last executing test programs:

11.968153367s ago: executing program 2 (id=3189):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_TTY_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x10, 0x3f8, 0x1, 0x70bd26, 0x25dfdbfc, "", ["", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x8085}, 0xc894)

11.432150849s ago: executing program 2 (id=3193):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x42001, 0x0)
r1 = epoll_create1(0x80000)
unshare(0x24020400)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000240)={0x60000000})

11.084071808s ago: executing program 2 (id=3197):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb002}, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x44}}, 0x10)
sendmmsg$inet(r1, &(0x7f0000000e80)=[{{&(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10, 0x0}}], 0x1, 0xc044)
write$binfmt_misc(r1, 0x0, 0x0)

11.038503805s ago: executing program 2 (id=3198):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000300)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
r3 = socket$packet(0x11, 0x3, 0x300)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
bind$packet(r3, &(0x7f0000000000)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14)
preadv(r2, &(0x7f0000000000)=[{&(0x7f0000000340)=""/187, 0xbb}], 0x1, 0x33, 0x200)

3.531980215s ago: executing program 0 (id=3254):
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000008280)="03680f2a20da68ab7a58c28b635d19c32b6efabb6ae3b5eee5a74d8943c613539e166c8baef50500824343a2f05093a5c21f746caefe9f9bccd83cca0fc28da20e2706308c61398dfce5f54ea9f266791ba29a4c7da158637def8b816aa296815ff13c06d632df45feaec1fd272ec1b510eaf58fe6b26cc36df3ecc0f5b1f258a190304e2519dd39ba9f5bc1788926ced5202e3b1e3afa16ae0b5d66dc05b36d3a00f72e5f318f8bdfc7eddc94238c50031d0657a22445ad0b3b90a86b086eed837a00bf0a3888bf61b4db57d6d8d6b286bbb13ba3b246def60ac34241eb843f89fe77d7e3e52573e90d791f21d4a8dfcc24ba95db60e2135634c02bd4b14535285df4fbe381ec036d876c4c8057c79371fa9717414590890e182a7b9e0ab927812083acf0d04e04c20c0555c8ceedc5bcf9b0e814be6eca98ce7b2f9f17d098bea541b75a1617c09fa99902ad746811f89a1fc5e6a80d77528247d6c104395715d2c9f9102f070a295f20c4307b9e848d3928b50985bfa2486893139761925b8fab96d26291243db23c4fd4d96864f4db860731a4e3e10b52d8d0487f5a8536cb4507dbdc111570ad0321b918edbc52807c2e0676d3257553702d9c1bd6741e9cd5cdeb3b8f636b6eb02a3b0066d7f677d586de5018850000f000ab3960f6656fb98039ceb6400d0299c356fc22b7298ed157c667bed5563fac2192a8ff7706a9e58d9d2f92632d6b25d8b090642e3f323bf7ff4d8264617a43a97099dd7347fbe3b1c439737913f17eff57f3e1ff4fdac374fb554e9a6a1ff32daa69507698d660d8d5f591801d8e4a9309342c3dc84966dbfcd2652800200bcb0dde9d456b7a07c5409f4f5387d0150daa34dbc865c6108d34dcc51eedb277e9638b43ce3c9afac5d7aa0f8542e58b0a84632a07557b041845d0012cf016ef065f97660b731ce1b79493de71def047277a3ae6d4a0d86591847d3475926039848c5baf6e1b43bc83053855182423156e54cadc8c85089265b49da853d15e5a701fedf2bf7986a723abf72e513fa05cb178345f2fcc859df49e74c8ccef196000a05cb090f22986ffb6f8f74ab41d2d88b6b535507a23b03d2fc2743f6f69fbcd43b8ff52b1ba32fa0137d542c515569b7f486f8ffa02ad1f54767f51701eb4c141437720884d529a57e17bc2837799124f7f112f42bd90f5b435d7a5d7524f7667bb7a6266263e62bf7ebf6896888d584c65a530b766111f078630d8629ffa91acb5ed02498549bd7e042acae0fab7ccb23278088a364be3da9619d91e1061bbaa9b33c3c5fbbcbc725ce8c2cc9ab0f2b4d30078040d3ca79d3ca056c360381ee87e743dea73a25ea2b4843f9ef280feb507f933fb556c718d8bf8f8618db72805b65d381b319f65c745c1e5060dae2f498852e79aff8dd9c88fd939a31871a430d3ba96fb118c79d1b08a397af23b1a188d1802106f588c768a1e6c9d244ac9a38d2a54ed50f19b78bf25e0ae1f9337ceaa8ff5ca8640104b19bcd643b51501d4e03ed5ffb383e7ed0ab78d540ae10bbd64fba1af59a4190215b7d10230992bbb4ff618d8284a2e2446990511fc2bff07cce9ba94a11d3db041e220e3d931fdf129d8ec2c9b17d6587a0044c9e09f52848db43ddc0df94513cc9e94e9d427623502a910deea0f21d86b16366769a46bf0d6d9fc0d2cd6b98ed885e9e2d765bdd051196bf20bd27c46ec902726d96de352c346d904fa00d63b67d272f116dce489f9d636cef61b441b9c113addec983b8b2fbdb2b32049e436c972b2fcf5140dc7b094c5047cb6226da700b72aeb3febdf16a75b6f61a311f606251c99b377c775c8fb3446ccf25dc4cca24290b3939f948019b05c80b5a6382112f63e0990b324c16a087c72aaec08796afc769f678e3634100a5a9da8215cb5d7a6a6b50a81676ef4edca35595b11f9606bef2fb84fe1f0a0703c886579f09986086f0dca6eb8061f9a74c79c1f758684a7363974b14561b9d2efdaba6c4cd8cb70627da1e195fcae3d8b2fa751278e8f220c83e677e14731eccd6fe0c357b011ed88b6df0c266b383f224b8e95384e401b717030b1227582d0d1042bd90377c4f2c7206a19983fc5905e4eb87edb6532b26ca9e28e160202606d19d9f5da34762f4b3fa842d7bff382ad70dcbc411f8b3e4cace8c8e0c72898d24023545e0dfdc4176209276a535491ce11c045c57b45c40f19b12dcf6ffbf78ab23e7fe9bdc404cf47db9855f2b835e1fce57debfa071803ec38da3c77a904080a4c737ce2b20e14e8449762f1ca0b1ce71779d2e6ee5299e1cf230e8070045c23c1d0e52f66fe9039f95cdc0b448dc12d24de39157934270345991948fce921b5d8e739315cc75d4b3b49928437b88672c1a7770365207b43895f45909d5d972f48aa66de609152a5afa2c7d75f0a14189d0409f0b623eab3b6e7d81025cde140893ed71b6f24f5a36d21dafb62af6be9da845403bc8ed36672efa74d7da19d5794cb4b79fa1c86940b1890c012e14b7c3bb261f16bdd99efaa9819b0bc00af842a6b94c6086d15b16ab81af9331ba3a5bd6941ef35239e85455ceab02c598ccee8fbad97ed37daebfe3b26a5a6c9eda5f65a1cfaf7a1f1688267c812a56c552ae11b465dac030e18f9008ad03cad80bf2cb91a7d99dcfa54d323ae0a4c3a6dc0f80d7ff703870610a945eb0ab5b6d14e81869c8872f6b123d98edcf6bba10d76d35cff4b0bb73db8b6695a8351785bcba1e160a42ed367c4da727da38f91562e941e5c4fa90cd585c5f1cd3a7d6892f18a5aa3c74a4fc00bf5909267489b937a928d9d8ff92530b5226eedf8ab9a957e5ffec45bc3a55e6955b38393ce52892655265d1f741e0b744808eb568a08d145a8bc5ada9b079f6d0bec5fc2ace0502b3f926372dff49478fbd10451f0de4b3d1a63b9d4e17ade45628d2e9dca041fcf7fc1e105e1fc44089fde9caf418ba8454dc361df4a59e1bd79143d280613e3c79ad18e922a43e199aa5927bb9553dd31e6223ad19bf8aff6e1dac8b3680feea3138bc61742b03f047b3d77039c1a4c2d05bd89c4bc12a1b83d78b4e7023f690fce6a44608c423d8cbc2e80942b9d9df2f4bf5606640fa47692f3e003885983a73e1dc313b243bbab5c3c6348afab796da766044ba142eda5a9d3713e3eda8c54c1708909c5da89ba67d29cd7f409c9b759cba316c42028754e3cb6eae2cc4f6d66982f212320f199b2e837bb4c54c54bcdcd2ac240ef6295d38e9889b4213819ef0f9aba6ceead4e0fd2c4becdc1f8ee3049831996c9a74a5fd4e12a03d21ed47cf27e29f9d61e4b673d88914c36eefa53d3c49d94b463b7f8462c1951d50ad55009528f1e79fbc2fa70c3338b32c40ae3bb45d7079c7ae8433fb1aa19affbd3fbce0cb5ab0d557afb3be036856066eea45c28e93528b35477fc97fe9ff3641e5bb0f0e46069eb653c027daabff38541250081c77e0e3a1d030a73289e771cc41db10819af60599b5df0ad978fcf0b46af821c6b717b265e07d3a85397ea94de26f510290ddb5df8fcff76fe624843c8577802809c145916afce01d9dfdfa8bf07633e98f14fc73d5ef58ae5cb0c308bc74ca38259692a1cd4cf16752786a1c816f24612c27393d7e40a2df9a3dfa23a0c59613c8a7ccdd97c3fc67ecab94dcd8cc4b4517ed2414d41ce574074ffebd156e3d65c4421b0f339bc9f29abbfe49db62122248cf96b74d9639b3ef9d935cd81315a7ecfb0dc6ea1ee053c2e5c3615fbc10782f16a564fcabe1df70da7de989e00eedc346cef5b5cf880e9d563fc15302f056d37f98a939fd1dd5478b4318c256e93b77e31f87d8f7fe31755191b40d778ddb2ada1480bb9fcb96a09783fcf2c2c9fac2c3a2771dd0e2fb113cd460ee2c9cf4a712f04eb1b1a746091109f7ce0655e1ff7781fbe853e3d03bb91c9d8f4f416f5745c6b607bbf72786bd3c0ac4761e6e6d70f12dbefa1b13542086f793b72c6102ac06e75be17bdbb1efbf7e007f07f9bd433fd9d9cbf93e760757b792f15231895561fe49d9d683ccc066f38af581422b71702627162c0f0f35c36a61eaaa92129114b7334281e35fd39576e51d8593c149c9326e0c710ea4dcc9ef39a432a48ae1834f5046b954f9c033d6035cde0dbffe3e97f48a1dc695f4b2f6fe5d4eee83008318def105c37e11c9015670f13417ed036e68f6fbfca2a8289829677feb23079f3f2ee53b26e491924fefc1c50e54f288a8c4b6ba6d319054c3a9e39e14bba81b423acbd44b51279bbea6b0bb2047325837ce8b2191454f52ffa2cd04abe89e3de5bc102e9fdf740d3efd975bc9503af796e6aeee711ef8797de5d507a964730aa70cb9d3840054d4e1ffc57de378b511f7649666a54a6b3d91ed517198d76322bf99d13bef530a43ed3f13196bf2def6dcfb39f76471c75c5779bedf105717e546057fb478bfd24e8fdf3c12d028b542d1f424a9d45bb9e026e6098eb1cb0a77378300ec1b4c9f006aa68fb7fb5c57cf1b035cbe96009ead1ca25ea1e5fae40312a4e9fe250684a1c8653bb303209e0fc6a498f3a08f6c5b946378a349f3aea45104a2badb8a45f500bb4f0f6cd620ce794e0f390e1cb7f2f1fc0039f4250a577544a6862b47bf89eea3a8c1516b7a9dd111c2ca719190e8feb1a7079e9fdfdb8224dc50791c986825469c087c8f081616edaa4193e161281aa68b7286a364cbb336b2459f0892e57c40afcfda7d16ea1877efb4e4b0d4b5c31e8cba15066903d3a91bdc7fb64452fb9843436110596f0b038da167a86f97d32c807270a1c994fe88e2517e11bdd210dd982d3c8158459440108308a936c9d2370b9d157c3f9caec36ff05bc40b37f095edf33bf4fad440f38c3f52129456936c07014140be5618f4e9d07b66679238023390cd676b1a3a28d0e90d5ad9ef13a31fcdc5a435454309367c437424e340a1f91c6483bce1026d85a16fb854252ea4ede39a4e69702ecff76432de508e064eda0df9f263a25c0f626d1c1ffaa6783be2975451ee936cc2178648935a924f6fb2db2f8ba34e348920d903114520918cc6872b842e3744fc18d1363583a107ec7b89c7792c0d8069e12f873f6d668f6fdeb47b72986914e45c2b061c5c936c73c9bcf1475ea0d25edaad21cf193405c8acef3bff4e4f1b2b321d70dba59e856a8849c2bba9508bad775370669b2bb7f5e53181af8bff525e13a4935d7e28b997b4ff15da9e36f1353a154ab701ad15420786daaf27ba7e122f7b825c668185b685630420378b4142ec4e4242c2cf0bf6e143f7e55cb12fb9dd59a8df9959ce4fc5fff68ae7174977a31ad7fd644bc94a20bae76f0af474034990fdfec8ceca0e6cd93fe21d84837b7e9d74c17b6d3054f0c008ee05764745fd8773a0c1c31bb3eef5b7e261b54805b5c805a4eeef05c812fcdede200442e7340c63490645ebd09c235d5c52a785542526edfe3875ad08267faed1d0a15236f00c6736b94c1a3821302ff610697ad7becdbc96f54b55138b585cd122e0d5aeaf43c9ba373e8aa1c1297e3415552cc57cd60ee1f3c04500ed0eed37775c873de3066c034c176c67c5bfbe9899a47732030855781341374641da058eee61d01d11b9db8f19fd4558957897340e32cdfbc39713f1f439be0638f614cdb5361433a45a6ff024e39c94141dc5403af101404ce5f2efa97b90d9ecdb7c361785dab977feded32554d1a74d5cbfe2435be7f0329ce652455c2ac11fbe29fe3826796d4bea03dc53a37f63f5be2773f83faf282f0ae24d9fe5762b71b499fd37b4ce7e71f93c3a983f80fed477708bbf2261c89893c4b76e34fac9b42671b6cc81678cc867f53e8c3ec47716206212743ca0c4941c2c61ed3177fccf85921e998d2b826df751173944bb07eeaae4001f677a0687a2550eeac8bb5128ecad9c7b6a514596a30b8292fbacc09ab488193507b6785d7a35c979db774b2c413246f1ae88d35d1914b20b8fb501034321642fb0b0baba3378e4c31fb5e247c177e573295df0194462b99079a436400ba1be2e30d39b8714c0fb2bdcd981d5a5cd514f8d4f14e4e0437108630355d8f2b60a6d18cb14ceb2b5d0704aa6e93e180bd79cb17e176bc4f81a03db12a03413de6189896955bb9e3cc69b6f9a50a7eda3742527f98c71d7ea8ba75e253c2b783f7104813c619949e6a0765179b1b9cbe68b703335ab5986928d86384357a2f4189f4b4ffcd61a3d29709bbc93b5371f0e7798cb72ae4c17bcee24f8e566f2777803c3d182d15a63ac40063f0ccdf4bd790404524eae02eafb6b54c699578486490033f0be866c74a134083003d331b98658ba973ea674c4a0ff158403987b4c4752b07c8637a119b019fd5093406960144445056f6ffe73eda0235dc1871bb6058d4a9feecac628265689d58a81453d33290ab56eb691f3180d0288449f41844e56f5c6cf522d4a5866b24fb9552fde71946c4d25dcceaa41cfddb5a33c51c54c0a0a5abd31be8fb6ec53c1d14ba648e183979dbd0db01b9e51ba3803be7e7d3dee752668367264c783f74838121797ae5706ef3aa460682d1bf55808c70e69ae29d7683368470d08e7e9a1095305dce250b5b4bd48c02e098d241b1089736e8306a737e3a1a93e554cc3ab24672b8c74bfb8825004ca869e347f873de14575493836662ad741d79269904f905d7df64d0581ab8d76ee51a32d72ccb719f3a25c0a856b5bd2b2a1269e208d70c32e1d5ad0dfdc0ef43f0230e95eb85871eb4d6033abbf0be7025382d878eeaeea73c94270e79bd5757dc1bac95236a62545cd467830b12dcc30d7cc81e889d360d073db40058e9a1c7b41fc53e67740bc984132a1452cf7d000378f14ef93a7eb0dc9bacf23584ad6761139576607f8214757f71fc47b2944127116ca3e83b9d9643bce8d7bb44b4d16b5d5cff70a9e1114cd920b6fc1f409672648ad56ac3136ef0a314adb458faf3d3f171cb2fc513d76e43e6bda2f1a68e6fcf4a4ecbe6bc87716e2a82ea0c4657983ca0caaf8d75fdf5b0d7930e4f3e95eb1271485f938e7ad2bf0c97b7c11745de45518a1e3a74341968588558e7197b407d24eda0671ee28f219e4c5f809a7ea6f9f5b9705f4634a96112eb262bd5967db5237285b865d3f64516495ea6d1ec20dbed7af02362370bcc98671a61241fa1ef5b3095609d66ecc16010f6f67a280d1c6d215ec224ead17d68bbc9bc64b363b5be9b479b7aa2cbc8587a6b48cf653fde7a262a11ab3a10356f55f122310feac77c32ce0994d6e8a70f1c53331cb473a8e29427322fb6da292c4443b1678877f1c981fa05fbdef96520e5895aeb2a3a8e62652f9d8830c3b144b9598873e2ef41b7ade943807766877d609972cca74855eaedce07cda35b50557de96e736ca3107c154d31aeee78db214687b9964517bcd2c6c9ec047514b45c831aee4588166dc3ec9ab36bd1033e74b3d02d731c5bd84f659fa9fe55cac08c12cb999a2e64fac52f6cb7d1fffbf45d9a1126787d0060fd1be563ccbc278ac97dab0c1bee664675f273f5fa429bdc24b21ff1cf0a3ad3c687fb07ffd88bad6ab6c6b422a43b77ff76f96bf405c07f8a667bb8ff54d6714aaa21ceba2e78ce03146b2ab9f49e6d65081119b8e7cf3843e91349790d2b975c9f9c305df0ab4f2b1b2f30f629313cc66a325e4037f38f29842ee5781ba73d2f30f506cf7ff2237a72b4075aefa32cdd5ba0ae4e65cb6fa47a3e06f0d5f684b7172d6b58f5f7d783c4122db4f4b8b4f9d3296c9d115f432710c29d40dfca0010ecbe2f42fac899911d65c84f08aaa1923c8add5af518286211db14e1187a8839f3b2ae8bd914eafc16a576bbe3eba6271a4c5b3170c3f543761f11f1326a05c575bde1b5c6afd3876bea4fbb649071a95caf74de9f7b3421803ec351f934b8d0932ce72a13abf3627d9a396c10875fc167ef1ae98ff92af9ca366033c99d30306fd540a09d67d26ab192504e7c09f9e4d06287a2b1748f1761ba3c16d9d08be7562b7351c4b4679f5d4b38681bfd86c7f2003a9749b20b602112a95803469f5d252c564912b55c4bf3409298dbd066d877cc70a89b484b9ee6bb836c9acd1e53086c4be85e9a3bc5969c7016db9c72b68620c241409d06f4d7f72fe2289c9b4921055922783b8b886bc22926b7d194820af2b90e3c60e87e1a7851f38a970c07c1da120d1da75de2bb994ff7d05a313522373326f160914a9589711e0439d694f5221afe8cc118722ce4927e9543e61a12a76bcf2da1d01a0f258095d32063387349b4e9f253d8b73c6e834b6866f8a56b4797b92d521fa732aa0d55c8e9d6c56011ee6fb450853dc564d18e97c463609c27a63f9c91c46d7bd80ace4edc0615ca342f43ca3b3d0cc36ed52b7d1f457e5b4b26b5eca0d91abe4f1a42a2eec40ec2faff1222f71dc226d6344e947b45155691205c09913fc3c6ab3fe76f4d1b11fa45869e20694b5f0a1074780a07332764212533b797dd24d8df157d4172f91253b77eb2ec90c8222307ed59136463057b7f469116086410b7503b44cef401c47811c1390060da5b3321d34096b67468a7702978d98d4bd721c18a25ed541249638e90281dc8e3565dc33e66d7b832a9bd62c02c5ed0e92935c92472499653d2d842ea6697c733ee80d775884074b3a0c250a4aa021bb6ea93514f9cc5f09feb5719d270cd184e364ca966f1416e10f111bc425f32a993fc5cd75503f99d89d91d7ddc6dee70193057cb946e5fbf8663c53e12cebffe5dbd4a86bfcf5f35f0d8aa43763a60e00356b4f8bc2bca01b02cfddde38f0c4df1e7f98709fdebc5abb5eb9631bdc3dbfcf15517fabcf16931eb7381e83713b081ad1947274d4896ee8953d772e9e71f363b6f1147317bc739ec128e4ec865f8f0ea34cd5ff19fb2c28931d2c85846735358504ae9161535cd7890e8b95c814cfec116b78e6d0eb5097cd4f35888121452e27391d865c15f0b986925d0d0c623bcbb4d8ca66603720253af17853967ea5954eb5ef0dc43de185ec4925026c680464e66d1caff1f4c7c757bd55ec2515ffe7183e3481ff6f626c2228a3fc3d15f63e4bfbec76a2a170206142cbbcf204a1cbfe0ee56eb47dfb79c80894c0a0fbf8a2955d861678fc2f8f9ad7a28052197b5992bced1273658da5b1f42fca48c80883600c24d8515a0c7113deb4c97df918ab64bca16a0c14f2547dc91d5ce4f884978c95fe54899f77ffc20a2c4b27350bc451bef72a46d8e144ad57a8d5f8ac039f58b8a53ea1f3fd5fce612a171bf82ba17c0681cf46ce5c8181a522ed2e986361903903159643046c7be1787dac6ccab09d18a30997541dc6e9efa260f1ff0392bc1890f19d8bb725f4fe7d8bc618f46e0c23be6b9ca67777dd3f5a89b41ccfb11a526a3bed045a2906f86cc5186a1db7a70391261b694b423e5a44d374f9d3720330e083574083f8950b2b35c8bb5b6c0a7fe259f235dc1c069d4581a9f0a7451890561a0829bb290de6aefe4d243ae0b00ca61a1dc4262bb4951242b21d88148eb7b6a9718d6433274f2b3c9bcdbb6d5df67b48ff42692d8cd7f4b7f41728de68ea1ce0f3e4a2843c5b9ffc43f69b8a0445dce44081f5b443a327084b0d00d07cbdbbfd2da5d67bf8d4bb4ee408d17eeee48b61decd06bd3dac9a1adbeb069b49ec96608b9179bb3af4c10f2ade6778b31fd4c22c2961cb949a64e9a8a4879c550f8d8783064cb304511e40e2e562ba83c08ba8ae011a784ed9db03db5527a7aae222c856c8df0a94f9c4def0f94244c5b8e3db9f39dbd337928e24d9d8562f231fea72116c01089163d2c5f4ca17faab20b73c9957fa1a9af20837a804870034d4e64281125b070d8ee0dbf05f95e5fb079e2a57e9af977222e90b664189114dccbca81ee58b7de90a813768a2049052b339a608d3e9966bdb3b584291fbf7694a7d1dea7f72ca604894e6cca5d326ed5e48c15eff5e6a8cc11c40f84ca920d79a5c55d07001909bf6338921c656a39d59d03f62bb5b8870189f0416ec8c317b03ccdcbbeb3e1a9bf2661813f4966b57eb56a2757de5f7745851b5f7bf75e41eb1646e61a41923c5c0e58c2ea478d95b5c39c450744aea0aad3706fce684cb7338ff3dacab60e8d968f0e6fc070693ae3ca16996b34a50afb7e6e377546ae28dc8de7a2ea3a657b4b0003a91a488e347c61971d62f32eaf843d4d4c4f86cc4033c1244c8408def09188dde509c629323f34072f9089a3846680894e8b000a03865438b2ea212b68fdef7f17583f92014eef2c8115a37c9c82dee06213c1407c1433690f68cdc8e91971104039dfe06774b946f43b68b7957a5ca3ee763eafbb7437850eb0a285c413bcf6965232d593d8da47a2a06abc635ae38e596a9dae55b43f341bcc6fe72d79b453ac1c259da37f64cbc1f1508caf280aa6a3f4cd2ff5564cc5a8727f222431454a5ac93398a29fb95b4e057686cd6fcd920992f74e5870749676a36e043bec5fc1b0fce5563affe9addfaa3689e857383ccd1f2924080449d2cfb006e855570b711c1dedd1df2629afaa3806f4ae229a9a8ef1940ddf2c55dac7812d2374c0684b7ba27b2f0849ee4c055d2b8ccc8e41c593378340d7546bb974bc8032f220b37099e3b04c6591c40d2c50a855a491e03c1c9cbb32c400f6104341262d92daaf3e2c04936cf28788fdff8e0a77770a9deb9089a9e32eb5d9e2581aecd98f83881ca8e7d49e603556dc03a9aa19a8f3a4735aaee347b25ea35b36fa57484c0b6d591979b4a3da894fa0c15966d6a5e02e397cccdb9c314b504372b81ef6913877767001263c05dae362b49e5928ef36f554ce245b4111486417634f1e7f4530a760ae6ffd3123f5736ac12c5bf506c5dca03079c0fd0776cdb56c938cdf480fb9b97b1685dfa3be6f712aae107e2dda726bec137b2ebdf56c0fcaecca4350bd7b5c84d57f29c2a2c99ae10c30cece4831d71ae4ee3362983cc816bb6cb9225b9db08503a1be23a26a0425a8628a2e718feae5df91d829f27966f766b623a0a4958a57642aefae259713733670d5b1d027fb8eb2d0d3a0b4acd482076dfa09ffe883f556b2db2262bc0872e1bd713f100dd7a8a8f2d725b46e09c625d513179872bbcc9a41e596a18b2471d977f4ca2bebd06cdaba31b70ef25e098f214fef16f16f725cad4311eb91457fdb70b471eddb65ecafb1e2b03c5ff21356241e3cab2c8ba601f9ef1aec9006b7cd0b81da29be01cb4c1d52e563298e373013886ebb1889bd5616647c6c418ea6bc1f3c0853b65cae48467b35f08318e3a9d034af7224cc3520ab1ece7751ba15407298b21e4f84ef7c23d7993739403d4f116cba2d0ae2d4003a28334c461c734d4555105b986ad0af28aac36c753ab52b91b7e23ae3ab07d3b170fe53a2249efe5b65463a3f237cec72091b04005f95a15ae595191ba39d0ae1d91d8e00b132ae9339884bc57bbb79978a308e1c31c5f213b092f380a7ba58f55869e9c29a5a6e7a7aa4f8d58e5787cc05e500", 0x2000, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
fanotify_mark(0xffffffffffffffff, 0x1, 0x1, 0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00')
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_GET_NESTED_STATE(r2, 0xc080aebe, &(0x7f000000a100)={{0x0, 0x0, 0x80}})

