last executing test programs:

2m59.738197989s ago: executing program 1 (id=1233):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socket$kcm(0x10, 0x2, 0x0)
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
socket$nl_audit(0x10, 0x3, 0x9)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18020000fbffffff02e21a1ceaf7ffffff0000000000909b3ae6b0ad96e6724525f054880000008500"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg(r1, 0x0, 0x4000040)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb4c, 0x9, 0x6, 0x0, 0x3}, 0x0)
add_key(&(0x7f00000000c0)='pkcs7_test\x00', 0x0, &(0x7f0000000000)="100c0681000000ba8b0ad775b31b", 0xe, 0xfffffffffffffffc)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0)
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
add_key$fscrypt_provisioning(&(0x7f0000000200), &(0x7f0000000280)={'syz', 0x2}, &(0x7f0000000380)={0x1, 0x0, @a}, 0x48, 0xffffffffffffffff)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000140)={0x0, 0xdffffffe, 0x80, 0x0, 0x0, "8100e1c8e80b598c36ff000800"})
r4 = syz_open_pts(r3, 0x602021)
fcntl$setstatus(r4, 0x4, 0x102800)
write(r4, &(0x7f0000000000)="d5", 0xfffffedf)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x582})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, &(0x7f0000000240))
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0x3)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8004}]})
socket$inet6_sctp(0xa, 0x1, 0x84)
close_range(r5, 0xffffffffffffffff, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000001000000206c000000ff020000000000000000000000000001feffffffffffffff000000000000000000000000000000000100000000000008c802000000000100060000000000000000000000000004000000000000000000ffffffffff1f0000b4ed0688e49499fe0000000000000000040000000000000000000000090000000000000000000000000000000200010003000000000000000800180009000000480003006465666c61746500"/245], 0x140}, 0x1, 0x0, 0x0, 0x4075}, 0x4800)

2m58.734766689s ago: executing program 1 (id=1240):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a20000000000a01040000000000000000010000030900010073797a30000000002c000000030a01010000000c00000000010000000900010073797a30000000000900030073797a320000000090000000060a010400000000000000000100000008000b400000000068000480340001800b000100657874686472000024000280080001400000000c080003400000000008000440000000220500020007000000300001800c000100626974776973650020000280080003400000000208000140000000140800024000000012040004800900010073797a30"], 0x104}}, 0x0)

2m58.364087027s ago: executing program 1 (id=1242):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000440)={'tunl0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x40, 0x0, 0x0, 0xfffffffe, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0xfc, 0x4, 0x0, @private=0xa010101, @initdev={0xac, 0x1e, 0x1, 0x0}}}}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f3, &(0x7f0000000940)={'syztnl0\x00', &(0x7f00000000c0)={'syztnl0\x00', 0x0, 0x20, 0x874f, 0x1, 0x10, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0xc4, 0x4, 0x0, @multicast1, @multicast1}}}})
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f00000000c0)='cpu.stat\x00', 0x275a, 0x0)
preadv(r2, &(0x7f0000000100), 0xa, 0x700, 0x0)
setsockopt$RDS_GET_MR(r2, 0x114, 0x2, &(0x7f0000000240)={{&(0x7f00000001c0)=""/50, 0x32}, &(0x7f0000000200), 0x40}, 0x20)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002100), 0x4009, &(0x7f0000000480)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c67726f74705f69643da67b9d03af5940517d0015002b9f00000000806bcb04c5a1cd943e1dc2d12e2f1387da75430561963a9a709b4fb4d4a1eceed203c7d47a9f4e1d6da3dcb72162ebf2b00c7afebd2cbb399ddefa4d127ad849aa169fb01ccd41d8f50c85ac7155027f90", @ANYRESDEC=0x0, @ANYBLOB=',\x00']) (async)
read$FUSE(r3, &(0x7f0000008340)={0x2020, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}, 0x2020) (async)
llistxattr(&(0x7f0000000300)='./file0\x00', 0x0, 0x0) (async)
bind$inet(0xffffffffffffffff, 0x0, 0x0) (async)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200087fc, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) (async)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
getpeername$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14) (async, rerun: 64)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async, rerun: 64)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000040)=0x3fc) (async)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, 0x0) (async)
sysinfo(&(0x7f0000000000)=""/196) (async)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000000)=0x15) (async)
ioctl$TCSETS(r6, 0x404c4701, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x400000, 0x8, "3eccd8fd0000000000000010000000040100"}) (async)
r7 = syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)
syz_usb_control_io$hid(r7, 0x0, 0x0)
syz_usb_control_io(r7, &(0x7f0000000980)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) (async, rerun: 32)
ioctl$TIOCSETD(r6, 0x5423, 0x0) (rerun: 32)

2m58.285300637s ago: executing program 1 (id=1244):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_GET_NESTED_STATE(r2, 0xc080aebe, &(0x7f000000a100)={{0x0, 0x0, 0xfffffffffffffcfd}, '\x00', "00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300"})

2m58.061383311s ago: executing program 1 (id=1246):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$tipc(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000480)="c3e972bd85a6d84136d6dd55048d3593a74f338ce6772ab9a6f64041c2f6fbbecdc08ebcd3192b6a53662dae7c8e9c665e80a5d0925f728dcac30c29793992e588952653d414cb8ccdabc38767fee819ec5af0c5", 0x54}], 0x1, 0x0, 0x0, 0x4000}, 0x0)
r2 = dup2(r1, r0)
recvfrom$x25(r2, &(0x7f0000000280)=""/83, 0x53, 0x2, 0x0, 0x0) (async)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005"], 0x140}}, 0x0)

2m57.773126226s ago: executing program 1 (id=1251):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
r2 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
lseek(r2, 0x851, 0x0)
mkdir(&(0x7f0000000000)='./file1\x00', 0x74)
r3 = syz_io_uring_setup(0x89c, &(0x7f00000002c0)={0x0, 0x89ba, 0x3200, 0x0, 0x209}, &(0x7f0000000280)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
r6 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000380), 0x101202, 0x0)
read$nci(r6, &(0x7f0000000100)=""/107, 0x6b)
write$nci(r6, &(0x7f0000000100)=ANY=[], 0x4)
writev(r6, &(0x7f00000004c0)=[{&(0x7f00000003c0)="ab", 0x1}], 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x41, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x40010142, 0x0, {0x0, r7}})
io_uring_enter(r3, 0x847ba, 0x0, 0xe, 0x0, 0x0)
r8 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r9 = open(&(0x7f0000000180)='./file1\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r8, 0xc0189378, &(0x7f0000000080)={{0x1, 0x1, 0x18, r9, {r8}}, './file0\x00'})
ioctl$sock_qrtr_SIOCGIFADDR(r2, 0x8915, &(0x7f0000000040)={'veth1_virt_wifi\x00'})
ioctl$TIOCL_PASTESEL(r2, 0x541c, &(0x7f0000000200))
write$cgroup_pid(r1, &(0x7f00000001c0), 0x12)
sync()
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f00000000c0)={0x6, [0x4, 0xfae3, 0x4, 0x10, 0x1, 0x7]}, &(0x7f0000000140)=0x10)
sync()

2m42.6941184s ago: executing program 32 (id=1251):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
r2 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
lseek(r2, 0x851, 0x0)
mkdir(&(0x7f0000000000)='./file1\x00', 0x74)
r3 = syz_io_uring_setup(0x89c, &(0x7f00000002c0)={0x0, 0x89ba, 0x3200, 0x0, 0x209}, &(0x7f0000000280)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
r6 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000380), 0x101202, 0x0)
read$nci(r6, &(0x7f0000000100)=""/107, 0x6b)
write$nci(r6, &(0x7f0000000100)=ANY=[], 0x4)
writev(r6, &(0x7f00000004c0)=[{&(0x7f00000003c0)="ab", 0x1}], 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x41, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x40010142, 0x0, {0x0, r7}})
io_uring_enter(r3, 0x847ba, 0x0, 0xe, 0x0, 0x0)
r8 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r9 = open(&(0x7f0000000180)='./file1\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r8, 0xc0189378, &(0x7f0000000080)={{0x1, 0x1, 0x18, r9, {r8}}, './file0\x00'})
ioctl$sock_qrtr_SIOCGIFADDR(r2, 0x8915, &(0x7f0000000040)={'veth1_virt_wifi\x00'})
ioctl$TIOCL_PASTESEL(r2, 0x541c, &(0x7f0000000200))
write$cgroup_pid(r1, &(0x7f00000001c0), 0x12)
sync()
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f00000000c0)={0x6, [0x4, 0xfae3, 0x4, 0x10, 0x1, 0x7]}, &(0x7f0000000140)=0x10)
sync()

8.637024935s ago: executing program 2 (id=2446):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe4000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, &(0x7f00000000c0)="3b76210fb6150f209e440f20c0663503000000440f22c00fa2660fc7b2d42af30fa7d0440f20c066350d000000440f22c06767f2caab12bad004ec", 0x3b}], 0x1, 0xd, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, 0x0}], 0x1, 0x41, &(0x7f0000000100)=[@cr0={0x0, 0x20000005}], 0x1)
ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f00000002c0)=ANY=[@ANYBLOB="0200"])
ioctl$KVM_RUN(r1, 0xae80, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="02080000010000000040c658000000010014e654", @ANYRESHEX=0x0], 0x18}}, 0x8005)
io_setup(0x30, &(0x7f0000000600))
r2 = socket(0x10, 0x3, 0x0)
sendto$inet6(r2, &(0x7f0000000000)="7800000018002507b9409b14ffff00000202be04020506056403040c5c0009003f0020010a0000000d0085a168216b46d32345653600648d27000b000a00080049935ade4a460c89b6ec0cff3959547f509058ba86c902007a00004a32000402160008200800000000000000e218d1ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x0)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
r3 = creat(0x0, 0x2)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r5, 0x0)
syz_emit_ethernet(0x42, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x34, 0x300, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x3, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x8, 0x2, 0xfffe, 0x0, 0x0, {[@mptcp=@syn={0x1e, 0xc, 0x9, 0x1, 0x8, 0x2, 0x1}]}}}}}}}, 0x0)
close(r3)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000100), r2)

7.657254187s ago: executing program 2 (id=2453):
syz_usb_connect(0x0, 0x24, &(0x7f0000000700)=ANY=[@ANYBLOB="1201000059d360205f0501d09288000000010902120001000000000904"], 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
keyctl$dh_compute(0x17, &(0x7f0000000000), 0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)={'crc32c\x00'}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
setuid(0xee01)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0xffffffff}, 0x48)

6.269342055s ago: executing program 2 (id=2463):
sendmsg$key(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYRES8=0x0], 0x18}}, 0x1)
io_setup(0x30, &(0x7f0000000600)=<r0=>0x0)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
io_submit(r0, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f00000000c0)="01", 0x24}])

6.037030338s ago: executing program 2 (id=2468):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8001, 0x0, 0x0, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1c0002, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x4, 0x0, 0x0, r4}, &(0x7f0000000200)=<r6=>0x0, &(0x7f00000001c0)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r3, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r5, 0x612a, 0x17e, 0x0, 0x0, 0x0)
r8 = fanotify_init(0x200, 0x101000)
readv(r8, &(0x7f00000001c0)=[{&(0x7f0000000080)=""/136, 0x88}], 0x1)
connect$unix(r1, &(0x7f0000000380)=@file={0x1, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r9 = syz_open_procfs(0x0, 0x0)
preadv(r9, 0x0, 0x0, 0x206, 0x2b4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
socket$nl_route(0x10, 0x3, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x3)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_SETFSUUID(r0, 0x4008662c, &(0x7f0000000080)={0x10, 0x0, "338e3468c0ad2a4f4813347ed3e1c0bf"})
lsetxattr$security_capability(&(0x7f0000000080)='./cgroup/cgroup.procs\x00', &(0x7f0000000240), &(0x7f00000002c0)=@v2={0x2000000, [{0x6, 0xd62e}, {0x5, 0x1}]}, 0x14, 0x0)
lchown(&(0x7f0000000000)='./cgroup/cgroup.procs\x00', 0x0, 0xee01)
close(r0)
r10 = creat(0x0, 0xecf86c37d53049cc)
close(r10)

5.033889862s ago: executing program 2 (id=2477):
syz_usb_connect(0x1, 0x24, &(0x7f0000000240)=ANY=[], 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80801)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0xa031, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000100)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000339000/0x1000)=nil, 0x800000})
socket$netlink(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x12, 0x4, 0x8, 0xc}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000001080021850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000002100), 0x280449c, &(0x7f0000002140)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(0xffffffffffffffff, &(0x7f0000006380)={0x2020, 0x0, <r4=>0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000004200)={0x50, 0x0, r4, {0x7, 0x1f, 0x0, 0x2026012, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x50)
syz_fuse_handle_req(r3, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r6 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r6)
syz_usb_connect(0x4, 0x24, &(0x7f0000000400)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r6, 0x40085507, &(0x7f0000000080))
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r7)
r8 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r8, 0x0, 0x0)
openat(r8, &(0x7f0000000000)='./file0\x00', 0x4600, 0x1)
setreuid(r5, r5)

4.232703121s ago: executing program 0 (id=2481):
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x561c0, 0x0)
getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f00000000c0)=0x4) (async)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000100)={<r1=>0x0, @in6={{0xa, 0x4e22, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x2}}, 0x80, 0x8}, &(0x7f00000001c0)=0x90)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000200)={0x7, 0x7, 0x5, 0x800, 0x10000, 0x101, 0x200, 0xde800, r1}, 0x20) (async)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000240), 0x2000, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000280)={0xa, 0x6, 0x6, 0x1ab, 0x3}) (async, rerun: 32)
sendmsg$can_raw(r0, &(0x7f0000000380)={&(0x7f00000002c0), 0x10, &(0x7f0000000340)={&(0x7f0000000300)=@can={{0x1, 0x0, 0x1}, 0x4, 0x1, 0x0, 0x0, "03e7847d1e4b0937"}, 0x10}, 0x1, 0x0, 0x0, 0x4000}, 0x80) (rerun: 32)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f00000003c0)={<r3=>r0})
getsockopt$IPT_SO_GET_INFO(r3, 0x0, 0x40, &(0x7f0000000400)={'mangle\x00', 0x0, [0xfffffffa, 0x9, 0x6, 0x7, 0xfffffff8]}, &(0x7f0000000480)=0x54)
r4 = socket$nl_sock_diag(0x10, 0x3, 0x4)
setsockopt$sock_linger(r4, 0x1, 0xd, &(0x7f00000004c0)={0x1, 0x40}, 0x8) (async)
ppoll(&(0x7f0000000500)=[{r3, 0xa800}, {r4, 0x1c0}, {r4, 0x1010}], 0x3, &(0x7f0000000540)={0x0, 0x989680}, &(0x7f0000000580)={[0x380000]}, 0x8) (async, rerun: 64)
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(r0, 0xc0984124, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) (async, rerun: 64)
read$FUSE(r0, &(0x7f0000000680)={0x2020}, 0x2020)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000001, 0x2010, r4, 0xbbaca000) (async)
fcntl$F_SET_RW_HINT(r4, 0x40c, &(0x7f00000026c0)=0x3) (async)
setsockopt$inet6_icmp_ICMP_FILTER(r3, 0x1, 0x1, &(0x7f0000002700)={0x7fffffff}, 0x4) (async)
ioctl$sock_SIOCGPGRP(r3, 0x8904, &(0x7f0000002740)) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f00000027c0), r3)
sendmsg$IPVS_CMD_SET_CONFIG(r5, &(0x7f0000002900)={&(0x7f0000002780)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000028c0)={&(0x7f0000002800)={0x84, r6, 0x300, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_SERVICE={0x30, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x25, 0x3}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@mcast2}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x8, 0x10}}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x5}, @IPVS_CMD_ATTR_SERVICE={0x30, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x35}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x14}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x1000}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x4048840}, 0x4044001)
ioctl$EVIOCGABS3F(r0, 0x8018457f, &(0x7f0000002940)=""/10)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000002980)={r1, 0xf2}, 0x8)
r7 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x3d)
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r7, 0x4020aed2, &(0x7f00000029c0)={0x10000, 0x100000})
sendmsg$nl_route(r0, &(0x7f0000002b00)={&(0x7f0000002a00)={0x10, 0x0, 0x0, 0xd25763c74d4c82f9}, 0xc, &(0x7f0000002ac0)={&(0x7f0000002a40)=@RTM_GETNSID={0x44, 0x5a, 0x0, 0x70bd2c, 0x25dfdbfb, {}, [@NETNSA_FD={0x8, 0x3, r0}, @NETNSA_FD={0x8, 0x3, r0}, @NETNSA_NSID={0x8, 0x1, 0x4}, @NETNSA_FD={0x8, 0x3, r0}, @NETNSA_NSID={0x8, 0x1, 0x1}, @NETNSA_NSID={0x8, 0x1, 0x1}]}, 0x44}, 0x1, 0x0, 0x0, 0x10000000}, 0x40)
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r2, 0x8008f511, &(0x7f0000002b40)) (async)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000002bc0)={0x5, 0x1e, &(0x7f0000002b80)="9b1abadd57114cd8e4674bd8e69027f7f196acff6beb34277e060e8026b6"}) (async)
io_uring_setup(0xf79, &(0x7f0000002c00)={0x0, 0x6942, 0x0, 0x0, 0x2e3, 0x0, r0})

4.153400706s ago: executing program 0 (id=2482):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0xfffffffffffffff3)
ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f00000001c0)={0x1c, 0x8, 0x0, "b75c89e7a20c8eac163873c1df6354cecc0501ce65e100", 0x4f565559})
r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x5, 0x40000)
ioctl$USBDEVFS_GETDRIVER(r1, 0x41045508, &(0x7f0000000080)={0x6, "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"})

4.151059274s ago: executing program 0 (id=2483):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000180)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000140)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000280)='%+9llu \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1, r0}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x16, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000ffffffffffffffc0b7080000000000007b8af8ff00000000b7080000341200007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

4.036317115s ago: executing program 0 (id=2485):
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000040)={0x1, 0x0, [{0x284}]})
setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x5}, 0x8)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478ef8ed"])
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x2, 0x9, 0x4002004c4, 0x1004, 0x45c5, 0xc595, 0x7, 0x2, 0xffffffffffffffff, 0x2000000000000000, 0x80000004000000, 0xc], 0x8000000, 0x2010d3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r3 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000413f5f201d0650c16fce0102030109021b00010000100009043300011870f500090582020002"], 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(r3, 0x82, 0xa8, &(0x7f0000000040)=ANY=[@ANYBLOB="6b0ee0b3d41b1b"])

3.943913311s ago: executing program 5 (id=2487):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
setsockopt$netrom_NETROM_T4(r0, 0x103, 0x6, &(0x7f0000000240)=0x8, 0x4)

3.873226945s ago: executing program 5 (id=2489):
sendmsg$key(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020800000100000000000001000000000100140003"], 0x18}}, 0x0)
io_setup(0x30, &(0x7f0000000600)=<r0=>0x0)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
io_submit(r0, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x600, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f00000000c0)="01", 0x24}])

