last executing test programs:

23.870574801s ago: executing program 2 (id=8121):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
statx(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x100, 0x20, &(0x7f0000000440))
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x7, 0x10, 0x0, 0x0, 0xb47, 0x9, 0x8, 0xffffeffc, 0x3}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000140)={0x0, &(0x7f0000000280)}, 0x10)
r2 = socket(0x8000000010, 0x2, 0x0)
write(r2, &(0x7f00000002c0)="fc0000001c000704ab5b2509b868030002ab087a0100000001481093210001c0f0030584050060100000000000039815fa2c53c28648000000b9d95662537a00bc000c00f0ff7f0000b400600033d44000040560916a0033f436313012dafd5a32e273fc83ab82d710f74cec184406f90d435ef8b29d3ef3d92c94170e5bba2e177312e081bea05d3a021e8ca062914a46ccfc510bb73c9455cdc8363ae4f5df77bc4cfd6239ec2a0f0d1bcae5fa0f5f9dcdd51af51af8502943283f4bb102b2b8f5566791cf190201ded815b2ccd243f395ed94e0ad91bd6433802e0784f2013cd1890058a10000c880ac801fe4af000049f0d4796f0000090548de", 0xfc)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={0x50, r4, 0x1, 0x70bd27, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x24, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x1c, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}]}, 0x50}}, 0x0)
r5 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r5, &(0x7f0000000400)={0x2, 0x4e20, @remote}, 0x10)
sendmmsg$inet(r5, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x4000095, 0x0)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r6, 0x8955, &(0x7f0000000180)={{0x2, 0x4e23, @empty}, {0x20000010304, @local}, 0x4, {0x2, 0x4e20, @rand_addr=0x64010102}})
syz_usb_connect(0x5, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12011001173a6140f41515006ed10102030109022400013600a0000904"], 0x0)

22.134390294s ago: executing program 0 (id=8131):
r0 = io_uring_setup(0x479, &(0x7f0000000ac0)={0x0, 0x3, 0x2, 0x2, 0x4000020})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000980)={0x48, 0x5, r2, 0x0, <r3=>0x0, 0x1})
ioctl$IOMMU_IOAS_MAP(r1, 0x3b85, &(0x7f0000000a00)={0x28, 0x7, r2, 0x0, &(0x7f00000a0000)='LLLLLLLLLLLLLLLLLLLLLLLLLLLL', 0x1000})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES(r1, 0x3ba0, &(0x7f0000000a40)={0x48, 0x7, r3, 0x0, 0x0, 0x0, 0x0, 0x1000})
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES(r4, 0x3ba0, &(0x7f0000000000)={0x48, 0x7, r3, 0x0, 0x1, 0x0, 0x0, 0x1})
close_range(r0, 0xffffffffffffffff, 0x0)

21.852339118s ago: executing program 0 (id=8132):
r0 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x2000000000000000, 0x0, 0x50)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000080)={{0x1009, 0x1, 0xfffffffe, 0x80, 'syz0\x00'}, 0x5, 0x0, 0x1, r1, 0x0, 0x8, 'syz1\x00', 0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x2}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x3000001, 0x32, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000540)=0x7b1)

21.210005706s ago: executing program 0 (id=8133):
r0 = socket$kcm(0xa, 0x2, 0x73)
sendmsg$inet(r0, &(0x7f0000001180)={&(0x7f0000000000)={0xa, 0x0, @multicast2}, 0x2c, &(0x7f0000001080)=[{&(0x7f00000012c0)="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", 0xe00}, {&(0x7f0000001040)="9d7fcf3efc63f4a6a555ba8b4726d7ccaf8a207100e69cfac4377876021d7131b838059f96bd206d4776368ed2", 0x2d}], 0x2, &(0x7f00000010c0)=[@ip_ttl={{0x14}}, @ip_tos_u8={{0x11, 0x29, 0x4}}, @ip_pktinfo={{0x5, 0x0, 0x8, {0x0, @broadcast, @remote}}}], 0x50, 0x2900}, 0x0)

20.92648589s ago: executing program 0 (id=8135):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x20040000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getresuid(0x0, 0x0, 0x0)
sendmsg(r2, 0x0, 0x4)
r3 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
write$sysctl(r3, &(0x7f0000000580)='1\x00', 0x2)
write$sysctl(r3, &(0x7f0000000000)='2\x00', 0x2)
pipe2(0x0, 0x80)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x5, 0x9, 0x0, 0x0, 0xb49, 0x7, 0xe0a, 0x0, 0x3}, 0x0)
mremap(&(0x7f0000253000/0x2000)=nil, 0x2000, 0x4000, 0x4, &(0x7f0000ffb000/0x4000)=nil)
pipe(&(0x7f00000000c0)={<r4=>0xffffffffffffffff})
fcntl$setpipe(r4, 0x4, 0xfffffffffffffffd)
ioctl$BTRFS_IOC_QGROUP_LIMIT(r3, 0x8030942b, &(0x7f0000000100)={0x5, {0x1e, 0xed, 0xfff, 0x7fff, 0x3}})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x1fe, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2)
r8 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000080))
ioctl$PAGEMAP_SCAN(r8, 0xc0606610, &(0x7f0000000680)={0x60, 0x1, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x8, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, 0x42})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f00000001c0)="430fc73f0f2390b9800000c00f32420f01c20f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e0046a0f8000000000000002d1aa80000460f1c460041ae", 0x4e}], 0x1, 0x74, 0x0, 0x0)
ioctl$EVIOCRMFF(0xffffffffffffffff, 0x40044581, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
execve(0x0, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)

20.899713186s ago: executing program 3 (id=8136):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = socket(0x2a, 0x6, 0x437)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_JOIN_OCB(r3, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x30, r4, 0x800, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x100, 0x6}}}}, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x36}]}, 0x30}, 0x1, 0x0, 0x0, 0x54}, 0x20004000)
socket$packet(0x11, 0x3, 0x300)
openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$NFT_MSG_GETOBJ(r2, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0xa42b07f24c58e5c3}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0x44, 0x13, 0xa, 0x5, 0x0, 0x0, {0x7}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_OBJ_USERDATA={0xa, 0x8, "9b71da1358e2"}]}, 0x44}, 0x1, 0x0, 0x0, 0x851}, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$kcm(0x21, 0x2, 0x2)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$inet6_sctp(0xa, 0x1, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r8=>0xffffffffffffffff})
r9 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x208400, 0x10)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)=ANY=[@ANYRES32=r9, @ANYRES32, @ANYRES32=r8], 0x20)
r10 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r11 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000006800010000000000000000000200000000000000080006000100000004000b"], 0x24}}, 0x4004094)
ioctl$KVM_SET_MSRS(r10, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x6e0}]})
sendto$l2tp6(r7, &(0x7f0000000400)="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", 0x1000, 0x809d, 0x0, 0x0)

20.387186052s ago: executing program 3 (id=8140):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040)="4dc07f947163300c", 0x8)
sendto$unix(0xffffffffffffffff, &(0x7f0000000380)="a3669abdf2b1ea3fbd", 0x9, 0x18854, 0x0, 0x0)
recvfrom$packet(0xffffffffffffffff, 0x0, 0x0, 0x40000000, 0x0, 0x0)

20.314499674s ago: executing program 4 (id=8141):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_HEADER(r0, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x40, 0xc, 0x6, 0x3, 0x0, 0x0, {0x3, 0x0, 0x5}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0x804}, 0x20000080)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000000, 0x5d032, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
r2 = syz_usb_connect(0x0, 0x2d, &(0x7f00000004c0)={{0x12, 0x1, 0x141, 0x30, 0xf5, 0x69, 0x20, 0x5ac, 0x219, 0xf072, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x55, 0x7, 0x1, 0x3, 0x49, 0x2, 0x0, [], [{{0x9, 0x5, 0x82, 0x3, 0x400, 0x0, 0x33, 0x81}}]}}]}}]}}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000001c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
syz_usb_ep_write$ath9k_ep1(r2, 0x82, 0x40, &(0x7f0000000080)=ANY=[])
syz_usb_control_io$cdc_ncm(r2, 0x0, 0x0)
ioctl$UFFDIO_CONTINUE(r1, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="60000000020601020000000000000000000000000900020073797a31000000000500010007000000050005000a00000014000780080013400000040008001240fffffffa11000300686173683a6e65742c6e657400000000050004"], 0x60}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
move_pages(0x0, 0x1, &(0x7f0000006580)=[&(0x7f0000ffa000/0x4000)=nil], 0x0, &(0x7f0000000080), 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000100000000000000ac1e000100000000000000000000000000000000000000000a0060"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0x2, 0x0, 0x25dfdbfe, {{@in6=@private0, @in=@remote, 0x0, 0x400, 0x0, 0x0, 0xa, 0x60, 0x0, 0x3b, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, 0x9}}, 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9"], 0xb8}}, 0x0)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x25dfdbfe, {{@in6=@private0={0xfc, 0x0, '\x00', 0x40}, @in6=@ipv4={'\x00', '\xff\xff', @loopback}, 0x0, 0x400, 0x0, 0x0, 0xa, 0x60, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x1}}, 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$nl_xfrm(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@private0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x40, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x9}, {0x0, 0x5}}}, 0xb8}}, 0x4000)

20.045045634s ago: executing program 3 (id=8142):
r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x248100, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x2000)
poll(&(0x7f0000000080)=[{r0, 0x2}, {r1, 0x41a2}], 0x2, 0x4)
r2 = socket$inet6(0xa, 0x3, 0x5)
sendmmsg(r2, &(0x7f00000013c0)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x500, 0x400, @remote, 0x0, 0x7}, 0x80, 0x0}, 0x5b4}, {{&(0x7f00000000c0)=@tipc=@name={0x1e, 0x2, 0x0, {{0x2}, 0x1}}, 0x80, 0x0}}], 0x2, 0x0)

20.033084396s ago: executing program 2 (id=8143):
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000000)=0xffb)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x2000000000000000, 0x0, 0x50)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000080)={{0x1009, 0x1, 0xfffffffe, 0x80, 'syz0\x00'}, 0x5, 0x0, 0x1, r0, 0x0, 0x8, 'syz1\x00', 0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x2}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x3000001, 0x32, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000540)=0x7b1)

19.802541623s ago: executing program 3 (id=8144):
r0 = socket(0xa, 0x3, 0x87)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
r2 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000180)={0x30000000})
r3 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
r4 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
add_key$keyring(&(0x7f00000001c0), &(0x7f0000000280)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffb)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xb, 0x2, &(0x7f0000006680))
sendmsg$NL80211_CMD_DEL_PMKSA(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x400c1)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10)
syz_emit_ethernet(0x74, &(0x7f0000000000)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x73, 0x0, @private=0x300, @multicast1}, {0x0, 0x0, 0xfffffe9a, 0x0, @gue={{0x2}}}}}}}, 0x0)
ioctl$sock_SIOCINQ(0xffffffffffffffff, 0x541b, 0x0)
ioctl$UI_ABS_SETUP(0xffffffffffffffff, 0x401c5504, &(0x7f0000000100)={0x39, {0x9, 0x0, 0x2000000, 0x3, 0x101}})
ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x3)
r6 = getpgid(0xffffffffffffffff)
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
get_robust_list(r7, 0x0, 0x0)
kcmp(r6, r7, 0x1, r0, r1)
ioctl$UI_DEV_CREATE(0xffffffffffffffff, 0x5501)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_S_INPUT(0xffffffffffffffff, 0xc0045627, &(0x7f0000000080))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
lgetxattr(0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, 0x0)
keyctl$KEYCTL_MOVE(0x1e, r3, 0xffffffffffffffff, r4, 0x0)
sendmmsg$unix(r0, &(0x7f0000004380)=[{{&(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001640)=[{&(0x7f0000000480)="ba3d2374", 0x4}], 0x1, 0x0, 0x0, 0x844}}], 0x1, 0x814)

19.415717721s ago: executing program 2 (id=8145):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
close_range(r0, r0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x4)
write(r2, &(0x7f00000000c0)="29000000140005b7ffc00e00040860eb0101b6ff02159f02c26ed638eeb738256e06a40e07fff0797e", 0x140)

19.179376859s ago: executing program 2 (id=8146):
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_INIT(r0, 0x29, 0xc8, &(0x7f0000000340), 0x4)
setsockopt$MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x1}, 0xc)
setsockopt$MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f00000000c0)={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, {0xa, 0x0, 0x0, @empty}}, 0x5c)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x1)
rseq(&(0x7f0000001140)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x0, 0x0)
r1 = msgget(0x0, 0x2c4)
msgsnd(r1, &(0x7f0000000100)=ANY=[@ANYRESOCT=r1], 0x2000, 0x0)
msgctl$IPC_RMID(r1, 0x0)
openat$nullb(0xffffffffffffff9c, 0x0, 0x2c240, 0x0)
sync()
socket$inet6(0xa, 0x3, 0x6)
ioprio_set$pid(0x2, 0x0, 0x6000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

18.568709045s ago: executing program 2 (id=8147):
socket$nl_route(0x10, 0x3, 0x0)
r0 = epoll_create1(0x0)
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGABS20(r1, 0x40044591, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7ffc1ffb}]})
bind$alg(r2, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'adiantum(xchacha20-simd,anubis-generic,nhpoly1305-sse2)\x00'}, 0x58)
accept4(r2, 0x0, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f00000014c0)={0x2020}, 0x2020)
r3 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x28de, 0x1102, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xd0, 0x0, [{{0x9, 0x4, 0x0, 0x4, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x1, 0xf9, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x0, 0x0, 0x50}}}}}]}}]}}, 0x0)
recvfrom(0xffffffffffffffff, &(0x7f0000000240)=""/74, 0x4a, 0x2100, 0x0, 0x0)
syz_usb_control_io(r3, 0x0, 0x0)
syz_usb_control_io(r3, &(0x7f00000004c0)={0x2c, &(0x7f0000000300)={0x20, 0x9, 0x1d, {0x1d, 0xe, "1ddd9f0c201f552328ec17f302e56115f8d35ef3d4a4cdc0f8232a"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, 0x0)

18.405762606s ago: executing program 0 (id=8148):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_DISABLE_QUIRKS(r1, 0x4068aea3, &(0x7f00000000c0)={0x74, 0x0, 0x54ba4303a03ec994})
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)

18.382615392s ago: executing program 3 (id=8149):
r0 = socket$unix(0x1, 0x5, 0x0)
r1 = accept4$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, &(0x7f00000001c0)=0x10, 0x1800)
accept(r1, &(0x7f0000000040)=@hci, &(0x7f00000000c0)=0x45)
syz_open_procfs(0x0, &(0x7f0000000380)='net/psched\x00')
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r0, 0x8983, &(0x7f0000000100)={0x6, 'dvmrp0\x00', {0x9}, 0xff})
openat$vicodec0(0xffffffffffffff9c, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100), 0x200400, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000280), 0x800c42, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000001c0), 0x180200, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080), 0x12082, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000006, 0x100010, 0xffffffffffffffff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000140)={&(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0xa, 0x80800})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000040)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_OBJ_SETPROPERTY(r2, 0xc01864ba, &(0x7f0000000000)={0x4, 0x0, 0x0, 0xeeeeeeee})
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
r3 = socket$inet(0x2, 0x3, 0x8)
setsockopt$inet_int(r3, 0x0, 0x5, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='cpuacct.usage_percpu\x00', 0x0, 0x0)
open(&(0x7f0000000280)='.\x00', 0x0, 0x8)

18.218455607s ago: executing program 0 (id=8150):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = socket(0x2a, 0x6, 0x437)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_JOIN_OCB(r3, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x30, r4, 0x800, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x100, 0x6}}}}, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x36}]}, 0x30}, 0x1, 0x0, 0x0, 0x54}, 0x20004000)
socket$packet(0x11, 0x3, 0x300)
openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$NFT_MSG_GETOBJ(r2, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0xa42b07f24c58e5c3}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0x44, 0x13, 0xa, 0x5, 0x0, 0x0, {0x7}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_OBJ_USERDATA={0xa, 0x8, "9b71da1358e2"}]}, 0x44}, 0x1, 0x0, 0x0, 0x851}, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$kcm(0x21, 0x2, 0x2)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$inet6_sctp(0xa, 0x1, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r8=>0xffffffffffffffff})
r9 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x208400, 0x10)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)=ANY=[@ANYRES32=r9, @ANYRES32, @ANYRES32=r8], 0x20)
r10 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r11 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000006800010000000000000000000200000000000000080006000100000004000b"], 0x24}}, 0x4004094)
ioctl$KVM_SET_MSRS(r10, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x6e0}]})
sendto$l2tp6(r7, &(0x7f0000000400)="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", 0x1000, 0x809d, 0x0, 0x0)

18.217808695s ago: executing program 4 (id=8151):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=@newlink={0x20, 0x10, 0x403}, 0x20}}, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f00000003c0)=0x8)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000440)={r2, @in6={{0xa, 0x0, 0x6, @empty}}, 0x0, 0x80}, 0x0)

18.191381768s ago: executing program 3 (id=8152):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = socket(0x2a, 0x6, 0x437)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x24, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0xc}]}, 0x24}}, 0x0)
socket$packet(0x11, 0x3, 0x300)
openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$NFT_MSG_GETOBJ(r2, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0xa42b07f24c58e5c3}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0x44, 0x13, 0xa, 0x5, 0x0, 0x0, {0x7}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_OBJ_USERDATA={0xa, 0x8, "9b71da1358e2"}]}, 0x44}, 0x1, 0x0, 0x0, 0x851}, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$kcm(0x21, 0x2, 0x2)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$inet6_sctp(0xa, 0x1, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r7=>0xffffffffffffffff})
r8 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x208400, 0x10)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)=ANY=[@ANYRES32=r8, @ANYRES32, @ANYRES32=r7], 0x20)
r9 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r10 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000006800010000000000000000000200000000000000080006000100000004000b"], 0x24}}, 0x4004094)
ioctl$KVM_SET_MSRS(r9, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x6e0}]})
sendto$l2tp6(r6, &(0x7f0000000400)="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", 0x1000, 0x809d, 0x0, 0x0)

17.97463194s ago: executing program 4 (id=8153):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000b80)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-serpent-avx2\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d", 0x24}], 0x3}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)

17.87527636s ago: executing program 4 (id=8154):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x2, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000300)={0x8, 0x0, &(0x7f0000000280)=[@acquire], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x18, 0x0, &(0x7f0000000700)=[@request_death={0x400c630e, 0xfcff}, @release], 0x0, 0x0, 0x0})

17.814213294s ago: executing program 4 (id=8155):
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000000)=0xffb)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x2000000000000000, 0x0, 0x50)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000080)={{0x1009, 0x1, 0xfffffffe, 0x80, 'syz0\x00'}, 0x5, 0x0, 0x1, r0, 0x0, 0x8, 'syz1\x00', 0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x2}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x3000001, 0x32, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000540)=0x7b1)