3.314569992s ago: executing program 0 (id=3256):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_emit_ethernet(0x66, &(0x7f00000002c0)={@multicast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xff}, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "828bf7", 0x30, 0x3a, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}, @mcast2, {[], @time_exceed={0x2, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "fd9063", 0x0, 0x3a, 0x0, @private2, @private2}}}}}}}, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x2140, 0x0)
recvmmsg(r0, &(0x7f0000001200)=[{{0x0, 0x0, 0x0}, 0x4}], 0x1, 0x40000020, 0x0)

3.024105778s ago: executing program 0 (id=3260):
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
readv(r0, &(0x7f000000e040)=[{&(0x7f000000de80)=""/89, 0x59}], 0x1)

2.784068872s ago: executing program 3 (id=3263):
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000001c0), 0x103a02, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000640)={0x32, 0x4000020, 0x7, 0x418, 0x9, 0x98da, 0x4, 0x3d})

2.783744205s ago: executing program 0 (id=3264):
socket$inet_tcp(0x2, 0x1, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xd}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000005c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0x0, 0x0)
r4 = fanotify_init(0x200, 0x0)
fanotify_mark(r4, 0x1, 0x4800001e, r3, 0x0)
open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b800000015"], 0xb8}}, 0x0)

2.731195452s ago: executing program 1 (id=3265):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_GET_API_VERSION(r0, 0xae07, 0x0)

2.567994043s ago: executing program 3 (id=3267):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000000)=ANY=[@ANYBLOB="180200000000000000000000000000001801000078"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000100)={@multicast2, @loopback}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r1, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a010000000004"], 0x57)
setsockopt$inet_mreqsrc(r0, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)

2.563105536s ago: executing program 2 (id=3200):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000380)=ANY=[], 0x110)

2.49981366s ago: executing program 1 (id=3268):
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, 0x0)
r0 = socket$unix(0x1, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r1=>0x0}, &(0x7f0000cab000)=0x5)
setresuid(0xee01, r1, 0xffffffffffffffff)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000540)={{0x0, 0x0, 0x0, r1, 0x0, 0x44, 0xded}, 0x0, 0x0, 0xc0000000000000, 0x8, 0xffffffffffffffff, 0xffffffff, 0x3a9, 0x2, 0x0, 0x100})

2.448030204s ago: executing program 4 (id=3269):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='veth1_virt_wifi\x00', 0x10)
r1 = dup(r0)
sendmsg$inet(r1, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000000)="be39", 0xffeb}], 0x1, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private}}}], 0xf}, 0x0)
recvmmsg(r1, &(0x7f0000001a40)=[{{0x0, 0x0, 0x0}, 0x1}], 0x1, 0x62, 0x0)
read$FUSE(r1, &(0x7f0000000580)={0x2020}, 0x2020)

2.365294329s ago: executing program 2 (id=3270):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x20, 0x0, 0x88}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004200)="a28096c80abf3543ecde7564abff5085d2227ebcb0f164ae92706ad0b083a3f469a3efd15b4921e9c3063b98b3082068e7c31950dde842eac55df0f991453cad62a6956b0b6f7b8cf49b506a3060fe1127eca99663ade8efa89ee189acb5f3b92f6bc4c46621c803eed0d0bb5f32384870ed08f89d4f74445762fb99715e083c4c92a8878be19ffacc30d0f2da64f971cd40563163adc15670ecf25cd3ad96138967c4b53ad9d04b5193ab5fb674aa0030a9d703d1baf810ce897f969121f142161919e583c275671b999e7f363891dfdfdf3556d01b86ee29eca8fccbfeaf1771395148706cc6e6be7ce29fc9ffef061b5420950c1a525bf75ad06edec51538d1c5bbc77da72dc90fd9998936fffdda2427e5a68966c7e2208f76304680182ec73007e482f034195712af922db2726195d997708734db9e7825a864be00b2a4f800881fc0363f5e618398454f35b148b4ccb88d418269fac868a8ba4a2d5b4f06a1ac01b5ad158b842e05adca22c7372585bf4ce95560b6c1e021a3ed2ff7bd3b6b3c7734c3b66d7e4c460096312082f89b16baa6e73814aa60925780cd92cd65087e260ec046fc363264366a9df2c849c0644911303946adad544521ceb469a3e193ecc9a7876403fac461a4a70d6193b2451189a5c5120b3535e9edf619108af7f517b58abd3fa7fb1ab832213430d2e6901076fba9c9e1acc6c6f48ff0e419bbc45589745a176f52a7407ad5e3dd49acb31b47862806f47077dda04905e45a80a12cbcd4d2dd9fe66c2d1f99394fed8ec60961cd2dc7115a96ece432fac86d51bebb08b95f447a83792fe80291fca7b298c9043ef2c26f0f7e42798d3f54c84b94c24c76c555d83ccc53b99bb22d71845e5cf21a5ba7fbeffeb6306e1730db14561b950a3f24bcfd78d4ab0d97de8054bb1a6077ae7cca6e45d846d3df82298d07212922742cb0facac3b77edfbab90e9ee2d4f7b0ee9b17bb11ec5e5721340d84cb6bd93428167e69b47759172557acda313c3decdfc6fe9336bfade459f43b39d0f2289f9142db280f4ee668e650e12858c577e12e2b9a57ee66c834be97979bcbe94747fa5d8d0b7d3a9f8f218df1bf960f828429a1efe838616b18faf6629236ddbded43a093efae163228e5c38fd7714743c2fcca47e3382bcfb1ab893fd7377527b4ec43f3fa60ebd338161d8de7cad65b15579e4af258f5fe3a63c2637a15703207029b0899b5427767647baef11e291358e6e54f6f13d3d2ca7a5e7969e04d2733b3b9ab822c69a3cfac097384de5071a9b74a656136d55eb190df08747b509fd610ff62b4950ef71c934fe21a48a4931d3d9458b415f112cee65c660f5490e982341da1c58634b3967ca6f3596d20cc90f508382156e36f16539093240ef5f2aa6a2c0dff2a67df30dcf50bf6e0b82a3d49f2d532a8dde1b3ceefcf0837190b74186090d1c18b59917d7efce1adfb238ef4a7b1d22c4cef09320221de883e97e6882466508de06fcdabad3b741bdca2cff879d57ddda52f42b3dcb8a78cfc05826af7e4ff155960ff8491194f4d321ef195990abaeeefdcb852d1e1e3703f317385a9458b6c2dd9db830f757ec29c9939fc7313e639fe485bc1e41ddaaef3fbf1f7cc527c8fad0d21b8082482caad7bee440e5097665f636c3dfec82f8c98afb6243bc3944939675a594277d278ba4361461f7da52e224e4ce5dee4a467bf6ae9f67b61ac6eb0a440406abac2016eec907e241c57f5f44be47290fd0fef785ff04df3810ccd637b4d97a84bae8486a36f75d872e645fe46625969fc2d1f032c56ed44bd98ea27bd9b6ddc8eb2dc2ec9f90f2f1ca1bd20e37ac58b03c84c872f4ba47310654986641460dfdd531ac62a76ad87b89c103ac5c9c2e7e70c66447b3412d4a1e5cbc30e16939505116c04de33ae054ed366de8d1f971c2de439957a194e22a488f58d7efd46439177f3f3c45a1475927eecd846d3d2e6a2ab5c7f8addd99062c2fc6b272d1f51bb8f22f1b6f8bb3faf8aa85e5eb9abf7df5cf8f26267323808b0833a987989cbe59205e7ad06556e2d1b8a4873ca1cbcbc8d43abc145fd4eb832e7a58ab2c793d003ce7b1850ce45eb7480417a1e9eb9d39a1028a2a04a2aa649c098c4f8eee514db5f6021173bb254b8e22b150b2ca01dc7ff235db46ed78d07f43d1adab13b8445d1b32069eb45f9d389fcf5a3f7d3ebe243c5b1fe17b1f5a3d571b65f21b9e471e818172554dc956749b99cb7a5f303ec480d7194a2ba86e204f06aa1becdddc8c49082c527e7064ac2ad77dc05639d3d2a7778f6943ed6105ebf6f0b9e94fddbe05c236ec000f4d1d4e496b10068211ab68ada4c7f7ac61f5f5ba5f1810d5bbe87ff4f8356af0d3f682baedb0ad8f8488b277421f0a03fc5e3095ee34bc4472d8f17e3f7013cf2f79f5ff3ea4b6bae56d1365a33b09bfa9a496323f7da923b7e29dce4beb81035f13130004c96e56d7ef6ca6c101d20c27a218e623227c33c9e488b17e7ae9ac20da8240501f7b614a1730f164553fe479ef149866e4ea47296814284a3d3eb7cbb294289ffb996e0eb053b9c16e54cf267832e3d360eb196ed51305630223309ea97215628f01ec9d3ea48096418d5e962cac5063460f0a18772ec7ce66d14a1cce14b52c40bbbfafccbf1e76f09e57ff0718048e5b993157a6cf4718826b1e09430413a3596a15c4a620fa8c8e1d1663e5739f9f790ddbb3be0e00187d43717d659242467d8681ac10303346157f894d9037641417010e9654c6a5b22263e73a5a37128f50078a980c30930321aa5c5e7851d5d392ddce3a14a96916fa8421ae6728f37f5de7c3e98feb4babd4e1bd2315d595e209d52748f70adc2284fcdaa6ad880470d2a071f3490aaf3491fb64b4547419e8eccdc491a8921156cb4811ad1e66514a32b0b31b641438881f28c1e6461b4f451938999af671e8c6a5cd0c072a9fe4cdbefe24ca616f3d0a15ac97cca835b1a440e04fa28340c6044176c8ecc8ee0d033d47db8a0aacfa0eabdfa1c9509fc2604008f01cbafeb5bd2b503b809ed672340b9a576593f1ef388391b54b605e7a15bef7b1345627a34fca57738b0f8f4f19eea93c903495274a4425a1a1cc6c4c6e335b631df5185c95b485e4257867b5347a40e4e14dcc560f061fd4fd265137dc68afd548adde778f1330f769acb1ccf5da14ff6992c24e210ea6e6179421881b803393bc6974e37106c5b5b3b5d0b3469f8969bffb7e4ceb2c98e928e74366492d27235ae4c74a2f48511aeeaa53a2beafa7a331b50e454c507af1b63350a5cef35668a5b9325014192277e509561008b3601088f79d42eaa8b1e4ae2000b31749e2b8094312ddb7f3c1cd625ef885c11fa22a66e374b52b3425e0b8016154e1fd8471339e32e7373d63ab646d893fbe09ae07b06074c01401ea76b3c382a9d32f24f93c789964e16bc4206ecd75c10917ab84ffd8d6cdf4cd28fd90375ff28518f8c1a3befc538e1b9e427fb671988d29f2fb2fcd039f4d341c84eb4d7cf600ddaba88bb094e4d87a1419180149f491368e648b69985b05ac39a4ecdd3c5135f3a5c8ad7792dacb6470144bb9e67805a211efb3ec9ccaf8e0901345fb19e4da579e1fbe86a1207f4f13c3436009c2c640b7cf3f8b77ca7bd994bf93308027359c6dd1b7db1e153fc0821968ef36c003b6c73fe890f4de24f5c6458dbaaf3819edeaa91783c3cfc7e773689236248195c7bbd60113f2476fa3687621d668d1728ee433d2f8f4db707345d30f1e52ab87a2a0afd547c6b3f0000f59f17facde48f693490e22494b75d11df1a143b85068d143ef6a9bb5937a9df380c8948f1a01e9675e18409edb0f6b9605b68e34632fcce472dc50b90b0f6dcd57931f78e1e8861a0fb62e72b0baad6f9d23c1cfb0f19b25013c8d9fcd786a2f6f79768b5fb398f7b2baa31ce8156d1fc4a46c1c463fdf30360d42aeed2ef11611d0b7f654bb51052fd4dc39328f8ec4c58bbda05e6f1b3c8f6d8adca0268f2410e9a4a7d63b6616006d0e02f6edacc10e5c54fd85f15a8bd7648a293f23d6a699bd9a675250475a73a96d7475e4fabb89fb5e7de5d7a3479aa485c0befc60d0ac4fd5ac6dbecceb06cad86e219fc0ce4720758917811a3215f8d13e413bfb64fc065fc421aede0b56691797dac428c7e463479fa591b9072c309b7533e427c5cc11a1f6cf9a5b995d328d796d874c5b55dfc12a5039b413ce319cf5ba1f355c4e0717d32650b43e18010f37f048731931c52c4f36eb969dda702afe96c2a5241350a67ba2d026946189c5e281293c9a8e2cff3784753f1de78b917101b54e5ab00c045ea15f28a0e3f509962cf8bd3385d85250737eae5c34ece86b86669c13b00308a3b13c0ac3c83ff26fb52a4aa83c1233a9490cb9ca917a056908931751bddb88a62379a713395f0764e4a393faf253a4026d0472270e6036287d56850df1751543484d65b3062155b6300e0024241c59a862ae769c1a9232a2d9fb24705177a09cceb3eefbf9f106f67e01be14cdeb4d2fc7d8661df3e75de5ccd09a7e559f028fb9837c621ea0045b4d1b679067f246339c974631aa7134d4e910efb28d3c48929cef1df7e6c73668762d55086b6c59c36ac90154135fd7ca4e4047dd0aa161fa982d8edf9c0cb9666477e096c55718f6e4742415fefd4f696d1f1ccd6322bc19496ddebd36282a7c707d5b44113e30678e6e33ab7d34be04a59ac614d6a54134490998be02636fa91633d6294781c2b9a54c611c0045cfcfe81f49aa21b29d835cd2047c854486fd8e65a2ebf629f7ced602b9dd107bfde483e5c9b5cbba4a08cdce09920bda9978b7fc2b4a89bf1573a26389e52090fdf5dccf22111dc8c42fd3c8c477092895398086cc22cca665269e193fc650742a361a44b857d258429f701f22e9b7615bc3dab78c1479a41cf8575cdb17169470b347adfc03e03daea3e269725cfc72df5664b9df36d2f2b55013b71133e0b80577a47182511ebb308b6248d457bd2af7b28e77182c305241178c4124ab102771fd5a8c3dacb8775de881301d71587c76bcf0a97a72ad244d0c42fd71aceec32dd48bb5c9a95b391166c832ac5bac8c7cae4d18b3f7d9f2e4782fdf97732e3d51f67bbb57f989ee0d7589dbd0c2a5c63840e914b9d7d720fa120acbffebf816b588b2ccc052e7fa78992e0ea39dd21a122add41195f8e2e1acd777c1a4e8ef4362fef441feb4d9252c6bfbd2742152300a32027776e3341620d3c8d9365e10e81adcca7d87a0e555c98a0353c692557d90ee9be3fbaab766abf93e2462149fd99c92a5fc58d899ee75535cd1fe1386c5ab0b157c2102039d6015258f59cef3f15b951893a30ae839f740402a30b34e7be73796286403c5beb0853d856d83f1b00b48328f56dcb32e1faab08a3435b1482bf18b21c95aefeaafa7fd761c7f28d416fcde06bf7aee5c6e9eb50e55874253ba3f1d0ce2505b4fc7c3fc996bfbb8446bafe84f5bea94bfd7ca5aeaf237fe793b66e5c521d4092e4e1f9bde1dfcfe53fa55005d21cfa833a338fd9792614129336060e10d1911862070761aa20c2902eb7c5a355eff4cf6253d7102a2ca1fead4c53b57d576d104c081310d92797e4e2e8c269d19910d0d4cedf30fa28ba680c00137f83de940624229b6a125ce5233c6cf4a3640b74f58f288dad8451fbe37641c5559a5f3caf1299c8bfb230723652278fe378efd8e459b9da26cffeb58468a6301dbc06d713ba2d8d43d9038f5f2dc8b831ba58a88eeb5b1786b21e398aeeeb7c1f3d6f01d82b3947862fb9e7cbd7da5d04c5fcd34da28d53e2246e3ac1e3a619ad174efa6435eaa0fc94d610799ce0158421dce046306eb5042143daa336d52206b12610ea6389cdda49bf5af1d4ee42ac090a94ae7b7612073f3a5c36a2205eda887f41478f7d20f18667f941f71eebcfa76c1ab28f2a49a3bd56bd3f4e6bd079ab3fe2d94782236e83585a03e52907abaef7456a95d5d3f3d37efdc035dbfd7c41b8ba0af2df8adf1cf24f7ff0beccd3d26bc91caf42314ef7e466f74e19ae0df2e2298fc2f694a7ec134632035585d530e7e19f65c256f001d75382d9825ef741bc213af186377d9ca10d3722354e1897ca5c23ac6a52c9ad0e6b686e1776f7ec65df033e8f4d5db80c1bc354093b319cb70df93d610667675816328c99322f14e636b95f04e6497f139d508b453f53ddb5c289d849fd5407c9bdcefd1642abd46e28cb4e94371bdc606eeb67c9fe17747c68f2d50e82711da4d3edb0eda06f41b7f93fa8fb4d83cf21c79da67000bac2275508217ade1659fa8d24e5f8efb9f4bd21073ebef3d06368eb03fa3cf0d638448bd055ed20d292033ffdba538559c8ff9a2a5c8f83b5c393643d6585d1df994c3be43e72b8f3f53114d2a5f6bcedb573842b23b6a3eb7fca8495bf03bd03fde7b19bd39a16cec49e01f38e671af33cae082d9788e3202799bc466babec2080528d0609c0b731964719093735b4c1e73bd0705637c47516922197c552baeaf3516b5e3bbc2cd1afa3ef8215196ed580d9561092f620b897e98e786a0c7cbb0eedda8063292ba6482497f5f6bb62fb5ab4c97cb7658dc6579718eb97b547fcf47ced1426561af93a15fb4dc6d3d93b868644943c2c94b23b0570bbb81df2666c24f5abccfcdd71e209f3bb43c01d17f9bc8b9af2c26762fc6a741a150b7d1186e4f35175f3c315243e1c11e92c43a1fc492eef5a13c77a81fcf514ebfd0f8e645dae15a07e86b2f01fda065db4505a5eea83cb616f744f6bee731be191c65449c02603556d5a51422cf9c2f19f8d6843e0c1091e0708aa271e91f71c8602b9fa72189e036b7cb6af1569f21269283de94a6d7fe5849fd433d5b719c80419873db0587fc29786cc598d896fb16360bddd2ce12e54d05418f4f5e5f2d7aafe9fcd6268cbe2e9e6329ffb6c67fab8f3ce673028cc06aaa6b857556bba3b44d3fab5b6e875e70a2f3ad4b2ff76f31ead3462d3801ba373b3c2f545e94f57021575e2947f81f53283fc0a5137fd44fa3d074c92de54a0a3465c858f5a7ef08313faddbc3663e4e0167f3cba39612057a7518fbfb031f5ad0f9f75831973ebd733b82e554bf3fdec84e51f65dab6028c6c51366d9d4700fdf255e4c7bd70766e7f2281b3f2a5363f85ce49f9135904d14bcb117ad754c2594dcdca2d30e40ff265b5accfb116f64ed99aad570c4c5a91efdbb984ac651d8721405a0342cf77f448c17a152eabf29e88950558a86d0074e1cefab1eb7c366682f686ee1338737e675ea58eb8b4c86b9f28a6f6e96459f29e3b4dc59ff044c61a0dcc5c31d803e6e98420e446229ccdec3d0f705e92ffe016bb3696373eadab7f35ccf65ab4d9be09a085ce21bbd7c0555376e4d7fe68b5e7a64f48b5127825fb2be598d991f9c1a54bf52713417dcc599e812d85513a537e6eafa738edc972b67e065595d11678449bce6cd3d69800a649b560d0e057c502ca3e72e97820829ecfea801192c3f4e2c8763c095a43ee6fe45fe8730130937668df1d4ee577ada28238be03286481f2d2a004cc4d48856e71fbd64f1a0043a4520ecbbf1b3abdc96b87a27be8495a20542967aa4cd3a44a11502419a083d84e97abfde0901b66dde48388649a0ed6d93b9f20c530e990c7c52370a114d800d6ab3f6687d6bbc105b63738fe05fa6cac98ad6663936bb18cb923264e44312c24c2ce8e642bb73c921012b68a26a70977446b8f15f9d62467d8b356560c183a6bd6cd76ec868c3bd94a595cd7bf996755a508a814980c5e588b275200c45afd900c8c2de329ec2484b0e3ecd7b0960e5e3425881d1ff7f8bd8b20f5cc98ffc3acb77f5e88775a4bd3ab9f9eb027e27d3af55ebdf4eebab48ea911128d668d00fc3f5b5480aa0d9a4af563ba577384448e5425157133d59e1cef3c722f33700bd372825046b1fa5824e405154a3af1440bc2b75acfbd07cf92e8c162587e74b5ab66b1c6aeab3ad5fa3ee91da4900ef30ad04baea326df912517dd96e1696b4a91faa66675978a375e81f25464a1073dc6737af08d7e25956bb31d438548a7da38662d49db812a8cf1d6cc65f5c63879fd9ee7fd2a66ca3fc1a748cb239aab88c87206470b4c60592afeb6d69ed97a8f990155862ba4e22b64804142c131a23792937aa8a8696e165c24d7692a04bb4471b0f0d2507fe7c8618421428fc7a0acc984ca5cc6bacb772e8a717bbaa646f9643275910a6037afaf5a80678d18edda138a4e13d06d04a5d06431eab48738225cf1567e960e765728dc12e91b91c6f2b33dfb6e033aa68c1c2334d24335abc4a7a1df5636dec29091da54d5f5a1fff41e4a35a0c2f04f968f7d78e2f51c73577e2192bb20f289aaba5a175c2ed533855bd9ed9a842ad482136dd5e0cf45eb5e2d31ff62a3be1cf8a94a58316e74f4ab9fc54f3a0bb83beef0f355993bdea2c83e61cdc796bf2564ae51fae616799e8711998cd88d35cd9824452fdd65226174b46792cb87f4dd282e4e6f67eb66da413ad877ed6ce775f7e19bc93f48bb9e5ec04009de3c042aeacf7f4b25ad6b30e017303f64fe07ac79e8744aab6926d117f13513d0469cef335fe1d0d787c2d0b2c031a9521786ac10e9f8b768271680337f2c3262abdccb5d3107c632bf1f74c83ee91f49988222fb080cc8faa9b1a02526d8b6087e0b2354173d29016b3309587c16f057dd812aa63c3169150de81f3af97d082a8f8da4ce4f909ff649821d7f96d97613552e8cc4902e046ecfa329b1d980ff5ece69b8f1615fdff5244f41cec0af924624ae1641ecae5fa26c5fb9006e57100ee71377ced7c255ae17a0845e2ee0287c62c1852f93877f9f86157ca9675d383fff5cd6f2b001ec0136c07cf37f5ace1853122c2baa1092d418e2a490c4a5c8f56b828ce1bafeef4e77f095d6b4ed99d56f66812cb19be540ebe5d52e7eff2d69cbb8477e11514f7e3604bf9999f78c2f1ca6f60a2216b87fa0f25269c425b7d50709b200912b3b7899c95e12d6e9c4dacc19e327721860e0477a53e6793fbb7fb9704a848f395f48c24a6e79b9e1358cc3497251de88b8d3a7b22c6d8af1a7fab81530d9f0cc98f62debb222b54780d89794238532717b447d71b46a60ed481c21db85b590b31720009695ecffd4ef029964e5d5149622233ac013e960a005c924f73ea82c318455546c53d74aa3f7e2ff26aa074c40a55aba8b08027fc19b596eec6c4f89bae39e74b9aad88344f7cc5ad3eefa5095f2ab47222e9a357ecd71c6700ac576025201490d9e446603dfd4bda7617dd500981b2d2ab8c43882a5208494cb3f8ebc720bca8a7cf6c80bd7aaaf89507bb3412ea490a78973f12cc30413e9df1458917ea3d68b438d424c1314bc8d01939c5a5a842438281e62d0c800dee704b2a6cd3e1e4b885a6b26b894a98765fa3308c9e4b87f93625faecdb17c29a27cd243bf6030a67874ec9f2443cf8154261ac2a834c01cbe1f314ee7aa3ca552e1648cf8b42a63f249e3538026e09e44d69dc259adb0d1a0cbccb5a5dd5d0dccc90d023da79d5634188ff060f7e35a5f9d7ad99546824d63975d4452de876093f4e997dc46eedcd80a9eebf5e4f077fbb10c7d9e19a3419e7b845972a3b62613c5404a209b16fa88e0ff49d7b4f21fecc1f773c5b4be61021e0cab8602c6e8257649303aaeafcbb178e7a460ff07f219c46eb6fe5bf8113723e454003bd707767c107daf4255751daaf8decf35262640058924eb6587868b2c08230b317e97396ebc928ba8d274ca0eed0bfcb637676003c64e8c1e1a0420b6c96a44226061ced41b8448382abd2f3d0c472afcde231fbc9ee90c2f1132f8e2391246f95ad93354c7460e20de996ad0f61b13b27646887a637cede90b94b7d8c3130f0fe060e8d955c711a2700b302a75bdeb32a0a6802ea795cb114f5f82a1a381a86bbff88b299e47728b746dff964c94c52b661b9429376b1320b46081426b7c340206dc0da151bf84be2a49e78b6b5938753d2b1be8d9e67c43c5d70e72519f5f90d9f95e84ee38f82b191ac4d968b0a37901fd923cb289d585693ac3c3f8a94fca6df45e694e199a9cd0b1bc1fa7394bcc96aae670dca6605a998793b7e067ac410ba631057b8b76fcbe9524df820c02efef1608b743cd2aa6d60d3d8e476fa12d3acc329f8272b087d89471177ed531fec1f9c24a975ca2fcd8c246a33e291a3f00b7f234052067a0059c86762475256bb5e7dac6f121a0925506b18933c6e314915d4b3b2130aafc2483ef22ff8bb7b887565b1bd22fabca22037d8fc9437f675c5313526266f60bb7c7c47f30c7d567ed142ea5ec367c4298328d20e5344f01c0c90cf8a6302f4d84b6ba7495fba314a05ba29b63bb6d458fdb05a4411136958309f418fb178e19aa09ff9e62b29732fb2986c96e738f7a688cb2122dbb8f2ad9a5f28bc49ec0c462413552afee8e403259b55ad6dc334dde7f2d306929dd01f2aa6036cafd41874522689301b81c9e50e86828894140356db0a3317b081ed9d8148c41e77e6bda6287762532b86eb91f5480915680deb8a91fb8656b7f0109064865d2b846af0861f67d3f720d6e306540cd7b68f095ef3690b88ea93fb6a402ff5697597cda83171f159e85307d1a8c01611189bd4eb4f0453ab88d43ae181a562a76902a67c687514079d6f4304d9a7c0fa24b6e86074ea0a9fd8187c120312078f5ebfa674adc0303734bf8f6b5585943706594192ad24c9f7d9794fb83758924f862855ddd50bff58b522c43d73c03289baec628cd693cab93101b1e473b76532510e10f03e86812fea6f2d6f5467dcf29e6d7cf8524f383a0ded3f0951c3ffb171a6b8a6d97b5fa8899a19f1a3d0e934a1d4741076e4394ba225158f697bf7d5651717c6950229a0be22e8120d76a414edbcd03d505264b7ede8272ccbd6dbdcebaf11daf6a652f6f9eb74ba7a3ecc942892891388005ae5d971e4e79d696564906dffd44845b704a9abc2fa5ba1bb69a548423a08044ad6d0e365db7e6bea0f3844a452759716cb98dcf326001ec90c1c343174098cdf47ea2e13341058ca014d2a30e9ba3c526de72a6e387181bf76a278c9cbc518d8c374a3f1d9802a39464a100903dbec16f8f095f5d82d9d09507281e4f7fe0ce4fbeced193902a5f658af2a4c1d0952dabdc6ae5830b6b5a2c3f5b8d33a73665990822e5f4a7ce5366755a1615543bdf78299c71e890e0bedb6ec277b10a389d6a3ba9c037221421279e51ab50fb115de2076cc99444202e88ebd9d0fbe4e60234b7b761495ac6c9e615ddac8176164a88fb6d6cc2b52672c8949afe3efc1e87a598896bc93e421423844fcaafe65af898a015b3bcaf623ebeef9a57155af5278ceb52b995f7ca466d9e18b05e86380679e0257cff6d0c6750078462f2ee4701d6d8289ed848b877cf5918625b7937060d667c11119881c30809056892352c6c53c01e395af6866ea350e6f21fa3db772c1177c759999973b51e11ffc5908", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x8000, 0x0, 0x0, 0x0, 0x0, 0xd}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
syz_fuse_handle_req(r0, &(0x7f0000006380)="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", 0x2000, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x18, 0xfffffffffffffff5, 0xffffffff, {0x4}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
writev(r2, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x1f000}], 0x1)