3.519032469s ago: executing program 3 (id=2490):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
shutdown(0xffffffffffffffff, 0x0)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r3 = syz_io_uring_setup(0x8d2, &(0x7f0000000240)={0x0, 0x0, 0x1000, 0x2}, &(0x7f0000000040)=<r4=>0x0, &(0x7f0000000080)=<r5=>0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = dup(r7)
ioctl$KVM_REGISTER_COALESCED_MMIO(r8, 0x4010ae67, &(0x7f00000000c0)={0x0, 0xc000})
sendmsg$kcm(r8, &(0x7f0000000140)={&(0x7f00000000c0)=@caif=@util={0x25, "6ae16344da22a2ab6e179a2881fa1d40"}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000300)="c65ac81c20a6bc3293973764054503d8936feba5a153b92746a6104eee62bb07518dc87219d0f9ecff31782b3f248ba97da9847e4d8482a2bef4b76c0cd6299f372545238bff2350303fcf961b8039643bdab86a9f8994c3b17686c49d368bac7c9a8b2fe4571412d3cac4e19321f16fe460000b7a66b7876033f98d735369c89ff94b2f86d7ef6e06a6bb92d19ae3d866d14cf201414fdf53acdb7609ac5057f44d72b259b51b4f54015af5927555b875a1836189d22bc756b5c90bc4dce2ec65a5af9d9aac0433a2d47abba7c81beb8fa096d2956c3f324d0a8bb13862470e2614fb3e7c7de95f1fbd2fce0d8a24662224b1c0dd3014f5e4", 0xf9}, {&(0x7f0000000400)="bb574fc18077cd419e3c8cd98c6b98c3ba2ff3f6434cc5bae07689b9e712bbc8acce59f19162e0107d61be024ba798ae1d50a55b26373863b2cc347f0d4343ce4da7a7780a8cbcc852b79928f5721b0eff066a80a78cf271604dbcd2271d9c8f5eb17d385a7f56261adff9270f48ea855d3731b66b98cba91ee81d827301093f8faedf249e314f8a568f5f52fd834f5e6ffd9714895808c54d70560b45", 0x9d}], 0x2, &(0x7f00000004c0)=[{0x100, 0x1, 0x89, "177a50fe2e651f2ec98071e1d8702fb346b1eb0b19f75d41d5c9ec1f71c1ce6f8e9727421dc2dc78b03b88bc6fd9a4afd103a4f51db9e4c34584c74936875ce29e51eb4b8b65c8afd0ff6071a83061988cff1be39c7160839be99db06ca87d455e9cf1d96b7577a5740f639a8fb82af27e3a9b5bf2bbeaceec3180936ce3b4ce0ec7765e61429788b30cab4563c94d905f539741b656c18071f3723ca62d009bdf4dad24329282ca1ab6fbd3637b38944635e91d6e280031db70a912181c8050695f82a2d5618a10a74525f879d30740cd2096d9e7183f8343340be57a17d41cb3ec2d49631a585ccd23b09d0fd931"}, {0x50, 0x110, 0x7, "ce7c94c470c1864b14199586858f8f6e2a8881f859b6e2659e3eed34ba119bc854af5538ec82037d0a937f2c0b6642a2d6d5668629492fa38725"}, {0xa8, 0x116, 0x1, "5f47aa568d96759001924a949176c88b8667b08f7ac8f4f8dcbdbcfc42b1b927c480b599e6f4ae58f22ad5241f4b2683986fd4fb27a8b5b64e61dc4a23acfe4694ecccc7f8f643230ea77a6e82031500ac1502d89a78aec0a951bd9caf4a28c34d296d4e8e22a5cbdabde3a422b3506cba22e4fa35ea697b82530241e7f89910ef55c500def9a44d611e437da02b8989a2d667"}, {0x68, 0x84, 0xfffffffe, "a35a38d652e766ceb42a8d7465ba7c97bdb1ae96e25ff6ba7bf00b9262e989ec0354a801279061c3ee629f19445b2c40dce18143e8a3e8a4774703bde90fc551a261f281c52a50239b2465707c3494fecd3d556ef604"}, {0x1010, 0x112, 0x8043, "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"}, {0xa8, 0x104, 0x3, "0c397b3316e4f15d85e1f35f55f30ab15a3c0bb734adcc153e3229923d0dab1441418bada3bb602bdb8f4501e84f4b37ce81d09fb3f1c5d26a31746f0690376e9d3942aafa5b94d0f4582a896aeef6fdbffd99ff9b8e844107bc127132a03804653517cb5c574b241a57408317bf9f36244f81762b6ad357fb602480c73f5d6fb1d3aa8a73158272667596c38c51dd047437c4f0"}, {0x1010, 0x102, 0x0, "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"}, {0x48, 0x104, 0x8aa, "6cbcf0fa46ea29b8198b30ebf015ce34719929511a969b6243bff87e40f401ff486027f5d59c409cf0267c87344262897029a1d08b6b"}], 0x2370}, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x40, 0x0, r2, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0, 0x20000044})
io_uring_enter(r3, 0x47ba, 0x3e80, 0x0, 0x0, 0x0)

3.426647912s ago: executing program 5 (id=2491):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_GET_NESTED_STATE(r2, 0xc080aebe, &(0x7f000000a100)={{0x0, 0x0, 0xfffffffffffffcfd}, '\x00', "000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300"})

3.313249274s ago: executing program 5 (id=2492):
r0 = accept$inet6(0xffffffffffffffff, 0x0, &(0x7f0000000040))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000d84000)={0xa, 0x2, 0x0, @empty, 0x7}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x20000841, &(0x7f0000001140)={0xa, 0x2, 0x398, @empty}, 0x1c)
shutdown(r1, 0x1)
setsockopt$sock_int(r1, 0x1, 0x12, &(0x7f0000000000)=0x7ff, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000002c0)={'erspan0\x00'})
ioctl$BTRFS_IOC_START_SYNC(0xffffffffffffffff, 0x80089418, &(0x7f0000000080)=<r3=>0x0)
ioctl$BTRFS_IOC_RM_DEV_V2(r0, 0x5000943a, &(0x7f0000000140)={{r2}, r3, 0x1a, @inherit={0x68, &(0x7f00000000c0)={0x0, 0x4, 0x3, 0x101, {0x5, 0x3, 0x3, 0xffffffffffffe5a5, 0xa}, [0x1000, 0x9, 0x2b08, 0x9]}}, @name="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"})
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="13010000bd460e10490d1070900c010203010902120001000000000904"], 0x0)

2.960237679s ago: executing program 4 (id=2494):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6_udp(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, 0x0, 0xc0)
sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1004000, 0x0, 0xb49, 0x9, 0x6, 0x0, 0x3}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x48)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x5}, 0x1c)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e0000002000000000000000000000000fffff000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)
r6 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_int(r6, 0x29, 0x46, 0x0, 0x0)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
statx(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x2000, 0x400, &(0x7f00000001c0))
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
recvfrom$inet(r7, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)
socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f0000000280)={0x0, @in={{0x2, 0x4e22, @rand_addr=0x64010100}}, 0x4}, 0x90)

2.47307349s ago: executing program 3 (id=2495):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r0, &(0x7f0000000000)={{0x6, @null}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @null, @null, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @bcast]}, 0x48)
connect$netrom(r0, &(0x7f0000000080)={{0x6, @rose}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @default, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x8, 0x0}, @default, @bcast]}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
mkdirat(r1, &(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r2 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
io_uring_enter(r1, 0x31e0, 0xc35d, 0x54, &(0x7f0000000600)={[0xec]}, 0x8)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x40c0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f00000000c0)={'syztnl0\x00', &(0x7f0000000180)={'syztnl1\x00', 0x0, 0x0, 0x5, 0x7, 0x6e2a, 0x41, @private2, @private2={0xfc, 0x2, '\x00', 0x1}, 0x40, 0x20, 0x100, 0x8000}})
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000280)={r2, <r3=>0xffffffffffffffff}, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x23, &(0x7f00000004c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0xd7}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [@alu={0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x8}, @jmp={0x5, 0x1, 0xa, 0x2, 0x9, 0xfffffffffffffff8, 0x4}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @btf_id={0x18, 0x1, 0x3, 0x0, 0x3}, @call={0x85, 0x0, 0x0, 0x48}, @cb_func={0x18, 0xc91df2313d18096c, 0x4, 0x0, 0x8}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0xdef, 0x0, 0x0, 0x40f00, 0x4c, '\x00', 0x0, 0x0, r1, 0x8, &(0x7f0000000200)={0x9, 0x3}, 0x8, 0x10, &(0x7f0000000240)={0x1, 0x8, 0x40, 0x1f6}, 0x10, 0x0, 0x0, 0x1, &(0x7f00000003c0)=[r1, r2, r3, r1, r1], &(0x7f0000000400)=[{0x5, 0x5, 0x10, 0xa}], 0x10, 0x10001}, 0x94)
fanotify_init(0xf00, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x4, 0x0, &(0x7f0000000300)='syzkaller\x00', 0x4, 0xb9, &(0x7f0000000440)=""/185, 0x41000, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000500)={0x3, 0x1}, 0x8, 0x10, &(0x7f0000000540)={0x0, 0x1, 0x5, 0x7}, 0x10, 0x0, 0x0, 0x9, 0x0, &(0x7f0000000740)=[{0x2, 0x5, 0xe, 0x1}, {0x5, 0x3}, {0x5, 0x3, 0x0, 0xa}, {0x3, 0x2, 0x10, 0x3d0fad6d7b6fcb7a}, {0x4, 0x2, 0x1}, {0x3, 0x2, 0x0, 0xa}, {0x3, 0x4, 0x4, 0x6}, {0x1, 0x3, 0xc, 0x7}, {0x2, 0x5, 0x7, 0x4}], 0x10, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000600)='f2fs_filemap_fault\x00', r4, 0x0, 0x3e3f}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_buf(r8, 0x29, 0x6, &(0x7f0000000180)="1000000000000000010000000c000000", 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000900)={&(0x7f0000000800)=ANY=[@ANYBLOB="9feb0100180000000000000002"], 0x0, 0x1a, 0x0, 0x6, 0x5}, 0x28)
syz_open_procfs(0x0, &(0x7f0000000400)='map_files\x00')

1.973818373s ago: executing program 5 (id=2496):
syz_usb_connect(0x0, 0x24, &(0x7f0000000700)=ANY=[@ANYBLOB="1201000059d360205f0501d09288000000010902120001000000000904"], 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
keyctl$dh_compute(0x17, &(0x7f0000000000), 0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)={'crc32c\x00'}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
setuid(0xee01)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd0}, 0x48)

1.890326439s ago: executing program 4 (id=2497):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0900000004000000dd0000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000001f80)=ANY=[@ANYBLOB="1800000000000000000000000000ffc0180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000073000000850000005000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

1.82939328s ago: executing program 4 (id=2498):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a20000000000a01040000000000000000010000030900010073797a30000000002c000000030a01010000000000220000010000000900010073797a30000000000900030073797a320000000090000000060a010400000000000000000100000008000b400000000068000480340001800b000100657874686472000024000280080001400000000c080003400000000008000440000000220500020007000000300001800c000100626974776973650020000280080003400000000208000140000000140800024000000012040004800900010073797a30"], 0x104}}, 0x0)

1.825314665s ago: executing program 4 (id=2499):
socket$packet(0x11, 0x2, 0x300)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000640)=ANY=[@ANYBLOB="5800000010001fff000000000100000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000300012800b00010067656e657665000020120280140007000000000000000000000000000000000105000c000100000008000a00", @ANYRES32=r2], 0x58}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

1.804435075s ago: executing program 4 (id=2500):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x7ffb, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffbf}, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4001, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, 0x0, 0x0)
setsockopt$MRT6_INIT(0xffffffffffffffff, 0x29, 0xc8, &(0x7f00000002c0), 0x4)
r2 = signalfd4(r0, 0x0, 0x0, 0x800)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r2, 0x4068aea3, &(0x7f00000001c0)={0x79, 0x0, 0x2b})
sendmsg$key(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[], 0x18}}, 0x0)
io_setup(0x30, &(0x7f0000000600)=<r3=>0x0)
pipe2$9p(&(0x7f00000000c0), 0x4000)
r4 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
io_submit(r3, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r4, &(0x7f00000000c0)="01", 0x24}])
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r5, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r6, 0x0, 0x33, &(0x7f0000000040)=0x80000001, 0x4)
bind$l2tp(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @broadcast, 0x2}, 0x10)

1.596338407s ago: executing program 2 (id=2501):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x8000)
sched_setattr(0x0, 0x0, 0x0)
r3 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000080), 0xffffffffffffffff)
setsockopt$inet6_tcp_int(r3, 0x6, 0x1, &(0x7f0000000200)=0x4, 0x4)
sendto$inet6(r0, &(0x7f0000000040), 0x0, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0x396, @empty}, 0x1c)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$setstatus(r4, 0x4, 0x42800)
close(0x3)
r5 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000002300)="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", 0xef1)
r6 = fanotify_init(0x200, 0x0)
r7 = memfd_create(&(0x7f0000000180)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xac\xbe\xe1}knh#\xcf)\x0f\xc8\xc0\"\x9cc\x10d\xee\xa9\x8b\x06\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\xcf~\xb90a\xa9\xb2\x04\x1d\xa1\xce\x8b\x19\xea\xef\xe3\x00\x00\x00\x00\x00\x00\x00\x00', 0x0)
r8 = dup(r7)
fanotify_mark(r6, 0x1, 0x48001059, r8, 0x0)
r9 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_tcp_SIOCATMARK(r9, 0x8905, &(0x7f0000000100))
r10 = add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0xfe3a, 0xfffffffffffffffe)
keyctl$read(0xb, r10, &(0x7f0000001300)=""/4096, 0xffffffffffffffd2)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000300)='yeah\x00', 0x5)
unshare(0x68040200)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_usb_connect$uac1(0x6, 0x71, 0x0, 0x0)

1.39334942s ago: executing program 3 (id=2502):
sendmsg$key(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020800000100000000000001000000000100140003"], 0x18}}, 0x0)
io_setup(0x30, &(0x7f0000000600)=<r0=>0x0)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
io_submit(r0, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0xfeff, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f00000000c0)="01", 0x24}])

1.33876348s ago: executing program 3 (id=2503):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="28050001d30d00000000000000017c1bac3088df8b503a4055c7f98fd117b32f50d04c554f83"], 0x528}}, 0xc000) (async)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6) (async)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0) (async)
r3 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f0000000000)={0x9, 0x1, 0x4, 0x0, 0x80})
ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f0000000cc0)={0x1, @pix={0x3, 0x4, 0x52424752, 0x6, 0x7, 0x3ff, 0x0, 0x1, 0x1, 0x6, 0x2, 0x5}}) (async)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='net/xfrm_stat\x00')
read$FUSE(r4, &(0x7f00000020c0)={0x2020}, 0x2020) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000440)={'lo\x00'}) (async)
ioctl$MEDIA_IOC_REQUEST_ALLOC(0xffffffffffffffff, 0x80047c05, &(0x7f0000000180)=<r5=>0xffffffffffffffff)
ioctl$vim2m_VIDIOC_PREPARE_BUF(r3, 0xc058565d, &(0x7f0000000200)=@multiplanar_fd={0x2, 0x2, 0x4, 0x400, 0x7, {0x0, 0xea60}, {0x3, 0x0, 0x8, 0x9, 0x10, 0x3, "f609d230"}, 0x6, 0x4, {&(0x7f0000000100)=[{0xb1a, 0x8, {r4}, 0x5}, {0xffffff6a, 0x1, {}, 0x9}]}, 0x3, 0x0, r5}) (async)
setsockopt$inet6_tcp_int(r2, 0x6, 0x17, &(0x7f0000000880)=0x3, 0x4) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000400)={'batadv_slave_0\x00'})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000064000000030a017f7f00000000000000050000000900010073797a30000000000900030073797a300000000008000a400000000328000480080002400000001208000140000000000d0003"], 0xac}, 0x1, 0x0, 0x0, 0xc0c1}, 0x0)
r7 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000280), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r7, 0x40345410, &(0x7f00000083c0)={{0x1}})
read(r7, &(0x7f00000002c0)=""/200, 0x39)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r7, 0x54a2)
sendmsg$nl_xfrm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="fc0000001900010000000000fddbdf25fc020000000000000000000000000002ac14140b000000000000000000000000000000030000000002002020"], 0xfc}}, 0x0)

1.275638381s ago: executing program 3 (id=2504):
socket(0x10, 0x80002, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000e00)='/proc/sys/net/ipv4/tcp_mtu_probing\x00', 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000240)=[@sack_perm, @sack_perm, @window={0x3, 0x7}, @sack_perm, @window={0x3, 0x0, 0x401}, @window, @timestamp], 0x7)
r4 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r4, 0x89e2, &(0x7f0000000340)={<r5=>r4})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
ioctl$SIOCRSSL2CALL(r5, 0x89e2, 0x0)
close(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18080000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700600095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

589.322059ms ago: executing program 0 (id=2505):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000980)=ANY=[@ANYBLOB="5c0100001000130700000000fcdbdf252001000000000000000000000000000020010000000000000000000000000001000000004e210002000000006c000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="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"], 0x15c}, 0x1, 0x0, 0x0, 0x880}, 0x2000)

588.973879ms ago: executing program 0 (id=2506):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6_udp(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, 0x0, 0xc0)
sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1004000, 0x0, 0xb49, 0x9, 0x6, 0x0, 0x3}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x5}, 0x1c)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000003c00000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500"/135], 0xfc}}, 0x0)
r6 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_int(r6, 0x29, 0x46, 0x0, 0x0)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
sendmmsg$inet6(r4, &(0x7f0000007e40)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x0, @dev}, 0x18, 0x0}}], 0x6c00, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
statx(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x2000, 0x400, &(0x7f00000001c0))
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x100000000, 0x9, &(0x7f0000000140))
recvfrom$inet(r7, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)
socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f0000000280)={0x0, @in={{0x2, 0x4e22, @rand_addr=0x64010100}}, 0x4}, 0x90)

523.469895ms ago: executing program 5 (id=2507):
semget$private(0x0, 0x6, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000002200), 0x80002, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4001, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, 0x0, 0x0)
setsockopt$MRT6_INIT(r2, 0x29, 0xc8, &(0x7f00000002c0), 0x4)
r3 = signalfd4(r0, &(0x7f0000000080)={[0xc658]}, 0x8, 0x800)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r3, 0x4068aea3, &(0x7f00000001c0)={0x79, 0x0, 0x2b})
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
r4 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
writev(r4, &(0x7f0000000100)=[{&(0x7f00000002c0)="8c", 0x1}], 0x1)
io_setup(0x30, &(0x7f0000000600)=<r5=>0x0)
pipe2$9p(&(0x7f00000000c0), 0x4000)
r6 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
io_submit(r5, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r6, &(0x7f00000000c0)="01", 0x24}])
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r7, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r8 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r8, 0x0, 0x33, &(0x7f0000000040)=0x80000001, 0x4)
socket$inet_mptcp(0x2, 0x1, 0x106)

303.156388ms ago: executing program 3 (id=2508):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffff0000000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = syz_usb_connect$hid(0x0, 0x90, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000105804125000000000000109022400010000c04009040000010300000009210900000122a00009058103"], 0x0)
syz_usb_control_io(r5, 0x0, 0x0)
r6 = socket(0x1, 0x80802, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f00000000c0)={0x10000001})
epoll_pwait(r7, &(0x7f0000000080)=[{}], 0x1, 0x80000000, 0x0, 0x0)
shutdown(r6, 0x0)
syz_usb_control_io(r5, &(0x7f00000000c0)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="0000d2"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r8 = dup(r4)
ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
r10 = socket$inet6_udp(0xa, 0x2, 0x0)
flistxattr(r10, 0x0, 0x0)
write$binfmt_script(r9, &(0x7f0000000000), 0x208e24b)
ioctl$TUNSETFILTEREBPF(r8, 0x800454e1, &(0x7f0000000180)=r9)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c00000010004b0400f4ed00000000007a000000", @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800b00010062726964676500001c0002800800040000000000060006"], 0x4c}}, 0x0)

0s ago: executing program 4 (id=2509):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6_udp(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, 0x0, 0xc0)
sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1004000, 0x0, 0xb49, 0x9, 0x6, 0x0, 0x3}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x48)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x5}, 0x1c)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000001000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)
r6 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_int(r6, 0x29, 0x46, 0x0, 0x0)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
statx(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x2000, 0x400, &(0x7f00000001c0))
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
recvfrom$inet(r7, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)
socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f0000000280)={0x0, @in={{0x2, 0x4e22, @rand_addr=0x64010100}}, 0x4}, 0x90)

kernel console output (not intermixed with test programs):

