last executing test programs:

6m29.626573833s ago: executing program 2 (id=417):
socket$kcm(0xa, 0x5, 0x0)
r0 = inotify_init1(0x80000)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000140)={{0x1, 0x1, 0x18, r1, {0x4, 0x5}}, './bus\x00'})
syz_init_net_socket$ax25(0x3, 0xdd175fea9dc56229, 0x1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
r8 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000003c0), 0x8000)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r8, 0x40345410, &(0x7f00000083c0)={{0x1}})
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_attach_bpf(r9, 0x1, 0x44, &(0x7f0000009000), 0x4)
r10 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r10, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r11=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001000)=ANY=[@ANYBLOB="340000006800e97800000000000000000a0000000000000014000600fe8000000000000000000000000000bb08000500", @ANYRES32=r11], 0x34}}, 0x0)
ioctl$INOTIFY_IOC_SETNEXTWD(r0, 0x40044900, 0x5)

6m28.625716443s ago: executing program 2 (id=419):
bind$rds(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000400)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
getsockopt$bt_l2cap_L2CAP_LM(r3, 0x6, 0x3, &(0x7f00000000c0), &(0x7f0000000240)=0x4)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000240)={0x48, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_SEC_DEVKEY={0x2c, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0x14, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}]}]}]}, 0x48}}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000080)={'wpan1\x00', <r7=>0x0})
sendmsg$NL802154_CMD_GET_SEC_DEV(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)={0x1c, r5, 0x781, 0x1000000, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r7}]}, 0x1c}}, 0x4000)

6m27.694592146s ago: executing program 2 (id=420):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000300)}], 0x1, 0x0, 0x0, 0xe0000000}, 0x800)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000001200)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f000049c000/0x18000)=nil, &(0x7f0000000400)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000640)=0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0xfffffffc})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
syz_emit_ethernet(0x76, &(0x7f00000000c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "101040", 0x40, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x10, 0xc2, 0x0, 0x0, 0xfffd, {[@mss={0x1e, 0x4}, @exp_fastopen={0xfe, 0x6, 0xf989, "d80f"}, @generic={0x0, 0xa, "8bfbd54ae56dd076"}, @fastopen={0x22, 0x11, "9f25e12065c2c16a8306f8854b9ed4"}, @exp_fastopen={0xfe, 0x4}]}}}}}}}}, 0x0)

6m27.31411027s ago: executing program 2 (id=421):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x0)
io_setup(0x8, &(0x7f0000004200)=<r0=>0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
io_submit(r0, 0x1, &(0x7f0000004540)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])
socket$inet_udp(0x2, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$inet(0x2, 0x3, 0x2)
mount(0x0, &(0x7f0000004580)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x22000c0, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
r5 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
open(0x0, 0x14103e, 0x0)
r6 = open(&(0x7f0000000000)='./file0\x00', 0x143042, 0x0)
ftruncate(r6, 0x2008002)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000140)=0x1, 0x4)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), r5)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r7, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000001680)="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", 0x2000, &(0x7f0000007940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

6m26.256206659s ago: executing program 2 (id=425):
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000000)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x6)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='net/dev_mcast\x00')
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2120020, 0x0)
mount$bind(&(0x7f0000000300)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000480)='./file0/../file0\x00', 0x0, 0x18ec51, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000140)='./file0/../file0\x00', 0x0, 0x297880, 0x0)
mount(0x0, &(0x7f0000000040)='./file0/../file0/../file0\x00', &(0x7f0000000100)='devpts\x00', 0x0, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, 0x0, 0x0)

6m24.99793246s ago: executing program 2 (id=427):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="0000000000006f270573a8000000cc57730000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r4 = getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x3, r4, 0x2, &(0x7f0000000200))
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x400200, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000010c0)={0x34, r7, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x999}]]}, 0x34}}, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b70300000000ff0f8500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000001380)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100fdffffff000000001d00000008000300", @ANYRES32=r2, @ANYRES8=r0], 0x68}}, 0x0)

6m9.808884839s ago: executing program 32 (id=427):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="0000000000006f270573a8000000cc57730000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r4 = getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x3, r4, 0x2, &(0x7f0000000200))
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x400200, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000010c0)={0x34, r7, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x999}]]}, 0x34}}, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b70300000000ff0f8500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000001380)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100fdffffff000000001d00000008000300", @ANYRES32=r2, @ANYRES8=r0], 0x68}}, 0x0)

2m37.253229069s ago: executing program 4 (id=1248):
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0xd0, 0x0, 0x1, 0x4, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSCATLST={0xac, 0xc, 0x0, 0x1, [{0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb583}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8da5}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x21d3952}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfcca}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x624a6e81}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5174}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xefaa}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x31f0fc5}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe1ca}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1338ced0}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5215836c}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x50f}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xea62}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4554796}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x53da}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x372}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3f3d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x302f}]}]}]}, 0xd0}, 0x1, 0x0, 0x0, 0x24048000}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=ANY=[@ANYBLOB="4c0000001800010000000000f8dbdf2102200008000000090000000008000100e000000206001c004e20000008000700e0000002080002"], 0x4c}}, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e000000"], 0x50}}, 0x0)

2m36.764610904s ago: executing program 4 (id=1250):
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
r0 = socket$netlink(0x10, 0x3, 0x4)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) (async)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, 0x0, 0x0) (async)
close(r2)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000500)={[], [{@smackfsfloor={'smackfsfloor', 0x3d, 'Y}+'}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'overlay\x00'}}]})
r3 = fsopen(&(0x7f00000001c0)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) (async)
r4 = fsmount(r3, 0x0, 0x0)
symlinkat(&(0x7f0000000040)='.\x00', r4, &(0x7f0000000140)='./file0\x00') (async)
setsockopt$inet_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3)

2m36.354613051s ago: executing program 4 (id=1251):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000380)={0x0, @reserved})

2m36.138173724s ago: executing program 4 (id=1253):
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x5, 0x4, &(0x7f0000000000)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0xad, 0x66}, [@call={0x16}]}, &(0x7f0000000140)='GPL\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x1e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x23)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000100)='rxrpc\x00', 0x0, &(0x7f0000000d80)="0000000000000048ff6943b80000000800000028f2000000008607000000ebcd1f63dd65dd530700", 0x28, r0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000040)='xs_stream_read_request\x00', 0xffffffffffffffff, 0x0, 0x400}, 0x18)
r3 = socket$inet6(0xa, 0x3, 0x87)
r4 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_CLEAR_HALT(r4, 0xc0105502, &(0x7f0000000340)={0x1, 0x1})
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
sync_file_range(0xffffffffffffffff, 0x0, 0x5, 0x4)
r5 = socket$alg(0x26, 0x5, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)={0x84, r7, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_LISTEN_PORT={0x6}, @WGDEVICE_A_PEERS={0x54, 0x8, 0x0, 0x1, [{0x50, 0x0, 0x0, 0x1, [@WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}, @WGPEER_A_ALLOWEDIPS={0x20, 0x9, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x3}}]}]}]}]}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x84}}, 0x0)
bind$alg(r5, &(0x7f0000000540)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r2, 0x4004f506, &(0x7f00000000c0)=0x1)
accept4(r5, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r8=>0xffffffffffffffff})
r9 = syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000240)=<r10=>0x0, &(0x7f0000000280)=<r11=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r10, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r10, r11, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r8, 0x0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000003c0)}, {&(0x7f0000000440)}], 0x2}, 0x0, 0x800, 0x1})
io_uring_enter(r9, 0x47f9, 0x0, 0x0, 0x0, 0x0)

2m35.228495893s ago: executing program 4 (id=1257):
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
pipe(&(0x7f00000045c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r1)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x4004004}, 0x4804)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c30000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = epoll_create1(0x0)
r3 = socket$packet(0x11, 0x4000000000002, 0x300)
syz_emit_ethernet(0x1f, &(0x7f0000000180)=ANY=[@ANYBLOB="ffffffffffff000000e8ff000003424203"], 0x0)
setsockopt$packet_int(r3, 0x107, 0xa, &(0x7f0000000380)=0x1, 0x4)
setsockopt$packet_tx_ring(r3, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000040)={0x2000201e})
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)=0x10)
symlink(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./bus\x00')
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newlink={0x48, 0x10, 0x44b, 0x0, 0x0, {0x7a, 0x0, 0x0, 0x0, 0x200}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_BR_GROUP_ADDR={0xa, 0x14, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, @IFLA_BR_GROUP_FWD_MASK={0x6}]}}}]}, 0x48}}, 0x0)

2m32.998226905s ago: executing program 4 (id=1261):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha256\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r4, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000314000/0x2000)=nil, 0x2000, 0x2, 0x188811, r4, 0x4000)
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/34, @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xa, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040))
mremap(&(0x7f000090d000/0x4000)=nil, 0x4000, 0x4000, 0x6, &(0x7f00000c8000/0x4000)=nil)
ioctl$KVM_X86_SETUP_MCE(r5, 0x4008ae9c, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)
r7 = dup(r6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r7, 0x0)
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$BLKZEROOUT(r8, 0x127f, &(0x7f0000000240)={0x0, 0x1000000})
recvfrom$inet(r1, &(0x7f0000000240)=""/78, 0x4e, 0x0, 0x0, 0x0)

2m30.566051814s ago: executing program 0 (id=1269):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8010, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000280))
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x97}, [{}, {}, {}, {0x0, 0x0, 0xfffffffc}, {0xfffffffc}, {}, {0x0, 0x0, 0x0, 0xe9}, {}, {}, {}, {0x7f}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8000}, {0x55, 0x3}, {}, {}, {0xfffffffd}, {0x0, 0x0, 0x40}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x44e}, {0x0, 0x0, 0xe4}, {0x0, 0x0, 0x800000}, {0x0, 0x8000000, 0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {0x0, 0x0, 0x0, 0x45c6}, {}, {}, {}, {0x0, 0x10000000}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x58}, {}, {}, {}, {0x0, 0x401}, {0x0, 0x0, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x8000000}, {}, {0x2}, {0x0, 0x200}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x8}, {}, {}, {}, {0x8}, {}, {0x0, 0x0, 0x0, 0x1}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x20000000)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001983a00fc000018c6ba35000000000000000700ff020000000000000000000000000001000000000000000000000000000000000000000000000000860090780000000000000000000000000000ee3f000000002b036f8c006e75021d683910c3090b3188a7c747eb2278a273c1b80029442911892704"], 0xfdef)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x143742, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
write$sndseq(r2, &(0x7f0000000080)=[{0x6, 0x0, 0x16, 0xfd, @tick, {}, {0xe}, @result={0x2}}], 0x1c)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r3 = socket$tipc(0x1e, 0x5, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001280)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x17)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000580)={r5}, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x6, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000018200000", @ANYRES32=r5, @ANYBLOB="0000000000000000790000000000000095"], &(0x7f0000000d40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sendmsg$NFT_BATCH(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x64, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @numgen={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_NG_TYPE={0x8}, @NFTA_NG_DREG={0x8}, @NFTA_NG_OFFSET={0x8, 0x4, 0x1, 0x0, 0xffffffff}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x8c}}, 0x0)
bind$tipc(r3, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
r6 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r6, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x47}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1}, 0x10)
close(r3)
r7 = socket$netlink(0x10, 0x3, 0x4)
sendmsg$nl_generic(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f000000d379)={&(0x7f0000000200)={0x18, 0x14, 0x301, 0x0, 0x0, {0x1e}, [@generic="c1"]}, 0x18}}, 0x0)
r8 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
ioctl$USBDEVFS_IOCTL(r8, 0xc0105512, &(0x7f0000000200))

2m29.774158136s ago: executing program 0 (id=1273):
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0xd0, 0x0, 0x1, 0x4, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSCATLST={0xac, 0xc, 0x0, 0x1, [{0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb583}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8da5}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x21d3952}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfcca}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x624a6e81}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5174}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xefaa}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x31f0fc5}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe1ca}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1338ced0}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5215836c}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x50f}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xea62}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4554796}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x53da}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x372}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3f3d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x302f}]}]}]}, 0xd0}, 0x1, 0x0, 0x0, 0x24048000}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=ANY=[@ANYBLOB="4c0000001800010000000000f8dbdf2102200008000000090000000008000100e000000206001c004e20000008000700e0000002080002"], 0x4c}}, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e0000001800"], 0x50}}, 0x0)

2m29.63319263s ago: executing program 0 (id=1274):
ioctl$sock_inet_SIOCGIFPFLAGS(0xffffffffffffffff, 0x8935, &(0x7f00000000c0)={'veth1_macvtap\x00'})
r0 = syz_open_dev$sndctrl(&(0x7f00000007c0), 0x2, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0xc10c5541, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
syz_usb_control_io$printer(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x5)
io_uring_setup(0x1890, &(0x7f0000000140)={0x0, 0x80de, 0x0, 0x0, 0x153})
preadv(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r4 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r4, 0xc100565c, &(0x7f00000013c0)={0x3, 0x2, 0x2, {0x5, @vbi={0xb5, 0x1, 0x3, 0x0, [0x0, 0x8000000], [0x8200, 0x1]}}})
ioctl$VIDIOC_QBUF(r4, 0xc058565d, &(0x7f0000000200)=@fd={0x0, 0x5, 0x4, 0x10, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "001500"}, 0x0, 0x2, {}, 0x58603})
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x4, 0x4, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4000, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_mptcp_buf(r5, 0x11c, 0x2, 0x0, &(0x7f00000000c0))
r6 = openat$null(0xffffffffffffff9c, &(0x7f0000000100), 0x8600, 0x0)
ioctl$sock_inet6_tcp_SIOCATMARK(r6, 0x8905, &(0x7f0000000040))

2m28.108133458s ago: executing program 0 (id=1277):
syz_io_uring_setup(0x10d, &(0x7f0000000140), 0x0, 0x0)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x769})
r1 = accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000001c0), &(0x7f0000000040)=0x60, 0xc00)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r6}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r9 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$6lowpan_enable(r9, &(0x7f0000000100)='0', 0x1)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r10)
sendmsg$NFC_CMD_DEV_UP(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001c80)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r11, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
bind$nfc_llcp(r1, &(0x7f0000000240)={0x27, r3, 0xffffffffffffffff, 0x2, 0xa0, 0x9a, "bb02a52aff8b0834c0c9135556ad01b484e7abcb6bafe87c45527081184d8561599e1f6dfad503179ca51516c0a07afbd604cc16936da87c6cdca79437261d", 0x1f}, 0x60)
syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x6559, 0x13580, 0x3}, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)

2m27.010876625s ago: executing program 0 (id=1279):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r2, 0x0, &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x2}}, './file0\x00'})
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000100), r0)
syz_emit_ethernet(0x3a, &(0x7f0000000100)={@broadcast, @dev, @void, {@ipv4={0x800, @icmp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@rr={0x7, 0x3, 0x6f}]}}, @timestamp}}}}, 0x0)
sendmsg$MPTCP_PM_CMD_SET_FLAGS(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)={0x28, r3, 0x1, 0x80000, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0xc0}]}]}, 0x28}}, 0x40000)

2m26.368674414s ago: executing program 0 (id=1281):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{}, 0x0, &(0x7f00000005c0)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB='\x00'/15, @ANYBLOB], 0x50)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
timer_gettime(0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0, 0x0, 0x0, 0x0, 0xe0000000}, 0x40)
r1 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r1, 0x80045505, 0x0)

2m17.89971505s ago: executing program 33 (id=1261):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha256\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r4, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000314000/0x2000)=nil, 0x2000, 0x2, 0x188811, r4, 0x4000)
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/34, @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xa, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040))
mremap(&(0x7f000090d000/0x4000)=nil, 0x4000, 0x4000, 0x6, &(0x7f00000c8000/0x4000)=nil)
ioctl$KVM_X86_SETUP_MCE(r5, 0x4008ae9c, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)
r7 = dup(r6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r7, 0x0)
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$BLKZEROOUT(r8, 0x127f, &(0x7f0000000240)={0x0, 0x1000000})
recvfrom$inet(r1, &(0x7f0000000240)=""/78, 0x4e, 0x0, 0x0, 0x0)

2m11.052936526s ago: executing program 34 (id=1281):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{}, 0x0, &(0x7f00000005c0)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB='\x00'/15, @ANYBLOB], 0x50)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
timer_gettime(0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0, 0x0, 0x0, 0x0, 0xe0000000}, 0x40)
r1 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r1, 0x80045505, 0x0)

9.236720714s ago: executing program 6 (id=1813):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2, 0x0, 0xfffffffffffffffd}, 0x18)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=@newtfilter={0x78, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x2, 0x1}}, [@filter_kind_options=@f_basic={{0xa}, {0x48, 0x2, [@TCA_BASIC_EMATCHES={0x44, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x38, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x1c, 0x1, 0x0, 0x0, {{0x0, 0x2, 0xf0}, {0x7, 0xa, 0x1, "e74209ffa0bb995e0681"}}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0x1, 0x1, 0xa}, {0xc, 0x1, 0x7, 0x4, 0x4, 0x1, 0x2}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xe0}}]}]}}]}, 0xffffffffffffffb0}}, 0x0)
r3 = fsmount(0xffffffffffffffff, 0x0, 0x70)
recvmmsg(r0, &(0x7f0000000500)=[{{&(0x7f0000000400)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80, &(0x7f00000019c0)=[{&(0x7f0000000480)=""/122, 0x7a}, {&(0x7f0000000840)=""/117, 0x75}, {&(0x7f00000008c0)=""/4096, 0x1000}, {&(0x7f00000018c0)=""/88, 0x58}, {&(0x7f0000001940)=""/86, 0x56}], 0x5, &(0x7f0000002a40)=""/4089, 0xfffffffffffffe63}, 0x200}], 0x1, 0x2020, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1e000000050000002b010000ff00000000000000", @ANYRES32, @ANYBLOB="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", @ANYRES32=0x0, @ANYRES32=r3, @ANYBLOB="01000000040000000500"/28], 0x50)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
unshare(0x2c020400)
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
msgsnd(0x0, 0x0, 0x2000, 0x0)
bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0)
mount$tmpfs(0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000800)=ANY=[@ANYBLOB='mpol=p'])
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, 0x0, &(0x7f0000000380))
getsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, &(0x7f0000000040), &(0x7f00000001c0)=0xc)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan1\x00', &(0x7f0000000000)=@ethtool_eeprom={0xb, 0x4, 0x8, 0x29, "3a71c16ed674dfc8b1d6b86aa1cf5cbd0fbd49832a9fc1a648d24d479bc2fa4074a512d747a73d49c8"}})

8.798508517s ago: executing program 7 (id=1820):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d80000001c0081044e81f782db44b9040a1d08030e000000e8fea4a1180015000600142603600e1208000f1000810401a80016000a0001", 0x37}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @mcast1}, 0x80, 0x0, 0x0, 0x0, 0x5c8}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce620300fe"], 0xfe1b)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001800599c6d"], 0xfe33)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="120100004b4e7b08030450f8c904010203010902120001000000000904"], 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'wlan1\x00'})
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe2, 0x0)

7.88999134s ago: executing program 1 (id=1821):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000400)=ANY=[@ANYBLOB="12010000d972a440b72040155ab7010203010902120001000000000904000000ff00"], 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$chown(0x4, r1, 0xee01, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0)
chdir(&(0x7f0000000080)='./file1\x00')
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000400)='.\x00', 0x0, 0x0)
r3 = openat(r2, &(0x7f0000000d00)='./file1\x00', 0xa042, 0x0)
read$FUSE(r3, &(0x7f0000002140)={0x2020}, 0x1f77)
add_key$keyring(&(0x7f00000000c0), &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, r1)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000140)={0x44, &(0x7f0000000100)=ANY=[@ANYBLOB="1a010300000000f8"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r6=>0x0]}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r4, 0x84, 0x18, &(0x7f0000000240)={r6, 0x200}, &(0x7f0000000300)=0x8)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000000740)={0x1c, &(0x7f0000000600)={0x0, 0x10, 0x9, "c3b4e0b49fc7a1c93d"}, 0x0, 0x0})

7.863843186s ago: executing program 6 (id=1822):
unshare(0x22020600)
socket$alg(0x26, 0x5, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000000000020bd2894000000000000010902"], 0x0)
r2 = gettid()
timer_create(0x2, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
clock_nanosleep(0x2, 0x0, &(0x7f0000000040)={0x0, 0x989680}, 0x0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f00000002c0)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x14, &(0x7f00000004c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480))
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@gettfilter={0x24, 0x2e, 0x301, 0x0, 0x0, {0x0, 0x0, 0x0, r5}}, 0x24}}, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000001580)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32, @ANYBLOB="ff7f0000000000001f00"/20, @ANYRES32=r5, @ANYRES32, @ANYBLOB="050000000200"/28], 0x50)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r7)
syz_clone3(&(0x7f00000003c0)={0x218000, &(0x7f0000000140), &(0x7f00000001c0), &(0x7f0000000200), {0x19}, &(0x7f0000000580)=""/4096, 0x1000, &(0x7f0000000340)=""/13, &(0x7f0000000380)=[r2, r2], 0x2, {r7}}, 0x58)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000001640)=ANY=[@ANYRES32, @ANYBLOB="f12d8e83d7889441697c2eb51bba4ad5d1e2487f881d1c08043c9c3a3ac23106a1fe1fdaae103c54f2d464b832aeadf4b1c30a2779524f2649e2b68fc4bb4c9d6b531ac6de378664cb15ce94e812196701753c74f0c1814570147a70b3322d62611dffb94253b8f8a9667e3defea39ab227d9df851db272b3b3e9ceb4f6536c2", @ANYRES64=r6, @ANYRESOCT=r0], 0x20)
r8 = socket$inet_dccp(0x2, 0x6, 0x0)
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000480)=ANY=[@ANYBLOB="12010000020000402505a1a440000102030109025c0002010000000904000001020d0000052406000105240000002a240f0100000000000000000006241a000000090581030002001c000904010000020d0000090401010202"], 0x0)
shutdown(r8, 0x1)
poll(&(0x7f0000000240)=[{r8, 0xc0c3}], 0x1, 0x1)