17.690316878s ago: executing program 4 (id=8156):
r0 = epoll_create(0x5)
r1 = userfaultfd(0x1)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000440)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffff}, 0x0)
syz_usb_connect(0x0, 0x5f, &(0x7f0000000680)=ANY=[@ANYBLOB="12010000b1f203401e0903003bd70102030109025c150503d53d89751b404a8225f4b4375e7f0c9e99f437c9d2428cdfc1be590beedc3b763a6dc2af0a780039d36f8e5565d41911ea13ee598a56e3877cfec19f2dc5976ff5f90ff4b60aec20e985b295fb0a13cf242028d5bb86ba7917073eec0a9d8ac6a04bf112f11278af0de4bc75a6c7b52129ddf7bd57b96a8d76fa06f48d53e11673303b94b9406e4ff6430dad58ea4f2aaf62704700ffb77fa87259f65b9fdec299d5a40de7aa40f98b4d3bee76a7154f50a547e0d9b13db0426077044ab4dd96639b"], 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_FIOGETOWN(r5, 0x8903, &(0x7f00000001c0)=<r6=>0x0)
waitid(0x1, r6, &(0x7f0000000240), 0x8, &(0x7f00000005c0))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
getsockopt$ARPT_SO_GET_REVISION_TARGET(r2, 0x0, 0x63, &(0x7f0000000140)={'icmp\x00'}, &(0x7f0000000180)=0x1e)
setsockopt$sock_attach_bpf(r7, 0x1, 0x4c, &(0x7f0000000300), 0x4)
write$binfmt_elf64(r8, &(0x7f0000000580)=ANY=[@ANYBLOB="0000000000000000000000000000000000000000000040000000000000000000bfef9004af9a20eaf3"], 0x78)
r9 = openat$mice(0xffffffffffffff9c, &(0x7f00000002c0), 0x400000)
r10 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000340), 0x1, 0x0)
fcntl$dupfd(r9, 0x406, r10)
recvmmsg(r7, &(0x7f0000000500)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=""/8, 0xc}}], 0x4b, 0x0, 0x0)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_usb_connect$hid(0x7, 0x3f, &(0x7f0000000380)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0xff, 0x56a, 0xd4, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x8, 0x0, 0x4, [{{0x9, 0x4, 0x0, 0xc, 0x2, 0x3, 0x1, 0x0, 0x80, {0x9, 0x21, 0x8, 0x7, 0x1, {0x22, 0x7a1}}, {{{0x9, 0x5, 0x81, 0x3, 0xf596b88f383f93f8, 0x6, 0x2, 0xbc}}, [{{0x9, 0x5, 0x2, 0x3, 0x20, 0xe, 0x1, 0x7}}]}}}]}}]}}, &(0x7f00000009c0)={0xa, &(0x7f00000004c0)={0xa, 0x6, 0x250, 0x5, 0x0, 0xd, 0x10, 0x34}, 0xc, &(0x7f0000000540)={0x5, 0xf, 0xc, 0x1, [@ext_cap={0x7, 0x10, 0x2, 0x14, 0x1, 0x5, 0x5}]}, 0x3, [{0x7f, &(0x7f0000000780)=@string={0x7f, 0x3, "dd01a0c962dbff9073270b66cb9ec995c1935b8f915dac3023c82e72eec1309ec3b294a76194735255698525326e09b2cdd7d3b02fa1f202e516ad1bd6009ff87eb36093c82cfc5b5864c5f3d97951b98f59e507d92b133775b671afa52296b1a26f744be009e7611ccb7e3fb28b1b90cb201d813becea00f66ba1ac0c"}}, {0xb3, &(0x7f0000000800)=@string={0xb3, 0x3, "ff04aa12a829bf9ee368eb54c8d3ee8b483adae901fcb8b70ef8620fefd6677e49fb691186a4ab5ea48bc6c117258ac97b5071169341e0c303824e0356cd0001065d84221d69719140c997e917b7e9ee2914f29ba57cfda9843a1be3e208e99a6137d95bf2068c7ca1ede0b298378373061f92e3abee75a26ee33a32577781876529c2bbf504a18a51e3765ecb8a8bc9218a4e1471fa9b86f63086f474841c7b0d73d6cf49b7cdad8fcebee0d421b13c61"}}, {0xec, &(0x7f00000008c0)=@string={0xec, 0x3, "1a0b8aae022a2c606c38644aab36958056c62d204c11945838ec0357d6d6da5446a78e755549c052b847d88d7932226fd654780a854a2f7d5ce368ff981cf85d08321bcee4fa6bf54209d15fe2b3f034b5d40204479a9f540e169d8d745cb1eb93793b43258153e400aec9b82c54f6ace58d13a996b14da562beb299662a1c8b589fefd7329f0b464f93da68bc0b91fec3e4f11c45652be2309765d1d2670f4fe32fee7abbd85aa65f25d59e32eef3fdb9b456b5cc92451bc938f00772e6a3627c38dd008e281bb139c3d9eb26d63518eaa67a35b3c73d860ca3e34fe1cf17814195e4b28513076e317a"}}]})
sendmsg$NFT_BATCH(r11, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r11, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_DYNSET_FLAGS={0x8, 0x9, 0x1, 0x0, 0x1}, @NFTA_DYNSET_OP={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x7c}}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)={0x10000000})

17.42715198s ago: executing program 1 (id=8157):
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_INIT(r0, 0x29, 0xc8, &(0x7f0000000340), 0x4)
setsockopt$MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x1}, 0xc)
setsockopt$MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f00000000c0)={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, {0xa, 0x0, 0x0, @empty}}, 0x5c)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x1)
rseq(&(0x7f0000001140)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x0, 0x0)
r1 = msgget(0x0, 0x2c4)
msgsnd(r1, &(0x7f0000000100)=ANY=[@ANYRESOCT=r1], 0x2000, 0x0)
msgctl$IPC_RMID(r1, 0x0)
openat$nullb(0xffffffffffffff9c, 0x0, 0x2c240, 0x0)
sync()
socket$inet6(0xa, 0x3, 0x6)
ioprio_set$pid(0x2, 0x0, 0x6000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

17.045669443s ago: executing program 1 (id=8158):
r0 = socket$kcm(0x10, 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x4, 0x7}}, './file0\x00'})
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet6_int(r2, 0x29, 0x42, 0x0, &(0x7f0000002500))
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), r3)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_POWER_SAVE(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000380)=ANY=[@ANYBLOB="24001f72e0acc469bc951c16a10d00967405", @ANYRES16=r4, @ANYBLOB="01002abd7000ffdbdf253d00000008000300", @ANYRES32=r6, @ANYBLOB='\b\x00]\x00\x00\x00\x00\x00'], 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x88c0)
sendmsg$NL80211_CMD_SET_POWER_SAVE(r1, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)={0x4c, r4, 0x100, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}, @NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x5, 0x5d, 0x1}, @NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}]}, 0x4c}}, 0x0)
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0, 0x1)
r7 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
unshare(0x6a040000)
socket$inet_smc(0x2b, 0x1, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000002740)='./file0\x00', 0x0, 0x0, 0x1100)
r8 = socket$inet_smc(0x2b, 0x1, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240"], 0x7c}}, 0x4000)
sendmsg$NFT_BATCH(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100000000000078f9ffffffffffff8707000000000000000000000000000200fffe0900020073797a32000000000900010073797a30000000004400048024000180090001006d6574610000000014000280080001400000000108000240000000171c000180090001006d617371000000000c0002800800024000000008140000001100010000000000000000000000000a"], 0x98}, 0x1, 0x0, 0x0, 0x24040800}, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r8, 0x0, 0x80, &(0x7f0000000180)=@filter={'filter\x00', 0xe, 0x0, 0x90, [0x6000000, 0x2000000000c0, 0x2000000000f0, 0x200000000120], 0x0, 0x0, &(0x7f00000000c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}]}, 0x108)
r10 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r10, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue1\x00', 0x49})
write$sndseq(r10, &(0x7f0000000000)=[{0x1e, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}], 0x1001a)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r7, 0x40345410, &(0x7f0000000100)={{0x1, 0x0, 0x0, 0x3}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r7, 0x40505412, &(0x7f0000000440)={0x1, 0x20000006})
ioctl$SNDRV_TIMER_IOCTL_START(r7, 0x54a0)
close_range(r7, 0xffffffffffffffff, 0x400000000000000)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)="d8000000140081044e81f782db44b9040a1d080211000000040000a118000200ff05000100060e1208000f0100810401a80016ea1f000840042e5f54c92011148ed08734843cb12b00000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c0100000000000000cb090000001fb791643a5e835913b06218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f52eb4edbb57a5025ccca9e00360d8bcc00400040fad95667e0060000000000000080bb9ad809d5e1cace81b341139fe3cd4032e8edb12d1d2eb0c0ed0bff", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)

16.722439596s ago: executing program 1 (id=8159):
r0 = socket(0xa, 0x3, 0x87)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
r2 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000180)={0x30000000})
r3 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
r4 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
add_key$keyring(&(0x7f00000001c0), &(0x7f0000000280)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffb)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xb, 0x2, &(0x7f0000006680))
sendmsg$NL80211_CMD_DEL_PMKSA(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x400c1)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10)
syz_emit_ethernet(0x74, &(0x7f0000000000)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x73, 0x0, @private=0x300, @multicast1}, {0x0, 0x0, 0xfffffe9a, 0x0, @gue={{0x2}}}}}}}, 0x0)
ioctl$sock_SIOCINQ(0xffffffffffffffff, 0x541b, 0x0)
ioctl$UI_ABS_SETUP(0xffffffffffffffff, 0x401c5504, &(0x7f0000000100)={0x39, {0x9, 0x0, 0x2000000, 0x3, 0x101}})
ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x3)
r6 = getpgid(0xffffffffffffffff)
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
get_robust_list(r7, 0x0, 0x0)
kcmp(r6, r7, 0x1, r0, r1)
ioctl$UI_DEV_CREATE(0xffffffffffffffff, 0x5501)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_S_INPUT(0xffffffffffffffff, 0xc0045627, &(0x7f0000000080))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
lgetxattr(0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, 0x0)
keyctl$KEYCTL_MOVE(0x1e, r3, 0xffffffffffffffff, r4, 0x0)
sendmmsg$unix(r0, &(0x7f0000004380)=[{{&(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001640)=[{&(0x7f0000000480)="ba3d2374", 0x4}], 0x1, 0x0, 0x0, 0x844}}], 0x1, 0x814)

16.713509888s ago: executing program 2 (id=8160):
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket(0x10, 0x3, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f0000000300)=0x2)
creat(&(0x7f0000000080)='./bus\x00', 0x0)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000000)='system.posix_acl_default\x00', 0x0, 0xfe44, 0x0)
ioctl$PPPIOCSACTIVE(r2, 0x40047459, &(0x7f0000000080)={0xfffffffffffffe43, 0x0})
read(r2, 0x0, 0x2)
pwrite64(r0, &(0x7f0000000380)="68db2b0000000000000000122800", 0xe, 0x40000000000000)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000004200)={&(0x7f0000000740)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r3, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000140))
bind$alg(0xffffffffffffffff, &(0x7f0000000200)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha256\x00'}, 0x58)
ioctl$VHOST_SET_FEATURES(r3, 0x4008af00, &(0x7f0000000080)=0x200000000)
r4 = dup2(r3, r3)
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000400)={0x2, 0x1, 0x0, &(0x7f0000000300)=""/121, 0x0, 0x8080000})
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f0000000000)=0x5)
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f0000000040)=0x1)
read$FUSE(r4, &(0x7f0000004d80)={0x2020}, 0x2020)
r5 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_INIT(r5, 0x29, 0xc8, &(0x7f0000000340), 0x4)
setsockopt$MRT6_DEL_MFC(r5, 0x29, 0xcd, 0x0, 0x0)
write$vhost_msg_v2(r4, &(0x7f0000000280)={0x2, 0x0, {&(0x7f0000000140)=""/121, 0x79, 0x0, 0x0, 0x2}}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r4, 0xc08c5336, &(0x7f0000000140)={0x5, 0x1, 0x0, 'queue1\x00', 0x4})
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)
r6 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r6, &(0x7f0000004380)=[{{&(0x7f0000000100)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000001640)=[{&(0x7f0000000480)="ba3d2374", 0x4}], 0x1, 0x0, 0x0, 0x844}}], 0x1, 0x814)

16.127989097s ago: executing program 1 (id=8161):
r0 = fanotify_init(0x200, 0x0)
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r0, 0x5000943f, 0x0)
syz_emit_ethernet(0x11d6, &(0x7f0000001780)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa0086dd6000ed0011a03a"], 0x0)

16.036612562s ago: executing program 1 (id=8162):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_HEADER(r0, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x40, 0xc, 0x6, 0x3, 0x0, 0x0, {0x3, 0x0, 0x5}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0x804}, 0x20000080)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000000, 0x5d032, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000580)={0x84, &(0x7f0000000540)={0x0, 0x8c7c8f6744f0b74e, 0x8, "d4a911bb11e39d2e"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000001c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x40, &(0x7f0000000080)=ANY=[])
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0)
ioctl$UFFDIO_CONTINUE(r1, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="60000000020601020000000000000000000000000900020073797a31000000000500010007000000050005000a00000014000780080013400000040008001240fffffffa11000300686173683a6e65742c6e657400000000050004"], 0x60}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
move_pages(0x0, 0x1, &(0x7f0000006580)=[&(0x7f0000ffa000/0x4000)=nil], 0x0, &(0x7f0000000080), 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000100000000000000ac1e000100000000000000000000000000000000000000000a0060"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0x2, 0x0, 0x25dfdbfe, {{@in6=@private0, @in=@remote, 0x0, 0x400, 0x0, 0x0, 0xa, 0x60, 0x0, 0x3b, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, 0x9}}, 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9"], 0xb8}}, 0x0)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x25dfdbfe, {{@in6=@private0={0xfc, 0x0, '\x00', 0x40}, @in6=@ipv4={'\x00', '\xff\xff', @loopback}, 0x0, 0x400, 0x0, 0x0, 0xa, 0x60, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x1}}, 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$nl_xfrm(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@private0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x40, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x9}, {0x0, 0x5}}}, 0xb8}}, 0x4000)

15.454726771s ago: executing program 1 (id=8163):
openat$yama_ptrace_scope(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000188500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b70200000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
sendmsg(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000200)='G', 0x1}], 0x1}, 0x0)
r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f0000000040)={0x204, 0xa, 0x4})
r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_REQBUFS(r3, 0xc0585609, &(0x7f0000000040)={0x0, 0xa})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
dup(0xffffffffffffffff)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0)
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa05, &(0x7f0000000000)={&(0x7f0000ff5000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, 0x3000})
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x8, &(0x7f00000000c0), 0x111, 0x8}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(r7, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

3.001583695s ago: executing program 32 (id=8150):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = socket(0x2a, 0x6, 0x437)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_JOIN_OCB(r3, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x30, r4, 0x800, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x100, 0x6}}}}, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x36}]}, 0x30}, 0x1, 0x0, 0x0, 0x54}, 0x20004000)
socket$packet(0x11, 0x3, 0x300)
openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$NFT_MSG_GETOBJ(r2, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0xa42b07f24c58e5c3}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0x44, 0x13, 0xa, 0x5, 0x0, 0x0, {0x7}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_OBJ_USERDATA={0xa, 0x8, "9b71da1358e2"}]}, 0x44}, 0x1, 0x0, 0x0, 0x851}, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$kcm(0x21, 0x2, 0x2)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$inet6_sctp(0xa, 0x1, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r8=>0xffffffffffffffff})
r9 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x208400, 0x10)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)=ANY=[@ANYRES32=r9, @ANYRES32, @ANYRES32=r8], 0x20)
r10 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r11 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000006800010000000000000000000200000000000000080006000100000004000b"], 0x24}}, 0x4004094)
ioctl$KVM_SET_MSRS(r10, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x6e0}]})
sendto$l2tp6(r7, &(0x7f0000000400)="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", 0x1000, 0x809d, 0x0, 0x0)

2.926268541s ago: executing program 33 (id=8152):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = socket(0x2a, 0x6, 0x437)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x24, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0xc}]}, 0x24}}, 0x0)
socket$packet(0x11, 0x3, 0x300)
openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$NFT_MSG_GETOBJ(r2, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0xa42b07f24c58e5c3}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0x44, 0x13, 0xa, 0x5, 0x0, 0x0, {0x7}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_OBJ_USERDATA={0xa, 0x8, "9b71da1358e2"}]}, 0x44}, 0x1, 0x0, 0x0, 0x851}, 0x0)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$kcm(0x21, 0x2, 0x2)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$inet6_sctp(0xa, 0x1, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r7=>0xffffffffffffffff})
r8 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x208400, 0x10)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)=ANY=[@ANYRES32=r8, @ANYRES32, @ANYRES32=r7], 0x20)
r9 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r10 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000006800010000000000000000000200000000000000080006000100000004000b"], 0x24}}, 0x4004094)
ioctl$KVM_SET_MSRS(r9, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x6e0}]})
sendto$l2tp6(r6, &(0x7f0000000400)="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", 0x1000, 0x809d, 0x0, 0x0)

2.505147016s ago: executing program 34 (id=8156):
r0 = epoll_create(0x5)
r1 = userfaultfd(0x1)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000440)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffff}, 0x0)
syz_usb_connect(0x0, 0x5f, &(0x7f0000000680)=ANY=[@ANYBLOB="12010000b1f203401e0903003bd70102030109025c150503d53d89751b404a8225f4b4375e7f0c9e99f437c9d2428cdfc1be590beedc3b763a6dc2af0a780039d36f8e5565d41911ea13ee598a56e3877cfec19f2dc5976ff5f90ff4b60aec20e985b295fb0a13cf242028d5bb86ba7917073eec0a9d8ac6a04bf112f11278af0de4bc75a6c7b52129ddf7bd57b96a8d76fa06f48d53e11673303b94b9406e4ff6430dad58ea4f2aaf62704700ffb77fa87259f65b9fdec299d5a40de7aa40f98b4d3bee76a7154f50a547e0d9b13db0426077044ab4dd96639b"], 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_FIOGETOWN(r5, 0x8903, &(0x7f00000001c0)=<r6=>0x0)
waitid(0x1, r6, &(0x7f0000000240), 0x8, &(0x7f00000005c0))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
getsockopt$ARPT_SO_GET_REVISION_TARGET(r2, 0x0, 0x63, &(0x7f0000000140)={'icmp\x00'}, &(0x7f0000000180)=0x1e)
setsockopt$sock_attach_bpf(r7, 0x1, 0x4c, &(0x7f0000000300), 0x4)
write$binfmt_elf64(r8, &(0x7f0000000580)=ANY=[@ANYBLOB="0000000000000000000000000000000000000000000040000000000000000000bfef9004af9a20eaf3"], 0x78)
r9 = openat$mice(0xffffffffffffff9c, &(0x7f00000002c0), 0x400000)
r10 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000340), 0x1, 0x0)
fcntl$dupfd(r9, 0x406, r10)
recvmmsg(r7, &(0x7f0000000500)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=""/8, 0xc}}], 0x4b, 0x0, 0x0)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_usb_connect$hid(0x7, 0x3f, &(0x7f0000000380)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0xff, 0x56a, 0xd4, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x8, 0x0, 0x4, [{{0x9, 0x4, 0x0, 0xc, 0x2, 0x3, 0x1, 0x0, 0x80, {0x9, 0x21, 0x8, 0x7, 0x1, {0x22, 0x7a1}}, {{{0x9, 0x5, 0x81, 0x3, 0xf596b88f383f93f8, 0x6, 0x2, 0xbc}}, [{{0x9, 0x5, 0x2, 0x3, 0x20, 0xe, 0x1, 0x7}}]}}}]}}]}}, &(0x7f00000009c0)={0xa, &(0x7f00000004c0)={0xa, 0x6, 0x250, 0x5, 0x0, 0xd, 0x10, 0x34}, 0xc, &(0x7f0000000540)={0x5, 0xf, 0xc, 0x1, [@ext_cap={0x7, 0x10, 0x2, 0x14, 0x1, 0x5, 0x5}]}, 0x3, [{0x7f, &(0x7f0000000780)=@string={0x7f, 0x3, "dd01a0c962dbff9073270b66cb9ec995c1935b8f915dac3023c82e72eec1309ec3b294a76194735255698525326e09b2cdd7d3b02fa1f202e516ad1bd6009ff87eb36093c82cfc5b5864c5f3d97951b98f59e507d92b133775b671afa52296b1a26f744be009e7611ccb7e3fb28b1b90cb201d813becea00f66ba1ac0c"}}, {0xb3, &(0x7f0000000800)=@string={0xb3, 0x3, "ff04aa12a829bf9ee368eb54c8d3ee8b483adae901fcb8b70ef8620fefd6677e49fb691186a4ab5ea48bc6c117258ac97b5071169341e0c303824e0356cd0001065d84221d69719140c997e917b7e9ee2914f29ba57cfda9843a1be3e208e99a6137d95bf2068c7ca1ede0b298378373061f92e3abee75a26ee33a32577781876529c2bbf504a18a51e3765ecb8a8bc9218a4e1471fa9b86f63086f474841c7b0d73d6cf49b7cdad8fcebee0d421b13c61"}}, {0xec, &(0x7f00000008c0)=@string={0xec, 0x3, "1a0b8aae022a2c606c38644aab36958056c62d204c11945838ec0357d6d6da5446a78e755549c052b847d88d7932226fd654780a854a2f7d5ce368ff981cf85d08321bcee4fa6bf54209d15fe2b3f034b5d40204479a9f540e169d8d745cb1eb93793b43258153e400aec9b82c54f6ace58d13a996b14da562beb299662a1c8b589fefd7329f0b464f93da68bc0b91fec3e4f11c45652be2309765d1d2670f4fe32fee7abbd85aa65f25d59e32eef3fdb9b456b5cc92451bc938f00772e6a3627c38dd008e281bb139c3d9eb26d63518eaa67a35b3c73d860ca3e34fe1cf17814195e4b28513076e317a"}}]})
sendmsg$NFT_BATCH(r11, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r11, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_DYNSET_FLAGS={0x8, 0x9, 0x1, 0x0, 0x1}, @NFTA_DYNSET_OP={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x7c}}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)={0x10000000})