[ T3091] koneplus 0003:1E7D:2D51.002B: unknown main item tag 0x0
[  298.280735][ T3091] koneplus 0003:1E7D:2D51.002B: unknown main item tag 0x0
[  298.290787][ T3091] koneplus 0003:1E7D:2D51.002B: hidraw0: USB HID v0.00 Device [HID 1e7d:2d51] on usb-dummy_hcd.4-1/input0
[  298.304836][ T3091] koneplus 0003:1E7D:2D51.002B: couldn't init struct koneplus_device
[  298.325214][ T3091] koneplus 0003:1E7D:2D51.002B: couldn't install mouse
[  298.343359][ T3091] koneplus 0003:1E7D:2D51.002B: probe with driver koneplus failed with error -71
[  298.371107][ T3091] usb 5-1: USB disconnect, device number 43
[  298.386469][   T30] audit: type=1400 audit(1755780242.193:706): avc:  denied  { mount } for  pid=11553 comm="syz.0.1767" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  299.231431][ T3091] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[  299.393587][ T3091] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE8, changing to 0x88
[  299.414076][ T3091] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[  299.436760][ T3091] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xA has an invalid bInterval 0, changing to 7
[  299.456146][ T3091] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  299.471918][ T3091] usb 3-1: New USB device found, idVendor=1781, idProduct=0938, bcdDevice=9b.49
[  299.487861][ T3091] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  299.496374][ T3091] usb 3-1: Product: syz
[  299.500676][ T3091] usb 3-1: Manufacturer: syz
[  299.505421][ T3091] usb 3-1: SerialNumber: syz
[  299.514972][ T3091] usb 3-1: config 0 descriptor??
[  299.522490][ T3091] iguanair 3-1:0.0: failed to get version
[  299.528484][ T3091] iguanair 3-1:0.0: probe with driver iguanair failed with error -90
[  299.735151][ T3091] usb 3-1: USB disconnect, device number 34
[  300.114280][T11603] netlink: 'syz.4.1782': attribute type 11 has an invalid length.
[  300.125088][T11603] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1782'.
[  300.628429][   T30] audit: type=1400 audit(1755780244.433:707): avc:  denied  { map } for  pid=11614 comm="syz.2.1784" path="/dev/comedi3" dev="devtmpfs" ino=1279 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  300.790141][T11617] loop6: detected capacity change from 0 to 7
[  300.804642][ T6100] Dev loop6: unable to read RDB block 7
[  300.810282][ T6100]  loop6: AHDI p1 p2
[  300.814401][ T6100] loop6: partition table partially beyond EOD, truncated
[  300.827273][ T6100] loop6: p1 start 926365495 is beyond EOD, truncated
[  300.842564][T11617] Dev loop6: unable to read RDB block 7
[  300.848301][T11617]  loop6: AHDI p1 p2
[  300.852979][T11617] loop6: partition table partially beyond EOD, truncated
[  300.872384][T11617] loop6: p1 start 926365495 is beyond EOD, truncated
[  300.881581][ T7600] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  301.044157][ T7600] usb 3-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  301.053427][ T7600] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  301.197819][ T7600] usb 3-1: Product: syz
[  301.511210][ T3091] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  301.520751][ T7600] usb 3-1: Manufacturer: syz
[  301.533282][ T7600] usb 3-1: SerialNumber: syz
[  301.565502][ T7600] usb 3-1: config 0 descriptor??
[  301.624359][ T7600] ch341 3-1:0.0: ch341-uart converter detected
[  301.672640][ T3091] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  301.683567][ T3091] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  301.699119][ T3091] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  301.708821][ T3091] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  301.717650][ T3091] usb 6-1: SerialNumber: syz
[  301.793524][ T7600] usb 3-1: failed to receive control message: -71
[  301.804220][ T7600] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  301.825756][ T7600] usb 3-1: USB disconnect, device number 35
[  301.840498][ T7600] ch341 3-1:0.0: device disconnected
[  302.086449][ T3091] cdc_ether 6-1:1.0: skipping garbage
[  302.096398][ T3091] usb 6-1: bad CDC descriptors
[  302.106141][ T3091] usb 6-1: USB disconnect, device number 14
[  302.123990][T11646] loop6: detected capacity change from 0 to 7
[  302.130804][T11646] Dev loop6: unable to read RDB block 7
[  302.137602][T11646]  loop6: AHDI p1 p2
[  302.144537][T11646] loop6: partition table partially beyond EOD, truncated
[  302.153687][T11646] loop6: p1 start 926365495 is beyond EOD, truncated
[  302.999429][ T7600] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  304.201351][ T7600] usb 6-1: Using ep0 maxpacket: 32
[  304.207700][ T7600] usb 6-1: config 0 has an invalid interface number: 51 but max is 0
[  304.216149][ T7600] usb 6-1: config 0 has no interface number 0
[  304.224256][ T7600] usb 6-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  304.233816][ T7600] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  304.241997][ T7600] usb 6-1: Product: syz
[  304.246577][ T7600] usb 6-1: Manufacturer: syz
[  304.251194][ T7600] usb 6-1: SerialNumber: syz
[  304.257581][ T7600] usb 6-1: config 0 descriptor??
[  304.282905][ T7600] quatech2 6-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  304.334377][T11686] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4 sclass=netlink_route_socket pid=11686 comm=syz.0.1810
[  304.381446][   T30] audit: type=1400 audit(1755780248.183:708): avc:  denied  { write } for  pid=11689 comm="syz.2.1812" name="binder1" dev="binder" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  304.446320][   T30] audit: type=1400 audit(1755780248.203:709): avc:  denied  { append } for  pid=11687 comm="syz.3.1811" name="ppp" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  304.497364][ T7600] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  304.528683][ T7600] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  304.725369][    C0] quatech-serial ttyUSB0: qt2_process_read_urb - port change to invalid port: 20
[  305.226562][    C0] usb 6-1: qt2_read_bulk_callback - non-zero urb status: -71
[  305.231866][ T5846] usb 6-1: USB disconnect, device number 15
[  305.259887][ T5846] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  305.295097][ T5846] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  305.401154][ T5846] quatech2 6-1:0.51: device disconnected
[  305.403794][T11712] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1818'.
[  305.479599][T11690] openvswitch: netlink: Unexpected mask (mask=440, allowed=10048)
[  305.488049][T11712] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1818'.
[  305.498165][T11712] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1818'.
[  305.721735][ T7600] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[  306.082180][ T7600] usb 4-1: Using ep0 maxpacket: 32
[  306.090016][ T7600] usb 4-1: New USB device found, idVendor=13d8, idProduct=0020, bcdDevice=f7.31
[  306.099890][ T7600] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  306.138918][ T7600] usb 4-1: config 0 descriptor??
[  306.154581][ T7600] usb 4-1: selecting invalid altsetting 3
[  306.160418][ T7600] comedi comedi5: could not set alternate setting 3 in high speed
[  306.170384][ T7600] usbduxsigma 4-1:0.0: driver 'usbduxsigma' failed to auto-configure device.
[  306.181585][ T7600] usbduxsigma 4-1:0.0: probe with driver usbduxsigma failed with error -22
[  306.264194][T11722] (unnamed net_device) (uninitialized): Unable to set up delay as MII monitoring is disabled
[  306.475163][T11731] netlink: 'syz.0.1825': attribute type 1 has an invalid length.
[  306.488631][T11731] 8021q: adding VLAN 0 to HW filter on device bond4
[  306.500121][T11731] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1825'.
[  306.583396][ T3091] usb 6-1: new full-speed USB device number 16 using dummy_hcd
[  307.022774][ T3091] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  307.033133][ T3091] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E
[  307.045276][ T3091] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 10
[  307.057536][ T3091] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  307.068229][ T3091] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  307.084317][ T3091] usb 6-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[  307.094001][ T3091] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[  307.102439][ T3091] usb 6-1: Product: syz
[  307.106717][ T3091] usb 6-1: Manufacturer: syz
[  307.111464][ T3091] usb 6-1: SerialNumber: syz
[  307.122442][ T3091] usb 6-1: config 0 descriptor??
[  307.301447][   T10] usb 5-1: new high-speed USB device number 44 using dummy_hcd
[  307.329370][ T3091] radio-si470x 6-1:0.0: DeviceID=0x00aa ChipID=0x6d00
[  307.449724][   T43] usb 4-1: USB disconnect, device number 45
[  307.561081][ T3091] radio-si470x 6-1:0.0: software version 0, hardware version 170
[  307.562465][   T10] usb 5-1: Using ep0 maxpacket: 32
[  307.596766][   T10] usb 5-1: config 0 has an invalid interface number: 85 but max is 0
[  307.610943][   T10] usb 5-1: config 0 has no interface number 0
[  307.619811][   T10] usb 5-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  307.637795][   T10] usb 5-1: config 0 interface 85 altsetting 7 endpoint 0x82 has invalid wMaxPacketSize 0
[  307.647829][   T10] usb 5-1: config 0 interface 85 has no altsetting 0
[  307.659707][   T10] usb 5-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  307.669571][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  307.677734][   T10] usb 5-1: Product: syz
[  307.682081][   T10] usb 5-1: Manufacturer: syz
[  307.686747][   T10] usb 5-1: SerialNumber: syz
[  307.698338][   T10] usb 5-1: config 0 descriptor??
[  307.756968][ T3091] radio-si470x 6-1:0.0: si470x_set_report: usb_control_msg returned -71
[  307.765613][ T3091] radio-si470x 6-1:0.0: submitting int urb failed (-90)
[  307.773936][ T3091] radio-si470x 6-1:0.0: si470x_set_report: usb_control_msg returned -71
[  307.784024][ T3091] radio-si470x 6-1:0.0: probe with driver radio-si470x failed with error -22
[  307.801290][ T3091] usb 6-1: USB disconnect, device number 16
[  307.842193][   T43] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[  307.963997][   T10] appletouch 5-1:0.85: Failed to read mode from device.
[  307.971116][   T10] appletouch 5-1:0.85: probe with driver appletouch failed with error -5
[  307.985736][   T10] usb 5-1: USB disconnect, device number 44
[  308.001371][   T43] usb 4-1: Using ep0 maxpacket: 32
[  308.008376][   T43] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[  308.017944][   T43] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  308.047411][   T43] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[  308.056863][   T43] usb 4-1: config 1 has no interface number 0
[  308.063494][   T43] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  308.076654][   T43] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  308.089701][ T5168] Bluetooth: hci1: unexpected event 0x09 length: 6 > 3
[  308.151932][   T43] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  308.168025][   T43] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  308.191273][   T43] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[  308.486523][   T43] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now attached
[  308.614505][T11760] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1835'.
[  308.623682][T11760] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1835'.
[  308.995276][T11744] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  309.017513][T11744] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  309.033214][   T10] usb 4-1: USB disconnect, device number 46
[  309.075451][   T10] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[  309.414846][T11780] netlink: 'syz.0.1838': attribute type 75 has an invalid length.
[  309.582354][   T30] audit: type=1400 audit(1755780253.373:710): avc:  denied  { lock } for  pid=11783 comm="syz.2.1841" path="/dev/sg0" dev="devtmpfs" ino=717 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  309.606284][    C1] vkms_vblank_simulate: vblank timer overrun
[  310.040163][ T3091] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  310.261426][ T3091] usb 6-1: Using ep0 maxpacket: 8
[  310.263119][T11802] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1848'.
[  310.269400][ T3091] usb 6-1: config 0 has an invalid interface number: 31 but max is 0
[  310.315287][ T3091] usb 6-1: config 0 has no interface number 0
[  310.318463][T11802] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1848'.
[  310.400891][ T3091] usb 6-1: New USB device found, idVendor=112a, idProduct=0005, bcdDevice=be.68
[  310.419978][ T3091] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  310.430066][ T3091] usb 6-1: Product: syz
[  310.434706][ T3091] usb 6-1: Manufacturer: syz
[  310.440203][ T3091] usb 6-1: SerialNumber: syz
[  310.721879][ T3091] usb 6-1: config 0 descriptor??
[  310.742585][ T3091] redrat3 6-1:0.31: Couldn't find all endpoints
[  310.811355][   T10] usb 4-1: new high-speed USB device number 47 using dummy_hcd
[  310.961495][   T10] usb 4-1: Using ep0 maxpacket: 32
[  310.968021][   T10] usb 4-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  310.977664][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  310.987788][   T10] usb 4-1: config 0 descriptor??
[  310.993498][   T94] block nbd0: Possible stuck request ffff888026a67000: control (read@0,1024B). Runtime 150 seconds
[  311.004956][   T94] block nbd0: Possible stuck request ffff888026a671c0: control (read@1024,1024B). Runtime 150 seconds
[  311.016437][   T94] block nbd0: Possible stuck request ffff888026a67380: control (read@2048,1024B). Runtime 150 seconds
[  311.027804][   T94] block nbd0: Possible stuck request ffff888026a67540: control (read@3072,1024B). Runtime 150 seconds
[  311.056124][   T10] gspca_main: nw80x-2.14.0 probing 055f:d001
[  311.102957][   T30] audit: type=1800 audit(1755780254.903:711): pid=11801 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.4.1844" name="bus" dev="ramfs" ino=31946 res=0 errno=0
[  311.221597][ T5909] usb 6-1: USB disconnect, device number 17
[  311.325777][   T10] gspca_nw80x: reg_w err -71
[  311.353949][   T10] nw80x 4-1:0.0: probe with driver nw80x failed with error -71
[  311.365595][   T10] usb 4-1: USB disconnect, device number 47
[  311.674669][ T5922] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[  311.831362][ T5922] usb 3-1: Using ep0 maxpacket: 32
[  311.837883][ T5922] usb 3-1: config 0 has no interfaces?
[  311.844811][ T5922] usb 3-1: New USB device found, idVendor=041e, idProduct=403c, bcdDevice=cc.d7
[  311.854368][ T5922] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.868954][ T5922] usb 3-1: config 0 descriptor??
[  311.911434][ T7600] usb 5-1: new high-speed USB device number 45 using dummy_hcd
[  312.006358][T11831] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1856'.
[  312.086457][T11831] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1856'.
[  312.105543][ T7600] usb 5-1: Using ep0 maxpacket: 32
[  312.122694][T11831] netlink: 72 bytes leftover after parsing attributes in process `syz.5.1856'.
[  312.132779][ T7600] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[  312.141145][ T7600] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  312.153463][ T7600] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  312.168787][ T7600] usb 5-1: config 0 interface 0 has no altsetting 0
[  312.180259][ T7600] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  312.189594][ T7600] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  312.198291][ T7600] usb 5-1: Product: syz
[  312.248363][ T7600] usb 5-1: Manufacturer: syz
[  312.253754][ T7600] usb 5-1: SerialNumber: syz
[  312.266280][ T7600] usb 5-1: config 0 descriptor??
[  312.275193][ T7600] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  312.307058][ T7600] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  313.341391][ T7600] usb 3-1: USB disconnect, device number 36
[  313.465803][ T5923] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x4
[  313.473977][ T5923] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x2
[  313.489487][ T5923] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x3
[  313.497375][ T5923] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  313.505435][ T5923] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  313.513305][ T5923] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  313.520994][ T5923] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  313.528836][ T5923] hid-generic 0000:3000000:0000.002C: unknown main item tag 0x0
[  313.536993][ T5923] hid-generic 0000:3000000:0000.002C: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  313.621637][ T5922] usb 4-1: new full-speed USB device number 48 using dummy_hcd
[  313.964028][T11864] fido_id[11864]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  314.510389][ T5922] usb 4-1: unable to get BOS descriptor or descriptor too short
[  314.527285][ T5922] usb 4-1: not running at top speed; connect to a high speed hub
[  314.551050][ T5923] usb 5-1: USB disconnect, device number 45
[  314.590660][ T5922] usb 4-1: config 8 has an invalid interface number: 24 but max is 0
[  314.599432][ T5923] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[  314.606312][ T5922] usb 4-1: config 8 has no interface number 0
[  314.615159][ T5922] usb 4-1: config 8 interface 24 altsetting 2 endpoint 0xE has invalid maxpacket 1535, setting to 64
[  314.629775][ T5922] usb 4-1: config 8 interface 24 altsetting 2 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  314.666779][ T5922] usb 4-1: config 8 interface 24 altsetting 2 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  314.703766][ T5922] usb 4-1: config 8 interface 24 has no altsetting 0
[  314.713053][T11880] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1873'.
[  314.723337][T11880] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1873'.
[  314.725166][ T5922] usb 4-1: New USB device found, idVendor=10cf, idProduct=5503, bcdDevice=75.af
[  314.733866][T11880] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1873'.
[  314.770051][ T5922] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  314.778528][ T5922] usb 4-1: Product: syz
[  314.784226][ T5922] usb 4-1: Manufacturer: syz
[  314.794231][ T5922] usb 4-1: SerialNumber: syz
[  314.888255][T11860] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  314.896061][T11860] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  315.234382][ T5922] comedi comedi5: driver 'vmk80xx' has successfully auto-configured 'K8055 (VM110)'.
[  315.250076][T11890] netlink: 5 bytes leftover after parsing attributes in process `syz.5.1877'.
[  315.256750][ T5922] usb 4-1: USB disconnect, device number 48
[  315.286138][T11890] 0ªX¹¦D: renamed from macvtap0 (while UP)
[  315.295453][T11890] 0ªX¹¦D: entered allmulticast mode
[  315.300714][T11890] veth0_macvtap: entered allmulticast mode
[  315.308756][T11890] A link change request failed with some changes committed already. Interface 
30ªX¹¦D may have been left with an inconsistent configuration, please check.
[  315.641371][   T43] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  315.712434][T11918] loop6: detected capacity change from 0 to 7
[  315.719754][ T6100] Dev loop6: unable to read RDB block 7
[  315.726004][ T6100]  loop6: AHDI p1 p2
[  315.730028][ T6100] loop6: partition table partially beyond EOD, truncated
[  315.737262][ T6100] loop6: p1 start 926365495 is beyond EOD, truncated
[  315.819045][T11918] Dev loop6: unable to read RDB block 7
[  315.824758][T11918]  loop6: AHDI p1 p2
[  315.828743][T11918] loop6: partition table partially beyond EOD, truncated
[  315.835941][   T43] usb 6-1: Using ep0 maxpacket: 32
[  315.841233][T11918] loop6: p1 start 926365495 is beyond EOD, truncated
[  315.849192][   T43] usb 6-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  315.864586][   T43] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  315.925561][T11926] CUSE: info not properly terminated
[  316.193751][   T43] usb 6-1: config 0 descriptor??
[  316.213805][   T43] gspca_main: nw80x-2.14.0 probing 055f:d001
[  316.521223][   T43] gspca_nw80x: reg_w err -71
[  316.526188][   T43] nw80x 6-1:0.0: probe with driver nw80x failed with error -71
[  316.754447][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  316.760931][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  316.797333][   T43] usb 6-1: USB disconnect, device number 18
[  316.903651][T11940] overlayfs: failed to resolve './file1/file0': -2
[  317.041053][T11870] Process accounting resumed
[  317.272194][T11948] lo speed is unknown, defaulting to 1000
[  317.737642][ T5168] Bluetooth: hci4: unexpected event 0x09 length: 6 > 3
[  317.845049][T11948] wg1 speed is unknown, defaulting to 1000
[  318.053599][   T30] audit: type=1326 audit(1755780261.853:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11947 comm="syz.5.1896" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe0a578ebe9 code=0x0
[  318.263998][   T30] audit: type=1400 audit(1755780262.073:713): avc:  denied  { create } for  pid=11969 comm="syz.0.1901" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  318.329719][   T30] audit: type=1400 audit(1755780262.073:714): avc:  denied  { write } for  pid=11969 comm="syz.0.1901" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  318.802276][T11979] syz.3.1902: attempt to access beyond end of device