7.407956502s ago: executing program 5 (id=1823):
r0 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x0)
ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000140)=0x11)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_CREATE_PIT2(r3, 0x4188aec6, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x89}, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
syz_usb_connect(0x0, 0x24, &(0x7f0000000340)={{0x12, 0x1, 0x0, 0x88, 0xbe, 0x1d, 0x8, 0x6f8, 0x3, 0xedd, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xdc, 0x3d, 0xf1}}]}}]}}, 0x0) (async)
r6 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r6, 0x84, 0x7b, &(0x7f00000014c0)={0x0, 0x4}, 0x8) (async)
sendto$inet6(r6, &(0x7f0000000040)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r6, 0x84, 0x7c, &(0x7f0000000380), 0x8)
r7 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) (async)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000180), 0x17, 0x1}}, 0x20) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs, 0x6e) (async)
sendmmsg$unix(r9, &(0x7f0000000000), 0x651, 0x0) (async)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x20, 0x2a, 0x9, 0x0, 0x0, {0x4, 0x0, 0x2c00}, [@typed={0xc, 0x17, 0x0, 0x0, @u64=0x80}]}, 0x20}, 0x1, 0x3000000}, 0x0)
ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000040)=0xd0)

7.241799048s ago: executing program 5 (id=1824):
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x5, 0x4, &(0x7f0000000000)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0xad, 0x66}, [@call={0x16}]}, &(0x7f0000000140)='GPL\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x1e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x23)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000100)='rxrpc\x00', 0x0, &(0x7f0000000d80)="0000000000000048ff6943b80000000800000028f2000000008607000000ebcd1f63dd65dd530700", 0x28, r0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000040)='xs_stream_read_request\x00', 0xffffffffffffffff, 0x0, 0x400}, 0x18)
r3 = socket$inet6(0xa, 0x3, 0x87)
r4 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_CLEAR_HALT(r4, 0xc0105502, &(0x7f0000000340)={0x1, 0x1})
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
sync_file_range(0xffffffffffffffff, 0x0, 0x5, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
bind$alg(0xffffffffffffffff, &(0x7f0000000540)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305\x00'}, 0x58)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r2, 0x4004f506, &(0x7f00000000c0)=0x1)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r5=>0xffffffffffffffff})
r6 = syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000240)=<r7=>0x0, &(0x7f0000000280)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r5, 0x0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000003c0)}, {&(0x7f0000000440)}], 0x2}, 0x0, 0x800, 0x1})
io_uring_enter(r6, 0x47f9, 0x0, 0x0, 0x0, 0x0)

6.405048757s ago: executing program 5 (id=1826):
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000), 0x4)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x11, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
shmctl$IPC_INFO(0x0, 0x3, &(0x7f0000001fc0)=""/50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f00000002c0)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r2, 0x3b85, &(0x7f00000000c0)={0x28, 0x7, r3, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000})
ioctl$IOMMU_IOAS_MAP$PAGES(r2, 0x3b85, &(0x7f0000000380)={0x28, 0x4, r3, 0x0, &(0x7f0000ffb000/0x1000)=nil, 0x1000})
socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x2, &(0x7f0000000b80)=@gcm_128={{0x303}, "b9dc05cc9591a0e9", "9d597b8566fb9b1ff9e847ef151545d4", "a483a4b2", "b2e71c7c92421350"}, 0x28)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000006080)=[{{&(0x7f0000000240)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, 0x80, &(0x7f0000000a00)=[{&(0x7f00000003c0)=""/161, 0xa1}, {&(0x7f0000006200)=""/29, 0x1d}, {&(0x7f0000000540)=""/152, 0x98}, {&(0x7f0000000600)=""/203, 0xcb}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000000700)=""/197, 0xc5}, {&(0x7f0000000800)=""/232, 0xe8}, {&(0x7f0000000900)=""/196, 0xc4}], 0x8, &(0x7f0000001bc0)=""/163, 0xa3}, 0x3}, {{&(0x7f0000000a80)=@nfc, 0x80, &(0x7f00000004c0)=[{&(0x7f0000001c80)=""/231, 0xe7}, {&(0x7f0000001d80)=""/134, 0x86}, {&(0x7f0000002000)=""/4096, 0x1000}, {&(0x7f0000001e40)=""/147, 0x93}], 0x4, &(0x7f0000001f00)=""/168, 0xa8}, 0x20}, {{&(0x7f0000003000)=@generic, 0x80, &(0x7f0000003300)=[{&(0x7f0000003080)=""/46, 0x2e}, {&(0x7f00000030c0)=""/135, 0x87}, {&(0x7f0000003180)=""/138, 0x8a}, {&(0x7f0000003240)=""/154, 0x9a}], 0x4, &(0x7f0000003340)=""/95, 0x5f}, 0x2}, {{0x0, 0x0, &(0x7f0000004980)=[{0x0}, {&(0x7f0000003440)=""/217, 0xd9}, {&(0x7f0000003540)=""/218, 0xda}, {&(0x7f0000003640)=""/1, 0x1}, {&(0x7f0000003680)=""/190, 0xbe}, {&(0x7f0000003740)=""/168, 0xa8}, {0x0}, {&(0x7f0000003900)=""/4096, 0x1000}], 0x8, &(0x7f0000004a40)=""/115, 0x73}, 0xa3}], 0x4, 0x2003, &(0x7f00000061c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
ppoll(&(0x7f0000000500)=[{}], 0x1, 0x0, 0x0, 0x0)
pselect6(0xf, &(0x7f00000001c0)={0x0, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, 0x8}, 0x0, 0x0, 0x0, 0x0)

5.653871832s ago: executing program 3 (id=1827):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
prlimit64(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000040))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r5 = fanotify_init(0x200, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)
fanotify_mark(r5, 0x101, 0x48001051, r6, 0x0)
r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
fanotify_mark(r5, 0x455, 0x3a, r7, 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r8=>0xffffffffffffffff})
syz_init_net_socket$llc(0x1a, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340), 0x0})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(0xffffffffffffffff, 0xc05064a7, &(0x7f0000000a00)={&(0x7f0000000800), 0x0, 0x0, &(0x7f00000009c0)})
mount_setattr(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)
r9 = syz_open_dev$vim2m(&(0x7f0000000a40), 0x9, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r9, 0xc0405602, &(0x7f0000000a80)={0x4000, 0xd, 0x0, "134600cea4dd512d97d4188cbf770637bc747721f37af54dd1dc03030096c337"}) (fail_nth: 1)
recvmmsg(r8, &(0x7f0000001040)=[{{&(0x7f0000000300)=@can, 0x80, &(0x7f0000000380)=[{&(0x7f0000000400)=""/145, 0x91}, {&(0x7f00000004c0)=""/75, 0x4b}, {&(0x7f0000000540)=""/166, 0xa6}, {&(0x7f0000000600)=""/71, 0x47}], 0x4, &(0x7f0000000680)=""/8, 0x8}, 0x5}, {{&(0x7f00000006c0)=@nl, 0x80, &(0x7f0000000800)=[{&(0x7f0000000740)=""/52, 0x34}, {&(0x7f0000000780)=""/117, 0x75}], 0x2, &(0x7f0000000bc0)=""/239, 0xef}}, {{&(0x7f0000000cc0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80, &(0x7f0000000f40)=[{&(0x7f0000000d40)=""/169, 0xa9}, {&(0x7f0000000e00)}, {&(0x7f0000000e40)=""/87, 0x57}, {&(0x7f0000000ec0)=""/115, 0x73}], 0x4, &(0x7f0000000f80)=""/129, 0x81}, 0xa}], 0x3, 0x2000, &(0x7f0000001100)={0x0, 0x989680})
r10 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r10, 0x29, 0x40, &(0x7f0000000840)=@raw={'raw\x00', 0x3c1, 0x3, 0x320, 0x0, 0x111, 0x4b4, 0x0, 0xd4feffff, 0x250, 0x20a, 0x278, 0x250, 0x278, 0x3, 0x0, {[{{@ipv6={@empty, @mcast1, [0xffffff00], [0x0, 0x0, 0x0, 0xffffffff], 'wg1\x00', 'macvtap0\x00', {}, {}, 0x6}, 0x7a, 0x120, 0x140, 0x0, {}, [@common=@inet=@tcp={{0x30}, {[], [], 0x0, 0x8, 0x4, 0x4}}, @common=@hbh={{0x48}, {0xb52, 0x0, 0x1, [0x570, 0x9, 0xe0, 0x0, 0x6, 0x4, 0x6e2, 0x2, 0x8, 0xee, 0x7fff, 0x3, 0x4, 0xe, 0x8, 0xe304]}}]}, @unspec=@TRACE={0x20}}, {{@ipv6={@loopback, @loopback, [], [], 'veth1_to_hsr\x00', 'pim6reg1\x00'}, 0x0, 0xf0, 0x110, 0x0, {}, [@common=@unspec=@nfacct={{0x48}, {'syz1\x00'}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x380)

5.319146165s ago: executing program 5 (id=1828):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000180)={0x7, @raw_data="a9062f405e5936b65a99258785c47cf29d148a7bbdf0f16541d149526be7fdb48ba37698adf9351ae34b89027d07ac82cd35f95780b0e0f00800000000fc3ff72945b732e26de04e53740f373129f43cd061ed600aaf047c5a1ffcdc06c41383b3375b8c0ad2f618977478febd216501356866da3fe2dda04f9d859ef96bfcd67029df135c0265185415e627bf5db9421b00000000000000001fc668b8f2e726bc42f677fcf4d02da14ce3869b802e1fa6492e708dde0a5dd9850400000076c781432b00"})
ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000000140)={0x4, 0x8}) (async)
r1 = socket$nl_route(0x10, 0x3, 0x0)
recvmsg(r1, &(0x7f0000000080)={&(0x7f0000000300)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @remote}}}, 0x80, &(0x7f0000000000)=[{&(0x7f00000004c0)=""/235, 0xeb}, {&(0x7f00000005c0)=""/233, 0xe9}], 0x2, &(0x7f00000006c0)=""/147, 0x93}, 0x20)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'ip6gretap0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[@ANYBLOB="39551bbed3d9d4b00000001e00000803000000fd", @ANYRES32=r3, @ANYBLOB="00c002002b14cc5908002000f4ffffff88001a800400070004001c0004001c000400070004000700380002803400018008000e0009000000080017000000000208000300feffffff0800060003000000080007000000000008000c00000200003800028034000180080021000600000008000f000b00000008001f00090000000800180001000000080008000001000008001800ff010000"], 0xb0}}, 0x1)

5.267991126s ago: executing program 6 (id=1829):
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x147c40, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000007d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
unshare(0x22020400)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="7800000000010104000000000000000002000000240001801400018008830e000100e000000108000200e00000c0140001800800010000000000080002007f0000010c000280050001005cda0000080007400000000014001080040001400000000008000240000000000f2f67d13abfe9965f891e87288718985f53d9ca82d6a910150b9d0801337766af36477be4c1ff45cdb2d168a02985256c2e52b2c17a2db9c607fa756f49"], 0x78}}, 0x0)
ioprio_set$pid(0x3, 0x0, 0x4004)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r3, 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r5 = accept(r2, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r5, &(0x7f0000000080)={0x0, 0xe, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0xfffffdef}}, 0x0)
poll(&(0x7f00000002c0)=[{r5, 0x40}], 0x1, 0x1)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
acct(&(0x7f0000000040)='\xe9\x1fq\x89Y\x1e\x923aK\x00')
acct(0x0)
sendmsg$NFNL_MSG_ACCT_GET(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="64000000010701010000000000000000020000030c00034000000000000003400000000012593a6eb0592b5722d1000000090c000340000000000000001508000540000000000904000000797a31000000000c00024000000000000000000c0006401000000000000004"], 0x64}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, r6)
fsopen(&(0x7f0000000080)='sysfs\x00', 0x0)
r7 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r7, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
bind$tipc(r7, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x2}}, 0x10)
r8 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r8, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)

5.222219117s ago: executing program 7 (id=1830):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000c40), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000600000914000200fe8800000000000000000000000000010f000700756e636f6e66696e6564000014000300"], 0x4c}, 0x2, 0x34005}, 0x0)

5.054731454s ago: executing program 7 (id=1831):
r0 = syz_io_uring_setup(0x2cd7, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000000)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x34, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0xff44}})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001040)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(r4, &(0x7f0000000a80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000740)=""/158, 0x9e}}], 0x1, 0x0, 0x0)
setsockopt$inet_int(r4, 0x0, 0x6, &(0x7f0000000180)=0x6, 0x4)
setsockopt$inet_int(r4, 0x0, 0x12, &(0x7f0000000140)=0x30, 0x4)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x13}, @printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0xd0}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r5, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x36, &(0x7f00000002c0)={@broadcast, @link_local, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@timestamp={0x44, 0x4, 0xc6}]}}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000000020"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$binfmt_script(r3, &(0x7f00000000c0), 0x10f)
socket$inet_tcp(0x2, 0x1, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000003c0)='ext4_allocate_inode\x00', r6}, 0x10)
r8 = gettid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000280)={r8, r7, 0x0, 0xf, &(0x7f00000001c0)='\x00'}, 0x11)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000005, 0x10012, r3, 0x0)
io_uring_enter(r0, 0x3a15, 0xc73a, 0x7, 0x0, 0xfffffffffffffd81)

4.77987565s ago: executing program 1 (id=1832):
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x5, 0x4, &(0x7f0000000000)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0xad, 0x66}, [@call={0x16}]}, &(0x7f0000000140)='GPL\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x1e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x23)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000100)='rxrpc\x00', 0x0, &(0x7f0000000d80)="0000000000000048ff6943b80000000800000028f2000000008607000000ebcd1f63dd65dd530700", 0x28, r0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000040)='xs_stream_read_request\x00', 0xffffffffffffffff, 0x0, 0x400}, 0x18)
r3 = socket$inet6(0xa, 0x3, 0x87)
r4 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_CLEAR_HALT(r4, 0xc0105502, &(0x7f0000000340)={0x1, 0x1})
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
sync_file_range(0xffffffffffffffff, 0x0, 0x5, 0x4)
r5 = socket$alg(0x26, 0x5, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)={0x84, r7, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_LISTEN_PORT={0x6}, @WGDEVICE_A_PEERS={0x54, 0x8, 0x0, 0x1, [{0x50, 0x0, 0x0, 0x1, [@WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}, @WGPEER_A_ALLOWEDIPS={0x20, 0x9, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x3}}]}]}]}]}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x84}}, 0x0)
bind$alg(r5, &(0x7f0000000540)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305\x00'}, 0x58)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r2, 0x4004f506, &(0x7f00000000c0)=0x1)
r8 = syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000240)=<r9=>0x0, &(0x7f0000000280)=<r10=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r9, r10, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000003c0)}, {&(0x7f0000000440)}], 0x2}, 0x0, 0x800, 0x1})
io_uring_enter(r8, 0x47f9, 0x0, 0x0, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001200)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f00000003c0)='\x00', 0x1}, {&(0x7f00000005c0)='0', 0x1}], 0x2}}], 0x1, 0x0)

4.693690982s ago: executing program 3 (id=1833):
mkdirat(0xffffffffffffffff, 0x0, 0x22)
r0 = socket$alg(0x26, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x2, 0x0, @local, 0x2}]}, &(0x7f00000002c0)=0x10)
r2 = memfd_create(&(0x7f0000000680)='v\xa6\xf5lj6,r\xaf\xe8\x10/\xecg\xed\xe3h\x80\xb8!y6w\xda\xdd\xb9\nR\xe8@\x99\xb9\x8a\x0fZ\t\x90\x8bp\x10\x84\x86t\x8a\xba\xc6\xfb\xd2\f\xef&\xad\xa8M\xe8\b\xb0#\xac)\x81\x1e\x8a\f\x11D\x90\xf5\xbb\x1c\xac\xc7\xad\xdc\\\x11\x95\xf8\xe6\xa7\xc3\xbc\x18+\x92\x92N\a\xa7\x7fN\x9bL\xf8\xebQs\x02\xf9\xadi\x8f\x0f\xff\x02n\x9d\x85\xea\x1a*\x1bC\xd8\x1c\xe8\x9bYSp\xa5\xfd\ny\xdfS\xdbU\xf8l\xb5b\x83\x00\x00\x00\x00\xfc\x83\x18\xe46\x8a\x029\x19\x8fjC\xce\xa7S\x81\xd5\xda\x84\xdf\xe3A_\x05XCk\x1d\x1cC\x97r\x93\xd6t\x81b\xc7x\xab\xa2\xf0\av\x88\x01\x92\xeaF\xa9!\xfc\x1c\xbf7q\xcf\xed&\x96\xa6\x1c_\xff\xb4\x00X\x1b\xedw\xc1\x00\x00\x00\x00\xe0T\x1f\xbc\x85\xd1Z\xa9\x01Z\xc2\xb0\f\x9a\x16\xa5?\xf74\x88\xeez@)&\xb5\a\xc1\v\xe7\xdf\x80\xe4\x9c\xf5f\x94jC\xb1\xcfh\xc5g\x02\xc6 U\xe5\xcea\x88\xee\x0f\xf57*\xb3\xe8iWTav\xff\xd9\xb0C\x1e\xbe\x97\xc8$-\x8d)\xe8\\\x8e;I\xde\x8a\x8e\x0fq\x06\xee\xb9\xc1\xf1)\xa0\xd9T\xec\x8b\x85I\x87OZ\xd8\"4\x87\xb1\xed?:\x84S\xb9\xbf\xab#\xd0N\x8f\x1ey7\x9286p\x10uZ\xf0', 0x0)
write(r2, &(0x7f0000000a80)='ic', 0x2)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x6, 0x8072, 0xffffffffffffffff, 0x10000000)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r3, 0x84, 0x80, &(0x7f0000000000)='\x00\x00\x00\x00\t\x00\x00\x00', 0x8)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r3, 0x84, 0x5, 0x0, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000c40)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000240)="5983bcd40db7a1012ad3ae51e755bf9f9f76d1657de2e35dd0c45076281fc74ea8563e418fa97a58621439fdf80e4389434276ea600a8fb439fd610ec7d2898339798bae68c72bb2999c36657e24fdebbae01e5db52ebfce20f6baea64dbe387ec831cb8f1f6bea5b782c5b4e921b0e60341dc8d", 0x74}, {&(0x7f00000002c0)="408d35b93c797a594bef88", 0xb}, {&(0x7f0000000340)="caa1cde0037493894dbc9d73fd80a582f5fac9090d7e53343e6fd3270fa2445ae01e1fa10032b7603603dc", 0x2b}, {&(0x7f0000000380)="ce5e058ac0d09cfb8ed57f98a18cede18a7bfdca9a23766262b7cac3340e2201b71945505c27e54ee8a451e0fca46d34b369d58d9344f8b0b7ed7a2b1ee4028ad207aa67982012b74c687c96586a66817612182f280f608096b173ac6a22348d9c67e542ccb41c98774429575414ca5c98bac8be69c4dc0c0c0e27232db24a988042db6daa5211a8fc6fd2dcc554ead054a61256c7743f9caa617b3ce604cb4b0e4969ee2a82a9963aacf0a37746b13569fe7d8c2863adbd9c7470020b36d22aee8483caba04a8d780f9292538c75c7f0523747786bfde165f72268da1ba5d8a38b1b53dcb1fe9f639c5c3ab4b87577fa7f30b7550e4b8", 0xf7}, {&(0x7f0000000ac0)="158e19fdfe2d915a2e00a57343fe3672f3d00200a724ac1995bd9677bdecbd9d510913ede497d62ebbff536438a3b9cbc3cbdf5ef42fa8342ccd3a1c7f22da590d815cd125f45e9c32dad647769fbab2deef222b0ac445e20a38eaf3113e130cc98d06005d253202606fa5c0b98c9506fe34c95051a136aa39d8e3c8569d81633d", 0x81}], 0x5, 0x0, 0x0, 0x800}}, {{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000540)="91846809cc14fe9acbef6d06be9b1040f1feefd3f00b80aafbffd384485b1fb40b305bb1544dc024621b32bf34dd63b499d5c10aa4ae40238a9ea412c2347ab6928362e296c42b084350de97950278cbd60cf29ead30c01286816c4475a0a8eb28d5d26a735505174eac24b4c215f0aaf2c2a60e1a8b1ff70e487c40b4e310521f380e59abb37ddb5e7dac9bf38f2b7e5401e0629227d52072b5a7e49f585b914dd71224ef9569c1a0", 0xa9}, {&(0x7f0000000600)="6b19fe30fa7d8f6c8f43ee1717b24ce2db5decb423e5bb3cbeaa617413ba97fedc2dce3ea5d08f3db3687b3d46e00fb328b08321eddd31fca9c71a460cf300dc67d768554f755ec3ae662ca6b535d6b3d996469fa2b966c03a8236db68c388485284abff5d7aa619f0cf55da27eaf278464cd0ca7c6a78491edf94707426c97452285e9448947e184fc74a40cae5112d883deae108ce1330decbbde267e47fc2316435ac6df2ba66be0cb922d6a1556857669f7359ac8c8a403a1da19d027f37df99170b4ee09f959f827707cf67f27510e9fa3e939713870bbef953aa781d0ad3f8dcc10a0cb339778f", 0xea}, {&(0x7f0000000700)="6627133413a1e2cbbc7e76bafc8d579684ced60dafb8db27fe4abe8f11c9f65e073e07b71f3597a83ea6e7c0a40d4bafd27b0b4ba039f8c1320ddf6971f5faf4569505a92e3f773a15a36b0308534c91edf2667a9cf020cc4e596de2ae936655555cee07e981fe90fb65023af4186110b3b362db3d43043b172a68cc705460caed475302572c828057a4cb51b72cd4e04b5e6afe062ae629ef9106ead93d1ea925db0740721255cd0e572964d71e", 0xae}, {&(0x7f00000007c0)="f0877d6cf53f6de581aae39d7c9073f1904beb6c0dc631d6fc877abda7841143a8140467a69072497f7c96c0e419a07087c792ff4d223caa91f4e25fa6da2302262652739e941455a2b8354be183f24f8ae03f4daf6e446cef49fda397f9598cfdbc16acdf78efbd5b2ba67b0f14d803c94376b59be1b0f968be14942917a383bb011da7c928594e4dc073e09b1c932c122fef5cf25931cf8bb892e74d5477a1f18994d4ad94781a783592d929c50139d292bed62d3df7de7248034c7033", 0xbe}, {&(0x7f0000000880)="c807051a7c7c1f67f545280c2f145d958fbfc7f267e9f753e9132ee5681a61eb2480d195d2530f6523b80e482aefbffe871b812717c45bec3bcd05204a12a9", 0x3f}, {&(0x7f00000008c0)}, {&(0x7f0000000900)="cb2bd1068f907dd300be71ca1dc40b98f9d3a6bb2d1978e554fb3ae3cf966b6b41d8efec57cf98cf6f04bbef61d43123faea939e5c2a31583f6ae4daeff19396b7bac3e1bb2d9f70bf342faf643d55a66227858084f32e49677211bc4575fa1c60ff", 0x62}], 0x7, &(0x7f0000000cc0)=ANY=[@ANYRES16=r4, @ANYRES32=r5, @ANYRES32=r5, @ANYRESOCT=r4, @ANYRES32=r6, @ANYRES32, @ANYRES32, @ANYRES32=r6, @ANYRES32=r0, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32=r6, @ANYRES32=r6, @ANYRES32=r0, @ANYRES16=0x0], 0x70, 0x800}}], 0x2, 0x8081)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-generic\x00'}, 0x58)
r7 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000300)='ipvlan1\x00', 0x10)
connect$phonet_pipe(r7, 0x0, 0x0)
ioctl$SIOCPNENABLEPIPE(r7, 0x89ed, 0x500)
r8 = accept4(r0, 0x0, 0x0, 0x0)
r9 = openat$procfs(0xffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x360)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000000020202a8031bb654a128f00bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000480)='GPL\x00', 0x401, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

