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={r3, 0xe0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000380)=[0x0, 0x0, 0x0], ""/16, <r8=>0x0, 0x0, 0x0, 0x0, 0x7, 0x7, &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x3f, &(0x7f0000000540)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000580), &(0x7f00000005c0), 0x8, 0xb4, 0x8, 0x8, &(0x7f0000000600)}}, 0x10)
sendmsg$nl_xfrm(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000a40)=@allocspi={0x1a4, 0x16, 0x1, 0x0, 0x0, {{{@in=@private=0xa010100, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7}, {@in=@dev={0xac, 0x14, 0x14, 0x31}, 0x0, 0x6c}, @in6=@mcast2, {0x0, 0x0, 0x0, 0x4, 0x0, 0x2}}, 0x0, 0x7fff}, [@policy={0xac, 0x7, {{@in=@multicast2, @in6=@local, 0x4e20, 0xb75, 0x4e24, 0x80, 0x2, 0x20, 0xa0, 0xff, r8, r7}, {0xfffffffffffffff9, 0x14401053, 0x9, 0x6, 0x3, 0x5, 0x6, 0x3c}, {0x5, 0x2, 0x37a50776, 0xf315}, 0x0, 0x6e6bbb, 0x0, 0x0, 0x2, 0x3}}]}, 0x1a4}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0xc0189375, &(0x7f0000000340)={{0x1, 0x1, 0x18, r5}, './file0\x00'})
r9 = fsopen(&(0x7f0000000180)='proc\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r9, 0x6, 0x0, 0x0, 0x0)
r10 = syz_open_dev$loop(&(0x7f0000000240), 0xffffffff7ffffffd, 0x160862)
ioctl$LOOP_CONFIGURE(r10, 0x4c0a, &(0x7f0000000080)={0xffffffffffffffff, 0x0, {0x0, 0x0, 0x0, 0x8, 0x4000000000000ffd, 0x0, 0x0, 0x15, 0x0, "faf98317e5a1149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d680f985881a7beda9d69098c8b534464c516bdd8a0f35", "32d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "7152376050f87f3e30ad1b7c02c4dab8160643ac4ad9ad33000020e3c4cd6100", [0xfffffffffffffce8, 0xa]}})
syz_usb_connect(0x5, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201001f7da2450803041d93ffda01c866b102030109021b0001032726c4629835500bf002090458070124254b060905"], &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0})

2.921441206s ago: executing program 1 (id=1086):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18)
syz_usb_connect$hid(0x6, 0x0, 0x0, 0x0)
connect$can_j1939(r0, &(0x7f0000000140)={0x1d, r1, 0x0, {}, 0x1}, 0x18)
sendmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000880)="75f60520bd952f2a", 0x8}], 0x1}}], 0x1, 0x4000048)
recvmmsg(r0, &(0x7f0000000ac0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

1.869743124s ago: executing program 6 (id=1087):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102400, 0x19000)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, &(0x7f0000000140)={0x0})
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000240)={0x3, &(0x7f0000000140)=[{0x20, 0x0, 0x40, 0xfffff038}, {0x30, 0x0, 0x0, 0xffffb024}, {0x6, 0x0, 0x4}]}, 0x10) (fail_nth: 9)
sendmmsg(r1, &(0x7f0000001c00), 0x400000000000159, 0x40840)

1.445639131s ago: executing program 4 (id=1088):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x8ab00, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5})
ioctl$TUNSETVNETLE(r1, 0x400454dc, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x800, 0x0, 0x103, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4)
r2 = dup(r1)
sendmsg$inet6(r2, &(0x7f0000000080)={&(0x7f00000000c0)={0xa, 0x4e23, 0x80000, @dev={0xfe, 0x80, '\x00', 0x1d}}, 0x1c, 0x0, 0x0, &(0x7f0000000140)=[@hopopts={{0x18, 0x29, 0x36, {0x3b}}}, @hopopts={{0x28, 0x29, 0x36, {0x1d, 0x2, '\x00', [@jumbo={0xc2, 0x4, 0x9}, @enc_lim={0x4, 0x1, 0x3}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}]}}}], 0x40}, 0x40c0)

405.325633ms ago: executing program 6 (id=1089):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x40010)

344.163252ms ago: executing program 6 (id=1090):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
r2 = socket$netlink(0x10, 0x3, 0x4)
socket$nl_netfilter(0x10, 0x3, 0xc)
writev(r2, &(0x7f0000000000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84476080ffe00600000001590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x40b}], 0x1)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x10002, 0x1, 0x1})
r3 = gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)=<r4=>0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x4d, 0x4, 0x7, 0x50000}]})
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x8}, 0x10}, 0x94)
timer_settime(r4, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x20000400)
r6 = syz_open_procfs(0x0, &(0x7f0000000400)='timers\x00')
epoll_pwait2(r6, &(0x7f0000000000)=[{}], 0x1, 0x0, 0x0, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
close_range(r7, r7, 0x6)
sendmsg$nl_generic(r5, &(0x7f00000029c0)={0x0, 0x4e, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="200000001000010700000000200000000a0000000c0002006e6c3830323131"], 0x20}}, 0x0)
recvmmsg(r5, &(0x7f0000001580)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
connect$inet6(r1, &(0x7f0000000300)={0xa, 0x4e23, 0x9, @local, 0x3}, 0x1c)
recvmmsg(r5, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000002a00)=""/4102, 0x1006}, {&(0x7f00000000c0)=""/23, 0x17}, {&(0x7f0000003a40)=""/4105, 0x1009}, {&(0x7f00000015c0)=""/76, 0x4c}, {&(0x7f0000001640)=""/80, 0x50}], 0x5}, 0x1801}], 0x1, 0x120, 0x0)
ioctl$vim2m_VIDIOC_STREAMON(r0, 0x40045612, &(0x7f0000000080)=0x2)

336.41033ms ago: executing program 2 (id=1091):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
mount(&(0x7f0000000280)=@filename='./file1\x00', &(0x7f0000000240)='./file1\x00', &(0x7f0000000140)='f2fs\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f0000000140)=0xb)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="5c0000002000010000000000000000000220000000000000000000000500150002000000080009000000000008000b0005000000080017004e214e22080001"], 0x5c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='\\\x00\x00\x00!'], 0x5c}}, 0x0)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000005d00)={0x114, 0x20, 0x1, 0x0, 0x25dfdbfb, "", [@nested={0x101, 0x117, 0x0, 0x1, [@typed={0xc, 0x16, 0x0, 0x0, @u64=0xfac06}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @empty}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c", @typed={0x4, 0xeb}]}]}, 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000580)={'ip6gre0\x00', &(0x7f0000000500)={'syztnl1\x00', <r3=>0x0, 0x2f, 0x8, 0x7, 0x4, 0x44, @loopback, @rand_addr=' \x01\x00', 0x8000, 0x710, 0x1, 0x9}})
sendmsg$nl_route(r1, &(0x7f0000000780)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)=ANY=[@ANYBLOB="3c0000007000200026bd7000ffdbdf250700ddff", @ANYRES32=r3, @ANYBLOB="0c00018008000100040002000c00018005000300010000000c0001800500030001000000"], 0x3c}, 0x1, 0x0, 0x0, 0x80c0}, 0x8c4)
sendto$packet(0xffffffffffffffff, &(0x7f0000000340)="5f02", 0x2, 0xec882023cc1f2782, 0x0, 0x0)
r4 = syz_open_dev$vim2m(&(0x7f0000000040), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000400)={0xf0f021})
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1, 0x0, 0x0, 0x4ee59ce4, 0xfffffffffffffffe, 0xfffffffc}, 0x0)
ioprio_set$pid(0x3, 0x0, 0x0)
r5 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000180)={0xa0, 0xfffffffffffffff5, 0x0, {{0x4, 0x1, 0x5, 0x6, 0x3, 0x1, {0x1, 0x180, 0xff, 0x5, 0x100, 0x7cf4, 0x9, 0x7ffffffd, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0)
sendfile(r5, r5, &(0x7f0000000080)=0x2, 0x7f03)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a20000000000a01020000000000000000010000030900010073797a30000000002c000000030a01010000000000000000010000000900010073797a30000000000900030073797a320000000084000000060a010400000000000000000100000008000b40000000005c000480340001800b000100657874686472000024000280080001400000000c0800034000000000080004400000002d0500020007000000240001800a000100726564697200000014000280080001400000000c08000340000000100900010073797a30"], 0xf8}}, 0x0)
ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000100)={0xf0f017, 0x2})
r7 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(r7, 0xc0045009, &(0x7f0000000000)=0x1)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x4, 0x20011, r1, 0x7a943000)
ioctl$SNDCTL_DSP_SUBDIVIDE(r7, 0xc0045009, &(0x7f00000000c0)=0x1001)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f00000005c0)={r8, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x1e, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r8, 0xc08c5335, &(0x7f0000000180)={0x4, 0x1, 0x1, 'queue1\x00', 0x4})

192.219181ms ago: executing program 4 (id=1092):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8080}, 0x20004450)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0xfffe}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x1f40}, @NFTA_LIMIT_TYPE={0x8, 0x4, 0x1, 0x0, 0x9020cc2dd4ff75a0}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, "98"}]}], {0x14, 0x14, 0x1, 0x0, 0x0, {0x1}}}, 0x84}, 0x1, 0x0, 0x0, 0x850}, 0xc3c)

89.732045ms ago: executing program 4 (id=1093):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="08000000040000000400000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x14, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000025000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0x3a, 0xffffffffffffffd0, &(0x7f0000000300)="0000ffffffffa000f2710263d2ac", 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x27)
preadv(r1, &(0x7f0000000580)=[{&(0x7f0000000280)=""/119, 0x77}, {&(0x7f0000000300)=""/90, 0x5a}, {&(0x7f0000000080)=""/33, 0x21}, {&(0x7f0000000380)=""/205, 0xcd}, {&(0x7f0000000480)=""/210, 0xd2}], 0x5, 0x8, 0x4)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
futex(&(0x7f0000000040), 0xd, 0x1, &(0x7f00000000c0), &(0x7f00000001c0), 0x1)

85.097535ms ago: executing program 2 (id=1094):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7088c60897d4a6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3540546bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000009c0)=ANY=[@ANYRES32=r4, @ANYRES32=r3, @ANYBLOB='&'], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
recvmsg$unix(r1, &(0x7f00000004c0)={&(0x7f0000000180), 0x6e, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x22fe0}], 0x12, 0x0, 0x0, 0x40000000}, 0x0) (fail_nth: 9)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x2afe0}], 0x1}, 0x0)

0s ago: executing program 5 (id=1095):
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000001c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7010e3dbdf252500000006000600000000000a0001007770616e3100000005002b"], 0x30}, 0x1, 0x0, 0x0, 0x4049}, 0x4c080)
ioprio_set$uid(0x3, 0x0, 0x0)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000280)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, 0x14)
close(r1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
r4 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\x00'/557, 0x1)
pwritev(r4, &(0x7f00000000c0)=[{&(0x7f0000000180)='P', 0x1}], 0x1, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b704000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sys_enter\x00', r6}, 0x10)
statfs(0x0, 0x0)
sendfile(r3, r3, 0x0, 0x24002de8)
ioctl$LOOP_SET_STATUS(r3, 0x4c02, &(0x7f0000000280)={0x0, {}, 0x0, {}, 0x40000004, 0x0, 0xffffffff, 0x18, "28f5c9ea1f1ae4be4111ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba7663c435aff94793ddd7aae07ef35f17bf01933bdb6fd7ecdd91b59ca8d541", "07a9310978042a8bfe1406584a128d7469166f4f07b84819e7df4af14e1df82d", [0x6, 0x9]})
ioctl$LOOP_CHANGE_FD(r3, 0x4c06, r3)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bind$alg(0xffffffffffffffff, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'blake2b-384\x00'}, 0x58)

kernel console output (not intermixed with test programs):

ber 15
[  294.154554][ T5890] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  295.227048][ T5890] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  295.227095][ T5890] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  295.227120][ T5890] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  295.233336][ T5890] usb 5-1: config 0 descriptor??
[  296.299226][ T5813] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[  296.383979][ T8110] ptrace attach of "./syz-executor exec"[8111] was attempted by "./syz-executor exec"[8110]
[  296.471502][ T5813] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  296.471538][ T5813] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  296.471569][ T5813] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  296.471613][ T5813] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  296.471638][ T5813] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  296.558892][ T5813] usb 1-1: config 0 descriptor??
[  297.093410][ T5813] plantronics 0003:047F:FFFF.0006: ignoring exceeding usage max
[  297.115297][ T5813] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x2
[  297.122447][ T5813] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  297.137073][   T10] usb 5-1: USB disconnect, device number 16
[  297.272493][ T5898] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  297.417624][ T5898] usb 4-1: config 0 has no interfaces?
[  297.421402][ T5898] usb 4-1: New USB device found, idVendor=13d8, idProduct=0010, bcdDevice=8f.72
[  297.421678][ T5898] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  297.421703][ T5898] usb 4-1: Product: syz
[  297.421725][ T5898] usb 4-1: Manufacturer: syz
[  297.421740][ T5898] usb 4-1: SerialNumber: syz
[  297.428999][ T5898] usb 4-1: config 0 descriptor??
[  297.817604][ T8114] geneve2: entered promiscuous mode
[  297.866680][ T5894] usb 4-1: USB disconnect, device number 22
[  298.977966][  T991] usb 1-1: USB disconnect, device number 34
[  299.434604][ T5898] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  299.584544][ T5898] usb 5-1: Using ep0 maxpacket: 8
[  299.588367][ T5898] usb 5-1: unable to get BOS descriptor or descriptor too short
[  299.588422][ T5898] usb 5-1: too many configurations: 177, using maximum allowed: 8
[  299.591739][ T5898] usb 5-1: unable to read config index 0 descriptor/start: -61
[  299.591776][ T5898] usb 5-1: can't read configurations, error -61
[  299.714812][ T5898] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  299.874913][ T5898] usb 5-1: Using ep0 maxpacket: 8
[  299.881062][ T5898] usb 5-1: unable to get BOS descriptor or descriptor too short
[  299.881267][ T5898] usb 5-1: too many configurations: 177, using maximum allowed: 8
[  299.910576][ T5898] usb 5-1: unable to read config index 0 descriptor/start: -61
[  299.910605][ T5898] usb 5-1: can't read configurations, error -61
[  299.911603][ T5898] usb usb5-port1: attempt power cycle
[  300.244535][ T5898] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  300.265254][ T5898] usb 5-1: Using ep0 maxpacket: 8
[  300.267903][ T5898] usb 5-1: unable to get BOS descriptor or descriptor too short
[  300.268050][ T5898] usb 5-1: too many configurations: 177, using maximum allowed: 8
[  300.270008][ T5898] usb 5-1: unable to read config index 0 descriptor/start: -61
[  300.270046][ T5898] usb 5-1: can't read configurations, error -61
[  300.394580][ T5898] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  300.415238][ T5898] usb 5-1: Using ep0 maxpacket: 8
[  300.417569][ T5898] usb 5-1: unable to get BOS descriptor or descriptor too short
[  300.417640][ T5898] usb 5-1: too many configurations: 177, using maximum allowed: 8
[  300.419465][ T5898] usb 5-1: unable to read config index 0 descriptor/start: -61
[  300.419500][ T5898] usb 5-1: can't read configurations, error -61
[  300.419834][ T5898] usb usb5-port1: unable to enumerate USB device
[  302.729585][ T8170] netlink: 4 bytes leftover after parsing attributes in process `syz.1.699'.
[  302.729618][ T8170] netlink: 4 bytes leftover after parsing attributes in process `syz.1.699'.
[  303.831305][    C0] vkms_vblank_simulate: vblank timer overrun
[  304.517354][    C0] vkms_vblank_simulate: vblank timer overrun
[  304.655820][ T8203] FAULT_INJECTION: forcing a failure.
[  304.655820][ T8203] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  304.655854][ T8203] CPU: 1 UID: 0 PID: 8203 Comm: syz.3.706 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  304.655876][ T8203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  304.655906][ T8203] Call Trace:
[  304.655913][ T8203]  <TASK>
[  304.655922][ T8203]  dump_stack_lvl+0x189/0x250
[  304.655953][ T8203]  ? __pfx____ratelimit+0x10/0x10
[  304.655977][ T8203]  ? __pfx_dump_stack_lvl+0x10/0x10
[  304.656003][ T8203]  ? __pfx__printk+0x10/0x10
[  304.656025][ T8203]  ? __might_fault+0xb0/0x130
[  304.656061][ T8203]  should_fail_ex+0x46c/0x600
[  304.656092][ T8203]  strncpy_from_user+0x36/0x290
[  304.656120][ T8203]  getname_flags+0xf3/0x540
[  304.656153][ T8203]  __x64_sys_unlinkat+0xac/0xf0
[  304.656177][ T8203]  do_syscall_64+0xfa/0xfa0
[  304.656200][ T8203]  ? lockdep_hardirqs_on+0x9c/0x150
[  304.656223][ T8203]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.656242][ T8203]  ? clear_bhb_loop+0x60/0xb0
[  304.656265][ T8203]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.656284][ T8203] RIP: 0033:0x7f8fe0adefc9
[  304.656301][ T8203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.656317][ T8203] RSP: 002b:00007f8fded46038 EFLAGS: 00000246 ORIG_RAX: 0000000000000107
[  304.656337][ T8203] RAX: ffffffffffffffda RBX: 00007f8fe0d35fa0 RCX: 00007f8fe0adefc9
[  304.656352][ T8203] RDX: 0000000000000000 RSI: 0000200000000300 RDI: ffffffffffffff9c
[  304.656365][ T8203] RBP: 00007f8fded46090 R08: 0000000000000000 R09: 0000000000000000
[  304.656377][ T8203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  304.656389][ T8203] R13: 00007f8fe0d36038 R14: 00007f8fe0d35fa0 R15: 00007ffdee3bf078
[  304.656422][ T8203]  </TASK>
[  305.080834][ T8208] netlink: 28 bytes leftover after parsing attributes in process `syz.1.709'.
[  305.080868][ T8208] netlink: 28 bytes leftover after parsing attributes in process `syz.1.709'.
[  305.080953][ T8208] FAULT_INJECTION: forcing a failure.