2.298609853s ago: executing program 1 (id=3271):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000003100)={0x8, 0x0, [{0xdddd1000, 0x6e, &(0x7f0000002b40)=""/110}, {0xeeef0000, 0xea, &(0x7f0000002bc0)=""/234}, {0x5000, 0xde, &(0x7f0000002cc0)=""/222}, {0x1000, 0xd9, &(0x7f0000002dc0)=""/217}, {0x4, 0x72, &(0x7f0000002ec0)=""/114}, {0x8000000, 0x29, &(0x7f0000002f40)=""/41}, {0x3000, 0x44, &(0x7f0000002f80)=""/68}, {0x3000, 0x41, &(0x7f0000003000)=""/65}]})

2.287184826s ago: executing program 3 (id=3272):
unshare(0x26020480)
r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x1)
fchdir(r1)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
fchmod(r2, 0x6)

2.247116382s ago: executing program 4 (id=3273):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000001c0), 0x802, 0x0)
ioctl$UI_SET_KEYBIT(r1, 0x40045565, 0x22a)
close_range(r0, 0xffffffffffffffff, 0x0)
syz_open_dev$usbmon(0x0, 0x1, 0x1)
syz_open_dev$usbmon(0x0, 0x6, 0x4001)

2.06010328s ago: executing program 1 (id=3274):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000440), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000100)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_INFO(r0, 0x80e85411, &(0x7f0000000000))

2.059625761s ago: executing program 3 (id=3275):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe40, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x6b, 0x60000000}, 0x2c)

2.044075773s ago: executing program 4 (id=3276):
syz_usb_connect(0x2, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000124d5240e316e9f958000000000109021b00010000000009047800018fa68d0009058a"], 0x0)
syz_open_dev$evdev(&(0x7f0000000080), 0x40, 0x161802)

1.947529049s ago: executing program 1 (id=3277):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
unshare(0x24060400)
syz_usb_connect(0x5, 0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x0, 0x5, &(0x7f0000000080)={0x5, 0xf, 0x5}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000300)={0x4376ea830d4d549b, 0x0, [0xffffffffffffffff, 0x7, 0x0, 0x0, 0x5, 0x3, 0xfffffffffffffffc, 0x800000]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.812102475s ago: executing program 3 (id=3278):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000040)=0x9, 0x4)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000004a80)=""/17, 0x11}, 0x9}], 0x1, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x42, &(0x7f0000000100)=0x1e79, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

1.627290436s ago: executing program 3 (id=3279):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
socket$nl_audit(0x10, 0x3, 0x9)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
syz_usb_connect(0x2, 0x0, 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, &(0x7f0000000000))
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, &(0x7f0000000180)=0x70)
write$dsp(0xffffffffffffffff, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)

887.134691ms ago: executing program 0 (id=3280):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(0xffffffffffffffff, 0xc058534f, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0xd)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000280)={0x8080000})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000040)={0xdddd0000, 0x10000})

656.029097ms ago: executing program 0 (id=3281):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
keyctl$set_reqkey_keyring(0xf, 0xfffffffb)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$sock_buf(r3, 0x1, 0x3b, 0x0, &(0x7f0000000300))
r4 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
writev(r4, &(0x7f0000000280)=[{&(0x7f0000000440)="4641a8", 0x3}], 0x1)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x3, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000002c0)={0x1}, 0x4)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0, 0x0)
fcntl$lock(r5, 0x24, &(0x7f0000000200)={0x0, 0x1, 0x3, 0x7fffffffffffffff})
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
signalfd4(r3, &(0x7f0000000500)={[0x6]}, 0x8, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000540)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x4, 0x2, 0x0, @void, @value, @void, @value}, 0x50)

655.704512ms ago: executing program 4 (id=3282):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$TIOCEXCL(r2, 0x540c)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x3, 0x0, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x8, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

531.604013ms ago: executing program 4 (id=3283):
mknod(&(0x7f0000000000)='./file0\x00', 0x8100, 0x5f00)
setreuid(0xee00, 0x0)
r0 = getuid()
setreuid(0x0, r0)
stat(&(0x7f0000000080)='./file0\x00', 0xfffffffffffffffe)

323.60214ms ago: executing program 4 (id=3284):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
io_setup(0x202, &(0x7f0000000200))
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=@ipv4_delroute={0x1c, 0x18, 0xa09, 0x0, 0x0, {0x2, 0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}}, 0x1c}}, 0x0)

0s ago: executing program 1 (id=3285):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup(r2)
syz_usb_connect(0x0, 0x52, &(0x7f0000000040)=ANY=[@ANYBLOB="120100002598f110210494008e28010203010902"], 0x0)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000000000030100000000000000000000000000000000000000760f00000000000000000000000000000000000007"])

kernel console output (not intermixed with test programs):