1.502174091s ago: executing program 35 (id=8160):
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket(0x10, 0x3, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f0000000300)=0x2)
creat(&(0x7f0000000080)='./bus\x00', 0x0)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000000)='system.posix_acl_default\x00', 0x0, 0xfe44, 0x0)
ioctl$PPPIOCSACTIVE(r2, 0x40047459, &(0x7f0000000080)={0xfffffffffffffe43, 0x0})
read(r2, 0x0, 0x2)
pwrite64(r0, &(0x7f0000000380)="68db2b0000000000000000122800", 0xe, 0x40000000000000)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000004200)={&(0x7f0000000740)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r3, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000140))
bind$alg(0xffffffffffffffff, &(0x7f0000000200)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha256\x00'}, 0x58)
ioctl$VHOST_SET_FEATURES(r3, 0x4008af00, &(0x7f0000000080)=0x200000000)
r4 = dup2(r3, r3)
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000400)={0x2, 0x1, 0x0, &(0x7f0000000300)=""/121, 0x0, 0x8080000})
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f0000000000)=0x5)
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f0000000040)=0x1)
read$FUSE(r4, &(0x7f0000004d80)={0x2020}, 0x2020)
r5 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_INIT(r5, 0x29, 0xc8, &(0x7f0000000340), 0x4)
setsockopt$MRT6_DEL_MFC(r5, 0x29, 0xcd, 0x0, 0x0)
write$vhost_msg_v2(r4, &(0x7f0000000280)={0x2, 0x0, {&(0x7f0000000140)=""/121, 0x79, 0x0, 0x0, 0x2}}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r4, 0xc08c5336, &(0x7f0000000140)={0x5, 0x1, 0x0, 'queue1\x00', 0x4})
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)
r6 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r6, &(0x7f0000004380)=[{{&(0x7f0000000100)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000001640)=[{&(0x7f0000000480)="ba3d2374", 0x4}], 0x1, 0x0, 0x0, 0x844}}], 0x1, 0x814)

0s ago: executing program 36 (id=8163):
openat$yama_ptrace_scope(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000188500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b70200000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
sendmsg(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000200)='G', 0x1}], 0x1}, 0x0)
r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f0000000040)={0x204, 0xa, 0x4})
r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_REQBUFS(r3, 0xc0585609, &(0x7f0000000040)={0x0, 0xa})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
dup(0xffffffffffffffff)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0)
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa05, &(0x7f0000000000)={&(0x7f0000ff5000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, 0x3000})
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x8, &(0x7f00000000c0), 0x111, 0x8}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(r7, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