[  305.080953][ T8208] name failslab, interval 1, probability 0, space 0, times 0
[  305.080980][ T8208] CPU: 1 UID: 0 PID: 8208 Comm: syz.1.709 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  305.081001][ T8208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  305.081014][ T8208] Call Trace:
[  305.081022][ T8208]  <TASK>
[  305.081031][ T8208]  dump_stack_lvl+0x189/0x250
[  305.081061][ T8208]  ? __pfx____ratelimit+0x10/0x10
[  305.081086][ T8208]  ? __pfx_dump_stack_lvl+0x10/0x10
[  305.081113][ T8208]  ? __pfx__printk+0x10/0x10
[  305.081142][ T8208]  ? __pfx___might_resched+0x10/0x10
[  305.081168][ T8208]  should_fail_ex+0x46c/0x600
[  305.081198][ T8208]  ? __d_alloc+0x36/0x7b0
[  305.081215][ T8208]  should_failslab+0xa8/0x100
[  305.081242][ T8208]  ? __d_alloc+0x36/0x7b0
[  305.081257][ T8208]  kmem_cache_alloc_lru_noprof+0x74/0x6b0
[  305.081283][ T8208]  ? desc_read+0x1b8/0x3f0
[  305.081314][ T8208]  __d_alloc+0x36/0x7b0
[  305.081339][ T8208]  d_alloc_parallel+0xe1/0x1610
[  305.081360][ T8208]  ? try_to_take_rt_mutex+0x840/0xb00
[  305.081394][ T8208]  ? rtlock_slowlock_locked+0xd8/0x4010
[  305.081423][ T8208]  ? __pfx_d_alloc_parallel+0x10/0x10
[  305.081450][ T8208]  ? __rt_spin_lock_init+0x3e/0x50
[  305.081471][ T8208]  ? __init_waitqueue_head+0xae/0x160
[  305.081500][ T8208]  __lookup_slow+0x11c/0x3d0
[  305.081523][ T8208]  ? __pfx___lookup_slow+0x10/0x10
[  305.081558][ T8208]  ? lookup_noperm_common+0x241/0x430
[  305.081583][ T8208]  ? d_lookup+0xaa/0xc0
[  305.081609][ T8208]  ? lookup_noperm+0x111/0x240
[  305.081632][ T8208]  simple_start_creating+0xfd/0x1e0
[  305.081659][ T8208]  ? __pfx_simple_start_creating+0x10/0x10
[  305.081686][ T8208]  ? rt_spin_unlock+0x161/0x200
[  305.081714][ T8208]  debugfs_start_creating+0x10f/0x180
[  305.081742][ T8208]  __debugfs_create_file+0x79/0x4f0
[  305.081771][ T8208]  debugfs_create_file_full+0x3f/0x60
[  305.081799][ T8208]  ref_tracker_dir_debugfs+0x154/0x270
[  305.081825][ T8208]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  305.081880][ T8208]  ? rcu_is_watching+0x15/0xb0
[  305.081913][ T8208]  alloc_netdev_mqs+0x277/0x11c0
[  305.081936][ T8208]  ? __pfx_hsr_dev_setup+0x10/0x10
[  305.081962][ T8208]  rtnl_create_link+0x31f/0xd10
[  305.081994][ T8208]  rtnl_newlink_create+0x25c/0xb00
[  305.082029][ T8208]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  305.082048][ T8208]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  305.082077][ T8208]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  305.082105][ T8208]  ? bpf_lsm_capable+0x9/0x20
[  305.082124][ T8208]  ? security_capable+0x7e/0x2e0
[  305.082159][ T8208]  rtnl_newlink+0x16e4/0x1c80
[  305.082179][ T8208]  ? netlink_deliver_tap+0x19c/0x1b0
[  305.082213][ T8208]  ? __pfx_rtnl_newlink+0x10/0x10
[  305.082244][ T8208]  ? __local_bh_enable+0x27b/0x410
[  305.082268][ T8208]  ? __local_bh_enable+0x28c/0x410
[  305.082287][ T8208]  ? reacquire_held_locks+0x127/0x1d0
[  305.082318][ T8208]  ? __pfx___local_bh_enable+0x10/0x10
[  305.082345][ T8208]  ? __local_bh_enable_ip+0x1c0/0x2e0
[  305.082363][ T8208]  ? lockdep_hardirqs_on+0x9c/0x150
[  305.082393][ T8208]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  305.082411][ T8208]  ? dev_hard_start_xmit+0x7f5/0x870
[  305.082433][ T8208]  ? __dev_queue_xmit+0x26f/0x3b70
[  305.082463][ T8208]  ? __dev_queue_xmit+0x26f/0x3b70
[  305.082486][ T8208]  ? __dev_queue_xmit+0x26f/0x3b70
[  305.082511][ T8208]  ? __dev_queue_xmit+0x1d3d/0x3b70
[  305.082540][ T8208]  ? __lock_acquire+0xab9/0xd20
[  305.082600][ T8208]  ? __pfx_rtnl_newlink+0x10/0x10
[  305.082618][ T8208]  rtnetlink_rcv_msg+0x7cf/0xb70
[  305.082641][ T8208]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  305.082659][ T8208]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  305.082675][ T8208]  ? ref_tracker_free+0x61e/0x7c0
[  305.082701][ T8208]  ? __asan_memcpy+0x40/0x70
[  305.082721][ T8208]  ? __pfx_ref_tracker_free+0x10/0x10
[  305.082743][ T8208]  ? __skb_clone+0x63/0x7a0
[  305.082784][ T8208]  netlink_rcv_skb+0x208/0x470
[  305.082805][ T8208]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  305.082826][ T8208]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  305.082859][ T8208]  ? netlink_deliver_tap+0x2e/0x1b0
[  305.082888][ T8208]  netlink_unicast+0x846/0xa10
[  305.082925][ T8208]  ? __pfx_netlink_unicast+0x10/0x10
[  305.082964][ T8208]  ? netlink_sendmsg+0x642/0xb30
[  305.082982][ T8208]  ? skb_put+0x11b/0x210
[  305.083006][ T8208]  netlink_sendmsg+0x805/0xb30
[  305.083036][ T8208]  ? __pfx_netlink_sendmsg+0x10/0x10
[  305.083067][ T8208]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  305.083091][ T8208]  ? __pfx_netlink_sendmsg+0x10/0x10
[  305.083112][ T8208]  __sock_sendmsg+0x21c/0x270
[  305.083141][ T8208]  ____sys_sendmsg+0x534/0x820
[  305.083171][ T8208]  ? __pfx_____sys_sendmsg+0x10/0x10
[  305.083204][ T8208]  ? import_iovec+0x74/0xa0
[  305.083230][ T8208]  ___sys_sendmsg+0x21f/0x2a0
[  305.083254][ T8208]  ? __pfx____sys_sendmsg+0x10/0x10
[  305.083319][ T8208]  ? __fget_files+0x2a/0x420
[  305.083342][ T8208]  ? __fget_files+0x3a6/0x420
[  305.083379][ T8208]  __sys_sendmmsg+0x22d/0x430
[  305.083408][ T8208]  ? __pfx___sys_sendmmsg+0x10/0x10
[  305.083442][ T8208]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  305.083481][ T8208]  ? ksys_write+0x230/0x260
[  305.083506][ T8208]  ? __pfx_ksys_write+0x10/0x10
[  305.083535][ T8208]  __x64_sys_sendmmsg+0xa0/0xc0
[  305.083559][ T8208]  do_syscall_64+0xfa/0xfa0
[  305.083582][ T8208]  ? lockdep_hardirqs_on+0x9c/0x150
[  305.083611][ T8208]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  305.083630][ T8208]  ? clear_bhb_loop+0x60/0xb0
[  305.083654][ T8208]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  305.083672][ T8208] RIP: 0033:0x7fcac934efc9
[  305.083690][ T8208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  305.083705][ T8208] RSP: 002b:00007fcac75ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  305.083726][ T8208] RAX: ffffffffffffffda RBX: 00007fcac95a5fa0 RCX: 00007fcac934efc9
[  305.083741][ T8208] RDX: 0492492492492627 RSI: 00002000000000c0 RDI: 0000000000000006
[  305.083754][ T8208] RBP: 00007fcac75ae090 R08: 0000000000000000 R09: 0000000000000000
[  305.083766][ T8208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  305.083777][ T8208] R13: 00007fcac95a6038 R14: 00007fcac95a5fa0 R15: 00007fffe246d278
[  305.083813][ T8208]  </TASK>
[  305.114721][ T8208] erspan0: entered promiscuous mode
[  305.128330][ T8208] gretap0: entered promiscuous mode
[  306.424572][ T5898] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  306.577118][ T5898] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  306.577137][ T5898] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  306.580702][ T5898] usb 2-1: config 0 descriptor??
[  306.583322][ T5898] cp210x 2-1:0.0: cp210x converter detected
[  306.737700][    C0] vkms_vblank_simulate: vblank timer overrun
[  307.197990][    C0] vkms_vblank_simulate: vblank timer overrun
[  307.273385][ T5898] cp210x 2-1:0.0: failed to get vendor val 0x370b size 1: -32
[  307.273417][ T5898] cp210x 2-1:0.0: querying part number failed
[  307.299031][ T5898] usb 2-1: cp210x converter now attached to ttyUSB0
[  307.432219][   T37] audit: type=1400 audit(307.232:21): lsm=SMACK fn=smack_task_setpgid action=denied subject="w" object="_" requested=w pid=8228 comm="syz.3.717" opid=8228 ocomm="syz.3.717"
[  307.718547][ T5882] usb 2-1: USB disconnect, device number 19
[  307.733177][ T5882] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  307.733752][ T5882] cp210x 2-1:0.0: device disconnected
[  307.874224][   T37] audit: type=1326 audit(307.672:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8236 comm="syz.4.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf3818efc9 code=0x7ffc0000
[  307.875198][   T37] audit: type=1326 audit(307.682:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8236 comm="syz.4.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fdf3818efc9 code=0x7ffc0000
[  307.875256][   T37] audit: type=1326 audit(307.682:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8236 comm="syz.4.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf3818efc9 code=0x7ffc0000
[  307.875616][   T37] audit: type=1326 audit(307.682:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8236 comm="syz.4.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fdf3818efc9 code=0x7ffc0000
[  307.884096][   T37] audit: type=1326 audit(307.682:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8236 comm="syz.4.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf3818efc9 code=0x7ffc0000
[  307.885088][   T37] audit: type=1326 audit(307.682:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8236 comm="syz.4.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdf3818efc9 code=0x7ffc0000
[  307.885147][   T37] audit: type=1326 audit(307.692:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8236 comm="syz.4.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf3818efc9 code=0x7ffc0000
[  307.886354][   T37] audit: type=1326 audit(307.692:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8236 comm="syz.4.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdf3818efc9 code=0x7ffc0000
[  307.886409][   T37] audit: type=1326 audit(307.692:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8236 comm="syz.4.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf3818efc9 code=0x7ffc0000
[  307.901796][ T8239] netlink: 56 bytes leftover after parsing attributes in process `syz.4.720'.
[  307.901823][ T8239] netlink: 12 bytes leftover after parsing attributes in process `syz.4.720'.
[  307.901839][ T8239] netlink: 31 bytes leftover after parsing attributes in process `syz.4.720'.
[  307.901855][ T8239] netlink: 'syz.4.720': attribute type 2 has an invalid length.
[  307.901867][ T8239] netlink: 31 bytes leftover after parsing attributes in process `syz.4.720'.
[  307.914827][   T10] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[  308.214715][   T10] usb 1-1: Using ep0 maxpacket: 16
[  308.217628][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 26232, setting to 64
[  308.220640][   T10] usb 1-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=7b.55
[  308.220670][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  308.220690][   T10] usb 1-1: Product: syz
[  308.220705][   T10] usb 1-1: Manufacturer: syz
[  308.220720][   T10] usb 1-1: SerialNumber: syz
[  308.289206][   T10] usb 1-1: config 0 descriptor??
[  308.492858][ T8250] FAULT_INJECTION: forcing a failure.
[  308.492858][ T8250] name failslab, interval 1, probability 0, space 0, times 0
[  308.492892][ T8250] CPU: 1 UID: 0 PID: 8250 Comm: syz.4.724 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  308.492913][ T8250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  308.492925][ T8250] Call Trace:
[  308.492933][ T8250]  <TASK>
[  308.492941][ T8250]  dump_stack_lvl+0x189/0x250
[  308.492975][ T8250]  ? __pfx____ratelimit+0x10/0x10
[  308.493000][ T8250]  ? __pfx_dump_stack_lvl+0x10/0x10
[  308.493026][ T8250]  ? __pfx__printk+0x10/0x10
[  308.493055][ T8250]  ? __pfx___might_resched+0x10/0x10
[  308.493080][ T8250]  should_fail_ex+0x46c/0x600
[  308.493109][ T8250]  ? __kernfs_new_node+0xd9/0x850
[  308.493129][ T8250]  should_failslab+0xa8/0x100
[  308.493156][ T8250]  ? __kernfs_new_node+0xd9/0x850
[  308.493173][ T8250]  kmem_cache_alloc_noprof+0x6f/0x6b0
[  308.493218][ T8250]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  308.493253][ T8250]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  308.493282][ T8250]  __kernfs_new_node+0xd9/0x850
[  308.493301][ T8250]  ? __lock_acquire+0xab9/0xd20
[  308.493333][ T8250]  ? __pfx___kernfs_new_node+0x10/0x10
[  308.493354][ T8250]  ? kernfs_root+0x1c/0x230
[  308.493380][ T8250]  ? kernfs_root+0x1c/0x230
[  308.493398][ T8250]  ? kernfs_root+0x1c/0x230
[  308.493415][ T8250]  ? kernfs_root+0x1c/0x230
[  308.493440][ T8250]  kernfs_new_node+0x102/0x210
[  308.493466][ T8250]  __kernfs_create_file+0x4b/0x2e0
[  308.493491][ T8250]  sysfs_add_file_mode_ns+0x238/0x300
[  308.493523][ T8250]  sysfs_create_file_ns+0x128/0x1a0
[  308.493550][ T8250]  ? __pfx_sysfs_create_file_ns+0x10/0x10
[  308.493576][ T8250]  ? __dev_fwnode+0x50/0x80
[  308.493597][ T8250]  ? device_create_file+0xf4/0x1c0
[  308.493622][ T8250]  device_add+0x440/0xb50
[  308.493647][ T8250]  input_register_device+0x9d3/0x1140
[  308.493680][ T8250]  ? input_ff_create+0x240/0x300
[  308.493701][ T8250]  uinput_create_device+0x422/0x670
[  308.493729][ T8250]  uinput_ioctl_handler+0x3f3/0x1570
[  308.493751][ T8250]  ? __pfx_uinput_ioctl_handler+0x10/0x10
[  308.493785][ T8250]  ? __fget_files+0x2a/0x420
[  308.493813][ T8250]  ? bpf_lsm_file_ioctl+0x9/0x20
[  308.493837][ T8250]  ? __pfx_uinput_ioctl+0x10/0x10
[  308.493855][ T8250]  __se_sys_ioctl+0xff/0x170
[  308.493879][ T8250]  do_syscall_64+0xfa/0xfa0
[  308.493901][ T8250]  ? lockdep_hardirqs_on+0x9c/0x150
[  308.493925][ T8250]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.493943][ T8250]  ? clear_bhb_loop+0x60/0xb0
[  308.493965][ T8250]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.493982][ T8250] RIP: 0033:0x7fdf3818efc9
[  308.493998][ T8250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  308.494014][ T8250] RSP: 002b:00007fdf363ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  308.494033][ T8250] RAX: ffffffffffffffda RBX: 00007fdf383e5fa0 RCX: 00007fdf3818efc9
[  308.494046][ T8250] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000003
[  308.494058][ T8250] RBP: 00007fdf363ee090 R08: 0000000000000000 R09: 0000000000000000
[  308.494070][ T8250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  308.494079][ T8250] R13: 00007fdf383e6038 R14: 00007fdf383e5fa0 R15: 00007ffe2a82e0c8
[  308.494110][ T8250]  </TASK>
[  308.648047][   T10] usb 1-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  308.667344][ T5964] usb 1-1: Failed to submit usb control message: -71
[  308.667383][ T5964] usb 1-1: unable to send the bmi data to the device: -71
[  308.667401][ T5964] usb 1-1: unable to get target info from device
[  308.667425][ T5964] usb 1-1: could not get target info (-71)
[  308.667790][ T5964] usb 1-1: could not probe fw (-71)
[  308.912860][   T10] usb 1-1: USB disconnect, device number 35
[  309.046898][ T8244] ptrace attach of ""[8253] was attempted by "./syz-executor exec"[8244]
[  310.394559][ T5882] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  310.395839][ T5813] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[  310.544531][ T5813] usb 1-1: Using ep0 maxpacket: 16
[  310.547325][ T5882] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  310.547358][ T5882] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  310.550903][ T5813] usb 1-1: config 0 has an invalid interface number: 41 but max is 0
[  310.550928][ T5813] usb 1-1: config 0 has no interface number 0
[  310.550977][ T5813] usb 1-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  310.551003][ T5813] usb 1-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  310.551029][ T5813] usb 1-1: config 0 interface 41 has no altsetting 0
[  310.589014][ T5813] usb 1-1: New USB device found, idVendor=0fe6, idProduct=9700, bcdDevice=d1.9a
[  310.589046][ T5813] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  310.589066][ T5813] usb 1-1: Product: syz
[  310.589080][ T5813] usb 1-1: Manufacturer: syz
[  310.589095][ T5813] usb 1-1: SerialNumber: syz
[  310.654937][ T5882] usb 3-1: config 0 descriptor??
[  310.669957][ T5882] cp210x 3-1:0.0: cp210x converter detected
[  310.695734][ T5813] usb 1-1: config 0 descriptor??
[  310.696671][ T8266] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  310.696888][ T8266] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  310.899698][ T8266] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  310.899810][ T8266] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  310.946864][ T5882] cp210x 3-1:0.0: failed to get vendor val 0x370b size 1: -32
[  310.946883][ T5882] cp210x 3-1:0.0: querying part number failed
[  310.962824][ T5882] usb 3-1: cp210x converter now attached to ttyUSB0
[  311.304653][ T5813] Error reading MAC address
[  311.306805][ T8266] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  311.306910][ T8266] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  311.635643][ T5813] sr9700 1-1:0.41 (unnamed net_device) (uninitialized): Error reading MAC address
[  311.664395][ T5813] usb 1-1: USB disconnect, device number 36
[  312.302063][ T8292] netlink: 12 bytes leftover after parsing attributes in process `syz.0.736'.
[  312.933872][ T5813] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  313.113504][   T10] usb 3-1: USB disconnect, device number 21
[  313.120589][ T5813] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  313.120624][ T5813] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  313.120648][ T5813] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  313.120692][ T5813] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  313.120717][ T5813] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  313.136882][   T10] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  313.139160][   T10] cp210x 3-1:0.0: device disconnected
[  313.225237][ T5813] usb 5-1: config 0 descriptor??
[  313.429448][ T8327] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  313.430323][ T8327] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  313.640686][ T5813] plantronics 0003:047F:FFFF.0007: reserved main item tag 0xd
[  313.655398][ T5882] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  313.687729][ T5813] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  313.814504][ T5882] usb 3-1: Using ep0 maxpacket: 8
[  313.820070][ T5882] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF6, changing to 0x86
[  313.820104][ T5882] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x86 has an invalid bInterval 0, changing to 7
[  313.820130][ T5882] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  313.820175][ T5882] usb 3-1: New USB device found, idVendor=1b1c, idProduct=1c1e, bcdDevice= 0.00
[  313.820200][ T5882] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  313.885559][ T5882] usb 3-1: config 0 descriptor??
[  313.900257][ T8302] FAULT_INJECTION: forcing a failure.