1
[  731.420530][   T30] audit: type=1326 audit(1749078228.567:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14693 comm="syz.3.2529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2edad2ab19 code=0x7ffc0000
[  731.454681][T13183] dvb_ttusb_budget: ttusb_init_controller: error
[  731.461208][T13183] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[  731.516687][   T30] audit: type=1326 audit(1749078228.567:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14693 comm="syz.3.2529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2edad2ab19 code=0x7ffc0000
[  731.538995][    C1] vkms_vblank_simulate: vblank timer overrun
[  731.658762][T14719] netlink: 'syz.1.2533': attribute type 16 has an invalid length.
[  731.767326][T14719] netlink: 'syz.1.2533': attribute type 17 has an invalid length.
[  731.796288][T13183] DVB: Unable to find symbol cx22700_attach()
[  731.932271][T13183] DVB: Unable to find symbol tda10046_attach()
[  731.949744][T13183] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[  732.040435][T13183] usb 2-1: USB disconnect, device number 111
[  732.183062][T14730] netlink: 'syz.3.2538': attribute type 20 has an invalid length.
[  732.277468][T14732] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2538'.
[  732.345869][T14737] syzkaller0: tun_chr_ioctl cmd 1074025677
[  732.387169][T14737] syzkaller0: linktype set to 1
[  732.406689][T14737] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  732.422233][T14737] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  732.508626][T14737] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  732.520667][T14737] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  732.613925][T13183] usb 3-1: new high-speed USB device number 122 using dummy_hcd
[  732.688741][T14741] loop6: detected capacity change from 0 to 7
[  732.720774][T14741] Dev loop6: unable to read RDB block 7
[  732.729725][T14741]  loop6: unable to read partition table
[  732.739662][T14741] loop6: partition table beyond EOD, truncated
[  732.762836][T14741] loop_reread_partitions: partition scan of loop6 (þ被xü—ŸÑà– ) failed (rc=-5)
[  732.798613][T13183] usb 3-1: Using ep0 maxpacket: 32
[  732.893142][T13183] usb 3-1: New USB device found, idVendor=1ba6, idProduct=0001, bcdDevice=49.88
[  732.909293][T13183] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  732.918222][T13183] usb 3-1: Product: syz
[  732.926811][T13183] usb 3-1: Manufacturer: syz
[  732.931476][T13183] usb 3-1: SerialNumber: syz
[  732.968264][T13183] usb 3-1: config 0 descriptor??
[  732.984211][T13183] as10x_usb: device has been detected
[  733.008685][T13183] dvbdev: DVB: registering new adapter (Abilis Systems DVB-Titan)
[  733.124907][T13183] usb 3-1: DVB: registering adapter 1 frontend 0 (Abilis Systems DVB-Titan)...
[  733.196547][T14739] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  733.200040][T13183] as10x_usb: error during firmware upload part1
[  733.218106][T14739] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  733.220177][T13183] Registered device Abilis Systems DVB-Titan
[  733.271899][T14748] netdevsim netdevsim1: Direct firmware load for ..€ failed with error -2
[  733.287118][T14748] netdevsim netdevsim1: Falling back to sysfs fallback for: ..€
[  733.619125][T13203] usb 3-1: USB disconnect, device number 122
[  733.675384][T13203] Unregistered device Abilis Systems DVB-Titan
[  733.679885][T13203] as10x_usb: device has been disconnected
[  734.270431][T14771] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  734.329986][T14771] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  735.113343][T13183] usb 3-1: new high-speed USB device number 123 using dummy_hcd
[  735.523387][T13183] usb 3-1: Using ep0 maxpacket: 16
[  735.540354][T13183] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 33437, setting to 1024
[  735.559346][T13183] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0xF has invalid maxpacket 1024
[  735.599414][T13183] usb 3-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=c2.87
[  735.608866][T13183] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  735.634252][T13183] usb 3-1: Product: syz
[  735.650979][T13183] usb 3-1: Manufacturer: syz
[  735.669596][T13183] usb 3-1: SerialNumber: syz
[  735.698834][T13183] usb 3-1: config 0 descriptor??
[  735.721460][T14773] raw-gadget.6 gadget.2: fail, usb_ep_enable returned -22
[  735.739061][    C1] port100 3-1:0.0: NFC: Urb failure (status -71)
[  735.784668][T13182] hid (null): unknown global tag 0xe
[  735.793879][T13182] hid-generic FA5C:0FCC:FFFFFFFF.000F: unknown global tag 0xe
[  735.807192][T13182] hid-generic FA5C:0FCC:FFFFFFFF.000F: item 0 0 1 14 parsing failed
[  735.818134][T14781] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  735.832723][T13182] hid-generic FA5C:0FCC:FFFFFFFF.000F: probe with driver hid-generic failed with error -22
[  735.996548][T14790] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2558'.
[  736.107450][T14794] syzkaller1: tun_chr_ioctl cmd 35111
[  736.182000][T14797] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  736.194143][T14797] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  736.989796][T14807] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2562'.
[  737.191921][   T30] kauditd_printk_skb: 176 callbacks suppressed
[  737.191941][   T30] audit: type=1326 audit(1749078235.067:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14810 comm="syz.1.2564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36f58e929 code=0x7ffc0000
[  737.503507][   T30] audit: type=1326 audit(1749078235.067:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14810 comm="syz.1.2564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36f58e929 code=0x7ffc0000
[  737.677397][   T30] audit: type=1326 audit(1749078235.107:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14810 comm="syz.1.2564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc36f52ab19 code=0x7ffc0000
[  737.789454][   T30] audit: type=1326 audit(1749078235.107:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14810 comm="syz.1.2564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36f58e929 code=0x7ffc0000
[  737.811853][    C1] vkms_vblank_simulate: vblank timer overrun
[  737.838123][   T30] audit: type=1326 audit(1749078235.107:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14810 comm="syz.1.2564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc36f52ab19 code=0x7ffc0000
[  738.117923][   T30] audit: type=1326 audit(1749078235.107:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14810 comm="syz.1.2564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36f58e929 code=0x7ffc0000
[  738.290969][   T30] audit: type=1326 audit(1749078235.107:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14810 comm="syz.1.2564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36f58e929 code=0x7ffc0000
[  738.313389][    C1] vkms_vblank_simulate: vblank timer overrun
[  738.330490][   T30] audit: type=1326 audit(1749078235.227:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14810 comm="syz.1.2564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36f58e929 code=0x7ffc0000
[  738.424068][T14827] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  738.433059][T14827] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  738.462350][   T30] audit: type=1326 audit(1749078235.227:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14810 comm="syz.1.2564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc36f52ab19 code=0x7ffc0000
[  738.492391][   T30] audit: type=1326 audit(1749078235.227:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14810 comm="syz.1.2564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36f58e929 code=0x7ffc0000
[  738.514783][    C1] vkms_vblank_simulate: vblank timer overrun
[  740.641320][    C1] port100 3-1:0.0: NFC: Urb failure (status -71)
[  740.650073][T13183] port100 3-1:0.0: NFC: Could not get supported command types
[  740.707290][T13183] usb 3-1: USB disconnect, device number 123
[  740.832295][T14846] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2577'.
[  740.844054][T14846] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2577'.
[  741.529773][T14858] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  741.895547][T14872] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  741.913873][T14872] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  741.932884][T14872] FAULT_INJECTION: forcing a failure.
[  741.932884][T14872] name failslab, interval 1, probability 0, space 0, times 0
[  741.976286][T14872] CPU: 0 UID: 0 PID: 14872 Comm: syz.4.2586 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  741.976317][T14872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  741.976331][T14872] Call Trace:
[  741.976340][T14872]  <TASK>
[  741.976349][T14872]  dump_stack_lvl+0x189/0x250
[  741.976387][T14872]  ? __pfx____ratelimit+0x10/0x10
[  741.976417][T14872]  ? __pfx_dump_stack_lvl+0x10/0x10
[  741.976449][T14872]  ? __pfx__printk+0x10/0x10
[  741.976478][T14872]  ? __pfx___might_resched+0x10/0x10
[  741.976497][T14872]  ? fs_reclaim_acquire+0x7d/0x100
[  741.976527][T14872]  should_fail_ex+0x414/0x560
[  741.976565][T14872]  should_failslab+0xa8/0x100
[  741.976590][T14872]  kmem_cache_alloc_lru_noprof+0x78/0x3d0
[  741.976611][T14872]  ? __d_alloc+0x31/0x6f0
[  741.976646][T14872]  __d_alloc+0x31/0x6f0
[  741.976674][T14872]  ? __lock_acquire+0xab9/0xd20
[  741.976707][T14872]  d_alloc_parallel+0xe0/0x14e0
[  741.976759][T14872]  ? __d_lookup+0x66/0x780
[  741.976785][T14872]  ? __pfx_d_alloc_parallel+0x10/0x10
[  741.976821][T14872]  path_openat+0xa3b/0x3830
[  741.976843][T14872]  ? arch_stack_walk+0xfc/0x150
[  741.976885][T14872]  ? __pfx_path_openat+0x10/0x10
[  741.976906][T14872]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.976937][T14872]  do_filp_open+0x1fa/0x410
[  741.976959][T14872]  ? __lock_acquire+0xab9/0xd20
[  741.976982][T14872]  ? __pfx_do_filp_open+0x10/0x10
[  741.977022][T14872]  ? _raw_spin_unlock+0x28/0x50
[  741.977042][T14872]  ? alloc_fd+0x64c/0x6c0
[  741.977091][T14872]  do_sys_openat2+0x121/0x1c0
[  741.977115][T14872]  ? __pfx_do_sys_openat2+0x10/0x10
[  741.977137][T14872]  ? ksys_write+0x22a/0x250
[  741.977153][T14872]  ? __pfx_ksys_write+0x10/0x10
[  741.977167][T14872]  ? rcu_is_watching+0x15/0xb0
[  741.977190][T14872]  __x64_sys_openat+0x138/0x170
[  741.977226][T14872]  do_syscall_64+0xfa/0x3b0
[  741.977259][T14872]  ? lockdep_hardirqs_on+0x9c/0x150
[  741.977296][T14872]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.977313][T14872]  ? clear_bhb_loop+0x60/0xb0
[  741.977331][T14872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.977346][T14872] RIP: 0033:0x7fce4df8d290
[  741.977360][T14872] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  741.977373][T14872] RSP: 002b:00007fce4edd4b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  741.977390][T14872] RAX: ffffffffffffffda RBX: 0000000000088c02 RCX: 00007fce4df8d290
[  741.977402][T14872] RDX: 0000000000088c02 RSI: 00007fce4edd4c10 RDI: 00000000ffffff9c
[  741.977412][T14872] RBP: 00007fce4edd4c10 R08: 0000000000000000 R09: 00236964696d2f76
[  741.977423][T14872] R10: 0000000000000000 R11: 0000000000000293 R12: cccccccccccccccd
[  741.977433][T14872] R13: 0000000000000000 R14: 00007fce4e1b5fa0 R15: 00007fce4e2dfa28
[  741.977456][T14872]  </TASK>
[  742.595706][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805aac8000: rx timeout, send abort
[  742.606011][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88805aac8000: 0x2f000: (3) A timeout occurred and this is the connection abort to close the session.
[  742.798197][T14879] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  742.840579][T14879] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  742.868115][T14879] binder: 14878:14879 ioctl 4018620d 200000000040 returned -22
[  742.878400][T14879] binder: 14878:14879 ioctl c0306201 2000000001c0 returned -14
[  742.922296][T14880] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2579'.
[  742.939862][T14880] netlink: 'syz.3.2579': attribute type 5 has an invalid length.
[  742.979933][T14880] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2579'.
[  743.040751][T14882] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  743.070408][T14882] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  743.716049][T14906] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  743.738256][T14906] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  743.790283][T14908] Unknown options in mask 5
[  743.993679][T13192] usb 3-1: new high-speed USB device number 124 using dummy_hcd
[  744.153708][T13192] usb 3-1: Using ep0 maxpacket: 32
[  744.165084][T13192] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  744.193618][T13192] usb 3-1: New USB device found, idVendor=0e8f, idProduct=0012, bcdDevice= 0.00
[  744.244721][T13192] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  744.275401][T13192] usb 3-1: config 0 descriptor??
[  744.488638][   T30] kauditd_printk_skb: 399 callbacks suppressed
[  744.488658][   T30] audit: type=1800 audit(1749078242.367:841): pid=14914 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2600" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[  744.602889][T14917] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  744.648059][T14917] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  744.678960][T14917] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  744.787030][T14917] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  744.835357][T14924] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2602'.
[  744.931257][T14928] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  745.047894][T14931] ip6tnl3: entered promiscuous mode
[  745.057549][T14931] ip6tnl3: entered allmulticast mode
[  745.071086][T14928] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  746.814319][   T30] audit: type=1800 audit(1749078244.697:842): pid=14954 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2612" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[  746.834638][    C0] vkms_vblank_simulate: vblank timer overrun
[  747.114174][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[  747.120912][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[  748.668896][T13192] usbhid 3-1:0.0: can't add hid device: -71
[  748.687216][T14978] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  748.725340][T13192] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  748.800132][T14978] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  748.813106][T13192] usb 3-1: USB disconnect, device number 124
[  750.230137][T13183] usb 2-1: new high-speed USB device number 112 using dummy_hcd
[  750.325246][T15002] binder_alloc: 14997: binder_alloc_buf, no vma
[  750.544410][T13183] usb 2-1: Using ep0 maxpacket: 32
[  750.555963][T13183] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  750.582527][T15007] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  750.603709][T15007] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  750.873463][T13183] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  750.940606][T13183] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  750.979276][T13183] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  751.111023][T13183] usb 2-1: config 0 descriptor??
[  751.127354][T13183] hub 2-1:0.0: USB hub found
[  751.240789][T15014] netdevsim netdevsim2: Direct firmware load for ..€ failed with error -2
[  751.251587][T15014] netdevsim netdevsim2: Falling back to sysfs fallback for: ..€
[  751.331178][T14994] program syz.1.2627 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  751.354794][T14994] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  751.375874][T14994] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  751.519468][T15016] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  751.541731][T15016] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  751.609576][T14994] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  751.622364][T14994] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  751.635105][T13183] hub 2-1:0.0: config failed, can't read hub descriptor (err -22)
[  751.789049][T13183] usbhid 2-1:0.0: can't add hid device: -71
[  751.798691][T13183] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  751.975040][T15020] FAULT_INJECTION: forcing a failure.
[  751.975040][T15020] name failslab, interval 1, probability 0, space 0, times 0
[  751.994276][T15020] CPU: 0 UID: 0 PID: 15020 Comm: syz.4.2632 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  751.994297][T15020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  751.994313][T15020] Call Trace:
[  751.994320][T15020]  <TASK>
[  751.994327][T15020]  dump_stack_lvl+0x189/0x250
[  751.994355][T15020]  ? __pfx____ratelimit+0x10/0x10
[  751.994379][T15020]  ? __pfx_dump_stack_lvl+0x10/0x10
[  751.994403][T15020]  ? __pfx__printk+0x10/0x10
[  751.994425][T15020]  ? __pfx___might_resched+0x10/0x10
[  751.994439][T15020]  ? fs_reclaim_acquire+0x7d/0x100
[  751.994463][T15020]  should_fail_ex+0x414/0x560
[  751.994491][T15020]  should_failslab+0xa8/0x100
[  751.994510][T15020]  __kmalloc_cache_noprof+0x70/0x3d0
[  751.994526][T15020]  ? fuse_lookup_name+0x1b5/0x860
[  751.994549][T15020]  fuse_lookup_name+0x1b5/0x860
[  751.994577][T15020]  ? __pfx_fuse_lookup_name+0x10/0x10
[  751.994597][T15020]  ? fuse_lock_inode+0xd3/0x120
[  751.994623][T15020]  ? percpu_ref_get_many+0x19/0x140
[  751.994653][T15020]  fuse_lookup+0x1e9/0x640
[  751.994677][T15020]  ? __pfx_fuse_lookup+0x10/0x10
[  751.994709][T15020]  ? _raw_spin_unlock+0x28/0x50
[  751.994728][T15020]  ? d_alloc+0x144/0x190
[  751.994751][T15020]  lookup_one_qstr_excl_raw+0x118/0x280
[  751.994775][T15020]  do_renameat2+0x470/0xc50
[  751.994806][T15020]  ? __pfx_do_renameat2+0x10/0x10
[  751.994831][T15020]  ? strncpy_from_user+0x150/0x290
[  751.994856][T15020]  ? getname_flags+0x1e5/0x540
[  751.994877][T15020]  __x64_sys_rename+0x82/0x90
[  751.994894][T15020]  do_syscall_64+0xfa/0x3b0
[  751.994917][T15020]  ? lockdep_hardirqs_on+0x9c/0x150
[  751.994938][T15020]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  751.994953][T15020]  ? clear_bhb_loop+0x60/0xb0
[  751.994971][T15020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  751.994986][T15020] RIP: 0033:0x7fce4df8e929
[  751.995000][T15020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  751.995013][T15020] RSP: 002b:00007fce4ed93038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  751.995030][T15020] RAX: ffffffffffffffda RBX: 00007fce4e1b6160 RCX: 00007fce4df8e929
[  751.995042][T15020] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: 0000200000000100
[  751.995052][T15020] RBP: 00007fce4ed93090 R08: 0000000000000000 R09: 0000000000000000
[  751.995062][T15020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  751.995072][T15020] R13: 0000000000000000 R14: 00007fce4e1b6160 R15: 00007fce4e2dfa28
[  751.995096][T15020]  </TASK>
[  752.498211][T13183] usb 2-1: USB disconnect, device number 112
[  752.555372][T15027] fuse: Bad value for 'fd'
[  753.018848][T13193] usb 2-1: new high-speed USB device number 113 using dummy_hcd
[  753.199479][T13193] usb 2-1: config index 0 descriptor too short (expected 12384, got 96)
[  753.212609][T13193] usb 2-1: config 55 has too many interfaces: 49, using maximum allowed: 32
[  753.262822][T13193] usb 2-1: config 55 has an invalid descriptor of length 0, skipping remainder of the config
[  753.277807][T13193] usb 2-1: config 55 has 0 interfaces, different from the descriptor's value: 49
[  753.337084][T13193] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  753.372200][T13193] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  753.404729][T13193] usb 2-1: Product: syz
[  753.420237][T13193] usb 2-1: Manufacturer: syz
[  753.625157][T13183] usb 3-1: new high-speed USB device number 125 using dummy_hcd
[  753.833900][T13183] usb 3-1: Using ep0 maxpacket: 16
[  753.840934][T13183] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  753.875366][T13183] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  753.989786][T15056] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  754.006592][T15056] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  754.277932][T13183] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  754.312583][T13183] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  754.346049][T13183] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  754.374481][T13183] usb 3-1: config 0 descriptor??
[  754.481574][T15055] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  754.502789][T15055] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  754.811141][T13183] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  754.823566][T13183] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  754.885488][T13183] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  754.904563][T13183] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  754.912016][T13183] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  755.137188][T13183] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0010/input/input31
[  755.258365][T13183] microsoft 0003:045E:07DA.0010: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  755.328326][T13183] usb 3-1: USB disconnect, device number 125
[  755.507750][T15069] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  755.554242][T15069] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  755.701149][T15073] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  755.743751][T15071] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2647'.
[  755.801343][T15067] fido_id[15067]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  756.203768][T13192] usb 3-1: new high-speed USB device number 126 using dummy_hcd
[  756.392451][T13192] usb 3-1: config 0 has no interfaces?
[  756.431785][T13192] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  756.481753][T13192] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  756.593742][T13192] usb 3-1: Product: syz
[  756.598175][T13192] usb 3-1: Manufacturer: syz
[  756.602912][T13192] usb 3-1: SerialNumber: syz
[  756.636146][T13192] usb 3-1: config 0 descriptor??
[  757.030223][   T30] audit: type=1400 audit(1749078254.887:843): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=15074 comm="syz.2.2648"
[  757.091325][T13193] usb 2-1: USB disconnect, device number 113
[  757.199294][T15086] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2648'.
[  757.222577][T15086] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2648'.
[  758.168834][T15093] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2653'.
[  758.178769][T15093] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  758.189277][T15093] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  758.785584][T15101] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  758.807435][T15101] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  759.004643][T15107] (unnamed net_device) (uninitialized): option ad_user_port_key: mode dependency failed, not supported in mode active-backup(1)
[  759.486625][T15101] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  759.797316][T15101] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  759.870692][T15101] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[  759.877379][T15101] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  759.933441][T15101] vhci_hcd vhci_hcd.0: Device attached
[  759.957023][T15118] vhci_hcd: connection closed
[  759.960892][ T3546] vhci_hcd: stop threads
[  760.014449][ T3546] vhci_hcd: release socket
[  760.026848][ T3546] vhci_hcd: disconnect device
[  760.273521][T13193] usb 3-1: USB disconnect, device number 126
[  760.753749][T15126] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  760.754274][T13193] usb 5-1: USB disconnect, device number 19
[  760.764808][T15126] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  760.775517][T15126] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  760.785174][T15126] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  760.799337][T15126] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  761.098008][T15131] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  761.107959][T15131] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  761.749219][T15128] chnl_net:caif_netlink_parms(): no params data found
[  761.981384][T15147] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2665'.
[  761.991607][T15148] IPVS: set_ctl: invalid protocol: 43 0.0.0.0:20003
[  761.992457][T15147] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  762.007910][T15147] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  762.247239][T15128] bridge0: port 1(bridge_slave_0) entered blocking state
[  762.272437][T15128] bridge0: port 1(bridge_slave_0) entered disabled state
[  762.313618][T15128] bridge_slave_0: entered allmulticast mode
[  762.321654][T15128] bridge_slave_0: entered promiscuous mode