artup query interval below minimum, setting to 100 (1000ms)
[ 2242.334775][T12280] usb 3-1: new full-speed USB device number 3 using dummy_hcd
[ 2242.489050][T12280] usb 3-1: config 0 has an invalid interface number: 138 but max is 0
[ 2242.507481][T12280] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2242.532602][T12280] usb 3-1: config 0 has no interface number 0
[ 2242.549359][T12280] usb 3-1: config 0 interface 138 altsetting 0 has an endpoint descriptor with address 0x61, changing to 0x1
[ 2242.581670][T12280] usb 3-1: config 0 interface 138 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 2242.618653][T12280] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice= f.66
[ 2242.634994][T12280] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2242.656457][T12280] usb 3-1: config 0 descriptor??
[ 2242.884449][T12280] usb 3-1: string descriptor 0 read error: -71
[ 2242.920969][T12280] usbtest 3-1:0.138: couldn't get endpoints, -22
[ 2242.938747][T12280] usbtest 3-1:0.138: probe with driver usbtest failed with error -22
[ 2242.962587][T12280] usb 3-1: USB disconnect, device number 3
[ 2243.425586][   T30] kauditd_printk_skb: 91 callbacks suppressed
[ 2243.425606][   T30] audit: type=1326 audit(1746667587.197:4110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32254 comm="syz.4.7466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f879998e969 code=0x7ffc0000
[ 2243.555119][   T30] audit: type=1326 audit(1746667587.227:4111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32254 comm="syz.4.7466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7f879998e969 code=0x7ffc0000
[ 2243.604240][   T30] audit: type=1326 audit(1746667587.237:4112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32254 comm="syz.4.7466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f879998e969 code=0x7ffc0000
[ 2243.677985][   T30] audit: type=1326 audit(1746667587.237:4113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32254 comm="syz.4.7466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f879998e969 code=0x7ffc0000
[ 2243.761102][   T30] audit: type=1326 audit(1746667587.237:4114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32254 comm="syz.4.7466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f879998e969 code=0x7ffc0000
[ 2243.835227][   T30] audit: type=1326 audit(1746667587.237:4115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32254 comm="syz.4.7466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f879998e969 code=0x7ffc0000
[ 2243.918476][   T30] audit: type=1326 audit(1746667587.237:4116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32254 comm="syz.4.7466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f879998e969 code=0x7ffc0000
[ 2243.968519][   T30] audit: type=1326 audit(1746667587.237:4117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32254 comm="syz.4.7466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f879998e969 code=0x7ffc0000
[ 2244.010686][   T30] audit: type=1326 audit(1746667587.237:4118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32254 comm="syz.4.7466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f879998e969 code=0x7ffc0000
[ 2244.104964][T25245] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[ 2244.131507][T32270] hub 9-0:1.0: USB hub found
[ 2244.157121][T32270] hub 9-0:1.0: 1 port detected
[ 2244.274808][T25245] usb 5-1: Using ep0 maxpacket: 8
[ 2244.296878][T25245] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2244.318364][T25245] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 2244.354749][T25245] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2244.375806][T25245] usb 5-1: config 0 descriptor??
[ 2244.639868][T25245] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[ 2245.267637][T21238] usb 5-1: USB disconnect, device number 3
[ 2246.127586][T32293] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7476'.
[ 2246.164815][T26083] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[ 2246.386925][T26083] usb 5-1: config 2 has an invalid interface number: 47 but max is 0
[ 2246.521451][T26083] usb 5-1: config 2 has no interface number 0
[ 2246.527741][T26083] usb 5-1: config 2 interface 47 has no altsetting 0
[ 2246.546903][T26083] usb 5-1: New USB device found, idVendor=10b8, idProduct=1f98, bcdDevice=40.7d
[ 2246.574737][T26083] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2246.582809][T26083] usb 5-1: Product: syz
[ 2246.614699][T26083] usb 5-1: Manufacturer: syz
[ 2246.619373][T26083] usb 5-1: SerialNumber: syz
[ 2246.855633][T26083] dvb-usb: found a 'DiBcom STK807xPVR reference design' in cold state, will try to load a firmware
[ 2246.882244][T26083] dvb-usb: downloading firmware from file 'dvb-usb-dib0700-1.20.fw'
[ 2246.908662][T26083] dib0700: firmware download failed at 7 with -22
[ 2246.930775][T26083] usb 5-1: USB disconnect, device number 4
[ 2247.045416][   T30] audit: type=1326 audit(1746667590.807:4119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32310 comm="syz.1.7482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2247.149993][T32311] atomic_op ffff88805a36a198 conn xmit_atomic 0000000000000000
[ 2247.364801][T26083] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[ 2247.564772][T26083] usb 5-1: Using ep0 maxpacket: 16
[ 2247.576642][T26083] usb 5-1: config 2 has an invalid interface number: 47 but max is 0
[ 2247.596716][T26083] usb 5-1: config 2 has no interface number 0
[ 2247.603544][T26083] usb 5-1: config 2 interface 47 has no altsetting 0
[ 2247.616825][T26083] usb 5-1: New USB device found, idVendor=10b8, idProduct=1f98, bcdDevice=40.7d
[ 2247.626207][T26083] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2247.634256][T26083] usb 5-1: Product: syz
[ 2247.640270][T26083] usb 5-1: Manufacturer: syz
[ 2247.645433][T26083] usb 5-1: SerialNumber: syz
[ 2248.280455][T26083] dvb-usb: found a 'DiBcom STK807xPVR reference design' in warm state.
[ 2248.392838][T26083] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 2248.499378][T32287] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2248.518786][T32287] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2248.532215][T26083] dvbdev: DVB: registering new adapter (DiBcom STK807xPVR reference design)
[ 2248.554790][T26083] usb 5-1: media controller created
[ 2248.665145][T26083] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 2249.478803][T26083] DVB: Unable to find symbol dib8000_attach()
[ 2249.513898][T26083] dvb-usb: no frontend was attached by 'DiBcom STK807xPVR reference design'
[ 2249.554924][T26083] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 2249.575246][T26083] dvbdev: DVB: registering new adapter (DiBcom STK807xPVR reference design)
[ 2249.584501][T26083] usb 5-1: media controller created
[ 2249.693950][T26083] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 2250.083320][T26083] DVB: Unable to find symbol dib8000_attach()
[ 2250.121947][T26083] dvb-usb: no frontend was attached by 'DiBcom STK807xPVR reference design'
[ 2250.344748][T26083] rc_core: IR keymap rc-dib0700-rc5 not found
[ 2250.373305][T26083] Registered IR keymap rc-empty
[ 2250.379023][T26083] dvb-usb: could not initialize remote control.
[ 2250.385791][T26083] dvb-usb: DiBcom STK807xPVR reference design successfully initialized and connected.
[ 2250.407008][T26083] usb 5-1: USB disconnect, device number 5
[ 2250.525735][T26083] dvb-usb: DiBcom STK807xPVR reference design successfully deinitialized and disconnected.
[ 2251.624081][T32369] netlink: 'syz.4.7496': attribute type 1 has an invalid length.
[ 2251.828067][T32369] 8021q: adding VLAN 0 to HW filter on device bond2
[ 2251.968004][T32373] 8021q: adding VLAN 0 to HW filter on device bond2
[ 2251.986238][T32373] bond2: (slave vxcan1): The slave device specified does not support setting the MAC address
[ 2252.084805][T32373] bond2: (slave vxcan1): Error -95 calling set_mac_address
[ 2252.334154][T32375] erspan0: entered allmulticast mode
[ 2252.379227][T32375] bond2: (slave erspan0): making interface the new active one
[ 2252.463539][T32375] bond2: (slave erspan0): Enslaving as an active interface with an up link
[ 2253.181524][   T30] kauditd_printk_skb: 46 callbacks suppressed
[ 2253.181545][   T30] audit: type=1326 audit(1746667596.947:4166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32403 comm="syz.1.7509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2253.277464][   T30] audit: type=1326 audit(1746667596.987:4167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32403 comm="syz.1.7509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2253.390109][   T30] audit: type=1326 audit(1746667596.997:4168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32403 comm="syz.1.7509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2253.484809][   T30] audit: type=1326 audit(1746667596.997:4169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32403 comm="syz.1.7509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2253.629467][   T30] audit: type=1326 audit(1746667596.997:4170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32403 comm="syz.1.7509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2253.704886][   T30] audit: type=1326 audit(1746667596.997:4171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32403 comm="syz.1.7509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2253.762965][   T30] audit: type=1326 audit(1746667596.997:4172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32403 comm="syz.1.7509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2253.975226][   T30] audit: type=1326 audit(1746667596.997:4173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32403 comm="syz.1.7509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2254.041897][   T30] audit: type=1326 audit(1746667596.997:4174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32403 comm="syz.1.7509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2254.125534][   T30] audit: type=1326 audit(1746667596.997:4175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32403 comm="syz.1.7509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2256.287189][T21238] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[ 2256.554744][T21238] usb 5-1: Using ep0 maxpacket: 16
[ 2256.562017][T21238] usb 5-1: config 1 has an invalid interface number: 105 but max is 0
[ 2256.577052][T21238] usb 5-1: config 1 has no interface number 0
[ 2256.593583][T21238] usb 5-1: config 1 interface 105 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[ 2256.610625][T21238] usb 5-1: config 1 interface 105 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[ 2256.635545][T21238] usb 5-1: config 1 interface 105 has no altsetting 0
[ 2256.664144][T21238] usb 5-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[ 2256.674549][T21238] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2256.693522][T21238] usb 5-1: Product: syz
[ 2256.704211][T21238] usb 5-1: Manufacturer: syz
[ 2256.717573][T21238] usb 5-1: SerialNumber: syz
[ 2256.741154][T32442] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 2256.757731][T32442] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 2256.954895][   T24] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[ 2257.191776][T32442] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 2257.196715][   T24] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2257.209823][   T24] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 2257.219130][   T24] usb 4-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[ 2257.228709][T32442] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 2257.250131][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2257.290407][   T24] usb 4-1: config 0 descriptor??
[ 2257.304782][T26083] usb 2-1: new high-speed USB device number 80 using dummy_hcd
[ 2257.571547][T32456] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2257.590028][T26083] usb 2-1: Using ep0 maxpacket: 16
[ 2257.623491][T26083] usb 2-1: config 1 has an invalid interface number: 105 but max is 0
[ 2257.636443][T26083] usb 2-1: config 1 has no interface number 0
[ 2257.646823][T26083] usb 2-1: config 1 interface 105 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[ 2257.671271][T32456] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2257.689774][T26083] usb 2-1: config 1 interface 105 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[ 2257.714785][T26083] usb 2-1: config 1 interface 105 has no altsetting 0
[ 2257.754970][   T24] usb 4-1: USB disconnect, device number 27
[ 2257.812759][T26083] usb 2-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[ 2257.826793][T26083] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2257.842912][T26083] usb 2-1: Product: syz
[ 2257.848040][T26083] usb 2-1: Manufacturer: syz
[ 2257.852891][T26083] usb 2-1: SerialNumber: syz
[ 2257.864557][T32462] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[ 2257.879163][T32462] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[ 2257.972419][T21238] aqc111 5-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71
[ 2257.989314][T21238] aqc111 5-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71
[ 2258.056383][T21238] aqc111 5-1:1.105 eth1: register 'aqc111' at usb-dummy_hcd.4-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter, 86:27:9b:01:12:5e
[ 2258.111861][T21238] usb 5-1: USB disconnect, device number 6
[ 2258.169905][T21238] aqc111 5-1:1.105 eth1: unregister 'aqc111' usb-dummy_hcd.4-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter
[ 2258.293187][T32462] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[ 2258.304069][T21238] aqc111 5-1:1.105 eth1 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[ 2258.321331][T21238] aqc111 5-1:1.105 eth1 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[ 2258.321661][T32462] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[ 2258.338608][T21238] aqc111 5-1:1.105 eth1 (unregistered): Failed to write(0x61) reg index 0x0000: -19
[ 2258.779500][T26083] aqc111 2-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -32
[ 2258.847733][T26083] aqc111 2-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -32
[ 2258.900172][T26083] aqc111 2-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71
[ 2259.008846][T26083] aqc111 2-1:1.105 eth1: register 'aqc111' at usb-dummy_hcd.1-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter, ae:66:11:ef:76:8d
[ 2259.044551][T26083] usb 2-1: USB disconnect, device number 80
[ 2259.060951][T26083] aqc111 2-1:1.105 eth1: unregister 'aqc111' usb-dummy_hcd.1-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter
[ 2259.335301][T26083] aqc111 2-1:1.105 eth1 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[ 2259.355422][T26083] aqc111 2-1:1.105 eth1 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[ 2259.365587][T26083] aqc111 2-1:1.105 eth1 (unregistered): Failed to write(0x61) reg index 0x0000: -19
[ 2261.621763][T32554] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7553'.
[ 2261.792430][T32560] batman_adv: batadv0: Interface deactivated: dummy0
[ 2261.825771][T32560] batman_adv: batadv0: Removing interface: dummy0
[ 2261.837284][T32561] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7555'.
[ 2261.883433][T32560] bridge_slave_0: left allmulticast mode
[ 2261.909656][T32560] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2261.992267][T32560] bond0: (slave bond_slave_0): Releasing backup interface
[ 2262.040042][T32560] bond0: (slave bond_slave_1): Releasing backup interface
[ 2262.168760][T32560] team0: Port device team_slave_0 removed
[ 2262.193877][   T30] kauditd_printk_skb: 14 callbacks suppressed
[ 2262.193901][   T30] audit: type=1326 audit(1746667605.957:4190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32570 comm="syz.4.7559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f879998e969 code=0x7fc00000
[ 2262.315409][T32560] team0: Port device team_slave_1 removed
[ 2262.348688][T32560] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2262.394822][T32560] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2262.416795][T32560] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2262.445825][T32560] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2262.534754][T32561] tipc: Resetting bearer <eth:team0>
[ 2262.638297][T32586] netlink: 'syz.2.7563': attribute type 10 has an invalid length.
[ 2262.646254][T32586] netlink: 40 bytes leftover after parsing attributes in process `syz.2.7563'.
[ 2262.885703][T32561] tipc: Disabling bearer <eth:team0>
[ 2263.125515][T32586] A link change request failed with some changes committed already. Interface virt_wifi0 may have been left with an inconsistent configuration, please check.
[ 2264.434858][T26083] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[ 2264.594773][T26083] usb 3-1: Using ep0 maxpacket: 32
[ 2264.607074][T26083] usb 3-1: config 0 has an invalid interface number: 85 but max is 0
[ 2264.628321][T26083] usb 3-1: config 0 has no interface number 0
[ 2264.634512][T26083] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2264.668876][T26083] usb 3-1: config 0 interface 85 has no altsetting 0
[ 2264.698986][T26083] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[ 2264.710057][T26083] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2264.726462][T26083] usb 3-1: Product: syz
[ 2264.737275][T26083] usb 3-1: Manufacturer: syz
[ 2264.746525][T26083] usb 3-1: SerialNumber: syz
[ 2264.760172][T26083] usb 3-1: config 0 descriptor??
[ 2264.993524][T26083] appletouch 3-1:0.85: Failed to read mode from device.
[ 2265.023086][T26083] appletouch 3-1:0.85: probe with driver appletouch failed with error -5
[ 2265.062392][T26083] usb 3-1: USB disconnect, device number 4
[ 2266.574970][    T9] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[ 2266.671297][T32641] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7580'.
[ 2266.699776][T32641] vlan2: entered allmulticast mode
[ 2266.709729][T32641] bridge_slave_0: entered allmulticast mode
[ 2266.754696][    T9] usb 3-1: Using ep0 maxpacket: 32
[ 2266.762057][    T9] usb 3-1: config 0 has an invalid interface number: 85 but max is 0
[ 2266.774714][    T9] usb 3-1: config 0 has no interface number 0
[ 2266.780932][    T9] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2266.810500][    T9] usb 3-1: config 0 interface 85 has no altsetting 0
[ 2266.835499][T26083] usb 2-1: new full-speed USB device number 81 using dummy_hcd
[ 2266.835640][    T9] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[ 2266.885103][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2266.893278][    T9] usb 3-1: Product: syz
[ 2266.905174][    T9] usb 3-1: Manufacturer: syz
[ 2266.920132][    T9] usb 3-1: SerialNumber: syz
[ 2266.957082][    T9] usb 3-1: config 0 descriptor??
[ 2267.136327][T26083] usb 2-1: no configurations
[ 2267.141249][T26083] usb 2-1: can't read configurations, error -22
[ 2267.548587][T26083] usb 2-1: new full-speed USB device number 82 using dummy_hcd
[ 2267.590867][    T9] appletouch 3-1:0.85: Geyser mode initialized.
[ 2267.605526][    T9] input: appletouch as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.85/input/input113
[ 2267.620514][T32654] netlink: 'syz.0.7582': attribute type 4 has an invalid length.
[ 2267.634800][ T5829] usb 4-1: new full-speed USB device number 28 using dummy_hcd
[ 2267.652768][T32654] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.7582'.
[ 2267.706368][T26083] usb 2-1: no configurations
[ 2267.723437][T26083] usb 2-1: can't read configurations, error -22
[ 2267.740825][T26083] usb usb2-port1: attempt power cycle
[ 2267.798284][ T5829] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 2267.819895][T12280] usb 3-1: USB disconnect, device number 5
[ 2267.829719][ T5829] usb 4-1: not running at top speed; connect to a high speed hub
[ 2267.850141][T12280] appletouch 3-1:0.85: input: appletouch disconnected
[ 2267.887527][ T5829] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 2267.902280][ T5829] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 2267.918944][ T5829] usb 4-1: config 1 has no interface number 1
[ 2267.926061][ T5829] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 83, changing to 4
[ 2267.937537][ T5829] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 1023
[ 2267.953398][ T5829] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 2267.970937][ T5829] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2267.989576][ T5829] usb 4-1: Product: syz
[ 2267.993823][ T5829] usb 4-1: Manufacturer: syz
[ 2268.053604][ T5829] usb 4-1: SerialNumber: syz
[ 2268.104846][T26083] usb 2-1: new full-speed USB device number 83 using dummy_hcd
[ 2268.136769][T26083] usb 2-1: no configurations
[ 2268.141544][T26083] usb 2-1: can't read configurations, error -22
[ 2268.193895][T32664] usb usb8: usbfs: process 32664 (syz.4.7588) did not claim interface 0 before use
[ 2268.274852][T26083] usb 2-1: new full-speed USB device number 84 using dummy_hcd
[ 2268.306517][T26083] usb 2-1: no configurations
[ 2268.317693][T26083] usb 2-1: can't read configurations, error -22
[ 2268.354101][T32667] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2268.395518][T26083] usb usb2-port1: unable to enumerate USB device
[ 2268.405232][T32667] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2268.475206][T32668] netlink: 4268 bytes leftover after parsing attributes in process `syz.4.7588'.
[ 2268.486092][T32668] netlink: 4268 bytes leftover after parsing attributes in process `syz.4.7588'.
[ 2268.499517][T32667] netlink: 'syz.3.7584': attribute type 8 has an invalid length.
[ 2268.601978][T32667] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7584'.
[ 2270.777765][ T5829] usb 4-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[ 2270.826285][ T5829] usb 4-1: USB disconnect, device number 28
[ 2271.063696][ T5975] udevd[5975]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 2271.545103][ T5829] usb 2-1: new full-speed USB device number 85 using dummy_hcd
[ 2271.813965][T32715] usb usb8: usbfs: process 32715 (syz.2.7603) did not claim interface 0 before use
[ 2271.816868][ T5829] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2271.869332][ T5829] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 2271.886663][ T5829] usb 2-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[ 2271.944862][ T5829] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2271.957187][ T5829] usb 2-1: config 0 descriptor??
[ 2272.099021][T32718] netlink: 4268 bytes leftover after parsing attributes in process `syz.2.7603'.
[ 2272.116252][T32718] netlink: 4268 bytes leftover after parsing attributes in process `syz.2.7603'.
[ 2272.233861][T25245] usb 2-1: USB disconnect, device number 85
[ 2273.744777][T32730] usb usb8: usbfs: process 32730 (syz.3.7607) did not claim interface 0 before use
[ 2274.056155][T32733] netlink: 4268 bytes leftover after parsing attributes in process `syz.3.7607'.
[ 2274.066873][T32733] netlink: 4268 bytes leftover after parsing attributes in process `syz.3.7607'.
[ 2275.881287][T32743] netlink: 'syz.2.7606': attribute type 4 has an invalid length.
[ 2275.964741][T32743] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.7606'.
[ 2276.624219][T32751] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7611'.
[ 2276.680044][T32751] vlan2: entered allmulticast mode
[ 2277.445107][ T5829] usb 2-1: new full-speed USB device number 86 using dummy_hcd
[ 2277.607466][ T5829] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2277.618250][ T5829] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 2277.628269][ T5829] usb 2-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[ 2277.637806][ T5829] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2277.649192][ T5829] usb 2-1: config 0 descriptor??
[ 2277.868154][ T5829] usb 2-1: USB disconnect, device number 86
[ 2278.368878][   T30] audit: type=1326 audit(1746667622.127:4191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=321 comm="syz.3.7625" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f654dd8e969 code=0x0
[ 2280.260376][  T345] netlink: 88 bytes leftover after parsing attributes in process `syz.3.7632'.
[ 2281.809824][  T376] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7645'.
[ 2281.870880][  T376] vlan3: entered allmulticast mode
[ 2282.587455][  T382] usb usb8: usbfs: process 382 (syz.0.7647) did not claim interface 0 before use
[ 2282.832439][  T388] netlink: 4268 bytes leftover after parsing attributes in process `syz.0.7647'.
[ 2282.842002][  T388] netlink: 4268 bytes leftover after parsing attributes in process `syz.0.7647'.
[ 2283.194890][    T9] usb 4-1: new full-speed USB device number 29 using dummy_hcd
[ 2283.209397][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[ 2283.215936][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[ 2283.583190][    T9] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 2283.592785][    T9] usb 4-1: not running at top speed; connect to a high speed hub