[  313.900257][ T8302] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  313.900290][ T8302] CPU: 0 UID: 0 PID: 8302 Comm: syz.4.739 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  313.900312][ T8302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  313.900323][ T8302] Call Trace:
[  313.900332][ T8302]  <TASK>
[  313.900339][ T8302]  dump_stack_lvl+0x189/0x250
[  313.900369][ T8302]  ? __pfx____ratelimit+0x10/0x10
[  313.900392][ T8302]  ? __pfx_dump_stack_lvl+0x10/0x10
[  313.900414][ T8302]  ? __pfx__printk+0x10/0x10
[  313.900451][ T8302]  should_fail_ex+0x46c/0x600
[  313.900481][ T8302]  _copy_to_user+0x31/0xb0
[  313.900502][ T8302]  simple_read_from_buffer+0xe1/0x170
[  313.900530][ T8302]  proc_fail_nth_read+0x1b6/0x220
[  313.900553][ T8302]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  313.900576][ T8302]  ? rw_verify_area+0x2ac/0x4e0
[  313.900600][ T8302]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  313.900619][ T8302]  vfs_read+0x206/0xa30
[  313.900658][ T8302]  ? __pfx_vfs_read+0x10/0x10
[  313.900676][ T8302]  ? try_to_take_rt_mutex+0x7fd/0xac0
[  313.900708][ T8302]  ? mutex_lock_nested+0x154/0x1d0
[  313.900726][ T8302]  ? fdget_pos+0x253/0x320
[  313.900760][ T8302]  ksys_read+0x14b/0x260
[  313.900781][ T8302]  ? __fget_files+0x2a/0x420
[  313.900804][ T8302]  ? __pfx_ksys_read+0x10/0x10
[  313.900826][ T8302]  ? do_syscall_64+0xbe/0xfa0
[  313.900852][ T8302]  do_syscall_64+0xfa/0xfa0
[  313.900871][ T8302]  ? lockdep_hardirqs_on+0x9c/0x150
[  313.900892][ T8302]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.900909][ T8302]  ? clear_bhb_loop+0x60/0xb0
[  313.900930][ T8302]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.900947][ T8302] RIP: 0033:0x7fdf3818d9dc
[  313.900964][ T8302] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  313.900980][ T8302] RSP: 002b:00007fdf363ee030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  313.900998][ T8302] RAX: ffffffffffffffda RBX: 00007fdf383e5fa0 RCX: 00007fdf3818d9dc
[  313.901012][ T8302] RDX: 000000000000000f RSI: 00007fdf363ee0a0 RDI: 0000000000000006
[  313.901022][ T8302] RBP: 00007fdf363ee090 R08: 0000000000000000 R09: 0000000000000000
[  313.901031][ T8302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  313.901041][ T8302] R13: 00007fdf383e6038 R14: 00007fdf383e5fa0 R15: 00007ffe2a82e0c8
[  313.901072][ T8302]  </TASK>
[  314.016187][ T5894] usb 5-1: USB disconnect, device number 21
[  314.162755][ T5882] usbhid 3-1:0.0: can't add hid device: -71
[  314.162882][ T5882] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  314.188427][ T5882] usb 3-1: USB disconnect, device number 22
[  315.087693][ T8338] ptrace attach of ""[8340] was attempted by "./syz-executor exec"[8338]
[  316.732899][ T8362] netlink: 24 bytes leftover after parsing attributes in process `syz.1.759'.
[  316.760541][ T8362] netlink: 'syz.1.759': attribute type 1 has an invalid length.
[  316.760562][ T8362] netlink: 224 bytes leftover after parsing attributes in process `syz.1.759'.
[  316.875996][   T10] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  317.037834][   T10] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  317.037867][   T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  317.063428][   T10] usb 3-1: config 0 descriptor??
[  317.080543][   T10] cp210x 3-1:0.0: cp210x converter detected
[  317.294634][   T10] cp210x 3-1:0.0: failed to get vendor val 0x370b size 1: -32
[  317.294665][   T10] cp210x 3-1:0.0: querying part number failed
[  317.305658][   T10] usb 3-1: cp210x converter now attached to ttyUSB0
[  317.338702][ T1320] ieee802154 phy0 wpan0: encryption failed: -22
[  317.338775][ T1320] ieee802154 phy1 wpan1: encryption failed: -22
[  317.470398][ T8375] openvswitch: netlink: Unknown nsh attribute 0
[  317.470438][ T8375] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  317.511156][ T8375] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  317.729131][ T8380] ptrace attach of ""[8376] was attempted by "./syz-executor exec"[8380]
[  318.584847][ T8395] netlink: 24 bytes leftover after parsing attributes in process `syz.4.771'.
[  318.604083][ T8395] netlink: 'syz.4.771': attribute type 1 has an invalid length.
[  318.604106][ T8395] netlink: 224 bytes leftover after parsing attributes in process `syz.4.771'.
[  319.711662][ T5882] usb 3-1: USB disconnect, device number 23
[  319.733770][ T5882] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  319.745831][ T5882] cp210x 3-1:0.0: device disconnected
[  320.347523][   T37] kauditd_printk_skb: 13 callbacks suppressed
[  320.347541][   T37] audit: type=1326 audit(320.152:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8430 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fe0adefc9 code=0x7ffc0000
[  320.347587][   T37] audit: type=1326 audit(320.152:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8430 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fe0adefc9 code=0x7ffc0000
[  320.417457][   T37] audit: type=1326 audit(320.222:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8430 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8fe0adefc9 code=0x7ffc0000
[  320.417506][   T37] audit: type=1326 audit(320.222:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8430 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fe0adefc9 code=0x7ffc0000
[  320.417545][   T37] audit: type=1326 audit(320.222:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8430 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fe0adefc9 code=0x7ffc0000
[  320.438654][   T37] audit: type=1326 audit(320.242:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8430 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f8fe0adefc9 code=0x7ffc0000
[  320.438704][   T37] audit: type=1326 audit(320.242:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8430 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fe0adefc9 code=0x7ffc0000
[  320.438743][   T37] audit: type=1326 audit(320.242:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8430 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fe0adefc9 code=0x7ffc0000
[  321.081598][ T8436] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  321.311583][ T8435] netdevsim netdevsim0 netdevsim0: left promiscuous mode
[  321.384584][   T10] usb 4-1: new full-speed USB device number 23 using dummy_hcd
[  321.514926][   T10] usb 4-1: device descriptor read/64, error -71
[  321.755469][   T10] usb 4-1: new full-speed USB device number 24 using dummy_hcd
[  321.884562][   T10] usb 4-1: device descriptor read/64, error -71
[  321.926709][ T5882] usb 3-1: new full-speed USB device number 24 using dummy_hcd
[  321.996143][   T10] usb usb4-port1: attempt power cycle
[  322.145944][ T5882] usb 3-1: config index 0 descriptor too short (expected 539, got 27)
[  322.146015][ T5882] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 4
[  322.146043][ T5882] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid maxpacket 48817, setting to 1023
[  322.150088][ T5882] usb 3-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  322.150124][ T5882] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  322.150149][ T5882] usb 3-1: Product: syz
[  322.150179][ T5882] usb 3-1: Manufacturer: syz
[  322.150194][ T5882] usb 3-1: SerialNumber: syz
[  322.226940][ T5882] usb 3-1: config 0 descriptor??
[  322.241039][ T5882] hub 3-1:0.0: bad descriptor, ignoring hub
[  322.241076][ T5882] hub 3-1:0.0: probe with driver hub failed with error -5
[  322.260123][ T5882] input: syz syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input29
[  322.278687][ T5882] usbtouchscreen 3-1:0.0: usbtouch_probe - usb_submit_urb failed with result: -22
[  322.344787][   T10] usb 4-1: new full-speed USB device number 25 using dummy_hcd
[  322.371644][   T10] usb 4-1: device descriptor read/8, error -71
[  322.614599][   T10] usb 4-1: new full-speed USB device number 26 using dummy_hcd
[  322.637446][   T10] usb 4-1: device descriptor read/8, error -71
[  322.875687][   T10] usb usb4-port1: unable to enumerate USB device
[  323.143688][ T5882] usbtouchscreen 3-1:0.0: probe with driver usbtouchscreen failed with error -22
[  323.534533][ T5882] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  323.684561][ T5882] usb 2-1: Using ep0 maxpacket: 16
[  323.687514][ T5882] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  323.687541][ T5882] usb 2-1: config 0 has no interface number 0
[  323.687591][ T5882] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  323.687616][ T5882] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  323.687640][ T5882] usb 2-1: config 0 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  323.687683][ T5882] usb 2-1: New USB device found, idVendor=04d9, idProduct=a072, bcdDevice= 0.00
[  323.687707][ T5882] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  323.700757][ T5882] usb 2-1: config 0 descriptor??
[  324.133488][ T5882] holtek_mouse 0003:04D9:A072.0008: unknown main item tag 0x2
[  324.164068][ T5882] holtek_mouse 0003:04D9:A072.0008: hidraw0: USB HID v0.00 Device [HID 04d9:a072] on usb-dummy_hcd.1-1/input1
[  324.344044][ T5882] usb 2-1: USB disconnect, device number 20
[  324.735163][ T5882] usb 3-1: USB disconnect, device number 24
[  325.347715][ T8479] netlink: 68 bytes leftover after parsing attributes in process `syz.3.801'.
[  325.774369][    C1] vkms_vblank_simulate: vblank timer overrun
[  325.912089][    C1] vkms_vblank_simulate: vblank timer overrun
[  326.314582][  T991] usb 1-1: new high-speed USB device number 37 using dummy_hcd
[  326.464658][  T991] usb 1-1: Using ep0 maxpacket: 16
[  326.467640][  T991] usb 1-1: config index 0 descriptor too short (expected 417, got 191)
[  326.467668][  T991] usb 1-1: config 5 has an invalid interface number: 176 but max is 0
[  326.467689][  T991] usb 1-1: config 5 has an invalid descriptor of length 0, skipping remainder of the config
[  326.467707][  T991] usb 1-1: config 5 has no interface number 0
[  326.467758][  T991] usb 1-1: config 5 interface 176 altsetting 0 endpoint 0x2 has an invalid bInterval 236, changing to 7
[  326.467774][  T991] usb 1-1: config 5 interface 176 altsetting 0 endpoint 0x4 has invalid maxpacket 1023, setting to 64
[  326.467788][  T991] usb 1-1: config 5 interface 176 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 11
[  326.470627][  T991] usb 1-1: New USB device found, idVendor=0bfd, idProduct=0114, bcdDevice=20.e4
[  326.470656][  T991] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  326.470675][  T991] usb 1-1: Product: syz
[  326.470689][  T991] usb 1-1: Manufacturer: syz
[  326.470704][  T991] usb 1-1: SerialNumber: syz
[  326.483485][  T991] kvaser_usb 1-1:5.176: error -ENODEV: Cannot get usb endpoint(s)
[  326.604081][ T8491] mac80211_hwsim hwsim10 wlan0: entered promiscuous mode
[  326.778211][ T8514] kAFS: No cell specified
[  326.924665][ T8515] ieee802154 phy0 wpan0: encryption failed: -90
[  327.725905][ T5898] usb 1-1: USB disconnect, device number 37
[  327.859985][ T5882] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  328.004604][ T5882] usb 5-1: device descriptor read/64, error -71
[  328.160837][ T8538] binder: BINDER_SET_CONTEXT_MGR already set
[  328.160854][ T8538] binder: 8537:8538 ioctl 4018620d 200000000040 returned -16
[  328.316214][    C1] vkms_vblank_simulate: vblank timer overrun
[  328.444718][ T5882] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  328.574631][ T5882] usb 5-1: device descriptor read/64, error -71
[  328.685481][ T5882] usb usb5-port1: attempt power cycle
[  329.302081][ T8557] tipc: Started in network mode
[  329.302114][ T8557] tipc: Node identity ac141441, cluster identity 4711
[  329.318617][ T8557] tipc: Enabled bearer <udp:syz2>, priority 10
[  329.378190][    C1] vkms_vblank_simulate: vblank timer overrun
[  329.447998][ T5882] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  329.465390][ T5882] usb 5-1: device descriptor read/8, error -71
[  329.592682][ T8564] netlink: 32 bytes leftover after parsing attributes in process `syz.0.825'.
[  329.905079][    C1] vkms_vblank_simulate: vblank timer overrun
[  329.960199][ T8573] netlink: 'syz.1.828': attribute type 1 has an invalid length.
[  330.040713][    C1] vkms_vblank_simulate: vblank timer overrun
[  330.071893][ T5882] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  330.294893][ T5882] usb 5-1: device not accepting address 25, error -71
[  330.318947][ T5882] usb usb5-port1: unable to enumerate USB device
[  330.672425][ T5894] tipc: Node number set to 2886997057
[  330.807480][ T8573] 8021q: adding VLAN 0 to HW filter on device bond1
[  331.378717][ T8589] netlink: 132 bytes leftover after parsing attributes in process `syz.4.831'.
[  331.480794][ T8576] bond1: (slave veth0_to_bond): making interface the new active one
[  331.503799][ T8576] bond1: (slave veth0_to_bond): Enslaving as an active interface with an up link
[  331.503996][ T8566] FAULT_INJECTION: forcing a failure.
[  331.503996][ T8566] name failslab, interval 1, probability 0, space 0, times 0
[  331.504016][ T8566] CPU: 1 UID: 0 PID: 8566 Comm: syz.1.828 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  331.504033][ T8566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  331.504044][ T8566] Call Trace:
[  331.504051][ T8566]  <TASK>
[  331.504059][ T8566]  dump_stack_lvl+0x189/0x250
[  331.504091][ T8566]  ? __pfx____ratelimit+0x10/0x10
[  331.504115][ T8566]  ? __pfx_dump_stack_lvl+0x10/0x10
[  331.504138][ T8566]  ? __pfx__printk+0x10/0x10
[  331.504165][ T8566]  ? __pfx___might_resched+0x10/0x10
[  331.504177][ T8566]  ? fs_reclaim_acquire+0x7d/0x100
[  331.504195][ T8566]  should_fail_ex+0x46c/0x600
[  331.504213][ T8566]  ? alloc_inode+0x6a/0x1b0
[  331.504226][ T8566]  should_failslab+0xa8/0x100
[  331.504243][ T8566]  ? alloc_inode+0x6a/0x1b0
[  331.504254][ T8566]  kmem_cache_alloc_lru_noprof+0x74/0x6b0
[  331.504270][ T8566]  ? __pfx_simple_start_creating+0x10/0x10
[  331.504287][ T8566]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  331.504303][ T8566]  alloc_inode+0x6a/0x1b0
[  331.504317][ T8566]  new_inode+0x22/0x170
[  331.504334][ T8566]  __debugfs_create_file+0x14d/0x4f0
[  331.504351][ T8566]  debugfs_create_file_full+0x3f/0x60
[  331.504366][ T8566]  ref_tracker_dir_debugfs+0x154/0x270
[  331.504382][ T8566]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  331.504423][ T8566]  ? rcu_is_watching+0x15/0xb0
[  331.504452][ T8566]  alloc_netdev_mqs+0x277/0x11c0
[  331.504475][ T8566]  ? __pfx_vlan_setup+0x10/0x10
[  331.504506][ T8566]  rtnl_create_link+0x31f/0xd10
[  331.504536][ T8566]  rtnl_newlink_create+0x25c/0xb00
[  331.504556][ T8566]  ? rt_mutex_slowlock+0x1c9/0x6e0
[  331.504578][ T8566]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  331.504595][ T8566]  ? __lock_acquire+0xab9/0xd20
[  331.504627][ T8566]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  331.504656][ T8566]  ? safesetid_security_capable+0xa9/0x1a0
[  331.504678][ T8566]  ? bpf_lsm_capable+0x9/0x20
[  331.504696][ T8566]  ? security_capable+0x7e/0x2e0
[  331.504724][ T8566]  ? rtnl_newlink+0x8e9/0x1c80
[  331.504745][ T8566]  rtnl_newlink+0x16e4/0x1c80
[  331.504765][ T8566]  ? netlink_deliver_tap+0x19c/0x1b0
[  331.504797][ T8566]  ? __pfx_rtnl_newlink+0x10/0x10
[  331.504832][ T8566]  ? __local_bh_enable+0x27b/0x410
[  331.504857][ T8566]  ? __local_bh_enable+0x28c/0x410
[  331.504875][ T8566]  ? reacquire_held_locks+0x127/0x1d0
[  331.504902][ T8566]  ? __pfx___local_bh_enable+0x10/0x10
[  331.504921][ T8566]  ? __local_bh_enable_ip+0x1c0/0x2e0
[  331.504933][ T8566]  ? lockdep_hardirqs_on+0x9c/0x150
[  331.504951][ T8566]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  331.504962][ T8566]  ? dev_hard_start_xmit+0x7f5/0x870
[  331.504975][ T8566]  ? __dev_queue_xmit+0x26f/0x3b70
[  331.504999][ T8566]  ? __dev_queue_xmit+0x26f/0x3b70
[  331.505012][ T8566]  ? __dev_queue_xmit+0x26f/0x3b70
[  331.505027][ T8566]  ? __dev_queue_xmit+0x1d3d/0x3b70
[  331.505042][ T8566]  ? __lock_acquire+0xab9/0xd20
[  331.505071][ T8566]  ? __pfx_rtnl_newlink+0x10/0x10
[  331.505080][ T8566]  rtnetlink_rcv_msg+0x7cf/0xb70
[  331.505092][ T8566]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  331.505102][ T8566]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  331.505110][ T8566]  ? ref_tracker_free+0x61e/0x7c0
[  331.505125][ T8566]  ? __asan_memcpy+0x40/0x70
[  331.505137][ T8566]  ? __pfx_ref_tracker_free+0x10/0x10
[  331.505150][ T8566]  ? __skb_clone+0x63/0x7a0
[  331.505168][ T8566]  netlink_rcv_skb+0x208/0x470
[  331.505181][ T8566]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  331.505199][ T8566]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  331.505231][ T8566]  ? netlink_deliver_tap+0x2e/0x1b0
[  331.505259][ T8566]  netlink_unicast+0x846/0xa10
[  331.505294][ T8566]  ? __pfx_netlink_unicast+0x10/0x10
[  331.505312][ T8566]  ? netlink_sendmsg+0x642/0xb30
[  331.505322][ T8566]  ? skb_put+0x11b/0x210
[  331.505335][ T8566]  netlink_sendmsg+0x805/0xb30
[  331.505344][ T8566]  ? is_bpf_text_address+0x26/0x2b0
[  331.505366][ T8566]  ? __pfx_netlink_sendmsg+0x10/0x10
[  331.505381][ T8566]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  331.505396][ T8566]  ? __pfx_netlink_sendmsg+0x10/0x10
[  331.505408][ T8566]  __sock_sendmsg+0x21c/0x270
[  331.505425][ T8566]  ____sys_sendmsg+0x508/0x820
[  331.505441][ T8566]  ? __pfx_____sys_sendmsg+0x10/0x10
[  331.505459][ T8566]  ? import_iovec+0x74/0xa0
[  331.505473][ T8566]  ___sys_sendmsg+0x21f/0x2a0
[  331.505486][ T8566]  ? __pfx____sys_sendmsg+0x10/0x10
[  331.505520][ T8566]  ? __fget_files+0x2a/0x420
[  331.505534][ T8566]  ? __fget_files+0x3a6/0x420
[  331.505555][ T8566]  __x64_sys_sendmsg+0x1a1/0x260
[  331.505569][ T8566]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  331.505587][ T8566]  ? __pfx_ksys_write+0x10/0x10
[  331.505602][ T8566]  ? do_syscall_64+0xbe/0xfa0
[  331.505618][ T8566]  do_syscall_64+0xfa/0xfa0
[  331.505631][ T8566]  ? lockdep_hardirqs_on+0x9c/0x150
[  331.505644][ T8566]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.505655][ T8566]  ? clear_bhb_loop+0x60/0xb0
[  331.505668][ T8566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.505678][ T8566] RIP: 0033:0x7fcac934efc9
[  331.505689][ T8566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  331.505699][ T8566] RSP: 002b:00007fcac75ae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  331.505711][ T8566] RAX: ffffffffffffffda RBX: 00007fcac95a5fa0 RCX: 00007fcac934efc9
[  331.505719][ T8566] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000005
[  331.505726][ T8566] RBP: 00007fcac75ae090 R08: 0000000000000000 R09: 0000000000000000
[  331.505732][ T8566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  331.505740][ T8566] R13: 00007fcac95a6038 R14: 00007fcac95a5fa0 R15: 00007fffe246d278
[  331.505759][ T8566]  </TASK>
[  331.505879][ T8566] debugfs: out of free dentries, can not create file 'netdev@ffff888036ec4698'
[  331.519800][ T8566] vlan2: entered allmulticast mode
[  331.519815][ T8566] veth1: entered allmulticast mode
[  331.522093][ T8566] veth1: entered promiscuous mode
[  331.523259][ T8566] veth1: left promiscuous mode
[  331.530479][ T8566] bond1: (slave vlan2): Enslaving as an active interface with an up link
[  332.377875][ T8580] wg2 speed is unknown, defaulting to 1000
[  332.969387][ T8607] FAULT_INJECTION: forcing a failure.