[  318.802276][T11979] nbd3: rw=0, sector=64, nr_sectors = 1 limit=0
[  318.816896][T11979] syz.3.1902: attempt to access beyond end of device
[  318.816896][T11979] nbd3: rw=0, sector=256, nr_sectors = 1 limit=0
[  318.830198][T11979] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  318.841252][T11979] syz.3.1902: attempt to access beyond end of device
[  318.841252][T11979] nbd3: rw=0, sector=512, nr_sectors = 1 limit=0
[  318.854384][T11979] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  318.865953][T11979] syz.3.1902: attempt to access beyond end of device
[  318.865953][T11979] nbd3: rw=0, sector=64, nr_sectors = 2 limit=0
[  318.879405][T11979] syz.3.1902: attempt to access beyond end of device
[  318.879405][T11979] nbd3: rw=0, sector=512, nr_sectors = 2 limit=0
[  318.893062][T11979] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  318.903347][T11979] syz.3.1902: attempt to access beyond end of device
[  318.903347][T11979] nbd3: rw=0, sector=1024, nr_sectors = 2 limit=0
[  318.916708][T11979] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  318.929079][T11979] syz.3.1902: attempt to access beyond end of device
[  318.929079][T11979] nbd3: rw=0, sector=64, nr_sectors = 4 limit=0
[  318.942856][T11979] syz.3.1902: attempt to access beyond end of device
[  318.942856][T11979] nbd3: rw=0, sector=1024, nr_sectors = 4 limit=0
[  318.956034][T11979] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  318.965764][T11979] syz.3.1902: attempt to access beyond end of device
[  318.965764][T11979] nbd3: rw=0, sector=2048, nr_sectors = 4 limit=0
[  318.979021][T11979] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  318.990575][T11979] syz.3.1902: attempt to access beyond end of device
[  318.990575][T11979] nbd3: rw=0, sector=64, nr_sectors = 8 limit=0
[  319.004572][T11979] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  319.014916][T11979] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  319.024507][T11979] UDF-fs: warning (device nbd3): udf_fill_super: No partition found (1)
[  319.259950][T11987] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1905'.
[  319.272946][T11987] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1905'.
[  319.282352][T11987] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1905'.
[  319.376595][T11992] wireguard0: entered promiscuous mode
[  319.403429][T11992] wireguard0: entered allmulticast mode
[  319.505514][T11996] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2568 sclass=netlink_route_socket pid=11996 comm=syz.0.1908
[  319.576255][T11996] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2565 sclass=netlink_route_socket pid=11996 comm=syz.0.1908
[  319.599987][T11994] lo speed is unknown, defaulting to 1000
[  319.860215][T11994] wg1 speed is unknown, defaulting to 1000
[  320.061492][T11996] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2568 sclass=netlink_route_socket pid=11996 comm=syz.0.1908
[  320.061859][   T30] audit: type=1400 audit(1755780263.873:715): avc:  denied  { write } for  pid=12001 comm="syz.4.1911" name="mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  320.451183][T12013] lo speed is unknown, defaulting to 1000
[  320.657642][T12013] wg1 speed is unknown, defaulting to 1000
[  320.775854][T12019] SELinux: failed to load policy
[  320.999285][   T30] audit: type=1400 audit(1755780264.803:716): avc:  denied  { read } for  pid=12024 comm="syz.3.1915" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  321.682882][T12027] could not open pipe file descriptor
[  321.729853][   T30] audit: type=1400 audit(1755780265.533:717): avc:  denied  { create } for  pid=12030 comm="syz.5.1918" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  321.797330][   T30] audit: type=1400 audit(1755780265.603:718): avc:  denied  { rename } for  pid=12030 comm="syz.5.1918" name="nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  321.824798][   T30] audit: type=1400 audit(1755780265.603:719): avc:  denied  { getopt } for  pid=12030 comm="syz.5.1918" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  322.260372][T12047] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1924'.
[  322.281430][T12047] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1924'.
[  322.295989][T12049] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1925'.
[  322.297901][T12047] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1924'.
[  323.198667][T12064] syz.3.1931 (12064): /proc/12062/oom_adj is deprecated, please use /proc/12062/oom_score_adj instead.
[  323.284096][T12064] xt_time: unknown flags 0xf4
[  323.324464][T12064] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1931'.
[  323.386055][T12073] lo speed is unknown, defaulting to 1000
[  323.526917][T12077] netlink: 14 bytes leftover after parsing attributes in process `syz.4.1935'.
[  323.554110][   T30] audit: type=1400 audit(1755780267.363:720): avc:  denied  { read } for  pid=12074 comm="syz.0.1934" lport=37532 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  323.575130][T12073] wg1 speed is unknown, defaulting to 1000
[  324.809931][T12107] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1944'.
[  324.861034][T12107] kvm: kvm [12106]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x7
[  324.869880][T12107] kvm: kvm [12106]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x7
[  324.911410][ T3091] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[  325.045147][ T5168] Bluetooth: hci3: unexpected event 0x09 length: 6 > 3
[  325.063270][ T3091] usb 3-1: Using ep0 maxpacket: 32
[  325.079532][ T3091] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  325.095193][ T3091] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00
[  325.106157][ T3091] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  325.117116][ T3091] usb 3-1: config 0 descriptor??
[  325.301467][ T5922] usb 4-1: new low-speed USB device number 49 using dummy_hcd
[  325.431438][ T5922] usb 4-1: device descriptor read/64, error -71
[  325.527274][T12100] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  325.535939][T12100] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  325.546552][ T3091] koneplus 0003:1E7D:2D51.002D: unknown main item tag 0x0
[  325.554263][ T3091] koneplus 0003:1E7D:2D51.002D: unknown main item tag 0x0
[  325.561560][ T3091] koneplus 0003:1E7D:2D51.002D: unknown main item tag 0x0
[  325.568749][ T3091] koneplus 0003:1E7D:2D51.002D: unknown main item tag 0x0
[  325.575980][ T3091] koneplus 0003:1E7D:2D51.002D: unknown main item tag 0x0
[  325.584196][ T3091] koneplus 0003:1E7D:2D51.002D: hidraw0: USB HID v0.00 Device [HID 1e7d:2d51] on usb-dummy_hcd.2-1/input0
[  325.671542][ T5922] usb 4-1: new low-speed USB device number 50 using dummy_hcd
[  325.769389][ T3091] koneplus 0003:1E7D:2D51.002D: couldn't init struct koneplus_device
[  325.787398][ T3091] koneplus 0003:1E7D:2D51.002D: couldn't install mouse
[  325.797634][ T3091] koneplus 0003:1E7D:2D51.002D: probe with driver koneplus failed with error -71
[  325.814810][ T5922] usb 4-1: device descriptor read/64, error -71
[  325.815911][ T3091] usb 3-1: USB disconnect, device number 37
[  325.931706][ T5922] usb usb4-port1: attempt power cycle
[  326.407586][T12135] netlink: 'syz.5.1953': attribute type 1 has an invalid length.
[  326.444084][T12135] 8021q: adding VLAN 0 to HW filter on device bond2
[  326.507524][   T30] audit: type=1400 audit(1755780270.313:721): avc:  denied  { name_bind } for  pid=12130 comm="syz.4.1951" src=18464 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[  326.530112][ T5922] usb 4-1: new low-speed USB device number 51 using dummy_hcd
[  326.546778][T12139] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1954'.
[  326.569797][ T5922] usb 4-1: device descriptor read/8, error -71
[  326.821555][ T5922] usb 4-1: new low-speed USB device number 52 using dummy_hcd
[  326.870502][ T5922] usb 4-1: device descriptor read/8, error -71
[  326.998585][ T5922] usb usb4-port1: unable to enumerate USB device
[  327.168113][T12166] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  327.452560][   T30] audit: type=1400 audit(1755780271.263:722): avc:  denied  { getopt } for  pid=12177 comm="syz.4.1963" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  327.474749][   T30] audit: type=1400 audit(1755780271.263:723): avc:  denied  { setattr } for  pid=12177 comm="syz.4.1963" name="CAN_J1939" dev="sockfs" ino=33951 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  327.813971][T12196] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1966'.
[  327.848574][T12196] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1966'.
[  328.634350][ T3091] usb 6-1: new low-speed USB device number 19 using dummy_hcd
[  328.643496][T12233] lo speed is unknown, defaulting to 1000
[  328.750758][T12233] wg1 speed is unknown, defaulting to 1000
[  328.888607][T12241] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1971'.
[  328.907233][ T3091] usb 6-1: unable to get BOS descriptor or descriptor too short
[  328.918059][ T3091] usb 6-1: unable to read config index 0 descriptor/start: -61
[  328.929297][ T3091] usb 6-1: can't read configurations, error -61
[  329.017110][T12245] sch_tbf: burst 88 is lower than device veth3 mtu (1514) !
[  329.108498][T12248] lo speed is unknown, defaulting to 1000
[  329.327389][T12248] wg1 speed is unknown, defaulting to 1000
[  329.407477][ T3091] usb 6-1: new low-speed USB device number 20 using dummy_hcd
[  329.492082][T12247] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1972'.
[  329.500992][T12247] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1972'.
[  329.629002][ T3091] usb 6-1: unable to get BOS descriptor or descriptor too short
[  329.637875][ T3091] usb 6-1: unable to read config index 0 descriptor/start: -61
[  329.646271][ T3091] usb 6-1: can't read configurations, error -61
[  329.653214][ T3091] usb usb6-port1: attempt power cycle
[  329.991593][ T3091] usb 6-1: new low-speed USB device number 21 using dummy_hcd
[  330.001102][ T5923] usb 5-1: new high-speed USB device number 46 using dummy_hcd
[  330.023315][ T3091] usb 6-1: unable to get BOS descriptor or descriptor too short
[  330.034936][ T3091] usb 6-1: unable to read config index 0 descriptor/start: -61
[  330.045428][ T3091] usb 6-1: can't read configurations, error -61
[  330.162664][ T5923] usb 5-1: config 255 has an invalid interface number: 20 but max is 0
[  330.171044][ T5923] usb 5-1: config 255 has no interface number 0
[  330.177413][ T5923] usb 5-1: config 255 interface 20 has no altsetting 0
[  330.181365][ T3091] usb 6-1: new low-speed USB device number 22 using dummy_hcd
[  330.193388][ T5923] usb 5-1: New USB device found, idVendor=0f3d, idProduct=68aa, bcdDevice=8e.4f
[  330.202602][ T5923] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  330.210585][ T5923] usb 5-1: Product: syz
[  330.216466][ T5923] usb 5-1: Manufacturer: syz
[  330.221215][ T5923] usb 5-1: SerialNumber: syz
[  330.222626][ T3091] usb 6-1: unable to get BOS descriptor or descriptor too short
[  330.240358][ T3091] usb 6-1: unable to read config index 0 descriptor/start: -61
[  330.248253][ T3091] usb 6-1: can't read configurations, error -61
[  330.255563][ T3091] usb usb6-port1: unable to enumerate USB device
[  330.443380][T12257] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  330.455135][T12257] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  330.465439][T12257] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  330.474675][T12257] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  330.485181][T12257] netlink: 64985 bytes leftover after parsing attributes in process `syz.4.1974'.
[  330.501661][ T5923] usb 5-1: USB disconnect, device number 46
[  331.761608][T12306] tipc: Started in network mode
[  331.766465][T12306] tipc: Node identity ac14140f, cluster identity 4711
[  331.773362][T12306] tipc: New replicast peer: 255.255.255.255
[  331.779437][T12306] tipc: Enabled bearer <udp:syz2>, priority 10
[  331.786536][T12306] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1983'.
[  331.801497][ T5846] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  331.921736][ T5922] usb 5-1: new high-speed USB device number 47 using dummy_hcd
[  332.029851][ T5846] usb 6-1: Using ep0 maxpacket: 32
[  332.037089][ T5846] usb 6-1: config 0 has an invalid interface number: 51 but max is 0
[  332.049288][ T5846] usb 6-1: config 0 has no interface number 0
[  332.067401][ T5846] usb 6-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  332.081489][ T5922] usb 5-1: Using ep0 maxpacket: 32
[  332.087805][ T5846] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  332.092854][ T5922] usb 5-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  332.104078][ T5846] usb 6-1: Product: syz
[  332.109052][ T5846] usb 6-1: Manufacturer: syz
[  332.158799][ T5846] usb 6-1: SerialNumber: syz
[  332.207259][T12328] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[  332.385720][ T5922] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  332.417428][ T5846] usb 6-1: config 0 descriptor??
[  332.454328][T12331] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12331 comm=syz.3.1987
[  332.511706][ T5846] quatech2 6-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  332.514217][ T5922] usb 5-1: config 0 descriptor??
[  332.574951][ T5922] gspca_main: nw80x-2.14.0 probing 055f:d001
[  332.649391][ T5846] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  332.679647][ T5846] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  332.871885][    C1] quatech-serial ttyUSB0: qt2_process_read_urb - port change to invalid port: 132
[  332.895843][ T5922] gspca_nw80x: reg_w err -71
[  332.900489][ T5922] nw80x 5-1:0.0: probe with driver nw80x failed with error -71
[  332.941994][ T7600] tipc: Node number set to 2886997007
[  332.995449][ T5922] usb 5-1: USB disconnect, device number 47
[  333.086775][    C1] usb 6-1: qt2_read_bulk_callback - non-zero urb status: -71
[  333.095881][   T43] usb 6-1: USB disconnect, device number 23
[  333.109103][   T43] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  333.150799][   T43] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  333.174597][   T43] quatech2 6-1:0.51: device disconnected
[  333.511717][T12375] lo speed is unknown, defaulting to 1000
[  333.616935][T12375] wg1 speed is unknown, defaulting to 1000
[  333.811123][T12380] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1994'.
[  334.050627][T12388] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1998'.
[  334.203360][T12392] fuse: Bad value for 'user_id'
[  334.208225][T12392] fuse: Bad value for 'user_id'
[  334.267505][T12392] Invalid option length (494) for dns_resolver key
[  334.511672][ T5846] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  334.571503][ T5922] usb 5-1: new high-speed USB device number 48 using dummy_hcd
[  334.577655][T12408] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2005'.
[  334.597393][T12408] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2005'.
[  334.608688][T12408] netlink: 72 bytes leftover after parsing attributes in process `syz.0.2005'.
[  334.725927][ T5846] usb 6-1: config 220 has an invalid interface number: 76 but max is 2
[  334.734323][ T5846] usb 6-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  334.745524][ T5922] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  334.745559][ T5846] usb 6-1: config 220 has no interface number 2
[  334.763220][ T5846] usb 6-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  334.776507][ T5846] usb 6-1: config 220 interface 0 has no altsetting 0
[  334.783783][ T5846] usb 6-1: config 220 interface 76 has no altsetting 0
[  334.784507][ T5922] usb 5-1: New USB device found, idVendor=046d, idProduct=c295, bcdDevice= 0.00
[  334.790651][ T5846] usb 6-1: config 220 interface 1 has no altsetting 0
[  334.792399][ T5846] usb 6-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  334.816172][ T5922] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  334.817580][ T5846] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  334.835416][ T5846] usb 6-1: Product: syz
[  334.835943][ T5922] usb 5-1: config 0 descriptor??
[  334.841334][ T5846] usb 6-1: Manufacturer: syz
[  334.849468][ T5846] usb 6-1: SerialNumber: syz
[  334.979367][T12416] block device autoloading is deprecated and will be removed.
[  334.988076][T12416] bio_check_eod: 2 callbacks suppressed
[  334.988087][T12416] syz.3.2008: attempt to access beyond end of device
[  334.988087][T12416] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  335.106083][ T5846] usb 6-1: selecting invalid altsetting 0
[  335.112666][ T5846] usb 6-1: Found UVC 7.01 device syz (8086:0b07)
[  335.116197][T12420] netlink: 76 bytes leftover after parsing attributes in process `syz.5.2009'.
[  335.119250][ T5846] usb 6-1: No valid video chain found.
[  335.140513][ T5846] usb 6-1: selecting invalid altsetting 0
[  335.146602][ T5846] usbtest 6-1:220.1: probe with driver usbtest failed with error -22
[  335.164806][ T5846] usb 6-1: USB disconnect, device number 24
[  335.386211][ T5922] logitech 0003:046D:C295.002E: unbalanced delimiter at end of report description
[  335.404269][ T5922] logitech 0003:046D:C295.002E: parse failed
[  335.410726][ T5922] logitech 0003:046D:C295.002E: probe with driver logitech failed with error -22
[  335.486995][T12434] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  335.494611][T12434] batman_adv: batadv0: Removing interface: batadv_slave_0
[  335.505050][T12434] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  335.512527][T12434] batman_adv: batadv0: Removing interface: batadv_slave_1
[  335.520043][T12434] batman_adv: batadv0: Removing interface: team0
[  335.773595][ T5846] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  335.931338][ T5846] usb 6-1: Using ep0 maxpacket: 16
[  335.945125][T12449] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  335.962528][T12449] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  335.972763][ T5846] usb 6-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  335.995377][ T5846] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  336.004512][ T5846] usb 6-1: Product: syz
[  336.008724][ T5846] usb 6-1: Manufacturer: syz
[  336.019112][ T5846] usb 6-1: SerialNumber: syz
[  336.029077][ T5846] usb 6-1: config 0 descriptor??
[  336.043476][ T5846] ftdi_sio 6-1:0.0: FTDI USB Serial Device converter detected
[  336.053707][ T5846] usb 6-1: Detected FT232H
[  336.386529][ T5846] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  336.395203][ T5846] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  336.405392][ T5846] ftdi_sio 6-1:0.0: GPIO initialisation failed: -71
[  336.426222][ T5846] usb 6-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  336.444234][ T5846] usb 6-1: USB disconnect, device number 25
[  336.457234][ T5846] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  336.477550][ T5846] ftdi_sio 6-1:0.0: device disconnected
[  336.564868][T12470] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2027'.
[  336.575758][T12470] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2027'.
[  336.670642][T12476] loop6: detected capacity change from 0 to 7
[  336.678099][ T6100] Dev loop6: unable to read RDB block 7
[  336.683751][ T5922] usb 4-1: new high-speed USB device number 53 using dummy_hcd
[  336.684960][ T6100]  loop6: AHDI p1 p2
[  336.698767][ T6100] loop6: partition table partially beyond EOD, truncated
[  336.706741][ T6100] loop6: p1 start 926365495 is beyond EOD, truncated
[  336.721885][T12476] Dev loop6: unable to read RDB block 7
[  336.727646][T12476]  loop6: AHDI p1 p2
[  336.732033][T12476] loop6: partition table partially beyond EOD, truncated
[  336.745009][T12476] loop6: p1 start 926365495 is beyond EOD, truncated
[  336.782827][ T6100] udevd[6100]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[  336.800499][ T6100] udevd[6100]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[  336.841473][ T5922] usb 4-1: Using ep0 maxpacket: 32
[  336.850244][ T5922] usb 4-1: config 0 has an invalid interface number: 83 but max is 0
[  336.860191][ T5922] usb 4-1: config 0 has no interface number 0
[  336.870962][ T5922] usb 4-1: New USB device found, idVendor=112a, idProduct=0001, bcdDevice=d8.11
[  336.883325][ T5922] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  336.893721][ T5922] usb 4-1: Product: syz
[  336.898028][ T5922] usb 4-1: Manufacturer: syz
[  336.903756][ T5922] usb 4-1: SerialNumber: syz
[  336.910617][ T5922] usb 4-1: config 0 descriptor??
[  336.922656][ T5922] redrat3 4-1:0.83: Couldn't find all endpoints
[  337.125295][ T5922] usb 4-1: USB disconnect, device number 53
[  337.262446][ T5923] usb 5-1: USB disconnect, device number 48
[  337.366511][ T5168] Bluetooth: hci1: unexpected event 0x09 length: 6 > 3
[  337.446800][   T30] audit: type=1400 audit(1755780281.253:724): avc:  denied  { accept } for  pid=12492 comm="syz.5.2036" path="socket:[34419]" dev="sockfs" ino=34419 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  337.515799][T12501] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2039'.