[ 2283.615389][    T9] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 2283.635563][    T9] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 2283.690152][    T9] usb 4-1: config 1 has no interface number 1
[ 2283.713979][    T9] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 83, changing to 4
[ 2283.745080][    T9] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 1023
[ 2283.775913][  T405] bridge2: entered promiscuous mode
[ 2283.777193][    T9] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 2283.814658][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2283.843529][    T9] usb 4-1: Product: syz
[ 2283.874773][    T9] usb 4-1: Manufacturer: syz
[ 2283.897454][    T9] usb 4-1: SerialNumber: syz
[ 2284.242017][  T410] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2284.297326][  T410] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2284.359863][  T410] netlink: 'syz.3.7651': attribute type 8 has an invalid length.
[ 2284.368062][  T410] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7651'.
[ 2284.653064][  T415] usb usb8: usbfs: process 415 (syz.1.7661) did not claim interface 0 before use
[ 2284.836855][  T419] netlink: 4268 bytes leftover after parsing attributes in process `syz.1.7661'.
[ 2284.864857][  T419] netlink: 4268 bytes leftover after parsing attributes in process `syz.1.7661'.
[ 2286.014342][    T9] usb 4-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[ 2286.051918][    T9] usb 4-1: USB disconnect, device number 29
[ 2286.092714][  T447] bridge3: entered promiscuous mode
[ 2286.148200][ T5975] udevd[5975]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 2286.569800][  T467] usb usb8: usbfs: process 467 (syz.3.7680) did not claim interface 0 before use
[ 2286.713989][   T30] audit: type=1326 audit(1746667630.477:4192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=469 comm="syz.0.7681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c1bb8e969 code=0x7ffc0000
[ 2286.791157][   T30] audit: type=1326 audit(1746667630.507:4193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=469 comm="syz.0.7681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f2c1bb8e969 code=0x7ffc0000
[ 2286.837557][   T30] audit: type=1326 audit(1746667630.507:4194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=469 comm="syz.0.7681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c1bb8e969 code=0x7ffc0000
[ 2286.895750][  T471] netlink: 4268 bytes leftover after parsing attributes in process `syz.3.7680'.
[ 2286.922030][  T471] netlink: 4268 bytes leftover after parsing attributes in process `syz.3.7680'.
[ 2288.266989][  T494] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7688'.
[ 2288.501823][  T504] netlink: 84 bytes leftover after parsing attributes in process `syz.4.7691'.
[ 2288.530628][  T504] Cannot find del_set index 0 as target
[ 2288.905036][   T24] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[ 2289.072170][   T24] usb 5-1: config 0 has an invalid interface number: 229 but max is 0
[ 2289.100975][  T513] bridge6: entered promiscuous mode
[ 2289.106675][   T24] usb 5-1: config 0 has no interface number 0
[ 2289.142297][   T24] usb 5-1: New USB device found, idVendor=0dfc, idProduct=0001, bcdDevice= c.19
[ 2289.194740][T21238] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[ 2289.196444][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2289.259095][   T24] usb 5-1: config 0 descriptor??
[ 2289.394755][T21238] usb 4-1: Using ep0 maxpacket: 32
[ 2289.517527][T21238] usb 4-1: config 0 has an invalid interface number: 108 but max is 0
[ 2289.562249][T21238] usb 4-1: config 0 has no interface number 0
[ 2289.595044][T21238] usb 4-1: config 0 interface 108 has no altsetting 0
[ 2289.723806][T21238] usb 4-1: New USB device found, idVendor=99fa, idProduct=8988, bcdDevice=65.cd
[ 2289.823471][T21238] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2289.953652][T21238] usb 4-1: Product: syz
[ 2289.969005][T21238] usb 4-1: Manufacturer: syz
[ 2289.995831][T21238] usb 4-1: SerialNumber: syz
[ 2290.004185][T21238] usb 4-1: config 0 descriptor??
[ 2290.038519][T21238] gspca_main: spca506-2.14.0 probing 99fa:8988
[ 2290.697760][  T536] usb usb8: usbfs: process 536 (syz.0.7698) did not claim interface 0 before use
[ 2291.084520][  T538] netlink: 4268 bytes leftover after parsing attributes in process `syz.0.7698'.
[ 2291.098619][  T538] netlink: 4268 bytes leftover after parsing attributes in process `syz.0.7698'.
[ 2292.555380][T26083] usb 4-1: USB disconnect, device number 30
[ 2292.575575][T21238] usb 5-1: USB disconnect, device number 7
[ 2293.062872][  T552] usb usb8: usbfs: process 552 (syz.2.7702) did not claim interface 0 before use
[ 2293.066042][  T554] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7704'.
[ 2293.159913][  T554] vlan0: entered allmulticast mode
[ 2293.323679][  T560] netlink: 4268 bytes leftover after parsing attributes in process `syz.2.7702'.
[ 2293.341231][  T564] netlink: 'syz.3.7705': attribute type 10 has an invalid length.
[ 2293.534929][  T560] netlink: 4268 bytes leftover after parsing attributes in process `syz.2.7702'.
[ 2293.598888][  T564] netlink: 40 bytes leftover after parsing attributes in process `syz.3.7705'.
[ 2293.757421][  T564] team0: Failed to send port change of device geneve0 via netlink (err -105)
[ 2293.782306][  T564] team0: Failed to send options change via netlink (err -105)
[ 2293.791771][  T564] team0: Port device geneve0 added
[ 2293.954890][T21238] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[ 2294.127136][T21238] usb 4-1: Using ep0 maxpacket: 16
[ 2294.137956][T21238] usb 4-1: config index 0 descriptor too short (expected 548, got 36)
[ 2294.146981][T21238] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2294.200187][T21238] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2294.222867][T21238] usb 4-1: New USB device found, idVendor=056e, idProduct=00fe, bcdDevice= 0.00
[ 2294.291014][  T583] netlink: 'syz.4.7710': attribute type 4 has an invalid length.
[ 2295.021899][T21238] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2295.116147][T21238] usb 4-1: config 0 descriptor??
[ 2295.439899][T21238] usbhid 4-1:0.0: can't add hid device: -71
[ 2295.446378][T21238] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[ 2295.457321][T21238] usb 4-1: USB disconnect, device number 31
[ 2296.347473][   T24] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[ 2296.505567][   T24] usb 3-1: Using ep0 maxpacket: 32
[ 2296.585582][   T24] usb 3-1: config 0 has an invalid interface number: 85 but max is 0
[ 2296.605023][   T24] usb 3-1: config 0 has no interface number 0
[ 2296.712565][   T24] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2296.745269][   T24] usb 3-1: config 0 interface 85 has no altsetting 0
[ 2296.798588][   T24] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[ 2296.896045][  T625] netlink: 'syz.0.7727': attribute type 4 has an invalid length.
[ 2296.909023][T21238] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[ 2296.933506][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2297.494731][   T24] usb 3-1: Product: syz
[ 2297.499106][   T24] usb 3-1: Manufacturer: syz
[ 2297.504681][   T24] usb 3-1: SerialNumber: syz
[ 2297.541220][   T24] usb 3-1: config 0 descriptor??
[ 2297.606589][T21238] usb 5-1: config 0 has no interfaces?
[ 2297.617938][T21238] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2297.644741][T21238] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2297.753247][T21238] usb 5-1: Product: syz
[ 2297.765627][ T5829] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[ 2297.809718][T21238] usb 5-1: Manufacturer: syz
[ 2297.814826][T21238] usb 5-1: SerialNumber: syz
[ 2297.837687][T21238] usb 5-1: config 0 descriptor??
[ 2298.007922][ T5829] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 2298.022503][ T5829] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 2298.159296][   T24] appletouch 3-1:0.85: Geyser mode initialized.
[ 2298.165942][ T5829] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 2298.179644][   T24] input: appletouch as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.85/input/input118
[ 2298.189793][ T5829] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 2298.225138][ T5829] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[ 2298.261662][ T5829] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 2298.279801][ T5829] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 2298.305869][ T5829] usb 4-1: Product: syz
[ 2298.317738][ T5829] usb 4-1: Manufacturer: syz
[ 2298.339776][ T5829] cdc_wdm 4-1:1.0: skipping garbage
[ 2298.363205][  T621] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7726'.
[ 2298.393378][ T5829] cdc_wdm 4-1:1.0: skipping garbage
[ 2298.468883][ T5829] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[ 2298.481421][   T24] usb 3-1: USB disconnect, device number 6
[ 2298.513899][ T5829] cdc_wdm 4-1:1.0: Unknown control protocol
[ 2298.535710][   T24] appletouch 3-1:0.85: input: appletouch disconnected
[ 2298.571544][  T627] usb usb1: check_ctrlrecip: process 627 (syz.3.7728) requesting ep 01 but needs 81
[ 2298.613067][  T627] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7728'.
[ 2298.631121][  T627] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7728'.
[ 2299.047966][  T641] netlink: 84 bytes leftover after parsing attributes in process `syz.1.7731'.
[ 2299.344865][   T24] usb 2-1: new high-speed USB device number 87 using dummy_hcd
[ 2299.529752][   T24] usb 2-1: config 0 has an invalid interface number: 229 but max is 0
[ 2299.540627][   T24] usb 2-1: config 0 has no interface number 0
[ 2299.553631][   T24] usb 2-1: New USB device found, idVendor=0dfc, idProduct=0001, bcdDevice= c.19
[ 2299.604198][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2299.707115][T25245] usb 5-1: USB disconnect, device number 8
[ 2299.855118][   T24] usb 2-1: config 0 descriptor??
[ 2299.967857][  T647] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2300.007625][  T647] pim6reg1: entered promiscuous mode
[ 2300.015966][  T647] pim6reg1: entered allmulticast mode
[ 2300.534406][T25245] usb 4-1: USB disconnect, device number 32
[ 2301.794734][   T24] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[ 2302.583863][   T24] usb 3-1: config index 0 descriptor too short (expected 63524, got 36)
[ 2302.599155][   T24] usb 3-1: config 227 has too many interfaces: 94, using maximum allowed: 32
[ 2302.624454][   T24] usb 3-1: config 227 has an invalid descriptor of length 37, skipping remainder of the config
[ 2302.714873][   T24] usb 3-1: config 227 has 0 interfaces, different from the descriptor's value: 94
[ 2302.829996][   T24] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2302.854698][T12280] usb 2-1: USB disconnect, device number 87
[ 2302.915922][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2303.338112][  T690] netlink: 60 bytes leftover after parsing attributes in process `syz.4.7747'.
[ 2303.474789][T25245] usb 2-1: new full-speed USB device number 88 using dummy_hcd
[ 2303.903050][T25245] usb 2-1: not running at top speed; connect to a high speed hub
[ 2303.939895][T25245] usb 2-1: config 1 has an invalid descriptor of length 90, skipping remainder of the config
[ 2303.950432][T25245] usb 2-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[ 2303.983553][T25245] usb 2-1: New USB device found, idVendor=0535, idProduct=a4a8, bcdDevice= 0.40
[ 2303.992809][T25245] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2304.014907][T25245] usb 2-1: Product: syz
[ 2304.023355][T25245] usb 2-1: Manufacturer: syz
[ 2304.064773][T25245] usb 2-1: SerialNumber: syz
[ 2305.332842][   T24] usb 3-1: string descriptor 0 read error: -71
[ 2305.524895][T21238] usb 5-1: new full-speed USB device number 9 using dummy_hcd
[ 2305.546877][   T24] usb 3-1: USB disconnect, device number 7
[ 2305.688230][T21238] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 2305.832798][T21238] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2305.859501][T21238] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 2305.869352][T21238] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2305.911991][T21238] usb 5-1: config 0 descriptor??
[ 2305.937524][T21238] hub 5-1:0.0: USB hub found
[ 2306.142053][T21238] hub 5-1:0.0: 1 port detected
[ 2306.881805][T21238] hub 5-1:0.0: hub_hub_status failed (err = -71)
[ 2306.888850][T21238] hub 5-1:0.0: config failed, can't get hub status (err -71)
[ 2306.937647][T21238] usbhid 5-1:0.0: can't add hid device: -71
[ 2306.960612][T21238] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 2307.023350][T21238] usb 5-1: USB disconnect, device number 9
[ 2307.260661][T25245] usb 2-1: USB disconnect, device number 88
[ 2307.470624][  T732] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7761'.
[ 2307.494544][  T732] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7761'.
[ 2307.513030][  T732] netlink: 'syz.1.7761': attribute type 15 has an invalid length.
[ 2307.554058][  T735] netlink: 'syz.1.7761': attribute type 10 has an invalid length.
[ 2307.595980][  T735] team0: Device veth0_vlan failed to register rx_handler
[ 2307.614819][   T24] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[ 2307.859299][   T24] usb 5-1: config index 0 descriptor too short (expected 63524, got 36)
[ 2307.912266][   T24] usb 5-1: config 227 has too many interfaces: 94, using maximum allowed: 32
[ 2307.964160][   T24] usb 5-1: config 227 has an invalid descriptor of length 37, skipping remainder of the config
[ 2307.976834][   T24] usb 5-1: config 227 has 0 interfaces, different from the descriptor's value: 94
[ 2307.986598][   T24] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2308.004083][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2308.055906][  T742] netlink: 52 bytes leftover after parsing attributes in process `syz.0.7764'.
[ 2308.234759][T25245] usb 2-1: new high-speed USB device number 89 using dummy_hcd
[ 2308.479906][T25245] usb 2-1: config 0 has no interfaces?
[ 2308.491927][T25245] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2308.502268][T25245] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2308.517148][T25245] usb 2-1: Product: syz
[ 2308.521859][T25245] usb 2-1: Manufacturer: syz
[ 2308.529158][T25245] usb 2-1: SerialNumber: syz
[ 2308.550342][T25245] usb 2-1: config 0 descriptor??
[ 2308.910081][  T739] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7762'.
[ 2311.114848][ T5829] usb 3-1: new full-speed USB device number 8 using dummy_hcd
[ 2311.199956][T12280] usb 2-1: USB disconnect, device number 89
[ 2311.311898][ T5829] usb 3-1: not running at top speed; connect to a high speed hub
[ 2311.339888][   T24] usb 5-1: string descriptor 0 read error: -71
[ 2311.358757][   T24] usb 5-1: USB disconnect, device number 10
[ 2311.376567][ T5829] usb 3-1: config 1 has an invalid descriptor of length 90, skipping remainder of the config
[ 2311.399593][ T5829] usb 3-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[ 2311.457635][  T770] FAULT_INJECTION: forcing a failure.
[ 2311.457635][  T770] name failslab, interval 1, probability 0, space 0, times 0
[ 2311.502114][ T5829] usb 3-1: New USB device found, idVendor=0535, idProduct=a4a8, bcdDevice= 0.40
[ 2311.511700][  T770] CPU: 0 UID: 0 PID: 770 Comm: syz.1.7773 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[ 2311.511728][  T770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[ 2311.511741][  T770] Call Trace:
[ 2311.511750][  T770]  <TASK>
[ 2311.511760][  T770]  dump_stack_lvl+0x189/0x250
[ 2311.511798][  T770]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2311.511828][  T770]  ? __pfx__printk+0x10/0x10
[ 2311.511855][  T770]  ? __pfx___might_resched+0x10/0x10
[ 2311.511873][  T770]  ? fs_reclaim_acquire+0x7d/0x100
[ 2311.511910][  T770]  should_fail_ex+0x414/0x560
[ 2311.511948][  T770]  should_failslab+0xa8/0x100
[ 2311.511978][  T770]  __kmalloc_noprof+0xcb/0x4f0
[ 2311.512001][  T770]  ? kfree+0x4d/0x440
[ 2311.512021][  T770]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 2311.512052][  T770]  tomoyo_realpath_from_path+0xe3/0x5d0
[ 2311.512079][  T770]  ? tomoyo_domain+0xda/0x130
[ 2311.512110][  T770]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 2311.512143][  T770]  tomoyo_path_number_perm+0x1e8/0x5a0
[ 2311.512178][  T770]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2311.512245][  T770]  ? __lock_acquire+0xaac/0xd20
[ 2311.512294][  T770]  ? __fget_files+0x2a/0x420
[ 2311.512324][  T770]  ? __fget_files+0x3a0/0x420
[ 2311.512349][  T770]  ? __fget_files+0x2a/0x420
[ 2311.512379][  T770]  security_file_ioctl+0xcb/0x2d0
[ 2311.512412][  T770]  __se_sys_ioctl+0x47/0x170
[ 2311.512436][  T770]  do_syscall_64+0xf6/0x210
[ 2311.512464][  T770]  ? clear_bhb_loop+0x45/0xa0
[ 2311.512490][  T770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2311.512510][  T770] RIP: 0033:0x7f5d9af8e969
[ 2311.512529][  T770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2311.512548][  T770] RSP: 002b:00007f5d9bebd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2311.512570][  T770] RAX: ffffffffffffffda RBX: 00007f5d9b1b5fa0 RCX: 00007f5d9af8e969
[ 2311.512586][  T770] RDX: 0000200000000140 RSI: 00000000c0d05605 RDI: 0000000000000003
[ 2311.512601][  T770] RBP: 00007f5d9bebd090 R08: 0000000000000000 R09: 0000000000000000
[ 2311.512614][  T770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2311.512626][  T770] R13: 0000000000000000 R14: 00007f5d9b1b5fa0 R15: 00007f5d9b2dfa28
[ 2311.512658][  T770]  </TASK>
[ 2311.512668][  T770] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2311.514941][ T5829] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2311.825539][ T5829] usb 3-1: Product: syz
[ 2311.831967][ T5829] usb 3-1: Manufacturer: syz
[ 2311.836843][ T5829] usb 3-1: SerialNumber: syz
[ 2311.909569][  T776] netlink: 52 bytes leftover after parsing attributes in process `syz.3.7776'.
[ 2312.314209][  T795] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7778'.
[ 2312.383854][  T795] Cannot find del_set index 0 as target
[ 2312.685023][T25245] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[ 2312.863741][T25245] usb 5-1: config 0 has an invalid interface number: 229 but max is 0
[ 2312.876060][T25245] usb 5-1: config 0 has no interface number 0
[ 2312.904146][T25245] usb 5-1: New USB device found, idVendor=0dfc, idProduct=0001, bcdDevice= c.19
[ 2313.087509][T25245] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2313.188395][T25245] usb 5-1: config 0 descriptor??
[ 2314.098071][ T5829] usb 3-1: USB disconnect, device number 8
[ 2314.991477][T26083] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[ 2315.244976][T26083] usb 3-1: config 0 has no interfaces?
[ 2315.342358][  T813] FAULT_INJECTION: forcing a failure.
[ 2315.342358][  T813] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2315.366430][  T813] CPU: 1 UID: 0 PID: 813 Comm: syz.1.7785 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[ 2315.366456][  T813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[ 2315.366466][  T813] Call Trace:
[ 2315.366472][  T813]  <TASK>
[ 2315.366479][  T813]  dump_stack_lvl+0x189/0x250
[ 2315.366504][  T813]  ? __lock_acquire+0xaac/0xd20
[ 2315.366528][  T813]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2315.366549][  T813]  ? __pfx__printk+0x10/0x10
[ 2315.366564][  T813]  ? __might_fault+0xb0/0x130
[ 2315.366591][  T813]  should_fail_ex+0x414/0x560
[ 2315.366619][  T813]  _copy_from_user+0x2d/0xb0
[ 2315.366641][  T813]  ___sys_sendmsg+0x158/0x2a0
[ 2315.366663][  T813]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2315.366713][  T813]  ? __might_fault+0xb0/0x130
[ 2315.366734][  T813]  __sys_sendmmsg+0x227/0x430
[ 2315.366758][  T813]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 2315.366784][  T813]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 2315.366815][  T813]  ? ksys_write+0x1f0/0x250
[ 2315.366831][  T813]  ? rcu_is_watching+0x15/0xb0
[ 2315.366860][  T813]  __x64_sys_sendmmsg+0xa0/0xc0
[ 2315.366880][  T813]  do_syscall_64+0xf6/0x210
[ 2315.366899][  T813]  ? clear_bhb_loop+0x45/0xa0
[ 2315.366917][  T813]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2315.366937][  T813] RIP: 0033:0x7f5d9af8e969
[ 2315.366951][  T813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2315.366963][  T813] RSP: 002b:00007f5d9bebd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 2315.366979][  T813] RAX: ffffffffffffffda RBX: 00007f5d9b1b5fa0 RCX: 00007f5d9af8e969
[ 2315.366990][  T813] RDX: 0000000000000318 RSI: 00002000000bd000 RDI: 0000000000000004
[ 2315.367000][  T813] RBP: 00007f5d9bebd090 R08: 0000000000000000 R09: 0000000000000000
[ 2315.367008][  T813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2315.367017][  T813] R13: 0000000000000000 R14: 00007f5d9b1b5fa0 R15: 00007f5d9b2dfa28
[ 2315.367038][  T813]  </TASK>
[ 2315.650300][T26083] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2315.659498][T26083] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2315.667555][T26083] usb 3-1: Product: syz
[ 2315.671902][T26083] usb 3-1: Manufacturer: syz
[ 2315.676730][T26083] usb 3-1: SerialNumber: syz
[ 2315.683497][T26083] usb 3-1: config 0 descriptor??
[ 2316.001571][  T807] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7783'.
[ 2316.063092][  T825] netlink: 52 bytes leftover after parsing attributes in process `syz.1.7789'.
[ 2316.785421][T26484] usb 5-1: USB disconnect, device number 11
[ 2316.844871][T26083] usb 4-1: new full-speed USB device number 33 using dummy_hcd
[ 2317.168874][T26083] usb 4-1: not running at top speed; connect to a high speed hub
[ 2317.265976][T26083] usb 4-1: config 1 has an invalid descriptor of length 90, skipping remainder of the config
[ 2317.292822][T26083] usb 4-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[ 2317.323860][T26083] usb 4-1: New USB device found, idVendor=0535, idProduct=a4a8, bcdDevice= 0.40
[ 2317.344458][T26083] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2317.362156][T26083] usb 4-1: Product: syz
[ 2317.371722][T26083] usb 4-1: Manufacturer: syz
[ 2317.381254][T26083] usb 4-1: SerialNumber: syz
[ 2318.245667][T26484] usb 3-1: USB disconnect, device number 9
[ 2319.514889][T26484] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[ 2319.694770][T26484] usb 5-1: Using ep0 maxpacket: 32
[ 2319.726560][T26484] usb 5-1: config 51 has an invalid interface number: 83 but max is 0
[ 2319.764789][T26484] usb 5-1: config 51 has no interface number 0
[ 2319.771101][T26484] usb 5-1: config 51 interface 83 altsetting 108 endpoint 0xB has invalid maxpacket 1023, setting to 64
[ 2319.858255][T26484] usb 5-1: config 51 interface 83 altsetting 108 has a duplicate endpoint with address 0xB, skipping
[ 2319.914761][T26484] usb 5-1: config 51 interface 83 has no altsetting 0
[ 2320.058313][T26484] usb 5-1: New USB device found, idVendor=0af0, idProduct=8302, bcdDevice= 0.00
[ 2320.134971][T26484] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2320.157391][T26484] usb 5-1: Product: ࠓ
[ 2320.194841][T26484] usb 5-1: Manufacturer: 阌恪䡓昩㸣놞ﶔᩘ盈跸釡侒鮪ਰ윧買ှ锞맮놵ﴩ젛㮁伒覸㝲虉蛀躳㮌꬏卬©࢘՟ܦ䨤꿐㽟फ怨∟鏕資퉢扴
[ 2320.214923][T26484] usb 5-1: SerialNumber: 牚촧髕଴貹㥙⛞銢ꑟ攡뇾뿒뜡鬑ꎸ紉㧜氘㉄骎敶덲㙿礒䏳癕姤ꄜ趸뙤㠧铻캎荽ﲵ힚ꊁ흍Ɀો訹⯪챎圞᠔闍欆즺펠훡ȿᯂ姉陌⥓肗럧䋷ꬓ辕鼙㋢㴝呸䚶䜬ᑫ홏朩틬᧨辕ՙ孮禼놕줓쭯撐규
[ 2320.287332][T26083] usb 4-1: USB disconnect, device number 33
[ 2320.645914][  T866] netlink: 52 bytes leftover after parsing attributes in process `syz.3.7801'.
[ 2320.893320][T26484] hso 5-1:51.83: Not our interface
[ 2320.922331][T26484] usb-storage 5-1:51.83: USB Mass Storage device detected
[ 2321.012135][T26484] usb 5-1: USB disconnect, device number 12
[ 2321.463254][  T883] netlink: 'syz.0.7804': attribute type 4 has an invalid length.
[ 2322.107091][T26484] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[ 2322.414365][   T24] usb 2-1: new high-speed USB device number 90 using dummy_hcd
[ 2322.468157][T26484] usb 3-1: config index 0 descriptor too short (expected 63524, got 36)
[ 2322.588956][   T24] usb 2-1: config 0 has no interfaces?
[ 2322.606396][   T24] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2322.615814][T26484] usb 3-1: config 227 has too many interfaces: 94, using maximum allowed: 32
[ 2322.631049][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2322.639839][ T5829] usb 5-1: new full-speed USB device number 13 using dummy_hcd
[ 2322.660542][   T24] usb 2-1: Product: syz
[ 2322.674916][   T24] usb 2-1: Manufacturer: syz
[ 2322.687960][   T24] usb 2-1: SerialNumber: syz
[ 2322.718355][   T24] usb 2-1: config 0 descriptor??
[ 2322.742550][T26484] usb 3-1: config 227 has an invalid descriptor of length 37, skipping remainder of the config
[ 2322.838892][ T5829] usb 5-1: not running at top speed; connect to a high speed hub