[  332.969387][ T8607] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  332.969411][ T8607] CPU: 0 UID: 0 PID: 8607 Comm: syz.1.838 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  332.969424][ T8607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  332.969431][ T8607] Call Trace:
[  332.969437][ T8607]  <TASK>
[  332.969443][ T8607]  dump_stack_lvl+0x189/0x250
[  332.969464][ T8607]  ? __pfx____ratelimit+0x10/0x10
[  332.969478][ T8607]  ? __pfx_dump_stack_lvl+0x10/0x10
[  332.969493][ T8607]  ? __pfx__printk+0x10/0x10
[  332.969506][ T8607]  ? __might_fault+0xb0/0x130
[  332.969528][ T8607]  should_fail_ex+0x46c/0x600
[  332.969546][ T8607]  _copy_from_user+0x2d/0xb0
[  332.969558][ T8607]  kstrtouint_from_user+0xc4/0x170
[  332.969581][ T8607]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  332.969606][ T8607]  proc_fail_nth_write+0x88/0x200
[  332.969617][ T8607]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  332.969631][ T8607]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  332.969643][ T8607]  vfs_write+0x287/0xb40
[  332.969662][ T8607]  ? __pfx_vfs_write+0x10/0x10
[  332.969673][ T8607]  ? try_to_take_rt_mutex+0x7fd/0xac0
[  332.969689][ T8607]  ? mutex_lock_nested+0x154/0x1d0
[  332.969699][ T8607]  ? fdget_pos+0x253/0x320
[  332.969719][ T8607]  ksys_write+0x14b/0x260
[  332.969733][ T8607]  ? __pfx_ksys_write+0x10/0x10
[  332.969748][ T8607]  ? do_syscall_64+0xbe/0xfa0
[  332.969764][ T8607]  do_syscall_64+0xfa/0xfa0
[  332.969777][ T8607]  ? lockdep_hardirqs_on+0x9c/0x150
[  332.969790][ T8607]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.969801][ T8607]  ? clear_bhb_loop+0x60/0xb0
[  332.969813][ T8607]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.969826][ T8607] RIP: 0033:0x7fcac934da7f
[  332.969836][ T8607] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  332.969845][ T8607] RSP: 002b:00007fcac758d030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  332.969856][ T8607] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fcac934da7f
[  332.969864][ T8607] RDX: 0000000000000001 RSI: 00007fcac758d0a0 RDI: 0000000000000006
[  332.969870][ T8607] RBP: 00007fcac758d090 R08: 0000000000000000 R09: 0000000000000000
[  332.969877][ T8607] R10: 0000200000ffb000 R11: 0000000000000293 R12: 0000000000000001
[  332.969884][ T8607] R13: 00007fcac95a6128 R14: 00007fcac95a6090 R15: 00007fffe246d278
[  332.969901][ T8607]  </TASK>
[  333.821961][    C1] vkms_vblank_simulate: vblank timer overrun
[  334.295534][ T8616] netlink: 56 bytes leftover after parsing attributes in process `syz.1.841'.
[  334.323106][ T8616] netlink: 56 bytes leftover after parsing attributes in process `syz.1.841'.
[  334.582294][ T8618] netlink: 'syz.1.842': attribute type 1 has an invalid length.
[  334.582315][ T8618] netlink: 224 bytes leftover after parsing attributes in process `syz.1.842'.
[  335.240473][    C1] vkms_vblank_simulate: vblank timer overrun
[  337.085023][   T10] usb 4-1: new full-speed USB device number 27 using dummy_hcd
[  337.253754][   T10] usb 4-1: config 0 has no interfaces?
[  337.253780][   T10] usb 4-1: New USB device found, idVendor=055d, idProduct=9000, bcdDevice=31.44
[  337.253793][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  337.284058][   T10] usb 4-1: config 0 descriptor??
[  337.489581][ T5819] Bluetooth: hci0: unexpected event for opcode 0x2012
[  338.010995][ T8675] netlink: 'syz.0.859': attribute type 21 has an invalid length.
[  338.011075][ T8675] netlink: 8 bytes leftover after parsing attributes in process `syz.0.859'.
[  338.012206][ T8675] netlink: 'syz.0.859': attribute type 1 has an invalid length.
[  338.243838][ T8679] comedi comedi0: Minor 3 could not be opened
[  338.252150][ T8679] netlink: 'syz.1.860': attribute type 10 has an invalid length.
[  338.252487][ T8679] bridge0: port 3(netdevsim0) entered blocking state
[  338.254272][ T8679] bridge0: port 3(netdevsim0) entered disabled state
[  338.285225][ T8679] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[  338.311256][ T8679] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  338.327102][ T8679] bridge0: port 3(netdevsim0) entered blocking state
[  338.327730][ T8679] bridge0: port 3(netdevsim0) entered forwarding state
[  338.788323][    C1] vkms_vblank_simulate: vblank timer overrun
[  338.887153][    C1] vkms_vblank_simulate: vblank timer overrun
[  338.889719][ T5813] usb 4-1: USB disconnect, device number 27
[  339.409923][   T37] audit: type=1400 audit(339.212:52): lsm=SMACK fn=smack_task_setpgid action=denied subject="w" object="_" requested=w pid=8695 comm="syz.3.866" opid=8695 ocomm="syz.3.866"
[  340.101260][ T8714] FAULT_INJECTION: forcing a failure.
[  340.101260][ T8714] name failslab, interval 1, probability 0, space 0, times 0
[  340.101307][ T8714] CPU: 1 UID: 0 PID: 8714 Comm: syz.1.873 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  340.101329][ T8714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  340.101341][ T8714] Call Trace:
[  340.101349][ T8714]  <TASK>
[  340.101357][ T8714]  dump_stack_lvl+0x189/0x250
[  340.101388][ T8714]  ? __pfx____ratelimit+0x10/0x10
[  340.101412][ T8714]  ? __pfx_dump_stack_lvl+0x10/0x10
[  340.101438][ T8714]  ? __pfx__printk+0x10/0x10
[  340.101467][ T8714]  ? __pfx___might_resched+0x10/0x10
[  340.101486][ T8714]  ? fs_reclaim_acquire+0x7d/0x100
[  340.101516][ T8714]  should_fail_ex+0x46c/0x600
[  340.101547][ T8714]  should_failslab+0xa8/0x100
[  340.101574][ T8714]  __kmalloc_noprof+0xcc/0x7d0
[  340.101598][ T8714]  ? sock_kmalloc+0xd6/0x160
[  340.101626][ T8714]  sock_kmalloc+0xd6/0x160
[  340.101651][ T8714]  skcipher_recvmsg+0x571/0x11d0
[  340.101698][ T8714]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  340.101722][ T8714]  ? __lock_acquire+0xab9/0xd20
[  340.101753][ T8714]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  340.101776][ T8714]  ? security_socket_recvmsg+0x7e/0x2e0
[  340.101803][ T8714]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  340.101827][ T8714]  sock_recvmsg+0x22c/0x270
[  340.101866][ T8714]  ____sys_recvmsg+0x1ce/0x470
[  340.101899][ T8714]  ? __pfx_____sys_recvmsg+0x10/0x10
[  340.101939][ T8714]  ? import_iovec+0x74/0xa0
[  340.101964][ T8714]  ___sys_recvmsg+0x1b5/0x510
[  340.101993][ T8714]  ? __pfx____sys_recvmsg+0x10/0x10
[  340.102044][ T8714]  ? __fget_files+0x3a6/0x420
[  340.102081][ T8714]  __x64_sys_recvmsg+0x19e/0x260
[  340.102107][ T8714]  ? __pfx___x64_sys_recvmsg+0x10/0x10
[  340.102141][ T8714]  ? __pfx_ksys_write+0x10/0x10
[  340.102168][ T8714]  ? do_syscall_64+0xbe/0xfa0
[  340.102196][ T8714]  do_syscall_64+0xfa/0xfa0
[  340.102219][ T8714]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.102238][ T8714]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  340.102257][ T8714]  ? clear_bhb_loop+0x60/0xb0
[  340.102279][ T8714]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.102298][ T8714] RIP: 0033:0x7fcac934efc9
[  340.102314][ T8714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  340.102330][ T8714] RSP: 002b:00007fcac75ae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  340.102351][ T8714] RAX: ffffffffffffffda RBX: 00007fcac95a5fa0 RCX: 00007fcac934efc9
[  340.102365][ T8714] RDX: 0000000000000001 RSI: 00002000000005c0 RDI: 0000000000000004
[  340.102377][ T8714] RBP: 00007fcac75ae090 R08: 0000000000000000 R09: 0000000000000000
[  340.102389][ T8714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  340.102401][ T8714] R13: 00007fcac95a6038 R14: 00007fcac95a5fa0 R15: 00007fffe246d278
[  340.102435][ T8714]  </TASK>
[  340.608444][   T10] wg2 speed is unknown, defaulting to 1000
[  340.608479][   T10] syz0: Port: 1 Link DOWN
[  340.608955][   T10] wg2 speed is unknown, defaulting to 1000
[  340.936971][ T1111] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  340.952799][ T8722] mmap: syz.4.877 (8722) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  341.337166][   T37] audit: type=1400 audit(341.142:53): lsm=SMACK fn=smack_task_setpgid action=denied subject="w" object="_" requested=w pid=8733 comm="syz.0.880" opid=8733 ocomm="syz.0.880"
[  341.449537][    C1] vkms_vblank_simulate: vblank timer overrun
[  341.451028][ T5813] usb 5-1: new full-speed USB device number 26 using dummy_hcd
[  341.462191][ T5821] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  341.471193][ T5821] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  341.488714][ T5821] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  341.496595][ T5821] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  341.497787][ T5821] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  341.670388][    C1] vkms_vblank_simulate: vblank timer overrun
[  341.710239][ T5813] usb 5-1: unable to read config index 0 descriptor/start: -61
[  341.710279][ T5813] usb 5-1: can't read configurations, error -61
[  341.758105][ T1111] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  341.834592][ T5813] usb 5-1: new full-speed USB device number 27 using dummy_hcd
[  342.205207][ T5813] usb 5-1: unable to read config index 0 descriptor/start: -61
[  342.205249][ T5813] usb 5-1: can't read configurations, error -61
[  342.205671][ T5813] usb usb5-port1: attempt power cycle
[  342.575225][ T5813] usb 5-1: new full-speed USB device number 28 using dummy_hcd
[  342.625627][ T5813] usb 5-1: unable to read config index 0 descriptor/start: -61
[  342.625668][ T5813] usb 5-1: can't read configurations, error -61
[  342.690346][ T1111] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  342.755107][ T5813] usb 5-1: new full-speed USB device number 29 using dummy_hcd
[  342.760016][ T8736] wg2 speed is unknown, defaulting to 1000
[  342.778327][ T5813] usb 5-1: unable to read config index 0 descriptor/start: -61
[  342.778376][ T5813] usb 5-1: can't read configurations, error -61
[  342.778792][ T5813] usb usb5-port1: unable to enumerate USB device
[  342.875130][  T994] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  343.098246][  T994] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  343.098276][  T994] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  343.098296][  T994] usb 2-1: Product: syz
[  343.098309][  T994] usb 2-1: Manufacturer: syz
[  343.098324][  T994] usb 2-1: SerialNumber: syz
[  343.176870][  T994] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  343.208110][ T1111] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  343.430442][ T5993] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  343.565474][ T5819] Bluetooth: hci0: command tx timeout
[  343.675248][ T5882] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  343.849009][ T5882] usb 3-1: config 0 has an invalid interface number: 84 but max is 0
[  343.849041][ T5882] usb 3-1: config 0 has no interface number 0
[  343.849091][ T5882] usb 3-1: New USB device found, idVendor=045e, idProduct=0451, bcdDevice=2d.83
[  343.849191][ T5882] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  343.893586][   T10] usb 2-1: USB disconnect, device number 21
[  343.980160][ T5882] usb 3-1: config 0 descriptor??
[  344.039891][ T5821] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  344.057291][ T5821] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  344.063057][ T5821] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  344.092388][ T5821] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  344.093742][ T5821] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  344.202596][  T994] usb 3-1: USB disconnect, device number 26
[  344.275792][ T1111] bridge_slave_1: left allmulticast mode
[  344.275908][ T1111] bridge_slave_1: left promiscuous mode
[  344.279869][ T1111] bridge0: port 2(bridge_slave_1) entered disabled state
[  344.360376][ T1111] bridge_slave_0: left allmulticast mode
[  344.360407][ T1111] bridge_slave_0: left promiscuous mode
[  344.360669][ T1111] bridge0: port 1(bridge_slave_0) entered disabled state
[  344.606187][ T5993] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive
[  344.608732][ T5993] ath9k_htc: Failed to initialize the device
[  344.611818][   T10] usb 2-1: ath9k_htc: USB layer deinitialized
[  344.953566][ T8777] FAULT_INJECTION: forcing a failure.
[  344.953566][ T8777] name failslab, interval 1, probability 0, space 0, times 0
[  344.953599][ T8777] CPU: 0 UID: 0 PID: 8777 Comm: syz.1.898 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  344.953622][ T8777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  344.953634][ T8777] Call Trace:
[  344.953641][ T8777]  <TASK>
[  344.953650][ T8777]  dump_stack_lvl+0x189/0x250
[  344.953682][ T8777]  ? __pfx____ratelimit+0x10/0x10
[  344.953706][ T8777]  ? __pfx_dump_stack_lvl+0x10/0x10
[  344.953732][ T8777]  ? __pfx__printk+0x10/0x10
[  344.953766][ T8777]  ? __pfx___might_resched+0x10/0x10
[  344.953787][ T8777]  ? fs_reclaim_acquire+0x7d/0x100
[  344.953817][ T8777]  should_fail_ex+0x46c/0x600
[  344.953849][ T8777]  ? __alloc_skb+0x112/0x2d0
[  344.953867][ T8777]  should_failslab+0xa8/0x100
[  344.953895][ T8777]  ? __alloc_skb+0x112/0x2d0
[  344.953911][ T8777]  kmem_cache_alloc_node_noprof+0x78/0x6e0
[  344.953936][ T8777]  ? netlink_autobind+0xdb/0x300
[  344.953962][ T8777]  __alloc_skb+0x112/0x2d0
[  344.953987][ T8777]  netlink_sendmsg+0x5c6/0xb30
[  344.954005][ T8777]  ? is_bpf_text_address+0x26/0x2b0
[  344.954045][ T8777]  ? __pfx_netlink_sendmsg+0x10/0x10
[  344.954073][ T8777]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  344.954097][ T8777]  ? __pfx_netlink_sendmsg+0x10/0x10
[  344.954118][ T8777]  __sock_sendmsg+0x21c/0x270
[  344.954147][ T8777]  ____sys_sendmsg+0x508/0x820
[  344.954175][ T8777]  ? __pfx_____sys_sendmsg+0x10/0x10
[  344.954206][ T8777]  ? import_iovec+0x74/0xa0
[  344.954230][ T8777]  ___sys_sendmsg+0x21f/0x2a0
[  344.954255][ T8777]  ? __pfx____sys_sendmsg+0x10/0x10
[  344.954315][ T8777]  ? __fget_files+0x2a/0x420
[  344.954344][ T8777]  ? __fget_files+0x3a6/0x420
[  344.954379][ T8777]  __x64_sys_sendmsg+0x1a1/0x260
[  344.954404][ T8777]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  344.954430][ T8777]  ? __pfx_ksys_write+0x10/0x10
[  344.954454][ T8777]  ? do_syscall_64+0xbe/0xfa0
[  344.954485][ T8777]  do_syscall_64+0xfa/0xfa0
[  344.954504][ T8777]  ? lockdep_hardirqs_on+0x9c/0x150
[  344.954522][ T8777]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.954538][ T8777]  ? clear_bhb_loop+0x60/0xb0
[  344.954558][ T8777]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.954574][ T8777] RIP: 0033:0x7fcac934efc9
[  344.954589][ T8777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  344.954604][ T8777] RSP: 002b:00007fcac75ae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  344.954624][ T8777] RAX: ffffffffffffffda RBX: 00007fcac95a5fa0 RCX: 00007fcac934efc9
[  344.954636][ T8777] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000003
[  344.954647][ T8777] RBP: 00007fcac75ae090 R08: 0000000000000000 R09: 0000000000000000
[  344.954658][ T8777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  344.954668][ T8777] R13: 00007fcac95a6038 R14: 00007fcac95a5fa0 R15: 00007fffe246d278
[  344.954698][ T8777]  </TASK>
[  345.650844][ T5819] Bluetooth: hci0: command tx timeout
[  346.124596][ T5819] Bluetooth: hci1: command tx timeout
[  346.468552][ T8798] Bluetooth: MGMT ver 1.23
[  347.280482][    C0] vkms_vblank_simulate: vblank timer overrun
[  347.734948][ T5819] Bluetooth: hci0: command tx timeout
[  347.735795][   T37] audit: type=1400 audit(347.522:54): lsm=SMACK fn=smack_task_setpgid action=denied subject="w" object="_" requested=w pid=8814 comm="syz.1.910" opid=8814 ocomm="syz.1.910"
[  347.795351][    C0] vkms_vblank_simulate: vblank timer overrun
[  348.039354][    C0] vkms_vblank_simulate: vblank timer overrun
[  348.208975][ T5819] Bluetooth: hci1: command tx timeout
[  348.403648][    C0] vkms_vblank_simulate: vblank timer overrun
[  348.434350][    C0] vkms_vblank_simulate: vblank timer overrun
[  348.462663][    C0] vkms_vblank_simulate: vblank timer overrun
[  348.703367][    C0] vkms_vblank_simulate: vblank timer overrun
[  348.725575][ T8822] FAULT_INJECTION: forcing a failure.