[  337.525258][T12501] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2039'.
[  337.670781][ T5923] usb 5-1: new high-speed USB device number 49 using dummy_hcd
[  337.705725][T12493] netlink: 48 bytes leftover after parsing attributes in process `syz.5.2036'.
[  337.811356][ T5846] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[  337.853792][ T5923] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE8, changing to 0x88
[  337.865395][ T5923] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[  337.876357][ T5923] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xA has an invalid bInterval 0, changing to 7
[  337.887277][ T5923] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  337.898570][ T5923] usb 5-1: New USB device found, idVendor=1781, idProduct=0938, bcdDevice=9b.49
[  337.907708][ T5923] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  337.915806][ T5923] usb 5-1: Product: syz
[  337.920023][ T5923] usb 5-1: Manufacturer: syz
[  337.924634][ T5923] usb 5-1: SerialNumber: syz
[  337.925717][   T43] usb 4-1: new high-speed USB device number 54 using dummy_hcd
[  337.931213][ T5923] usb 5-1: config 0 descriptor??
[  337.943868][ T5923] iguanair 5-1:0.0: failed to get version
[  337.949825][ T5923] iguanair 5-1:0.0: probe with driver iguanair failed with error -90
[  337.961612][ T5846] usb 3-1: Using ep0 maxpacket: 32
[  337.968517][ T5846] usb 3-1: config 0 has an invalid interface number: 51 but max is 0
[  337.978155][ T5846] usb 3-1: config 0 has no interface number 0
[  337.986082][ T5846] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  337.995921][ T5846] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  338.004113][ T5846] usb 3-1: Product: syz
[  338.008288][ T5846] usb 3-1: Manufacturer: syz
[  338.013770][ T5846] usb 3-1: SerialNumber: syz
[  338.019167][ T5846] usb 3-1: config 0 descriptor??
[  338.025703][ T5846] quatech2 3-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  338.101339][   T43] usb 4-1: Using ep0 maxpacket: 16
[  338.107569][   T43] usb 4-1: config index 0 descriptor too short (expected 16456, got 72)
[  338.116216][   T43] usb 4-1: config 0 has an invalid interface number: 125 but max is 1
[  338.124421][   T43] usb 4-1: config 0 has an invalid interface number: 125 but max is 1
[  338.132647][   T43] usb 4-1: config 0 has an invalid interface number: 125 but max is 1
[  338.140810][   T43] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2
[  338.149725][   T43] usb 4-1: config 0 has no interface number 0
[  338.155900][   T43] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[  338.167025][   T43] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[  338.176909][   T43] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[  338.186780][   T43] usb 4-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  338.200055][   T43] usb 4-1: config 0 interface 125 has no altsetting 0
[  338.206906][   T43] usb 4-1: config 0 interface 125 has no altsetting 2
[  338.215438][   T43] usb 4-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[  338.224624][   T43] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  338.233771][   T43] usb 4-1: Product: syz
[  338.236431][ T5923] usb 5-1: USB disconnect, device number 49
[  338.239677][   T43] usb 4-1: Manufacturer: syz
[  338.248730][ T5846] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  338.258908][   T43] usb 4-1: SerialNumber: syz
[  338.263767][ T5846] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  338.275492][   T43] usb 4-1: config 0 descriptor??
[  338.285351][   T43] usb 4-1: selecting invalid altsetting 2
[  338.344502][   T30] audit: type=1400 audit(1755780282.153:725): avc:  denied  { ioctl } for  pid=12514 comm="syz.5.2044" path="socket:[34521]" dev="sockfs" ino=34521 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  338.393485][T12520] netlink: 'syz.5.2045': attribute type 8 has an invalid length.
[  338.443569][    C1] quatech-serial ttyUSB0: qt2_process_read_urb - port change to invalid port: 132
[  338.486324][    C1] usb 4-1: async_complete: urb error -71
[  338.492057][    C1] usb 4-1: async_complete: urb error -71
[  338.497912][    C1] usb 4-1: async_complete: urb error -71
[  338.503554][    C1] usb 4-1: async_complete: urb error -71
[  338.511687][   T43] get_1284_register: usb error -71
[  338.517006][   T43] uss720 4-1:0.125: probe with driver uss720 failed with error -71
[  338.537043][   T43] usb 4-1: USB disconnect, device number 54
[  338.658161][    C1] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -71
[  338.666550][ T5846] usb 3-1: USB disconnect, device number 38
[  338.724486][ T5846] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  338.747582][ T5846] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  338.817356][ T5846] quatech2 3-1:0.51: device disconnected
[  338.900396][   T30] audit: type=1400 audit(1755780282.703:726): avc:  denied  { write } for  pid=12530 comm="syz.5.2050" name="ptp0" dev="devtmpfs" ino=1265 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  338.930923][T12531] mkiss: ax0: crc mode is auto.
[  339.049009][   T30] audit: type=1400 audit(1755780282.853:727): avc:  denied  { bind } for  pid=12526 comm="syz.4.2048" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  339.722622][T12546] 8021q: adding VLAN 0 to HW filter on device bond0
[  339.733768][T12546] 8021q: adding VLAN 0 to HW filter on device team0
[  340.021180][T12546] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  340.144286][ T5923] usb 4-1: new high-speed USB device number 55 using dummy_hcd
[  340.451477][ T5923] usb 4-1: Using ep0 maxpacket: 32
[  340.459509][ T5923] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  340.469083][ T5923] usb 4-1: config 0 has no interface number 0
[  340.475422][ T5923] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  340.487513][ T5923] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  340.498234][ T5923] usb 4-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[  340.507694][ T5923] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  340.517103][ T5923] usb 4-1: config 0 descriptor??
[  340.836683][T12570] FAULT_INJECTION: forcing a failure.
[  340.836683][T12570] name failslab, interval 1, probability 0, space 0, times 0
[  340.850747][T12570] CPU: 1 UID: 0 PID: 12570 Comm: syz.4.2061 Not tainted syzkaller #0 PREEMPT(full) 
[  340.850773][T12570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  340.850784][T12570] Call Trace:
[  340.850790][T12570]  <TASK>
[  340.850796][T12570]  dump_stack_lvl+0x16c/0x1f0
[  340.850819][T12570]  should_fail_ex+0x512/0x640
[  340.850842][T12570]  should_failslab+0xc2/0x120
[  340.850863][T12570]  __kmalloc_cache_noprof+0x6a/0x3e0
[  340.850890][T12570]  ? io_uring_setup+0x24f/0x2120
[  340.850910][T12570]  io_uring_setup+0x24f/0x2120
[  340.850926][T12570]  ? rcu_is_watching+0x12/0xc0
[  340.850947][T12570]  ? __pfx_io_uring_setup+0x10/0x10
[  340.850967][T12570]  ? lock_release+0x201/0x2f0
[  340.850994][T12570]  ? avc_has_perm_noaudit+0x149/0x3b0
[  340.851018][T12570]  ? ksys_write+0x1ac/0x250
[  340.851036][T12570]  ? __pfx_ksys_write+0x10/0x10
[  340.851055][T12570]  __x64_sys_io_uring_setup+0xc2/0x170
[  340.851073][T12570]  do_syscall_64+0xcd/0x4c0
[  340.851092][T12570]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.851109][T12570] RIP: 0033:0x7fc93c98ebe9
[  340.851123][T12570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  340.851140][T12570] RSP: 002b:00007fc93d77d038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  340.851158][T12570] RAX: ffffffffffffffda RBX: 00007fc93cbb5fa0 RCX: 00007fc93c98ebe9
[  340.851170][T12570] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000001ddd
[  340.851181][T12570] RBP: 00007fc93d77d090 R08: 0000000000000000 R09: 0000000000000000
[  340.851191][T12570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  340.851201][T12570] R13: 00007fc93cbb6038 R14: 00007fc93cbb5fa0 R15: 00007ffd97ae1008
[  340.851218][T12570]  </TASK>
[  341.068260][T12573] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  341.076107][   T94] block nbd0: Possible stuck request ffff888026a67000: control (read@0,1024B). Runtime 180 seconds
[  341.087086][   T94] block nbd0: Possible stuck request ffff888026a671c0: control (read@1024,1024B). Runtime 180 seconds
[  341.098848][   T94] block nbd0: Possible stuck request ffff888026a67380: control (read@2048,1024B). Runtime 180 seconds
[  341.109887][   T94] block nbd0: Possible stuck request ffff888026a67540: control (read@3072,1024B). Runtime 180 seconds
[  341.144571][T12578] macsec0: entered promiscuous mode
[  341.150286][T12578] macsec0: entered allmulticast mode
[  341.155874][T12578] veth1_macvtap: entered allmulticast mode
[  341.193950][ T5923] uclogic 0003:28BD:0094.002F: pen parameters not found
[  341.213530][ T5923] uclogic 0003:28BD:0094.002F: interface is invalid, ignoring
[  341.452801][T12592] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  341.463091][T12592] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  341.611753][ T5846] usb 5-1: new high-speed USB device number 50 using dummy_hcd
[  341.811415][ T5846] usb 5-1: Using ep0 maxpacket: 32
[  341.817690][ T5846] usb 5-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  341.826809][ T5846] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  341.835634][ T5846] usb 5-1: config 0 descriptor??
[  341.843214][ T5846] gspca_main: nw80x-2.14.0 probing 055f:d001
[  342.184622][ T5846] gspca_nw80x: reg_w err -71
[  342.189386][ T5846] nw80x 5-1:0.0: probe with driver nw80x failed with error -71
[  342.200149][ T5846] usb 5-1: USB disconnect, device number 50
[  342.583556][ T3091] usb 4-1: USB disconnect, device number 55
[  342.724025][   T30] audit: type=1400 audit(1755780286.513:728): avc:  denied  { getopt } for  pid=12625 comm="syz.5.2069" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  343.174713][T12639] netlink: 168 bytes leftover after parsing attributes in process `syz.3.2074'.
[  343.538370][T12652] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  343.573083][   T30] audit: type=1400 audit(1755780287.333:729): avc:  denied  { mount } for  pid=12644 comm="syz.4.2077" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  343.781632][ T7600] usb 6-1: new high-speed USB device number 26 using dummy_hcd
[  344.033455][ T7600] usb 6-1: Using ep0 maxpacket: 32
[  344.040982][ T7600] usb 6-1: config 0 has an invalid interface number: 51 but max is 0
[  344.051410][ T7600] usb 6-1: config 0 has no interface number 0
[  344.060569][ T7600] usb 6-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  344.069952][ T7600] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  344.078137][ T7600] usb 6-1: Product: syz
[  344.082973][ T7600] usb 6-1: Manufacturer: syz
[  344.087786][ T7600] usb 6-1: SerialNumber: syz
[  344.099882][ T7600] usb 6-1: config 0 descriptor??
[  344.105864][T12659] loop2: detected capacity change from 0 to 7
[  344.113868][ T7600] quatech2 6-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  344.123257][ T6100] Dev loop2: unable to read RDB block 7
[  344.128822][ T6100]  loop2: AHDI p2
[  344.134960][ T6100] loop2: partition table partially beyond EOD, truncated
[  344.143507][T12659] Dev loop2: unable to read RDB block 7
[  344.151702][T12659]  loop2: AHDI p2
[  344.155400][T12659] loop2: partition table partially beyond EOD, truncated
[  344.281707][ T5922] usb 4-1: new high-speed USB device number 56 using dummy_hcd
[  344.305216][   T30] audit: type=1400 audit(1755780288.113:730): avc:  denied  { unmount } for  pid=5840 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  344.318381][ T7600] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  344.572363][    C0] quatech-serial ttyUSB0: qt2_process_read_urb - unsupported command 101
[  344.576058][T12671] netlink: 'syz.4.2085': attribute type 12 has an invalid length.
[  344.595802][T12671] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2085'.
[  344.659549][ T7600] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  344.722333][ T5922] usb 4-1: Using ep0 maxpacket: 32
[  344.729415][ T5922] usb 4-1: config 0 has an invalid interface number: 51 but max is 0
[  344.737674][ T5922] usb 4-1: config 0 has no interface number 0
[  344.747037][ T5922] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  344.757086][ T5922] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  344.767366][ T5922] usb 4-1: Product: syz
[  344.772288][ T5923] usb 3-1: new high-speed USB device number 39 using dummy_hcd
[  344.780077][ T5922] usb 4-1: Manufacturer: syz
[  344.785501][ T5922] usb 4-1: SerialNumber: syz
[  344.797959][ T5922] usb 4-1: config 0 descriptor??
[  344.811854][    C0] usb 6-1: qt2_read_bulk_callback - non-zero urb status: -71
[  344.819497][ T7600] usb 6-1: USB disconnect, device number 26
[  344.834866][ T5922] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  344.846321][ T7600] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  344.867168][ T7600] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  344.879087][ T7600] quatech2 6-1:0.51: device disconnected
[  345.041132][ T5923] usb 3-1: Using ep0 maxpacket: 32
[  345.141348][ T5922] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  345.169562][ T5923] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  345.200517][ T5923] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  345.219545][ T5922] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  345.237346][ T5923] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  345.258448][ T5923] usb 3-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  345.271207][ T5923] usb 3-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  345.291552][ T5923] usb 3-1: Product: syz
[  345.295757][ T5923] usb 3-1: Manufacturer: syz
[  345.300363][ T5923] usb 3-1: SerialNumber: syz
[  345.314561][ T5923] input: appletouch as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/input/input22
[  345.324050][    C0] quatech-serial ttyUSB0: qt2_process_read_urb - unsupported command 101
[  345.431830][T12702] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2096'.
[  345.440904][T12702] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2096'.
[  345.450723][T12702] netlink: 72 bytes leftover after parsing attributes in process `syz.4.2096'.
[  345.492688][T12705] netlink: 'syz.0.2098': attribute type 1 has an invalid length.
[  345.508007][T12705] 8021q: adding VLAN 0 to HW filter on device bond5
[  345.525334][    C0] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71
[  345.526105][ T5846] usb 4-1: USB disconnect, device number 56
[  345.540896][T12668] program syz.2.2084 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  345.568610][ T3091] usb 3-1: USB disconnect, device number 39
[  345.585198][ T5846] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  345.626866][ T3091] appletouch 3-1:1.0: input: appletouch disconnected
[  345.667082][ T5846] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  345.691097][ T5846] quatech2 4-1:0.51: device disconnected
[  345.735998][T12715] usb usb8: usbfs: process 12715 (syz.4.2097) did not claim interface 0 before use
[  345.966678][T12724] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2104'.
[  345.975688][T12724] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2104'.
[  346.081382][   T43] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[  346.202624][T12735] netlink: 'syz.2.2109': attribute type 1 has an invalid length.
[  346.219513][T12735] 8021q: adding VLAN 0 to HW filter on device bond7
[  346.231446][   T43] usb 6-1: Using ep0 maxpacket: 8
[  346.237984][   T43] usb 6-1: config 6 has an invalid interface number: 2 but max is 0
[  346.256991][   T43] usb 6-1: config 6 has an invalid descriptor of length 0, skipping remainder of the config
[  346.267269][   T43] usb 6-1: config 6 has no interface number 0
[  346.273593][   T43] usb 6-1: config 6 interface 2 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  346.334850][   T43] usb 6-1: New USB device found, idVendor=0af0, idProduct=7271, bcdDevice=88.91
[  346.343967][   T43] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  346.352133][   T43] usb 6-1: Product: syz
[  346.356289][   T43] usb 6-1: Manufacturer: syz
[  346.361126][   T43] usb 6-1: SerialNumber: syz
[  346.368595][   T43] hso 6-1:6.2: Failed to find INT IN ep
[  346.810727][ T7600] usb 6-1: USB disconnect, device number 27
[  347.062434][T12766] 9pnet_fd: Insufficient options for proto=fd
[  347.127998][   T43] usb 3-1: new high-speed USB device number 40 using dummy_hcd
[  347.363453][   T30] audit: type=1800 audit(1755780291.043:731): pid=12774 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.4.2119" name="SYSV00000000" dev="tmpfs" ino=1 res=0 errno=0
[  347.532676][   T43] usb 3-1: Using ep0 maxpacket: 32
[  347.542541][   T43] usb 3-1: config 0 has an invalid interface number: 51 but max is 0
[  347.550648][   T43] usb 3-1: config 0 has no interface number 0
[  347.562439][   T43] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  347.572627][   T43] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  347.580636][   T43] usb 3-1: Product: syz
[  347.595248][   T43] usb 3-1: Manufacturer: syz
[  347.609174][T12781] 9pnet_fd: Insufficient options for proto=fd
[  347.612553][   T43] usb 3-1: SerialNumber: syz
[  347.627159][   T43] usb 3-1: config 0 descriptor??
[  347.643191][   T43] quatech2 3-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  347.665743][T12784] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2124'.
[  348.016562][   T43] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  348.201226][   T43] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  348.949877][T12799] loop6: detected capacity change from 0 to 7
[  348.972147][T12799] Dev loop6: unable to read RDB block 7
[  349.026963][T12799]  loop6: AHDI p1 p2
[  349.063020][    C1] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -71
[  349.071971][   T43] usb 3-1: USB disconnect, device number 40
[  349.086252][T12799] loop6: partition table partially beyond EOD, truncated
[  349.104409][   T43] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  349.131447][T12799] loop6: p1 start 926365495 is beyond EOD, truncated
[  349.140591][   T43] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  349.195273][   T43] quatech2 3-1:0.51: device disconnected
[  349.217440][ T7600] hid-generic 0000:3000000:0000.0030: unknown main item tag 0x4
[  349.299122][ T7600] hid-generic 0000:3000000:0000.0030: unknown main item tag 0x2
[  349.300611][T12806] tmpfs: Bad value for 'mpol'
[  349.311959][ T7600] hid-generic 0000:3000000:0000.0030: unknown main item tag 0x3
[  349.319632][ T7600] hid-generic 0000:3000000:0000.0030: unknown main item tag 0x0
[  349.344469][ T7600] hid-generic 0000:3000000:0000.0030: unknown main item tag 0x0
[  349.389327][ T7600] hid-generic 0000:3000000:0000.0030: unknown main item tag 0x0
[  349.686382][ T7600] hid-generic 0000:3000000:0000.0030: unknown main item tag 0x0
[  349.721007][ T7600] hid-generic 0000:3000000:0000.0030: unknown main item tag 0x0
[  349.849248][ T7600] hid-generic 0000:3000000:0000.0030: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  350.067239][T12816] fido_id[12816]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  350.196904][   T30] audit: type=1400 audit(1755780294.003:732): avc:  denied  { lock } for  pid=12823 comm="syz.4.2136" path="socket:[37035]" dev="sockfs" ino=37035 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  350.681090][T12868] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2141'.
[  350.695797][T12868] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2141'.
[  350.978146][T12879] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2145'.
[  351.102757][   T30] audit: type=1400 audit(1755780294.913:733): avc:  denied  { execute } for  pid=12872 comm="syz.3.2144" path="/dev/audio1" dev="devtmpfs" ino=1297 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sound_device_t tclass=chr_file permissive=1
[  351.337264][T12894] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12894 comm=syz.2.2151
[  351.735353][T12906] hub 8-0:1.0: USB hub found
[  351.740538][T12906] hub 8-0:1.0: 1 port detected
[  352.367895][T12911] lo speed is unknown, defaulting to 1000
[  352.453992][T12914] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2157'.
[  352.463954][T12914] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2157'.
[  352.592244][T12911] wg1 speed is unknown, defaulting to 1000
[  352.982575][T12910] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2156'.
[  353.056607][T12925] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2160'.
[  353.118117][T12925] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2160'.
[  353.127197][T12925] netlink: 72 bytes leftover after parsing attributes in process `syz.4.2160'.
[  353.201329][   T43] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[  353.352712][   T43] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE8, changing to 0x88