[ 2322.848369][ T5829] usb 5-1: config 1 has an invalid descriptor of length 90, skipping remainder of the config
[ 2322.871718][T26484] usb 3-1: config 227 has 0 interfaces, different from the descriptor's value: 94
[ 2322.884132][T26484] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2322.895724][ T5829] usb 5-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[ 2322.921163][T26484] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2322.958714][  T896] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7807'.
[ 2322.990866][ T5829] usb 5-1: New USB device found, idVendor=0535, idProduct=a4a8, bcdDevice= 0.40
[ 2323.010322][ T5829] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2323.043557][ T5829] usb 5-1: Product: syz
[ 2323.060608][ T5829] usb 5-1: Manufacturer: syz
[ 2323.073012][ T5829] usb 5-1: SerialNumber: syz
[ 2325.411665][ T5829] usb 5-1: USB disconnect, device number 13
[ 2325.711211][T26484] usb 3-1: string descriptor 0 read error: -71
[ 2325.750091][T26484] usb 3-1: USB disconnect, device number 10
[ 2325.960746][ T5829] usb 2-1: USB disconnect, device number 90
[ 2325.999848][  T931] netlink: 52 bytes leftover after parsing attributes in process `syz.2.7815'.
[ 2327.944960][  T974] usb usb1: check_ctrlrecip: process 974 (syz.2.7827) requesting ep 01 but needs 81
[ 2328.138233][  T974] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7827'.
[ 2328.154698][T26484] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[ 2328.164755][  T974] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7827'.
[ 2328.650762][T26484] usb 4-1: config 0 has no interfaces?
[ 2328.966174][T26484] usb 4-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2328.996516][T26484] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2329.073326][T26484] usb 4-1: Product: syz
[ 2329.114369][T26484] usb 4-1: Manufacturer: syz
[ 2329.158534][T26484] usb 4-1: SerialNumber: syz
[ 2329.470073][T26484] usb 4-1: config 0 descriptor??
[ 2330.156678][  T993] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7826'.
[ 2331.756064][T26083] usb 4-1: USB disconnect, device number 34
[ 2332.103551][ T1033] netlink: 84 bytes leftover after parsing attributes in process `syz.4.7840'.
[ 2332.455168][    T9] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[ 2332.619088][    T9] usb 5-1: config 0 has an invalid interface number: 229 but max is 0
[ 2332.627406][    T9] usb 5-1: config 0 has no interface number 0
[ 2332.633573][    T9] usb 5-1: New USB device found, idVendor=0dfc, idProduct=0001, bcdDevice= c.19
[ 2332.647080][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2332.664184][    T9] usb 5-1: config 0 descriptor??
[ 2333.265142][    T9] usb 2-1: new high-speed USB device number 91 using dummy_hcd
[ 2333.844843][    T9] usb 2-1: config 0 has no interfaces?
[ 2333.860914][    T9] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2333.892882][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2333.907246][    T9] usb 2-1: Product: syz
[ 2333.959309][    T9] usb 2-1: Manufacturer: syz
[ 2333.965435][    T9] usb 2-1: SerialNumber: syz
[ 2333.982839][    T9] usb 2-1: config 0 descriptor??
[ 2336.303162][ T5829] usb 5-1: USB disconnect, device number 14
[ 2336.395082][T21238] usb 2-1: USB disconnect, device number 91
[ 2336.514875][   T24] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[ 2336.670876][ T1104] bridge3: entered promiscuous mode
[ 2336.697710][   T24] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 2336.714729][   T24] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 2336.750594][   T24] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 2336.833231][   T24] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 2336.885189][   T24] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[ 2336.926885][   T24] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 2336.948282][   T24] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 2336.972252][   T24] usb 3-1: Product: syz
[ 2336.988495][   T24] usb 3-1: Manufacturer: syz
[ 2337.051033][   T24] cdc_wdm 3-1:1.0: skipping garbage
[ 2337.190249][   T24] cdc_wdm 3-1:1.0: skipping garbage
[ 2337.203884][   T24] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[ 2337.213690][   T24] cdc_wdm 3-1:1.0: Unknown control protocol
[ 2337.727763][    C0] cdc_wdm 3-1:1.0: Unexpected error -71
[ 2337.730743][   T24] usb 3-1: USB disconnect, device number 11
[ 2337.736372][    C0] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[ 2337.746011][    C0] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[ 2337.752143][    C0] cdc_wdm 3-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[ 2339.203556][ T1147] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7869'.
[ 2340.015789][ T1167] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7877'.
[ 2340.325542][ T1167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:24) already exists on: dummy0
[ 2340.338321][ T1167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2340.349771][ T1167] vlan3: entered promiscuous mode
[ 2340.356083][ T1167] dummy0: entered promiscuous mode
[ 2343.294907][   T24] usb 4-1: new full-speed USB device number 35 using dummy_hcd
[ 2343.607291][   T24] usb 4-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[ 2343.627813][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2343.735880][   T24] usb 4-1: config 0 descriptor??
[ 2343.761061][   T24] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[ 2344.226166][   T24] gp8psk: usb in 128 operation failed.
[ 2344.232145][   T24] gp8psk: usb in 137 operation failed.
[ 2344.254850][   T24] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[ 2344.314300][   T24] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[ 2344.384193][   T24] usb 4-1: USB disconnect, device number 35
[ 2344.650323][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[ 2344.657871][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[ 2344.998564][   T30] audit: type=1326 audit(1746667688.767:4195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1240 comm="syz.1.7902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2345.077661][   T30] audit: type=1326 audit(1746667688.767:4196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1240 comm="syz.1.7902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2345.123039][   T30] audit: type=1326 audit(1746667688.767:4197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1240 comm="syz.1.7902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5d9af2ab39 code=0x7ffc0000
[ 2345.174108][   T30] audit: type=1326 audit(1746667688.767:4198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1240 comm="syz.1.7902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2345.286044][   T30] audit: type=1326 audit(1746667688.767:4199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1240 comm="syz.1.7902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2345.426373][   T30] audit: type=1326 audit(1746667688.767:4200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1240 comm="syz.1.7902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5d9af2ab39 code=0x7ffc0000
[ 2345.909378][   T30] audit: type=1326 audit(1746667688.767:4201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1240 comm="syz.1.7902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2345.996438][   T30] audit: type=1326 audit(1746667688.767:4202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1240 comm="syz.1.7902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5d9af2ab39 code=0x7ffc0000
[ 2346.070059][ T1280] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7915'.
[ 2346.134544][   T30] audit: type=1326 audit(1746667688.767:4203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1240 comm="syz.1.7902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2346.178898][   T30] audit: type=1326 audit(1746667688.767:4204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1240 comm="syz.1.7902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5d9af2ab39 code=0x7ffc0000
[ 2347.116181][T26484] usb 2-1: new full-speed USB device number 92 using dummy_hcd
[ 2347.294166][T26484] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[ 2347.323125][T26484] usb 2-1: config 0 has no interface number 0
[ 2347.354226][T26484] usb 2-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[ 2347.373327][T26484] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2347.392548][ T1315] netlink: 24 bytes leftover after parsing attributes in process `syz.4.7926'.
[ 2347.413890][T26484] usb 2-1: config 0 descriptor??
[ 2347.433466][T26484] usb 2-1: selecting invalid altsetting 1
[ 2347.445607][T26484] dvb_ttusb_budget: ttusb_init_controller: error
[ 2347.453814][T26484] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[ 2347.552041][T26484] DVB: Unable to find symbol cx22700_attach()
[ 2347.636457][T26484] DVB: Unable to find symbol tda10046_attach()
[ 2347.643966][T26484] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[ 2347.658021][T26484] usb 2-1: USB disconnect, device number 92
[ 2349.559330][ T1354] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7935'.
[ 2349.731699][ T1358] veth0: entered promiscuous mode
[ 2349.932644][ T1357] veth0: left promiscuous mode
[ 2350.724862][T26484] usb 4-1: new full-speed USB device number 36 using dummy_hcd
[ 2350.951728][T26484] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 2350.960303][T26484] usb 4-1: not running at top speed; connect to a high speed hub
[ 2350.970742][T26484] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 2350.982971][T26484] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 2351.014765][T26484] usb 4-1: config 1 has no interface number 1
[ 2351.034814][T26484] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 83, changing to 4
[ 2351.078517][T26484] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 1023
[ 2351.121125][T26484] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 2351.130849][T26484] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2351.147667][T26484] usb 4-1: Product: syz
[ 2351.157232][T26484] usb 4-1: Manufacturer: syz
[ 2351.172461][T26484] usb 4-1: SerialNumber: syz
[ 2351.460124][ T1374] netlink: 'syz.3.7938': attribute type 8 has an invalid length.
[ 2351.469615][ T1374] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7938'.
[ 2351.735015][T26083] usb 2-1: new full-speed USB device number 93 using dummy_hcd
[ 2351.887040][T26083] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[ 2351.904802][T26083] usb 2-1: config 0 has no interface number 0
[ 2351.932693][T26083] usb 2-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[ 2351.947878][T26083] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2351.960493][T26083] usb 2-1: config 0 descriptor??
[ 2351.969480][T26083] usb 2-1: selecting invalid altsetting 1
[ 2351.978907][T26083] dvb_ttusb_budget: ttusb_init_controller: error
[ 2351.988609][T26083] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[ 2352.131805][T26083] DVB: Unable to find symbol cx22700_attach()
[ 2352.263736][T26083] DVB: Unable to find symbol tda10046_attach()
[ 2352.271826][T26083] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[ 2352.294043][T26083] usb 2-1: USB disconnect, device number 93
[ 2352.674776][   T24] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[ 2352.844725][   T24] usb 3-1: Using ep0 maxpacket: 32
[ 2352.862970][   T24] usb 3-1: config 0 has an invalid interface number: 85 but max is 0
[ 2352.889532][   T24] usb 3-1: config 0 has no interface number 0
[ 2352.907627][   T24] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2352.928678][   T24] usb 3-1: config 0 interface 85 has no altsetting 0
[ 2352.941038][   T24] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[ 2352.961723][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2352.973840][   T24] usb 3-1: Product: syz
[ 2352.981082][   T24] usb 3-1: Manufacturer: syz
[ 2352.988644][   T24] usb 3-1: SerialNumber: syz
[ 2353.002219][   T24] usb 3-1: config 0 descriptor??
[ 2353.618608][T26484] usb 4-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[ 2353.626761][   T24] appletouch 3-1:0.85: Failed to request geyser raw mode
[ 2353.633960][   T24] appletouch 3-1:0.85: probe with driver appletouch failed with error -5
[ 2353.700587][   T24] usb 3-1: USB disconnect, device number 12
[ 2353.946610][T26484] usb 4-1: USB disconnect, device number 36
[ 2354.130558][ T5975] udevd[5975]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 2354.331275][ T1418] netlink: 88 bytes leftover after parsing attributes in process `syz.2.7952'.
[ 2355.158262][ T1432] netlink: 84 bytes leftover after parsing attributes in process `syz.1.7956'.
[ 2355.833141][   T30] kauditd_printk_skb: 77 callbacks suppressed
[ 2355.833162][   T30] audit: type=1326 audit(1746667699.597:4282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1439 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2355.980984][   T30] audit: type=1326 audit(1746667699.597:4283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1439 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2356.007335][   T30] audit: type=1326 audit(1746667699.597:4284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1439 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2356.031453][   T30] audit: type=1326 audit(1746667699.597:4285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1439 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=288 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2356.076806][    T9] usb 3-1: new full-speed USB device number 13 using dummy_hcd
[ 2356.095317][   T30] audit: type=1326 audit(1746667699.597:4286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1439 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2356.132634][   T30] audit: type=1326 audit(1746667699.597:4287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1439 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2356.156046][   T30] audit: type=1326 audit(1746667699.597:4288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1439 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2356.180009][   T30] audit: type=1326 audit(1746667699.607:4289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1439 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2937d8d2d0 code=0x7ffc0000
[ 2356.341979][    T9] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 2356.357058][    T9] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2356.364387][   T30] audit: type=1326 audit(1746667699.607:4290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1439 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2937d8e56b code=0x7ffc0000
[ 2356.377027][    T9] usb 3-1: config 0 interface 0 has no altsetting 0
[ 2356.394162][   T30] audit: type=1326 audit(1746667699.607:4291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1439 comm="syz.2.7958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2937d8e56b code=0x7ffc0000
[ 2356.455040][    T9] usb 3-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 2356.480829][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2356.535513][    T9] usb 3-1: config 0 descriptor??
[ 2356.604778][T26083] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[ 2356.774826][T26083] usb 4-1: Using ep0 maxpacket: 32
[ 2356.788171][T26083] usb 4-1: config 0 has an invalid interface number: 85 but max is 0
[ 2356.800161][T26083] usb 4-1: config 0 has no interface number 0
[ 2356.814336][T26083] usb 4-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2356.830967][T26083] usb 4-1: config 0 interface 85 has no altsetting 0
[ 2356.842903][T26083] usb 4-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[ 2356.856212][T26083] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2356.867563][T26083] usb 4-1: Product: syz
[ 2356.872261][T26083] usb 4-1: Manufacturer: syz
[ 2356.881231][T26083] usb 4-1: SerialNumber: syz
[ 2356.898794][T26083] usb 4-1: config 0 descriptor??
[ 2356.963098][    T9] hid-steam 0003:28DE:1102.0068: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.2-1/input0
[ 2357.162415][    T9] usb 3-1: USB disconnect, device number 13
[ 2357.394141][ T1455] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7963'.
[ 2357.581042][T26083] appletouch 4-1:0.85: Failed to request geyser raw mode
[ 2357.611485][T26083] appletouch 4-1:0.85: probe with driver appletouch failed with error -5
[ 2357.651422][T26083] usb 4-1: USB disconnect, device number 37
[ 2358.352366][ T1469] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7967'.
[ 2358.363932][ T1469] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7967'.
[ 2358.373047][ T1469] netlink: 'syz.3.7967': attribute type 14 has an invalid length.
[ 2358.419785][ T1470] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7967'.
[ 2358.434198][ T1469] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7967'.
[ 2358.714948][ T5829] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[ 2358.818599][ T1474] bridge5: entered promiscuous mode
[ 2358.904861][ T5829] usb 4-1: Using ep0 maxpacket: 8
[ 2358.911897][ T5829] usb 4-1: config 135 has an invalid interface number: 230 but max is 0
[ 2358.921245][ T5829] usb 4-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config
[ 2358.951827][ T5829] usb 4-1: config 135 has no interface number 0
[ 2358.977416][ T5829] usb 4-1: too many endpoints for config 135 interface 230 altsetting 126: 53, using maximum allowed: 30
[ 2359.033946][ T5829] usb 4-1: config 135 interface 230 altsetting 126 has 0 endpoint descriptors, different from the interface descriptor's value: 53
[ 2359.091973][ T5829] usb 4-1: config 135 interface 230 has no altsetting 0
[ 2359.122765][ T5829] usb 4-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[ 2359.151316][ T5829] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2359.193564][ T5829] usb 4-1: Product: syz
[ 2359.229272][ T5829] usb 4-1: Manufacturer: syz
[ 2359.248553][ T5829] usb 4-1: SerialNumber: syz
[ 2359.265062][   T24] usb 2-1: new full-speed USB device number 94 using dummy_hcd
[ 2359.426761][   T24] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[ 2359.445260][   T24] usb 2-1: config 0 has no interface number 0
[ 2359.451677][   T24] usb 2-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[ 2359.508245][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2359.591441][ T5829] usb 4-1: USB disconnect, device number 38
[ 2359.631218][   T24] usb 2-1: config 0 descriptor??
[ 2359.671728][   T24] usb 2-1: selecting invalid altsetting 1
[ 2359.681933][   T24] dvb_ttusb_budget: ttusb_init_controller: error
[ 2359.701234][   T24] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[ 2360.051367][   T24] DVB: Unable to find symbol cx22700_attach()
[ 2360.224437][   T24] DVB: Unable to find symbol tda10046_attach()
[ 2360.310961][   T24] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[ 2360.351783][   T24] usb 2-1: USB disconnect, device number 94
[ 2360.874243][   T30] kauditd_printk_skb: 50 callbacks suppressed
[ 2360.874258][   T30] audit: type=1326 audit(1746667704.637:4342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1504 comm="syz.2.7976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2937d8e56b code=0x7ffc0000
[ 2360.934314][   T24] usb 2-1: new high-speed USB device number 95 using dummy_hcd
[ 2360.962584][   T30] audit: type=1326 audit(1746667704.717:4343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1504 comm="syz.2.7976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2937d8e56b code=0x7ffc0000
[ 2360.994744][T12280] usb 3-1: new full-speed USB device number 14 using dummy_hcd
[ 2361.073728][   T30] audit: type=1326 audit(1746667704.767:4344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1504 comm="syz.2.7976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2937d8e56b code=0x7ffc0000
[ 2361.124841][   T24] usb 2-1: Using ep0 maxpacket: 32
[ 2361.131848][   T30] audit: type=1326 audit(1746667704.767:4345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1504 comm="syz.2.7976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2937d8e56b code=0x7ffc0000
[ 2361.156590][   T24] usb 2-1: config 0 has an invalid interface number: 85 but max is 0
[ 2361.170395][   T24] usb 2-1: config 0 has no interface number 0
[ 2361.176740][T12280] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 2361.194980][T12280] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2361.208777][   T24] usb 2-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2361.266241][T12280] usb 3-1: config 0 interface 0 has no altsetting 0
[ 2361.273033][   T24] usb 2-1: config 0 interface 85 has no altsetting 0
[ 2361.282226][T12280] usb 3-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 2361.283314][   T30] audit: type=1326 audit(1746667704.767:4346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1504 comm="syz.2.7976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2937d8e56b code=0x7ffc0000
[ 2361.315603][T12280] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2361.335314][   T24] usb 2-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[ 2361.355615][T12280] usb 3-1: config 0 descriptor??
[ 2361.365129][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2361.380813][   T30] audit: type=1326 audit(1746667704.837:4347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1504 comm="syz.2.7976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2937d8e56b code=0x7ffc0000
[ 2361.413925][   T30] audit: type=1326 audit(1746667704.927:4348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1504 comm="syz.2.7976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2937d8e56b code=0x7ffc0000
[ 2361.438230][   T24] usb 2-1: Product: syz
[ 2361.449910][   T30] audit: type=1326 audit(1746667704.927:4349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1504 comm="syz.2.7976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2937d8e56b code=0x7ffc0000
[ 2361.503048][   T30] audit: type=1326 audit(1746667704.937:4350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1504 comm="syz.2.7976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2937d8e56b code=0x7ffc0000
[ 2361.533308][   T30] audit: type=1326 audit(1746667704.937:4351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1504 comm="syz.2.7976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2937d8e56b code=0x7ffc0000
[ 2361.556095][   T24] usb 2-1: Manufacturer: syz
[ 2361.620330][ T1519] netlink: 4268 bytes leftover after parsing attributes in process `syz.0.7979'.
[ 2361.633432][ T1519] netlink: 4268 bytes leftover after parsing attributes in process `syz.0.7979'.
[ 2361.655044][   T24] usb 2-1: SerialNumber: syz
[ 2361.682933][   T24] usb 2-1: config 0 descriptor??
[ 2361.734763][    T9] usb 5-1: new full-speed USB device number 15 using dummy_hcd
[ 2361.846550][T12280] hid-steam 0003:28DE:1102.0069: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.2-1/input0
[ 2361.907619][    T9] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 2361.916837][    T9] usb 5-1: not running at top speed; connect to a high speed hub
[ 2361.937020][    T9] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 2361.988170][    T9] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 2362.024091][    T9] usb 5-1: config 1 has no interface number 1
[ 2362.043785][    T9] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 83, changing to 4
[ 2362.057238][T21238] usb 3-1: USB disconnect, device number 14
[ 2362.104503][   T24] appletouch 2-1:0.85: Geyser mode initialized.
[ 2362.121474][    T9] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 1023
[ 2362.149011][   T24] input: appletouch as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.85/input/input132
[ 2362.175617][ T1520] fido_id[1520]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[ 2362.201476][    T9] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 2362.223266][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2362.277348][    T9] usb 5-1: Product: syz
[ 2362.281592][    T9] usb 5-1: Manufacturer: syz
[ 2362.307260][    T9] usb 5-1: SerialNumber: syz
[ 2362.388984][T26484] usb 2-1: USB disconnect, device number 95
[ 2362.395125][    C0] appletouch 2-1:0.85: atp_complete: usb_submit_urb failed with result -19
[ 2362.491285][T26484] appletouch 2-1:0.85: input: appletouch disconnected
[ 2362.593407][ T1525] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2362.635731][ T1525] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2362.678176][ T1525] netlink: 'syz.4.7980': attribute type 8 has an invalid length.
[ 2362.697844][ T1525] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7980'.
[ 2364.611365][    T9] usb 5-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[ 2364.771704][    T9] usb 5-1: USB disconnect, device number 15
[ 2364.936530][ T5975] udevd[5975]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 2365.090959][ T1554] syzkaller0: entered allmulticast mode