[  348.725575][ T8822] name failslab, interval 1, probability 0, space 0, times 0
[  348.725599][ T8822] CPU: 1 UID: 0 PID: 8822 Comm: syz.4.912 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  348.725612][ T8822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  348.725619][ T8822] Call Trace:
[  348.725624][ T8822]  <TASK>
[  348.725629][ T8822]  dump_stack_lvl+0x189/0x250
[  348.725651][ T8822]  ? __pfx____ratelimit+0x10/0x10
[  348.725665][ T8822]  ? __pfx_dump_stack_lvl+0x10/0x10
[  348.725681][ T8822]  ? __pfx__printk+0x10/0x10
[  348.725698][ T8822]  ? __pfx___might_resched+0x10/0x10
[  348.725712][ T8822]  should_fail_ex+0x46c/0x600
[  348.725730][ T8822]  should_failslab+0xa8/0x100
[  348.725748][ T8822]  __kmalloc_cache_noprof+0x6f/0x6c0
[  348.725766][ T8822]  ? __io_uring_add_tctx_node+0x149/0x4e0
[  348.725783][ T8822]  __io_uring_add_tctx_node+0x149/0x4e0
[  348.725855][ T8822]  ? __pfx___io_uring_add_tctx_node+0x10/0x10
[  348.725869][ T8822]  ? __fget_files+0x2a/0x420
[  348.725887][ T8822]  ? __fget_files+0x2a/0x420
[  348.725915][ T8822]  __io_uring_add_tctx_node_from_submit+0x91/0x120
[  348.725940][ T8822]  __se_sys_io_uring_enter+0x2549/0x2b70
[  348.725977][ T8822]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  348.726005][ T8822]  ? lockdep_hardirqs_on+0x9c/0x150
[  348.726032][ T8822]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  348.726054][ T8822]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  348.726080][ T8822]  ? __pfx___se_sys_io_uring_enter+0x10/0x10
[  348.726102][ T8822]  ? try_to_take_rt_mutex+0x7fd/0xac0
[  348.726126][ T8822]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  348.726146][ T8822]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  348.726177][ T8822]  ? fput+0xa0/0xd0
[  348.726196][ T8822]  ? ksys_write+0x230/0x260
[  348.726220][ T8822]  ? __pfx_ksys_write+0x10/0x10
[  348.726247][ T8822]  ? __x64_sys_io_uring_enter+0x21/0xf0
[  348.726275][ T8822]  do_syscall_64+0xfa/0xfa0
[  348.726297][ T8822]  ? lockdep_hardirqs_on+0x9c/0x150
[  348.726320][ T8822]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.726339][ T8822]  ? clear_bhb_loop+0x60/0xb0
[  348.726362][ T8822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.726381][ T8822] RIP: 0033:0x7fdf3818efc9
[  348.726400][ T8822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.726415][ T8822] RSP: 002b:00007fdf363c5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  348.726436][ T8822] RAX: ffffffffffffffda RBX: 00007fdf383e6090 RCX: 00007fdf3818efc9
[  348.726451][ T8822] RDX: 0000000000000000 RSI: 0000000000000db4 RDI: 0000000000000004
[  348.726463][ T8822] RBP: 00007fdf363c5090 R08: 0000000000000000 R09: 0000000000000000
[  348.726475][ T8822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  348.726487][ T8822] R13: 00007fdf383e6128 R14: 00007fdf383e6090 R15: 00007ffe2a82e0c8
[  348.726521][ T8822]  </TASK>
[  349.046407][    C0] vkms_vblank_simulate: vblank timer overrun
[  349.126896][    C0] vkms_vblank_simulate: vblank timer overrun
[  349.182585][    C0] vkms_vblank_simulate: vblank timer overrun
[  349.347601][    C0] vkms_vblank_simulate: vblank timer overrun
[  349.465511][ T1111] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  349.710623][ T1111] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  349.731790][    C0] vkms_vblank_simulate: vblank timer overrun
[  349.756990][ T1111] bond0 (unregistering): Released all slaves
[  349.804969][ T5819] Bluetooth: hci0: command tx timeout
[  350.693141][ T5819] Bluetooth: hci1: command tx timeout
[  350.708462][    C0] vkms_vblank_simulate: vblank timer overrun
[  350.820121][    C0] vkms_vblank_simulate: vblank timer overrun
[  350.835063][ T8755] wg2 speed is unknown, defaulting to 1000
[  350.893616][    C0] vkms_vblank_simulate: vblank timer overrun
[  350.925692][    C0] vkms_vblank_simulate: vblank timer overrun
[  350.978721][    C0] vkms_vblank_simulate: vblank timer overrun
[  351.223936][ T8838] FAULT_INJECTION: forcing a failure.
[  351.223936][ T8838] name failslab, interval 1, probability 0, space 0, times 0
[  351.223976][ T8838] CPU: 1 UID: 0 PID: 8838 Comm: syz.4.917 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  351.224026][ T8838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  351.224052][ T8838] Call Trace:
[  351.224060][ T8838]  <TASK>
[  351.224069][ T8838]  dump_stack_lvl+0x189/0x250
[  351.224100][ T8838]  ? __pfx____ratelimit+0x10/0x10
[  351.224129][ T8838]  ? __pfx_dump_stack_lvl+0x10/0x10
[  351.224155][ T8838]  ? __pfx__printk+0x10/0x10
[  351.224174][ T8838]  ? netlink_sendmsg+0x805/0xb30
[  351.224195][ T8838]  ? __x64_sys_sendmsg+0x1a1/0x260
[  351.224215][ T8838]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.224248][ T8838]  should_fail_ex+0x46c/0x600
[  351.224276][ T8838]  ? skb_clone+0x212/0x3a0
[  351.224297][ T8838]  should_failslab+0xa8/0x100
[  351.224324][ T8838]  ? skb_clone+0x212/0x3a0
[  351.224344][ T8838]  kmem_cache_alloc_noprof+0x6f/0x6b0
[  351.224377][ T8838]  skb_clone+0x212/0x3a0
[  351.224402][ T8838]  __netlink_deliver_tap+0x404/0x850
[  351.224431][ T8838]  ? netlink_deliver_tap+0x2e/0x1b0
[  351.224451][ T8838]  netlink_deliver_tap+0x19c/0x1b0
[  351.224470][ T8838]  netlink_sendskb+0x68/0x140
[  351.224500][ T8838]  netlink_unicast+0x3b6/0xa10
[  351.224523][ T8838]  ? __asan_memcpy+0x40/0x70
[  351.224553][ T8838]  ? __pfx_netlink_unicast+0x10/0x10
[  351.224589][ T8838]  netlink_rcv_skb+0x28c/0x470
[  351.224611][ T8838]  ? __pfx_genl_rcv_msg+0x10/0x10
[  351.224636][ T8838]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  351.224673][ T8838]  ? netlink_deliver_tap+0x2e/0x1b0
[  351.224691][ T8838]  ? netlink_deliver_tap+0x2e/0x1b0
[  351.224716][ T8838]  genl_rcv+0x28/0x40
[  351.224736][ T8838]  netlink_unicast+0x846/0xa10
[  351.224772][ T8838]  ? __pfx_netlink_unicast+0x10/0x10
[  351.224801][ T8838]  ? netlink_sendmsg+0x642/0xb30
[  351.224819][ T8838]  ? skb_put+0x11b/0x210
[  351.224851][ T8838]  netlink_sendmsg+0x805/0xb30
[  351.224868][ T8838]  ? is_bpf_text_address+0x26/0x2b0
[  351.224905][ T8838]  ? __pfx_netlink_sendmsg+0x10/0x10
[  351.224935][ T8838]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  351.224960][ T8838]  ? __pfx_netlink_sendmsg+0x10/0x10
[  351.224981][ T8838]  __sock_sendmsg+0x21c/0x270
[  351.225011][ T8838]  ____sys_sendmsg+0x508/0x820
[  351.225039][ T8838]  ? __pfx_____sys_sendmsg+0x10/0x10
[  351.225072][ T8838]  ? import_iovec+0x74/0xa0
[  351.225097][ T8838]  ___sys_sendmsg+0x21f/0x2a0
[  351.225122][ T8838]  ? __pfx____sys_sendmsg+0x10/0x10
[  351.225186][ T8838]  ? __fget_files+0x2a/0x420
[  351.225210][ T8838]  ? __fget_files+0x3a6/0x420
[  351.225246][ T8838]  __x64_sys_sendmsg+0x1a1/0x260
[  351.225272][ T8838]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  351.225305][ T8838]  ? __pfx_ksys_write+0x10/0x10
[  351.225332][ T8838]  ? do_syscall_64+0xbe/0xfa0
[  351.225360][ T8838]  do_syscall_64+0xfa/0xfa0
[  351.225382][ T8838]  ? lockdep_hardirqs_on+0x9c/0x150
[  351.225405][ T8838]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.225423][ T8838]  ? clear_bhb_loop+0x60/0xb0
[  351.225447][ T8838]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.225465][ T8838] RIP: 0033:0x7fdf3818efc9
[  351.225483][ T8838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  351.225500][ T8838] RSP: 002b:00007fdf363ee038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  351.225521][ T8838] RAX: ffffffffffffffda RBX: 00007fdf383e5fa0 RCX: 00007fdf3818efc9
[  351.225535][ T8838] RDX: 000000000000c020 RSI: 0000200000000000 RDI: 0000000000000003
[  351.225548][ T8838] RBP: 00007fdf363ee090 R08: 0000000000000000 R09: 0000000000000000
[  351.225560][ T8838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  351.225572][ T8838] R13: 00007fdf383e6038 R14: 00007fdf383e5fa0 R15: 00007ffe2a82e0c8
[  351.225607][ T8838]  </TASK>
[  351.361712][   T37] audit: type=1400 audit(351.162:55): lsm=SMACK fn=smack_task_setpgid action=denied subject="w" object="_" requested=w pid=8839 comm="syz.1.919" opid=8839 ocomm="syz.1.919"
[  351.434739][ T1111] tipc: Disabling bearer <udp:syz2>
[  351.435451][ T1111] tipc: Left network mode
[  351.792205][    C0] vkms_vblank_simulate: vblank timer overrun
[  352.034194][    C0] vkms_vblank_simulate: vblank timer overrun
[  352.482805][ T8866] netlink: 4 bytes leftover after parsing attributes in process `syz.2.926'.
[  352.482828][ T8866] netlink: 8 bytes leftover after parsing attributes in process `syz.2.926'.
[  352.780849][ T5819] Bluetooth: hci1: command tx timeout
[  354.489354][   T37] audit: type=1400 audit(354.292:56): lsm=SMACK fn=smack_task_setpgid action=denied subject="w" object="_" requested=w pid=8892 comm="syz.1.935" opid=8892 ocomm="syz.1.935"
[  354.772502][ T8736] chnl_net:caif_netlink_parms(): no params data found
[  354.934616][ T5813] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  355.108361][ T5813] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  355.108403][ T5813] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  355.111096][ T5813] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  355.111125][ T5813] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  355.111145][ T5813] usb 2-1: Manufacturer: syz
[  355.160654][ T5813] usb 2-1: config 0 descriptor??
[  355.617823][ T8898] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  355.622384][ T8898] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  355.622797][ T8898] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  355.643390][ T8898] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  356.111569][ T5813] usbhid 2-1:0.0: can't add hid device: -71
[  356.111681][ T5813] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  356.132000][ T5813] usb 2-1: USB disconnect, device number 22
[  356.379320][   T37] audit: type=1400 audit(356.182:57): lsm=SMACK fn=smack_task_setpgid action=denied subject="w" object="_" requested=w pid=8921 comm="syz.1.944" opid=8921 ocomm="syz.1.944"
[  356.678375][ T8930] overlayfs: failed to decode file handle (len=6, type=251, flags=0, err=-22)
[  356.694746][ T1111] hsr_slave_0: left promiscuous mode
[  356.769425][ T1111] hsr_slave_1: left promiscuous mode
[  356.776625][ T1111] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  356.776744][ T1111] batman_adv: batadv0: Removing interface: batadv_slave_0
[  356.853381][ T1111] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  356.853412][ T1111] batman_adv: batadv0: Removing interface: batadv_slave_1
[  356.973800][ T1111] veth1_macvtap: left promiscuous mode
[  356.973995][ T1111] veth0_macvtap: left promiscuous mode
[  356.974183][ T1111] veth1_vlan: left promiscuous mode
[  356.979329][ T1111] veth0_vlan: left promiscuous mode
[  357.116797][ T8936] loop7: detected capacity change from 0 to 16384
[  357.562090][ T8938] loop7: detected capacity change from 16384 to 0
[  357.562331][    C1] blk_print_req_error: 25 callbacks suppressed
[  357.562348][    C1] I/O error, dev loop7, sector 7168 op 0x0:(READ) flags 0x80700 phys_seg 19 prio class 1
[  358.663614][   T37] audit: type=1400 audit(358.442:58): lsm=SMACK fn=smack_task_setpgid action=denied subject="w" object="_" requested=w pid=8953 comm="syz.1.953" opid=8953 ocomm="syz.1.953"
[  361.516182][ T1111] team0 (unregistering): Port device team_slave_1 removed
[  361.755740][ T1111] team0 (unregistering): Port device team_slave_0 removed
[  362.770641][ T1769] smc: removing ib device syz0
[  364.719079][ T8736] bridge0: port 1(bridge_slave_0) entered blocking state
[  364.719320][ T8736] bridge0: port 1(bridge_slave_0) entered disabled state
[  364.719568][ T8736] bridge_slave_0: entered allmulticast mode
[  364.721601][ T8736] bridge_slave_0: entered promiscuous mode
[  364.766022][ T8736] bridge0: port 2(bridge_slave_1) entered blocking state
[  364.766160][ T8736] bridge0: port 2(bridge_slave_1) entered disabled state
[  364.766395][ T8736] bridge_slave_1: entered allmulticast mode
[  364.769212][ T8736] bridge_slave_1: entered promiscuous mode
[  366.148989][ T5813] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  366.315401][ T5813] usb 5-1: Using ep0 maxpacket: 8
[  366.353533][ T5813] usb 5-1: unable to get BOS descriptor or descriptor too short
[  366.354110][ T5813] usb 5-1: too many configurations: 177, using maximum allowed: 8
[  366.389766][ T5813] usb 5-1: unable to read config index 0 descriptor/start: -61
[  366.389806][ T5813] usb 5-1: can't read configurations, error -61
[  366.514596][ T5813] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  366.687965][ T5813] usb 5-1: Using ep0 maxpacket: 8
[  366.700401][ T5813] usb 5-1: unable to get BOS descriptor or descriptor too short
[  366.700488][ T5813] usb 5-1: too many configurations: 177, using maximum allowed: 8
[  366.702227][ T5813] usb 5-1: unable to read config index 0 descriptor/start: -61
[  366.702262][ T5813] usb 5-1: can't read configurations, error -61
[  366.702646][ T5813] usb usb5-port1: attempt power cycle
[  366.779816][ T8736] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  366.797769][ T8736] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  366.873170][ T9015] FAULT_INJECTION: forcing a failure.
[  366.873170][ T9015] name failslab, interval 1, probability 0, space 0, times 0
[  366.873193][ T9015] CPU: 1 UID: 0 PID: 9015 Comm: syz.2.973 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  366.873205][ T9015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  366.873213][ T9015] Call Trace:
[  366.873217][ T9015]  <TASK>
[  366.873222][ T9015]  dump_stack_lvl+0x189/0x250
[  366.873244][ T9015]  ? __pfx____ratelimit+0x10/0x10
[  366.873258][ T9015]  ? __pfx_dump_stack_lvl+0x10/0x10
[  366.873273][ T9015]  ? __pfx__printk+0x10/0x10
[  366.873289][ T9015]  ? __pfx___might_resched+0x10/0x10
[  366.873304][ T9015]  should_fail_ex+0x46c/0x600
[  366.873322][ T9015]  should_failslab+0xa8/0x100
[  366.873339][ T9015]  __kmalloc_cache_noprof+0x6f/0x6c0
[  366.873355][ T9015]  ? ovs_flow_cmd_new+0x294/0xd80
[  366.873371][ T9015]  ovs_flow_cmd_new+0x294/0xd80
[  366.873389][ T9015]  ? __pfx_ovs_flow_cmd_new+0x10/0x10
[  366.873431][ T9015]  ? rcu_is_watching+0x15/0xb0
[  366.873443][ T9015]  ? __nla_parse+0x40/0x60
[  366.873460][ T9015]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  366.873480][ T9015]  genl_family_rcv_msg_doit+0x215/0x300
[  366.873497][ T9015]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  366.873518][ T9015]  ? bpf_lsm_capable+0x9/0x20
[  366.873529][ T9015]  ? security_capable+0x7e/0x2e0
[  366.873546][ T9015]  genl_rcv_msg+0x60e/0x790
[  366.873563][ T9015]  ? __pfx_genl_rcv_msg+0x10/0x10
[  366.873576][ T9015]  ? __pfx_ovs_flow_cmd_new+0x10/0x10
[  366.873592][ T9015]  ? __lock_acquire+0xab9/0xd20
[  366.873610][ T9015]  netlink_rcv_skb+0x208/0x470
[  366.873621][ T9015]  ? __pfx_genl_rcv_msg+0x10/0x10
[  366.873635][ T9015]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  366.873654][ T9015]  ? netlink_deliver_tap+0x2e/0x1b0
[  366.873664][ T9015]  ? netlink_deliver_tap+0x2e/0x1b0
[  366.873677][ T9015]  genl_rcv+0x28/0x40
[  366.873688][ T9015]  netlink_unicast+0x846/0xa10
[  366.873710][ T9015]  ? __pfx_netlink_unicast+0x10/0x10
[  366.873726][ T9015]  ? netlink_sendmsg+0x642/0xb30
[  366.873736][ T9015]  ? skb_put+0x11b/0x210
[  366.873749][ T9015]  netlink_sendmsg+0x805/0xb30
[  366.873759][ T9015]  ? is_bpf_text_address+0x26/0x2b0
[  366.873779][ T9015]  ? __pfx_netlink_sendmsg+0x10/0x10
[  366.873795][ T9015]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  366.873811][ T9015]  ? __pfx_netlink_sendmsg+0x10/0x10
[  366.873823][ T9015]  __sock_sendmsg+0x21c/0x270
[  366.873840][ T9015]  ____sys_sendmsg+0x508/0x820
[  366.873856][ T9015]  ? __pfx_____sys_sendmsg+0x10/0x10
[  366.873873][ T9015]  ? import_iovec+0x74/0xa0
[  366.873887][ T9015]  ___sys_sendmsg+0x21f/0x2a0
[  366.873900][ T9015]  ? __pfx____sys_sendmsg+0x10/0x10
[  366.873932][ T9015]  ? __fget_files+0x2a/0x420
[  366.873947][ T9015]  ? __fget_files+0x3a6/0x420
[  366.873967][ T9015]  __x64_sys_sendmsg+0x1a1/0x260
[  366.873980][ T9015]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  366.873998][ T9015]  ? __pfx_ksys_write+0x10/0x10
[  366.874013][ T9015]  ? do_syscall_64+0xbe/0xfa0
[  366.874029][ T9015]  do_syscall_64+0xfa/0xfa0
[  366.874042][ T9015]  ? lockdep_hardirqs_on+0x9c/0x150
[  366.874060][ T9015]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.874070][ T9015]  ? clear_bhb_loop+0x60/0xb0
[  366.874082][ T9015]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.874092][ T9015] RIP: 0033:0x7fd3c82defc9
[  366.874102][ T9015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.874112][ T9015] RSP: 002b:00007fd3c6546038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  366.874124][ T9015] RAX: ffffffffffffffda RBX: 00007fd3c8535fa0 RCX: 00007fd3c82defc9
[  366.874131][ T9015] RDX: 000000000000c000 RSI: 0000200000000000 RDI: 0000000000000003
[  366.874138][ T9015] RBP: 00007fd3c6546090 R08: 0000000000000000 R09: 0000000000000000
[  366.874144][ T9015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.874151][ T9015] R13: 00007fd3c8536038 R14: 00007fd3c8535fa0 R15: 00007ffdc2bfd048
[  366.874168][ T9015]  </TASK>
[  367.215043][ T5813] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  367.292521][ T5813] usb 5-1: Using ep0 maxpacket: 8
[  367.298086][ T5813] usb 5-1: unable to get BOS descriptor or descriptor too short
[  367.298177][ T5813] usb 5-1: too many configurations: 177, using maximum allowed: 8
[  367.305119][ T5813] usb 5-1: unable to read config index 0 descriptor/start: -61
[  367.305158][ T5813] usb 5-1: can't read configurations, error -61
[  367.456419][ T8755] chnl_net:caif_netlink_parms(): no params data found
[  367.680841][ T9021] netlink: 16 bytes leftover after parsing attributes in process `syz.2.974'.