[  353.364595][   T43] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[  353.436297][   T30] audit: type=1400 audit(1755780297.243:734): avc:  denied  { mount } for  pid=12932 comm="syz.0.2163" name="/" dev="9p" ino=17889801302421081418 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  353.484269][   T43] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xA has an invalid bInterval 0, changing to 7
[  353.540966][   T43] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  353.621101][T12936] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2164'.
[  353.630423][T12936] IPVS: Error joining to the multicast group
[  353.718886][   T43] usb 6-1: New USB device found, idVendor=1781, idProduct=0938, bcdDevice=9b.49
[  353.728262][   T43] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  353.744094][   T43] usb 6-1: Product: syz
[  353.753699][   T43] usb 6-1: Manufacturer: syz
[  353.858064][   T43] usb 6-1: SerialNumber: syz
[  353.869604][   T43] usb 6-1: config 0 descriptor??
[  353.879488][   T43] iguanair 6-1:0.0: failed to get version
[  353.886633][   T43] iguanair 6-1:0.0: probe with driver iguanair failed with error -90
[  354.144238][ T5923] usb 6-1: USB disconnect, device number 28
[  354.268752][T12964] loop8: detected capacity change from 0 to 8
[  354.277417][ T6100] Dev loop8: unable to read RDB block 8
[  354.283515][ T6100]  loop8: unable to read partition table
[  354.290701][ T6100] loop8: partition table beyond EOD, truncated
[  354.304801][T12964] Dev loop8: unable to read RDB block 8
[  354.310395][T12964]  loop8: unable to read partition table
[  354.316723][T12964] loop8: partition table beyond EOD, truncated
[  354.325701][T12964] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5)
[  354.377232][T12965] lo speed is unknown, defaulting to 1000
[  354.556007][T12965] wg1 speed is unknown, defaulting to 1000
[  354.981371][ T5846] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[  355.433121][ T5846] usb 6-1: Using ep0 maxpacket: 32
[  355.457064][ T5846] usb 6-1: config 4 has an invalid interface number: 8 but max is 0
[  355.465243][ T5846] usb 6-1: config 4 has no interface number 0
[  355.471738][ T5846] usb 6-1: config 4 interface 8 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[  355.481675][ T5846] usb 6-1: config 4 interface 8 altsetting 1 bulk endpoint 0x8A has invalid maxpacket 0
[  355.493363][   T30] audit: type=1400 audit(1755780299.303:735): avc:  denied  { bind } for  pid=12988 comm="syz.4.2184" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  355.587665][   T30] audit: type=1400 audit(1755780299.303:736): avc:  denied  { setopt } for  pid=12988 comm="syz.4.2184" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  355.609044][ T5846] usb 6-1: config 4 interface 8 has no altsetting 0
[  355.617794][ T5846] usb 6-1: New USB device found, idVendor=065a, idProduct=0009, bcdDevice=60.65
[  355.627510][ T5846] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  355.639987][ T5846] usb 6-1: Product: syz
[  355.653116][ T5846] usb 6-1: Manufacturer: syz
[  355.662993][ T5846] usb 6-1: SerialNumber: syz
[  355.860803][T12994] overlayfs: failed to clone upperpath
[  355.968576][ T5846] opticon 6-1:4.8: opticon converter detected
[  355.976751][ T5846] usb 6-1: opticon converter now attached to ttyUSB0
[  356.004546][ T5846] usb 6-1: USB disconnect, device number 29
[  356.057208][ T5846] opticon ttyUSB0: opticon converter now disconnected from ttyUSB0
[  356.066153][ T5846] opticon 6-1:4.8: device disconnected
[  356.252693][T12997] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2186'.
[  356.264907][T12997] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2186'.
[  356.309707][T12997] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2186'.
[  356.621667][T13001] batman_adv: batadv0: Removing interface: batadv_slave_0
[  356.663503][T13001] batman_adv: batadv0: Removing interface: batadv_slave_1
[  356.749164][T13003] FAULT_INJECTION: forcing a failure.
[  356.749164][T13003] name failslab, interval 1, probability 0, space 0, times 0
[  356.824499][T13003] CPU: 1 UID: 0 PID: 13003 Comm: syz.5.2188 Not tainted syzkaller #0 PREEMPT(full) 
[  356.824517][T13003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  356.824523][T13003] Call Trace:
[  356.824527][T13003]  <TASK>
[  356.824531][T13003]  dump_stack_lvl+0x16c/0x1f0
[  356.824547][T13003]  should_fail_ex+0x512/0x640
[  356.824561][T13003]  should_failslab+0xc2/0x120
[  356.824575][T13003]  __kvmalloc_node_noprof+0x137/0x620
[  356.824588][T13003]  ? io_alloc_cache_init+0x33/0x170
[  356.824609][T13003]  ? io_alloc_cache_init+0x33/0x170
[  356.824627][T13003]  io_alloc_cache_init+0x33/0x170
[  356.824645][T13003]  io_uring_setup+0x680/0x2120
[  356.824660][T13003]  ? __pfx_io_uring_setup+0x10/0x10
[  356.824670][T13003]  ? lock_release+0x201/0x2f0
[  356.824689][T13003]  ? avc_has_perm_noaudit+0x149/0x3b0
[  356.824703][T13003]  ? ksys_write+0x1ac/0x250
[  356.824714][T13003]  ? __pfx_ksys_write+0x10/0x10
[  356.824726][T13003]  __x64_sys_io_uring_setup+0xc2/0x170
[  356.824737][T13003]  do_syscall_64+0xcd/0x4c0
[  356.824749][T13003]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.824761][T13003] RIP: 0033:0x7fe0a578ebe9
[  356.824770][T13003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  356.824780][T13003] RSP: 002b:00007fe0a66e0038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  356.824791][T13003] RAX: ffffffffffffffda RBX: 00007fe0a59b5fa0 RCX: 00007fe0a578ebe9
[  356.824798][T13003] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000001ddd
[  356.824805][T13003] RBP: 00007fe0a66e0090 R08: 0000000000000000 R09: 0000000000000000
[  356.824811][T13003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  356.824817][T13003] R13: 00007fe0a59b6038 R14: 00007fe0a59b5fa0 R15: 00007ffce1a27858
[  356.824827][T13003]  </TASK>
[  357.547356][T13016] SELinux: failed to load policy
[  357.704384][T13010] lo speed is unknown, defaulting to 1000
[  357.943904][T13010] wg1 speed is unknown, defaulting to 1000
[  358.541447][ T5909] usb 5-1: new high-speed USB device number 51 using dummy_hcd
[  358.689907][   T30] audit: type=1400 audit(1755780302.493:737): avc:  denied  { bind } for  pid=13027 comm="syz.3.2196" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  358.715336][ T5909] usb 5-1: Using ep0 maxpacket: 32
[  358.728592][ T5846] libceph: connect (1)[c::]:6789 error -101
[  358.737027][ T5846] libceph: mon0 (1)[c::]:6789 connect error
[  358.745437][ T5909] usb 5-1: config index 0 descriptor too short (expected 28508, got 18)
[  358.758852][ T5909] usb 5-1: config 0 has an invalid descriptor of length 162, skipping remainder of the config
[  358.771661][ T5909] usb 5-1: config 0 has no interfaces?
[  358.778986][ T5909] usb 5-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b
[  358.788953][ T5909] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  358.797116][ T5909] usb 5-1: Product: syz
[  358.802397][ T5909] usb 5-1: Manufacturer: syz
[  358.807003][ T5909] usb 5-1: SerialNumber: syz
[  358.870490][ T5909] usb 5-1: config 0 descriptor??
[  359.022981][   T43] libceph: connect (1)[c::]:6789 error -101
[  359.036043][   T43] libceph: mon0 (1)[c::]:6789 connect error
[  359.516399][T13038] binder: 13036:13038 ioctl 4018620d 0 returned -22
[  359.517049][T13028] ceph: No mds server is up or the cluster is laggy
[  359.604289][T13043] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2199'.
[  359.710785][T13047] loop6: detected capacity change from 0 to 7
[  359.965338][T13047] Dev loop6: unable to read RDB block 7
[  359.971061][T13047]  loop6: AHDI p1 p2
[  359.979058][T13047] loop6: partition table partially beyond EOD, truncated
[  359.990198][T13047] loop6: p1 start 926365495 is beyond EOD, truncated
[  360.296651][ T6152] udevd[6152]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[  360.362186][   T30] audit: type=1400 audit(1755780304.173:738): avc:  denied  { accept } for  pid=13054 comm="syz.5.2203" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  360.687205][T13061] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2205'.
[  360.740194][T13061] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2205'.
[  360.797704][   T30] audit: type=1400 audit(1755780304.603:739): avc:  denied  { ioctl } for  pid=13063 comm="syz.5.2207" path="socket:[36627]" dev="sockfs" ino=36627 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  360.801011][T13064] input: syz0 as /devices/virtual/input/input24
[  361.213123][T13066] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2209'.
[  361.223860][T13066] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2209'.
[  361.295701][T13076] lo speed is unknown, defaulting to 1000
[  361.499126][T13076] wg1 speed is unknown, defaulting to 1000
[  361.934713][ T5909] usb 5-1: USB disconnect, device number 51
[  361.975187][T13088] loop8: detected capacity change from 0 to 8
[  361.982448][T13088] Dev loop8: unable to read RDB block 8
[  361.988336][T13088]  loop8: unable to read partition table
[  362.007484][T13088] loop8: partition table beyond EOD, truncated
[  362.020422][T13088] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5)
[  362.026432][T13089] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2212'.
[  362.147541][T13087] bridge0: port 2(bridge_slave_1) entered disabled state
[  362.154751][T13087] bridge0: port 1(bridge_slave_0) entered disabled state
[  363.002630][   T43] syz1: Port: 1 Link DOWN
[  363.007063][ T6355] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  363.018509][ T6355] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  363.028670][ T6355] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  363.038953][ T6355] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  363.115064][T13107] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2219'.
[  363.181392][ T3091] usb 5-1: new high-speed USB device number 52 using dummy_hcd
[  363.362295][ T3091] usb 5-1: Using ep0 maxpacket: 16
[  363.369151][ T3091] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  363.380216][ T3091] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  363.390040][ T3091] usb 5-1: config 0 interface 0 has no altsetting 0
[  363.396848][ T3091] usb 5-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  363.406814][ T3091] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  363.424632][ T3091] usb 5-1: config 0 descriptor??
[  364.121379][ T7600] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[  364.513917][ T7600] usb 6-1: Using ep0 maxpacket: 32
[  364.521039][ T7600] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  364.533022][ T7600] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 32
[  364.577840][ T7600] usb 6-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  364.609741][ T3091] usbhid 5-1:0.0: can't add hid device: -71
[  364.618802][ T3091] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  364.649591][ T7600] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  364.660098][ T7600] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  364.679049][ T7600] usb 6-1: Product: syz
[  364.679164][ T3091] usb 5-1: USB disconnect, device number 52
[  364.683542][ T7600] usb 6-1: Manufacturer: syz
[  364.701741][ T7600] usb 6-1: SerialNumber: syz
[  365.069859][T13125] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  365.704371][T13125] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  365.920410][ T7600] cdc_ncm 6-1:1.0: bind() failure
[  365.941021][ T7600] cdc_ncm 6-1:1.1: probe with driver cdc_ncm failed with error -71
[  366.238647][ T7600] cdc_mbim 6-1:1.1: probe with driver cdc_mbim failed with error -71
[  366.247676][T13176] SELinux: failed to load policy
[  366.278400][ T7600] usbtest 6-1:1.1: probe with driver usbtest failed with error -71
[  366.293555][ T7600] usb 6-1: USB disconnect, device number 30
[  366.998592][   T30] audit: type=1400 audit(1755780310.803:740): avc:  denied  { connect } for  pid=13194 comm="syz.5.2246" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  367.335666][T13195] RDS: rds_bind could not find a transport for ::ffff:10.1.1.2, load rds_tcp or rds_rdma?
[  367.855465][T13227] input: syz0 as /devices/virtual/input/input25
[  367.891509][ T3091] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[  368.063093][T13228] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2255'.
[  368.225614][T13239] loop8: detected capacity change from 0 to 8
[  368.233894][T13239] Dev loop8: unable to read RDB block 8
[  368.239605][T13239]  loop8: unable to read partition table
[  368.246674][T13239] loop8: partition table beyond EOD, truncated
[  368.254749][ T3091] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  368.266008][ T3091] usb 3-1: config 4 has 0 interfaces, different from the descriptor's value: 1
[  368.276158][ T3091] usb 3-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[  368.289920][T13239] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5)
[  368.339654][ T3091] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  368.896379][   T30] audit: type=1400 audit(1755780312.683:741): avc:  denied  { execute } for  pid=13258 comm="syz.3.2266" path="/dev/nullb0" dev="devtmpfs" ino=3544 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=file permissive=1
[  368.919098][    C0] vkms_vblank_simulate: vblank timer overrun
[  369.061173][T13263] FAULT_INJECTION: forcing a failure.
[  369.061173][T13263] name failslab, interval 1, probability 0, space 0, times 0
[  369.118242][   T30] audit: type=1800 audit(1755780312.683:742): pid=13259 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.2266" name="nullb0" dev="devtmpfs" ino=3544 res=0 errno=0
[  369.209414][T13263] CPU: 0 UID: 0 PID: 13263 Comm: syz.3.2268 Not tainted syzkaller #0 PREEMPT(full) 
[  369.209440][T13263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  369.209451][T13263] Call Trace:
[  369.209456][T13263]  <TASK>
[  369.209462][T13263]  dump_stack_lvl+0x16c/0x1f0
[  369.209481][T13263]  should_fail_ex+0x512/0x640
[  369.209502][T13263]  should_failslab+0xc2/0x120
[  369.209522][T13263]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  369.209540][T13263]  ? alloc_inode+0xc3/0x240
[  369.209561][T13263]  alloc_inode+0xc3/0x240
[  369.209586][T13263]  alloc_anon_inode+0x28/0x3e0
[  369.209601][T13263]  ? lock_release+0x201/0x2f0
[  369.209622][T13263]  anon_inode_make_secure_inode+0x31/0x140
[  369.209641][T13263]  __anon_inode_getfile+0x1cf/0x280
[  369.209658][T13263]  ? _copy_to_user+0x48/0xd0
[  369.209677][T13263]  io_uring_setup+0x15ce/0x2120
[  369.209691][T13263]  ? __pfx_io_uring_setup+0x10/0x10
[  369.209710][T13263]  ? ksys_write+0x1ac/0x250
[  369.209724][T13263]  ? __pfx_ksys_write+0x10/0x10
[  369.209739][T13263]  __x64_sys_io_uring_setup+0xc2/0x170
[  369.209753][T13263]  do_syscall_64+0xcd/0x4c0
[  369.209769][T13263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.209783][T13263] RIP: 0033:0x7f377398ebe9
[  369.209794][T13263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  369.209807][T13263] RSP: 002b:00007f37748ca038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  369.209821][T13263] RAX: ffffffffffffffda RBX: 00007f3773bb5fa0 RCX: 00007f377398ebe9
[  369.209830][T13263] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000001ddd
[  369.209838][T13263] RBP: 00007f37748ca090 R08: 0000000000000000 R09: 0000000000000000
[  369.209847][T13263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  369.209855][T13263] R13: 00007f3773bb6038 R14: 00007f3773bb5fa0 R15: 00007ffd306899b8
[  369.209868][T13263]  </TASK>
[  369.398759][    C0] vkms_vblank_simulate: vblank timer overrun
[  369.405229][   T30] audit: type=1400 audit(1755780312.683:743): avc:  denied  { listen } for  pid=13258 comm="syz.3.2266" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  369.479763][T13268] lo speed is unknown, defaulting to 1000
[  369.546771][T13270] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2273'.
[  369.697746][   T30] audit: type=1400 audit(1755780313.503:744): avc:  denied  { mount } for  pid=13271 comm="syz.4.2274" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  369.716673][T13268] wg1 speed is unknown, defaulting to 1000
[  369.719931][    C0] vkms_vblank_simulate: vblank timer overrun
[  369.733423][T13274] trusted_key: encrypted_key: keylen parameter is missing
[  369.740926][T13274] trusted_key: encrypted_key: keylen parameter is missing
[  369.748706][T13274] overlay: Unknown parameter 'dont_hash'
[  369.987460][T13291] netlink: 'syz.3.2279': attribute type 1 has an invalid length.
[  370.000852][T13273] netlink: 'syz.5.2270': attribute type 1 has an invalid length.
[  370.016657][T13291] 8021q: adding VLAN 0 to HW filter on device bond2
[  370.036363][T13273] bond3: entered promiscuous mode
[  370.051321][T13273] bond3: entered allmulticast mode
[  370.065324][T13283] bond3: (slave geneve2): making interface the new active one
[  370.100336][T13283] geneve2: entered promiscuous mode
[  370.112792][T13283] geneve2: entered allmulticast mode
[  370.120607][T13283] bond3: (slave geneve2): Enslaving as an active interface with an up link
[  370.453364][   T30] audit: type=1400 audit(1755780314.263:745): avc:  denied  { unmount } for  pid=5840 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  370.495507][T13310] loop6: detected capacity change from 0 to 7
[  370.502132][T13310] Dev loop6: unable to read RDB block 7
[  370.508017][T13310]  loop6: AHDI p1 p2
[  370.514116][T13310] loop6: partition table partially beyond EOD, truncated
[  370.527853][ T7600] usb 3-1: USB disconnect, device number 41
[  370.547479][T13310] loop6: p1 start 926365495 is beyond EOD, truncated
[  370.673196][   T30] audit: type=1400 audit(1755780314.483:746): avc:  denied  { read } for  pid=13311 comm="syz.2.2285" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  370.696121][T13321] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2286'.
[  370.739564][T13321] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2286'.
[  370.908980][T13342] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2296'.
[  370.918277][T13342] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2296'.
[  370.927831][T13342] netlink: 72 bytes leftover after parsing attributes in process `syz.0.2296'.
[  371.151720][   T94] block nbd0: Possible stuck request ffff888026a67000: control (read@0,1024B). Runtime 210 seconds
[  371.162494][   T94] block nbd0: Possible stuck request ffff888026a671c0: control (read@1024,1024B). Runtime 210 seconds
[  371.173742][   T94] block nbd0: Possible stuck request ffff888026a67380: control (read@2048,1024B). Runtime 210 seconds
[  371.184839][   T94] block nbd0: Possible stuck request ffff888026a67540: control (read@3072,1024B). Runtime 210 seconds
[  371.415404][T13356] loop6: detected capacity change from 0 to 7
[  371.424064][T13356] Dev loop6: unable to read RDB block 7
[  371.436263][T13356]  loop6: AHDI p1 p2
[  371.449000][T13356] loop6: partition table partially beyond EOD, truncated
[  371.486328][T13356] loop6: p1 start 926365495 is beyond EOD, truncated
[  371.609473][T13364] loop2: detected capacity change from 0 to 7
[  371.648913][ T5843] Dev loop2: unable to read RDB block 7
[  371.655006][ T5843]  loop2: AHDI p2
[  371.658907][ T5843] loop2: partition table partially beyond EOD, truncated
[  371.679252][T13364] Dev loop2: unable to read RDB block 7
[  371.722210][T13364]  loop2: AHDI p2
[  371.726075][T13364] loop2: partition table partially beyond EOD, truncated
[  371.744043][ T5217] Dev loop2: unable to read RDB block 7
[  371.749613][ T5217]  loop2: AHDI p2
[  371.764048][ T5217] loop2: partition table partially beyond EOD, truncated
[  372.007688][   T30] audit: type=1400 audit(1755780315.813:747): avc:  denied  { setopt } for  pid=13368 comm="syz.2.2306" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  372.038848][T13373] loop6: detected capacity change from 0 to 7
[  372.045691][T13373] Dev loop6: unable to read RDB block 7
[  372.057723][T13373]  loop6: AHDI p1 p2
[  372.062011][T13373] loop6: partition table partially beyond EOD, truncated
[  372.072991][T13373] loop6: p1 start 926365495 is beyond EOD, truncated
[  372.702371][T12151] udevd[12151]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[  373.068148][   T30] audit: type=1326 audit(1755780316.803:748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13396 comm="syz.4.2315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc93c98ebe9 code=0x7ffc0000
[  373.071752][ T3091] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[  373.111221][T13408] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2315'.
[  373.119948][   T30] audit: type=1326 audit(1755780316.923:749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13396 comm="syz.4.2315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc93c98ebe9 code=0x7ffc0000
[  373.188959][   T30] audit: type=1326 audit(1755780316.963:750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13396 comm="syz.4.2315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc93c98ebe9 code=0x7ffc0000
[  373.214941][   T30] audit: type=1326 audit(1755780316.993:751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13396 comm="syz.4.2315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc93c98ebe9 code=0x7ffc0000
[  373.361109][T13428] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2326'.
[  373.370975][ T3091] usb 6-1: Using ep0 maxpacket: 8