[ 2365.164723][T12280] usb 4-1: new full-speed USB device number 39 using dummy_hcd
[ 2365.347201][T12280] usb 4-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 2365.360892][T12280] usb 4-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2365.374835][T12280] usb 4-1: config 0 interface 0 has no altsetting 0
[ 2365.384728][T12280] usb 4-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 2365.394688][T12280] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2365.406748][T12280] usb 4-1: config 0 descriptor??
[ 2365.744821][    T9] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[ 2365.885480][T12280] hid-steam 0003:28DE:1102.006A: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.3-1/input0
[ 2365.954952][    T9] usb 5-1: Using ep0 maxpacket: 32
[ 2366.029491][T12280] usb 4-1: USB disconnect, device number 39
[ 2366.057963][    T9] usb 5-1: config 0 has an invalid interface number: 85 but max is 0
[ 2366.104793][    T9] usb 5-1: config 0 has no interface number 0
[ 2366.121248][    T9] usb 5-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2366.134841][    T9] usb 5-1: config 0 interface 85 has no altsetting 0
[ 2366.145002][    T9] usb 5-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[ 2366.158853][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2366.174841][    T9] usb 5-1: Product: syz
[ 2366.179218][    T9] usb 5-1: Manufacturer: syz
[ 2366.189392][    T9] usb 5-1: SerialNumber: syz
[ 2366.200008][    T9] usb 5-1: config 0 descriptor??
[ 2366.256043][ T1570] fido_id[1570]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[ 2366.621924][    T9] appletouch 5-1:0.85: Geyser mode initialized.
[ 2366.657617][    T9] input: appletouch as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.85/input/input133
[ 2366.765942][ T1578] pim6reg: entered allmulticast mode
[ 2366.868576][T25245] usb 5-1: USB disconnect, device number 16
[ 2366.931006][T25245] appletouch 5-1:0.85: input: appletouch disconnected
[ 2366.942431][ T6023] udevd[6023]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[ 2367.034811][    T9] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[ 2367.190136][    T9] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 2367.200906][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2367.216471][    T9] usb 4-1: config 0 descriptor??
[ 2367.232904][    T9] cp210x 4-1:0.0: cp210x converter detected
[ 2367.431885][    T9] usb 4-1: cp210x converter now attached to ttyUSB0
[ 2367.660027][T12280] usb 4-1: USB disconnect, device number 40
[ 2367.698875][T12280] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 2367.716802][T12280] cp210x 4-1:0.0: device disconnected
[ 2368.268991][ T1606] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8004'.
[ 2368.351413][ T1608] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8004'.
[ 2368.671835][   T30] kauditd_printk_skb: 59 callbacks suppressed
[ 2368.671854][   T30] audit: type=1326 audit(1746667712.437:4411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1613 comm="syz.2.8007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2368.796414][   T30] audit: type=1326 audit(1746667712.477:4412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1613 comm="syz.2.8007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2368.831698][   T30] audit: type=1326 audit(1746667712.477:4413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1613 comm="syz.2.8007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2368.854736][   T30] audit: type=1326 audit(1746667712.477:4414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1613 comm="syz.2.8007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2368.877827][   T30] audit: type=1326 audit(1746667712.477:4415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1613 comm="syz.2.8007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=288 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2368.954838][T25245] usb 3-1: new full-speed USB device number 15 using dummy_hcd
[ 2368.987172][   T30] audit: type=1326 audit(1746667712.477:4416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1613 comm="syz.2.8007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2369.010399][   T30] audit: type=1326 audit(1746667712.477:4417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1613 comm="syz.2.8007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2369.033725][   T30] audit: type=1326 audit(1746667712.477:4418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1613 comm="syz.2.8007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2369.058674][   T30] audit: type=1326 audit(1746667712.477:4419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1613 comm="syz.2.8007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2937d8d2d0 code=0x7ffc0000
[ 2369.082504][   T30] audit: type=1326 audit(1746667712.477:4420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1613 comm="syz.2.8007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2937d8e56b code=0x7ffc0000
[ 2369.135046][   T24] usb 4-1: new full-speed USB device number 41 using dummy_hcd
[ 2369.140967][T25245] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 2369.157303][T25245] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2369.167270][T25245] usb 3-1: config 0 interface 0 has no altsetting 0
[ 2369.174063][T25245] usb 3-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 2369.186839][T25245] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2369.209124][T25245] usb 3-1: config 0 descriptor??
[ 2369.309848][   T24] usb 4-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 2369.324812][   T24] usb 4-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2369.335089][   T24] usb 4-1: config 0 interface 0 has no altsetting 0
[ 2369.341852][   T24] usb 4-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 2369.356238][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2369.380040][   T24] usb 4-1: config 0 descriptor??
[ 2369.631511][T25245] hid-steam 0003:28DE:1102.006B: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.2-1/input0
[ 2369.819464][   T24] hid-steam 0003:28DE:1102.006C: unknown main item tag 0x1
[ 2369.830759][   T24] hid-steam 0003:28DE:1102.006C: item fetching failed at offset 4/5
[ 2369.841042][   T24] hid-steam 0003:28DE:1102.006C: steam_probe:parse of hid interface failed
[ 2369.850198][   T24] hid-steam 0003:28DE:1102.006C: probe with driver hid-steam failed with error -22
[ 2369.871589][T12280] usb 3-1: USB disconnect, device number 15
[ 2370.062935][   T24] usb 4-1: USB disconnect, device number 41
[ 2370.714824][   T24] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[ 2370.871882][   T24] usb 3-1: Using ep0 maxpacket: 32
[ 2370.878964][   T24] usb 3-1: config 0 has an invalid interface number: 85 but max is 0
[ 2370.887802][   T24] usb 3-1: config 0 has no interface number 0
[ 2370.895668][   T24] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2370.907956][   T24] usb 3-1: config 0 interface 85 has no altsetting 0
[ 2370.916990][   T24] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[ 2370.926441][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2370.934475][   T24] usb 3-1: Product: syz
[ 2370.938782][   T24] usb 3-1: Manufacturer: syz
[ 2370.943444][   T24] usb 3-1: SerialNumber: syz
[ 2370.955332][T26083] usb 4-1: new low-speed USB device number 42 using dummy_hcd
[ 2370.995746][   T24] usb 3-1: config 0 descriptor??
[ 2371.126738][T26083] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[ 2371.135823][T26083] usb 4-1: config 0 has no interface number 0
[ 2371.142052][T26083] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 2371.153299][T26083] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[ 2371.166745][T26083] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 2371.180444][T26083] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2371.203183][T26083] usb 4-1: config 0 descriptor??
[ 2371.217683][ T1624] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[ 2371.247404][T26083] iowarrior 4-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[ 2371.419294][   T24] appletouch 3-1:0.85: Geyser mode initialized.
[ 2371.429839][   T24] input: appletouch as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.85/input/input134
[ 2371.523801][   T24] usb 4-1: USB disconnect, device number 42
[ 2371.650356][T25245] usb 3-1: USB disconnect, device number 16
[ 2371.687903][T25245] appletouch 3-1:0.85: input: appletouch disconnected
[ 2371.920953][ T1577] pim6reg: left allmulticast mode
[ 2371.950091][ T1606] veth0_to_bond: entered allmulticast mode
[ 2372.362019][ T1630] snd_dummy snd_dummy.0: control 1:-2:128:syz0:0 is already present
[ 2372.512268][ T1640] netlink: 'syz.3.8013': attribute type 16 has an invalid length.
[ 2372.520932][ T1640] netlink: 2 bytes leftover after parsing attributes in process `syz.3.8013'.
[ 2372.540559][ T1640] netlink: 2 bytes leftover after parsing attributes in process `syz.3.8013'.
[ 2372.615617][ T1640] netlink: 2 bytes leftover after parsing attributes in process `syz.3.8013'.
[ 2372.646264][ T1640] netlink: 2 bytes leftover after parsing attributes in process `syz.3.8013'.
[ 2372.682725][ T1640] netlink: 2 bytes leftover after parsing attributes in process `syz.3.8013'.
[ 2372.715309][ T1640] netlink: 2 bytes leftover after parsing attributes in process `syz.3.8013'.
[ 2372.725706][ T1640] netlink: 2 bytes leftover after parsing attributes in process `syz.3.8013'.
[ 2372.763989][ T1640] netlink: 2 bytes leftover after parsing attributes in process `syz.3.8013'.
[ 2373.945874][   T30] kauditd_printk_skb: 84 callbacks suppressed
[ 2373.945890][   T30] audit: type=1326 audit(1746667717.717:4505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1661 comm="syz.2.8019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2374.074983][   T30] audit: type=1326 audit(1746667717.747:4506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1661 comm="syz.2.8019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2374.168552][   T30] audit: type=1326 audit(1746667717.747:4507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1661 comm="syz.2.8019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2374.254898][T26083] usb 3-1: new full-speed USB device number 17 using dummy_hcd
[ 2374.258562][   T30] audit: type=1326 audit(1746667717.757:4508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1661 comm="syz.2.8019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=288 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2374.358441][   T30] audit: type=1326 audit(1746667717.757:4509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1661 comm="syz.2.8019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2374.428624][T26083] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 2374.458841][   T30] audit: type=1326 audit(1746667717.767:4510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1661 comm="syz.2.8019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2374.494182][T26083] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2374.553721][   T30] audit: type=1326 audit(1746667717.767:4511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1661 comm="syz.2.8019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2374.564676][T26083] usb 3-1: config 0 interface 0 has no altsetting 0
[ 2374.594756][T26083] usb 3-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 2374.624799][T26083] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2374.683995][   T30] audit: type=1326 audit(1746667717.767:4512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1661 comm="syz.2.8019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2374.685280][T26083] usb 3-1: config 0 descriptor??
[ 2374.743605][   T30] audit: type=1326 audit(1746667717.777:4513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1661 comm="syz.2.8019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2937d8d2d0 code=0x7ffc0000
[ 2374.773473][   T30] audit: type=1326 audit(1746667717.777:4514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1661 comm="syz.2.8019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2937d8e56b code=0x7ffc0000
[ 2374.964871][T25245] usb 2-1: new low-speed USB device number 96 using dummy_hcd
[ 2375.104766][T12280] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[ 2375.126757][T25245] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[ 2375.137310][T25245] usb 2-1: config 0 has no interface number 0
[ 2375.143457][T25245] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 2375.158394][T25245] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[ 2375.171590][T25245] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 2375.181077][T25245] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2375.192907][T25245] usb 2-1: config 0 descriptor??
[ 2375.199552][ T1671] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[ 2375.223889][T25245] iowarrior 2-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[ 2375.228853][T26083] hid-steam 0003:28DE:1102.006D: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.2-1/input0
[ 2375.288448][   T24] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[ 2375.301791][T12280] usb 5-1: Using ep0 maxpacket: 32
[ 2375.309477][T12280] usb 5-1: config 0 has an invalid interface number: 85 but max is 0
[ 2375.318466][T12280] usb 5-1: config 0 has no interface number 0
[ 2375.324934][T12280] usb 5-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2375.336404][T12280] usb 5-1: config 0 interface 85 has no altsetting 0
[ 2375.346625][T12280] usb 5-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[ 2375.356009][T12280] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2375.364254][T12280] usb 5-1: Product: syz
[ 2375.371296][T12280] usb 5-1: Manufacturer: syz
[ 2375.376200][T12280] usb 5-1: SerialNumber: syz
[ 2375.383083][T12280] usb 5-1: config 0 descriptor??
[ 2375.433749][T26083] usb 3-1: USB disconnect, device number 17
[ 2375.444925][   T24] usb 4-1: Using ep0 maxpacket: 16
[ 2375.461023][   T24] usb 4-1: config 0 has an invalid interface number: 214 but max is 0
[ 2375.470350][   T24] usb 4-1: config 0 has no interface number 0
[ 2375.478116][   T24] usb 4-1: config 0 interface 214 altsetting 0 endpoint 0x83 has an invalid bInterval 255, changing to 11
[ 2375.492239][   T24] usb 4-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid maxpacket 59391, setting to 1024
[ 2375.506728][   T24] usb 4-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[ 2375.520461][ T5829] usb 2-1: USB disconnect, device number 96
[ 2375.531587][   T24] usb 4-1: New USB device strings: Mfr=1, Product=0, SerialNumber=3
[ 2375.541588][   T24] usb 4-1: Manufacturer: syz
[ 2375.548336][   T24] usb 4-1: SerialNumber: syz
[ 2375.572870][   T24] usb 4-1: config 0 descriptor??
[ 2375.579043][ T1678] raw-gadget.4 gadget.3: fail, usb_ep_enable returned -22
[ 2375.992680][T12280] appletouch 5-1:0.85: Geyser mode initialized.
[ 2376.002181][T12280] input: appletouch as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.85/input/input135
[ 2376.202564][ T1683] __nla_validate_parse: 138 callbacks suppressed
[ 2376.202586][ T1683] netlink: 48 bytes leftover after parsing attributes in process `syz.3.8026'.
[ 2376.226980][T12280] usb 5-1: USB disconnect, device number 17
[ 2376.227053][    C1] appletouch 5-1:0.85: atp_complete: usb_submit_urb failed with result -19
[ 2376.537431][T12280] appletouch 5-1:0.85: input: appletouch disconnected
[ 2377.287320][ T1707] netlink: 'syz.4.8032': attribute type 4 has an invalid length.
[ 2378.553920][   T24] usbtouchscreen 4-1:0.214: probe with driver usbtouchscreen failed with error -71
[ 2378.639871][   T24] usb 4-1: USB disconnect, device number 43
[ 2379.011989][ T1723] bridge7: entered promiscuous mode
[ 2379.084757][   T24] usb 3-1: new full-speed USB device number 18 using dummy_hcd
[ 2379.258345][   T24] usb 3-1: config 0 has an invalid interface number: 228 but max is 0
[ 2379.313211][   T24] usb 3-1: config 0 has no interface number 0
[ 2379.343506][ T1734] netlink: 4268 bytes leftover after parsing attributes in process `syz.0.8041'.
[ 2379.369204][ T1734] netlink: 4268 bytes leftover after parsing attributes in process `syz.0.8041'.
[ 2379.406166][   T24] usb 3-1: New USB device found, idVendor=0711, idProduct=0200, bcdDevice=ee.a2
[ 2379.423425][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2379.433623][   T24] usb 3-1: Product: syz
[ 2379.439699][   T24] usb 3-1: Manufacturer: syz
[ 2379.458711][   T24] usb 3-1: SerialNumber: syz
[ 2379.477213][   T24] usb 3-1: config 0 descriptor??
[ 2379.511430][    T9] usb 2-1: new high-speed USB device number 97 using dummy_hcd
[ 2379.714707][    T9] usb 2-1: Using ep0 maxpacket: 32
[ 2379.732949][    T9] usb 2-1: config 0 has an invalid interface number: 85 but max is 0
[ 2379.741783][    T9] usb 2-1: config 0 has no interface number 0
[ 2379.790003][    T9] usb 2-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2379.816644][    T9] usb 2-1: config 0 interface 85 has no altsetting 0
[ 2379.836156][    T9] usb 2-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[ 2379.855519][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2379.880410][    T9] usb 2-1: Product: syz
[ 2379.885262][   T24] mct_u232 3-1:0.228: MCT U232 converter detected
[ 2379.899097][   T24] mct_u232 ttyUSB0: expected endpoint missing
[ 2379.899732][    T9] usb 2-1: Manufacturer: syz
[ 2379.928471][   T24] usb 3-1: USB disconnect, device number 18
[ 2379.937891][    T9] usb 2-1: SerialNumber: syz
[ 2379.945134][T25245] usb 4-1: new full-speed USB device number 44 using dummy_hcd
[ 2379.968764][   T24] mct_u232 3-1:0.228: device disconnected
[ 2380.086330][    T9] usb 2-1: config 0 descriptor??
[ 2380.159925][T25245] usb 4-1: not running at top speed; connect to a high speed hub
[ 2380.172118][T25245] usb 4-1: config 1 has an invalid descriptor of length 90, skipping remainder of the config
[ 2380.189787][T25245] usb 4-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[ 2380.220943][T25245] usb 4-1: New USB device found, idVendor=0535, idProduct=a4a8, bcdDevice= 0.40
[ 2380.230887][T25245] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2380.239544][T25245] usb 4-1: Product: syz
[ 2380.243934][T25245] usb 4-1: Manufacturer: syz
[ 2380.252387][T25245] usb 4-1: SerialNumber: syz
[ 2380.801093][    T9] appletouch 2-1:0.85: Geyser mode initialized.
[ 2380.962600][    T9] input: appletouch as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.85/input/input137
[ 2381.071148][ T1757] snd_dummy snd_dummy.0: control 1:-2:128:syz0:0 is already present
[ 2381.074715][    T9] usb 2-1: USB disconnect, device number 97
[ 2381.079349][    C0] appletouch 2-1:0.85: atp_complete: usb_submit_urb failed with result -19
[ 2381.161156][    T9] appletouch 2-1:0.85: input: appletouch disconnected
[ 2382.133996][ T1764] netlink: 'syz.2.8050': attribute type 4 has an invalid length.
[ 2383.901225][T25245] usb 4-1: USB disconnect, device number 44
[ 2384.438804][ T1792] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8059'.
[ 2384.704748][T12280] usb 5-1: new low-speed USB device number 18 using dummy_hcd
[ 2384.781830][   T24] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[ 2384.800859][ T1808] netlink: 4268 bytes leftover after parsing attributes in process `syz.0.8064'.
[ 2384.811157][ T1808] netlink: 4268 bytes leftover after parsing attributes in process `syz.0.8064'.
[ 2384.856463][ T1809] netlink: 4268 bytes leftover after parsing attributes in process `syz.1.8063'.
[ 2384.866508][ T1809] netlink: 4268 bytes leftover after parsing attributes in process `syz.1.8063'.
[ 2384.944718][T12280] usb 5-1: device descriptor read/64, error -71
[ 2384.964949][   T24] usb 4-1: Using ep0 maxpacket: 32
[ 2384.972505][   T24] usb 4-1: config 0 has an invalid interface number: 85 but max is 0
[ 2384.981490][   T24] usb 4-1: config 0 has no interface number 0
[ 2384.988763][   T24] usb 4-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2385.013321][   T24] usb 4-1: config 0 interface 85 has no altsetting 0
[ 2385.036758][   T24] usb 4-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[ 2385.046293][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2385.054517][   T24] usb 4-1: Product: syz
[ 2385.060228][   T24] usb 4-1: Manufacturer: syz
[ 2385.065246][   T24] usb 4-1: SerialNumber: syz
[ 2385.082533][   T24] usb 4-1: config 0 descriptor??
[ 2385.184951][T12280] usb 5-1: new low-speed USB device number 19 using dummy_hcd
[ 2385.325016][T12280] usb 5-1: device descriptor read/64, error -71
[ 2385.482134][T12280] usb usb5-port1: attempt power cycle
[ 2385.805227][   T24] appletouch 4-1:0.85: Geyser mode initialized.
[ 2385.824926][T12280] usb 5-1: new low-speed USB device number 20 using dummy_hcd
[ 2385.835151][   T24] input: appletouch as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.85/input/input138
[ 2385.855187][T12280] usb 5-1: device descriptor read/8, error -71
[ 2386.012547][   T24] usb 4-1: USB disconnect, device number 45
[ 2386.094790][T12280] usb 5-1: new low-speed USB device number 21 using dummy_hcd
[ 2386.115004][   T24] appletouch 4-1:0.85: input: appletouch disconnected
[ 2386.127597][T12280] usb 5-1: device descriptor read/8, error -71
[ 2386.245489][T12280] usb usb5-port1: unable to enumerate USB device
[ 2386.458587][ T1821] FAULT_INJECTION: forcing a failure.
[ 2386.458587][ T1821] name failslab, interval 1, probability 0, space 0, times 0
[ 2386.479832][ T1821] CPU: 0 UID: 0 PID: 1821 Comm: syz.2.8069 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[ 2386.479870][ T1821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[ 2386.479885][ T1821] Call Trace:
[ 2386.479894][ T1821]  <TASK>
[ 2386.479904][ T1821]  dump_stack_lvl+0x189/0x250
[ 2386.479942][ T1821]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2386.479972][ T1821]  ? __pfx__printk+0x10/0x10
[ 2386.479995][ T1821]  ? __pfx___might_resched+0x10/0x10
[ 2386.480015][ T1821]  ? fs_reclaim_acquire+0x7d/0x100
[ 2386.480049][ T1821]  should_fail_ex+0x414/0x560
[ 2386.480087][ T1821]  should_failslab+0xa8/0x100
[ 2386.480117][ T1821]  __kmalloc_noprof+0xcb/0x4f0
[ 2386.480141][ T1821]  ? sock_kmalloc+0xd6/0x160
[ 2386.480173][ T1821]  sock_kmalloc+0xd6/0x160
[ 2386.480202][ T1821]  ____sys_sendmsg+0x1b5/0x830
[ 2386.480234][ T1821]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2386.480270][ T1821]  ? import_iovec+0x74/0xa0
[ 2386.480301][ T1821]  ___sys_sendmsg+0x21f/0x2a0
[ 2386.480329][ T1821]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2386.480392][ T1821]  ? __fget_files+0x2a/0x420
[ 2386.480417][ T1821]  ? __fget_files+0x3a0/0x420
[ 2386.480453][ T1821]  __x64_sys_sendmsg+0x19b/0x260
[ 2386.480482][ T1821]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 2386.480526][ T1821]  ? do_syscall_64+0xba/0x210
[ 2386.480555][ T1821]  do_syscall_64+0xf6/0x210
[ 2386.480580][ T1821]  ? clear_bhb_loop+0x45/0xa0
[ 2386.480605][ T1821]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2386.480624][ T1821] RIP: 0033:0x7f2937d8e969
[ 2386.480643][ T1821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2386.480661][ T1821] RSP: 002b:00007f2938bb3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2386.480683][ T1821] RAX: ffffffffffffffda RBX: 00007f2937fb5fa0 RCX: 00007f2937d8e969
[ 2386.480698][ T1821] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[ 2386.480711][ T1821] RBP: 00007f2938bb3090 R08: 0000000000000000 R09: 0000000000000000
[ 2386.480724][ T1821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2386.480737][ T1821] R13: 0000000000000000 R14: 00007f2937fb5fa0 R15: 00007f29380dfa28
[ 2386.480768][ T1821]  </TASK>
[ 2386.700373][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2386.826692][ T1831] snd_dummy snd_dummy.0: control 1:-2:128:syz0:0 is already present
[ 2387.056891][    T9] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[ 2387.217066][    T9] usb 4-1: config 0 has an invalid interface number: 194 but max is 0
[ 2387.225687][    T9] usb 4-1: config 0 has no interface number 0
[ 2387.234167][    T9] usb 4-1: New USB device found, idVendor=2c42, idProduct=16f8, bcdDevice=7d.d2
[ 2387.244479][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2387.253048][    T9] usb 4-1: Product: syz
[ 2387.257861][    T9] usb 4-1: Manufacturer: syz
[ 2387.262554][    T9] usb 4-1: SerialNumber: syz
[ 2387.265093][T12280] usb 2-1: new high-speed USB device number 98 using dummy_hcd
[ 2387.270648][    T9] usb 4-1: config 0 descriptor??
[ 2387.445376][T12280] usb 2-1: Using ep0 maxpacket: 16
[ 2387.452732][T12280] usb 2-1: config 0 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2387.464474][T12280] usb 2-1: config 0 interface 0 has no altsetting 0
[ 2387.472083][T12280] usb 2-1: New USB device found, idVendor=05a4, idProduct=8003, bcdDevice= 0.00
[ 2387.485648][T12280] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2387.507936][T12280] usb 2-1: config 0 descriptor??