4.692642387s ago: executing program 7 (id=1834):
socket$alg(0x26, 0x5, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001e00010a000000000000000000a81b007177ce6d4cb0712d9607184fdfc029f7b8e04ee35a3e2932b0f1538fb1bef05e908cb4486849c44d754241de37"], 0x14}}, 0x0)
bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
syz_usb_connect(0x6, 0x198, &(0x7f0000000080)={{0x12, 0x1, 0x200, 0xe, 0x5a, 0xb3, 0x10, 0xaf0, 0x6911, 0xfe51, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x186, 0x1, 0x5, 0x2, 0xc0, 0x1, [{{0x9, 0x4, 0xdb, 0x8, 0x3, 0xa1, 0x1, 0x63, 0x9, [], [{{0x9, 0x5, 0xc, 0x10, 0x200, 0x4, 0x31, 0x0, [@generic={0x12, 0xa, "f076304a8000c33a4c9e56370cefb6b8"}]}}, {{0x9, 0x5, 0x8, 0x3, 0x40, 0x1d, 0x5, 0x9, [@generic={0xe8, 0xb, "de34bca4addc82fb56e398ad4755aba8cb6406c31c0d01d8eaed8e3b493b308b02fbf498a3a8f006db76c965cb630e0214b28691ee06cddab00e076aba375cb78582ecc1ad6d35e6347594230eb19275195fd7b88f14c4cfaf3da182c0cd915b0f12ab3d9d0295da5bb48b2a4c79549e2ea110026dea961a6ef00e4467c1a90658400f6fa4564a7bf94676e70b051ff8ec3785dc628f341d909588a073b31144c105ae5f9750b2d12966ebbfd19337842e9eca0bcf44daeede756256a35e36452968b3f62bd997a423ead32094aebf648a0b62feafd185d6b0b9659c6e0117f84cc06fe382d0"}]}}, {{0x9, 0x5, 0xa, 0x4, 0x20, 0x1, 0x80, 0xff, [@generic={0x5f, 0x7, "41db573701b43972a748f5e7dfc449b04a5ae9053271fc4a133ec3e54eafed43f5d66058f186ada936120249d6e526b6ac556ec0a18072b5678a92da19cb22e95bb3e9cf0e967d649dfee6033801e85f4c96c407996d414b63f56336e8"}]}}]}}]}}]}}, 0x0)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001400), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000380)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000340), 0x106}}, 0x20)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001400), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000380)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000340), 0x106}}, 0x20)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000700)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000006c0), 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000680)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000400), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000b80)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000b40), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000900), 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000100), 0x111}}, 0x20)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000080), 0x62}, {&(0x7f0000000100)="06010000246837f73199aee6fdb9291b3091ec1a2d41d2271b00d8ec030f5919f397867997f9c0efa9c9092a31cdbb98ea272787afda0af59a320709c3a59ef05c6f40ceafec53f48d6186e7d8409e35306221caf67b370d875eff3191932728e5ab6c9a3acf6ccee3e352c898f5744abaedfb53f92c37acb126bd143f3e9cdfcf25a8d6129fcc3a141c3f5ab6db772f87c787817a9b699dd60732d952716b103bc1e91ac5b1ed92f35389580994bb0df9bce07e7a80921888f984139f488d256a67fec0cbb5c4e93d5c151d97f676ab93b1efbd46f600dc964231e3257bf358448fddf894c0cdfa9115adbe5b19bc912fcbc8aac7719b649b1ff1267491da", 0x682c}, {&(0x7f0000001480)="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", 0x1001}], 0x3)
write$binfmt_aout(r4, &(0x7f00000002c0)=ANY=[], 0xc1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000005, 0x12, r4, 0x0)
write$bt_hci(r3, &(0x7f00000000c0)={0x1, @write_sc_support={{0xc7a, 0x1}}}, 0x6)

3.226493121s ago: executing program 5 (id=1835):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x400000d, 0x13, r0, 0xc5e6a000)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0), r2)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r3=>0x0})
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x18)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_TLS_TX(r4, 0x6, 0x1, &(0x7f0000000080)=@gcm_256={{}, "cefd917c366d3ee1", "f2221da76b62436bdb06dda7f1bfa5cced0062136fa6068165b5b4cac6d386ec", "2fe1ebd5", "4ca6934c03c14bf4"}, 0x38)
setsockopt$inet_int(r4, 0x0, 0xf, &(0x7f0000000340)=0x800, 0x4)
sendmsg$NL80211_CMD_SET_PMKSA(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x8c, r1, 0x800, 0x70bd2b, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0xff, 0x3a}}}}, [@NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x7ff0}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x54}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_PMKID={0x14, 0x55, "4d2684aa7f01a7e8ba66184558424ff2"}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x46}, @NL80211_ATTR_MAC={0xa, 0x6, @random="07d7bfc5588f"}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x9}, @NL80211_ATTR_MAC={0xa}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20000010}, 0x810)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x3)

3.149602378s ago: executing program 3 (id=1836):
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x5, 0x4, &(0x7f0000000000)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0xad, 0x66}, [@call={0x16}]}, &(0x7f0000000140)='GPL\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x1e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x23)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000100)='rxrpc\x00', 0x0, &(0x7f0000000d80)="0000000000000048ff6943b80000000800000028f2000000008607000000ebcd1f63dd65dd530700", 0x28, r0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000040)='xs_stream_read_request\x00', 0xffffffffffffffff, 0x0, 0x400}, 0x18)
r3 = socket$inet6(0xa, 0x3, 0x87)
r4 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_CLEAR_HALT(r4, 0xc0105502, &(0x7f0000000340)={0x1, 0x1})
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
sync_file_range(0xffffffffffffffff, 0x0, 0x5, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
bind$alg(0xffffffffffffffff, &(0x7f0000000540)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305\x00'}, 0x58)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r2, 0x4004f506, &(0x7f00000000c0)=0x1)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r5=>0xffffffffffffffff})
r6 = syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000240)=<r7=>0x0, &(0x7f0000000280)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r5, 0x0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000003c0)}, {&(0x7f0000000440)}], 0x2}, 0x0, 0x800, 0x1})
io_uring_enter(r6, 0x47f9, 0x0, 0x0, 0x0, 0x0)

3.127336668s ago: executing program 6 (id=1837):
openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x1}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000d00)='sched_switch\x00', r2}, 0x10)
r3 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x5885}, &(0x7f0000000340)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r3, 0x3516, 0x0, 0x0, 0x0, 0x0)

2.577921317s ago: executing program 3 (id=1838):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
r0 = fsopen(&(0x7f00000001c0)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
symlinkat(&(0x7f0000000040)='.\x00', r1, &(0x7f0000000140)='./file0\x00') (fail_nth: 5)

2.475757145s ago: executing program 1 (id=1839):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff})
unshare(0x66060480)
vmsplice(r0, &(0x7f00000001c0)=[{&(0x7f0000000640)="ec", 0x1}], 0x100000000000029d, 0xf)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r1}, &(0x7f00000000c0), &(0x7f0000000100)}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r1}, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="007b3a9b28362071370500000800000085000000a50000009500000000000000"], &(0x7f0000000300)='GPL\x00', 0x4, 0x14, &(0x7f0000001e00)=""/4088, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

2.294506129s ago: executing program 5 (id=1840):
socket$packet(0x11, 0x3, 0x300)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='blkio.bfq.empty_time\x00', 0x0, 0x0)
ioctl$IOMMU_HWPT_ALLOC$NONE(0xffffffffffffffff, 0x3b89, &(0x7f0000000080)={0x28, 0x3, 0x0, 0x0, <r1=>0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$IOMMU_HWPT_GET_DIRTY_BITMAP(r0, 0x3b8c, &(0x7f0000000100)={0x30, r1, 0x1, 0x0, 0x4, 0x1, 0x8001, &(0x7f0000000500)=""/193})
socket$netlink(0x10, 0x3, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000000040)=[{&(0x7f0000000100)="580000001400192340834b80040d8c560a067f0200ff000000020000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300", 0x42}], 0x1)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f000010010905"], 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x88c02)
socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001000)=[{&(0x7f0000000100)="5c0000007a006bcd9e3f2b446e08000007007ea60864160af36504005425198bc3488bc3a0e69ee517d34460bc24eab556a705251e4e82949a3651f668c3664402682fb6e27bbfa83b5cae0300c9fcd1938037e786a6", 0x56}, {&(0x7f0000000ec0)="2221319c809f", 0x6}], 0x2, 0x0, 0x0, 0x1f00c00e}, 0x0)
syz_clone3(&(0x7f0000000340)={0x42907480, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

2.190048341s ago: executing program 3 (id=1841):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x20}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000001500)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xfff3}, {}, {0x1c}}, [@filter_kind_options=@f_flow={{0x9}, {0x8, 0x2, [@TCA_FLOW_ACT={0x4}]}}]}, 0x38}}, 0x44050)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) (fail_nth: 5)

1.759093718s ago: executing program 3 (id=1842):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000400)=ANY=[@ANYBLOB="12010000d972a440b72040155ab7010203010902120001000000000904000000ff00"], 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$chown(0x4, r1, 0xee01, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0)
chdir(&(0x7f0000000080)='./file1\x00')
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000400)='.\x00', 0x0, 0x0)
r3 = openat(r2, &(0x7f0000000d00)='./file1\x00', 0xa042, 0x0)
read$FUSE(r3, &(0x7f0000002140)={0x2020}, 0x1f77)
add_key$keyring(&(0x7f00000000c0), &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, r1)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000140)={0x44, &(0x7f0000000100)=ANY=[@ANYBLOB="1a010300000000f8"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r6=>0x0]}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r4, 0x84, 0x18, &(0x7f0000000240)={r6, 0x200}, &(0x7f0000000300)=0x8)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000000740)={0x1c, &(0x7f0000000600)={0x0, 0x10, 0x9, "c3b4e0b49fc7a1c93d"}, 0x0, 0x0})

1.701548348s ago: executing program 1 (id=1843):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_ethernet(0x6a, &(0x7f0000000140)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0048f5", 0x34, 0x6, 0x0, @local, @local, {[@dstopts={0x0, 0x2, '\x00', [@generic={0x0, 0xf, "30eddb972c6225594f5fe5d3562884"}]}], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r1, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0xffffffffffffffff, 0x0, &(0x7f0000000240)={0x8}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000003c0))
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r5, &(0x7f0000000240)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', 0x0}}, 0x120)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r6=>0x0})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
mount$nfs4(&(0x7f0000000100)='\\)(#(,#\a:.:)\x00', &(0x7f0000000180)='./cgroup/../file0\x00', &(0x7f00000001c0), 0x800, 0x0)
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)={0x2c, r7, 0x1, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_SUPPORTED_RATES={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8884}, 0xc040004)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000c80)={0xffffffffffffffff, 0x2000012, 0xffe, 0x0, &(0x7f0000000c40), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.438054216s ago: executing program 7 (id=1844):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}]}, &(0x7f00000002c0)=0x10)
socket$inet_sctp(0x2, 0x1, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = userfaultfd(0x80000)
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, 0x4000})
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000400)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
r5 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r5, 0xc0405602, &(0x7f00000000c0)={0x4d, 0x1, 0x0, "6040a7190200002000000000000000ff1057e31e94000000000000000006ff00", 0x34325258})
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
r6 = syz_open_dev$vim2m(&(0x7f0000000040), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r6, 0xc0d05605, &(0x7f0000000080)={0x1, @pix={0x0, 0x0, 0x35314258}})
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, 0x0, 0x804)
memfd_secret(0x0)
waitid(0x2, 0x0, 0x0, 0x4, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00'}, 0x10)
ioctl$vim2m_VIDIOC_QBUF(0xffffffffffffffff, 0xc058560f, 0x0)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000400)={0x38, 0x1403, 0x6c08c44bda12f87d, 0x0, 0x0, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'team_slave_1\x00'}}]}, 0x38}}, 0x0)
shutdown(r0, 0x2)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000040), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x15, &(0x7f0000000200)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
modify_ldt$write(0x1, &(0x7f0000000000)={0x1001}, 0x10)

797.614987ms ago: executing program 6 (id=1845):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x480800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_HALT_POLL(r1, 0x4068aea3, &(0x7f0000000000)={0xdf, 0x0, 0x2})

762.348265ms ago: executing program 1 (id=1846):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000180), r0)
sendmsg$NLBL_CIPSOV4_C_LIST(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)=ANY=[@ANYBLOB="94000000", @ANYRES16=r2, @ANYBLOB="97f926bd7000fddbdf250300"], 0x94}, 0x1, 0x0, 0x0, 0x80}, 0x24008800)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000100)=0xe)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
iopl(0x3)
ioperm(0x0, 0x8001, 0x9)
iopl(0x0)
ioctl$TCSETSW2(r4, 0x5435, 0x0)

1.56171ms ago: executing program 6 (id=1847):
r0 = socket$inet6(0xa, 0x3, 0x7) (async)
r1 = syz_open_dev$vim2m(&(0x7f0000000240), 0x10000, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000040)={0x8, 0x1, 0x1})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(r4, 0x4004ae8b, 0x0) (async)
ioctl$vim2m_VIDIOC_STREAMOFF(r1, 0x40045612, &(0x7f0000000000)=0x1) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6) (async)
mprotect(&(0x7f00003fd000/0xc00000)=nil, 0xc00000, 0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
r5 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000180)={'sit0\x00', <r6=>0x0})
setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x32, &(0x7f0000000000)={@remote, r6}, 0x14) (async)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback, 0x200}, 0x1c)

1.210306ms ago: executing program 1 (id=1848):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x28, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETSW(r1, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2e69a, 0x0, "00000008000000fe630500000000000000001f"})
ioctl$TIOCL_GETMOUSEREPORTING(r1, 0x5412, &(0x7f0000000600)=0xd)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000000)=0x8)
syz_usb_control_io(r0, &(0x7f00000000c0)={0x18, &(0x7f0000000000)={0x0, 0x0, 0x2f, {0x2f, 0x0, "2ce589eb00e85e8ed6232b5ac87c6a5ab544c00e7519a853ba93e10c37b31ae21cc9324d6172673544b3ad15e4"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

0s ago: executing program 7 (id=1849):
socket$inet_sctp(0x2, 0x5, 0x84)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{}, &(0x7f0000000580), 0x0}, 0x20)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r5, &(0x7f000000e280)={0x2020, 0x0, <r6=>0x0}, 0x2020)
mknod$loop(&(0x7f00000002c0)='./file0/../file0/file0\x00', 0xa002c000, 0x0)
write$FUSE_INIT(r5, &(0x7f0000000380)={0x50, 0x0, r6, {0x7, 0x27, 0x0, 0x64266}}, 0x50)
syz_fuse_handle_req(r5, &(0x7f00000102c0)="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", 0x2000, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)={0x90, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, {0x0, 0x1, 0x0, 0x80000000000}}}, 0x0, 0x0, 0x0, 0x0})

kernel console output (not intermixed with test programs):