[  373.383525][ T3091] usb 6-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4
[  373.396800][ T3091] usb 6-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[  373.405091][ T3091] usb 6-1: Product: syz
[  373.409293][ T3091] usb 6-1: Manufacturer: syz
[  373.418059][ T3091] usb 6-1: SerialNumber: syz
[  373.423951][ T3091] usb 6-1: config 0 descriptor??
[  373.431183][ T3091] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd
[  373.501316][ T7600] usb 4-1: new full-speed USB device number 57 using dummy_hcd
[  373.652475][ T7600] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  373.663647][ T7600] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  373.673436][ T7600] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  373.682489][ T7600] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  373.691444][ T5922] usb 5-1: new high-speed USB device number 53 using dummy_hcd
[  373.699403][ T7600] usb 4-1: config 0 descriptor??
[  373.861513][ T5922] usb 5-1: Using ep0 maxpacket: 32
[  373.867899][ T5922] usb 5-1: config 0 has an invalid interface number: 51 but max is 0
[  373.876357][ T5922] usb 5-1: config 0 has no interface number 0
[  373.885294][ T5922] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  373.894813][ T5922] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  373.904848][ T5922] usb 5-1: Product: syz
[  373.910389][ T5922] usb 5-1: Manufacturer: syz
[  373.915628][ T5922] usb 5-1: SerialNumber: syz
[  373.923291][ T5922] usb 5-1: config 0 descriptor??
[  373.934215][ T5922] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  373.942169][ T3091] gspca_zc3xx: reg_w_i err -110
[  374.019414][ T3091] gspca_zc3xx 6-1:0.0: probe with driver gspca_zc3xx failed with error -110
[  374.117013][ T7600] savu 0003:1E7D:2D5A.0031: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.3-1/input0
[  374.142463][ T5922] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  374.170848][ T5922] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  374.399501][T13454] netlink: 'syz.2.2336': attribute type 1 has an invalid length.
[  374.414825][T13454] 8021q: adding VLAN 0 to HW filter on device bond8
[  374.437543][   T30] audit: type=1326 audit(1755780318.243:752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13418 comm="syz.3.2322" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f377398ebe9 code=0x0
[  374.561445][    C0] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71
[  374.570001][ T5922] usb 5-1: USB disconnect, device number 53
[  374.582252][ T5922] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  374.601234][ T5922] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  374.603013][   T30] audit: type=1400 audit(1755780318.413:753): avc:  denied  { unmount } for  pid=5843 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  374.614554][ T5922] quatech2 5-1:0.51: device disconnected
[  375.541297][ T5909] usb 4-1: reset full-speed USB device number 57 using dummy_hcd
[  375.784556][   T24] usb 6-1: USB disconnect, device number 31
[  375.850622][T13491] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2350'.
[  375.891348][T13491] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2350'.
[  375.908329][T13491] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2350'.
[  375.995740][   T51] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  376.004638][   T51] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  376.013346][   T51] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  376.020825][   T51] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  376.028420][   T51] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  376.050333][T13500] lo speed is unknown, defaulting to 1000
[  376.144554][T13500] wg1 speed is unknown, defaulting to 1000
[  376.305370][ T6353] smc: removing ib device syz1
[  376.361369][   T24] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[  376.541451][ T5846] usb 5-1: new high-speed USB device number 54 using dummy_hcd
[  376.562411][   T24] usb 6-1: Using ep0 maxpacket: 32
[  376.606595][   T24] usb 6-1: config 0 has an invalid interface number: 51 but max is 0
[  376.615141][   T24] usb 6-1: config 0 has no interface number 0
[  376.624555][   T24] usb 6-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  376.633741][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  376.642501][   T24] usb 6-1: Product: syz
[  376.646639][   T24] usb 6-1: Manufacturer: syz
[  376.651200][   T24] usb 6-1: SerialNumber: syz
[  376.658894][T13500] chnl_net:caif_netlink_parms(): no params data found
[  376.682665][   T24] usb 6-1: config 0 descriptor??
[  376.689498][   T24] quatech2 6-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  376.731347][T13098] usb 3-1: new high-speed USB device number 42 using dummy_hcd
[  376.752657][ T5846] usb 5-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  376.763085][ T5846] usb 5-1: config 4 has 0 interfaces, different from the descriptor's value: 1
[  376.772395][ T5846] usb 5-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[  376.781971][ T5846] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  376.831357][T13500] bridge0: port 1(bridge_slave_0) entered blocking state
[  376.838543][T13500] bridge0: port 1(bridge_slave_0) entered disabled state
[  376.851452][T13500] bridge_slave_0: entered allmulticast mode
[  376.858561][T13500] bridge_slave_0: entered promiscuous mode
[  376.864655][T13098] usb 3-1: device descriptor read/64, error -71
[  376.873283][T13500] bridge0: port 2(bridge_slave_1) entered blocking state
[  376.890469][T13500] bridge0: port 2(bridge_slave_1) entered disabled state
[  376.898408][T13500] bridge_slave_1: entered allmulticast mode
[  376.911746][   T24] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  376.921709][T13500] bridge_slave_1: entered promiscuous mode
[  376.943789][   T24] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  377.037431][T13500] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  377.075449][ T3091] usb 4-1: USB disconnect, device number 57
[  377.114991][T13500] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  377.141316][T13098] usb 3-1: new high-speed USB device number 43 using dummy_hcd
[  377.166206][T13500] team0: Port device team_slave_0 added
[  377.297732][T13500] team0: Port device team_slave_1 added
[  377.313267][    C1] usb 6-1: qt2_read_bulk_callback - non-zero urb status: -71
[  377.330853][   T24] usb 6-1: USB disconnect, device number 32
[  377.358311][   T24] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  377.381356][T13098] usb 3-1: device descriptor read/64, error -71
[  377.390232][   T24] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  377.417245][   T24] quatech2 6-1:0.51: device disconnected
[  377.496479][T13098] usb usb3-port1: attempt power cycle
[  377.701624][T13500] batman_adv: batadv0: Adding interface: batadv_slave_0
[  377.716979][T13500] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  377.747062][T13542] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2362'.
[  377.762664][T13542] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2362'.
[  377.771778][T13500] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  377.781642][T13542] netlink: 72 bytes leftover after parsing attributes in process `syz.3.2362'.
[  377.784629][T13500] batman_adv: batadv0: Adding interface: batadv_slave_1
[  377.798400][T13500] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  377.825609][T13500] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  377.842930][T13098] usb 3-1: new high-speed USB device number 44 using dummy_hcd
[  377.862090][T13098] usb 3-1: device descriptor read/8, error -71
[  377.895874][T13500] hsr_slave_0: entered promiscuous mode
[  377.896741][T13546] loop6: detected capacity change from 0 to 7
[  377.910117][T13546] Dev loop6: unable to read RDB block 7
[  377.914062][T13500] hsr_slave_1: entered promiscuous mode
[  377.916418][T13546]  loop6: AHDI p1 p2
[  377.925841][T13500] debugfs: 'hsr0' already exists in 'hsr'
[  377.926852][T13546] loop6: partition table partially beyond EOD, truncated
[  377.937234][T13500] Cannot create hsr debugfs directory
[  377.944617][T13546] loop6: p1 start 926365495 is beyond EOD, truncated
[  378.106323][T13098] usb 3-1: new high-speed USB device number 45 using dummy_hcd
[  378.119031][ T6351] bridge_slave_1: left allmulticast mode
[  378.124751][   T51] Bluetooth: hci6: command tx timeout
[  378.131045][ T6351] bridge_slave_1: left promiscuous mode
[  378.131754][T13098] usb 3-1: device descriptor read/8, error -71
[  378.136956][ T6351] bridge0: port 2(bridge_slave_1) entered disabled state
[  378.154012][ T6351] bridge_slave_0: left allmulticast mode
[  378.160742][ T6351] bridge_slave_0: left promiscuous mode
[  378.167798][ T6351] bridge0: port 1(bridge_slave_0) entered disabled state
[  378.193384][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  378.199995][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  378.246082][ T6351] bond2 (unregistering): (slave geneve2): Releasing active interface
[  378.252610][   T24] usb 4-1: new high-speed USB device number 58 using dummy_hcd
[  378.261923][T13098] usb usb3-port1: unable to enumerate USB device
[  378.374439][ T6351] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  378.383671][ T6351] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  378.393178][ T6351] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  378.401762][ T6351] bond0 (unregistering): Released all slaves
[  378.402148][   T24] usb 4-1: device descriptor read/64, error -71
[  378.411168][ T6351] bond1 (unregistering): Released all slaves
[  378.425120][ T6351] bond2 (unregistering): Released all slaves
[  378.437363][ T6351] bond3 (unregistering): Released all slaves
[  378.446797][ T6351] bond4 (unregistering): Released all slaves
[  378.455964][ T6351] bond5 (unregistering): Released all slaves
[  378.515873][ T6351] tipc: Disabling bearer <eth:syzkaller0>
[  378.521920][ T6351] tipc: Left network mode
[  378.681415][   T24] usb 4-1: new high-speed USB device number 59 using dummy_hcd
[  378.747853][T13500] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  378.764488][T13500] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  378.777651][T13500] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  378.788209][T13500] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  378.821899][   T24] usb 4-1: device descriptor read/64, error -71
[  378.923278][T13500] 8021q: adding VLAN 0 to HW filter on device bond0
[  378.945054][ T6351] hsr_slave_0: left promiscuous mode
[  378.952946][   T24] usb usb4-port1: attempt power cycle
[  378.959202][ T6351] hsr_slave_1: left promiscuous mode
[  379.268758][ T6351] team0 (unregistering): Port device team_slave_1 removed
[  379.282483][ T6351] team0 (unregistering): Port device team_slave_0 removed
[  379.294088][   T24] usb 4-1: new high-speed USB device number 60 using dummy_hcd
[  379.306399][T13598] loop8: detected capacity change from 0 to 8
[  379.316695][ T5922] usb 5-1: USB disconnect, device number 54
[  379.320307][T13598] Dev loop8: unable to read RDB block 8
[  379.330672][T13598]  loop8: unable to read partition table
[  379.336717][   T24] usb 4-1: device descriptor read/8, error -71
[  379.355891][T13598] loop8: partition table beyond EOD, truncated
[  379.388046][T13598] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5)
[  379.605424][   T24] usb 4-1: new high-speed USB device number 61 using dummy_hcd
[  379.657557][   T24] usb 4-1: device descriptor read/8, error -71
[  379.693951][T13500] 8021q: adding VLAN 0 to HW filter on device team0
[  379.724306][ T6360] bridge0: port 1(bridge_slave_0) entered blocking state
[  379.731374][ T6360] bridge0: port 1(bridge_slave_0) entered forwarding state
[  379.750651][ T6360] bridge0: port 2(bridge_slave_1) entered blocking state
[  379.757784][ T6360] bridge0: port 2(bridge_slave_1) entered forwarding state
[  379.792289][   T24] usb usb4-port1: unable to enumerate USB device
[  379.936936][T13621] loop6: detected capacity change from 0 to 7
[  380.029091][ T6351] IPVS: stop unused estimator thread 0...
[  380.069338][T13621] Dev loop6: unable to read RDB block 7
[  380.077154][T13621]  loop6: AHDI p1 p2
[  380.082487][   T24] usb 3-1: new high-speed USB device number 46 using dummy_hcd
[  380.088006][T13621] loop6: partition table partially beyond EOD, truncated
[  380.099241][T13621] loop6: p1 start 926365495 is beyond EOD, truncated
[  380.130867][T13500] 8021q: adding VLAN 0 to HW filter on device batadv0
[  380.177586][ T6100] udevd[6100]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[  380.191708][   T51] Bluetooth: hci6: command tx timeout
[  380.205779][T13500] veth0_vlan: entered promiscuous mode
[  380.214643][T13500] veth1_vlan: entered promiscuous mode
[  380.241438][   T24] usb 3-1: Using ep0 maxpacket: 32
[  380.247772][   T24] usb 3-1: config 0 has an invalid interface number: 51 but max is 0
[  380.256057][   T24] usb 3-1: config 0 has no interface number 0
[  380.342166][   T24] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  380.390334][T13624] netlink: 22 bytes leftover after parsing attributes in process `syz.5.2378'.
[  380.395467][T13500] veth0_macvtap: entered promiscuous mode
[  380.409741][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  380.418867][   T24] usb 3-1: Product: syz
[  380.426252][T13500] veth1_macvtap: entered promiscuous mode
[  380.432843][   T24] usb 3-1: Manufacturer: syz
[  380.437517][   T24] usb 3-1: SerialNumber: syz
[  380.456616][   T24] usb 3-1: config 0 descriptor??
[  380.474834][T13500] batman_adv: batadv0: Interface activated: batadv_slave_0
[  380.514220][   T24] quatech2 3-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  380.537226][T13500] batman_adv: batadv0: Interface activated: batadv_slave_1
[  380.701671][   T24] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  380.729274][ T3977] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  380.738364][ T3977] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  380.750211][ T3977] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  380.763495][   T24] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  380.771065][ T3977] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  380.921327][ T3977] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  380.936873][ T3977] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  380.958444][ T6355] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  380.966630][ T6355] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  381.029648][   T30] audit: type=1400 audit(1755780324.833:754): avc:  denied  { getopt } for  pid=13636 comm="syz.0.2348" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  381.152844][    C1] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -71
[  381.152925][ T5922] usb 3-1: USB disconnect, device number 46
[  381.195114][ T5922] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  381.469756][T13645] Invalid ELF header magic: != ELF
[  381.492951][   T30] audit: type=1400 audit(1755780325.273:755): avc:  denied  { module_load } for  pid=13631 comm="syz.5.2381" path="/sys/kernel/notes" dev="sysfs" ino=1406 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[  381.558544][ T5922] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  381.571792][ T5922] quatech2 3-1:0.51: device disconnected
[  382.271538][   T51] Bluetooth: hci6: command tx timeout
[  382.385921][T13669] FAULT_INJECTION: forcing a failure.
[  382.385921][T13669] name failslab, interval 1, probability 0, space 0, times 0
[  382.398614][T13669] CPU: 0 UID: 0 PID: 13669 Comm: syz.5.2392 Not tainted syzkaller #0 PREEMPT(full) 
[  382.398629][T13669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  382.398636][T13669] Call Trace:
[  382.398640][T13669]  <TASK>
[  382.398644][T13669]  dump_stack_lvl+0x16c/0x1f0
[  382.398660][T13669]  should_fail_ex+0x512/0x640
[  382.398674][T13669]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  382.398691][T13669]  should_failslab+0xc2/0x120
[  382.398705][T13669]  __kmalloc_noprof+0xd2/0x510
[  382.398717][T13669]  tomoyo_realpath_from_path+0xc2/0x6e0
[  382.398734][T13669]  ? tomoyo_profile+0x47/0x60
[  382.398744][T13669]  tomoyo_path_number_perm+0x245/0x580
[  382.398758][T13669]  ? tomoyo_path_number_perm+0x237/0x580
[  382.398772][T13669]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  382.398788][T13669]  ? preempt_count_add+0x76/0x150
[  382.398803][T13669]  ? rcu_is_watching+0x12/0xc0
[  382.398817][T13669]  ? __fget_files+0x204/0x3c0
[  382.398829][T13669]  ? hook_file_ioctl_common+0x145/0x410
[  382.398840][T13669]  ? lock_release+0x201/0x2f0
[  382.398858][T13669]  ? __fget_files+0x20e/0x3c0
[  382.398871][T13669]  security_file_ioctl+0x9b/0x240
[  382.398888][T13669]  __x64_sys_ioctl+0xb7/0x210
[  382.398905][T13669]  do_syscall_64+0xcd/0x4c0
[  382.398917][T13669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.398929][T13669] RIP: 0033:0x7fe0a578ebe9
[  382.398938][T13669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  382.398949][T13669] RSP: 002b:00007fe0a66e0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  382.398960][T13669] RAX: ffffffffffffffda RBX: 00007fe0a59b5fa0 RCX: 00007fe0a578ebe9
[  382.398968][T13669] RDX: 00002000000001c0 RSI: 00000000c0405602 RDI: 0000000000000003
[  382.398974][T13669] RBP: 00007fe0a66e0090 R08: 0000000000000000 R09: 0000000000000000
[  382.398981][T13669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  382.398987][T13669] R13: 00007fe0a59b6038 R14: 00007fe0a59b5fa0 R15: 00007ffce1a27858
[  382.398997][T13669]  </TASK>
[  382.399002][T13669] ERROR: Out of memory at tomoyo_realpath_from_path.
[  382.495406][   T24] usb 3-1: new high-speed USB device number 47 using dummy_hcd
[  382.799953][T13675] netlink: 14 bytes leftover after parsing attributes in process `syz.5.2395'.
[  383.062528][   T24] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  383.072726][   T24] usb 3-1: config 4 has 0 interfaces, different from the descriptor's value: 1
[  383.084045][   T24] usb 3-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[  383.094437][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  383.098595][T13680] netlink: 'syz.3.2397': attribute type 1 has an invalid length.
[  383.124487][T13680] 8021q: adding VLAN 0 to HW filter on device bond3
[  383.460815][T13704] netlink: 14 bytes leftover after parsing attributes in process `syz.4.2406'.
[  383.891305][   T24] usb 5-1: new high-speed USB device number 55 using dummy_hcd
[  384.012861][T13732] netlink: 'syz.5.2411': attribute type 1 has an invalid length.
[  384.042317][T13732] 8021q: adding VLAN 0 to HW filter on device bond4
[  384.062252][   T24] usb 5-1: Using ep0 maxpacket: 32
[  384.075460][   T24] usb 5-1: config 0 has an invalid interface number: 51 but max is 0
[  384.095525][   T24] usb 5-1: config 0 has no interface number 0
[  384.204640][   T24] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  384.216301][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  384.238534][   T24] usb 5-1: Product: syz
[  384.250530][   T24] usb 5-1: Manufacturer: syz
[  384.259669][   T24] usb 5-1: SerialNumber: syz
[  384.309956][   T24] usb 5-1: config 0 descriptor??
[  384.355964][   T51] Bluetooth: hci6: command tx timeout
[  384.394651][   T24] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  384.557523][T13746] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  384.600646][   T24] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  384.629646][   T24] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  385.248523][ T5922] usb 3-1: USB disconnect, device number 47
[  385.259851][ T3091] hid-generic 0000:3000000:0000.0032: unknown main item tag 0x4
[  385.375181][    C1] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71
[  385.375698][ T7600] usb 5-1: USB disconnect, device number 55
[  385.395064][ T3091] hid-generic 0000:3000000:0000.0032: unknown main item tag 0x2
[  385.403441][ T3091] hid-generic 0000:3000000:0000.0032: unknown main item tag 0x3
[  385.412033][ T3091] hid-generic 0000:3000000:0000.0032: unknown main item tag 0x0
[  385.419862][ T3091] hid-generic 0000:3000000:0000.0032: unknown main item tag 0x0
[  385.430820][ T3091] hid-generic 0000:3000000:0000.0032: unknown main item tag 0x0
[  385.431185][ T7600] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  385.442679][ T3091] hid-generic 0000:3000000:0000.0032: unknown main item tag 0x0
[  386.092326][ T3091] hid-generic 0000:3000000:0000.0032: unknown main item tag 0x0
[  386.100177][ T7600] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  386.112432][ T3091] hid-generic 0000:3000000:0000.0032: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  386.135151][T13779] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2420'.
[  386.155560][T13778] fido_id[13778]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  386.229657][ T7600] quatech2 5-1:0.51: device disconnected
[  386.361087][T13788] blktrace: Concurrent blktraces are not allowed on sg0
[  387.215676][   T51] Bluetooth: hci4: unexpected event 0x09 length: 6 > 3
[  387.678884][ T5922] usb 6-1: new full-speed USB device number 33 using dummy_hcd