[  762.406501][T15128] bridge0: port 2(bridge_slave_1) entered blocking state
[  762.416902][T15128] bridge0: port 2(bridge_slave_1) entered disabled state
[  762.424649][T15128] bridge_slave_1: entered allmulticast mode
[  762.432545][T15128] bridge_slave_1: entered promiscuous mode
[  762.488923][T15165] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2668'.
[  762.505712][T15165] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2668'.
[  762.606407][T15128] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  762.662653][T15128] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  762.772732][T15128] team0: Port device team_slave_0 added
[  762.788705][T15128] team0: Port device team_slave_1 added
[  762.890074][   T51] Bluetooth: hci5: command tx timeout
[  763.239573][T15128] batman_adv: batadv0: Adding interface: batadv_slave_0
[  763.262909][T15128] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  763.385648][T15128] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  763.479758][T15128] batman_adv: batadv0: Adding interface: batadv_slave_1
[  763.491585][T15128] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  763.530920][T15128] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  763.728256][T15128] hsr_slave_0: entered promiscuous mode
[  763.752555][T15128] hsr_slave_1: entered promiscuous mode
[  763.777986][T15128] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  763.805790][T15128] Cannot create hsr debugfs directory
[  764.796374][T15185] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  764.847873][T15185] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  764.947735][   T51] Bluetooth: hci5: command tx timeout
[  765.074407][T13192] usb 3-1: new full-speed USB device number 127 using dummy_hcd
[  765.335101][T13192] usb 3-1: config 2 has an invalid interface number: 108 but max is 0
[  765.338843][T15191] FAULT_INJECTION: forcing a failure.
[  765.338843][T15191] name failslab, interval 1, probability 0, space 0, times 0
[  765.343832][T13192] usb 3-1: config 2 has no interface number 0
[  765.369009][T13192] usb 3-1: config 2 interface 108 has no altsetting 0
[  765.376035][T15191] CPU: 1 UID: 0 PID: 15191 Comm: syz.1.2675 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  765.376062][T15191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  765.376074][T15191] Call Trace:
[  765.376082][T15191]  <TASK>
[  765.376091][T15191]  dump_stack_lvl+0x189/0x250
[  765.376125][T15191]  ? __pfx____ratelimit+0x10/0x10
[  765.376152][T15191]  ? __pfx_dump_stack_lvl+0x10/0x10
[  765.376182][T15191]  ? __pfx__printk+0x10/0x10
[  765.376206][T15191]  ? __pfx___might_resched+0x10/0x10
[  765.376228][T15191]  ? fs_reclaim_acquire+0x7d/0x100
[  765.376262][T15191]  should_fail_ex+0x414/0x560
[  765.376310][T15191]  should_failslab+0xa8/0x100
[  765.376335][T15191]  __kmalloc_noprof+0xcb/0x4f0
[  765.376357][T15191]  ? extract_hostname+0xdc/0x190
[  765.376388][T15191]  extract_hostname+0xdc/0x190
[  765.376418][T15191]  smb3_fs_context_parse_param+0x5700/0x7e30
[  765.376454][T15191]  ? __pfx___mutex_lock+0x10/0x10
[  765.376488][T15191]  ? __pfx_smb3_fs_context_parse_param+0x10/0x10
[  765.376525][T15191]  ? static_key_count+0x41/0x70
[  765.376548][T15191]  vfs_parse_fs_param+0x1a6/0x420
[  765.376577][T15191]  __se_sys_fsconfig+0x78e/0x8d0
[  765.376632][T15191]  ? __pfx___se_sys_fsconfig+0x10/0x10
[  765.376660][T15191]  ? ksys_write+0x22a/0x250
[  765.376687][T15191]  ? __pfx_ksys_write+0x10/0x10
[  765.376705][T15191]  ? rcu_is_watching+0x15/0xb0
[  765.376732][T15191]  ? do_syscall_64+0xbe/0x3b0
[  765.376783][T15191]  ? __x64_sys_fsconfig+0x20/0xc0
[  765.376820][T15191]  do_syscall_64+0xfa/0x3b0
[  765.376856][T15191]  ? lockdep_hardirqs_on+0x9c/0x150
[  765.376891][T15191]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  765.376916][T15191]  ? clear_bhb_loop+0x60/0xb0
[  765.376946][T15191]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  765.376971][T15191] RIP: 0033:0x7fc36f58e929
[  765.376993][T15191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  765.377016][T15191] RSP: 002b:00007fc3704a8038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  765.377043][T15191] RAX: ffffffffffffffda RBX: 00007fc36f7b5fa0 RCX: 00007fc36f58e929
[  765.377061][T15191] RDX: 0000200000000080 RSI: 0000000000000001 RDI: 0000000000000003
[  765.377078][T15191] RBP: 00007fc3704a8090 R08: 0000000000000000 R09: 0000000000000000
[  765.377093][T15191] R10: 0000200000000240 R11: 0000000000000246 R12: 0000000000000002
[  765.377109][T15191] R13: 0000000000000000 R14: 00007fc36f7b5fa0 R15: 00007fc36f8dfa28
[  765.377147][T15191]  </TASK>
[  765.377465][T15191] CIFS: VFS: Cannot extract hostname from UNC string
[  765.628379][T13192] usb 3-1: New USB device found, idVendor=129b, idProduct=160c, bcdDevice=1b.d8
[  765.654362][T13192] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  765.668454][T13192] usb 3-1: Product: syz
[  765.672716][T13192] usb 3-1: Manufacturer: syz
[  765.678002][T13192] usb 3-1: SerialNumber: syz
[  765.783119][T15193] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2677'.
[  765.822136][T15193] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  765.850392][T15193] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  765.918704][T15128] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  765.971076][T15128] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  765.998080][T15198] libceph: resolve '40' (ret=-3): failed
[  766.009278][T15128] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  766.009761][T15187] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  766.045976][T15128] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  766.051582][T15187] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  766.112999][T15201] openvswitch: netlink: IPv4 tunnel dst address is zero
[  766.137151][T15201] syzkaller0: tun_chr_ioctl cmd 1074025677
[  766.153786][T15201] syzkaller0: linktype set to 774
[  766.263950][T15128] 8021q: adding VLAN 0 to HW filter on device bond0
[  766.329547][T15128] 8021q: adding VLAN 0 to HW filter on device team0
[  766.338601][T15206] ptrace attach of "./syz-executor exec"[5854] was attempted by "./syz-executor exec"[15206]
[  766.403941][T11198] bridge0: port 1(bridge_slave_0) entered blocking state
[  766.412248][T11198] bridge0: port 1(bridge_slave_0) entered forwarding state
[  766.414415][T13192] usb 3-1: Could not find all expected endpoints
[  766.487534][T11198] bridge0: port 2(bridge_slave_1) entered blocking state
[  766.494713][T11198] bridge0: port 2(bridge_slave_1) entered forwarding state
[  766.537775][T13192] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  766.558781][T13192] usb 3-1: MIDIStreaming interface descriptor not found
[  766.638160][T15217] netlink: 'syz.3.2680': attribute type 2 has an invalid length.
[  766.791470][T13192] usb 3-1: USB disconnect, device number 127
[  767.023751][   T51] Bluetooth: hci5: command tx timeout
[  767.025512][T15128] 8021q: adding VLAN 0 to HW filter on device batadv0
[  767.170208][T15128] veth0_vlan: entered promiscuous mode
[  767.212563][T15128] veth1_vlan: entered promiscuous mode
[  767.386137][T15128] veth0_macvtap: entered promiscuous mode
[  767.429765][T15128] veth1_macvtap: entered promiscuous mode
[  767.629292][T15128] batman_adv: batadv0: Interface activated: batadv_slave_0
[  767.668930][T15128] batman_adv: batadv0: Interface activated: batadv_slave_1
[  767.709496][T15128] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  767.819388][T15128] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  768.120894][T15128] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  768.130765][T15128] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  768.230783][T15244] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  768.277729][T15244] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  768.462295][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  768.556224][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  768.736444][ T1155] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  768.750364][ T1155] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  768.860931][T15248] loop6: detected capacity change from 0 to 524287999
[  769.105947][   T51] Bluetooth: hci5: command tx timeout
[  769.233996][T13193] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  769.290930][T15251] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  769.363843][T15251] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  769.405360][T13193] usb 5-1: Using ep0 maxpacket: 16
[  769.413066][T13193] usb 5-1: config 0 has an invalid interface number: 251 but max is 0
[  769.427756][T13193] usb 5-1: config 0 has no interface number 0
[  769.434811][T13193] usb 5-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  769.448795][T13193] usb 5-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  769.479772][T13193] usb 5-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  769.492877][T13193] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  769.501222][T13193] usb 5-1: Product: syz
[  769.510161][T13193] usb 5-1: Manufacturer: syz
[  769.520648][T13193] usb 5-1: SerialNumber: syz
[  769.540493][T13193] usb 5-1: config 0 descriptor??
[  769.560563][T15248] raw-gadget.3 gadget.4: fail, usb_ep_enable returned -22
[  769.574368][T15248] raw-gadget.3 gadget.4: fail, usb_ep_enable returned -22
[  770.731805][T15256] kernel read not supported for file /½ lhObíñ~å
Ñhþµ�“3ž�JÇÈyûxÐîÃüv÷Lª=QäRúnÁ·FGr‚¥ò�qðςû~QV7¶·"qHá—Éd0�ú†øˆ¹‰ý%NnyµƒÝD (pid: 15256 comm: syz.1.2690)
[  770.749546][   T30] audit: type=1800 audit(1749078268.627:844): pid=15256 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2690" name=BD16206C684F62EDF17EE501D168FEB51D9093339E8F064AC7C879FB78D0EEC3FC76F74CAA3D51E452FA6EC1B746477282A5F28F71F0CF82C3BB7E517F567F37B6B7227148E11197C964309DFA86F888B989FD254E6E79B503831CDD4402 dev="mqueue" ino=64871 res=0 errno=0
[  770.788985][   T30] audit: type=1804 audit(1749078268.627:845): pid=15256 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2690" name=BD16206C684F62EDF17EE501D168FEB51D9093339E8F064AC7C879FB78D0EEC3FC76F74CAA3D51E452FA6EC1B746477282A5F28F71F0CF82C3BB7E517F567F37B6B7227148E11197C964309DFA86F888B989FD254E6E79B503831CDD4402 dev="mqueue" ino=64871 res=1 errno=0
[  771.339939][T15267] netlink: 'syz.1.2693': attribute type 2 has an invalid length.
[  771.448530][T15273] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2695'.
[  771.946558][T13193] asix 5-1:0.251: probe with driver asix failed with error -71
[  771.979108][T15286] IPv6: sit3: Disabled Multicast RS
[  772.030964][T13193] usb 5-1: USB disconnect, device number 20
[  772.048557][T15286] sit3: entered allmulticast mode
[  772.377590][T15283] batman_adv: batadv0: Adding interface: dummy0
[  772.403641][T15283] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  772.439876][T15283] batman_adv: batadv0: Interface activated: dummy0
[  772.517735][T15289] batadv0: mtu less than device minimum
[  772.550736][T15289] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  772.563134][T15289] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  772.575141][T15289] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  772.587228][T15289] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  772.599211][T15289] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  772.611139][T15289] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  772.623127][T15289] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  772.634579][T15289] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  772.646640][T15289] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  772.849635][T15291] netdevsim netdevsim0: Direct firmware load for ..€ failed with error -2
[  772.867268][T15291] netdevsim netdevsim0: Falling back to sysfs fallback for: ..€
[  773.107000][T15304] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2704'.
[  773.234258][T13183] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  773.423366][T13183] usb 5-1: Using ep0 maxpacket: 32
[  773.460149][T13183] usb 5-1: config 0 has no interfaces?
[  773.485115][T13183] usb 5-1: New USB device found, idVendor=0b95, idProduct=7e2b, bcdDevice=c4.04
[  773.507394][T13183] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  773.533333][T13183] usb 5-1: Product: syz
[  773.537707][T13183] usb 5-1: Manufacturer: syz
[  773.557841][T13183] usb 5-1: SerialNumber: syz
[  773.582912][T13183] usb 5-1: config 0 descriptor??
[  773.788279][T15323] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  773.798587][T15323] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  773.823119][T15323] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  773.850239][T15323] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  773.864228][T15323] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  773.874194][T15323] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  774.003604][T13193] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  774.154828][T13193] usb 3-1: device descriptor read/64, error -71
[  774.161249][T13116] usb 2-1: new full-speed USB device number 114 using dummy_hcd
[  774.420350][T13193] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  774.573677][T13193] usb 3-1: device descriptor read/64, error -71
[  774.693931][T13193] usb usb3-port1: attempt power cycle
[  774.738098][   T30] audit: type=1326 audit(1749078272.617:846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15332 comm="syz.0.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f923a58e929 code=0x7ffc0000
[  774.816598][   T30] audit: type=1326 audit(1749078272.617:847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15332 comm="syz.0.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f923a58e929 code=0x7ffc0000
[  775.069810][   T30] audit: type=1326 audit(1749078272.617:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15332 comm="syz.0.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f923a58e929 code=0x7ffc0000
[  775.097288][T13193] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  775.111061][   T30] audit: type=1326 audit(1749078272.617:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15332 comm="syz.0.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f923a58e929 code=0x7ffc0000
[  775.150185][T13116] usb 2-1: unable to get BOS descriptor or descriptor too short
[  775.160958][T13193] usb 3-1: device descriptor read/8, error -71
[  775.170201][   T30] audit: type=1326 audit(1749078272.617:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15332 comm="syz.0.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f923a58e929 code=0x7ffc0000
[  775.194918][T13116] usb 2-1: unable to read config index 0 descriptor/start: -71
[  775.203054][T13116] usb 2-1: can't read configurations, error -71
[  775.271236][T15341] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  775.292006][T15341] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  775.413333][T13193] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  775.447962][T13193] usb 3-1: device descriptor read/8, error -71
[  775.457296][T15343] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  775.474529][T15343] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  775.584550][T13193] usb usb3-port1: unable to enumerate USB device
[  776.139197][T13196] usb 5-1: USB disconnect, device number 21
[  776.273476][T13116] usb 2-1: new high-speed USB device number 115 using dummy_hcd
[  776.445613][T15358] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  776.483928][T15358] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  776.567981][   T30] audit: type=1326 audit(1749078274.447:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15363 comm="syz.0.2726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f923a58e929 code=0x7ffc0000
[  776.664943][T13116] usb 2-1: config 0 has no interfaces?
[  776.690601][T15362] FAULT_INJECTION: forcing a failure.
[  776.690601][T15362] name failslab, interval 1, probability 0, space 0, times 0
[  776.714916][T15362] CPU: 0 UID: 0 PID: 15362 Comm: syz.4.2725 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  776.714956][T15362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  776.714969][T15362] Call Trace:
[  776.714977][T15362]  <TASK>
[  776.714989][T15362]  dump_stack_lvl+0x189/0x250
[  776.715028][T15362]  ? __pfx____ratelimit+0x10/0x10
[  776.715057][T15362]  ? __pfx_dump_stack_lvl+0x10/0x10
[  776.715086][T15362]  ? __pfx__printk+0x10/0x10
[  776.715110][T15362]  ? __pfx___might_resched+0x10/0x10
[  776.715125][T15362]  ? fs_reclaim_acquire+0x7d/0x100
[  776.715148][T15362]  should_fail_ex+0x414/0x560
[  776.715177][T15362]  should_failslab+0xa8/0x100
[  776.715215][T15362]  __kmalloc_noprof+0xcb/0x4f0
[  776.715232][T15362]  ? io_cache_alloc_new+0x40/0x100
[  776.715250][T15362]  ? __lock_acquire+0xab9/0xd20
[  776.715277][T15362]  io_cache_alloc_new+0x40/0x100
[  776.715310][T15362]  __io_prep_rw+0x23f/0xd80
[  776.715340][T15362]  ? __pfx___io_prep_rw+0x10/0x10
[  776.715361][T15362]  ? percpu_ref_get_many+0x21/0x1e0
[  776.715382][T15362]  ? percpu_ref_get_many+0x21/0x1e0
[  776.715406][T15362]  ? io_nop+0x185/0x370
[  776.715427][T15362]  io_prep_rwv+0x8c/0x3d0
[  776.715451][T15362]  ? __pfx_io_prep_rwv+0x10/0x10
[  776.715480][T15362]  ? io_issue_sqe+0x57e/0xfd0
[  776.715509][T15362]  io_submit_sqes+0x90c/0x1c50
[  776.715554][T15362]  __se_sys_io_uring_enter+0x2df/0x2b20
[  776.715592][T15362]  ? ksys_write+0x1cb/0x250
[  776.715610][T15362]  ? __pfx___se_sys_io_uring_enter+0x10/0x10
[  776.715632][T15362]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  776.715657][T15362]  ? __pfx_vfs_write+0x10/0x10
[  776.715674][T15362]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  776.715702][T15362]  ? __fget_files+0x3a0/0x420
[  776.715726][T15362]  ? fput+0xa0/0xd0
[  776.715749][T15362]  ? ksys_write+0x22a/0x250
[  776.715765][T15362]  ? __pfx_ksys_write+0x10/0x10
[  776.715797][T15362]  ? rcu_is_watching+0x15/0xb0
[  776.715818][T15362]  ? __x64_sys_io_uring_enter+0x21/0xf0
[  776.715847][T15362]  do_syscall_64+0xfa/0x3b0
[  776.715872][T15362]  ? lockdep_hardirqs_on+0x9c/0x150
[  776.715907][T15362]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  776.715923][T15362]  ? clear_bhb_loop+0x60/0xb0
[  776.715942][T15362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  776.715957][T15362] RIP: 0033:0x7f6c42d8e929
[  776.715972][T15362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  776.715986][T15362] RSP: 002b:00007f6c43cb9038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  776.716004][T15362] RAX: ffffffffffffffda RBX: 00007f6c42fb5fa0 RCX: 00007f6c42d8e929
[  776.716016][T15362] RDX: 0000000000000000 RSI: 00000000000047ba RDI: 0000000000000005
[  776.716026][T15362] RBP: 00007f6c43cb9090 R08: 0000000000000000 R09: 0000000000000000
[  776.716036][T15362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  776.716064][T15362] R13: 0000000000000000 R14: 00007f6c42fb5fa0 R15: 00007f6c430dfa28
[  776.716089][T15362]  </TASK>
[  777.077481][T13116] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  777.087363][T13116] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  777.103627][T13116] usb 2-1: Product: syz
[  777.107858][T13116] usb 2-1: Manufacturer: syz
[  777.112493][T13116] usb 2-1: SerialNumber: syz
[  777.120131][T13116] usb 2-1: config 0 descriptor??
[  777.375695][T15371] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2727'.
[  777.399108][   T30] audit: type=1326 audit(1749078274.447:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15363 comm="syz.0.2726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f923a58e929 code=0x7ffc0000
[  777.429910][   T30] audit: type=1326 audit(1749078274.447:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15363 comm="syz.0.2726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f923a58e929 code=0x7ffc0000
[  777.479310][T15372] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  777.489448][T15372] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  777.520349][   T30] audit: type=1326 audit(1749078274.447:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15363 comm="syz.0.2726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f923a58e929 code=0x7ffc0000
[  777.567580][   T30] audit: type=1326 audit(1749078274.447:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15363 comm="syz.0.2726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f923a58e929 code=0x7ffc0000
[  777.641521][   T30] audit: type=1326 audit(1749078274.447:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15363 comm="syz.0.2726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f923a58e929 code=0x7ffc0000
[  777.817021][T15381] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  777.846952][T15381] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  778.828624][T13192] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  778.997958][T13192] usb 3-1: config 36 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  779.019145][T13192] usb 3-1: config 36 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  779.032167][T13192] usb 3-1: config 36 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 58229, setting to 1024
[  779.046850][T13192] usb 3-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=3d.29
[  779.056751][T13192] usb 3-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[  779.065958][T13192] usb 3-1: Manufacturer: syz
[  779.071917][T13192] usb 3-1: SerialNumber: syz
[  779.123502][T13196] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  779.293374][T13196] usb 5-1: Using ep0 maxpacket: 32
[  779.311285][T13196] usb 5-1: config 7 has an invalid interface number: 154 but max is 0
[  779.320376][T13196] usb 5-1: config 7 has no interface number 0
[  779.337441][T13192] yealink 3-1:36.0: invalid payload size 1024, expected 16
[  779.340104][T13196] usb 5-1: New USB device found, idVendor=0b95, idProduct=7e2b, bcdDevice=c4.04
[  779.351968][T13192] input: Yealink usb-p1k as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:36.0/input/input32
[  779.378672][    C0] yealink 3-1:36.0: urb_ctl_callback - urb status -71
[  779.379421][T13196] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  779.385773][    C0] yealink 3-1:36.0: urb_ctl_callback - urb status -71
[  779.401268][T13196] usb 5-1: Product: syz
[  779.402579][    C0] yealink 3-1:36.0: urb_ctl_callback - urb status -71
[  779.413236][    C0] yealink 3-1:36.0: urb_ctl_callback - urb status -71
[  779.420384][    C0] yealink 3-1:36.0: urb_ctl_callback - urb status -71
[  779.428533][    C0] yealink 3-1:36.0: urb_ctl_callback - urb status -71
[  779.436735][    C0] yealink 3-1:36.0: urb_ctl_callback - urb status -71
[  779.447083][T13196] usb 5-1: Manufacturer: syz
[  779.449129][    C0] yealink 3-1:36.0: urb_ctl_callback - urb status -71
[  779.459407][    C0] yealink 3-1:36.0: urb_irq_callback - urb status -71
[  779.466209][    C0] yealink 3-1:36.0: unexpected response 0
[  779.472345][T13192] usb 3-1: USB disconnect, device number 6
[  779.478460][    C0] yealink 3-1:36.0: urb_ctl_callback - urb status -71
[  779.478476][    C0] yealink 3-1:36.0: urb_ctl_callback - usb_submit_urb failed -19
[  779.517841][T13196] usb 5-1: SerialNumber: syz
[  779.945676][T13192] usb 2-1: USB disconnect, device number 115
[  779.991335][T15403] FAULT_INJECTION: forcing a failure.
[  779.991335][T15403] name failslab, interval 1, probability 0, space 0, times 0
[  780.080799][T15403] CPU: 1 UID: 0 PID: 15403 Comm: syz.3.2736 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  780.080836][T15403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  780.080851][T15403] Call Trace:
[  780.080861][T15403]  <TASK>
[  780.080871][T15403]  dump_stack_lvl+0x189/0x250
[  780.080912][T15403]  ? __pfx____ratelimit+0x10/0x10
[  780.080945][T15403]  ? __pfx_dump_stack_lvl+0x10/0x10
[  780.080980][T15403]  ? __pfx__printk+0x10/0x10
[  780.081011][T15403]  ? __pfx___might_resched+0x10/0x10
[  780.081032][T15403]  ? fs_reclaim_acquire+0x7d/0x100
[  780.081065][T15403]  should_fail_ex+0x414/0x560
[  780.081117][T15403]  should_failslab+0xa8/0x100
[  780.081143][T15403]  __kmalloc_cache_noprof+0x70/0x3d0
[  780.081164][T15403]  ? fuse_lookup_name+0x1b5/0x860
[  780.081195][T15403]  fuse_lookup_name+0x1b5/0x860
[  780.081235][T15403]  ? __pfx_fuse_lookup_name+0x10/0x10
[  780.081261][T15403]  ? fuse_lock_inode+0xd3/0x120
[  780.081298][T15403]  ? percpu_ref_get_many+0x19/0x140
[  780.081341][T15403]  fuse_lookup+0x1e9/0x640
[  780.081376][T15403]  ? __pfx_fuse_lookup+0x10/0x10
[  780.081420][T15403]  ? _raw_spin_unlock+0x28/0x50
[  780.081455][T15403]  ? d_alloc+0x144/0x190
[  780.081487][T15403]  lookup_one_qstr_excl_raw+0x118/0x280
[  780.081522][T15403]  do_renameat2+0x470/0xc50
[  780.081566][T15403]  ? __pfx_do_renameat2+0x10/0x10
[  780.081602][T15403]  ? strncpy_from_user+0x150/0x290
[  780.081638][T15403]  ? getname_flags+0x1e5/0x540