[  368.788430][ T5813] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  368.885390][ T5813] usb 5-1: Using ep0 maxpacket: 8
[  368.889020][ T5813] usb 5-1: unable to get BOS descriptor or descriptor too short
[  368.889110][ T5813] usb 5-1: too many configurations: 177, using maximum allowed: 8
[  368.890773][ T5813] usb 5-1: unable to read config index 0 descriptor/start: -61
[  368.890809][ T5813] usb 5-1: can't read configurations, error -61
[  368.891306][ T5813] usb usb5-port1: unable to enumerate USB device
[  368.988768][ T8736] team0: Port device team_slave_0 added
[  369.160792][ T9029] FAULT_INJECTION: forcing a failure.
[  369.160792][ T9029] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  369.160893][ T9029] CPU: 1 UID: 0 PID: 9029 Comm: syz.1.976 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  369.160914][ T9029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  369.160925][ T9029] Call Trace:
[  369.160934][ T9029]  <TASK>
[  369.160942][ T9029]  dump_stack_lvl+0x189/0x250
[  369.160972][ T9029]  ? __pfx____ratelimit+0x10/0x10
[  369.160995][ T9029]  ? __pfx_dump_stack_lvl+0x10/0x10
[  369.161024][ T9029]  ? __pfx__printk+0x10/0x10
[  369.161059][ T9029]  should_fail_ex+0x46c/0x600
[  369.161088][ T9029]  strncpy_from_user+0x36/0x290
[  369.161115][ T9029]  bpf_prog_load+0xc23/0x19e0
[  369.161152][ T9029]  ? __pfx_bpf_prog_load+0x10/0x10
[  369.161199][ T9029]  ? bpf_lsm_bpf+0x9/0x20
[  369.161216][ T9029]  ? security_bpf+0x7e/0x300
[  369.161240][ T9029]  __sys_bpf+0x507/0x860
[  369.161266][ T9029]  ? __pfx___sys_bpf+0x10/0x10
[  369.161286][ T9029]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  369.161322][ T9029]  ? ksys_write+0x230/0x260
[  369.161347][ T9029]  ? __pfx_ksys_write+0x10/0x10
[  369.161375][ T9029]  __x64_sys_bpf+0x7c/0x90
[  369.161396][ T9029]  do_syscall_64+0xfa/0xfa0
[  369.161419][ T9029]  ? lockdep_hardirqs_on+0x9c/0x150
[  369.161442][ T9029]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.161461][ T9029]  ? clear_bhb_loop+0x60/0xb0
[  369.161483][ T9029]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.161501][ T9029] RIP: 0033:0x7fcac934efc9
[  369.161518][ T9029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  369.161534][ T9029] RSP: 002b:00007fcac75ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  369.161560][ T9029] RAX: ffffffffffffffda RBX: 00007fcac95a5fa0 RCX: 00007fcac934efc9
[  369.161572][ T9029] RDX: 000000000000009a RSI: 00002000000003c0 RDI: 0000000000000005
[  369.161584][ T9029] RBP: 00007fcac75ae090 R08: 0000000000000000 R09: 0000000000000000
[  369.161596][ T9029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  369.161607][ T9029] R13: 00007fcac95a6038 R14: 00007fcac95a5fa0 R15: 00007fffe246d278
[  369.161637][ T9029]  </TASK>
[  369.441327][ T8736] team0: Port device team_slave_1 added
[  370.197840][ T9035] FAULT_INJECTION: forcing a failure.
[  370.197840][ T9035] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  370.197875][ T9035] CPU: 1 UID: 0 PID: 9035 Comm: syz.4.978 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  370.197898][ T9035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  370.197910][ T9035] Call Trace:
[  370.197918][ T9035]  <TASK>
[  370.197926][ T9035]  dump_stack_lvl+0x189/0x250
[  370.197957][ T9035]  ? __pfx____ratelimit+0x10/0x10
[  370.197981][ T9035]  ? __pfx_dump_stack_lvl+0x10/0x10
[  370.198007][ T9035]  ? __pfx__printk+0x10/0x10
[  370.198043][ T9035]  should_fail_ex+0x46c/0x600
[  370.198074][ T9035]  _copy_to_user+0x31/0xb0
[  370.198098][ T9035]  bpf_test_finish+0x56f/0x700
[  370.198128][ T9035]  ? __pfx_bpf_test_finish+0x10/0x10
[  370.198163][ T9035]  bpf_prog_test_run_skb+0xef8/0x1550
[  370.198200][ T9035]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  370.198221][ T9035]  bpf_prog_test_run+0x2cd/0x340
[  370.198251][ T9035]  __sys_bpf+0x562/0x860
[  370.198277][ T9035]  ? __pfx___sys_bpf+0x10/0x10
[  370.198299][ T9035]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  370.198336][ T9035]  ? ksys_write+0x230/0x260
[  370.198362][ T9035]  ? __pfx_ksys_write+0x10/0x10
[  370.198390][ T9035]  __x64_sys_bpf+0x7c/0x90
[  370.198413][ T9035]  do_syscall_64+0xfa/0xfa0
[  370.198436][ T9035]  ? lockdep_hardirqs_on+0x9c/0x150
[  370.198464][ T9035]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.198484][ T9035]  ? clear_bhb_loop+0x60/0xb0
[  370.198507][ T9035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.198525][ T9035] RIP: 0033:0x7fdf3818efc9
[  370.198542][ T9035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  370.198558][ T9035] RSP: 002b:00007fdf363ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  370.198578][ T9035] RAX: ffffffffffffffda RBX: 00007fdf383e5fa0 RCX: 00007fdf3818efc9
[  370.198592][ T9035] RDX: 0000000000000050 RSI: 00002000000002c0 RDI: 000000000000000a
[  370.198605][ T9035] RBP: 00007fdf363ee090 R08: 0000000000000000 R09: 0000000000000000
[  370.198617][ T9035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  370.198628][ T9035] R13: 00007fdf383e6038 R14: 00007fdf383e5fa0 R15: 00007ffe2a82e0c8
[  370.198661][ T9035]  </TASK>
[  371.372801][   T37] audit: type=1400 audit(371.172:59): lsm=SMACK fn=smack_task_setpgid action=denied subject="w" object="_" requested=w pid=9043 comm="syz.1.982" opid=9043 ocomm="syz.1.982"
[  371.445834][ T8736] batman_adv: batadv0: Adding interface: batadv_slave_0
[  371.445851][ T8736] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  371.445878][ T8736] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  371.492099][ T9055] binder: BINDER_SET_CONTEXT_MGR already set
[  371.492116][ T9055] binder: 9053:9055 ioctl 4018620d 200000000040 returned -16
[  372.705888][ T8736] batman_adv: batadv0: Adding interface: batadv_slave_1
[  372.705905][ T8736] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  372.705932][ T8736] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  373.899528][ T5898] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  374.182832][ T5898] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  374.182866][ T5898] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  374.182887][ T5898] usb 2-1: Product: syz
[  374.182902][ T5898] usb 2-1: Manufacturer: syz
[  374.182917][ T5898] usb 2-1: SerialNumber: syz
[  374.234923][ T5898] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  374.273783][ T5894] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  374.525315][ T8755] bridge0: port 1(bridge_slave_0) entered blocking state
[  374.525455][ T8755] bridge0: port 1(bridge_slave_0) entered disabled state
[  374.525674][ T8755] bridge_slave_0: entered allmulticast mode
[  374.528061][ T8755] bridge_slave_0: entered promiscuous mode
[  374.911027][ T5813] usb 2-1: USB disconnect, device number 23
[  374.922405][ T8755] bridge0: port 2(bridge_slave_1) entered blocking state
[  374.922541][ T8755] bridge0: port 2(bridge_slave_1) entered disabled state
[  374.922736][ T8755] bridge_slave_1: entered allmulticast mode
[  374.927669][ T8755] bridge_slave_1: entered promiscuous mode
[  375.406074][ T5894] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive
[  375.432933][ T5894] ath9k_htc: Failed to initialize the device
[  375.904716][ T5813] usb 2-1: ath9k_htc: USB layer deinitialized
[  376.267326][ T8736] hsr_slave_0: entered promiscuous mode
[  376.268034][   T37] audit: type=1400 audit(376.072:60): lsm=SMACK fn=smack_task_setpgid action=denied subject="w" object="_" requested=w pid=9082 comm="syz.2.993" opid=9082 ocomm="syz.2.993"
[  376.268729][ T8736] hsr_slave_1: entered promiscuous mode
[  376.960976][ T8755] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  377.159426][ T8755] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  378.138850][ T8755] team0: Port device team_slave_0 added
[  378.154125][ T9110] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1001'.
[  378.180982][ T8755] team0: Port device team_slave_1 added
[  378.366761][   T37] audit: type=1400 audit(378.172:61): lsm=SMACK fn=smack_task_setpgid action=denied subject="w" object="_" requested=w pid=9118 comm="syz.4.1003" opid=9118 ocomm="syz.4.1003"
[  378.404888][ T5898] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  378.564585][ T5898] usb 2-1: Using ep0 maxpacket: 16
[  378.569128][ T5898] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  378.569186][ T5898] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  378.569208][ T5898] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[  378.569231][ T5898] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  378.609514][ T8755] batman_adv: batadv0: Adding interface: batadv_slave_0
[  378.609538][ T8755] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  378.609564][ T8755] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  378.613484][ T8755] batman_adv: batadv0: Adding interface: batadv_slave_1
[  378.613499][ T8755] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  378.613533][ T8755] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  378.674859][ T5898] usb 2-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47
[  378.674892][ T5898] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  378.674912][ T5898] usb 2-1: Product: syz
[  378.674928][ T5898] usb 2-1: Manufacturer: syz
[  378.674943][ T5898] usb 2-1: SerialNumber: syz
[  378.753357][ T5898] usb 2-1: config 0 descriptor??
[  378.762280][ T5898] mcba_usb 2-1:0.0: Can't find endpoints
[  378.775169][ T1320] ieee802154 phy1 wpan1: encryption failed: -22
[  378.993258][ T5882] usb 2-1: USB disconnect, device number 24
[  380.127467][ T8755] hsr_slave_0: entered promiscuous mode
[  380.129107][ T8755] hsr_slave_1: entered promiscuous mode
[  380.130300][ T8755] debugfs: 'hsr0' already exists in 'hsr'
[  380.130326][ T8755] Cannot create hsr debugfs directory
[  380.690021][ T9148] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1013'.
[  381.715485][ T8736] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  381.744605][ T5813] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  381.854226][ T8736] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  381.867329][ T9157] Bluetooth: MGMT ver 1.23
[  381.909315][ T5813] usb 2-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  381.909349][ T5813] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  381.909366][ T5813] usb 2-1: Product: syz
[  381.909377][ T5813] usb 2-1: Manufacturer: syz
[  381.909388][ T5813] usb 2-1: SerialNumber: syz
[  381.945179][ T5813] usb 2-1: config 0 descriptor??
[  381.966104][ T5813] gspca_main: sunplus-2.14.0 probing 055f:c230
[  381.979867][ T8736] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  382.079740][ T8736] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  382.421912][ T8755] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  382.452380][ T8755] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  382.470708][ T8755] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  382.511960][ T8755] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  382.863402][ T5993] usb 2-1: USB disconnect, device number 25
[  382.976548][ T8736] 8021q: adding VLAN 0 to HW filter on device bond0
[  383.054720][ T9180] FAULT_INJECTION: forcing a failure.
[  383.054720][ T9180] name failslab, interval 1, probability 0, space 0, times 0
[  383.054757][ T9180] CPU: 0 UID: 0 PID: 9180 Comm: syz.1.1020 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  383.054784][ T9180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  383.054796][ T9180] Call Trace:
[  383.054803][ T9180]  <TASK>
[  383.054812][ T9180]  dump_stack_lvl+0x189/0x250
[  383.054843][ T9180]  ? __pfx____ratelimit+0x10/0x10
[  383.054867][ T9180]  ? __pfx_dump_stack_lvl+0x10/0x10
[  383.054894][ T9180]  ? __pfx__printk+0x10/0x10
[  383.054912][ T9180]  ? __sock_sendmsg+0x21c/0x270
[  383.054939][ T9180]  ? do_syscall_64+0xfa/0xfa0
[  383.054972][ T9180]  should_fail_ex+0x46c/0x600
[  383.055002][ T9180]  ? skb_clone+0x212/0x3a0
[  383.055023][ T9180]  should_failslab+0xa8/0x100
[  383.055049][ T9180]  ? skb_clone+0x212/0x3a0
[  383.055068][ T9180]  kmem_cache_alloc_noprof+0x6f/0x6b0
[  383.055101][ T9180]  skb_clone+0x212/0x3a0
[  383.055126][ T9180]  __netlink_deliver_tap+0x404/0x850
[  383.055161][ T9180]  ? netlink_deliver_tap+0x2e/0x1b0
[  383.055183][ T9180]  netlink_deliver_tap+0x19c/0x1b0
[  383.055204][ T9180]  netlink_sendskb+0x68/0x140
[  383.055233][ T9180]  netlink_unicast+0x3b6/0xa10
[  383.055257][ T9180]  ? __asan_memcpy+0x40/0x70
[  383.055294][ T9180]  ? __pfx_netlink_unicast+0x10/0x10
[  383.055331][ T9180]  netlink_rcv_skb+0x28c/0x470
[  383.055352][ T9180]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  383.055373][ T9180]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  383.055406][ T9180]  ? netlink_deliver_tap+0x2e/0x1b0
[  383.055435][ T9180]  netlink_unicast+0x846/0xa10
[  383.055476][ T9180]  ? __pfx_netlink_unicast+0x10/0x10
[  383.055504][ T9180]  ? netlink_sendmsg+0x642/0xb30
[  383.055522][ T9180]  ? skb_put+0x11b/0x210
[  383.055545][ T9180]  netlink_sendmsg+0x805/0xb30
[  383.055564][ T9180]  ? is_bpf_text_address+0x26/0x2b0
[  383.055600][ T9180]  ? __pfx_netlink_sendmsg+0x10/0x10
[  383.055629][ T9180]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  383.055654][ T9180]  ? __pfx_netlink_sendmsg+0x10/0x10
[  383.055675][ T9180]  __sock_sendmsg+0x21c/0x270
[  383.055704][ T9180]  ____sys_sendmsg+0x508/0x820
[  383.055732][ T9180]  ? __pfx_____sys_sendmsg+0x10/0x10
[  383.055764][ T9180]  ? import_iovec+0x74/0xa0
[  383.055790][ T9180]  ___sys_sendmsg+0x21f/0x2a0
[  383.055814][ T9180]  ? __pfx____sys_sendmsg+0x10/0x10
[  383.055878][ T9180]  ? __fget_files+0x2a/0x420
[  383.055901][ T9180]  ? __fget_files+0x3a6/0x420
[  383.055937][ T9180]  __x64_sys_sendmsg+0x1a1/0x260
[  383.055963][ T9180]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  383.055996][ T9180]  ? __pfx_ksys_write+0x10/0x10
[  383.056023][ T9180]  ? do_syscall_64+0xbe/0xfa0
[  383.056050][ T9180]  do_syscall_64+0xfa/0xfa0
[  383.056072][ T9180]  ? lockdep_hardirqs_on+0x9c/0x150
[  383.056095][ T9180]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.056114][ T9180]  ? clear_bhb_loop+0x60/0xb0
[  383.056137][ T9180]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.056155][ T9180] RIP: 0033:0x7fcac934efc9
[  383.056173][ T9180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  383.056188][ T9180] RSP: 002b:00007fcac75ae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  383.056209][ T9180] RAX: ffffffffffffffda RBX: 00007fcac95a5fa0 RCX: 00007fcac934efc9
[  383.056223][ T9180] RDX: 0000000000000000 RSI: 00002000000007c0 RDI: 0000000000000003
[  383.056236][ T9180] RBP: 00007fcac75ae090 R08: 0000000000000000 R09: 0000000000000000
[  383.056248][ T9180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  383.056259][ T9180] R13: 00007fcac95a6038 R14: 00007fcac95a5fa0 R15: 00007fffe246d278
[  383.056299][ T9180]  </TASK>
[  383.110469][ T8736] 8021q: adding VLAN 0 to HW filter on device team0
[  383.165095][ T9182] FAULT_INJECTION: forcing a failure.
[  383.165095][ T9182] name failslab, interval 1, probability 0, space 0, times 0
[  383.165129][ T9182] CPU: 0 UID: 0 PID: 9182 Comm: syz.2.1021 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  383.165151][ T9182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  383.165162][ T9182] Call Trace:
[  383.165169][ T9182]  <TASK>
[  383.165177][ T9182]  dump_stack_lvl+0x189/0x250
[  383.165207][ T9182]  ? __pfx____ratelimit+0x10/0x10
[  383.165231][ T9182]  ? __pfx_dump_stack_lvl+0x10/0x10
[  383.165256][ T9182]  ? __pfx__printk+0x10/0x10
[  383.165283][ T9182]  ? __pfx___might_resched+0x10/0x10
[  383.165303][ T9182]  ? fs_reclaim_acquire+0x7d/0x100
[  383.165331][ T9182]  should_fail_ex+0x46c/0x600
[  383.165361][ T9182]  should_failslab+0xa8/0x100
[  383.165388][ T9182]  __kmalloc_noprof+0xcc/0x7d0
[  383.165411][ T9182]  ? tomoyo_encode+0x28b/0x550
[  383.165438][ T9182]  tomoyo_encode+0x28b/0x550
[  383.165464][ T9182]  tomoyo_realpath_from_path+0x58d/0x5d0
[  383.165498][ T9182]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  383.165524][ T9182]  tomoyo_path_number_perm+0x1e8/0x5a0
[  383.165553][ T9182]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  383.165584][ T9182]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  383.165608][ T9182]  ? lockdep_hardirqs_on+0x9c/0x150
[  383.165664][ T9182]  ? __fget_files+0x2a/0x420
[  383.165693][ T9182]  ? __fget_files+0x3a6/0x420
[  383.165715][ T9182]  ? __fget_files+0x2a/0x420
[  383.165743][ T9182]  security_file_ioctl+0xcb/0x2d0
[  383.165764][ T9182]  __se_sys_ioctl+0x47/0x170
[  383.165786][ T9182]  do_syscall_64+0xfa/0xfa0
[  383.165808][ T9182]  ? lockdep_hardirqs_on+0x9c/0x150
[  383.165830][ T9182]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.165848][ T9182]  ? clear_bhb_loop+0x60/0xb0
[  383.165870][ T9182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.165887][ T9182] RIP: 0033:0x7fd3c82defc9
[  383.165904][ T9182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  383.165921][ T9182] RSP: 002b:00007fd3c6546038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  383.165940][ T9182] RAX: ffffffffffffffda RBX: 00007fd3c8535fa0 RCX: 00007fd3c82defc9
[  383.165954][ T9182] RDX: 00000000f2ffffff RSI: 0000000000005001 RDI: 0000000000000003
[  383.165965][ T9182] RBP: 00007fd3c6546090 R08: 0000000000000000 R09: 0000000000000000
[  383.165977][ T9182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  383.165988][ T9182] R13: 00007fd3c8536038 R14: 00007fd3c8535fa0 R15: 00007ffdc2bfd048
[  383.166020][ T9182]  </TASK>
[  383.166050][ T9182] ERROR: Out of memory at tomoyo_realpath_from_path.