[  387.740345][   T51] Bluetooth: hci1: unexpected event 0x09 length: 6 > 3
[  387.844608][ T5922] usb 6-1: config 0 has an invalid interface number: 69 but max is 0
[  388.049051][ T5922] usb 6-1: config 0 has no interface number 0
[  388.066527][ T5922] usb 6-1: config 0 interface 69 altsetting 0 endpoint 0x8 has invalid maxpacket 1023, setting to 64
[  388.081740][ T5922] usb 6-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  388.095392][ T5922] usb 6-1: config 0 interface 69 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  388.096340][T13860] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2435'.
[  388.107415][ T5922] usb 6-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca
[  388.125499][ T5922] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  388.133783][ T5922] usb 6-1: Product: syz
[  388.138123][ T5922] usb 6-1: Manufacturer: syz
[  388.158280][ T5922] usb 6-1: SerialNumber: syz
[  388.168538][T13863] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2436'.
[  388.177602][   T24] usb 5-1: new full-speed USB device number 56 using dummy_hcd
[  388.188343][T13863] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2436'.
[  388.208588][ T5922] usb 6-1: config 0 descriptor??
[  388.242978][T13839] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  388.267796][ T5922] cyberjack 6-1:0.69: Reiner SCT Cyberjack USB card reader converter detected
[  388.304544][T13868] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2438'.
[  388.311796][ T5922] cyberjack ttyUSB0: usb_submit_urb(read int) failed
[  388.363691][   T24] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  388.369549][ T5922] usb 6-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0
[  388.374011][   T24] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  388.420910][   T24] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  388.450386][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  388.525205][   T30] audit: type=1400 audit(1755780332.323:756): avc:  denied  { ioctl } for  pid=13873 comm="syz.0.2441" path="socket:[40531]" dev="sockfs" ino=40531 ioctlcmd=0x890c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  388.563360][T13098] usb 6-1: USB disconnect, device number 33
[  388.579432][T13098] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0
[  388.600069][T13098] cyberjack 6-1:0.69: device disconnected
[  388.707513][T13855] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  388.716091][T13855] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  388.729639][   T24] usb 5-1: GET_CAPABILITIES returned 0
[  388.737498][   T24] usbtmc 5-1:16.0: can't read capabilities
[  388.901307][ T5922] usb 4-1: new high-speed USB device number 62 using dummy_hcd
[  388.948189][T13855] lo speed is unknown, defaulting to 1000
[  388.983951][T13855] wg1 speed is unknown, defaulting to 1000
[  389.010126][T13098] usb 5-1: USB disconnect, device number 56
[  389.061626][ T5922] usb 4-1: Using ep0 maxpacket: 8
[  389.070916][ T5922] usb 4-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4
[  389.099336][ T5922] usb 4-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[  389.161186][ T5922] usb 4-1: Product: syz
[  389.167831][ T5922] usb 4-1: Manufacturer: syz
[  389.176274][ T5922] usb 4-1: SerialNumber: syz
[  389.188247][ T5922] usb 4-1: config 0 descriptor??
[  389.194318][T13884] syzkaller1: entered promiscuous mode
[  389.199796][T13884] syzkaller1: entered allmulticast mode
[  389.203256][ T5922] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd
[  389.660265][T13894] FAULT_INJECTION: forcing a failure.
[  389.660265][T13894] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  389.673465][T13894] CPU: 1 UID: 0 PID: 13894 Comm: syz.5.2448 Not tainted syzkaller #0 PREEMPT(full) 
[  389.673490][T13894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  389.673499][T13894] Call Trace:
[  389.673505][T13894]  <TASK>
[  389.673512][T13894]  dump_stack_lvl+0x16c/0x1f0
[  389.673535][T13894]  should_fail_ex+0x512/0x640
[  389.673555][T13894]  _copy_to_user+0x32/0xd0
[  389.673578][T13894]  simple_read_from_buffer+0xcb/0x170
[  389.673596][T13894]  proc_fail_nth_read+0x197/0x240
[  389.673616][T13894]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  389.673635][T13894]  ? security_file_permission+0x71/0x210
[  389.673660][T13894]  ? rw_verify_area+0xcf/0x6c0
[  389.673687][T13894]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  389.673705][T13894]  vfs_read+0x1e1/0xcf0
[  389.673722][T13894]  ? __pfx___mutex_lock+0x10/0x10
[  389.673741][T13894]  ? __pfx_vfs_read+0x10/0x10
[  389.673756][T13894]  ? __fget_files+0x204/0x3c0
[  389.673772][T13894]  ? rcu_is_watching+0x12/0xc0
[  389.673794][T13894]  ? __fget_files+0x20e/0x3c0
[  389.673814][T13894]  ksys_read+0x12a/0x250
[  389.673829][T13894]  ? __pfx_ksys_read+0x10/0x10
[  389.673847][T13894]  do_syscall_64+0xcd/0x4c0
[  389.673865][T13894]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.673882][T13894] RIP: 0033:0x7fe0a578d5fc
[  389.673895][T13894] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  389.673910][T13894] RSP: 002b:00007fe0a66e0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  389.673927][T13894] RAX: ffffffffffffffda RBX: 00007fe0a59b5fa0 RCX: 00007fe0a578d5fc
[  389.673937][T13894] RDX: 000000000000000f RSI: 00007fe0a66e00a0 RDI: 0000000000000009
[  389.673947][T13894] RBP: 00007fe0a66e0090 R08: 0000000000000000 R09: 0000000000000000
[  389.673957][T13894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  389.673966][T13894] R13: 00007fe0a59b6038 R14: 00007fe0a59b5fa0 R15: 00007ffce1a27858
[  389.673982][T13894]  </TASK>
[  389.874507][ T5922] gspca_zc3xx: reg_w_i err -110
[  389.879472][ T5922] gspca_zc3xx 4-1:0.0: probe with driver gspca_zc3xx failed with error -110
[  390.421372][T13098] usb 3-1: new high-speed USB device number 48 using dummy_hcd
[  390.571353][T13098] usb 3-1: Using ep0 maxpacket: 32
[  390.577725][T13098] usb 3-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  390.588503][T13098] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  390.598402][   T30] audit: type=1400 audit(1755780334.413:757): avc:  denied  { mounton } for  pid=13920 comm="syz.5.2458" path="/197/file0" dev="tmpfs" ino=1052 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  390.623180][T13098] usb 3-1: config 0 descriptor??
[  390.633240][T13098] gspca_main: nw80x-2.14.0 probing 055f:d001
[  390.952582][T13098] gspca_nw80x: reg_w err -71
[  390.957231][T13098] nw80x 3-1:0.0: probe with driver nw80x failed with error -71
[  390.988939][T13098] usb 3-1: USB disconnect, device number 48
[  391.693423][   T10] usb 4-1: USB disconnect, device number 62
[  392.057453][T13964] loop6: detected capacity change from 0 to 7
[  392.073142][T13958] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2469'.
[  392.101441][T13964] Dev loop6: unable to read RDB block 7
[  392.119135][T13964]  loop6: AHDI p1 p2
[  392.141683][T13964] loop6: partition table partially beyond EOD, truncated
[  392.149105][T13964] loop6: p1 start 926365495 is beyond EOD, truncated
[  392.245627][ T6100] udevd[6100]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[  392.933881][T13989] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2478'.
[  392.943097][T13989] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2478'.
[  392.980141][   T36] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  392.980240][T13989] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2478'.
[  393.003471][T13989] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2478'.
[  393.027805][   T36] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  393.294853][   T36] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  393.307362][   T36] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  393.721442][T13098] usb 3-1: new low-speed USB device number 49 using dummy_hcd
[  393.852171][T13098] usb 3-1: device descriptor read/64, error -71
[  393.870559][T14009] netlink: 'syz.4.2484': attribute type 1 has an invalid length.
[  393.888315][T14009] 8021q: adding VLAN 0 to HW filter on device bond5
[  393.899271][T14009] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2484'.
[  394.412949][T13098] usb 3-1: new low-speed USB device number 50 using dummy_hcd
[  394.561422][T13098] usb 3-1: device descriptor read/64, error -71
[  394.681485][T13098] usb usb3-port1: attempt power cycle
[  394.771321][   T24] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[  394.932227][   T24] usb 6-1: Using ep0 maxpacket: 16
[  394.946663][   T24] usb 6-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90
[  394.961510][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  395.017377][   T24] usb 6-1: Product: syz
[  395.025016][   T24] usb 6-1: Manufacturer: syz
[  395.032509][   T24] usb 6-1: SerialNumber: syz
[  395.046047][   T24] usb 6-1: config 0 descriptor??
[  395.052760][T13098] usb 3-1: new low-speed USB device number 51 using dummy_hcd
[  395.061689][   T24] ums-onetouch 6-1:0.0: USB Mass Storage device detected
[  395.139846][T13098] usb 3-1: device descriptor read/8, error -71
[  395.264575][   T24] usb 6-1: USB disconnect, device number 34
[  395.372581][   T30] audit: type=1400 audit(1755780339.163:758): avc:  denied  { connect } for  pid=14043 comm="syz.3.2495" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  395.401915][T13098] usb 3-1: new low-speed USB device number 52 using dummy_hcd
[  395.432226][T13098] usb 3-1: device descriptor read/8, error -71
[  395.541519][T13098] usb usb3-port1: unable to enumerate USB device
[  396.013343][T14055] netlink: 'syz.4.2499': attribute type 1 has an invalid length.
[  396.026846][T14055] 8021q: adding VLAN 0 to HW filter on device bond6
[  396.037094][T14055] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2499'.
[  396.141440][T13098] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[  396.301392][T13098] usb 6-1: Using ep0 maxpacket: 32
[  396.309258][T13098] usb 6-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  396.321018][T13098] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  396.423112][T13098] usb 6-1: config 0 descriptor??
[  396.447431][T13098] gspca_main: nw80x-2.14.0 probing 055f:d001
[  397.114875][T13098] gspca_nw80x: reg_w err -71
[  397.120731][T13098] nw80x 6-1:0.0: probe with driver nw80x failed with error -71
[  397.137616][T13098] usb 6-1: USB disconnect, device number 35
[  397.184995][T14078] lo speed is unknown, defaulting to 1000
[  397.547909][T14078] wg1 speed is unknown, defaulting to 1000
[  397.622956][T14088] SELinux: failed to load policy
[  398.001335][T13098] usb 4-1: new high-speed USB device number 63 using dummy_hcd
[  398.055689][   T31] INFO: task syz.1.1251:9877 blocked for more than 143 seconds.
[  398.071320][   T31]       Not tainted syzkaller #0
[  398.097842][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  398.131054][   T31] task:syz.1.1251      state:D stack:26440 pid:9877  tgid:9875  ppid:5844   task_flags:0x400140 flags:0x00004004
[  398.143889][   T31] Call Trace:
[  398.147395][   T31]  <TASK>
[  398.150642][   T31]  __schedule+0x1190/0x5de0
[  398.181332][T13098] usb 4-1: Using ep0 maxpacket: 16
[  398.186487][   T31]  ? trace_sched_exit_tp+0xd1/0x120
[  398.195061][   T31]  ? __pfx___schedule+0x10/0x10
[  398.200042][T13098] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  398.210956][T13098] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  398.221059][T13098] usb 4-1: New USB device found, idVendor=0458, idProduct=5012, bcdDevice= 0.00
[  398.230171][   T31]  ? inode_to_bdi+0x9e/0x160
[  398.234794][   T31]  ? filemap_fdatawrite_wbc+0x81/0x160
[  398.240246][T13098] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  398.248430][   T31]  ? schedule+0x2d7/0x3a0
[  398.253142][   T31]  ? rcu_is_watching+0x12/0xc0
[  398.258210][   T31]  ? lock_release+0x201/0x2f0
[  398.263304][T13098] usb 4-1: config 0 descriptor??
[  398.276056][   T31]  ? sync_bdevs+0xfd/0x360
[  398.282983][   T31]  schedule+0xe7/0x3a0
[  398.287121][   T31]  schedule_preempt_disabled+0x13/0x30
[  398.292607][   T31]  __mutex_lock+0x81b/0x1060
[  398.297861][   T31]  ? sync_bdevs+0x1a9/0x360
[  398.304484][   T31]  ? rcu_is_watching+0x12/0xc0
[  398.309355][   T31]  ? sync_bdevs+0xfd/0x360
[  398.313855][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  398.319408][   T31]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  398.326232][   T31]  ? _atomic_dec_and_lock+0xa2/0x120
[  398.345318][   T31]  ? iput+0xd3/0x880
[  398.349328][   T31]  ? sync_bdevs+0xfd/0x360
[  398.354804][   T31]  sync_bdevs+0xfd/0x360
[  398.359200][   T31]  ksys_sync+0xb2/0x150
[  398.364804][   T31]  ? __pfx_ksys_sync+0x10/0x10
[  398.369642][   T31]  ? rcu_is_watching+0x12/0xc0
[  398.374477][   T31]  __do_sys_sync+0xe/0x20
[  398.378871][   T31]  do_syscall_64+0xcd/0x4c0
[  398.384825][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  398.390785][   T31] RIP: 0033:0x7f966f38ebe9
[  398.467743][   T31] RSP: 002b:00007f9670165038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a2
[  398.510715][   T31] RAX: ffffffffffffffda RBX: 00007f966f5b5fa0 RCX: 00007f966f38ebe9
[  398.551125][   T31] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  398.566258][   T31] RBP: 00007f966f5b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  398.574486][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  398.582614][   T31] R13: 00007f966f5b6038 R14: 00007f966f5b5fa0 R15: 00007ffcac9877f8
[  398.641482][   T31]  </TASK>
[  398.645647][   T31] INFO: task syz.1.1251:9883 blocked for more than 143 seconds.
[  398.656046][   T31]       Not tainted syzkaller #0
[  398.662880][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  398.673613][   T31] task:syz.1.1251      state:D stack:29096 pid:9883  tgid:9875  ppid:5844   task_flags:0x400140 flags:0x00004004
[  398.708316][   T31] Call Trace:
[  398.713701][   T31]  <TASK>
[  398.717760][   T31]  __schedule+0x1190/0x5de0
[  398.723373][   T31]  ? __flush_work+0x7f1/0xcc0
[  398.730925][   T31]  ? __pfx___schedule+0x10/0x10
[  398.736486][   T31]  ? inode_to_bdi+0x9e/0x160
[  398.741728][   T31]  ? filemap_fdatawrite_wbc+0x81/0x160
[  398.750970][   T31]  ? schedule+0x2d7/0x3a0
[  398.755945][   T31]  ? rcu_is_watching+0x12/0xc0
[  398.764853][T13098] input: HID 0458:5012 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:0458:5012.0033/input/input26
[  398.781135][   T31]  ? lock_release+0x201/0x2f0
[  398.798391][   T31]  ? sync_bdevs+0xfd/0x360
[  398.820275][   T31]  schedule+0xe7/0x3a0
[  398.832550][   T31]  schedule_preempt_disabled+0x13/0x30
[  398.838853][   T31]  __mutex_lock+0x81b/0x1060
[  398.845210][   T31]  ? sync_bdevs+0x1a9/0x360
[  398.850857][   T31]  ? rcu_is_watching+0x12/0xc0
[  398.858158][   T31]  ? sync_bdevs+0xfd/0x360
[  398.864722][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  398.870870][T13098] input: HID 0458:5012 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:0458:5012.0033/input/input27
[  398.895425][   T31]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  398.902647][   T31]  ? _atomic_dec_and_lock+0xa2/0x120
[  398.916493][T13098] kye 0003:0458:5012.0033: input,hiddev0,hidraw0: USB HID v0.09 Device [HID 0458:5012] on usb-dummy_hcd.3-1/input0
[  398.935778][   T31]  ? iput+0xd3/0x880
[  398.939783][   T31]  ? sync_bdevs+0xfd/0x360
[  398.951055][   T31]  sync_bdevs+0xfd/0x360
[  398.955416][   T31]  ksys_sync+0xb2/0x150
[  398.959714][   T31]  ? __pfx_ksys_sync+0x10/0x10
[  399.022702][T14099] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2508'.
[  399.084531][   T31]  ? __pfx_ksys_write+0x10/0x10
[  399.089614][   T31]  ? rcu_is_watching+0x12/0xc0
[  399.094720][   T31]  __do_sys_sync+0xe/0x20
[  399.099083][   T31]  do_syscall_64+0xcd/0x4c0
[  399.105408][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  399.111714][   T31] RIP: 0033:0x7f966f38ebe9
[  399.116162][   T31] RSP: 002b:00007f967011f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a2
[  399.124687][   T31] RAX: ffffffffffffffda RBX: 00007f966f5b6090 RCX: 00007f966f38ebe9
[  399.132748][   T31] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  399.140718][   T31] RBP: 00007f966f5b6090 R08: 0000000000000000 R09: 0000000000000000
[  399.148761][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  399.156903][   T31] R13: 00007f966f5b6128 R14: 00007f966f5b6090 R15: 00007ffcac9877f8
[  399.164974][   T31]  </TASK>
[  399.168034][   T31] INFO: lockdep is turned off.
[  399.172980][   T31] NMI backtrace for cpu 1
[  399.172996][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  399.173015][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  399.173025][   T31] Call Trace:
[  399.173031][   T31]  <TASK>
[  399.173036][   T31]  dump_stack_lvl+0x116/0x1f0
[  399.173059][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  399.173085][   T31]  ? watchdog+0xd17/0x1260
[  399.173105][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  399.173131][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  399.173155][   T31]  watchdog+0xf0e/0x1260
[  399.173174][   T31]  ? __pfx_watchdog+0x10/0x10
[  399.173192][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  399.173209][   T31]  ? __kthread_parkme+0x19e/0x250
[  399.173233][   T31]  ? __pfx_watchdog+0x10/0x10
[  399.173250][   T31]  kthread+0x3c2/0x780
[  399.173267][   T31]  ? __pfx_kthread+0x10/0x10
[  399.173283][   T31]  ? rcu_is_watching+0x12/0xc0
[  399.173304][   T31]  ? __pfx_kthread+0x10/0x10
[  399.173320][   T31]  ret_from_fork+0x5d7/0x6f0
[  399.173337][   T31]  ? __pfx_kthread+0x10/0x10
[  399.173354][   T31]  ret_from_fork_asm+0x1a/0x30
[  399.173379][   T31]  </TASK>
[  399.173403][   T31] Sending NMI from CPU 1 to CPUs 0:
[  399.293411][    C0] NMI backtrace for cpu 0
[  399.293425][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0 PREEMPT(full) 
[  399.293441][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  399.293449][    C0] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  399.293466][    C0] Code: 5c 62 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d d3 72 16 00 fb f4 <e9> 4c 09 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  399.293478][    C0] RSP: 0018:ffffffff8e207e08 EFLAGS: 000002c2
[  399.293490][    C0] RAX: 0000000001a7b8f4 RBX: 0000000000000000 RCX: ffffffff8b939c29
[  399.293499][    C0] RDX: ffffed1017086656 RSI: ffffffff8c162880 RDI: ffffffff81913321
[  399.293507][    C0] RBP: fffffbfff1c52ef8 R08: 0000000000000000 R09: ffffed1017086655
[  399.293516][    C0] R10: ffff8880b84332ab R11: 0000000000000001 R12: 0000000000000000
[  399.293526][    C0] R13: ffffffff8e2977c0 R14: ffffffff90ab4090 R15: 0000000000000000
[  399.293534][    C0] FS:  0000000000000000(0000) GS:ffff8881246bc000(0000) knlGS:0000000000000000
[  399.293548][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  399.293557][    C0] CR2: 0000560d4d122c10 CR3: 00000000485bc000 CR4: 00000000003526f0
[  399.293581][    C0] Call Trace:
[  399.293586][    C0]  <TASK>
[  399.293591][    C0]  default_idle+0x13/0x20
[  399.293605][    C0]  default_idle_call+0x6d/0xb0
[  399.293619][    C0]  do_idle+0x391/0x510
[  399.293636][    C0]  ? __pfx_do_idle+0x10/0x10
[  399.293651][    C0]  ? trace_sched_exit_tp+0x2f/0x120
[  399.293668][    C0]  cpu_startup_entry+0x4f/0x60
[  399.293683][    C0]  rest_init+0x16b/0x2b0
[  399.293698][    C0]  ? acpi_subsystem_init+0x133/0x180
[  399.293717][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  399.293730][    C0]  start_kernel+0x3ee/0x4d0
[  399.293749][    C0]  x86_64_start_reservations+0x18/0x30
[  399.293768][    C0]  x86_64_start_kernel+0x130/0x190
[  399.293787][    C0]  common_startup_64+0x13e/0x148
[  399.293807][    C0]  </TASK>
[  399.294848][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  399.490696][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  399.499783][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  399.509822][   T31] Call Trace:
[  399.513077][   T31]  <TASK>
[  399.515985][   T31]  dump_stack_lvl+0x3d/0x1f0
[  399.520571][   T31]  vpanic+0x6e8/0x7a0
[  399.524537][   T31]  ? __pfx_vpanic+0x10/0x10
[  399.529026][   T31]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  399.534986][   T31]  panic+0xca/0xd0
[  399.538692][   T31]  ? __pfx_panic+0x10/0x10
[  399.543092][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  399.548454][   T31]  ? nmi_trigger_cpumask_backtrace+0x1b1/0x300
[  399.554593][   T31]  ? watchdog+0xd78/0x1260
[  399.558988][   T31]  ? watchdog+0xd6b/0x1260
[  399.563384][   T31]  watchdog+0xd89/0x1260
[  399.567607][   T31]  ? __pfx_watchdog+0x10/0x10
[  399.572262][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  399.577437][   T31]  ? __kthread_parkme+0x19e/0x250
[  399.582446][   T31]  ? __pfx_watchdog+0x10/0x10
[  399.587101][   T31]  kthread+0x3c2/0x780
[  399.591145][   T31]  ? __pfx_kthread+0x10/0x10
[  399.595713][   T31]  ? rcu_is_watching+0x12/0xc0
[  399.600460][   T31]  ? __pfx_kthread+0x10/0x10
[  399.605026][   T31]  ret_from_fork+0x5d7/0x6f0
[  399.609594][   T31]  ? __pfx_kthread+0x10/0x10
[  399.614161][   T31]  ret_from_fork_asm+0x1a/0x30
[  399.618910][   T31]  </TASK>
[  399.622092][   T31] Kernel Offset: disabled
[  399.626402][   T31] Rebooting in 86400 seconds..