[  780.081668][T15403]  __x64_sys_rename+0x82/0x90
[  780.081693][T15403]  do_syscall_64+0xfa/0x3b0
[  780.081724][T15403]  ? lockdep_hardirqs_on+0x9c/0x150
[  780.081756][T15403]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  780.081777][T15403]  ? clear_bhb_loop+0x60/0xb0
[  780.081805][T15403]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  780.081826][T15403] RIP: 0033:0x7f2edad8e929
[  780.081845][T15403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  780.081864][T15403] RSP: 002b:00007f2edbc0c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  780.081889][T15403] RAX: ffffffffffffffda RBX: 00007f2edafb6160 RCX: 00007f2edad8e929
[  780.081905][T15403] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: 0000200000000100
[  780.081920][T15403] RBP: 00007f2edbc0c090 R08: 0000000000000000 R09: 0000000000000000
[  780.081934][T15403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  780.081947][T15403] R13: 0000000000000000 R14: 00007f2edafb6160 R15: 00007f2edb0dfa28
[  780.081981][T15403]  </TASK>
[  780.419424][T15407] xt_TPROXY: Can be used only with -p tcp or -p udp
[  780.476644][T15407] netlink: 140 bytes leftover after parsing attributes in process `syz.2.2739'.
[  780.670113][   T30] audit: type=1326 audit(1749078278.547:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15405 comm="syz.1.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36f58e929 code=0x7ffc0000
[  780.723348][T15416] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2741'.
[  780.757153][T15416] unsupported nla_type 2048
[  780.946000][   T30] audit: type=1326 audit(1749078278.547:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15405 comm="syz.1.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36f58e929 code=0x7ffc0000
[  781.209299][   T30] audit: type=1326 audit(1749078278.577:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15405 comm="syz.1.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc36f58e929 code=0x7ffc0000
[  781.318294][   T30] audit: type=1326 audit(1749078278.587:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15405 comm="syz.1.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36f58e929 code=0x7ffc0000
[  781.777052][   T30] audit: type=1326 audit(1749078278.587:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15405 comm="syz.1.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36f58e929 code=0x7ffc0000
[  781.804965][   T30] audit: type=1326 audit(1749078278.587:862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15405 comm="syz.1.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc36f58e929 code=0x7ffc0000
[  781.833866][   T30] audit: type=1326 audit(1749078278.587:863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15405 comm="syz.1.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36f58e929 code=0x7ffc0000
[  781.863461][   T30] audit: type=1326 audit(1749078278.587:864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15405 comm="syz.1.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36f58e929 code=0x7ffc0000
[  782.637850][T13196] asix 5-1:7.154 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  782.658290][T13196] asix 5-1:7.154: probe with driver asix failed with error -71
[  782.674230][T15437] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2746'.
[  782.708587][T15439] netdevsim netdevsim0: Direct firmware load for ..€ failed with error -2
[  782.728879][T15439] netdevsim netdevsim0: Falling back to sysfs fallback for: ..€
[  782.757871][T13196] usb 5-1: USB disconnect, device number 22
[  784.753292][   T30] audit: type=1326 audit(1749078282.617:865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15461 comm="syz.4.2752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c42d8e929 code=0x7ffc0000
[  784.826239][   T30] audit: type=1326 audit(1749078282.617:866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15461 comm="syz.4.2752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c42d8e929 code=0x7ffc0000
[  784.969050][   T30] audit: type=1326 audit(1749078282.617:867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15461 comm="syz.4.2752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6c42d8e929 code=0x7ffc0000
[  785.059042][   T30] audit: type=1326 audit(1749078282.617:868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15461 comm="syz.4.2752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c42d8e929 code=0x7ffc0000
[  785.163368][   T30] audit: type=1326 audit(1749078282.617:869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15461 comm="syz.4.2752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c42d8e929 code=0x7ffc0000
[  785.234748][T15471] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  785.260193][T15471] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  785.264039][   T30] audit: type=1326 audit(1749078282.627:870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15461 comm="syz.4.2752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6c42d8e929 code=0x7ffc0000
[  785.563859][T13196] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  785.774375][T13196] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  785.785862][T13196] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  785.856852][T13196] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  786.112387][T13196] usb 3-1: config 0 descriptor??
[  786.303337][T13192] usb 2-1: new high-speed USB device number 116 using dummy_hcd
[  786.329258][T13196] usbhid 3-1:0.0: can't add hid device: -71
[  786.337339][T13196] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  786.430935][T13196] usb 3-1: USB disconnect, device number 7
[  786.534644][T13192] usb 2-1: config 0 has no interfaces?
[  787.163776][T13192] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  787.172965][T13192] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  787.206691][T13192] usb 2-1: Product: syz
[  787.218799][T13192] usb 2-1: Manufacturer: syz
[  787.230426][T13192] usb 2-1: config 0 descriptor??
[  787.383620][T13196] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  787.556180][T13196] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  787.577604][T13196] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  787.626644][T13196] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  787.674609][T13196] usb 3-1: config 0 descriptor??
[  787.778237][T15491] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  787.788985][T15491] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  787.847891][T15491] program syz.0.2762 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  788.051534][T13182] usb 2-1: USB disconnect, device number 116
[  788.549056][T15496] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  788.774198][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  788.774217][   T30] audit: type=1326 audit(1749078286.657:873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15497 comm="syz.3.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2edad8e929 code=0x7ffc0000
[  788.815592][T13196] usbhid 3-1:0.0: can't add hid device: -71
[  788.821732][T13196] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  788.904604][T13196] usb 3-1: USB disconnect, device number 8
[  788.908507][   T30] audit: type=1326 audit(1749078286.657:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15497 comm="syz.3.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2edad8e929 code=0x7ffc0000
[  789.011531][   T30] audit: type=1326 audit(1749078286.657:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15497 comm="syz.3.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2edad8e929 code=0x7ffc0000
[  789.117150][   T30] audit: type=1326 audit(1749078286.657:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15497 comm="syz.3.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2edad8e929 code=0x7ffc0000
[  789.154362][   T30] audit: type=1326 audit(1749078286.657:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15497 comm="syz.3.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2edad8e929 code=0x7ffc0000
[  789.188866][   T30] audit: type=1326 audit(1749078286.657:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15497 comm="syz.3.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2edad8e929 code=0x7ffc0000
[  789.328839][T15506] FAULT_INJECTION: forcing a failure.
[  789.328839][T15506] name failslab, interval 1, probability 0, space 0, times 0
[  789.344043][T13192] usb 2-1: new high-speed USB device number 117 using dummy_hcd
[  789.358934][T15506] CPU: 1 UID: 0 PID: 15506 Comm: syz.4.2767 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  789.358962][T15506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  789.358972][T15506] Call Trace:
[  789.358978][T15506]  <TASK>
[  789.358985][T15506]  dump_stack_lvl+0x189/0x250
[  789.359011][T15506]  ? __pfx____ratelimit+0x10/0x10
[  789.359031][T15506]  ? __pfx_dump_stack_lvl+0x10/0x10
[  789.359053][T15506]  ? __pfx__printk+0x10/0x10
[  789.359071][T15506]  ? __pfx___might_resched+0x10/0x10
[  789.359087][T15506]  should_fail_ex+0x414/0x560
[  789.359112][T15506]  should_failslab+0xa8/0x100
[  789.359129][T15506]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  789.359144][T15506]  ? __alloc_skb+0x112/0x2d0
[  789.359166][T15506]  __alloc_skb+0x112/0x2d0
[  789.359184][T15506]  netlink_sendmsg+0x5c6/0xb30
[  789.359207][T15506]  ? __pfx_netlink_sendmsg+0x10/0x10
[  789.359225][T15506]  ? aa_sock_msg_perm+0x94/0x160
[  789.359266][T15506]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  789.359305][T15506]  ? __pfx_netlink_sendmsg+0x10/0x10
[  789.359323][T15506]  __sock_sendmsg+0x219/0x270
[  789.359356][T15506]  ____sys_sendmsg+0x505/0x830
[  789.359389][T15506]  ? __pfx_____sys_sendmsg+0x10/0x10
[  789.359427][T15506]  ? import_iovec+0x74/0xa0
[  789.359460][T15506]  ___sys_sendmsg+0x21f/0x2a0
[  789.359481][T15506]  ? __pfx____sys_sendmsg+0x10/0x10
[  789.359526][T15506]  ? __fget_files+0x2a/0x420
[  789.359546][T15506]  ? __fget_files+0x3a0/0x420
[  789.359571][T15506]  __x64_sys_sendmsg+0x19b/0x260
[  789.359593][T15506]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  789.359619][T15506]  ? __pfx_ksys_write+0x10/0x10
[  789.359633][T15506]  ? rcu_is_watching+0x15/0xb0
[  789.359651][T15506]  ? do_syscall_64+0xbe/0x3b0
[  789.359676][T15506]  do_syscall_64+0xfa/0x3b0
[  789.359698][T15506]  ? lockdep_hardirqs_on+0x9c/0x150
[  789.359719][T15506]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  789.359734][T15506]  ? clear_bhb_loop+0x60/0xb0
[  789.359753][T15506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  789.359768][T15506] RIP: 0033:0x7f6c42d8e929
[  789.359781][T15506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  789.359802][T15506] RSP: 002b:00007f6c43cb9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  789.359818][T15506] RAX: ffffffffffffffda RBX: 00007f6c42fb5fa0 RCX: 00007f6c42d8e929
[  789.359830][T15506] RDX: 0000000000044080 RSI: 0000200000000040 RDI: 0000000000000003
[  789.359840][T15506] RBP: 00007f6c43cb9090 R08: 0000000000000000 R09: 0000000000000000
[  789.359851][T15506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  789.359860][T15506] R13: 0000000000000000 R14: 00007f6c42fb5fa0 R15: 00007f6c430dfa28
[  789.359883][T15506]  </TASK>
[  789.630543][    C1] vkms_vblank_simulate: vblank timer overrun
[  789.713666][T13192] usb 2-1: Using ep0 maxpacket: 16
[  789.736775][T15508] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2769'.
[  789.774255][T13192] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  789.801666][T13192] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  789.979317][T13192] usb 2-1: New USB device found, idVendor=1e71, idProduct=170e, bcdDevice= 0.00
[  790.049503][T13192] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  790.086658][T13192] usb 2-1: config 0 descriptor??
[  790.211436][T15520] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2773'.
[  790.222861][T15520] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: invalid value (0)
[  790.235199][T15520] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: allowed values 1 - 65535
[  790.538372][T15500] geneve2: entered promiscuous mode
[  790.587933][T15527] xt_CT: You must specify a L4 protocol and not use inversions on it
[  791.043442][T13182] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  791.169331][T15537] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  791.169936][T15537] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  791.176207][T15537] FAULT_INJECTION: forcing a failure.
[  791.176207][T15537] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  791.222398][T13182] usb 3-1: config 0 has no interfaces?
[  791.244403][T13182] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  791.244439][T13182] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  791.244464][T13182] usb 3-1: Product: syz
[  791.244483][T13182] usb 3-1: Manufacturer: syz
[  791.247746][T13182] usb 3-1: config 0 descriptor??
[  791.249532][T15537] CPU: 1 UID: 0 PID: 15537 Comm: syz.3.2777 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  791.249567][T15537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  791.249581][T15537] Call Trace:
[  791.249591][T15537]  <TASK>
[  791.249601][T15537]  dump_stack_lvl+0x189/0x250
[  791.249642][T15537]  ? __pfx____ratelimit+0x10/0x10
[  791.249674][T15537]  ? __pfx_dump_stack_lvl+0x10/0x10
[  791.249709][T15537]  ? __pfx__printk+0x10/0x10
[  791.249746][T15537]  should_fail_ex+0x414/0x560
[  791.249781][T15537]  ? __pfx_snd_pcm_timer_resolution+0x10/0x10
[  791.249815][T15537]  _copy_to_user+0x31/0xb0
[  791.249842][T15537]  ? __pfx_snd_pcm_timer_resolution+0x10/0x10
[  791.249875][T15537]  __snd_timer_user_ioctl+0x1e62/0x3ff0
[  791.249914][T15537]  ? kasan_quarantine_put+0xdd/0x220
[  791.249956][T15537]  ? __pfx___snd_timer_user_ioctl+0x10/0x10
[  791.249992][T15537]  ? __lock_acquire+0xab9/0xd20
[  791.250034][T15537]  ? __mutex_trylock_common+0x153/0x260
[  791.250061][T15537]  ? __pfx___mutex_trylock_common+0x10/0x10
[  791.250090][T15537]  ? rcu_is_watching+0x15/0xb0
[  791.250111][T15537]  ? trace_contention_end+0x39/0x120
[  791.250136][T15537]  ? __mutex_lock+0x330/0xe80
[  791.250169][T15537]  ? __lock_acquire+0xab9/0xd20
[  791.250208][T15537]  ? snd_timer_user_ioctl+0x4b/0x80
[  791.250244][T15537]  ? __pfx___mutex_lock+0x10/0x10
[  791.250290][T15537]  ? __fget_files+0x2a/0x420
[  791.250315][T15537]  ? __fget_files+0x3a0/0x420
[  791.250349][T15537]  ? __fget_files+0x2a/0x420
[  791.250376][T15537]  ? __pfx_snd_timer_user_ioctl+0x10/0x10
[  791.250411][T15537]  snd_timer_user_ioctl+0x5a/0x80
[  791.250448][T15537]  __se_sys_ioctl+0xf9/0x170
[  791.250486][T15537]  do_syscall_64+0xfa/0x3b0
[  791.250517][T15537]  ? lockdep_hardirqs_on+0x9c/0x150
[  791.250547][T15537]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  791.250570][T15537]  ? clear_bhb_loop+0x60/0xb0
[  791.250597][T15537]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  791.250618][T15537] RIP: 0033:0x7f2edad8e929
[  791.250637][T15537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  791.250657][T15537] RSP: 002b:00007f2edbc4e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  791.250692][T15537] RAX: ffffffffffffffda RBX: 00007f2edafb5fa0 RCX: 00007f2edad8e929
[  791.250708][T15537] RDX: 00002000000004c0 RSI: 0000000080e85411 RDI: 000000000000000a
[  791.250723][T15537] RBP: 00007f2edbc4e090 R08: 0000000000000000 R09: 0000000000000000
[  791.250736][T15537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  791.250749][T15537] R13: 0000000000000000 R14: 00007f2edafb5fa0 R15: 00007f2edb0dfa28
[  791.250781][T15537]  </TASK>
[  791.585113][T13182] usb 3-1: USB disconnect, device number 9
[  791.861206][T13192] usbhid 2-1:0.0: can't add hid device: -71
[  791.875772][T13192] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  791.888878][T15547] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  791.926490][T13192] usb 2-1: USB disconnect, device number 117
[  791.940346][T15547] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  792.062051][T15546] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2781'.
[  792.086230][T15553] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  792.099198][T15553] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  792.403455][T15561] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  792.431716][T15561] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  792.943706][T13192] usb 2-1: new high-speed USB device number 118 using dummy_hcd
[  793.123880][T13192] usb 2-1: Using ep0 maxpacket: 16
[  793.141857][T13192] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 8
[  793.435589][T13192] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  793.446732][T13192] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  793.480622][T13192] usb 2-1: Product: syz
[  793.493613][T13192] usb 2-1: Manufacturer: syz
[  793.504045][T13192] usb 2-1: SerialNumber: syz
[  793.530058][T13192] usb 2-1: config 0 descriptor??
[  793.550214][T13192] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected
[  793.562524][T13192] usb 2-1: Detected FT232R
[  793.748416][T13192] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  793.783592][T13192] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  793.811090][T13192] ftdi_sio 2-1:0.0: GPIO initialisation failed: -71
[  793.861811][T13192] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  793.923039][T13192] usb 2-1: USB disconnect, device number 118
[  793.970789][T13192] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  794.017610][T13192] ftdi_sio 2-1:0.0: device disconnected
[  795.043349][T13192] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  795.153304][T13193] usb 2-1: new high-speed USB device number 119 using dummy_hcd
[  795.219921][T13192] usb 3-1: config 0 has no interfaces?
[  795.235161][T13192] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  795.244612][T13192] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  795.252731][T13192] usb 3-1: Product: syz
[  795.257502][T13192] usb 3-1: Manufacturer: syz
[  795.262189][T13192] usb 3-1: SerialNumber: syz
[  795.269840][T13192] usb 3-1: config 0 descriptor??
[  795.303545][T13193] usb 2-1: Using ep0 maxpacket: 8
[  795.323026][T13193] usb 2-1: New USB device found, idVendor=0c45, idProduct=613a, bcdDevice=c4.6d
[  795.333441][T13193] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  795.341628][T13193] usb 2-1: Product: syz
[  795.349320][T13193] usb 2-1: Manufacturer: syz
[  795.358925][T13193] usb 2-1: SerialNumber: syz
[  796.035188][T13193] usb 2-1: config 0 descriptor??
[  796.273776][T15611] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  796.314735][T13193] gspca_main: sonixj-2.14.0 probing 0c45:613a
[  796.891267][T15621] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2803'.
[  797.242189][T15602] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  797.255587][T15602] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  797.333649][T15628] FAULT_INJECTION: forcing a failure.
[  797.333649][T15628] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  797.333686][T15628] CPU: 1 UID: 0 PID: 15628 Comm: syz.4.2805 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  797.333705][T15628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  797.333715][T15628] Call Trace:
[  797.333722][T15628]  <TASK>
[  797.333729][T15628]  dump_stack_lvl+0x189/0x250
[  797.333757][T15628]  ? __pfx____ratelimit+0x10/0x10
[  797.333780][T15628]  ? __pfx_dump_stack_lvl+0x10/0x10
[  797.333805][T15628]  ? __pfx__printk+0x10/0x10
[  797.333822][T15628]  ? __might_fault+0xb0/0x130
[  797.333861][T15628]  should_fail_ex+0x414/0x560
[  797.333901][T15628]  _copy_from_user+0x2d/0xb0
[  797.333932][T15628]  ___sys_sendmsg+0x158/0x2a0
[  797.333960][T15628]  ? __pfx____sys_sendmsg+0x10/0x10
[  797.334005][T15628]  ? __fget_files+0x2a/0x420
[  797.334022][T15628]  ? __fget_files+0x3a0/0x420
[  797.334047][T15628]  __x64_sys_sendmsg+0x19b/0x260
[  797.334069][T15628]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  797.334095][T15628]  ? __pfx_ksys_write+0x10/0x10
[  797.334114][T15628]  ? do_syscall_64+0xbe/0x3b0
[  797.334140][T15628]  do_syscall_64+0xfa/0x3b0
[  797.334169][T15628]  ? lockdep_hardirqs_on+0x9c/0x150
[  797.334192][T15628]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  797.334207][T15628]  ? clear_bhb_loop+0x60/0xb0
[  797.334226][T15628]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  797.334241][T15628] RIP: 0033:0x7f6c42d8e929
[  797.334254][T15628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  797.334269][T15628] RSP: 002b:00007f6c43cb9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  797.334285][T15628] RAX: ffffffffffffffda RBX: 00007f6c42fb5fa0 RCX: 00007f6c42d8e929
[  797.334297][T15628] RDX: 0000000000000010 RSI: 0000200000000680 RDI: 0000000000000004
[  797.334307][T15628] RBP: 00007f6c43cb9090 R08: 0000000000000000 R09: 0000000000000000
[  797.334317][T15628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  797.334326][T15628] R13: 0000000000000000 R14: 00007f6c42fb5fa0 R15: 00007f6c430dfa28
[  797.334349][T15628]  </TASK>
[  797.677138][T15629] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  797.677556][T15629] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  797.793432][T13183] usb 5-1: new full-speed USB device number 23 using dummy_hcd
[  797.990303][T13193] usb 3-1: USB disconnect, device number 10
[  798.128458][T13183] usb 5-1: config 8 has an invalid interface number: 223 but max is 0
[  798.141534][T13183] usb 5-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[  798.154905][T13183] usb 5-1: config 8 has no interface number 0
[  798.161521][T13183] usb 5-1: config 8 interface 223 altsetting 0 endpoint 0x7 has invalid maxpacket 512, setting to 64
[  798.173043][T13183] usb 5-1: config 8 interface 223 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  798.189941][T13183] usb 5-1: New USB device found, idVendor=a6da, idProduct=7458, bcdDevice=2d.4d
[  798.209508][T13183] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  798.223346][T13183] usb 5-1: Product: syz
[  798.227732][T13183] usb 5-1: Manufacturer: syz
[  798.241364][T13183] usb 5-1: SerialNumber: syz
[  798.265114][T15645] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 5, id = 0
[  798.398383][T15644] IPVS: stopping backup sync thread 15645 ...
[  798.460402][T15632] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  798.472694][T15632] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  798.515156][T13183] usb 5-1: USB disconnect, device number 23
[  799.072740][T13196] usb 2-1: USB disconnect, device number 119
[  799.179439][T15666] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  799.216649][T15666] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  799.603079][T15678] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  799.622310][T15678] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  799.985118][T13193] usb 2-1: new high-speed USB device number 120 using dummy_hcd
[  800.163519][T13193] usb 2-1: Using ep0 maxpacket: 32
[  800.197094][T13193] usb 2-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  800.229025][T13193] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  800.325391][T13193] usb 2-1: config 0 descriptor??
[  800.561286][T15690] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  800.651455][T15690] macsec1: entered allmulticast mode
[  800.669527][T15690] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[  800.909418][T15690] netdevsim netdevsim4 netdevsim0: left allmulticast mode
[  800.917107][T15690] netdevsim netdevsim4 netdevsim0: left promiscuous mode
[  801.227355][T15698] netdevsim netdevsim3: Direct firmware load for ..€ failed with error -2
[  801.227414][T15698] netdevsim netdevsim3: Falling back to sysfs fallback for: ..€
[  801.553917][T13192] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  801.785705][T13192] usb 5-1: Using ep0 maxpacket: 32
[  801.790520][T13192] usb 5-1: config 0 has an invalid interface number: 151 but max is 0
[  801.790550][T13192] usb 5-1: config 0 has no interface number 0
[  801.973268][T13192] usb 5-1: New USB device found, idVendor=0403, idProduct=e548, bcdDevice=ad.d6
[  801.973303][T13192] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  801.973324][T13192] usb 5-1: Product: syz
[  801.973336][T13192] usb 5-1: Manufacturer: syz
[  801.973348][T13192] usb 5-1: SerialNumber: syz
[  801.995349][T13192] usb 5-1: config 0 descriptor??
[  802.002515][T13192] ftdi_sio 5-1:0.151: FTDI USB Serial Device converter detected
[  802.007826][T13192] ftdi_sio ttyUSB0: unknown device type: 0xadd6
[  802.212041][T15707] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2831'.
[  802.329318][T13192] usb 5-1: USB disconnect, device number 24
[  802.331415][T13192] ftdi_sio 5-1:0.151: device disconnected
[  802.766869][T13193] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  802.825015][T13193] usb 2-1: Direct firmware load for dvb-usb-az6027-03.fw failed with error -2