94][  T968] usb 6-1: SerialNumber: syz
[  416.657141][  T968] usb 6-1: config 0 descriptor??
[  416.921045][   T29] audit: type=1326 audit(1730352138.394:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10112 comm="syz.5.1129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  416.979980][   T29] audit: type=1326 audit(1730352138.394:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10112 comm="syz.5.1129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  417.033894][   T29] audit: type=1326 audit(1730352138.394:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10112 comm="syz.5.1129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  417.087409][   T29] audit: type=1326 audit(1730352138.394:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10112 comm="syz.5.1129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  417.135100][ T1198] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  417.161877][   T29] audit: type=1326 audit(1730352138.394:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10112 comm="syz.5.1129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  417.206176][   T29] audit: type=1326 audit(1730352138.414:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10112 comm="syz.5.1129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  417.257627][   T29] audit: type=1326 audit(1730352138.414:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10112 comm="syz.5.1129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  417.454974][T10146] usb usb8: usbfs: process 10146 (syz.0.1137) did not claim interface 0 before use
[  417.468533][   T29] audit: type=1326 audit(1730352138.414:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10112 comm="syz.5.1129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  417.792927][  T968] usb 6-1: Firmware version (0.0) predates our first public release.
[  417.801363][  T968] usb 6-1: Please update to version 0.2 or newer
[  417.853810][   T29] audit: type=1326 audit(1730352138.414:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10112 comm="syz.5.1129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  417.911770][   T29] audit: type=1326 audit(1730352138.414:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10112 comm="syz.5.1129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  417.979989][  T968] usb 6-1: USB disconnect, device number 17
[  418.185734][ T1198] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  418.332346][T10156] xt_TCPMSS: Only works on TCP SYN packets
[  418.344824][ T5880] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  418.685308][ T5880] usb 2-1: device descriptor read/64, error -71
[  418.715632][T10167] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1143'.
[  418.737115][T10167] input: syz1 as /devices/virtual/input/input37
[  418.924733][ T5880] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  419.074710][ T5880] usb 2-1: device descriptor read/64, error -71
[  419.217239][ T1198] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  419.226396][ T5880] usb usb2-port1: attempt power cycle
[  419.295229][ T5910] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  419.594642][ T5880] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  419.615359][ T5880] usb 2-1: device descriptor read/8, error -71
[  419.854980][ T5880] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  419.934708][ T5910] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  420.111453][ T5880] usb 2-1: device not accepting address 29, error -71
[  420.124174][ T5880] usb usb2-port1: unable to enumerate USB device
[  420.360091][ T1198] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  420.904871][ T5910] usb 6-1: device descriptor read/64, error -71
[  421.096097][T10198] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1154'.
[  421.119879][T10198] input: syz1 as /devices/virtual/input/input38
[  421.145437][ T5910] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  421.274524][ T5910] usb 6-1: device descriptor read/64, error -71
[  421.375022][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  421.385149][ T5910] usb usb6-port1: attempt power cycle
[  421.586175][ T5921] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  421.746097][ T5910] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  421.755931][ T5921] usb 5-1: no configurations
[  421.760967][ T5921] usb 5-1: can't read configurations, error -22
[  421.786396][ T5910] usb 6-1: device descriptor read/8, error -71
[  421.894553][ T5921] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  422.034576][ T5910] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  422.056361][ T5921] usb 5-1: no configurations
[  422.061248][ T5921] usb 5-1: can't read configurations, error -22
[  422.065206][ T5910] usb 6-1: device descriptor read/8, error -71
[  422.070317][ T5921] usb usb5-port1: attempt power cycle
[  422.079266][T10239] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1158'.
[  422.194861][ T5910] usb usb6-port1: unable to enumerate USB device
[  422.348956][ T5878] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  422.419082][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  422.428043][ T5921] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  422.457027][   T25] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[  422.466624][ T5921] usb 5-1: no configurations
[  422.471274][ T5921] usb 5-1: can't read configurations, error -22
[  422.604765][ T5921] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  422.624666][   T25] usb 2-1: Using ep0 maxpacket: 16
[  422.633395][   T25] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  422.642703][   T25] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  422.650859][   T25] usb 2-1: Product: syz
[  422.655152][   T25] usb 2-1: Manufacturer: syz
[  422.659775][   T25] usb 2-1: SerialNumber: syz
[  422.667976][ T5921] usb 5-1: no configurations
[  422.673075][   T25] r8152-cfgselector 2-1: Unknown version 0x0000
[  422.679592][   T25] r8152-cfgselector 2-1: config 0 descriptor??
[  422.694721][ T5921] usb 5-1: can't read configurations, error -22
[  422.704826][ T5921] usb usb5-port1: unable to enumerate USB device
[  422.781319][T10246] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  422.790167][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  423.078102][T10251] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1164'.
[  423.135101][ T5878] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  423.147542][ T5910] r8152-cfgselector 2-1: USB disconnect, device number 30
[  423.913499][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  425.549402][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  425.558586][ T5878] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  425.905635][    T8] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  426.075641][    T8] usb 6-1: Using ep0 maxpacket: 32
[  426.082709][    T8] usb 6-1: config 0 has an invalid interface number: 9 but max is 0
[  426.092354][    T8] usb 6-1: config 0 has no interface number 0
[  426.119948][    T8] usb 6-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c
[  426.130883][    T8] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  426.158889][    T8] usb 6-1: Product: syz
[  426.172702][    T8] usb 6-1: Manufacturer: syz
[  426.190096][T10281] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  426.199809][    T8] usb 6-1: SerialNumber: syz
[  426.212836][    T8] usb 6-1: config 0 descriptor??
[  426.251697][    T8] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[  426.335482][T10281] batman_adv: batadv0: Removing interface: batadv_slave_1
[  426.554635][   T25] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[  426.580314][ T6356] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  426.708095][   T25] usb 2-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  426.717603][   T25] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  426.734721][   T25] usb 2-1: Product: syz
[  426.740877][   T25] usb 2-1: Manufacturer: syz
[  426.760158][   T25] usb 2-1: SerialNumber: syz
[  426.791530][   T25] usb 2-1: config 0 descriptor??
[  427.065175][   T29] kauditd_printk_skb: 4 callbacks suppressed
[  427.065358][   T29] audit: type=1326 audit(1730352148.544:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10276 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36b937e719 code=0x7ffc0000
[  427.132436][   T29] audit: type=1326 audit(1730352148.544:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10276 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36b937e719 code=0x7ffc0000
[  427.208872][   T29] audit: type=1326 audit(1730352148.544:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10276 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f36b937e719 code=0x7ffc0000
[  427.304764][   T29] audit: type=1326 audit(1730352148.544:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10276 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36b937e719 code=0x7ffc0000
[  427.360676][T10293] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1175'.
[  427.377408][   T29] audit: type=1326 audit(1730352148.544:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10276 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36b937e719 code=0x7ffc0000
[  427.440182][   T29] audit: type=1326 audit(1730352148.574:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10276 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f36b937e719 code=0x7ffc0000
[  427.511907][   T29] audit: type=1326 audit(1730352148.574:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10276 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36b937e719 code=0x7ffc0000
[  427.663327][    T8] gspca_topro: Sensor cx0342
[  427.674594][   T29] audit: type=1326 audit(1730352148.574:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10276 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36b937e719 code=0x7ffc0000
[  427.723329][   T29] audit: type=1326 audit(1730352148.574:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10276 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f36b937e719 code=0x7ffc0000
[  427.814748][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  427.828847][ T5203] udevd[5203]: worker [6404] terminated by signal 33 (Unknown signal 33)
[  427.838897][   T29] audit: type=1326 audit(1730352148.574:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10276 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36b937e719 code=0x7ffc0000
[  427.857732][   T25] usb 2-1: Firmware version (0.0) predates our first public release.
[  427.861646][ T5203] udevd[5203]: worker [6404] failed while handling '/devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.9/video4linux/video103'
[  427.871467][   T25] usb 2-1: Please update to version 0.2 or newer
[  427.897061][T10266] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  427.928608][T10298] syzkaller1: entered promiscuous mode
[  427.934180][T10298] syzkaller1: entered allmulticast mode
[  427.946473][T10298] erofs: (device nbd3): erofs_read_superblock: cannot find valid erofs superblock
[  428.034957][    T8] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  428.095221][   T35] wlan1: Trigger new scan to find an IBSS to join
[  428.198190][    T8] usb 5-1: no configurations
[  428.203007][    T8] usb 5-1: can't read configurations, error -22
[  428.356470][    T8] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[  428.691597][ T5878] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  428.715259][    T8] usb 5-1: no configurations
[  428.720204][    T8] usb 5-1: can't read configurations, error -22
[  428.727672][    T8] usb usb5-port1: attempt power cycle
[  428.905196][ T6356] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  428.920315][ T5878] usb 2-1: USB disconnect, device number 31
[  429.738922][   T25] usb 6-1: USB disconnect, device number 22
[  429.744568][    T8] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  429.846895][    T8] usb 5-1: no configurations
[  429.851630][    T8] usb 5-1: can't read configurations, error -22
[  429.873222][T10319] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1183'.
[  430.125383][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  430.186719][    T8] usb 5-1: new high-speed USB device number 41 using dummy_hcd
[  430.209066][T10330] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1186'.
[  430.225894][    T8] usb 5-1: no configurations
[  430.230988][    T8] usb 5-1: can't read configurations, error -22
[  430.238345][    T8] usb usb5-port1: unable to enumerate USB device
[  430.394756][   T25] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  430.556922][   T25] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  430.574154][   T25] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  430.602112][   T25] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  430.619273][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  430.632674][   T25] usb 6-1: SerialNumber: syz
[  430.863290][   T25] usb 6-1: 0:2 : does not exist
[  430.870611][   T25] usb 6-1: unit 255 not found!
[  430.889354][   T25] usb 6-1: USB disconnect, device number 23
[  431.136042][T10339] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1189'.
[  431.136803][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  431.696276][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  432.399839][ T7247] wlan1: Trigger new scan to find an IBSS to join
[  432.564940][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  432.576344][ T5910] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  432.843229][    T8] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  433.022927][    T8] usb 6-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  433.047260][    T8] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  433.076990][    T8] usb 6-1: Product: syz
[  433.090903][    T8] usb 6-1: Manufacturer: syz
[  433.104859][    T8] usb 6-1: SerialNumber: syz
[  433.119496][    T8] usb 6-1: config 0 descriptor??
[  433.505706][   T29] kauditd_printk_skb: 1 callbacks suppressed
[  433.505751][   T29] audit: type=1326 audit(1730352154.914:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10344 comm="syz.5.1192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  433.841854][   T29] audit: type=1326 audit(1730352154.914:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10344 comm="syz.5.1192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  434.115653][ T6356] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  434.125008][   T29] audit: type=1326 audit(1730352154.914:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10344 comm="syz.5.1192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  434.135625][ T6735] wlan1: Creating new IBSS network, BSSID 06:6c:f2:5f:28:1f
[  434.189134][    T8] usb 6-1: Firmware version (0.0) predates our first public release.
[  434.207696][   T29] audit: type=1326 audit(1730352154.914:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10344 comm="syz.5.1192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  434.238338][    T8] usb 6-1: Please update to version 0.2 or newer
[  434.334211][   T29] audit: type=1326 audit(1730352154.914:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10344 comm="syz.5.1192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  434.377820][   T29] audit: type=1326 audit(1730352154.914:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10344 comm="syz.5.1192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  434.384708][T10366] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1197'.
[  434.399857][   T29] audit: type=1326 audit(1730352154.924:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10344 comm="syz.5.1192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  434.430950][   T29] audit: type=1326 audit(1730352154.924:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10344 comm="syz.5.1192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  434.757363][ T5910] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  435.141177][ T6356] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  435.735785][ T6356] usb 6-1: USB disconnect, device number 24
[  435.827424][T10389] PKCS7: Unknown OID: [4] 5.25.264.112.81.102.117
[  435.835544][T10389] PKCS7: Only support pkcs7_signedData type
[  435.907823][T10384] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1201'.
[  436.176170][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  437.243533][ T5921] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  437.841159][ T5831] Bluetooth: hci4: unexpected event for opcode 0x1408
[  437.954323][ T5910] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  438.104492][T10416] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1210'.
[  438.348422][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  438.595938][T10419] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1211'.
[  438.955587][T10431] netlink: 'syz.4.1216': attribute type 16 has an invalid length.
[  438.963484][T10431] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1216'.
[  440.124870][ T5921] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  440.406637][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  440.413379][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  440.995320][ T5910] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  441.171026][ T5921] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[  441.255960][ T6356] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  441.437313][ T5921] usb 5-1: Using ep0 maxpacket: 8
[  441.463905][ T5921] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  441.714644][ T5921] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  441.724768][ T5921] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  441.734626][ T5921] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  441.745476][ T5921] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  441.758938][ T5921] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  441.768294][ T5921] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  442.098174][ T5921] usb 5-1: usb_control_msg returned -32
[  442.103810][ T5921] usbtmc 5-1:16.0: can't read capabilities
[  442.147236][T10469] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1226'.
[  442.174913][ T5878] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  442.214594][ T5910] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  442.334764][ T5921] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  442.369140][ T5910] usb 4-1: config 0 has an invalid descriptor of length 109, skipping remainder of the config
[  442.392269][ T5910] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  442.418133][ T5910] usb 4-1: New USB device found, idVendor=06cb, idProduct=73f5, bcdDevice= 0.00
[  442.440197][ T5910] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  442.465774][ T5910] usb 4-1: config 0 descriptor??
[  442.598510][T10475] netlink: 'syz.1.1228': attribute type 10 has an invalid length.
[  442.965263][ T6356] usb 4-1: USB disconnect, device number 27
[  443.765490][ T5921] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  443.890090][T10489] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1231'.
[  444.255639][ T5878] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  444.816402][ T6356] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  445.146534][ T6356] usb 5-1: USB disconnect, device number 42
[  445.357737][T10509] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1237'.
[  445.660232][T10521] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1241'.
[  445.691981][T10521] netlink: 'syz.0.1241': attribute type 12 has an invalid length.
[  445.735382][T10521] netlink: 197276 bytes leftover after parsing attributes in process `syz.0.1241'.
[  445.785866][T10524] Cannot find add_set index 0 as target
[  445.854872][ T6356] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  446.566172][T10534] usb usb8: usbfs: process 10534 (syz.3.1243) did not claim interface 0 before use
[  446.895853][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  447.637494][ T5910] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  447.780663][T10542] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1245'.
[  447.935742][ T6356] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  448.243791][T10550] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1248'.
[  448.633947][T10558] Smack: duplicate mount options
[  448.970877][T10567] FAULT_INJECTION: forcing a failure.
[  448.970877][T10567] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  448.990171][ T5921] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  449.011773][T10567] CPU: 0 UID: 0 PID: 10567 Comm: syz.3.1252 Not tainted 6.12.0-rc5-syzkaller-00047-g4236f913808c #0
[  449.022585][T10567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  449.032667][T10567] Call Trace:
[  449.036007][T10567]  <TASK>
[  449.038946][T10567]  dump_stack_lvl+0x241/0x360
[  449.043625][T10567]  ? __pfx_dump_stack_lvl+0x10/0x10
[  449.048837][T10567]  ? __pfx__printk+0x10/0x10
[  449.053467][T10567]  ? snprintf+0xda/0x120
[  449.057745][T10567]  should_fail_ex+0x3b0/0x4e0
[  449.062458][T10567]  _copy_to_user+0x31/0xb0
[  449.066917][T10567]  simple_read_from_buffer+0xca/0x150
[  449.072324][T10567]  proc_fail_nth_read+0x1e9/0x250
[  449.077385][T10567]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  449.082967][T10567]  ? rw_verify_area+0x55e/0x6f0
[  449.087854][T10567]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  449.093433][T10567]  vfs_read+0x1fc/0xb70
[  449.097617][T10567]  ? fdget_pos+0x24e/0x320
[  449.102042][T10567]  ? __pfx_vfs_read+0x10/0x10
[  449.106726][T10567]  ? __fget_files+0x3f3/0x470
[  449.111411][T10567]  ? fdget_pos+0x24e/0x320
[  449.115836][T10567]  ksys_read+0x183/0x2b0
[  449.120092][T10567]  ? __pfx_ksys_read+0x10/0x10
[  449.124854][T10567]  ? do_syscall_64+0x100/0x230
[  449.129641][T10567]  ? do_syscall_64+0xb6/0x230
[  449.134328][T10567]  do_syscall_64+0xf3/0x230
[  449.138830][T10567]  ? clear_bhb_loop+0x35/0x90
[  449.143507][T10567]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  449.149400][T10567] RIP: 0033:0x7f488317d15c
[  449.153814][T10567] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  449.173424][T10567] RSP: 002b:00007f4883fae030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  449.181849][T10567] RAX: ffffffffffffffda RBX: 00007f4883335f80 RCX: 00007f488317d15c
[  449.190170][T10567] RDX: 000000000000000f RSI: 00007f4883fae0a0 RDI: 0000000000000004
[  449.198142][T10567] RBP: 00007f4883fae090 R08: 0000000000000000 R09: 0000000000000000
[  449.206107][T10567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  449.214077][T10567] R13: 0000000000000000 R14: 00007f4883335f80 R15: 00007ffc31390ae8
[  449.222062][T10567]  </TASK>
[  449.330339][T10569] usb usb8: usbfs: process 10569 (syz.4.1253) did not claim interface 0 before use
[  449.919443][T10577] fuse: Bad value for 'fd'
[  450.015621][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  450.654895][ T5878] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  451.056000][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  452.039762][ T5910] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  452.103933][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  452.775988][T10606] FAULT_INJECTION: forcing a failure.
[  452.775988][T10606] name failslab, interval 1, probability 0, space 0, times 0
[  452.818754][T10606] CPU: 0 UID: 0 PID: 10606 Comm: syz.0.1265 Not tainted 6.12.0-rc5-syzkaller-00047-g4236f913808c #0
[  452.829660][T10606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  452.839747][T10606] Call Trace:
[  452.843048][T10606]  <TASK>
[  452.845997][T10606]  dump_stack_lvl+0x241/0x360
[  452.850707][T10606]  ? __pfx_dump_stack_lvl+0x10/0x10
[  452.855930][T10606]  ? __pfx__printk+0x10/0x10
[  452.860540][T10606]  ? __kmalloc_node_track_caller_noprof+0xb2/0x440
[  452.867065][T10606]  ? __pfx___might_resched+0x10/0x10
[  452.872377][T10606]  should_fail_ex+0x3b0/0x4e0
[  452.877085][T10606]  should_failslab+0xac/0x100
[  452.881799][T10606]  __kmalloc_node_track_caller_noprof+0xda/0x440
[  452.888150][T10606]  ? __request_module+0x2d5/0x650
[  452.893201][T10606]  ? __request_module+0x2b9/0x650
[  452.898347][T10606]  kstrdup+0x3a/0x80
[  452.902273][T10606]  __request_module+0x2d5/0x650
[  452.907156][T10606]  ? __mutex_unlock_slowpath+0x21d/0x750
[  452.912815][T10606]  ? __pfx___request_module+0x10/0x10
[  452.918221][T10606]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  452.924237][T10606]  ? lockdep_hardirqs_on+0x99/0x150
[  452.929470][T10606]  ? nft_pernet+0x23/0x240
[  452.933895][T10606]  nf_tables_abort+0x7cc9/0x7f10