[  383.186624][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[  383.186766][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[  383.283219][ T6848] bridge0: port 2(bridge_slave_1) entered blocking state
[  383.283921][ T6848] bridge0: port 2(bridge_slave_1) entered forwarding state
[  383.398333][ T8755] 8021q: adding VLAN 0 to HW filter on device bond0
[  383.636388][ T8755] 8021q: adding VLAN 0 to HW filter on device team0
[  383.726163][ T1111] bridge0: port 1(bridge_slave_0) entered blocking state
[  383.732897][ T1111] bridge0: port 1(bridge_slave_0) entered forwarding state
[  383.804195][ T1111] bridge0: port 2(bridge_slave_1) entered blocking state
[  383.814793][ T1111] bridge0: port 2(bridge_slave_1) entered forwarding state
[  384.259911][ T9195] FAULT_INJECTION: forcing a failure.
[  384.259911][ T9195] name failslab, interval 1, probability 0, space 0, times 0
[  384.259945][ T9195] CPU: 1 UID: 0 PID: 9195 Comm: syz.2.1025 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  384.259966][ T9195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  384.259977][ T9195] Call Trace:
[  384.259985][ T9195]  <TASK>
[  384.259994][ T9195]  dump_stack_lvl+0x189/0x250
[  384.260025][ T9195]  ? __pfx____ratelimit+0x10/0x10
[  384.260050][ T9195]  ? __pfx_dump_stack_lvl+0x10/0x10
[  384.260076][ T9195]  ? __pfx__printk+0x10/0x10
[  384.260105][ T9195]  ? __pfx___might_resched+0x10/0x10
[  384.260127][ T9195]  ? fs_reclaim_acquire+0x7d/0x100
[  384.260157][ T9195]  should_fail_ex+0x46c/0x600
[  384.260184][ T9195]  ? vm_area_alloc+0x24/0x140
[  384.260201][ T9195]  should_failslab+0xa8/0x100
[  384.260226][ T9195]  ? vm_area_alloc+0x24/0x140
[  384.260241][ T9195]  kmem_cache_alloc_noprof+0x6f/0x6b0
[  384.260271][ T9195]  vm_area_alloc+0x24/0x140
[  384.260290][ T9195]  mmap_region+0xdd8/0x20f0
[  384.260329][ T9195]  ? __lock_acquire+0xab9/0xd20
[  384.260352][ T9195]  ? __pfx_mmap_region+0x10/0x10
[  384.260458][ T9195]  ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10
[  384.260499][ T9195]  ? bpf_lsm_mmap_addr+0x9/0x20
[  384.260515][ T9195]  ? security_mmap_addr+0x71/0x270
[  384.260537][ T9195]  ? shmem_mapping+0xd/0x50
[  384.260557][ T9195]  ? memfd_check_seals_mmap+0x16e/0x210
[  384.260580][ T9195]  do_mmap+0xc23/0x10c0
[  384.260613][ T9195]  ? __pfx_do_mmap+0x10/0x10
[  384.260633][ T9195]  ? rwbase_write_lock+0x56f/0x750
[  384.260661][ T9195]  ? __lock_acquire+0xab9/0xd20
[  384.260690][ T9195]  vm_mmap_pgoff+0x2a9/0x4d0
[  384.260720][ T9195]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  384.260742][ T9195]  ? __fget_files+0x2a/0x420
[  384.260772][ T9195]  ? __fget_files+0x3a6/0x420
[  384.260794][ T9195]  ? __fget_files+0x2a/0x420
[  384.260821][ T9195]  ksys_mmap_pgoff+0x4e9/0x720
[  384.260846][ T9195]  ? __x64_sys_mmap+0x7f/0x140
[  384.260870][ T9195]  do_syscall_64+0xfa/0xfa0
[  384.260900][ T9195]  ? lockdep_hardirqs_on+0x9c/0x150
[  384.260922][ T9195]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.260940][ T9195]  ? clear_bhb_loop+0x60/0xb0
[  384.260961][ T9195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.260978][ T9195] RIP: 0033:0x7fd3c82defc9
[  384.260995][ T9195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  384.261010][ T9195] RSP: 002b:00007fd3c6546038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  384.261029][ T9195] RAX: ffffffffffffffda RBX: 00007fd3c8535fa0 RCX: 00007fd3c82defc9
[  384.261043][ T9195] RDX: 0000000000000020 RSI: 0000000000400000 RDI: 0000200000000000
[  384.261056][ T9195] RBP: 00007fd3c6546090 R08: 0000000000000003 R09: 0000000000000000
[  384.261067][ T9195] R10: 0000000000010012 R11: 0000000000000246 R12: 0000000000000001
[  384.261079][ T9195] R13: 00007fd3c8536038 R14: 00007fd3c8535fa0 R15: 00007ffdc2bfd048
[  384.261114][ T9195]  </TASK>
[  384.590112][    C0] vkms_vblank_simulate: vblank timer overrun
[  384.620897][    C0] vkms_vblank_simulate: vblank timer overrun
[  384.945258][ T8736] 8021q: adding VLAN 0 to HW filter on device batadv0
[  385.051274][ T8755] 8021q: adding VLAN 0 to HW filter on device batadv0
[  385.379778][ T9221] program syz.4.1032 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  385.868515][    C0] vkms_vblank_simulate: vblank timer overrun
[  386.072556][ T8736] veth0_vlan: entered promiscuous mode
[  386.136596][ T8736] veth1_vlan: entered promiscuous mode
[  386.192046][ T8755] veth0_vlan: entered promiscuous mode
[  386.266607][ T8755] veth1_vlan: entered promiscuous mode
[  386.274218][ T9242] FAULT_INJECTION: forcing a failure.
[  386.274218][ T9242] name failslab, interval 1, probability 0, space 0, times 0
[  386.274251][ T9242] CPU: 1 UID: 0 PID: 9242 Comm: syz.1.1036 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  386.274273][ T9242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  386.274284][ T9242] Call Trace:
[  386.274291][ T9242]  <TASK>
[  386.274299][ T9242]  dump_stack_lvl+0x189/0x250
[  386.274331][ T9242]  ? __pfx____ratelimit+0x10/0x10
[  386.274355][ T9242]  ? __pfx_dump_stack_lvl+0x10/0x10
[  386.274380][ T9242]  ? __pfx__printk+0x10/0x10
[  386.274410][ T9242]  ? __pfx___might_resched+0x10/0x10
[  386.274428][ T9242]  ? fs_reclaim_acquire+0x7d/0x100
[  386.274456][ T9242]  should_fail_ex+0x46c/0x600
[  386.274483][ T9242]  ? __alloc_skb+0x112/0x2d0
[  386.274499][ T9242]  should_failslab+0xa8/0x100
[  386.274525][ T9242]  ? __alloc_skb+0x112/0x2d0
[  386.274539][ T9242]  kmem_cache_alloc_node_noprof+0x78/0x6e0
[  386.274561][ T9242]  ? smack_socket_sendmsg+0x1a7/0x520
[  386.274586][ T9242]  __alloc_skb+0x112/0x2d0
[  386.274607][ T9242]  netlink_sendmsg+0x5c6/0xb30
[  386.274626][ T9242]  ? is_bpf_text_address+0x26/0x2b0
[  386.274660][ T9242]  ? __pfx_netlink_sendmsg+0x10/0x10
[  386.274688][ T9242]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  386.274712][ T9242]  ? __pfx_netlink_sendmsg+0x10/0x10
[  386.274732][ T9242]  __sock_sendmsg+0x21c/0x270
[  386.274760][ T9242]  ____sys_sendmsg+0x508/0x820
[  386.274789][ T9242]  ? __pfx_____sys_sendmsg+0x10/0x10
[  386.274820][ T9242]  ? import_iovec+0x74/0xa0
[  386.274845][ T9242]  ___sys_sendmsg+0x21f/0x2a0
[  386.274870][ T9242]  ? __pfx____sys_sendmsg+0x10/0x10
[  386.274927][ T9242]  ? __fget_files+0x2a/0x420
[  386.274950][ T9242]  ? __fget_files+0x3a6/0x420
[  386.274993][ T9242]  __x64_sys_sendmsg+0x1a1/0x260
[  386.275017][ T9242]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  386.275049][ T9242]  ? __pfx_ksys_write+0x10/0x10
[  386.275075][ T9242]  ? do_syscall_64+0xbe/0xfa0
[  386.275103][ T9242]  do_syscall_64+0xfa/0xfa0
[  386.275125][ T9242]  ? lockdep_hardirqs_on+0x9c/0x150
[  386.275148][ T9242]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  386.275167][ T9242]  ? clear_bhb_loop+0x60/0xb0
[  386.275190][ T9242]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  386.275208][ T9242] RIP: 0033:0x7fcac934efc9
[  386.275224][ T9242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  386.275238][ T9242] RSP: 002b:00007fcac75ae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  386.275257][ T9242] RAX: ffffffffffffffda RBX: 00007fcac95a5fa0 RCX: 00007fcac934efc9
[  386.275270][ T9242] RDX: 0000000000008000 RSI: 00002000000028c0 RDI: 0000000000000004
[  386.275281][ T9242] RBP: 00007fcac75ae090 R08: 0000000000000000 R09: 0000000000000000
[  386.275292][ T9242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  386.275303][ T9242] R13: 00007fcac95a6038 R14: 00007fcac95a5fa0 R15: 00007fffe246d278
[  386.275340][ T9242]  </TASK>
[  386.491454][    C0] vkms_vblank_simulate: vblank timer overrun
[  386.633798][ T8736] veth0_macvtap: entered promiscuous mode
[  386.674596][ T9248] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1038'.
[  386.720291][ T8736] veth1_macvtap: entered promiscuous mode
[  386.783018][ T8755] veth0_macvtap: entered promiscuous mode
[  386.832225][ T8755] veth1_macvtap: entered promiscuous mode
[  386.884158][ T8736] batman_adv: batadv0: Interface activated: batadv_slave_0
[  387.638222][ T8736] batman_adv: batadv0: Interface activated: batadv_slave_1
[  387.721129][ T8755] batman_adv: batadv0: Interface activated: batadv_slave_0
[  387.721208][   T59] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  387.733745][ T1111] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  387.734188][ T1111] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  387.737942][ T1111] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  387.786102][ T8755] batman_adv: batadv0: Interface activated: batadv_slave_1
[  387.862663][ T1111] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  387.864352][ T1111] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  387.920113][ T1111] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  387.927568][ T1111] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  388.376430][    C0] vkms_vblank_simulate: vblank timer overrun
[  388.414917][    C0] vkms_vblank_simulate: vblank timer overrun
[  388.790232][    C0] vkms_vblank_simulate: vblank timer overrun
[  388.969441][   T37] audit: type=1326 audit(388.772:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9275 comm="syz.4.1049" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdf3818efc9 code=0x0
[  389.088081][   T44] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  389.088103][   T44] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  389.394061][ T1111] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  389.394083][ T1111] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  389.526444][ T4854] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  389.526465][ T4854] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  389.634599][   T44] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  389.634620][   T44] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  390.149274][ T9301] 9pnet_fd: Insufficient options for proto=fd
[  390.350947][ T5882] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  390.504625][ T5882] usb 3-1: Using ep0 maxpacket: 32
[  390.893593][ T5882] usb 3-1: config 0 has an invalid descriptor of length 13, skipping remainder of the config
[  390.893623][ T5882] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  390.903128][ T5882] usb 3-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  390.903160][ T5882] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  390.903179][ T5882] usb 3-1: Product: syz
[  390.903193][ T5882] usb 3-1: Manufacturer: syz
[  390.903207][ T5882] usb 3-1: SerialNumber: syz
[  390.909317][ T5882] usb 3-1: config 0 descriptor??
[  392.246992][    C0] vkms_vblank_simulate: vblank timer overrun
[  392.413314][    C0] vkms_vblank_simulate: vblank timer overrun
[  393.124597][ T5993] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  393.274511][ T5993] usb 5-1: Using ep0 maxpacket: 16
[  393.276963][ T5993] usb 5-1: config 0 has an invalid interface number: 68 but max is 0
[  393.277039][ T5993] usb 5-1: config 0 has no interface number 0
[  393.277090][ T5993] usb 5-1: config 0 interface 68 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  393.282435][ T5993] usb 5-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=dc.c4
[  393.282466][ T5993] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  393.282488][ T5993] usb 5-1: Product: syz
[  393.282508][ T5993] usb 5-1: Manufacturer: syz
[  393.282523][ T5993] usb 5-1: SerialNumber: syz
[  393.289407][ T5993] usb 5-1: config 0 descriptor??
[  393.566604][ T9332] FAULT_INJECTION: forcing a failure.
[  393.566604][ T9332] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  393.566627][ T9332] CPU: 0 UID: 0 PID: 9332 Comm: syz.4.1058 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  393.566640][ T9332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  393.566647][ T9332] Call Trace:
[  393.566651][ T9332]  <TASK>
[  393.566657][ T9332]  dump_stack_lvl+0x189/0x250
[  393.566677][ T9332]  ? __pfx____ratelimit+0x10/0x10
[  393.566691][ T9332]  ? __pfx_dump_stack_lvl+0x10/0x10
[  393.566707][ T9332]  ? __pfx__printk+0x10/0x10
[  393.566720][ T9332]  ? __might_fault+0xb0/0x130
[  393.566740][ T9332]  should_fail_ex+0x46c/0x600
[  393.566758][ T9332]  copy_fpstate_to_sigframe+0xa7d/0xce0
[  393.566780][ T9332]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[  393.566796][ T9332]  ? do_raw_spin_lock+0x121/0x290
[  393.566818][ T9332]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  393.566833][ T9332]  ? fpu__alloc_mathframe+0xad/0x130
[  393.566845][ T9332]  get_sigframe+0x58d/0x7d0
[  393.566859][ T9332]  ? __pfx_get_sigframe+0x10/0x10
[  393.566870][ T9332]  ? rt_mutex_slowunlock+0x493/0x8a0
[  393.566881][ T9332]  ? rt_spin_lock+0x1c1/0x3e0
[  393.566896][ T9332]  x64_setup_rt_frame+0x15c/0xd40
[  393.566905][ T9332]  ? rt_spin_unlock+0x150/0x200
[  393.566918][ T9332]  ? rt_spin_unlock+0x161/0x200
[  393.566931][ T9332]  ? get_signal+0x1121/0x1310
[  393.566947][ T9332]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[  393.566961][ T9332]  ? arch_do_signal_or_restart+0x38a/0x790
[  393.566973][ T9332]  arch_do_signal_or_restart+0x3f6/0x790
[  393.566986][ T9332]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  393.567002][ T9332]  ? trace_irq_disable+0x37/0x110
[  393.567019][ T9332]  ? local_irq_enable_exit_to_user+0x5/0x10
[  393.567037][ T9332]  irqentry_exit_to_user_mode+0x7e/0x110
[  393.567051][ T9332]  exc_general_protection+0x171/0x200
[  393.567061][ T9332]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  393.567076][ T9332]  ? clear_bhb_loop+0x60/0xb0
[  393.567089][ T9332]  asm_exc_general_protection+0x26/0x30
[  393.567098][ T9332] RIP: 0033:0x200000000004
[  393.567113][ T9332] Code: Unable to access opcode bytes at 0x1fffffffffda.
[  393.567118][ T9332] RSP: 002b:00007fdf362aba78 EFLAGS: 00010202
[  393.567129][ T9332] RAX: 0000000000000057 RBX: 00007fdf383e6090 RCX: 00007fdf3818efc9
[  393.567136][ T9332] RDX: 00007fdf362aba80 RSI: 00007fdf362abbb0 RDI: 000000000000000d
[  393.567150][ T9332] RBP: 00007fdf362ac090 R08: 0000000000000000 R09: 0000000000000000
[  393.567156][ T9332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  393.567162][ T9332] R13: 00007fdf383e6128 R14: 00007fdf383e6090 R15: 00007ffe2a82e0c8
[  393.567179][ T9332]  </TASK>
[  393.862821][ T5993] usb 5-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  394.035007][    C0] vkms_vblank_simulate: vblank timer overrun
[  394.085220][ T9336] FAULT_INJECTION: forcing a failure.
[  394.085220][ T9336] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  394.085257][ T9336] CPU: 0 UID: 0 PID: 9336 Comm: syz.6.1059 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  394.085279][ T9336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  394.085290][ T9336] Call Trace:
[  394.085298][ T9336]  <TASK>
[  394.085306][ T9336]  dump_stack_lvl+0x189/0x250
[  394.085336][ T9336]  ? __pfx____ratelimit+0x10/0x10
[  394.085360][ T9336]  ? __pfx_dump_stack_lvl+0x10/0x10
[  394.085386][ T9336]  ? __pfx__printk+0x10/0x10
[  394.085412][ T9336]  ? rcu_lockdep_current_cpu_online+0x37/0x120
[  394.085442][ T9336]  should_fail_ex+0x46c/0x600
[  394.085473][ T9336]  strncpy_from_user+0x36/0x290
[  394.085501][ T9336]  strncpy_from_user_nofault+0x72/0x150
[  394.085533][ T9336]  bpf_probe_read_user_str+0x2a/0x70
[  394.085556][ T9336]  bpf_prog_af763033ab74285a+0x64/0x6c
[  394.085575][ T9336]  bpf_trace_run10+0x2e4/0x500
[  394.085602][ T9336]  ? bpf_trace_run10+0x1f2/0x500
[  394.085627][ T9336]  ? __pfx_bpf_trace_run10+0x10/0x10
[  394.085652][ T9336]  ? bpf_prog_alloc+0x65/0x1a0
[  394.085696][ T9336]  __bpf_trace_percpu_alloc_percpu+0x364/0x400
[  394.085731][ T9336]  ? bpf_prog_alloc+0x65/0x1a0
[  394.085756][ T9336]  ? __pfx___bpf_trace_percpu_alloc_percpu+0x10/0x10
[  394.085782][ T9336]  ? bpf_prog_alloc+0x65/0x1a0
[  394.085807][ T9336]  ? bpf_prog_alloc+0x65/0x1a0
[  394.085842][ T9336]  ? do_raw_spin_lock+0x121/0x290
[  394.085875][ T9336]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  394.085900][ T9336]  ? lockdep_hardirqs_on+0x9c/0x150
[  394.085926][ T9336]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  394.085948][ T9336]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  394.085980][ T9336]  ? rt_mutex_slowunlock+0x493/0x8a0
[  394.085998][ T9336]  ? rt_spin_lock+0x1c1/0x3e0
[  394.086019][ T9336]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  394.086038][ T9336]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  394.086063][ T9336]  ? bpf_prog_alloc+0x65/0x1a0
[  394.086089][ T9336]  pcpu_alloc_noprof+0x1531/0x16a0
[  394.086133][ T9336]  bpf_prog_alloc+0x65/0x1a0
[  394.086159][ T9336]  bpf_prog_load+0x735/0x19e0
[  394.086194][ T9336]  ? __pfx_bpf_prog_load+0x10/0x10
[  394.086240][ T9336]  ? bpf_lsm_bpf+0x9/0x20
[  394.086257][ T9336]  ? security_bpf+0x7e/0x300
[  394.086281][ T9336]  __sys_bpf+0x507/0x860
[  394.086307][ T9336]  ? __pfx___sys_bpf+0x10/0x10
[  394.086328][ T9336]  ? rt_mutex_slowunlock+0x1be/0x2e0
[  394.086355][ T9336]  ? ksys_write+0x230/0x260
[  394.086370][ T9336]  ? __pfx_ksys_write+0x10/0x10
[  394.086389][ T9336]  __x64_sys_bpf+0x7c/0x90
[  394.086410][ T9336]  do_syscall_64+0xfa/0xfa0
[  394.086432][ T9336]  ? lockdep_hardirqs_on+0x9c/0x150
[  394.086455][ T9336]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  394.086474][ T9336]  ? clear_bhb_loop+0x60/0xb0
[  394.086498][ T9336]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  394.086515][ T9336] RIP: 0033:0x7ff3c90aefc9
[  394.086526][ T9336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  394.086536][ T9336] RSP: 002b:00007ff3c7316038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  394.086548][ T9336] RAX: ffffffffffffffda RBX: 00007ff3c9305fa0 RCX: 00007ff3c90aefc9
[  394.086555][ T9336] RDX: 0000000000000094 RSI: 0000200000000600 RDI: 0000000000000005
[  394.086563][ T9336] RBP: 00007ff3c7316090 R08: 0000000000000000 R09: 0000000000000000
[  394.086575][ T9336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  394.086586][ T9336] R13: 00007ff3c9306038 R14: 00007ff3c9305fa0 R15: 00007ffeefea3b28
[  394.086619][ T9336]  </TASK>
[  394.954872][ T1838] usb 5-1: Failed to submit usb control message: -110
[  394.954911][ T1838] usb 5-1: unable to send the bmi data to the device: -110
[  394.954929][ T1838] usb 5-1: unable to get target info from device
[  394.954944][ T1838] usb 5-1: could not get target info (-110)
[  394.954963][ T1838] usb 5-1: could not probe fw (-110)
[  395.718501][ T9343] =======================================================
[  395.718501][ T9343] WARNING: The mand mount option has been deprecated and
[  395.718501][ T9343]          and is ignored by this kernel. Remove the mand
[  395.718501][ T9343]          option from the mount to silence this warning.