[  802.871183][T13193] usb 2-1: Falling back to sysfs fallback for: dvb-usb-az6027-03.fw
[  802.997682][T15719] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  803.049070][T15719] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  803.175299][   T30] audit: type=1800 audit(1749078301.047:879): pid=15727 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2837" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[  803.482800][T15736] syz_tun: entered allmulticast mode
[  803.570111][T15736] syz_tun: left allmulticast mode
[  803.731447][T15750] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2844'.
[  803.964471][T15764] netlink: 72 bytes leftover after parsing attributes in process `syz.4.2849'.
[  805.523985][T15789] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  805.532808][T15789] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  805.623471][ T5892] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  805.731510][T15796] netdevsim netdevsim3: Direct firmware load for ..€ failed with error -2
[  805.742967][T15796] netdevsim netdevsim3: Falling back to sysfs fallback for: ..€
[  805.763620][ T5892] usb 5-1: device descriptor read/64, error -71
[  806.003441][ T5892] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  806.143917][ T5892] usb 5-1: device descriptor read/64, error -71
[  806.372130][ T5892] usb usb5-port1: attempt power cycle
[  806.778595][ T5892] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  806.904046][ T5892] usb 5-1: device descriptor read/8, error -71
[  807.046516][T15807] IPVS: set_ctl: invalid protocol: 8 172.20.20.187:20001
[  807.143505][ T5892] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  807.170713][ T5892] usb 5-1: device descriptor read/8, error -71
[  807.379464][ T5892] usb usb5-port1: unable to enumerate USB device
[  807.866840][T15834] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2871'.
[  807.927077][T15834] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  807.938165][T15834] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  807.998214][T15837] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2872'.
[  808.098526][T15841] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2874'.
[  808.547674][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[  808.554316][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[  808.590753][T15858] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2882'.
[  809.571455][T15871] IPVS: set_ctl: invalid protocol: 0 172.20.20.187:20004
[  809.936857][T15867] ptrace attach of "./syz-executor exec"[5855] was attempted by "./syz-executor exec"[15867]
[  810.693491][T13183] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  810.873916][T15885] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3070988179 (3070988179 ns) > initial count (1876204212 ns). Using initial count to start timer.
[  810.894270][T13183] usb 3-1: Using ep0 maxpacket: 32
[  810.907880][T13183] usb 3-1: config 0 has an invalid interface number: 12 but max is 0
[  810.917807][T13183] usb 3-1: config 0 has no interface number 0
[  810.925833][T13183] usb 3-1: config 0 interface 12 has no altsetting 0
[  810.936286][T13183] usb 3-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  810.947241][T13183] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  810.976048][T13183] usb 3-1: Product: syz
[  810.982165][T13183] usb 3-1: Manufacturer: syz
[  810.992962][T13183] usb 3-1: SerialNumber: syz
[  811.353713][T13183] usb 3-1: config 0 descriptor??
[  811.828228][T15880] netlink: 14 bytes leftover after parsing attributes in process `syz.2.2887'.
[  812.686697][T15880] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  813.165580][T15880] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  813.224604][T15880] bond0 (unregistering): Released all slaves
[  813.419039][T13183] f81534 3-1:0.12: f81534_set_register: reg: 1002 data: 3 failed: -71
[  813.429523][T13183] f81534 3-1:0.12: f81534_find_config_idx: read failed: -71
[  813.465526][T13183] f81534 3-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  813.496028][T13183] f81534 3-1:0.12: probe with driver f81534 failed with error -71
[  813.518015][T13183] usb 3-1: USB disconnect, device number 11
[  814.952013][T15924] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  814.989137][T15924] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  814.989190][T15925] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  815.015785][T15925] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  815.054054][T15927] netlink: 'syz.2.2902': attribute type 3 has an invalid length.
[  815.075813][T15927] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.2902'.
[  815.107167][T15929] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  815.154126][T15929] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  815.352748][T15936] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2904'.
[  815.383551][T15936] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2904'.
[  816.234958][T15951] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  816.274016][T15951] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  818.044435][T15975] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  818.055788][T15975] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  818.407046][T15983] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2917'.
[  818.541260][T15984] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  818.562896][T15984] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  818.913329][ T5892] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  819.077600][ T5892] usb 5-1: config 220 has an invalid descriptor of length 1, skipping remainder of the config
[  819.090860][ T5892] usb 5-1: config 220 has 1 interface, different from the descriptor's value: 3
[  819.101934][ T5892] usb 5-1: config 220 interface 0 has no altsetting 0
[  819.123632][ T5892] usb 5-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  819.132981][ T5892] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  819.141699][ T5892] usb 5-1: Product: syz
[  819.166120][ T5892] usb 5-1: Manufacturer: syz
[  819.188529][ T5892] usb 5-1: SerialNumber: syz
[  819.534068][ T5892] usb 5-1: Found UVC 0.00 device syz (8086:0b07)
[  819.540604][ T5892] usb 5-1: No valid video chain found.
[  819.557770][ T5892] usb 5-1: USB disconnect, device number 29
[  821.413347][T16022] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2931'.
[  824.415067][T16046] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2938'.
[  824.886999][T13203] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  825.132352][T13203] usb 3-1: config 220 has an invalid descriptor of length 1, skipping remainder of the config
[  825.190101][T13203] usb 3-1: config 220 has 1 interface, different from the descriptor's value: 3
[  825.390783][T13203] usb 3-1: config 220 interface 0 has no altsetting 0
[  825.418278][T13203] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  825.449330][T13203] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  825.496709][T13203] usb 3-1: Product: syz
[  825.578832][T13203] usb 3-1: Manufacturer: syz
[  825.585003][T13203] usb 3-1: SerialNumber: syz
[  825.813591][T13203] usb 3-1: Found UVC 0.00 device syz (8086:0b07)
[  825.813630][T13203] usb 3-1: No valid video chain found.
[  825.815266][T13203] usb 3-1: USB disconnect, device number 12
[  826.165881][T16072] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.2946' sets config #4
[  826.421802][T16076] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  826.507813][T16076] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  826.680891][T16088] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2953'.
[  828.426378][T16120] process '/newroot/47/file0' started with executable stack
[  829.543535][T13196] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  829.667331][T16137] bridge0: port 3(ip6gretap0) entered blocking state
[  829.687490][T16137] bridge0: port 3(ip6gretap0) entered disabled state
[  829.774181][T16137] ip6gretap0: entered allmulticast mode
[  829.781640][T16137] ip6gretap0: entered promiscuous mode
[  829.944361][T16137] bridge0: port 3(ip6gretap0) entered blocking state
[  829.951252][T16137] bridge0: port 3(ip6gretap0) entered forwarding state
[  830.012829][T13196] usb 3-1: config 0 has no interfaces?
[  830.045343][T13196] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  830.054626][T13196] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  830.080485][T13196] usb 3-1: Product: syz
[  830.087079][T13196] usb 3-1: Manufacturer: syz
[  830.114038][T13196] usb 3-1: SerialNumber: syz
[  830.155091][T13196] usb 3-1: config 0 descriptor??
[  830.264482][T13196] usb 4-1: USB disconnect, device number 6
[  830.709521][T15126] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  830.719953][T15126] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  830.728894][T15126] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  830.737120][T15126] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  830.745770][T15126] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  831.086234][T16146] chnl_net:caif_netlink_parms(): no params data found
[  831.668036][T16146] bridge0: port 1(bridge_slave_0) entered blocking state
[  831.707274][T16146] bridge0: port 1(bridge_slave_0) entered disabled state
[  831.732366][T16146] bridge_slave_0: entered allmulticast mode
[  831.752929][T16146] bridge_slave_0: entered promiscuous mode
[  831.831617][T16146] bridge0: port 2(bridge_slave_1) entered blocking state
[  831.847582][T16146] bridge0: port 2(bridge_slave_1) entered disabled state
[  831.858330][T16146] bridge_slave_1: entered allmulticast mode
[  831.869045][T16146] bridge_slave_1: entered promiscuous mode
[  831.902791][T16164] kvm: kvm [16163]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x8c
[  832.191205][T16146] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  832.260184][T16146] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  832.793518][T15126] Bluetooth: hci3: command tx timeout
[  833.893742][ T5892] usb 3-1: USB disconnect, device number 13
[  834.412699][T16146] team0: Port device team_slave_0 added
[  834.468037][T16146] team0: Port device team_slave_1 added
[  835.242763][T15126] Bluetooth: hci3: command tx timeout
[  835.451083][T16146] batman_adv: batadv0: Adding interface: batadv_slave_0
[  835.451105][T16146] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  835.451152][T16146] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  835.463662][T16146] batman_adv: batadv0: Adding interface: batadv_slave_1
[  835.463685][T16146] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  835.463733][T16146] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  835.903670][T13203] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  835.964790][    C1] vkms_vblank_simulate: vblank timer overrun
[  836.027547][T16146] hsr_slave_0: entered promiscuous mode
[  836.028672][T16146] hsr_slave_1: entered promiscuous mode
[  836.029475][T16146] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  836.029551][T16146] Cannot create hsr debugfs directory
[  836.055278][T13203] usb 3-1: config 0 has an invalid interface number: 255 but max is 0
[  836.055309][T13203] usb 3-1: config 0 has no interface number 0
[  836.055342][T13203] usb 3-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[  836.055383][T13203] usb 3-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  836.055413][T13203] usb 3-1: config 0 interface 255 has no altsetting 0
[  836.055449][T13203] usb 3-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  836.055474][T13203] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  836.058660][T13203] usb 3-1: config 0 descriptor??
[  836.065590][T13203] ums-realtek 3-1:0.255: USB Mass Storage device detected
[  836.271214][T13203] usb 3-1: USB disconnect, device number 14
[  836.772786][ T3546] bridge_slave_1: left allmulticast mode
[  836.772870][ T3546] bridge_slave_1: left promiscuous mode
[  836.774328][ T3546] bridge0: port 2(bridge_slave_1) entered disabled state
[  836.807685][ T3546] bridge_slave_0: left allmulticast mode
[  836.807712][ T3546] bridge_slave_0: left promiscuous mode
[  836.808025][ T3546] bridge0: port 1(bridge_slave_0) entered disabled state
[  837.299825][T15126] Bluetooth: hci3: command tx timeout
[  839.820848][T15126] Bluetooth: hci3: command tx timeout
[  840.055567][ T3546] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  840.095129][ T3546] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  840.113787][ T3546] bond0 (unregistering): Released all slaves
[  842.520111][ T3546] hsr_slave_0: left promiscuous mode
[  842.552627][ T3546] hsr_slave_1: left promiscuous mode
[  843.414663][ T3546] team0 (unregistering): Port device team_slave_1 removed
[  843.650591][ T3546] team0 (unregistering): Port device team_slave_0 removed
[  845.355230][T16146] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  845.445270][T16146] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  845.502497][T16146] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  845.693895][T16146] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  846.064154][ T3546] IPVS: stop unused estimator thread 0...
[  846.336899][T16146] 8021q: adding VLAN 0 to HW filter on device bond0
[  846.470698][T16146] 8021q: adding VLAN 0 to HW filter on device team0
[  846.489947][ T5918] bridge0: port 1(bridge_slave_0) entered blocking state
[  846.497221][ T5918] bridge0: port 1(bridge_slave_0) entered forwarding state
[  846.548791][ T5918] bridge0: port 2(bridge_slave_1) entered blocking state
[  846.556149][ T5918] bridge0: port 2(bridge_slave_1) entered forwarding state
[  846.767694][T16146] 8021q: adding VLAN 0 to HW filter on device batadv0
[  846.940797][T16146] veth0_vlan: entered promiscuous mode
[  846.979663][T16146] veth1_vlan: entered promiscuous mode
[  847.393612][T16146] veth0_macvtap: entered promiscuous mode
[  847.448149][T16146] veth1_macvtap: entered promiscuous mode
[  847.599229][T16146] batman_adv: batadv0: Interface activated: batadv_slave_0
[  847.648507][T16146] batman_adv: batadv0: Interface activated: batadv_slave_1
[  847.719002][T16146] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  847.748795][T16146] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  847.768215][T16146] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  847.787676][T16146] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  848.092813][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  848.111996][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  848.200404][ T1033] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  848.216221][ T1033] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  849.721317][T13196] usb 1-1: USB disconnect, device number 31
[  850.103428][T13203] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  850.218160][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  850.231485][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  850.241429][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  850.252690][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  850.261803][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  850.275639][T13203] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  850.313727][T13203] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  850.324059][T13203] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  850.337291][T13203] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  850.353640][T13203] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  850.387843][T13203] usb 4-1: config 0 descriptor??
[  850.816718][T13203] plantronics 0003:047F:FFFF.0011: No inputs registered, leaving
[  850.840128][T13203] plantronics 0003:047F:FFFF.0011: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  850.905211][T16394] ptrace attach of "./syz-executor exec"[5855] was attempted by "./syz-executor exec"[16394]
[  851.211668][T16383] chnl_net:caif_netlink_parms(): no params data found
[  851.549431][T16383] bridge0: port 1(bridge_slave_0) entered blocking state
[  851.556986][T16383] bridge0: port 1(bridge_slave_0) entered disabled state
[  851.567161][T16383] bridge_slave_0: entered allmulticast mode
[  851.576286][T16383] bridge_slave_0: entered promiscuous mode
[  851.586222][T16383] bridge0: port 2(bridge_slave_1) entered blocking state
[  851.600228][T16383] bridge0: port 2(bridge_slave_1) entered disabled state
[  851.610467][T16383] bridge_slave_1: entered allmulticast mode
[  851.625307][T16383] bridge_slave_1: entered promiscuous mode
[  851.720299][T16383] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  851.764354][T16383] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  851.910466][T16383] team0: Port device team_slave_0 added
[  851.935761][T16383] team0: Port device team_slave_1 added
[  852.059956][T16383] batman_adv: batadv0: Adding interface: batadv_slave_0
[  852.138183][T16383] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  852.263508][ T5892] usb 4-1: reset high-speed USB device number 7 using dummy_hcd
[  852.292319][T16383] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  852.310159][T16383] batman_adv: batadv0: Adding interface: batadv_slave_1
[  852.347749][T16383] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  852.384195][T15126] Bluetooth: hci0: command tx timeout
[  852.411339][T16383] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  852.801728][T16383] hsr_slave_0: entered promiscuous mode
[  852.821131][T16383] hsr_slave_1: entered promiscuous mode
[  852.837785][T16383] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  852.854735][T16383] Cannot create hsr debugfs directory
[  853.145036][T13203] usb 4-1: USB disconnect, device number 7
[  853.767554][T16383] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  853.803248][T16383] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  853.843977][T16383] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  854.073044][T16383] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  854.091996][T16383] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  854.199033][T16383] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  854.450276][T16383] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  854.463750][T15126] Bluetooth: hci0: command tx timeout
[  854.470912][T16383] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  854.481995][T16383] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  854.621012][T16383] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  854.634949][T16383] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  854.645742][T16383] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  855.158263][T16383] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  855.184233][T16383] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  855.277888][T16383] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  855.487133][T16383] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  856.536688][T16383] 8021q: adding VLAN 0 to HW filter on device bond0
[  856.573768][T15126] Bluetooth: hci0: command tx timeout
[  856.685075][T16383] 8021q: adding VLAN 0 to HW filter on device team0
[  856.723993][ T3546] bridge0: port 1(bridge_slave_0) entered blocking state
[  856.731141][ T3546] bridge0: port 1(bridge_slave_0) entered forwarding state
[  856.937714][ T5918] bridge0: port 2(bridge_slave_1) entered blocking state
[  856.944976][ T5918] bridge0: port 2(bridge_slave_1) entered forwarding state
[  857.216673][T16383] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  857.270381][T16383] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  857.303782][T13182] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  857.410060][T16383] 8021q: adding VLAN 0 to HW filter on device batadv0
[  857.467689][T13182] usb 4-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  857.477354][T13182] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  857.506946][T13182] usb 4-1: config 0 descriptor??
[  857.591696][T16383] veth0_vlan: entered promiscuous mode
[  857.681928][T16383] veth1_vlan: entered promiscuous mode
[  857.972290][T16383] veth0_macvtap: entered promiscuous mode
[  857.989247][T16383] veth1_macvtap: entered promiscuous mode
[  858.019898][T16383] batman_adv: batadv0: Interface activated: batadv_slave_0
[  858.063464][T16383] batman_adv: batadv0: Interface activated: batadv_slave_1
[  858.092885][T16383] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  858.110625][T16383] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  858.128352][T16383] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  858.143111][T13182] usb 4-1: Cannot set autoneg
[  858.153547][T13182] MOSCHIP usb-ethernet driver 4-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[  858.210334][T16383] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  858.238948][T13182] usb 4-1: USB disconnect, device number 8
[  858.496791][T16510] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  858.544047][T16510] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  858.630557][T15126] Bluetooth: hci0: command tx timeout
[  858.756392][T16521] syzkaller0: entered promiscuous mode
[  858.775035][T16521] syzkaller0: entered allmulticast mode
[  858.819072][T16510] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  858.835017][T16510] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  861.739721][T16558] binder: BINDER_SET_CONTEXT_MGR already set
[  861.759393][T16558] binder: 16557:16558 ioctl 40046207 0 returned -16
[  861.854569][ T5892] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  862.026697][ T5892] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 196, using maximum allowed: 30
[  862.041676][ T5892] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  862.065466][ T5892] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 196
[  862.096442][ T5892] usb 5-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00
[  862.116497][ T5892] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  862.144463][ T5892] usb 5-1: config 0 descriptor??
[  862.604067][ T5892] usbhid 5-1:0.0: can't add hid device: -71
[  862.625824][ T5892] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  862.700151][ T5892] usb 5-1: USB disconnect, device number 30
[  863.013570][T13183] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  863.203353][T13183] usb 3-1: Using ep0 maxpacket: 16
[  863.223665][T13183] usb 3-1: config 0 interface 0 altsetting 66 endpoint 0x81 has an invalid bInterval 112, changing to 10
[  863.265101][T13183] usb 3-1: config 0 interface 0 has no altsetting 0
[  863.289410][T13183] usb 3-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  863.344203][T13183] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  863.407531][T13183] usb 3-1: config 0 descriptor??
[  863.413444][   T51] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  863.444454][   T51] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  863.453291][   T51] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  863.503306][   T51] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  863.518489][   T51] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  863.649028][T13183] usb 3-1: string descriptor 0 read error: -71
[  863.665754][T13183] usbhid 3-1:0.0: can't add hid device: -71
[  863.674399][T13183] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  863.695995][T13183] usb 3-1: USB disconnect, device number 15
[  864.496236][T16593] chnl_net:caif_netlink_parms(): no params data found
[  864.869789][T13193] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -110). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  864.903472][T13193] dvb_usb_az6027 2-1:0.0: probe with driver dvb_usb_az6027 failed with error -110
[  865.008444][T13193] usb 2-1: USB disconnect, device number 120
[  865.103048][T16617] bridge0: port 2(bridge_slave_1) entered disabled state
[  865.369379][T16593] bridge0: port 1(bridge_slave_0) entered blocking state
[  865.583575][   T51] Bluetooth: hci2: command tx timeout
[  865.586448][T16593] bridge0: port 1(bridge_slave_0) entered disabled state
[  865.607610][T16593] bridge_slave_0: entered allmulticast mode
[  865.618312][T16593] bridge_slave_0: entered promiscuous mode
[  865.637044][T16593] bridge0: port 2(bridge_slave_1) entered blocking state
[  865.648072][T16593] bridge0: port 2(bridge_slave_1) entered disabled state
[  865.658139][T16593] bridge_slave_1: entered allmulticast mode
[  865.671909][T16593] bridge_slave_1: entered promiscuous mode
[  865.817342][T16593] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  865.874779][T16593] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  866.032299][T16593] team0: Port device team_slave_0 added
[  866.055530][T16593] team0: Port device team_slave_1 added