[  452.938833][T10606]  ? nf_tables_newflowtable+0x1ed4/0x2480
[  452.944659][T10606]  ? __pfx_nf_tables_abort+0x10/0x10
[  452.950028][T10606]  ? __pfx_nf_tables_newflowtable+0x10/0x10
[  452.955934][T10606]  ? __nla_parse+0x40/0x60
[  452.960354][T10606]  nfnetlink_rcv+0x1796/0x2ab0
[  452.965141][T10606]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  452.970285][T10606]  ? netlink_deliver_tap+0x2e/0x1b0
[  452.975481][T10606]  ? skb_clone+0x240/0x390
[  452.979923][T10606]  ? __pfx_lock_release+0x10/0x10
[  452.984969][T10606]  ? netlink_deliver_tap+0x2e/0x1b0
[  452.990166][T10606]  netlink_unicast+0x7f6/0x990
[  452.994931][T10606]  ? __pfx_netlink_unicast+0x10/0x10
[  453.000211][T10606]  ? __virt_addr_valid+0x183/0x530
[  453.005328][T10606]  ? __check_object_size+0x48e/0x900
[  453.010621][T10606]  netlink_sendmsg+0x8e4/0xcb0
[  453.015394][T10606]  ? __pfx_netlink_sendmsg+0x10/0x10
[  453.020679][T10606]  ? tomoyo_socket_sendmsg_permission+0x12e/0x420
[  453.027097][T10606]  ? __pfx_inet6_sendmsg+0x10/0x10
[  453.032214][T10606]  ? __pfx_netlink_sendmsg+0x10/0x10
[  453.037506][T10606]  __sock_sendmsg+0x221/0x270
[  453.042190][T10606]  ____sys_sendmsg+0x52a/0x7e0
[  453.046957][T10606]  ? __pfx_____sys_sendmsg+0x10/0x10
[  453.052257][T10606]  __sys_sendmsg+0x292/0x380
[  453.056852][T10606]  ? __pfx___sys_sendmsg+0x10/0x10
[  453.061973][T10606]  ? __pfx_vfs_write+0x10/0x10
[  453.066755][T10606]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  453.073093][T10606]  ? do_syscall_64+0x100/0x230
[  453.077882][T10606]  ? do_syscall_64+0xb6/0x230
[  453.082557][T10606]  do_syscall_64+0xf3/0x230
[  453.087059][T10606]  ? clear_bhb_loop+0x35/0x90
[  453.091770][T10606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  453.097663][T10606] RIP: 0033:0x7fcbfd17e719
[  453.102085][T10606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  453.121697][T10606] RSP: 002b:00007fcbfdf48038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  453.130214][T10606] RAX: ffffffffffffffda RBX: 00007fcbfd335f80 RCX: 00007fcbfd17e719
[  453.138191][T10606] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[  453.146455][T10606] RBP: 00007fcbfdf48090 R08: 0000000000000000 R09: 0000000000000000
[  453.154440][T10606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  453.162435][T10606] R13: 0000000000000000 R14: 00007fcbfd335f80 R15: 00007fff88c5b358
[  453.170443][T10606]  </TASK>
[  453.184510][ T6356] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  453.521074][T10611] usb usb8: usbfs: process 10611 (syz.3.1266) did not claim interface 0 before use
[  453.525122][T10610] FAULT_INJECTION: forcing a failure.
[  453.525122][T10610] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  453.868492][T10610] CPU: 1 UID: 0 PID: 10610 Comm: syz.0.1267 Not tainted 6.12.0-rc5-syzkaller-00047-g4236f913808c #0
[  453.879401][T10610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  453.889485][T10610] Call Trace:
[  453.892787][T10610]  <TASK>
[  453.895735][T10610]  dump_stack_lvl+0x241/0x360
[  453.900451][T10610]  ? __pfx_dump_stack_lvl+0x10/0x10
[  453.905677][T10610]  ? __pfx__printk+0x10/0x10
[  453.910390][T10610]  ? snprintf+0xda/0x120
[  453.914666][T10610]  should_fail_ex+0x3b0/0x4e0
[  453.919373][T10610]  _copy_to_user+0x31/0xb0
[  453.923821][T10610]  simple_read_from_buffer+0xca/0x150
[  453.929226][T10610]  proc_fail_nth_read+0x1e9/0x250
[  453.934287][T10610]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  453.939866][T10610]  ? rw_verify_area+0x55e/0x6f0
[  453.944741][T10610]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  453.950315][T10610]  vfs_read+0x1fc/0xb70
[  453.954508][T10610]  ? fdget_pos+0x24e/0x320
[  453.958951][T10610]  ? __pfx_vfs_read+0x10/0x10
[  453.963661][T10610]  ? __fget_files+0x3f3/0x470
[  453.968373][T10610]  ? fdget_pos+0x24e/0x320
[  453.972818][T10610]  ksys_read+0x183/0x2b0
[  453.977093][T10610]  ? __pfx_ksys_read+0x10/0x10
[  453.981889][T10610]  ? do_syscall_64+0x100/0x230
[  453.986684][T10610]  ? do_syscall_64+0xb6/0x230
[  453.991391][T10610]  do_syscall_64+0xf3/0x230
[  453.995922][T10610]  ? clear_bhb_loop+0x35/0x90
[  454.000629][T10610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  454.006547][T10610] RIP: 0033:0x7fcbfd17d15c
[  454.010984][T10610] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  454.030618][T10610] RSP: 002b:00007fcbfdf48030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  454.039068][T10610] RAX: ffffffffffffffda RBX: 00007fcbfd335f80 RCX: 00007fcbfd17d15c
[  454.047156][T10610] RDX: 000000000000000f RSI: 00007fcbfdf480a0 RDI: 0000000000000005
[  454.055157][T10610] RBP: 00007fcbfdf48090 R08: 0000000000000000 R09: 0000000000000000
[  454.063163][T10610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  454.071161][T10610] R13: 0000000000000000 R14: 00007fcbfd335f80 R15: 00007fff88c5b358
[  454.079178][T10610]  </TASK>
[  454.257812][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  454.729678][T10616] tipc: Failed to remove unknown binding: 66,1,1/1:3875128865/3875128867
[  454.781475][T10616] tipc: Failed to remove unknown binding: 66,1,1/1:3875128865/3875128867
[  456.493925][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  456.502151][ T5910] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  456.774620][ T5878] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[  456.936646][ T5878] usb 2-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  456.946144][ T5878] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  456.973259][ T5878] usb 2-1: config 0 descriptor??
[  456.996851][ T5878] gspca_main: cpia1-2.14.0 probing 0813:0001
[  457.444501][ T5878] cpia1 2-1:0.0: unexpected state after lo power cmd: 00
[  457.996446][ T6356] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  458.023602][ T5878] cpia1 2-1:0.0: only firmware version 1 is supported (got: 34)
[  458.422000][ T5880] usb 2-1: USB disconnect, device number 32
[  459.055271][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  459.136956][T10663] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1285'.
[  460.195686][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  460.204793][ T6356] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  461.531587][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  461.539964][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  462.440248][T10691] FAULT_INJECTION: forcing a failure.
[  462.440248][T10691] name failslab, interval 1, probability 0, space 0, times 0
[  462.453430][T10691] CPU: 1 UID: 0 PID: 10691 Comm: syz.3.1291 Not tainted 6.12.0-rc5-syzkaller-00047-g4236f913808c #0
[  462.464224][T10691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  462.474309][T10691] Call Trace:
[  462.477616][T10691]  <TASK>
[  462.480564][T10691]  dump_stack_lvl+0x241/0x360
[  462.485277][T10691]  ? __pfx_dump_stack_lvl+0x10/0x10
[  462.490502][T10691]  ? __pfx__printk+0x10/0x10
[  462.495396][T10691]  ? __kmalloc_cache_noprof+0x44/0x2c0
[  462.500883][T10691]  ? __pfx___might_resched+0x10/0x10
[  462.506209][T10691]  should_fail_ex+0x3b0/0x4e0
[  462.510923][T10691]  should_failslab+0xac/0x100
[  462.515645][T10691]  ? rxrpc_alloc_data_txbuf+0x84/0xe10
[  462.521134][T10691]  __kmalloc_cache_noprof+0x6c/0x2c0
[  462.526451][T10691]  ? lockdep_hardirqs_on+0x99/0x150
[  462.531684][T10691]  rxrpc_alloc_data_txbuf+0x84/0xe10
[  462.537004][T10691]  ? remove_wait_queue+0x33/0x130
[  462.542056][T10691]  ? __pfx_none_alloc_txbuf+0x10/0x10
[  462.547461][T10691]  rxrpc_send_data+0xb08/0x27b0
[  462.552345][T10691]  ? rxrpc_send_data+0x268/0x27b0
[  462.557409][T10691]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  462.563785][T10691]  ? try_to_wake_up+0x98b/0x14b0
[  462.568762][T10691]  ? __pfx_rxrpc_send_data+0x10/0x10
[  462.574089][T10691]  ? do_raw_spin_unlock+0x13c/0x8b0
[  462.579320][T10691]  ? __pfx_default_wake_function+0x10/0x10
[  462.585168][T10691]  ? rcu_is_watching+0x15/0xb0
[  462.589963][T10691]  rxrpc_do_sendmsg+0x1569/0x1910
[  462.595038][T10691]  ? __pfx_rxrpc_do_sendmsg+0x10/0x10
[  462.600468][T10691]  ? rxrpc_sendmsg+0x578/0x920
[  462.605266][T10691]  ? __pfx_rxrpc_sendmsg+0x10/0x10
[  462.610404][T10691]  __sock_sendmsg+0x221/0x270
[  462.615121][T10691]  ____sys_sendmsg+0x52a/0x7e0
[  462.619926][T10691]  ? __pfx_____sys_sendmsg+0x10/0x10
[  462.625251][T10691]  __sys_sendmsg+0x292/0x380
[  462.629877][T10691]  ? __pfx___sys_sendmsg+0x10/0x10
[  462.635024][T10691]  ? __pfx_vfs_write+0x10/0x10
[  462.639843][T10691]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  462.646206][T10691]  ? do_syscall_64+0x100/0x230
[  462.651001][T10691]  ? do_syscall_64+0xb6/0x230
[  462.655709][T10691]  do_syscall_64+0xf3/0x230
[  462.660238][T10691]  ? clear_bhb_loop+0x35/0x90
[  462.664940][T10691]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  462.670853][T10691] RIP: 0033:0x7f488317e719
[  462.675291][T10691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  462.694923][T10691] RSP: 002b:00007f4883fae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  462.703371][T10691] RAX: ffffffffffffffda RBX: 00007f4883335f80 RCX: 00007f488317e719
[  462.711371][T10691] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  462.719382][T10691] RBP: 00007f4883fae090 R08: 0000000000000000 R09: 0000000000000000
[  462.727377][T10691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  462.735374][T10691] R13: 0000000000000000 R14: 00007f4883335f80 R15: 00007ffc31390ae8
[  462.743479][T10691]  </TASK>
[  463.030768][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  463.304000][ T5878] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  463.319013][T10694] input: syz1 as /devices/virtual/input/input39
[  463.378539][T10695] xt_policy: neither incoming nor outgoing policy selected
[  463.834267][T10701] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1295'.
[  464.102834][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  465.136492][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  466.673155][ T5878] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  466.732185][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  467.986898][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  468.324065][ T5834] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  468.324963][T10743] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  468.342041][ T5834] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  468.353142][ T5834] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  468.361583][ T5834] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  468.375269][ T5834] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  468.383782][ T5834] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  468.650288][T10743] wlan1: authenticate with 50:50:d0:50:50:50 (local address=08:02:11:00:00:01)
[  468.695237][T10743] wlan1: send auth to 50:50:d0:50:50:50 (try 1/3)
[  468.703410][ T6734] wlan1: send auth to 50:50:d0:50:50:50 (try 2/3)
[  468.724796][ T6734] wlan1: send auth to 50:50:d0:50:50:50 (try 3/3)
[  468.731438][ T6734] wlan1: authentication with 50:50:d0:50:50:50 timed out
[  468.749853][T10751] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  468.814710][T10743] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1307'.
[  468.938649][T10751] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  468.972507][ T1081] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.018622][T10743] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[  469.034586][T10743] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[  469.057251][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  469.072960][ T6734] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  469.149253][ T1081] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.163238][ T6734] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[  469.178116][T10747] chnl_net:caif_netlink_parms(): no params data found
[  469.275646][ T6734] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[  469.315852][T10747] bridge0: port 1(bridge_slave_0) entered blocking state
[  469.323046][T10747] bridge0: port 1(bridge_slave_0) entered disabled state
[  469.331315][T10747] bridge_slave_0: entered allmulticast mode
[  469.339091][T10747] bridge_slave_0: entered promiscuous mode
[  469.354840][ T5880] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  469.384784][   T11] wlan1: authentication with 08:02:11:00:00:00 timed out
[  469.523556][ T5880] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  469.583237][ T5880] usb 4-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  469.617384][ T1081] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.729171][ T5880] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  469.879186][ T5880] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  469.895411][T10747] bridge0: port 2(bridge_slave_1) entered blocking state
[  469.907320][ T5910] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  469.916238][T10747] bridge0: port 2(bridge_slave_1) entered disabled state
[  469.923607][T10747] bridge_slave_1: entered allmulticast mode
[  469.930924][T10747] bridge_slave_1: entered promiscuous mode
[  469.958910][ T5880] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  469.971998][ T5880] usb 4-1: invalid MIDI out EP 0
[  469.992438][ T1081] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.003594][ T5880] snd-usb-audio 4-1:27.0: probe with driver snd-usb-audio failed with error -22
[  470.046275][T10747] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  470.059078][T10747] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  470.096266][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  470.200703][T10747] team0: Port device team_slave_0 added
[  470.217784][T10747] team0: Port device team_slave_1 added
[  470.319779][T10747] batman_adv: batadv0: Adding interface: batadv_slave_0
[  470.327135][T10747] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  470.360950][T10747] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  471.201099][ T5921] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  471.209314][ T5921] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  471.209454][ T5834] Bluetooth: hci1: command tx timeout
[  471.237713][T10747] batman_adv: batadv0: Adding interface: batadv_slave_1
[  471.244861][T10747] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  471.364601][T10747] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  471.419764][ T1081] bridge_slave_1: left allmulticast mode
[  471.426616][ T1081] bridge_slave_1: left promiscuous mode
[  471.437790][ T1081] bridge0: port 2(bridge_slave_1) entered disabled state
[  471.481841][ T1081] bridge_slave_0: left promiscuous mode
[  471.491515][ T1081] bridge0: port 1(bridge_slave_0) entered disabled state
[  472.255980][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  472.774605][ T5878] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[  472.910335][ T5878] usb 2-1: device descriptor read/64, error -71
[  472.975898][ T5910] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  473.019705][ T1081] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  473.032010][ T1081] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  473.045312][ T1081] bond0 (unregistering): Released all slaves
[  473.080075][T10747] hsr_slave_0: entered promiscuous mode
[  473.086684][T10747] hsr_slave_1: entered promiscuous mode
[  473.093287][T10747] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  473.101034][T10747] Cannot create hsr debugfs directory
[  473.169896][ T5878] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[  473.294533][ T5834] Bluetooth: hci1: command tx timeout
[  473.294967][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  473.314618][ T5878] usb 2-1: device descriptor read/64, error -71
[  473.426606][ T5878] usb usb2-port1: attempt power cycle
[  473.622018][ T1081] mac80211_hwsim hwsim3 wlan0 (unregistering): left promiscuous mode
[  473.793477][T10747] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  473.855055][ T5878] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  473.973431][ T5878] usb 2-1: device descriptor read/8, error -71
[  474.039021][T10805] usb usb8: usbfs: process 10805 (syz.5.1321) did not claim interface 0 before use
[  474.056871][T10747] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  474.305660][ T5878] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  474.349929][ T6356] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  474.416582][ T5878] usb 2-1: device descriptor read/8, error -71
[  474.538802][T10747] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  474.543858][    T8] usb 4-1: USB disconnect, device number 28
[  474.567113][T10747] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  474.611969][ T5878] usb usb2-port1: unable to enumerate USB device
[  474.787248][ T1081] hsr_slave_0: left promiscuous mode
[  475.762990][ T6356] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  475.771814][ T5834] Bluetooth: hci1: command tx timeout
[  475.824050][ T1081] hsr_slave_1: left promiscuous mode
[  476.759959][ T5831] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  476.772325][ T5831] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  476.789902][ T5831] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  476.799211][ T5831] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  476.807301][ T5831] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  476.815521][ T5921] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  476.824990][ T5831] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  476.901078][ T1081] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  476.924622][ T1081] batman_adv: batadv0: Removing interface: batadv_slave_0
[  476.926000][ T5878] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  476.967357][ T1081] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  476.992525][ T1081] batman_adv: batadv0: Removing interface: batadv_slave_1
[  477.015037][ T1081] veth1_macvtap: left promiscuous mode
[  477.020703][ T1081] veth0_macvtap: left promiscuous mode
[  477.026365][ T1081] veth1_vlan: left promiscuous mode
[  477.031665][ T1081] veth0_vlan: left promiscuous mode
[  477.118176][ T1081] infiniband syz2: set down
[  477.969030][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  477.978069][ T5831] Bluetooth: hci1: command tx timeout
[  477.992655][T10835] usb usb8: usbfs: process 10835 (syz.3.1327) did not claim interface 0 before use
[  478.900286][ T5834] Bluetooth: hci2: command tx timeout
[  478.953779][ T1081] team0 (unregistering): Port device team_slave_1 removed
[  478.963600][ T6734] smc: removing ib device syz2
[  478.978451][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  479.020383][ T1081] team0 (unregistering): Port device team_slave_0 removed
[  479.936641][ T5878] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  480.022728][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  480.174698][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  480.711110][T10747] 8021q: adding VLAN 0 to HW filter on device bond0
[  480.730884][T10747] 8021q: adding VLAN 0 to HW filter on device team0
[  480.796581][T10851] bridge_slave_0: left allmulticast mode
[  480.828949][T10851] bridge_slave_0: left promiscuous mode
[  480.875235][T10851] bridge0: port 1(bridge_slave_0) entered disabled state
[  480.979570][ T5834] Bluetooth: hci2: command tx timeout
[  481.034493][  T968] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  481.054901][ T1198] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  481.109692][T10851] bond0: (slave bond_slave_0): Releasing backup interface
[  481.185541][T10851] bond0: (slave bond_slave_1): Releasing backup interface
[  481.224637][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  481.342513][T10851] team0: Port device team_slave_0 removed
[  481.381267][T10851] team0: Port device team_slave_1 removed
[  481.398977][T10851] batman_adv: batadv0: Removing interface: batadv_slave_0
[  481.447306][T10851] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  481.456343][T10851] batman_adv: batadv0: Removing interface: batadv_slave_1
[  481.528828][ T2955] bridge0: port 1(bridge_slave_0) entered blocking state
[  481.536202][ T2955] bridge0: port 1(bridge_slave_0) entered forwarding state
[  481.673065][ T6734] bridge0: port 2(bridge_slave_1) entered blocking state
[  481.680278][ T6734] bridge0: port 2(bridge_slave_1) entered forwarding state
[  482.254714][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  482.307829][ T6356] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  482.651185][ T1081] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  482.684195][T10881] netlink: 'syz.3.1338': attribute type 9 has an invalid length.
[  482.694014][T10823] chnl_net:caif_netlink_parms(): no params data found
[  482.700774][T10881] netlink: 134672 bytes leftover after parsing attributes in process `syz.3.1338'.
[  482.725760][T10881] openvswitch: netlink: Key 2 has unexpected len 20 expected 4
[  482.861368][T10878] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1338'.
[  483.055019][ T5834] Bluetooth: hci2: command tx timeout
[  483.304678][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  483.404347][ T1081] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  483.882800][T10891] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1341'.
[  484.495169][ T1081] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.978938][ T1081] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  485.066489][T10823] bridge0: port 1(bridge_slave_0) entered blocking state
[  485.073867][T10823] bridge0: port 1(bridge_slave_0) entered disabled state
[  485.082034][T10823] bridge_slave_0: entered allmulticast mode
[  485.090560][T10823] bridge_slave_0: entered promiscuous mode
[  485.107934][T10823] bridge0: port 2(bridge_slave_1) entered blocking state
[  485.132094][T10823] bridge0: port 2(bridge_slave_1) entered disabled state
[  485.139978][ T5834] Bluetooth: hci2: command tx timeout
[  485.183545][T10823] bridge_slave_1: entered allmulticast mode
[  485.193899][T10907] netlink: 'syz.1.1343': attribute type 3 has an invalid length.
[  485.216244][T10823] bridge_slave_1: entered promiscuous mode
[  485.298638][T10823] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  485.301230][T10904] net_ratelimit: 1 callbacks suppressed
[  485.301249][T10904] dccp_close: ABORT with 20 bytes unread
[  485.348560][T10823] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  485.365633][T10747] 8021q: adding VLAN 0 to HW filter on device batadv0
[  485.374633][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  485.383232][T10911] fuse: Bad value for 'fd'
[  485.992124][T10823] team0: Port device team_slave_0 added
[  486.009572][T10823] team0: Port device team_slave_1 added
[  486.032655][ T1081] bridge_slave_1: left allmulticast mode
[  486.050343][ T1081] bridge_slave_1: left promiscuous mode
[  486.063698][ T1081] bridge0: port 2(bridge_slave_1) entered disabled state
[  486.080954][ T1081] bridge_slave_0: left allmulticast mode
[  486.089204][ T1081] bridge_slave_0: left promiscuous mode
[  486.100186][ T1081] bridge0: port 1(bridge_slave_0) entered disabled state
[  486.424608][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  486.869631][ T1081] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  486.881313][ T1081] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  486.892531][ T1081] bond0 (unregistering): Released all slaves
[  486.904716][ T1081] bond1 (unregistering): Released all slaves
[  487.016454][T10823] batman_adv: batadv0: Adding interface: batadv_slave_0
[  487.023442][T10823] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  487.093120][T10823] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  487.116944][ T1081] tipc: Disabling bearer <udp:syz1>
[  487.123050][ T1081] tipc: Left network mode
[  487.125632][T10823] batman_adv: batadv0: Adding interface: batadv_slave_1
[  487.269500][T10823] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  487.309443][T10823] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  488.425785][T10747] veth0_vlan: entered promiscuous mode
[  488.457831][T10747] veth1_vlan: entered promiscuous mode
[  488.685193][T10936] syz.1.1348 (10936): drop_caches: 2
[  488.711860][T10936] syz.1.1348 (10936): drop_caches: 2
[  488.857444][T10747] veth0_macvtap: entered promiscuous mode
[  488.913367][T10823] hsr_slave_0: entered promiscuous mode
[  488.925868][T10823] hsr_slave_1: entered promiscuous mode
[  488.933900][T10823] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  488.966287][T10823] Cannot create hsr debugfs directory
[  489.038476][T10747] veth1_macvtap: entered promiscuous mode