[  395.718501][ T9343] =======================================================
[  396.220984][ T5898] usb 3-1: USB disconnect, device number 27
[  396.365453][ T5993] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  396.411724][ T5813] usb 5-1: USB disconnect, device number 34
[  396.661009][ T5993] usb 6-1: Using ep0 maxpacket: 32
[  397.148752][ T5993] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  397.159630][ T5993] usb 6-1: New USB device found, idVendor=16ca, idProduct=1502, bcdDevice=5f.0a
[  397.159660][ T5993] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  397.159680][ T5993] usb 6-1: Product: syz
[  397.159694][ T5993] usb 6-1: Manufacturer: syz
[  397.159709][ T5993] usb 6-1: SerialNumber: syz
[  397.207544][ T5993] usb 6-1: config 0 descriptor??
[  397.596048][   T37] audit: type=1400 audit(397.402:63): lsm=SMACK fn=smack_task_setpgid action=denied subject="w" object="_" requested=w pid=9371 comm="syz.2.1071" opid=9371 ocomm="syz.2.1071"
[  398.258951][  T991] usb 6-1: USB disconnect, device number 2
[  398.954593][ T5898] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  399.121189][ T9396] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1078'.
[  399.138565][ T5898] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  399.138597][ T5898] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  399.138618][ T5898] usb 6-1: Product: syz
[  399.138633][ T5898] usb 6-1: Manufacturer: syz
[  399.138647][ T5898] usb 6-1: SerialNumber: syz
[  399.197392][ T5898] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  399.266414][  T991] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  399.615663][  T994] usb 6-1: USB disconnect, device number 3
[  399.634564][   T37] audit: type=1400 audit(399.432:64): lsm=SMACK fn=smack_task_setpgid action=denied subject="w" object="_" requested=w pid=9405 comm="syz.2.1082" opid=9405 ocomm="syz.2.1082"
[  399.674612][ T5993] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  399.814911][ T9391] 9pnet_fd: p9_fd_create_tcp (9391): problem connecting socket to 127.0.0.1
[  399.841180][ T5993] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  399.841213][ T5993] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  399.841234][ T5993] usb 2-1: Product: syz
[  399.841249][ T5993] usb 2-1: Manufacturer: syz
[  399.841265][ T5993] usb 2-1: SerialNumber: syz
[  399.857423][ T5993] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  399.871150][ T5890] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  400.106080][ T5882] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  400.654822][  T991] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[  400.655022][  T991] ath9k_htc: Failed to initialize the device
[  400.655640][  T994] usb 6-1: ath9k_htc: USB layer deinitialized
[  400.804568][ T5882] usb 3-1: Using ep0 maxpacket: 16
[  400.810052][ T5882] usb 3-1: config 0 has an invalid interface number: 105 but max is 0
[  400.810080][ T5882] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  400.810101][ T5882] usb 3-1: config 0 has no interface number 0
[  400.850133][ T5882] usb 3-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[  400.850251][ T5882] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  400.850273][ T5882] usb 3-1: Product: syz
[  400.850288][ T5882] usb 3-1: Manufacturer: syz
[  400.850304][ T5882] usb 3-1: SerialNumber: syz
[  400.903601][  T991] usb 2-1: USB disconnect, device number 26
[  401.084608][ T5890] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive
[  401.084804][ T5890] ath9k_htc: Failed to initialize the device
[  401.099436][  T991] usb 2-1: ath9k_htc: USB layer deinitialized
[  401.106047][ T5882] usb 3-1: config 0 descriptor??
[  402.117404][ T5882] uvcvideo 3-1:0.105: Found UVC 0.00 device syz (046d:08f3)
[  402.117439][ T5882] uvcvideo 3-1:0.105: No valid video chain found.
[  402.674750][ T5871] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  402.990213][ T9426] FAULT_INJECTION: forcing a failure.
[  402.990213][ T9426] name failslab, interval 1, probability 0, space 0, times 0
[  402.990269][ T9426] CPU: 0 UID: 0 PID: 9426 Comm: syz.6.1087 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  402.990293][ T9426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  402.990305][ T9426] Call Trace:
[  402.990313][ T9426]  <TASK>
[  402.990319][ T9426]  dump_stack_lvl+0x189/0x250
[  402.990340][ T9426]  ? __pfx_dump_stack_lvl+0x10/0x10
[  402.990356][ T9426]  ? __pfx__printk+0x10/0x10
[  402.990377][ T9426]  should_fail_ex+0x46c/0x600
[  402.990395][ T9426]  should_failslab+0xa8/0x100
[  402.990412][ T9426]  __kmalloc_node_noprof+0xd4/0x7f0
[  402.990426][ T9426]  ? alloc_slab_obj_exts+0x3e/0x100
[  402.990441][ T9426]  alloc_slab_obj_exts+0x3e/0x100
[  402.990454][ T9426]  __memcg_slab_post_alloc_hook+0x33b/0x810
[  402.990478][ T9426]  __kmalloc_cache_noprof+0x433/0x6c0
[  402.990492][ T9426]  ? bpf_prog_alloc_no_stats+0xdb/0x530
[  402.990510][ T9426]  bpf_prog_alloc_no_stats+0xdb/0x530
[  402.990528][ T9426]  bpf_prog_alloc+0x3c/0x1a0
[  402.990544][ T9426]  __get_filter+0xff/0x400
[  402.990562][ T9426]  sk_attach_filter+0x24/0x140
[  402.990577][ T9426]  sk_setsockopt+0x1d0c/0x2a70
[  402.990593][ T9426]  ? __pfx_sk_setsockopt+0x10/0x10
[  402.990603][ T9426]  ? trace_irq_disable+0x37/0x110
[  402.990618][ T9426]  ? preempt_schedule_irq+0xde/0x150
[  402.990632][ T9426]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  402.990644][ T9426]  ? rcu_read_unlock_special+0x35b/0x470
[  402.990661][ T9426]  ? irqentry_exit+0x74/0x90
[  402.990674][ T9426]  ? lockdep_hardirqs_on+0x9c/0x150
[  402.990698][ T9426]  do_sock_setsockopt+0x11b/0x1b0
[  402.990713][ T9426]  __x64_sys_setsockopt+0x145/0x1b0
[  402.990727][ T9426]  do_syscall_64+0xfa/0xfa0
[  402.990742][ T9426]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  402.990752][ T9426]  ? asm_sysvec_call_function_single+0x1a/0x20
[  402.990762][ T9426]  ? clear_bhb_loop+0x60/0xb0
[  402.990775][ T9426]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  402.990785][ T9426] RIP: 0033:0x7ff3c90aefc9
[  402.990797][ T9426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  402.990806][ T9426] RSP: 002b:00007ff3c72f5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  402.990818][ T9426] RAX: ffffffffffffffda RBX: 00007ff3c9306090 RCX: 00007ff3c90aefc9
[  402.990826][ T9426] RDX: 000000000000001a RSI: 0000000000000001 RDI: 0000000000000005
[  402.990832][ T9426] RBP: 00007ff3c72f5090 R08: 0000000000000010 R09: 0000000000000000
[  402.990838][ T9426] R10: 0000200000000240 R11: 0000000000000246 R12: 0000000000000001
[  402.990845][ T9426] R13: 00007ff3c9306128 R14: 00007ff3c9306090 R15: 00007ffeefea3b28
[  402.990866][ T9426]  </TASK>
[  403.354884][ T5871] usb 6-1: Using ep0 maxpacket: 8
[  403.357431][ T5871] usb 6-1: unable to get BOS descriptor or descriptor too short
[  403.357518][ T5871] usb 6-1: too many configurations: 177, using maximum allowed: 8
[  403.359783][ T5871] usb 6-1: unable to read config index 0 descriptor/start: -61
[  403.359820][ T5871] usb 6-1: can't read configurations, error -61
[  403.485361][ T5871] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  403.636837][ T5871] usb 6-1: Using ep0 maxpacket: 8
[  403.639318][ T5871] usb 6-1: unable to get BOS descriptor or descriptor too short
[  403.639406][ T5871] usb 6-1: too many configurations: 177, using maximum allowed: 8
[  403.641284][ T5871] usb 6-1: unable to read config index 0 descriptor/start: -61
[  403.643262][ T5871] usb 6-1: can't read configurations, error -61
[  403.643817][ T5871] usb usb6-port1: attempt power cycle
[  403.655697][ T5882] usb 3-1: USB disconnect, device number 28
[  403.712700][ T9431] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1091'.
[  403.745393][ T9431] netlink: 'syz.2.1091': attribute type 1 has an invalid length.
[  403.745416][ T9431] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1091'.
[  404.013151][ T1769] ------------[ cut here ]------------
[  404.013174][ T1769] WARNING: CPU: 1 PID: 1769 at kernel/kcov.c:872 kcov_remote_start+0x5d9/0x6f0
[  404.013223][ T1769] Modules linked in:
[  404.013246][ T1769] CPU: 1 UID: 0 PID: 1769 Comm: kworker/u8:8 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  404.013272][ T1769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  404.013288][ T1769] Workqueue: events_unbound cfg80211_wiphy_work
[  404.013317][ T1769] RIP: 0010:kcov_remote_start+0x5d9/0x6f0
[  404.013350][ T1769] Code: 00 5b 41 5c 41 5d 41 5e 41 5f 5d e9 41 93 ba 02 90 0f 0b 90 e9 62 fa ff ff 90 0f 0b 90 0f b7 83 80 04 00 00 e9 a3 fa ff ff 90 <0f> 0b 90 eb 04 90 0f 0b 90 e8 39 ab 01 09 89 c0 48 c7 c7 b8 fb a2
[  404.013370][ T1769] RSP: 0018:ffffc90005a0f958 EFLAGS: 00010202
[  404.013388][ T1769] RAX: 0000000000000002 RBX: ffff888027981e00 RCX: 0000000000000000
[  404.013405][ T1769] RDX: 0000000000000000 RSI: ffffffff8b3ddd40 RDI: ffffffff8b3ddd00
[  404.013420][ T1769] RBP: ffff888027745640 R08: 0000000000000000 R09: ffffffff8ac2ab41
[  404.013434][ T1769] R10: dffffc0000000000 R11: fffffbfff1dac5ef R12: ffff888030251d08
[  404.013451][ T1769] R13: ffff88804fbf07c0 R14: 0000000000000000 R15: ffff888030251d20
[  404.013466][ T1769] FS:  0000000000000000(0000) GS:ffff888126ef9000(0000) knlGS:0000000000000000
[  404.013483][ T1769] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  404.013497][ T1769] CR2: 0000001b2f622ff8 CR3: 0000000030b16000 CR4: 00000000003526f0
[  404.013514][ T1769] Call Trace:
[  404.013522][ T1769]  <TASK>
[  404.013536][ T1769]  ieee80211_iface_work+0x211/0x12d0
[  404.013579][ T1769]  cfg80211_wiphy_work+0x2bb/0x470
[  404.013607][ T1769]  ? process_scheduled_works+0x9ef/0x17b0
[  404.013635][ T1769]  process_scheduled_works+0xae1/0x17b0
[  404.013694][ T1769]  ? __pfx_process_scheduled_works+0x10/0x10
[  404.013739][ T1769]  worker_thread+0x8a0/0xda0
[  404.013768][ T1769]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  404.013807][ T1769]  ? __kthread_parkme+0x7b/0x200
[  404.013846][ T1769]  kthread+0x711/0x8a0
[  404.013882][ T1769]  ? __pfx_worker_thread+0x10/0x10
[  404.014065][ T1769]  ? __pfx_kthread+0x10/0x10
[  404.014096][ T1769]  ? rt_spin_unlock+0x150/0x200
[  404.014159][ T1769]  ? rt_spin_unlock+0x161/0x200
[  404.014181][ T1769]  ? __pfx_kthread+0x10/0x10
[  404.014216][ T1769]  ret_from_fork+0x4bc/0x870
[  404.014246][ T1769]  ? __pfx_ret_from_fork+0x10/0x10
[  404.014276][ T1769]  ? __switch_to_asm+0x39/0x70
[  404.014297][ T1769]  ? __switch_to_asm+0x33/0x70
[  404.014318][ T1769]  ? __pfx_kthread+0x10/0x10
[  404.014350][ T1769]  ret_from_fork_asm+0x1a/0x30
[  404.014391][ T1769]  </TASK>
[  404.014407][ T1769] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  404.014426][ T1769] CPU: 1 UID: 0 PID: 1769 Comm: kworker/u8:8 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  404.014450][ T1769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  404.014464][ T1769] Workqueue: events_unbound cfg80211_wiphy_work
[  404.014495][ T1769] Call Trace:
[  404.014505][ T1769]  <TASK>
[  404.014513][ T1769]  dump_stack_lvl+0x99/0x250
[  404.014546][ T1769]  ? __asan_memcpy+0x40/0x70
[  404.014573][ T1769]  ? __pfx_dump_stack_lvl+0x10/0x10
[  404.014607][ T1769]  ? __pfx__printk+0x10/0x10
[  404.014652][ T1769]  vpanic+0x237/0x6d0
[  404.014674][ T1769]  ? __pfx_vpanic+0x10/0x10
[  404.014710][ T1769]  panic+0xb9/0xc0
[  404.014731][ T1769]  ? __pfx_panic+0x10/0x10
[  404.014774][ T1769]  __warn+0x31b/0x4b0
[  404.014792][ T1769]  ? kcov_remote_start+0x5d9/0x6f0
[  404.014821][ T1769]  ? kcov_remote_start+0x5d9/0x6f0
[  404.014847][ T1769]  report_bug+0x2be/0x4f0
[  404.014873][ T1769]  ? kcov_remote_start+0x5d9/0x6f0
[  404.014955][ T1769]  ? kcov_remote_start+0x5d9/0x6f0
[  404.014985][ T1769]  ? kcov_remote_start+0x5db/0x6f0
[  404.015012][ T1769]  handle_bug+0x84/0x160
[  404.015045][ T1769]  exc_invalid_op+0x1a/0x50
[  404.015075][ T1769]  asm_exc_invalid_op+0x1a/0x20
[  404.015107][ T1769] RIP: 0010:kcov_remote_start+0x5d9/0x6f0
[  404.015137][ T1769] Code: 00 5b 41 5c 41 5d 41 5e 41 5f 5d e9 41 93 ba 02 90 0f 0b 90 e9 62 fa ff ff 90 0f 0b 90 0f b7 83 80 04 00 00 e9 a3 fa ff ff 90 <0f> 0b 90 eb 04 90 0f 0b 90 e8 39 ab 01 09 89 c0 48 c7 c7 b8 fb a2
[  404.015157][ T1769] RSP: 0018:ffffc90005a0f958 EFLAGS: 00010202
[  404.015177][ T1769] RAX: 0000000000000002 RBX: ffff888027981e00 RCX: 0000000000000000
[  404.015194][ T1769] RDX: 0000000000000000 RSI: ffffffff8b3ddd40 RDI: ffffffff8b3ddd00
[  404.015211][ T1769] RBP: ffff888027745640 R08: 0000000000000000 R09: ffffffff8ac2ab41
[  404.015228][ T1769] R10: dffffc0000000000 R11: fffffbfff1dac5ef R12: ffff888030251d08
[  404.015246][ T1769] R13: ffff88804fbf07c0 R14: 0000000000000000 R15: ffff888030251d20
[  404.015269][ T1769]  ? rt_spin_lock+0x1c1/0x3e0
[  404.015302][ T1769]  ? kcov_remote_start+0xe1/0x6f0
[  404.015335][ T1769]  ieee80211_iface_work+0x211/0x12d0
[  404.015376][ T1769]  cfg80211_wiphy_work+0x2bb/0x470
[  404.015407][ T1769]  ? process_scheduled_works+0x9ef/0x17b0
[  404.015437][ T1769]  process_scheduled_works+0xae1/0x17b0
[  404.015486][ T1769]  ? __pfx_process_scheduled_works+0x10/0x10
[  404.015531][ T1769]  worker_thread+0x8a0/0xda0
[  404.015562][ T1769]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  404.015595][ T1769]  ? __kthread_parkme+0x7b/0x200
[  404.015630][ T1769]  kthread+0x711/0x8a0
[  404.015663][ T1769]  ? __pfx_worker_thread+0x10/0x10
[  404.015687][ T1769]  ? __pfx_kthread+0x10/0x10
[  404.015709][ T1769]  ? rt_spin_unlock+0x150/0x200
[  404.015737][ T1769]  ? rt_spin_unlock+0x161/0x200
[  404.015760][ T1769]  ? __pfx_kthread+0x10/0x10
[  404.015793][ T1769]  ret_from_fork+0x4bc/0x870
[  404.015820][ T1769]  ? __pfx_ret_from_fork+0x10/0x10
[  404.015850][ T1769]  ? __switch_to_asm+0x39/0x70
[  404.015871][ T1769]  ? __switch_to_asm+0x33/0x70
[  404.015890][ T1769]  ? __pfx_kthread+0x10/0x10
[  404.015918][ T1769]  ret_from_fork_asm+0x1a/0x30
[  404.015953][ T1769]  </TASK>
[  404.016286][ T1769] Kernel Offset: disabled