[  866.333834][T16593] batman_adv: batadv0: Adding interface: batadv_slave_0
[  866.340861][T16593] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  866.449880][T16593] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  866.462653][T16593] batman_adv: batadv0: Adding interface: batadv_slave_1
[  866.469749][T16593] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  866.508567][T16593] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  867.343020][T16593] hsr_slave_0: entered promiscuous mode
[  867.357255][T16593] hsr_slave_1: entered promiscuous mode
[  867.368079][T16593] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  867.391288][T16593] Cannot create hsr debugfs directory
[  867.429455][T16651] dvmrp1: entered allmulticast mode
[  867.665426][   T51] Bluetooth: hci2: command tx timeout
[  867.787457][T16660] netlink: 165 bytes leftover after parsing attributes in process `syz.3.3146'.
[  868.012933][T16593] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  868.267831][T16593] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  868.487971][T16593] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  869.118058][T16593] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  869.744058][   T51] Bluetooth: hci2: command tx timeout
[  869.937316][T16593] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  869.980877][T16593] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  869.992541][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[  869.992638][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[  870.077169][T16593] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  870.156916][T16593] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  870.955807][T16593] 8021q: adding VLAN 0 to HW filter on device bond0
[  871.022787][T16593] 8021q: adding VLAN 0 to HW filter on device team0
[  871.043003][ T1033] bridge0: port 1(bridge_slave_0) entered blocking state
[  871.050252][ T1033] bridge0: port 1(bridge_slave_0) entered forwarding state
[  871.118200][ T1033] bridge0: port 2(bridge_slave_1) entered blocking state
[  871.125473][ T1033] bridge0: port 2(bridge_slave_1) entered forwarding state
[  871.331319][T16593] 8021q: adding VLAN 0 to HW filter on device batadv0
[  871.453676][T16593] veth0_vlan: entered promiscuous mode
[  871.479307][T16593] veth1_vlan: entered promiscuous mode
[  871.574704][T16726] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3170'.
[  871.592981][T16593] veth0_macvtap: entered promiscuous mode
[  871.641921][T16593] veth1_macvtap: entered promiscuous mode
[  871.686524][T16593] batman_adv: batadv0: Interface activated: batadv_slave_0
[  871.734062][T16593] batman_adv: batadv0: Interface activated: batadv_slave_1
[  871.777256][T16593] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  871.817739][T16593] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  871.833832][   T51] Bluetooth: hci2: command tx timeout
[  871.844892][T16593] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  871.879658][T16593] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  872.803572][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  872.893940][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  873.083445][ T5918] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  873.134205][ T5918] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  875.965015][T15126] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  875.975372][T15126] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  875.983264][T15126] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  876.141936][T15126] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  876.160486][T15126] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  877.525923][T16826] chnl_net:caif_netlink_parms(): no params data found
[  878.032788][T16826] bridge0: port 1(bridge_slave_0) entered blocking state
[  878.055530][T16826] bridge0: port 1(bridge_slave_0) entered disabled state
[  878.074134][T16826] bridge_slave_0: entered allmulticast mode
[  878.092946][T16826] bridge_slave_0: entered promiscuous mode
[  878.118487][T16826] bridge0: port 2(bridge_slave_1) entered blocking state
[  878.133405][T16826] bridge0: port 2(bridge_slave_1) entered disabled state
[  878.159611][T16826] bridge_slave_1: entered allmulticast mode
[  878.178929][T16826] bridge_slave_1: entered promiscuous mode
[  878.228203][   T51] Bluetooth: hci1: command tx timeout
[  878.375541][T16826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  878.415964][T16826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  878.585364][T16826] team0: Port device team_slave_0 added
[  878.717441][T16826] team0: Port device team_slave_1 added
[  879.089782][T16826] batman_adv: batadv0: Adding interface: batadv_slave_0
[  879.117925][T16826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  879.183408][T16826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  879.224485][T16826] batman_adv: batadv0: Adding interface: batadv_slave_1
[  879.231514][T16826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  879.293587][T16826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  879.491124][T16826] hsr_slave_0: entered promiscuous mode
[  879.507766][T16826] hsr_slave_1: entered promiscuous mode
[  879.517227][T16826] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  879.530996][T16826] Cannot create hsr debugfs directory
[  880.256726][T16826] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  880.268690][T16826] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 55597 - 0
[  880.279903][T16826] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 2] type 2 family 0 port 256 - 0
[  880.303661][   T51] Bluetooth: hci1: command tx timeout
[  880.459682][T16826] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  880.470354][T16826] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 55597 - 0
[  880.486371][T16826] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 2] type 2 family 0 port 256 - 0
[  880.626562][T16826] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  880.666140][T16826] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 55597 - 0
[  880.679593][T16826] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 2] type 2 family 0 port 256 - 0
[  880.733364][ T5892] usb 5-1: new full-speed USB device number 31 using dummy_hcd
[  880.808885][T16826] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  880.838794][T16826] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 55597 - 0
[  880.850137][T16826] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 2] type 2 family 0 port 256 - 0
[  880.894559][ T5892] usb 5-1: config 0 has an invalid interface number: 11 but max is 0
[  880.923336][ T5892] usb 5-1: config 0 has no interface number 0
[  880.929618][ T5892] usb 5-1: config 0 interface 11 altsetting 253 endpoint 0x7 has invalid maxpacket 1024, setting to 64
[  880.947525][ T5892] usb 5-1: config 0 interface 11 altsetting 253 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  880.994134][ T5892] usb 5-1: config 0 interface 11 has no altsetting 0
[  881.000914][ T5892] usb 5-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[  881.010918][ T5892] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  881.048594][ T5892] usb 5-1: config 0 descriptor??
[  881.067055][T16914] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  881.076706][ T5892] keyspan 5-1:0.11: Keyspan 2 port adapter converter detected
[  881.084827][T13193] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  881.102394][T16826] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  881.110479][ T5892] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 87
[  881.128869][ T5892] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 81
[  881.138272][ T5892] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 82
[  881.141419][T16826] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  881.156949][ T5892] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 1
[  881.164824][ T5892] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 2
[  881.177627][ T5892] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 85
[  881.190079][T16826] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  881.202015][T16826] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  881.209175][ T5892] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 5
[  881.224403][T13182] usb 2-1: new high-speed USB device number 121 using dummy_hcd
[  881.224483][ T5892] usb 5-1: Keyspan 2 port adapter converter now attached to ttyUSB0
[  881.273499][T13193] usb 1-1: Using ep0 maxpacket: 32
[  881.281048][T13193] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  881.303005][ T5892] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 83
[  881.328920][T13193] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  881.342212][ T5892] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 84
[  881.364070][ T5892] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 3
[  881.379321][T13193] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  881.394390][ T5892] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 4
[  881.401100][T13182] usb 2-1: too many configurations: 30, using maximum allowed: 8
[  881.402142][ T5892] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 86
[  881.419413][T13193] usb 1-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  881.424314][T13182] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  881.439598][T13193] usb 1-1: Product: syz
[  881.451102][T13193] usb 1-1: Manufacturer: syz
[  881.474657][ T5892] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 6
[  881.477326][T13193] hub 1-1:4.0: USB hub found
[  881.478345][T13182] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  881.501734][T13182] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  881.527143][T13182] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  881.549467][T16826] 8021q: adding VLAN 0 to HW filter on device bond0
[  881.559617][ T5892] usb 5-1: Keyspan 2 port adapter converter now attached to ttyUSB1
[  881.576261][T13182] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  881.598770][T13182] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  881.624577][ T5892] usb 5-1: USB disconnect, device number 31
[  881.646861][T13182] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  881.652469][T16826] 8021q: adding VLAN 0 to HW filter on device team0
[  881.669458][ T5892] keyspan_2 ttyUSB0: Keyspan 2 port adapter converter now disconnected from ttyUSB0
[  881.674807][T13182] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  881.700781][T13193] hub 1-1:4.0: config failed, can't read hub descriptor (err -22)
[  881.730443][ T5892] keyspan_2 ttyUSB1: Keyspan 2 port adapter converter now disconnected from ttyUSB1
[  881.732482][T13182] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  881.765442][ T5918] bridge0: port 1(bridge_slave_0) entered blocking state
[  881.772673][ T5918] bridge0: port 1(bridge_slave_0) entered forwarding state
[  881.779552][T13193] usb 1-1: USB disconnect, device number 32
[  881.796103][T13182] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  881.802858][ T5892] keyspan 5-1:0.11: device disconnected
[  881.872329][T13182] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  881.893066][T13182] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  881.900270][T16510] bridge0: port 2(bridge_slave_1) entered blocking state
[  881.913455][T16510] bridge0: port 2(bridge_slave_1) entered forwarding state
[  881.937992][T13182] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  881.959616][T13182] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  881.991699][T13182] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  882.016267][T13182] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  882.031527][T13182] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  882.062214][T13182] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  882.085052][T13182] usb 2-1: SerialNumber: syz
[  882.187801][T16826] 8021q: adding VLAN 0 to HW filter on device batadv0
[  882.233067][T16935] fuse: root generation should be zero
[  882.296262][T16826] veth0_vlan: entered promiscuous mode
[  882.334040][T16826] veth1_vlan: entered promiscuous mode
[  882.348370][T13203] usb 2-1: USB disconnect, device number 121
[  882.384621][   T51] Bluetooth: hci1: command tx timeout
[  882.460364][T16826] veth0_macvtap: entered promiscuous mode
[  882.496726][T16826] veth1_macvtap: entered promiscuous mode
[  882.548790][T16826] batman_adv: batadv0: Interface activated: batadv_slave_0
[  882.570554][T16943] input: syz1 as /devices/virtual/input/input38
[  882.606901][T16826] batman_adv: batadv0: Interface activated: batadv_slave_1
[  882.658275][T16826] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  882.687392][T16826] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  882.713384][T16826] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  882.722239][T16826] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  882.975856][T16955] syz_tun: entered allmulticast mode
[  882.988248][ T1033] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  883.021795][ T1033] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  883.049048][T16954] syz_tun: left allmulticast mode
[  883.106713][ T1109] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  883.148645][ T1109] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  883.385132][T16969] netlink: 'syz.3.3267': attribute type 4 has an invalid length.
[  883.431340][T16969] netlink: 'syz.3.3267': attribute type 4 has an invalid length.
[  884.133375][ T5892] usb 5-1: new full-speed USB device number 32 using dummy_hcd
[  884.286029][ T5892] usb 5-1: config 0 has an invalid interface number: 120 but max is 0
[  884.303685][ T5892] usb 5-1: config 0 has no interface number 0
[  884.310027][ T5892] usb 5-1: config 0 interface 120 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  884.333626][ T5892] usb 5-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58
[  884.353991][ T5892] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  884.378494][ T5892] usb 5-1: config 0 descriptor??
[  884.402915][ T5892] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.120/input/input40
[  884.473710][   T51] Bluetooth: hci1: command tx timeout
[  884.628999][ T5892] usb 5-1: USB disconnect, device number 32
[  885.508482][ T5918] bridge_slave_1: left allmulticast mode
[  885.539192][ T5918] bridge_slave_1: left promiscuous mode
[  885.576962][ T5918] bridge0: port 2(bridge_slave_1) entered disabled state
[  885.641869][ T5918] bridge_slave_0: left allmulticast mode
[  885.672419][ T5918] bridge0: port 1(bridge_slave_0) entered disabled state
[  885.823301][    C0] ------------[ cut here ]------------
[  885.829230][    C0] refcount_t: addition on 0; use-after-free.
[  885.835916][    C0] WARNING: CPU: 0 PID: 0 at lib/refcount.c:25 refcount_warn_saturate+0xfa/0x1d0
[  885.845094][    C0] Modules linked in:
[  885.849381][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  885.860747][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  885.870886][    C0] RIP: 0010:refcount_warn_saturate+0xfa/0x1d0
[  885.877042][    C0] Code: 00 00 e8 a9 76 00 fd 5b 41 5e e9 d1 a3 a7 06 cc e8 9b 76 00 fd c6 05 9a 09 cb 0a 01 90 48 c7 c7 c0 27 e2 8b e8 37 24 c4 fc 90 <0f> 0b 90 90 eb d7 e8 7b 76 00 fd c6 05 7b 09 cb 0a 01 90 48 c7 c7
[  885.896733][    C0] RSP: 0018:ffffc90000007828 EFLAGS: 00010246
[  885.902869][    C0] RAX: 1417e444c53e4200 RBX: 0000000000000002 RCX: ffffffff8de95280
[  885.910917][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000002
[  885.918957][    C0] RBP: ffffc900000079b0 R08: 0000000000000003 R09: 0000000000000004
[  885.927013][    C0] R10: dffffc0000000000 R11: fffffbfff1bfaa44 R12: ffff888020b48000
[  885.935073][    C0] R13: dffffc0000000000 R14: ffff888020b4816c R15: ffff888059902800
[  885.943090][    C0] FS:  0000000000000000(0000) GS:ffff888125c5c000(0000) knlGS:0000000000000000
[  885.952097][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  885.958846][    C0] CR2: 00002000001db030 CR3: 000000002a2e0000 CR4: 00000000003526f0
[  885.966929][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  885.974985][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  885.982986][    C0] Call Trace:
[  885.986315][    C0]  <IRQ>
[  885.989178][    C0]  tipc_crypto_xmit+0x1820/0x22c0
[  885.994286][    C0]  ? __pfx_tipc_crypto_xmit+0x10/0x10
[  885.999699][    C0]  tipc_bearer_xmit_skb+0x245/0x400
[  886.004943][    C0]  ? tipc_bearer_xmit_skb+0xa9/0x400
[  886.010241][    C0]  ? __pfx_tipc_bearer_xmit_skb+0x10/0x10
[  886.016017][    C0]  tipc_disc_timeout+0x580/0x6d0
[  886.020976][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  886.026482][    C0]  call_timer_fn+0x17e/0x5f0
[  886.031264][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  886.036781][    C0]  ? call_timer_fn+0xbe/0x5f0
[  886.041497][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  886.046663][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  886.051893][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  886.057143][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  886.062627][    C0]  __run_timer_base+0x61a/0x860
[  886.067531][    C0]  ? ktime_get+0x3e/0x1f0
[  886.071882][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  886.077301][    C0]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  886.083589][    C0]  run_timer_softirq+0xb7/0x180
[  886.088452][    C0]  handle_softirqs+0x283/0x870
[  886.093271][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  886.098076][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  886.103393][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  886.108601][    C0]  __irq_exit_rcu+0xca/0x1f0
[  886.113251][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  886.118490][    C0]  irq_exit_rcu+0x9/0x30
[  886.122742][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  886.128408][    C0]  </IRQ>
[  886.131346][    C0]  <TASK>
[  886.134301][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  886.140292][    C0] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  886.146061][    C0] Code: cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d a3 75 23 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[  886.165704][    C0] RSP: 0018:ffffffff8de07d80 EFLAGS: 000002c2
[  886.171788][    C0] RAX: 1417e444c53e4200 RBX: ffffffff81976078 RCX: 1417e444c53e4200
[  886.179799][    C0] RDX: 0000000000000001 RSI: ffffffff8d979f2e RDI: ffffffff8be27240
[  886.187814][    C0] RBP: ffffffff8de07ea8 R08: ffff8880b8632f5b R09: 1ffff110170c65eb
[  886.195823][    C0] R10: dffffc0000000000 R11: ffffed10170c65ec R12: ffffffff8fa0f5f0
[  886.203826][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1bd2a50
[  886.211808][    C0]  ? do_idle+0x1e8/0x510
[  886.216094][    C0]  default_idle+0x13/0x20
[  886.220455][    C0]  default_idle_call+0x74/0xb0
[  886.225275][    C0]  do_idle+0x1e8/0x510
[  886.229373][    C0]  ? asm_sysvec_call_function_single+0x1a/0x20
[  886.235844][    C0]  ? __pfx_do_idle+0x10/0x10
[  886.240450][    C0]  ? do_idle+0xc/0x510
[  886.244560][    C0]  cpu_startup_entry+0x44/0x60
[  886.249337][    C0]  rest_init+0x2de/0x300
[  886.253614][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  886.259189][    C0]  start_kernel+0x47d/0x500
[  886.263754][    C0]  x86_64_start_reservations+0x24/0x30
[  886.269218][    C0]  x86_64_start_kernel+0x143/0x1c0
[  886.274359][    C0]  common_startup_64+0x13e/0x147
[  886.279326][    C0]  </TASK>
[  886.282372][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  886.289691][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  886.300989][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  886.311050][    C0] Call Trace:
[  886.314335][    C0]  <IRQ>
[  886.317187][    C0]  dump_stack_lvl+0x99/0x250
[  886.321797][    C0]  ? __asan_memcpy+0x40/0x70
[  886.326397][    C0]  ? __pfx_dump_stack_lvl+0x10/0x10
[  886.331635][    C0]  ? __pfx__printk+0x10/0x10
[  886.336268][    C0]  panic+0x2db/0x790
[  886.340222][    C0]  ? __pfx_panic+0x10/0x10
[  886.344674][    C0]  ? show_trace_log_lvl+0x4fb/0x550
[  886.349899][    C0]  ? common_startup_64+0x13e/0x147
[  886.355025][    C0]  __warn+0x31b/0x4b0
[  886.359021][    C0]  ? refcount_warn_saturate+0xfa/0x1d0
[  886.364494][    C0]  ? refcount_warn_saturate+0xfa/0x1d0
[  886.369974][    C0]  report_bug+0x2be/0x4f0
[  886.374326][    C0]  ? refcount_warn_saturate+0xfa/0x1d0
[  886.379803][    C0]  ? refcount_warn_saturate+0xfa/0x1d0
[  886.385275][    C0]  ? refcount_warn_saturate+0xfc/0x1d0
[  886.390740][    C0]  handle_bug+0x84/0x160
[  886.394997][    C0]  exc_invalid_op+0x1a/0x50
[  886.399528][    C0]  asm_exc_invalid_op+0x1a/0x20
[  886.404385][    C0] RIP: 0010:refcount_warn_saturate+0xfa/0x1d0
[  886.410462][    C0] Code: 00 00 e8 a9 76 00 fd 5b 41 5e e9 d1 a3 a7 06 cc e8 9b 76 00 fd c6 05 9a 09 cb 0a 01 90 48 c7 c7 c0 27 e2 8b e8 37 24 c4 fc 90 <0f> 0b 90 90 eb d7 e8 7b 76 00 fd c6 05 7b 09 cb 0a 01 90 48 c7 c7
[  886.430075][    C0] RSP: 0018:ffffc90000007828 EFLAGS: 00010246
[  886.436151][    C0] RAX: 1417e444c53e4200 RBX: 0000000000000002 RCX: ffffffff8de95280
[  886.444133][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000002
[  886.452121][    C0] RBP: ffffc900000079b0 R08: 0000000000000003 R09: 0000000000000004
[  886.460099][    C0] R10: dffffc0000000000 R11: fffffbfff1bfaa44 R12: ffff888020b48000
[  886.468079][    C0] R13: dffffc0000000000 R14: ffff888020b4816c R15: ffff888059902800
[  886.476070][    C0]  ? refcount_warn_saturate+0xf9/0x1d0
[  886.481542][    C0]  tipc_crypto_xmit+0x1820/0x22c0
[  886.486594][    C0]  ? __pfx_tipc_crypto_xmit+0x10/0x10
[  886.491990][    C0]  tipc_bearer_xmit_skb+0x245/0x400
[  886.497204][    C0]  ? tipc_bearer_xmit_skb+0xa9/0x400
[  886.502506][    C0]  ? __pfx_tipc_bearer_xmit_skb+0x10/0x10
[  886.508249][    C0]  tipc_disc_timeout+0x580/0x6d0
[  886.513215][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  886.518697][    C0]  call_timer_fn+0x17e/0x5f0
[  886.523298][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  886.528765][    C0]  ? call_timer_fn+0xbe/0x5f0
[  886.533468][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  886.538618][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  886.543830][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  886.549067][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  886.554553][    C0]  __run_timer_base+0x61a/0x860
[  886.559415][    C0]  ? ktime_get+0x3e/0x1f0
[  886.563756][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  886.569141][    C0]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  886.575410][    C0]  run_timer_softirq+0xb7/0x180
[  886.580275][    C0]  handle_softirqs+0x283/0x870
[  886.585062][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  886.589841][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  886.595141][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  886.600361][    C0]  __irq_exit_rcu+0xca/0x1f0
[  886.604965][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  886.610182][    C0]  irq_exit_rcu+0x9/0x30
[  886.614435][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  886.620080][    C0]  </IRQ>
[  886.623009][    C0]  <TASK>
[  886.625939][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  886.631940][    C0] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  886.637696][    C0] Code: cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d a3 75 23 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[  886.657320][    C0] RSP: 0018:ffffffff8de07d80 EFLAGS: 000002c2
[  886.663398][    C0] RAX: 1417e444c53e4200 RBX: ffffffff81976078 RCX: 1417e444c53e4200
[  886.671378][    C0] RDX: 0000000000000001 RSI: ffffffff8d979f2e RDI: ffffffff8be27240
[  886.679360][    C0] RBP: ffffffff8de07ea8 R08: ffff8880b8632f5b R09: 1ffff110170c65eb
[  886.687340][    C0] R10: dffffc0000000000 R11: ffffed10170c65ec R12: ffffffff8fa0f5f0
[  886.695318][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1bd2a50
[  886.703303][    C0]  ? do_idle+0x1e8/0x510
[  886.707565][    C0]  default_idle+0x13/0x20
[  886.711896][    C0]  default_idle_call+0x74/0xb0
[  886.716665][    C0]  do_idle+0x1e8/0x510
[  886.720747][    C0]  ? asm_sysvec_call_function_single+0x1a/0x20
[  886.726915][    C0]  ? __pfx_do_idle+0x10/0x10
[  886.731518][    C0]  ? do_idle+0xc/0x510
[  886.735600][    C0]  cpu_startup_entry+0x44/0x60
[  886.740375][    C0]  rest_init+0x2de/0x300
[  886.744627][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  886.750190][    C0]  start_kernel+0x47d/0x500
[  886.754719][    C0]  x86_64_start_reservations+0x24/0x30
[  886.760195][    C0]  x86_64_start_kernel+0x143/0x1c0
[  886.765317][    C0]  common_startup_64+0x13e/0x147
[  886.770275][    C0]  </TASK>
[  886.773645][    C0] Kernel Offset: disabled
[  886.777985][    C0] Rebooting in 86400 seconds..