[  489.083292][T10747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  489.098945][T10747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  489.109636][T10747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  489.121295][T10747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  489.132482][T10747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  489.143436][T10747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  489.157515][T10747] batman_adv: batadv0: Interface activated: batadv_slave_0
[  489.237577][T10942] FAULT_INJECTION: forcing a failure.
[  489.237577][T10942] name failslab, interval 1, probability 0, space 0, times 0
[  489.250712][T10942] CPU: 1 UID: 0 PID: 10942 Comm: syz.3.1349 Not tainted 6.12.0-rc5-syzkaller-00047-g4236f913808c #0
[  489.261502][T10942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  489.271577][T10942] Call Trace:
[  489.274868][T10942]  <TASK>
[  489.277814][T10942]  dump_stack_lvl+0x241/0x360
[  489.282514][T10942]  ? __pfx_dump_stack_lvl+0x10/0x10
[  489.287734][T10942]  ? __pfx__printk+0x10/0x10
[  489.292341][T10942]  ? __kmalloc_noprof+0xb0/0x400
[  489.297298][T10942]  ? __pfx___might_resched+0x10/0x10
[  489.302606][T10942]  should_fail_ex+0x3b0/0x4e0
[  489.307310][T10942]  ? memcg_list_lru_alloc+0x235/0xd00
[  489.312744][T10942]  should_failslab+0xac/0x100
[  489.317442][T10942]  ? memcg_list_lru_alloc+0x235/0xd00
[  489.322827][T10942]  __kmalloc_noprof+0xd8/0x400
[  489.327627][T10942]  memcg_list_lru_alloc+0x235/0xd00
[  489.332850][T10942]  ? __pfx_lock_release+0x10/0x10
[  489.337903][T10942]  ? __pfx_memcg_list_lru_alloc+0x10/0x10
[  489.343745][T10942]  ? get_mem_cgroup_from_objcg+0x1af/0x1d0
[  489.349564][T10942]  ? get_mem_cgroup_from_objcg+0x1a/0x1d0
[  489.355314][T10942]  __memcg_slab_post_alloc_hook+0x140/0x7e0
[  489.361251][T10942]  ? alloc_inode+0x87/0x1a0
[  489.365777][T10942]  kmem_cache_alloc_lru_noprof+0x1e6/0x2b0
[  489.371630][T10942]  alloc_inode+0x87/0x1a0
[  489.375991][T10942]  ? __pfx_gadgetfs_fill_super+0x10/0x10
[  489.381654][T10942]  new_inode+0x22/0x1d0
[  489.385923][T10942]  ? __pfx_gadgetfs_fill_super+0x10/0x10
[  489.391580][T10942]  gadgetfs_fill_super+0x105/0x590
[  489.396713][T10942]  ? __pfx_gadgetfs_fill_super+0x10/0x10
[  489.402367][T10942]  get_tree_single+0xbc/0x150
[  489.407073][T10942]  vfs_get_tree+0x90/0x2b0
[  489.411518][T10942]  vfs_cmd_create+0xa0/0x1f0
[  489.416119][T10942]  ? __se_sys_fsconfig+0xa15/0xf70
[  489.421245][T10942]  __se_sys_fsconfig+0xa1f/0xf70
[  489.426208][T10942]  ? __pfx___se_sys_fsconfig+0x10/0x10
[  489.431679][T10942]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  489.437775][T10942]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  489.444126][T10942]  ? do_syscall_64+0x100/0x230
[  489.448909][T10942]  ? __x64_sys_fsconfig+0x20/0xc0
[  489.453948][T10942]  do_syscall_64+0xf3/0x230
[  489.458468][T10942]  ? clear_bhb_loop+0x35/0x90
[  489.463170][T10942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  489.469081][T10942] RIP: 0033:0x7f488317e719
[  489.473514][T10942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  489.493137][T10942] RSP: 002b:00007f4883f6c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  489.501589][T10942] RAX: ffffffffffffffda RBX: 00007f4883336130 RCX: 00007f488317e719
[  489.509586][T10942] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[  489.517575][T10942] RBP: 00007f4883f6c090 R08: 0000000000000000 R09: 0000000000000000
[  489.525568][T10942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  489.533643][T10942] R13: 0000000000000000 R14: 00007f4883336130 R15: 00007ffc31390ae8
[  489.541621][T10942]  </TASK>
[  489.658117][T10747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  489.669665][T10747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  489.679980][T10747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  489.691751][T10747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  489.705787][T10747] batman_adv: batadv0: Interface activated: batadv_slave_1
[  489.736762][ T1081] mac80211_hwsim hwsim6 wlan0 (unregistering): left promiscuous mode
[  489.864244][T10747] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  489.875882][T10747] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  489.885688][T10747] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  489.894418][T10747] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  489.979618][ T1081] hsr_slave_0: left promiscuous mode
[  489.986319][ T1081] hsr_slave_1: left promiscuous mode
[  489.992434][ T1081] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  490.014659][ T1081] batman_adv: batadv0: Removing interface: batadv_slave_0
[  490.036328][ T1081] veth1_macvtap: left promiscuous mode
[  490.042813][ T1081] veth0_macvtap: left promiscuous mode
[  490.048656][ T1081] veth1_vlan: left promiscuous mode
[  490.053990][ T1081] veth0_vlan: left promiscuous mode
[  490.384695][    T8] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  491.164682][    T8] usb 4-1: Using ep0 maxpacket: 16
[  491.176006][    T8] usb 4-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15
[  491.185445][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  491.193470][    T8] usb 4-1: Product: syz
[  491.198271][    T8] usb 4-1: Manufacturer: syz
[  491.203282][    T8] usb 4-1: SerialNumber: syz
[  491.220843][    T8] usb 4-1: config 0 descriptor??
[  491.232405][    T8] ssu100 4-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[  491.350399][ T1081] team0 (unregistering): Port device team_slave_1 removed
[  491.411747][ T1081] team0 (unregistering): Port device team_slave_0 removed
[  492.246471][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  492.254347][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  492.256069][    T8] ssu100 4-1:0.0: probe with driver ssu100 failed with error -5
[  492.320873][T10823] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  492.350231][T10955] /dev/sg0: Can't lookup blockdev
[  492.412071][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  492.425553][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  492.444678][T10823] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  492.480085][T10823] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  492.513115][T10823] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  493.207845][T10823] 8021q: adding VLAN 0 to HW filter on device bond0
[  493.209356][T10971] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1306'.
[  493.252973][T10823] 8021q: adding VLAN 0 to HW filter on device team0
[  493.678918][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[  493.686114][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[  494.073747][ T5910] usb 4-1: USB disconnect, device number 29
[  494.086945][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[  494.094079][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[  494.135476][T10978] netlink: 2 bytes leftover after parsing attributes in process `syz.6.1359'.
[  494.191678][T10981] netlink: 'syz.6.1359': attribute type 9 has an invalid length.
[  494.204576][T10981] netlink: 134672 bytes leftover after parsing attributes in process `syz.6.1359'.
[  494.233335][T10981] openvswitch: netlink: Key 2 has unexpected len 20 expected 4
[  494.265436][T10823] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  494.403474][T10823] 8021q: adding VLAN 0 to HW filter on device batadv0
[  494.494627][ T5921] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  494.576249][ T5910] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  494.678035][T10823] veth0_vlan: entered promiscuous mode
[  494.702187][T10823] veth1_vlan: entered promiscuous mode
[  494.731078][ T5910] usb 4-1: device descriptor read/64, error -71
[  494.768369][T10823] veth0_macvtap: entered promiscuous mode
[  494.782035][T10823] veth1_macvtap: entered promiscuous mode
[  494.796205][ T5921] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  494.800930][T10823] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  494.814759][ T5921] usb 2-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  494.824359][T10823] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  494.829106][ T5921] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  494.845448][T10823] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  494.848974][ T5921] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  494.868521][T10823] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  494.886819][T10823] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  494.907607][T10823] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  494.922932][T10823] batman_adv: batadv0: Interface activated: batadv_slave_0
[  494.937745][T10823] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  494.955627][T10823] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  494.975196][T10823] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  494.986169][ T5910] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  495.001197][T10823] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  495.015793][T10823] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  495.033506][T10823] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  495.045685][T10823] batman_adv: batadv0: Interface activated: batadv_slave_1
[  495.083842][T10823] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  495.097822][T10823] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  495.102364][ T5921] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  495.113990][ T5921] usb 2-1: invalid MIDI out EP 0
[  495.132165][T10823] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  495.141519][ T5921] snd-usb-audio 2-1:27.0: probe with driver snd-usb-audio failed with error -22
[  495.151487][ T5910] usb 4-1: device descriptor read/64, error -71
[  495.164602][T10823] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  495.275036][ T5910] usb usb4-port1: attempt power cycle
[  495.288010][ T1081] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  495.299852][ T1081] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  495.330251][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  495.340632][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  495.719233][ T5910] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  495.731406][ T5883] usb 2-1: USB disconnect, device number 37
[  495.992833][ T5910] usb 4-1: device descriptor read/8, error -71
[  496.263510][T11017] usb usb8: usbfs: process 11017 (syz.7.1365) did not claim interface 0 before use
[  496.274030][ T5910] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  496.275048][ T1198] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[  496.329035][ T5910] usb 4-1: device descriptor read/8, error -71
[  496.461617][ T1198] usb 7-1: device descriptor read/64, error -71
[  496.601333][ T5910] usb usb4-port1: unable to enumerate USB device
[  496.735139][ T1198] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[  496.862005][T11027] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1368'.
[  496.862689][T11024] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  496.894658][ T1198] usb 7-1: device descriptor read/64, error -71
[  497.004787][ T1198] usb usb7-port1: attempt power cycle
[  497.964559][ T1198] usb 7-1: new full-speed USB device number 4 using dummy_hcd
[  498.034401][ T1198] usb 7-1: device descriptor read/8, error -71
[  498.274580][ T1198] usb 7-1: new full-speed USB device number 5 using dummy_hcd
[  498.295138][ T1198] usb 7-1: device descriptor read/8, error -71
[  498.407024][ T1198] usb usb7-port1: unable to enumerate USB device
[  500.560507][T11077] Invalid logical block size (1)
[  500.704541][T11075] IPVS: set_ctl: invalid protocol: 25449 67.234.72.109:41895
[  501.042903][T11092] usb usb8: usbfs: process 11092 (syz.3.1390) did not claim interface 0 before use
[  501.265535][T11075] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  501.303840][T11075] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  501.698816][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  501.705228][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  502.463864][T11114] usb usb8: usbfs: process 11114 (syz.6.1397) did not claim interface 0 before use
[  504.525977][ T6356] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[  504.688802][T11153] input: syz1 as /devices/virtual/input/input40
[  504.734674][ T6356] usb 2-1: Using ep0 maxpacket: 8
[  504.741424][ T6356] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  504.754377][ T6356] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  504.781983][ T6356] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  504.798253][ T6356] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  504.814326][ T6356] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  504.829000][ T6356] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  504.904637][ T1198] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  505.605668][ T6356] usb 2-1: usb_control_msg returned -32
[  505.615827][ T1198] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  505.637537][ T6356] usbtmc 2-1:16.0: can't read capabilities
[  505.651152][ T1198] usb 7-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  505.667567][ T1198] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  505.676922][ T1198] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  505.875130][ T1198] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  505.882569][ T1198] usb 7-1: invalid MIDI out EP 0
[  506.534909][ T1198] snd-usb-audio 7-1:27.0: probe with driver snd-usb-audio failed with error -22
[  507.342036][   T29] audit: type=1326 audit(1730352228.816:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11179 comm="syz.5.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  507.474900][T11184] delete_channel: no stack
[  507.482027][   T29] audit: type=1326 audit(1730352228.846:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11179 comm="syz.5.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  507.689886][   T29] audit: type=1326 audit(1730352228.846:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11179 comm="syz.5.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  507.729329][   T29] audit: type=1326 audit(1730352228.846:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11179 comm="syz.5.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  507.874115][   T29] audit: type=1326 audit(1730352228.846:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11179 comm="syz.5.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  507.902547][   T29] audit: type=1326 audit(1730352228.846:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11179 comm="syz.5.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  507.930302][   T29] audit: type=1326 audit(1730352228.856:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11179 comm="syz.5.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  508.015233][ T5910] usb 7-1: USB disconnect, device number 6
[  508.116390][   T29] audit: type=1326 audit(1730352228.856:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11179 comm="syz.5.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  508.140076][   T29] audit: type=1326 audit(1730352228.856:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11179 comm="syz.5.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  508.161876][   T29] audit: type=1326 audit(1730352228.856:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11179 comm="syz.5.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fdfaed7e719 code=0x7ffc0000
[  508.465081][T11200] usb usb8: usbfs: process 11200 (syz.7.1424) did not claim interface 0 before use
[  509.022480][ T5910] usb 2-1: USB disconnect, device number 38
[  509.165404][T11206] usb usb8: usbfs: process 11206 (syz.6.1425) did not claim interface 0 before use
[  512.124324][T11229] usb usb8: usbfs: process 11229 (syz.1.1432) did not claim interface 0 before use
[  512.842355][T11240] netlink: 209844 bytes leftover after parsing attributes in process `syz.5.1436'.
[  513.305018][T11243] usb usb8: usbfs: process 11243 (syz.6.1437) did not claim interface 0 before use
[  513.404532][  T968] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  513.548379][T11258] usb usb8: usbfs: process 11258 (syz.7.1441) did not claim interface 0 before use
[  513.607055][  T968] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  513.981081][  T968] usb 4-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  514.030078][  T968] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  514.041682][  T968] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  514.081463][T11262] usb usb8: usbfs: process 11262 (syz.6.1443) did not claim interface 0 before use
[  514.442941][  T968] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  514.516555][  T968] usb 4-1: invalid MIDI out EP 0
[  514.584388][  T968] snd-usb-audio 4-1:27.0: probe with driver snd-usb-audio failed with error -22
[  515.549375][T11277] netlink: 'syz.1.1447': attribute type 12 has an invalid length.
[  515.895580][   T25] usb 4-1: USB disconnect, device number 34
[  516.894510][T11302] usb usb8: usbfs: process 11302 (syz.7.1456) did not claim interface 0 before use
[  517.005306][T11305] netlink: 2 bytes leftover after parsing attributes in process `syz.6.1457'.
[  517.934493][ T5910] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[  518.189355][ T5910] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  518.324722][ T5910] usb 2-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  518.352147][ T5910] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  518.362021][ T5910] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  518.375878][ T5910] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  518.385440][ T5910] usb 2-1: invalid MIDI out EP 0
[  518.425667][ T5910] snd-usb-audio 2-1:27.0: probe with driver snd-usb-audio failed with error -22
[  518.529319][   T29] kauditd_printk_skb: 47 callbacks suppressed
[  518.529337][   T29] audit: type=1400 audit(1730352240.006:131): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=11336 comm="syz.7.1468" dest=20002 netif=wpan0
[  518.793757][T11345] netlink: 'syz.5.1470': attribute type 21 has an invalid length.
[  518.794644][ T1198] usb 2-1: USB disconnect, device number 39
[  518.802014][T11345] netlink: 128 bytes leftover after parsing attributes in process `syz.5.1470'.
[  518.826834][T11345] netlink: 'syz.5.1470': attribute type 4 has an invalid length.
[  518.835372][T11345] netlink: 'syz.5.1470': attribute type 5 has an invalid length.
[  518.843204][T11345] netlink: 3 bytes leftover after parsing attributes in process `syz.5.1470'.
[  519.055934][T11350] usb usb8: usbfs: process 11350 (syz.5.1471) did not claim interface 0 before use
[  519.725910][T11360] usb usb8: usbfs: process 11360 (syz.1.1475) did not claim interface 0 before use
[  519.941184][ T5910] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  520.110612][T11355] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  520.119964][T11355] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  520.128834][T11355] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  520.137574][T11355] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  520.187906][ T5910] usb 7-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  520.217901][ T5910] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  520.372100][ T5910] usb 7-1: Product: syz
[  521.069018][ T5910] usb 7-1: Manufacturer: syz
[  521.074515][ T5910] usb 7-1: SerialNumber: syz
[  521.105869][ T5910] usb 7-1: config 0 descriptor??
[  521.337958][T11377] usb usb8: usbfs: process 11377 (syz.5.1480) did not claim interface 0 before use
[  521.518184][   T29] audit: type=1400 audit(1730352242.986:132): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=11373 comm="syz.3.1479" dest=20002 netif=wpan0
[  521.594522][ T5910] usb 7-1: Firmware version (0.0) predates our first public release.
[  521.605251][ T5910] usb 7-1: Please update to version 0.2 or newer
[  521.866227][ T5910] usb 7-1: USB disconnect, device number 7
[  522.404382][T11394] qnx4: no qnx4 filesystem (no root dir).
[  523.210367][ T5880] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[  523.274606][ T1198] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  523.551716][ T5880] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  523.565349][ T1198] usb 2-1: Using ep0 maxpacket: 16
[  523.570826][ T5880] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  523.579055][T11399] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1486'.
[  523.582462][ T5880] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  523.599264][T11399] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1486'.
[  523.604805][ T1198] usb 2-1: config 0 has an invalid descriptor of length 101, skipping remainder of the config
[  523.624516][ T1198] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  523.644499][ T5880] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  523.661523][ T1198] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  523.673213][ T1198] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x6 has an invalid bInterval 115, changing to 10
[  523.692733][ T5880] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  523.702282][ T5880] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  523.715833][ T1198] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 24947, setting to 1024
[  523.728452][ T1198] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  523.742568][ T5880] usb 4-1: config 0 descriptor??
[  523.755179][ T1198] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  523.764783][ T1198] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  523.773412][ T1198] usb 2-1: Manufacturer: syz
[  523.781742][ T1198] usb 2-1: config 0 descriptor??
[  523.789900][ T1198] mceusb 2-1:0.0: mceusb_dev_probe: device setup failed!
[  523.797185][ T1198] mceusb 2-1:0.0: probe with driver mceusb failed with error -12
[  523.806233][ T1198] usbhid 2-1:0.0: can't add hid device: -22
[  523.812279][ T1198] usbhid 2-1:0.0: probe with driver usbhid failed with error -22
[  524.043174][ T5910] usb 2-1: USB disconnect, device number 40
[  524.098858][ T5880] usbhid 4-1:0.0: can't add hid device: -71
[  524.105138][ T5880] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  524.117549][ T5880] usb 4-1: USB disconnect, device number 35
[  524.701323][T11420] netlink: zone id is out of range
[  524.825178][T11422] netlink: 256 bytes leftover after parsing attributes in process `syz.5.1493'.
[  524.890968][T11420] netlink: zone id is out of range
[  524.924523][T11424] netlink: 'syz.5.1493': attribute type 4 has an invalid length.
[  524.955439][T11422] openvswitch: netlink: EtherType 0 is less than min 600
[  524.962814][   T29] audit: type=1400 audit(1730352246.406:133): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=11427 comm="syz.6.1494" dest=20002 netif=wpan0
[  524.986192][T11420] netlink: zone id is out of range
[  525.026574][T11420] netlink: zone id is out of range
[  525.032096][T11420] netlink: zone id is out of range
[  525.054174][T11420] netlink: zone id is out of range
[  525.060437][T11420] netlink: zone id is out of range
[  525.076734][T11420] netlink: zone id is out of range
[  525.083904][T11420] netlink: zone id is out of range
[  526.014762][   T29] audit: type=1326 audit(1730352247.486:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11448 comm="syz.5.1503" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fdfaed7e719 code=0x0
[  526.070359][T11450] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  526.116998][T11456] trusted_key: syz.1.1501 sent an empty control message without MSG_MORE.
[  526.124305][T11450] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  526.215595][T11450] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1502'.
[  526.256545][T11450] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  526.337933][T11462] netlink: 'syz.1.1506': attribute type 7 has an invalid length.
[  527.989541][T11472] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1509'.
[  528.006386][T11472] netlink: 'syz.3.1509': attribute type 9 has an invalid length.
[  528.020415][T11472] netlink: 134672 bytes leftover after parsing attributes in process `syz.3.1509'.
[  528.167155][T11481] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  528.550421][T11489] usb usb8: usbfs: process 11489 (syz.6.1516) did not claim interface 0 before use
[  530.082264][T11500] usb usb8: usbfs: process 11500 (syz.6.1519) did not claim interface 0 before use
[  530.611802][T11506] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  530.694927][T11503] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  530.722016][T11503] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1520'.
[  530.750100][T11503] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  531.225167][T11512] usb usb8: usbfs: process 11512 (syz.1.1522) did not claim interface 0 before use
[  531.345498][   T29] audit: type=1400 audit(1730352252.826:135): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=11519 comm="syz.7.1525" dest=20002 netif=wpan0
[  533.987738][T11549] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1533'.
[  534.109271][T11549] net_ratelimit: 14 callbacks suppressed
[  534.109290][T11549] openvswitch: netlink: EtherType 0 is less than min 600
[  534.486254][T11555] tun0: tun_chr_ioctl cmd 1074025676
[  534.491687][T11555] tun0: owner set to 0
[  535.422970][T11556] usb usb8: usbfs: process 11556 (syz.3.1534) did not claim interface 0 before use
[  535.781322][   T29] audit: type=1400 audit(1730352257.256:136): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=11565 comm="syz.7.1537" dest=20002 netif=wpan0
[  535.963827][T11571] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  536.042999][T11571] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  536.095249][T11571] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1541'.
[  536.120045][T11571] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  537.019577][T11591] usb usb8: usbfs: process 11591 (syz.5.1546) did not claim interface 0 before use
[  537.414496][T11596] usb usb8: usbfs: process 11596 (syz.3.1547) did not claim interface 0 before use
[  538.063364][   T29] audit: type=1400 audit(1730352259.536:137): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=11609 comm="syz.1.1552" dest=20002 netif=wpan0
[  538.154908][ T5910] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  538.408894][T11618] xt_hashlimit: invalid rate
[  538.527247][ T5910] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  538.535649][ T5910] usb 4-1: config 0 has no interface number 0
[  538.543962][ T5910] usb 4-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  538.553483][ T5910] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  538.561864][ T5910] usb 4-1: Product: syz
[  538.566922][ T5910] usb 4-1: Manufacturer: syz
[  538.571749][ T5910] usb 4-1: SerialNumber: syz
[  538.655540][ T5910] usb 4-1: config 0 descriptor??
[  539.090250][T11604] A link change request failed with some changes committed already. Interface wlan1 may have been left with an inconsistent configuration, please check.
[  539.177025][ T5910] dvb_usb_ec168 4-1:0.1: probe with driver dvb_usb_ec168 failed with error -71
[  539.198720][ T5910] usb 4-1: USB disconnect, device number 36
[  539.660126][T11630] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1557'.
[  540.884871][   T29] audit: type=1400 audit(1730352262.356:138): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=11647 comm="syz.7.1563" dest=20002 netif=wpan0
[  541.148175][T11651] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  541.174673][T11651] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  541.211074][T11651] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1565'.
[  541.292223][T11651] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  542.221945][   T29] audit: type=1400 audit(1730352263.696:139): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=11685 comm="syz.7.1577" dest=20002 netif=wpan0
[  542.567950][T11695] bridge_slave_0: default FDB implementation only supports local addresses
[  543.189103][T11699] fuse: Bad value for 'fd'
[  543.412559][T11708] netem: incorrect ge model size
[  543.419155][T11708] netem: change failed
[  543.915294][ T5921] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  544.054675][ T5921] usb 4-1: device descriptor read/64, error -71
[  544.683190][T11731] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  544.701484][T11731] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  544.713029][T11731] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1592'.
[  544.729862][T11731] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  544.764639][ T5921] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  544.895746][ T5921] usb 4-1: device descriptor read/64, error -71
[  544.996006][T11735] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1594'.
[  545.016500][T11735] bond1: entered promiscuous mode
[  545.021601][T11735] bond1: entered allmulticast mode
[  545.028854][T11735] 8021q: adding VLAN 0 to HW filter on device bond1
[  545.065331][ T5921] usb usb4-port1: attempt power cycle
[  545.523456][ T5921] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[  545.622468][ T5921] usb 4-1: device descriptor read/8, error -71
[  545.924830][T11735] bond1 (unregistering): Released all slaves
[  546.161571][ T5921] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[  546.205315][ T5921] usb 4-1: device descriptor read/8, error -71
[  546.316351][ T5921] usb usb4-port1: unable to enumerate USB device
[  547.587535][   T29] audit: type=1800 audit(1730352269.066:140): pid=11770 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.7.1600" name="file0" dev="overlay" ino=329 res=0 errno=0
[  547.628812][T11778] 9pnet_fd: Insufficient options for proto=fd
[  547.873860][T11783] usb usb8: usbfs: process 11783 (syz.3.1606) did not claim interface 0 before use
[  548.080155][T11782] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1605'.
[  548.154757][ T5921] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  548.230367][T11782] input: syz1 as /devices/virtual/input/input41
[  548.318736][ T5921] usb 2-1: Using ep0 maxpacket: 8
[  548.333045][ T5921] usb 2-1: config 0 has an invalid interface number: 27 but max is 0
[  548.343388][ T5921] usb 2-1: config 0 has an invalid descriptor of length 1, skipping remainder of the config
[  548.358615][ T5921] usb 2-1: config 0 has no interface number 0
[  548.366233][ T5921] usb 2-1: config 0 interface 27 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  548.377794][ T5921] usb 2-1: config 0 interface 27 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  548.393409][ T5921] usb 2-1: New USB device found, idVendor=12d1, idProduct=4a1e, bcdDevice=4a.4f
[  548.426647][ T5921] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  548.435736][ T5921] usb 2-1: Product: syz
[  548.442054][ T5921] usb 2-1: Manufacturer: syz
[  548.447815][ T5921] usb 2-1: SerialNumber: syz
[  548.460625][ T5921] usb 2-1: config 0 descriptor??
[  548.475252][ T5921] qmi_wwan 2-1:0.27: probe with driver qmi_wwan failed with error -22
[  548.662948][T11802] infiniband syz2: set active
[  548.668156][T11802] infiniband syz2: added team_slave_1
[  548.673836][ T5921] usb 2-1: USB disconnect, device number 41
[  548.701446][T11802] RDS/IB: syz2: added
[  548.705873][T11802] smc: adding ib device syz2 with port count 1
[  548.712071][T11802] smc:    ib device syz2 port 1 has pnetid SYZ1 (user defined)
[  551.469124][T11831] usb usb8: usbfs: process 11831 (syz.6.1618) did not claim interface 0 before use
[  552.045230][T11835] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1622'.
[  552.136985][T11835] input: syz1 as /devices/virtual/input/input42
[  552.375150][T11856] syz2: rxe_newlink: already configured on team_slave_1
[  552.512849][T11862] usb usb8: usbfs: process 11862 (syz.7.1631) did not claim interface 0 before use
[  554.810263][T11877] usb usb8: usbfs: process 11877 (syz.6.1633) did not claim interface 0 before use
[  555.332594][T11879] tipc: Started in network mode
[  555.337751][T11879] tipc: Node identity 1, cluster identity 4711
[  555.364531][T11879] tipc: Node number set to 1
[  555.522479][T11893] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1641'.
[  555.541642][T11893] input: syz1 as /devices/virtual/input/input43
[  555.837779][   T29] audit: type=1400 audit(1730352277.296:141): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=11895 comm="syz.3.1642" dest=20002 netif=wpan0
[  556.377528][T11905] usb usb8: usbfs: process 11905 (syz.6.1645) did not claim interface 0 before use
[  556.972464][T11907] rdma_rxe: rxe_newlink: failed to add team_slave_1
[  558.898913][T11925] usb usb8: usbfs: process 11925 (syz.6.1650) did not claim interface 0 before use
[  559.991287][T11928] netlink: 'syz.5.1651': attribute type 33 has an invalid length.
[  560.694309][T11932] FAULT_INJECTION: forcing a failure.
[  560.694309][T11932] name failslab, interval 1, probability 0, space 0, times 0
[  560.707379][T11932] CPU: 0 UID: 0 PID: 11932 Comm: syz.6.1653 Not tainted 6.12.0-rc5-syzkaller-00047-g4236f913808c #0
[  560.718177][T11932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  560.728269][T11932] Call Trace:
[  560.731579][T11932]  <TASK>
[  560.734536][T11932]  dump_stack_lvl+0x241/0x360
[  560.739247][T11932]  ? __pfx_dump_stack_lvl+0x10/0x10
[  560.744472][T11932]  ? __pfx__printk+0x10/0x10
[  560.749092][T11932]  ? ref_tracker_alloc+0x332/0x490
[  560.754244][T11932]  should_fail_ex+0x3b0/0x4e0
[  560.758949][T11932]  ? skb_clone+0x20c/0x390
[  560.763396][T11932]  should_failslab+0xac/0x100
[  560.768108][T11932]  ? skb_clone+0x20c/0x390
[  560.772559][T11932]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  560.777968][T11932]  skb_clone+0x20c/0x390
[  560.782243][T11932]  __netlink_deliver_tap+0x3cc/0x7c0
[  560.787567][T11932]  ? netlink_deliver_tap+0x2e/0x1b0
[  560.792788][T11932]  netlink_deliver_tap+0x19d/0x1b0
[  560.797931][T11932]  netlink_sendskb+0x68/0x140
[  560.802637][T11932]  netlink_unicast+0x39d/0x990
[  560.807426][T11932]  ? __asan_memcpy+0x40/0x70
[  560.812048][T11932]  ? __pfx_netlink_unicast+0x10/0x10
[  560.817365][T11932]  netlink_rcv_skb+0x262/0x430
[  560.822149][T11932]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  560.827625][T11932]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  560.832947][T11932]  ? cap_capable+0x1b4/0x250
[  560.837563][T11932]  ? safesetid_security_capable+0xb2/0x1d0
[  560.843400][T11932]  ? bpf_lsm_capable+0x9/0x10
[  560.848113][T11932]  ? security_capable+0x7e/0x2d0
[  560.853083][T11932]  nfnetlink_rcv+0x297/0x2ab0
[  560.857799][T11932]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  560.863551][T11932]  ? __dev_queue_xmit+0x2da/0x3ed0
[  560.868692][T11932]  ? __dev_queue_xmit+0x171d/0x3ed0
[  560.873918][T11932]  ? kasan_save_track+0x51/0x80
[  560.878800][T11932]  ? do_syscall_64+0xf3/0x230
[  560.883503][T11932]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  560.888641][T11932]  ? __dev_queue_xmit+0x2da/0x3ed0
[  560.893788][T11932]  ? __pfx___dev_queue_xmit+0x10/0x10
[  560.899181][T11932]  ? ref_tracker_free+0x643/0x7e0
[  560.904205][T11932]  ? __asan_memcpy+0x40/0x70
[  560.908793][T11932]  ? __pfx_ref_tracker_free+0x10/0x10
[  560.914174][T11932]  ? netlink_deliver_tap+0x2e/0x1b0
[  560.919372][T11932]  ? skb_clone+0x240/0x390
[  560.923786][T11932]  ? __pfx_lock_release+0x10/0x10
[  560.928814][T11932]  ? __netlink_deliver_tap+0x77e/0x7c0
[  560.934372][T11932]  ? netlink_deliver_tap+0x2e/0x1b0
[  560.939662][T11932]  netlink_unicast+0x7f6/0x990
[  560.944432][T11932]  ? __pfx_netlink_unicast+0x10/0x10
[  560.949722][T11932]  ? __check_object_size+0x402/0x900
[  560.955013][T11932]  ? __check_object_size+0x48e/0x900
[  560.960303][T11932]  netlink_sendmsg+0x8e4/0xcb0
[  560.965075][T11932]  ? __pfx_netlink_sendmsg+0x10/0x10
[  560.970375][T11932]  ? __pfx_netlink_sendmsg+0x10/0x10
[  560.975664][T11932]  __sock_sendmsg+0x221/0x270
[  560.980367][T11932]  ____sys_sendmsg+0x52a/0x7e0
[  560.985140][T11932]  ? __pfx_____sys_sendmsg+0x10/0x10
[  560.990435][T11932]  __sys_sendmsg+0x292/0x380
[  560.995028][T11932]  ? __pfx___sys_sendmsg+0x10/0x10
[  561.000152][T11932]  ? __pfx_vfs_write+0x10/0x10
[  561.004935][T11932]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  561.011295][T11932]  ? do_syscall_64+0x100/0x230
[  561.016068][T11932]  ? do_syscall_64+0xb6/0x230
[  561.020761][T11932]  do_syscall_64+0xf3/0x230
[  561.025264][T11932]  ? clear_bhb_loop+0x35/0x90
[  561.029940][T11932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  561.035833][T11932] RIP: 0033:0x7f225b57e719
[  561.040245][T11932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  561.059854][T11932] RSP: 002b:00007f225c3aa038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  561.068273][T11932] RAX: ffffffffffffffda RBX: 00007f225b736058 RCX: 00007f225b57e719
[  561.076243][T11932] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000007
[  561.084209][T11932] RBP: 00007f225c3aa090 R08: 0000000000000000 R09: 0000000000000000
[  561.092175][T11932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  561.100144][T11932] R13: 0000000000000000 R14: 00007f225b736058 R15: 00007ffc6ac800a8
[  561.108409][T11932]  </TASK>
[  563.142202][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  563.150067][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  563.150652][T11957] usb usb8: usbfs: process 11957 (syz.1.1660) did not claim interface 0 before use
[  564.794479][T11972] usb usb8: usbfs: process 11972 (syz.7.1661) did not claim interface 0 before use
[  566.313041][T11983] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[  567.335162][T11994] netlink: 2 bytes leftover after parsing attributes in process `syz.5.1668'.
[  567.611313][T12013] netlink: 'syz.6.1674': attribute type 4 has an invalid length.
[  567.640857][T12013] netdevsim netdevsim6 netdevsim0: entered promiscuous mode
[  567.805189][T12017] usb usb8: usbfs: process 12017 (syz.5.1675) did not claim interface 0 before use
[  568.269943][T11992] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[  568.526708][T11992] usb 4-1: Using ep0 maxpacket: 8
[  568.556168][T11992] usb 4-1: unable to get BOS descriptor or descriptor too short
[  568.570627][T11992] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64
[  568.578052][T12028] support for the xor transformation has been removed.
[  568.585740][T11992] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 16
[  568.618340][T11992] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  568.635420][T11992] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  568.652117][T11992] usb 4-1: Product: 囤⬸쨻쨮ϴ䋖춷悔ླྀ埵同鏡呝䧉㒉ુ㉍挿⹊ꊏ
[  568.672817][T11992] usb 4-1: Manufacturer: 龷낶曾閐秓炵爢鬟Ｘ鵶篆襡槾圎圩喺蜔匠勥㥪왕欛緕岰蟼ﲄ麬ࠖꔜ빿⡖䣩൛±ᅠ봝⺊ꊒᓼ邪썞愽Dž㸯쁑묽沀쇯ᓌ鸆慗㷘즏⍍祆疷Ꮔ輀䃦껶䙷俕똞ヴᑣ擾ꩀꡁ뽸ᨖ緙ᵺை쎔Ӣꇪ戬媕녈퍅苿㌛셋톭휓熤ᗰ￸￿⛜ᝉ䭳잊瑣ዠﲎ曗麘闋٭쓎ﱛ<
[  568.758906][T11992] usb 4-1: SerialNumber: syz
[  568.827597][T12046] libceph: resolve '0.0' (ret=-3): failed
[  568.844929][T12046] syz.1.1683: attempt to access beyond end of device
[  568.844929][T12046] loop1: rw=0, sector=64, nr_sectors = 2 limit=0
[  568.860145][T12046] isofs_fill_super: bread failed, dev=loop1, iso_blknum=16, block=32
[  569.817417][T12057] netlink: 2 bytes leftover after parsing attributes in process `syz.6.1685'.
[  569.827716][T11992] cdc_ncm 4-1:1.0: bind() failure
[  569.835849][T11992] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  569.843078][T11992] cdc_ncm 4-1:1.1: bind() failure
[  569.853874][T11992] usb 4-1: USB disconnect, device number 41
[  570.307118][T12078] usb usb8: usbfs: process 12078 (syz.1.1691) did not claim interface 0 before use
[  570.893863][T12082] usb usb8: usbfs: process 12082 (syz.6.1692) did not claim interface 0 before use
[  571.521900][T12092] usb usb8: usbfs: process 12092 (syz.6.1696) did not claim interface 0 before use
[  572.138217][T12099] IPv6: Can't replace route, no match found
[  572.386710][T12098] usb usb8: usbfs: process 12098 (syz.5.1699) did not claim interface 0 before use
[  572.459007][T12101] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1698'.
[  572.539220][T12103] netlink: 'syz.3.1698': attribute type 9 has an invalid length.
[  572.554646][T12103] netlink: 105400 bytes leftover after parsing attributes in process `syz.3.1698'.
[  572.780640][T12110] FAULT_INJECTION: forcing a failure.
[  572.780640][T12110] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  572.800519][T12110] CPU: 1 UID: 0 PID: 12110 Comm: syz.6.1702 Not tainted 6.12.0-rc5-syzkaller-00047-g4236f913808c #0
[  572.811324][T12110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  572.821384][T12110] Call Trace:
[  572.824704][T12110]  <TASK>
[  572.827628][T12110]  dump_stack_lvl+0x241/0x360
[  572.832315][T12110]  ? __pfx_dump_stack_lvl+0x10/0x10
[  572.837503][T12110]  ? __pfx__printk+0x10/0x10
[  572.842086][T12110]  ? snprintf+0xda/0x120
[  572.846355][T12110]  should_fail_ex+0x3b0/0x4e0
[  572.851110][T12110]  _copy_to_user+0x31/0xb0
[  572.855540][T12110]  simple_read_from_buffer+0xca/0x150
[  572.860952][T12110]  proc_fail_nth_read+0x1e9/0x250
[  572.865997][T12110]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  572.871544][T12110]  ? rw_verify_area+0x55e/0x6f0
[  572.876389][T12110]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  572.881930][T12110]  vfs_read+0x1fc/0xb70
[  572.886079][T12110]  ? fdget_pos+0x24e/0x320
[  572.890488][T12110]  ? __pfx_vfs_read+0x10/0x10
[  572.895160][T12110]  ? __fget_files+0x3f3/0x470
[  572.899833][T12110]  ? fdget_pos+0x24e/0x320
[  572.904242][T12110]  ksys_read+0x183/0x2b0
[  572.908510][T12110]  ? __pfx_ksys_read+0x10/0x10
[  572.913266][T12110]  ? __secure_computing+0x125/0x370
[  572.918464][T12110]  do_syscall_64+0xf3/0x230
[  572.922968][T12110]  ? clear_bhb_loop+0x35/0x90
[  572.928073][T12110]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.933959][T12110] RIP: 0033:0x7f225b57d15c
[  572.938368][T12110] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  572.957965][T12110] RSP: 002b:00007f225c3cb030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  572.966398][T12110] RAX: ffffffffffffffda RBX: 00007f225b735f80 RCX: 00007f225b57d15c
[  572.974362][T12110] RDX: 000000000000000f RSI: 00007f225c3cb0a0 RDI: 0000000000000003
[  572.982415][T12110] RBP: 00007f225c3cb090 R08: 0000000000000000 R09: 0000000000000000
[  572.990397][T12110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  572.998363][T12110] R13: 0000000000000000 R14: 00007f225b735f80 R15: 00007ffc6ac800a8
[  573.006368][T12110]  </TASK>
[  573.084694][T11992] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[  573.155412][   T25] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[  573.239229][T12117] usb usb8: usbfs: process 12117 (syz.6.1704) did not claim interface 0 before use
[  573.305275][T11992] usb 2-1: Using ep0 maxpacket: 16
[  573.796582][T11992] usb 2-1: no configurations
[  573.801263][T11992] usb 2-1: can't read configurations, error -22
[  573.823489][   T25] usb 4-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  573.838528][   T25] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  573.857104][   T25] usb 4-1: config 0 descriptor??
[  573.865974][   T25] gspca_main: cpia1-2.14.0 probing 0813:0001
[  573.978910][T11992] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[  574.916461][   T25] cpia1 4-1:0.0: unexpected state after lo power cmd: 00
[  574.984573][T11992] usb 2-1: Using ep0 maxpacket: 16
[  574.990660][T11992] usb 2-1: no configurations
[  574.997422][T11992] usb 2-1: can't read configurations, error -22
[  575.011897][T11992] usb usb2-port1: attempt power cycle
[  575.124985][T12108] tmpfs: Bad value for 'mpol'
[  575.144573][   T25] gspca_cpia1: usb_control_msg 01, error -71
[  575.150627][   T25] cpia1 4-1:0.0: only firmware version 1 is supported (got: 0)
[  575.215654][   T25] usb 4-1: USB disconnect, device number 42
[  575.387155][T11992] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[  575.437248][T11992] usb 2-1: Using ep0 maxpacket: 16
[  575.452585][T11992] usb 2-1: no configurations
[  575.464628][T11992] usb 2-1: can't read configurations, error -22
[  575.581237][T12135] netlink: 2 bytes leftover after parsing attributes in process `syz.7.1711'.
[  575.597510][T12135] netlink: 'syz.7.1711': attribute type 9 has an invalid length.
[  575.604793][T11992] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[  575.606709][T12135] netlink: 105400 bytes leftover after parsing attributes in process `syz.7.1711'.
[  575.639372][T11992] usb 2-1: device descriptor read/8, error -71
[  575.764886][T11992] usb usb2-port1: unable to enumerate USB device
[  576.200828][T12155] usb usb8: usbfs: process 12155 (syz.3.1716) did not claim interface 0 before use
[  576.948038][T12164] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  577.004581][T12164] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  577.026802][T12164] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1720'.
[  577.155615][T12171] netlink: 2 bytes leftover after parsing attributes in process `syz.7.1723'.
[  577.215244][T12171] netlink: 'syz.7.1723': attribute type 9 has an invalid length.
[  577.234730][T12171] netlink: 105400 bytes leftover after parsing attributes in process `syz.7.1723'.
[  578.746083][T12204] usb usb8: usbfs: process 12204 (syz.3.1732) did not claim interface 0 before use
[  579.054236][T12200] usb usb8: usbfs: process 12200 (syz.1.1733) did not claim interface 0 before use
[  580.125968][T12212] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  580.185650][T12212] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  580.224592][   T25] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[  580.386251][   T25] usb 4-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  580.395965][   T25] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  580.405479][   T25] usb 4-1: config 0 descriptor??
[  580.412409][   T25] gspca_main: STV06xx-2.14.0 probing 046d:0870
[  580.484632][ T5921] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  580.564626][   T51] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[  580.616029][   T25] usb 4-1: USB disconnect, device number 43
[  580.636320][ T5921] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  580.648863][ T5921] usb 7-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  580.660291][ T5921] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  580.669950][ T5921] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  580.682010][ T5921] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  580.689682][ T5921] usb 7-1: invalid MIDI out EP 0
[  580.710398][ T5921] snd-usb-audio 7-1:27.0: probe with driver snd-usb-audio failed with error -22
[  580.735679][   T51] usb 2-1: Using ep0 maxpacket: 8
[  580.743747][   T51] usb 2-1: New USB device found, idVendor=0403, idProduct=f850, bcdDevice= 4.c9
[  580.756522][   T51] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  580.764680][   T51] usb 2-1: Product: syz
[  580.768858][   T51] usb 2-1: Manufacturer: syz
[  580.773441][   T51] usb 2-1: SerialNumber: syz
[  580.780529][   T51] usb 2-1: config 0 descriptor??
[  580.787485][   T51] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected
[  580.795778][   T51] ftdi_sio ttyUSB0: unknown device type: 0x4c9
[  581.203475][ T5921] usb 7-1: USB disconnect, device number 8
[  582.054650][  T968] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  582.274540][  T968] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  582.297123][T12248] usb usb8: usbfs: process 12248 (syz.3.1749) did not claim interface 0 before use
[  582.314560][  T968] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  582.325635][  T968] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  582.507733][  T968] usb 7-1: New USB device found, idVendor=1b1c, idProduct=1c0d, bcdDevice= 0.00
[  582.527108][  T968] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  582.555121][  T968] usb 7-1: config 0 descriptor??
[  583.175221][T12255] x_tables: arp_tables: MARK.2 target: invalid size 8 (kernel) != (user) 0
[  583.344562][ T5883] usb 2-1: USB disconnect, device number 46
[  583.355556][ T5883] ftdi_sio 2-1:0.0: device disconnected
[  583.430367][   T29] audit: type=1326 audit(1730352304.906:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12260 comm="syz.3.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488317e719 code=0x7ffc0000
[  583.468757][   T29] audit: type=1326 audit(1730352304.936:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12260 comm="syz.3.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488317e719 code=0x7ffc0000
[  583.499360][   T29] audit: type=1326 audit(1730352304.946:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12260 comm="syz.3.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f488317e719 code=0x7ffc0000
[  583.522253][   T29] audit: type=1326 audit(1730352304.946:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12260 comm="syz.3.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488317e719 code=0x7ffc0000
[  583.575234][   T29] audit: type=1326 audit(1730352304.946:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12260 comm="syz.3.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488317e719 code=0x7ffc0000
[  583.622348][   T29] audit: type=1326 audit(1730352304.946:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12260 comm="syz.3.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f488317e719 code=0x7ffc0000
[  583.667219][   T29] audit: type=1326 audit(1730352304.946:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12260 comm="syz.3.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488317e719 code=0x7ffc0000
[  583.712323][   T29] audit: type=1326 audit(1730352304.946:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12260 comm="syz.3.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f488317e719 code=0x7ffc0000
[  583.756802][   T29] audit: type=1326 audit(1730352304.946:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12260 comm="syz.3.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488317e719 code=0x7ffc0000
[  583.819221][   T29] audit: type=1326 audit(1730352304.956:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12260 comm="syz.3.1755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f488317e719 code=0x7ffc0000
[  583.867863][ T5883] usb 2-1: new full-speed USB device number 47 using dummy_hcd
[  584.027819][ T5883] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  584.042927][ T5883] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  584.064932][ T5883] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  584.074412][ T5883] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  584.090929][ T5883] usb 2-1: SerialNumber: syz
[  584.104956][ T5883] usb 2-1: bad CDC descriptors
[  584.312809][ T5883] usb 2-1: USB disconnect, device number 47
[  584.819078][   T51] usb 7-1: USB disconnect, device number 9
[  587.365272][T12307] af_packet: tpacket_rcv: packet too big, clamped from 3984 to 3952. macoff=96
[  587.624737][T12321] usb usb8: usbfs: process 12321 (syz.7.1771) did not claim interface 0 before use
[  587.970454][T12324] netlink: 14568 bytes leftover after parsing attributes in process `syz.3.1772'.
[  589.349090][T12340] usb usb8: usbfs: process 12340 (syz.1.1776) did not claim interface 0 before use
[  589.665796][T12344] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1777'.
[  589.967949][T12348] netlink: 'syz.7.1779': attribute type 9 has an invalid length.
[  589.987273][T12348] netlink: 134672 bytes leftover after parsing attributes in process `syz.7.1779'.
[  589.997968][T12348] openvswitch: netlink: Key 2 has unexpected len 20 expected 4
[  590.350417][T12364] usb usb8: usbfs: process 12364 (syz.6.1783) did not claim interface 0 before use
[  590.822719][ T5831] Bluetooth: hci1: command 0x0406 tx timeout
[  590.933055][T12370] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1784'.
[  591.131451][T12375] overlayfs: failed to resolve './file1': -2
[  591.154703][T12375] netlink: 'syz.7.1787': attribute type 11 has an invalid length.
[  591.416152][   T25] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  591.636152][   T25] usb 7-1: Using ep0 maxpacket: 8
[  591.736983][   T25] usb 7-1: New USB device found, idVendor=0403, idProduct=f850, bcdDevice= 4.c9
[  591.737915][T12385] batadv0: entered promiscuous mode
[  591.783781][   T25] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  591.817988][T12385] vlan2: entered promiscuous mode
[  591.836843][   T25] usb 7-1: Product: syz
[  591.841172][   T25] usb 7-1: Manufacturer: syz
[  591.845989][   T25] usb 7-1: SerialNumber: syz
[  591.853646][T12385] vlan2: entered allmulticast mode
[  591.859318][T12385] batadv0: entered allmulticast mode
[  591.874253][   T25] usb 7-1: config 0 descriptor??
[  591.885519][   T25] ftdi_sio 7-1:0.0: FTDI USB Serial Device converter detected
[  591.895124][   T25] ftdi_sio ttyUSB0: unknown device type: 0x4c9
[  591.903161][T12385] batadv0: left allmulticast mode
[  591.910685][T12385] batadv0: left promiscuous mode
[  591.978067][ T5834] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  592.093962][T12405] veth0_vlan: left promiscuous mode
[  592.116054][T12405] veth0_vlan: entered promiscuous mode
[  592.364540][T12410] usb usb8: usbfs: process 12410 (syz.5.1797) did not claim interface 0 before use
[  593.136712][T12421] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1800'.
[  593.225855][T12421] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1800'.
[  593.269451][T12421] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check.
[  593.600767][T12439] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1804'.
[  594.420144][ T5921] usb 7-1: USB disconnect, device number 10
[  594.427463][ T5921] ftdi_sio 7-1:0.0: device disconnected
[  595.408198][T12462] usb usb8: usbfs: process 12462 (syz.6.1810) did not claim interface 0 before use
[  596.513943][   T25] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[  597.084668][   T25] usb 4-1: New USB device found, idVendor=055f, idProduct=a800, bcdDevice=cb.23
[  597.117801][   T25] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  597.165411][   T25] usb 4-1: config 0 descriptor??
[  597.180156][   T25] mdc800 4-1:0.0: probe fails -> wrong Interface
[  597.390386][T11992] usb 4-1: USB disconnect, device number 44
[  597.436633][   T25] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[  597.494669][ T5910] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  597.597982][   T25] usb 2-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  597.607337][   T25] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  597.615534][   T25] usb 2-1: Product: syz
[  597.619856][   T25] usb 2-1: Manufacturer: syz
[  597.624570][   T25] usb 2-1: SerialNumber: syz
[  597.631019][   T25] usb 2-1: config 0 descriptor??
[  597.644919][ T5910] usb 7-1: Using ep0 maxpacket: 32
[  597.653219][ T5910] usb 7-1: config 0 has no interfaces?
[  597.670894][ T5910] usb 7-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[  597.681960][ T5910] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  597.691953][ T5910] usb 7-1: config 0 descriptor??
[  597.893639][T12500] usb usb8: usbfs: process 12500 (syz.5.1824) did not claim interface 0 before use
[  598.220181][   T25] usb 2-1: Firmware: major: 0, minor: 248, hardware type: ATUSB (0)
[  598.352639][T12503] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  598.371125][T12503] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  598.488068][T12490] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  598.497425][   T25] usb 2-1: Firmware: build ôടǡ�=
[  598.509876][T12490] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  598.776135][T12510] FAULT_INJECTION: forcing a failure.
[  598.776135][T12510] name failslab, interval 1, probability 0, space 0, times 0
[  598.789038][T12510] CPU: 1 UID: 0 PID: 12510 Comm: syz.3.1825 Not tainted 6.12.0-rc5-syzkaller-00047-g4236f913808c #0
[  598.799824][T12510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  598.809892][T12510] Call Trace:
[  598.813182][T12510]  <TASK>
[  598.816129][T12510]  dump_stack_lvl+0x241/0x360
[  598.820833][T12510]  ? __pfx_dump_stack_lvl+0x10/0x10
[  598.826056][T12510]  ? __pfx__printk+0x10/0x10
[  598.830669][T12510]  ? __kmalloc_noprof+0xb0/0x400
[  598.835624][T12510]  ? __pfx___might_resched+0x10/0x10
[  598.840929][T12510]  ? __mutex_lock+0x2ef/0xd70
[  598.845627][T12510]  should_fail_ex+0x3b0/0x4e0
[  598.850323][T12510]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  598.856587][T12510]  should_failslab+0xac/0x100
[  598.861284][T12510]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  598.867541][T12510]  __kmalloc_noprof+0xd8/0x400
[  598.872329][T12510]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  598.878422][T12510]  genl_rcv_msg+0x802/0xec0
[  598.882942][T12510]  ? mark_lock+0x9a/0x360
[  598.887293][T12510]  ? __pfx_genl_rcv_msg+0x10/0x10
[  598.892358][T12510]  ? __pfx_lock_acquire+0x10/0x10
[  598.897403][T12510]  ? __pfx_thermal_genl_cmd_doit+0x10/0x10
[  598.903228][T12510]  ? __pfx___might_resched+0x10/0x10
[  598.908540][T12510]  netlink_rcv_skb+0x1e3/0x430
[  598.913325][T12510]  ? __pfx_genl_rcv_msg+0x10/0x10
[  598.918366][T12510]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  598.923683][T12510]  ? __rcu_read_unlock+0xa1/0x110
[  598.928743][T12510]  genl_rcv+0x28/0x40
[  598.932749][T12510]  netlink_unicast+0x7f6/0x990
[  598.937540][T12510]  ? __pfx_netlink_unicast+0x10/0x10
[  598.942839][T12510]  ? __virt_addr_valid+0x183/0x530
[  598.947973][T12510]  ? __check_object_size+0x48e/0x900
[  598.953309][T12510]  netlink_sendmsg+0x8e4/0xcb0
[  598.958105][T12510]  ? __pfx_netlink_sendmsg+0x10/0x10
[  598.963451][T12510]  ? __pfx_netlink_sendmsg+0x10/0x10
[  598.968751][T12510]  __sock_sendmsg+0x221/0x270
[  598.973456][T12510]  ____sys_sendmsg+0x52a/0x7e0
[  598.978245][T12510]  ? __pfx_____sys_sendmsg+0x10/0x10
[  598.983575][T12510]  __sys_sendmsg+0x292/0x380
[  598.988185][T12510]  ? __pfx___sys_sendmsg+0x10/0x10
[  598.993325][T12510]  ? __pfx_vfs_write+0x10/0x10
[  598.998144][T12510]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  599.004496][T12510]  ? do_syscall_64+0x100/0x230
[  599.009283][T12510]  ? do_syscall_64+0xb6/0x230
[  599.014148][T12510]  do_syscall_64+0xf3/0x230
[  599.018663][T12510]  ? clear_bhb_loop+0x35/0x90
[  599.023355][T12510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  599.029262][T12510] RIP: 0033:0x7f488317e719
[  599.033687][T12510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  599.053315][T12510] RSP: 002b:00007f4883f6c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  599.061929][T12510] RAX: ffffffffffffffda RBX: 00007f4883336130 RCX: 00007f488317e719
[  599.069928][T12510] RDX: 0000000000000000 RSI: 0000000020001ac0 RDI: 0000000000000007
[  599.077903][T12510] RBP: 00007f4883f6c090 R08: 0000000000000000 R09: 0000000000000000
[  599.085876][T12510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  599.093839][T12510] R13: 0000000000000000 R14: 00007f4883336130 R15: 00007ffc31390ae8
[  599.101820][T12510]  </TASK>
[  599.537896][   T25] usb 2-1: failed to fetch extended address, random address set
[  599.814366][T11992] usb 7-1: USB disconnect, device number 11
[  600.017391][T12523] netlink: 64 bytes leftover after parsing attributes in process `syz.6.1829'.
[  600.046973][T12523] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1829'.
[  600.073224][T12523] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1829'.
[  600.123458][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  600.215694][T12523] Process accounting resumed
[  600.291251][T11992] usb 2-1: USB disconnect, device number 48
[  601.492926][T12543] usb usb8: usbfs: process 12543 (syz.1.1832) did not claim interface 0 before use
[  602.442374][T12547] usb usb8: usbfs: process 12547 (syz.3.1836) did not claim interface 0 before use
[  602.592815][T12557] FAULT_INJECTION: forcing a failure.
[  602.592815][T12557] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  602.624396][T12557] CPU: 1 UID: 0 PID: 12557 Comm: syz.3.1838 Not tainted 6.12.0-rc5-syzkaller-00047-g4236f913808c #0
[  602.635220][T12557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  602.645311][T12557] Call Trace:
[  602.648668][T12557]  <TASK>
[  602.651626][T12557]  dump_stack_lvl+0x241/0x360
[  602.656343][T12557]  ? __pfx_dump_stack_lvl+0x10/0x10
[  602.661573][T12557]  ? __pfx__printk+0x10/0x10
[  602.666170][T12557]  ? __pfx_lock_release+0x10/0x10
[  602.671206][T12557]  should_fail_ex+0x3b0/0x4e0
[  602.675905][T12557]  strncpy_from_user+0x36/0x260
[  602.680763][T12557]  getname_flags+0xf1/0x540
[  602.685264][T12557]  __x64_sys_symlinkat+0x87/0xb0
[  602.690207][T12557]  do_syscall_64+0xf3/0x230
[  602.694717][T12557]  ? clear_bhb_loop+0x35/0x90
[  602.699407][T12557]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  602.705298][T12557] RIP: 0033:0x7f488317e719
[  602.709712][T12557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  602.729322][T12557] RSP: 002b:00007f4883fae038 EFLAGS: 00000246 ORIG_RAX: 000000000000010a
[  602.737749][T12557] RAX: ffffffffffffffda RBX: 00007f4883335f80 RCX: 00007f488317e719
[  602.745803][T12557] RDX: 0000000020000140 RSI: 0000000000000004 RDI: 0000000020000040
[  602.753770][T12557] RBP: 00007f4883fae090 R08: 0000000000000000 R09: 0000000000000000
[  602.761736][T12557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  602.769706][T12557] R13: 0000000000000000 R14: 00007f4883335f80 R15: 00007ffc31390ae8
[  602.777689][T12557]  </TASK>
[  602.923358][T12564] FAULT_INJECTION: forcing a failure.
[  602.923358][T12564] name failslab, interval 1, probability 0, space 0, times 0
[  602.954159][T12564] CPU: 0 UID: 0 PID: 12564 Comm: syz.3.1841 Not tainted 6.12.0-rc5-syzkaller-00047-g4236f913808c #0
[  602.964983][T12564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  602.975069][T12564] Call Trace:
[  602.978377][T12564]  <TASK>
[  602.981330][T12564]  dump_stack_lvl+0x241/0x360
[  602.986048][T12564]  ? __pfx_dump_stack_lvl+0x10/0x10
[  602.991289][T12564]  ? __pfx__printk+0x10/0x10
[  602.995934][T12564]  ? ref_tracker_alloc+0x332/0x490
[  603.001086][T12564]  should_fail_ex+0x3b0/0x4e0
[  603.005795][T12564]  ? skb_clone+0x20c/0x390
[  603.010227][T12564]  should_failslab+0xac/0x100
[  603.014914][T12564]  ? skb_clone+0x20c/0x390
[  603.019330][T12564]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  603.024710][T12564]  skb_clone+0x20c/0x390
[  603.028958][T12564]  __netlink_deliver_tap+0x3cc/0x7c0
[  603.034247][T12564]  ? netlink_deliver_tap+0x2e/0x1b0
[  603.039452][T12564]  netlink_deliver_tap+0x19d/0x1b0
[  603.044577][T12564]  netlink_unicast+0x7c4/0x990
[  603.049345][T12564]  ? __pfx_netlink_unicast+0x10/0x10
[  603.054629][T12564]  ? __virt_addr_valid+0x183/0x530
[  603.059741][T12564]  ? __check_object_size+0x48e/0x900
[  603.065032][T12564]  netlink_sendmsg+0x8e4/0xcb0
[  603.069807][T12564]  ? __pfx_netlink_sendmsg+0x10/0x10
[  603.075101][T12564]  ? __pfx_netlink_sendmsg+0x10/0x10
[  603.080379][T12564]  __sock_sendmsg+0x221/0x270
[  603.085064][T12564]  ____sys_sendmsg+0x52a/0x7e0
[  603.089836][T12564]  ? __pfx_____sys_sendmsg+0x10/0x10
[  603.095130][T12564]  __sys_sendmmsg+0x3ab/0x730
[  603.099811][T12564]  ? __pfx___sys_sendmmsg+0x10/0x10
[  603.105015][T12564]  ? __pfx_lock_release+0x10/0x10
[  603.110044][T12564]  ? kstrtouint_from_user+0x128/0x190
[  603.115437][T12564]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  603.121421][T12564]  ? ksys_write+0x229/0x2b0
[  603.125925][T12564]  ? __pfx_lock_release+0x10/0x10
[  603.130954][T12564]  ? vfs_write+0x730/0xd30
[  603.135381][T12564]  ? __mutex_unlock_slowpath+0x21d/0x750
[  603.141016][T12564]  ? __fget_files+0x3f3/0x470
[  603.145705][T12564]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  603.151684][T12564]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  603.158100][T12564]  ? do_syscall_64+0x100/0x230
[  603.162865][T12564]  __x64_sys_sendmmsg+0xa0/0xb0
[  603.167738][T12564]  do_syscall_64+0xf3/0x230
[  603.172255][T12564]  ? clear_bhb_loop+0x35/0x90
[  603.176942][T12564]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  603.182832][T12564] RIP: 0033:0x7f488317e719
[  603.187243][T12564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  603.206933][T12564] RSP: 002b:00007f4883fae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  603.215346][T12564] RAX: ffffffffffffffda RBX: 00007f4883335f80 RCX: 00007f488317e719
[  603.223320][T12564] RDX: 040000000000009f RSI: 00000000200002c0 RDI: 0000000000000004
[  603.231292][T12564] RBP: 00007f4883fae090 R08: 0000000000000000 R09: 0000000000000000
[  603.239353][T12564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  603.247319][T12564] R13: 0000000000000000 R14: 00007f4883335f80 R15: 00007ffc31390ae8
[  603.255320][T12564]  </TASK>
[  603.950010][ T5921] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[  604.320884][ T5921] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  604.331060][ T5921] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  604.339374][ T5921] usb 4-1: Product: syz
[  604.343575][ T5921] usb 4-1: Manufacturer: syz
[  604.348593][ T5921] usb 4-1: SerialNumber: syz
[  604.417430][T12582] rdma_rxe: rxe_newlink: failed to add team_slave_1
[  604.607866][T12584] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1846'.
[  605.086048][ T5921] usb 4-1: config 0 descriptor??
[  605.181056][T12589] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  605.205499][T12589] vimc vimc.0: subdev_call error Scaler
[  605.212437][T12589] ------------[ cut here ]------------
[  605.218457][T12589] WARNING: CPU: 0 PID: 12589 at drivers/media/v4l2-core/v4l2-subdev.c:455 call_s_stream+0x222/0x280
[  605.229395][T12589] Modules linked in:
[  605.233323][T12589] CPU: 0 UID: 0 PID: 12589 Comm: syz.6.1847 Not tainted 6.12.0-rc5-syzkaller-00047-g4236f913808c #0
[  605.244167][T12589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  605.254375][T12589] RIP: 0010:call_s_stream+0x222/0x280
[  605.259832][T12589] Code: f5 1c fa 48 8b 7d 00 48 c7 c6 60 3f cb 8c 89 da e8 a3 4e df 03 48 bd 00 00 00 00 00 fc ff df e9 06 ff ff ff e8 ff 59 b6 f9 90 <0f> 0b 90 e9 de fe ff ff 89 e9 80 e1 07 38 c1 0f 8c 09 fe ff ff 48
[  605.280077][T12589] RSP: 0018:ffffc90002eef980 EFLAGS: 00010293
[  605.286376][T12589] RAX: ffffffff87de7fc1 RBX: 0000000000000000 RCX: ffff88807c239e00
[  605.294374][T12589] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  605.302411][T12589] RBP: 0000000000000000 R08: ffffffff87de7e08 R09: 1ffff920005dde94
[  605.310475][T12589] R10: dffffc0000000000 R11: ffffffff87de7da0 R12: ffff88802a283020
[  605.318510][T12589] R13: 0000000000000000 R14: 1ffff11005450633 R15: 0000000000000000
[  605.326542][T12589] FS:  00007f225c3aa6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  605.335639][T12589] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  605.342251][T12589] CR2: 0000000000000000 CR3: 000000006f794000 CR4: 00000000003526f0
[  605.350294][T12589] DR0: ffffffffffffffff DR1: 0000000000000001 DR2: 0000000000000000
[  605.358328][T12589] DR3: 0000000080000001 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  605.366383][T12589] Call Trace:
[  605.369680][T12589]  <TASK>
[  605.372632][T12589]  ? __warn+0x168/0x4e0
[  605.377610][T12589]  ? call_s_stream+0x222/0x280
[  605.382411][T12589]  ? report_bug+0x2b3/0x500
[  605.387304][T12589]  ? call_s_stream+0x222/0x280
[  605.392115][T12589]  ? handle_bug+0x60/0x90
[  605.396541][T12589]  ? exc_invalid_op+0x1a/0x50
[  605.401244][T12589]  ? asm_exc_invalid_op+0x1a/0x20
[  605.406360][T12589]  ? __pfx_call_s_stream+0x10/0x10
[  605.411497][T12589]  ? call_s_stream+0x68/0x280
[  605.416266][T12589]  ? call_s_stream+0x221/0x280
[  605.421064][T12589]  ? call_s_stream+0x222/0x280
[  605.425924][T12589]  ? __pfx_call_s_stream+0x10/0x10
[  605.431071][T12589]  ? __pfx_call_s_stream+0x10/0x10
[  605.436250][T12589]  vimc_streamer_pipeline_terminate+0x219/0x360
[  605.442526][T12589]  vimc_streamer_s_stream+0x69f/0x800
[  605.447989][T12589]  vimc_capture_start_streaming+0x230/0x440
[  605.453908][T12589]  ? __video_do_ioctl+0x4ea/0xdd0
[  605.459040][T12589]  ? __pfx_vimc_capture_start_streaming+0x10/0x10
[  605.465520][T12589]  vb2_start_streaming+0x129/0x440
[  605.470672][T12589]  vb2_core_streamon+0x2b5/0x4c0
[  605.475705][T12589]  __video_do_ioctl+0xc23/0xdd0
[  605.480781][T12589]  ? __pfx___video_do_ioctl+0x10/0x10
[  605.486419][T12589]  ? smack_log+0x123/0x540
[  605.490852][T12589]  ? __might_fault+0xc6/0x120
[  605.495636][T12589]  video_usercopy+0x89b/0x1180
[  605.500452][T12589]  ? __pfx___video_do_ioctl+0x10/0x10
[  605.505898][T12589]  ? __pfx_video_usercopy+0x10/0x10
[  605.511111][T12589]  ? smack_file_ioctl+0x29e/0x3a0
[  605.516285][T12589]  ? __fget_files+0x3f3/0x470
[  605.521005][T12589]  v4l2_ioctl+0x189/0x1e0
[  605.525432][T12589]  ? __pfx_v4l2_ioctl+0x10/0x10
[  605.530317][T12589]  __se_sys_ioctl+0xf9/0x170
[  605.534981][T12589]  do_syscall_64+0xf3/0x230
[  605.539515][T12589]  ? clear_bhb_loop+0x35/0x90
[  605.544216][T12589]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  605.550249][T12589] RIP: 0033:0x7f225b57e719
[  605.554727][T12589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  605.574416][T12589] RSP: 002b:00007f225c3aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  605.583188][T12589] RAX: ffffffffffffffda RBX: 00007f225b736058 RCX: 00007f225b57e719
[  605.591411][T12589] RDX: 0000000020000000 RSI: 0000000040045612 RDI: 0000000000000003
[  605.599465][T12589] RBP: 00007f225b5f132e R08: 0000000000000000 R09: 0000000000000000
[  605.607507][T12589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  605.615606][T12589] R13: 0000000000000000 R14: 00007f225b736058 R15: 00007ffc6ac800a8
[  605.623606][T12589]  </TASK>
[  605.626738][T12589] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  605.634038][T12589] CPU: 0 UID: 0 PID: 12589 Comm: syz.6.1847 Not tainted 6.12.0-rc5-syzkaller-00047-g4236f913808c #0
[  605.644807][T12589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  605.654884][T12589] Call Trace:
[  605.658178][T12589]  <TASK>
[  605.661112][T12589]  dump_stack_lvl+0x241/0x360
[  605.665810][T12589]  ? __pfx_dump_stack_lvl+0x10/0x10
[  605.671030][T12589]  ? __pfx__printk+0x10/0x10
[  605.675630][T12589]  ? vscnprintf+0x5d/0x90
[  605.679968][T12589]  panic+0x349/0x880
[  605.683868][T12589]  ? __warn+0x177/0x4e0
[  605.688039][T12589]  ? __pfx_panic+0x10/0x10
[  605.692468][T12589]  __warn+0x34b/0x4e0
[  605.696454][T12589]  ? call_s_stream+0x222/0x280
[  605.701219][T12589]  report_bug+0x2b3/0x500
[  605.705549][T12589]  ? call_s_stream+0x222/0x280
[  605.710315][T12589]  handle_bug+0x60/0x90
[  605.714477][T12589]  exc_invalid_op+0x1a/0x50
[  605.718977][T12589]  asm_exc_invalid_op+0x1a/0x20
[  605.723821][T12589] RIP: 0010:call_s_stream+0x222/0x280
[  605.729193][T12589] Code: f5 1c fa 48 8b 7d 00 48 c7 c6 60 3f cb 8c 89 da e8 a3 4e df 03 48 bd 00 00 00 00 00 fc ff df e9 06 ff ff ff e8 ff 59 b6 f9 90 <0f> 0b 90 e9 de fe ff ff 89 e9 80 e1 07 38 c1 0f 8c 09 fe ff ff 48
[  605.748800][T12589] RSP: 0018:ffffc90002eef980 EFLAGS: 00010293
[  605.754865][T12589] RAX: ffffffff87de7fc1 RBX: 0000000000000000 RCX: ffff88807c239e00
[  605.762837][T12589] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  605.770810][T12589] RBP: 0000000000000000 R08: ffffffff87de7e08 R09: 1ffff920005dde94
[  605.778776][T12589] R10: dffffc0000000000 R11: ffffffff87de7da0 R12: ffff88802a283020
[  605.786742][T12589] R13: 0000000000000000 R14: 1ffff11005450633 R15: 0000000000000000
[  605.794723][T12589]  ? __pfx_call_s_stream+0x10/0x10
[  605.799843][T12589]  ? call_s_stream+0x68/0x280
[  605.804522][T12589]  ? call_s_stream+0x221/0x280
[  605.809284][T12589]  ? __pfx_call_s_stream+0x10/0x10
[  605.814388][T12589]  ? __pfx_call_s_stream+0x10/0x10
[  605.819493][T12589]  vimc_streamer_pipeline_terminate+0x219/0x360
[  605.825739][T12589]  vimc_streamer_s_stream+0x69f/0x800
[  605.831114][T12589]  vimc_capture_start_streaming+0x230/0x440
[  605.837010][T12589]  ? __video_do_ioctl+0x4ea/0xdd0
[  605.842031][T12589]  ? __pfx_vimc_capture_start_streaming+0x10/0x10
[  605.848440][T12589]  vb2_start_streaming+0x129/0x440
[  605.853567][T12589]  vb2_core_streamon+0x2b5/0x4c0
[  605.858503][T12589]  __video_do_ioctl+0xc23/0xdd0
[  605.863358][T12589]  ? __pfx___video_do_ioctl+0x10/0x10
[  605.868806][T12589]  ? smack_log+0x123/0x540
[  605.873229][T12589]  ? __might_fault+0xc6/0x120
[  605.877913][T12589]  video_usercopy+0x89b/0x1180
[  605.882679][T12589]  ? __pfx___video_do_ioctl+0x10/0x10
[  605.888048][T12589]  ? __pfx_video_usercopy+0x10/0x10
[  605.893250][T12589]  ? smack_file_ioctl+0x29e/0x3a0
[  605.898291][T12589]  ? __fget_files+0x3f3/0x470
[  605.902975][T12589]  v4l2_ioctl+0x189/0x1e0
[  605.907298][T12589]  ? __pfx_v4l2_ioctl+0x10/0x10
[  605.912139][T12589]  __se_sys_ioctl+0xf9/0x170
[  605.916729][T12589]  do_syscall_64+0xf3/0x230
[  605.921229][T12589]  ? clear_bhb_loop+0x35/0x90
[  605.925907][T12589]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  605.931808][T12589] RIP: 0033:0x7f225b57e719
[  605.936220][T12589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  605.955821][T12589] RSP: 002b:00007f225c3aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  605.964232][T12589] RAX: ffffffffffffffda RBX: 00007f225b736058 RCX: 00007f225b57e719
[  605.972198][T12589] RDX: 0000000020000000 RSI: 0000000040045612 RDI: 0000000000000003
[  605.980168][T12589] RBP: 00007f225b5f132e R08: 0000000000000000 R09: 0000000000000000
[  605.988142][T12589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  605.996119][T12589] R13: 0000000000000000 R14: 00007f225b736058 R15: 00007ffc6ac800a8
[  606.004105][T12589]  </TASK>
[  606.007264][T12589] Kernel Offset: disabled
[  606.011698][T12589] Rebooting in 86400 seconds..