[ 2387.555570][ T1847] netlink: 4268 bytes leftover after parsing attributes in process `syz.0.8078'.
[ 2387.581075][ T1847] netlink: 4268 bytes leftover after parsing attributes in process `syz.0.8078'.
[ 2387.635080][   T24] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[ 2387.786331][   T24] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 2387.803156][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2387.824317][   T24] usb 3-1: config 0 descriptor??
[ 2387.890696][   T24] cp210x 3-1:0.0: cp210x converter detected
[ 2387.921617][ T1837] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[ 2388.146908][   T24] cp210x 3-1:0.0: failed to get vendor val 0x370b size 1: -121
[ 2388.155704][   T24] cp210x 3-1:0.0: querying part number failed
[ 2388.212417][   T24] usb 3-1: cp210x converter now attached to ttyUSB0
[ 2388.330769][ T1859] macsec1: entered promiscuous mode
[ 2388.382295][ T1859] macsec0: entered promiscuous mode
[ 2388.397627][ T1859] macsec0: left promiscuous mode
[ 2389.318251][ T1866] bridge8: entered promiscuous mode
[ 2389.350007][ T1869] snd_dummy snd_dummy.0: control 1:-2:128:syz0:0 is already present
[ 2389.827504][    T9] usb 4-1: USB disconnect, device number 46
[ 2389.857763][    T9] f81534a_ctrl 4-1:0.194: failed to set register 0x116: -19
[ 2389.874779][    T9] f81534a_ctrl 4-1:0.194: failed to enable ports: -19
[ 2389.987429][T12280] usbhid 2-1:0.0: can't add hid device: -71
[ 2389.994768][T12280] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[ 2390.063383][T12280] usb 2-1: USB disconnect, device number 98
[ 2390.661073][ T1889] : entered promiscuous mode
[ 2390.823508][   T24] usb 3-1: USB disconnect, device number 19
[ 2390.845762][   T24] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 2390.880441][   T24] cp210x 3-1:0.0: device disconnected
[ 2391.664381][ T1899] binder: 1898:1899 ioctl c0306201 0 returned -14
[ 2391.691366][ T1899] FAULT_INJECTION: forcing a failure.
[ 2391.691366][ T1899] name failslab, interval 1, probability 0, space 0, times 0
[ 2391.772006][ T1899] CPU: 0 UID: 0 PID: 1899 Comm: syz.2.8093 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[ 2391.772039][ T1899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[ 2391.772053][ T1899] Call Trace:
[ 2391.772061][ T1899]  <TASK>
[ 2391.772070][ T1899]  dump_stack_lvl+0x189/0x250
[ 2391.772106][ T1899]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2391.772135][ T1899]  ? __pfx__printk+0x10/0x10
[ 2391.772161][ T1899]  ? __pfx___might_resched+0x10/0x10
[ 2391.772179][ T1899]  ? fs_reclaim_acquire+0x7d/0x100
[ 2391.772212][ T1899]  should_fail_ex+0x414/0x560
[ 2391.772250][ T1899]  should_failslab+0xa8/0x100
[ 2391.772279][ T1899]  __kmalloc_noprof+0xcb/0x4f0
[ 2391.772304][ T1899]  ? kfree+0x4d/0x440
[ 2391.772324][ T1899]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 2391.772355][ T1899]  tomoyo_realpath_from_path+0xe3/0x5d0
[ 2391.772382][ T1899]  ? tomoyo_domain+0xda/0x130
[ 2391.772413][ T1899]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 2391.772444][ T1899]  tomoyo_path_number_perm+0x1e8/0x5a0
[ 2391.772491][ T1899]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2391.772541][ T1899]  ? __lock_acquire+0xaac/0xd20
[ 2391.772589][ T1899]  ? __fget_files+0x2a/0x420
[ 2391.772620][ T1899]  ? __fget_files+0x3a0/0x420
[ 2391.772644][ T1899]  ? __fget_files+0x2a/0x420
[ 2391.772674][ T1899]  security_file_ioctl+0xcb/0x2d0
[ 2391.772706][ T1899]  __se_sys_ioctl+0x47/0x170
[ 2391.772729][ T1899]  do_syscall_64+0xf6/0x210
[ 2391.772755][ T1899]  ? clear_bhb_loop+0x45/0xa0
[ 2391.772780][ T1899]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2391.772800][ T1899] RIP: 0033:0x7f2937d8e969
[ 2391.772818][ T1899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2391.772835][ T1899] RSP: 002b:00007f2938bb3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2391.772857][ T1899] RAX: ffffffffffffffda RBX: 00007f2937fb5fa0 RCX: 00007f2937d8e969
[ 2391.772873][ T1899] RDX: 0000200000000180 RSI: 00000000c0306201 RDI: 0000000000000006
[ 2391.772887][ T1899] RBP: 00007f2938bb3090 R08: 0000000000000000 R09: 0000000000000000
[ 2391.772899][ T1899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2391.772911][ T1899] R13: 0000000000000000 R14: 00007f2937fb5fa0 R15: 00007f29380dfa28
[ 2391.772942][ T1899]  </TASK>
[ 2391.774048][ T1899] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2392.046175][ T1899] binder: 1898:1899 unknown command 32768
[ 2392.052032][ T1899] binder: 1898:1899 ioctl c0306201 200000000180 returned -22
[ 2392.078472][ T1902] binder: BINDER_SET_CONTEXT_MGR already set
[ 2392.103696][ T1902] binder: 1901:1902 ioctl 4018620d 200000000040 returned -16
[ 2392.153124][ T1905] snd_dummy snd_dummy.0: control 1:-2:128:syz0:0 is already present
[ 2392.171651][ T1902] binder: 1901:1902 ioctl c0306201 0 returned -14
[ 2392.536456][T12280] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[ 2392.664703][   T24] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[ 2392.696227][T12280] usb 3-1: Using ep0 maxpacket: 8
[ 2392.717384][T12280] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 2392.731515][T12280] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2392.751796][T12280] usb 3-1: Product: syz
[ 2392.768574][T12280] usb 3-1: Manufacturer: syz
[ 2392.874987][T12280] usb 3-1: SerialNumber: syz
[ 2392.886884][   T24] usb 5-1: config 0 has no interfaces?
[ 2392.903689][   T24] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2392.921786][T12280] usb 3-1: config 0 descriptor??
[ 2392.958132][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2392.988733][   T24] usb 5-1: Product: syz
[ 2393.011429][   T24] usb 5-1: Manufacturer: syz
[ 2393.031048][   T24] usb 5-1: SerialNumber: syz
[ 2393.066614][   T24] usb 5-1: config 0 descriptor??
[ 2393.182539][T12280] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 2393.466558][   T30] kauditd_printk_skb: 37 callbacks suppressed
[ 2393.466579][   T30] audit: type=1326 audit(1746667737.207:4552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1934 comm="syz.1.8106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2393.543662][   T30] audit: type=1326 audit(1746667737.207:4553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1934 comm="syz.1.8106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2393.592221][   T30] audit: type=1326 audit(1746667737.207:4554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1934 comm="syz.1.8106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2393.622262][   T30] audit: type=1326 audit(1746667737.207:4555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1934 comm="syz.1.8106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2393.648790][   T30] audit: type=1326 audit(1746667737.207:4556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1934 comm="syz.1.8106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2393.705599][   T30] audit: type=1326 audit(1746667737.217:4557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1934 comm="syz.1.8106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=288 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2393.728435][    T9] usb 2-1: new full-speed USB device number 99 using dummy_hcd
[ 2393.742931][ T1937] netlink: 'syz.3.8107': attribute type 1 has an invalid length.
[ 2393.755722][   T30] audit: type=1326 audit(1746667737.217:4558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1934 comm="syz.1.8106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2393.822686][   T30] audit: type=1326 audit(1746667737.217:4559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1934 comm="syz.1.8106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2393.898129][    T9] usb 2-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 2393.940642][    T9] usb 2-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2393.976675][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[ 2393.992565][   T30] audit: type=1326 audit(1746667737.217:4560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1934 comm="syz.1.8106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d9af8e969 code=0x7ffc0000
[ 2394.055018][    T9] usb 2-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 2394.136293][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2394.159742][   T30] audit: type=1326 audit(1746667737.217:4561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1934 comm="syz.1.8106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5d9af8d2d0 code=0x7ffc0000
[ 2394.215077][    T9] usb 2-1: config 0 descriptor??
[ 2394.645358][T12280] dvb_usb_rtl28xxu 3-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[ 2394.663908][T12280] usb 3-1: USB disconnect, device number 20
[ 2394.677882][    T9] hid-steam 0003:28DE:1102.006E: item fetching failed at offset 4/5
[ 2394.697018][    T9] hid-steam 0003:28DE:1102.006E: steam_probe:parse of hid interface failed
[ 2394.714341][    T9] hid-steam 0003:28DE:1102.006E: probe with driver hid-steam failed with error -22
[ 2394.908123][T12280] usb 2-1: USB disconnect, device number 99
[ 2395.762408][ T1969] PKCS7: Unknown OID: [4] 5.25.264.37.2351.52
[ 2395.762428][ T1969] PKCS7: Only support pkcs7_signedData type
[ 2395.875782][    T9] usb 5-1: USB disconnect, device number 22
[ 2396.478935][ T1977] snd_dummy snd_dummy.0: control 1:-2:128:syz0:0 is already present
[ 2396.690394][ T1987] netlink: 'syz.2.8121': attribute type 12 has an invalid length.
[ 2396.965028][T25245] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[ 2397.189639][T25245] usb 3-1: config 54 has an invalid descriptor of length 0, skipping remainder of the config
[ 2397.220155][T25245] usb 3-1: New USB device found, idVendor=15f4, idProduct=0015, bcdDevice=d1.6e
[ 2397.221193][ T2000] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8128'.
[ 2397.248480][T25245] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2397.305171][ T2000] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8128'.
[ 2397.305270][T25245] usb 3-1: Product: syz
[ 2397.344220][ T2000] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8128'.
[ 2397.366873][T25245] usb 3-1: Manufacturer: syz
[ 2397.371571][T25245] usb 3-1: SerialNumber: syz
[ 2397.412390][ T2000] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8128'.
[ 2397.426279][T25245] dvb-usb: found a 'Hanftek UMT-010 DVB-T USB2.0' in warm state.
[ 2397.434335][T25245] dvb-usb: bulk message failed: -22 (3/0)
[ 2397.439217][ T2000] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8128'.
[ 2397.457754][T25245] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 2397.472376][T25245] dvbdev: DVB: registering new adapter (Hanftek UMT-010 DVB-T USB2.0)
[ 2397.481369][T25245] usb 3-1: media controller created
[ 2397.512682][ T2000] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8128'.
[ 2397.517877][T25245] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 2397.635380][ T2000] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8128'.
[ 2397.644857][ T2000] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8128'.
[ 2397.658786][ T2000] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8128'.
[ 2397.675620][ T2000] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8128'.
[ 2397.684895][    T9] usb 5-1: new full-speed USB device number 23 using dummy_hcd
[ 2397.838316][    T9] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 2397.871174][T25245] DVB: Unable to find symbol mt352_attach()
[ 2397.905921][    T9] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2397.917912][T25245] dvb-usb: no frontend was attached by 'Hanftek UMT-010 DVB-T USB2.0'
[ 2397.997240][T25245] dvb-usb: bulk message failed: -22 (3/0)
[ 2398.007646][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[ 2398.030774][    T9] usb 5-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 2398.040150][T25245] dvb-usb: Hanftek UMT-010 DVB-T USB2.0 successfully initialized and connected.
[ 2398.070352][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2398.218442][    T9] usb 5-1: config 0 descriptor??
[ 2398.661389][   T30] kauditd_printk_skb: 76 callbacks suppressed
[ 2398.661410][   T30] audit: type=1326 audit(1746667742.427:4638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2002 comm="syz.4.8127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f879998e969 code=0x7ffc0000
[ 2398.667697][    T9] hid-steam 0003:28DE:1102.006F: item fetching failed at offset 4/5
[ 2398.668483][    T9] hid-steam 0003:28DE:1102.006F: steam_probe:parse of hid interface failed
[ 2398.716892][    T9] hid-steam 0003:28DE:1102.006F: probe with driver hid-steam failed with error -22
[ 2398.747362][   T30] audit: type=1326 audit(1746667742.427:4639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2002 comm="syz.4.8127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f879998e56b code=0x7ffc0000
[ 2398.773422][   T30] audit: type=1326 audit(1746667742.427:4640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2002 comm="syz.4.8127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f879998e56b code=0x7ffc0000
[ 2398.800090][   T30] audit: type=1326 audit(1746667742.477:4641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2002 comm="syz.4.8127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f87999c1225 code=0x7ffc0000
[ 2398.913240][   T30] audit: type=1326 audit(1746667742.677:4642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2002 comm="syz.4.8127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f879998e969 code=0x7ffc0000
[ 2398.937599][T12280] usb 5-1: USB disconnect, device number 23
[ 2398.953844][   T30] audit: type=1326 audit(1746667742.677:4643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2002 comm="syz.4.8127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f879998e969 code=0x7ffc0000
[ 2399.041828][   T30] audit: type=1326 audit(1746667742.707:4644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2002 comm="syz.4.8127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f879998e969 code=0x7ffc0000
[ 2399.115977][   T30] audit: type=1326 audit(1746667742.707:4645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2002 comm="syz.4.8127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f879998e969 code=0x7ffc0000
[ 2399.172012][   T30] audit: type=1326 audit(1746667742.707:4646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2002 comm="syz.4.8127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f879998e969 code=0x7ffc0000
[ 2400.307072][   T24] usb 3-1: USB disconnect, device number 21
[ 2400.379873][   T24] dvb-usb: Hanftek UMT-010 DVB-T USB2.0 successfully deinitialized and disconnected.
[ 2400.504869][T21238] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[ 2400.724812][T21238] usb 5-1: Using ep0 maxpacket: 32
[ 2400.757498][T21238] usb 5-1: config 0 has an invalid interface number: 85 but max is 0
[ 2400.790616][T21238] usb 5-1: config 0 has no interface number 0
[ 2400.813060][T21238] usb 5-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2400.916949][T21238] usb 5-1: config 0 interface 85 has no altsetting 0
[ 2400.955811][T21238] usb 5-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[ 2401.004657][T21238] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2401.024272][T21238] usb 5-1: Product: syz
[ 2401.066616][T21238] usb 5-1: Manufacturer: syz
[ 2401.071255][T21238] usb 5-1: SerialNumber: syz
[ 2401.115512][T21238] usb 5-1: config 0 descriptor??
[ 2401.272289][ T2061] pim6reg: entered allmulticast mode
[ 2401.505064][ T2060] pim6reg: left allmulticast mode
[ 2401.541204][T21238] appletouch 5-1:0.85: Failed to read mode from device.
[ 2401.559790][T21238] appletouch 5-1:0.85: probe with driver appletouch failed with error -5
[ 2401.588461][T21238] usb 5-1: USB disconnect, device number 24
[ 2401.830895][   T30] audit: type=1326 audit(1746667745.587:4647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2065 comm="syz.2.8147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2937d8e969 code=0x7ffc0000
[ 2402.073327][T12280] usb 3-1: new full-speed USB device number 22 using dummy_hcd
[ 2402.250799][T12280] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 2402.262281][T12280] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2402.272734][T12280] usb 3-1: config 0 interface 0 has no altsetting 0
[ 2402.279989][T12280] usb 3-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 2402.289881][T12280] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2402.381313][T12280] usb 3-1: config 0 descriptor??
[ 2402.827228][T12280] hid-steam 0003:28DE:1102.0070: item fetching failed at offset 4/5
[ 2402.847749][T12280] hid-steam 0003:28DE:1102.0070: steam_probe:parse of hid interface failed
[ 2402.867777][T12280] hid-steam 0003:28DE:1102.0070: probe with driver hid-steam failed with error -22
[ 2402.999532][ T2097] pim6reg: entered allmulticast mode
[ 2403.031050][T25245] usb 3-1: USB disconnect, device number 22
[ 2403.171079][ T2096] pim6reg: left allmulticast mode
[ 2403.423466][ T2103] __nla_validate_parse: 23 callbacks suppressed
[ 2403.423488][ T2103] netlink: 132 bytes leftover after parsing attributes in process `syz.1.8158'.
[ 2406.089665][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[ 2406.096291][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[ 2467.528255][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[ 2467.535153][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[ 2528.968065][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[ 2528.974424][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[ 2560.965310][   T31] INFO: task kworker/1:0:24 blocked for more than 143 seconds.
[ 2560.972921][   T31]       Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0
[ 2560.980749][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2560.989656][   T31] task:kworker/1:0     state:D stack:19992 pid:24    tgid:24    ppid:2      task_flags:0x4208060 flags:0x00004000
[ 2561.001805][   T31] Workqueue: events rfkill_global_led_trigger_worker
[ 2561.008674][   T31] Call Trace:
[ 2561.011985][   T31]  <TASK>
[ 2561.015086][   T31]  __schedule+0x16e2/0x4cd0
[ 2561.019730][   T31]  ? schedule+0x165/0x360
[ 2561.024094][   T31]  ? __pfx___schedule+0x10/0x10
[ 2561.029142][   T31]  ? schedule+0x91/0x360
[ 2561.033532][   T31]  schedule+0x165/0x360
[ 2561.037794][   T31]  schedule_preempt_disabled+0x13/0x30
[ 2561.043294][   T31]  __mutex_lock+0x724/0xe80
[ 2561.048292][   T31]  ? __mutex_lock+0x51b/0xe80
[ 2561.053000][   T31]  ? rfkill_global_led_trigger_worker+0x27/0xd0
[ 2561.059383][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 2561.064450][   T31]  ? process_scheduled_works+0x9ec/0x17a0
[ 2561.070319][   T31]  ? process_scheduled_works+0x9ec/0x17a0
[ 2561.076334][   T31]  rfkill_global_led_trigger_worker+0x27/0xd0
[ 2561.082443][   T31]  ? process_scheduled_works+0x9ec/0x17a0
[ 2561.088284][   T31]  process_scheduled_works+0xadb/0x17a0
[ 2561.093892][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2561.100077][   T31]  worker_thread+0x8a0/0xda0
[ 2561.104758][   T31]  kthread+0x70e/0x8a0
[ 2561.108851][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 2561.113963][   T31]  ? __pfx_kthread+0x10/0x10
[ 2561.118737][   T31]  ? __pfx_kthread+0x10/0x10
[ 2561.123361][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2561.128937][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2561.134187][   T31]  ? __pfx_kthread+0x10/0x10
[ 2561.139115][   T31]  ret_from_fork+0x4b/0x80
[ 2561.143581][   T31]  ? __pfx_kthread+0x10/0x10
[ 2561.148385][   T31]  ret_from_fork_asm+0x1a/0x30
[ 2561.153213][   T31]  </TASK>
[ 2561.156628][   T31] INFO: task kworker/1:3:5829 blocked for more than 143 seconds.
[ 2561.164423][   T31]       Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0
[ 2561.172148][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2561.180919][   T31] task:kworker/1:3     state:D stack:15880 pid:5829  tgid:5829  ppid:2      task_flags:0x4208060 flags:0x00004000
[ 2561.193210][   T31] Workqueue: events rfkill_sync_work
[ 2561.198619][   T31] Call Trace:
[ 2561.201907][   T31]  <TASK>
[ 2561.204965][   T31]  __schedule+0x16e2/0x4cd0
[ 2561.209603][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 2561.215097][   T31]  ? schedule+0x165/0x360
[ 2561.219489][   T31]  ? __pfx___schedule+0x10/0x10
[ 2561.224361][   T31]  ? schedule+0x91/0x360
[ 2561.228695][   T31]  schedule+0x165/0x360
[ 2561.232885][   T31]  schedule_preempt_disabled+0x13/0x30
[ 2561.238490][   T31]  __mutex_lock+0x724/0xe80
[ 2561.243028][   T31]  ? __mutex_lock+0x51b/0xe80
[ 2561.247791][   T31]  ? nfc_rfkill_set_block+0x50/0x2e0
[ 2561.253113][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 2561.258282][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2561.263521][   T31]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2561.269687][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2561.276110][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[ 2561.281888][   T31]  nfc_rfkill_set_block+0x50/0x2e0
[ 2561.287178][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[ 2561.292940][   T31]  rfkill_set_block+0x1cf/0x440
[ 2561.298133][   T31]  rfkill_sync_work+0x114/0x200
[ 2561.303025][   T31]  ? process_scheduled_works+0x9ec/0x17a0
[ 2561.308831][   T31]  process_scheduled_works+0xadb/0x17a0
[ 2561.314441][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2561.320537][   T31]  worker_thread+0x8a0/0xda0
[ 2561.325288][   T31]  kthread+0x70e/0x8a0
[ 2561.329402][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 2561.334620][   T31]  ? __pfx_kthread+0x10/0x10
[ 2561.339261][   T31]  ? __pfx_kthread+0x10/0x10
[ 2561.343914][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2561.349214][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2561.354517][   T31]  ? __pfx_kthread+0x10/0x10
[ 2561.359166][   T31]  ret_from_fork+0x4b/0x80
[ 2561.363618][   T31]  ? __pfx_kthread+0x10/0x10
[ 2561.368382][   T31]  ret_from_fork_asm+0x1a/0x30
[ 2561.373191][   T31]  </TASK>
[ 2561.376520][   T31] INFO: task syz.0.8150:2071 blocked for more than 143 seconds.
[ 2561.384232][   T31]       Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0
[ 2561.392062][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2561.400854][   T31] task:syz.0.8150      state:D stack:25272 pid:2071  tgid:2071  ppid:27318  task_flags:0x400040 flags:0x00004006
[ 2561.413113][   T31] Call Trace:
[ 2561.416500][   T31]  <TASK>
[ 2561.419480][   T31]  __schedule+0x16e2/0x4cd0
[ 2561.424036][   T31]  ? validate_chain+0x7f0/0x2140
[ 2561.429192][   T31]  ? is_bpf_text_address+0x26/0x2b0
[ 2561.434430][   T31]  ? schedule+0x165/0x360
[ 2561.438870][   T31]  ? __pfx___schedule+0x10/0x10
[ 2561.443799][   T31]  ? schedule+0x91/0x360
[ 2561.448151][   T31]  schedule+0x165/0x360
[ 2561.452370][   T31]  schedule_timeout+0x9a/0x270
[ 2561.457336][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[ 2561.462757][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2561.468035][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2561.473269][   T31]  ? wait_for_completion+0x267/0x5d0
[ 2561.478673][   T31]  wait_for_completion+0x2bf/0x5d0
[ 2561.483921][   T31]  ? __pfx_wait_for_completion+0x10/0x10
[ 2561.489667][   T31]  ? __flush_work+0xd2/0xbc0
[ 2561.494321][   T31]  ? __flush_work+0xd2/0xbc0
[ 2561.499013][   T31]  __flush_work+0x9b9/0xbc0
[ 2561.503580][   T31]  ? __flush_work+0xd2/0xbc0
[ 2561.508293][   T31]  ? __pfx___flush_work+0x10/0x10
[ 2561.513367][   T31]  ? __pfx_wq_barrier_func+0x10/0x10
[ 2561.518963][   T31]  ? __pfx___cancel_work+0x10/0x10
[ 2561.524142][   T31]  ? nfc_genl_device_removed+0x23c/0x330
[ 2561.529959][   T31]  __cancel_work_sync+0xbe/0x110
[ 2561.534997][   T31]  rfkill_unregister+0x92/0x220
[ 2561.539897][   T31]  nfc_unregister_device+0x96/0x2a0
[ 2561.545200][   T31]  ? __pfx_virtual_ncidev_close+0x10/0x10
[ 2561.550949][   T31]  virtual_ncidev_close+0x56/0x90
[ 2561.556080][   T31]  __fput+0x449/0xa70
[ 2561.560106][   T31]  task_work_run+0x1d1/0x260
[ 2561.564797][   T31]  ? __pfx_task_work_run+0x10/0x10
[ 2561.569948][   T31]  resume_user_mode_work+0x5e/0x80
[ 2561.575178][   T31]  syscall_exit_to_user_mode+0x9a/0x120
[ 2561.580789][   T31]  do_syscall_64+0x103/0x210
[ 2561.585490][   T31]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2561.591689][   T31]  ? clear_bhb_loop+0x45/0xa0
[ 2561.596454][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2561.602494][   T31] RIP: 0033:0x7f2c1bb8e969
[ 2561.607121][   T31] RSP: 002b:00007f2c1bedfb88 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 2561.615656][   T31] RAX: 0000000000000000 RBX: 000000000024a755 RCX: 00007f2c1bb8e969
[ 2561.623674][   T31] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 2561.632231][   T31] RBP: 00007f2c1bdb7ba0 R08: 0000000000000001 R09: 0000001d1bedfe7f
[ 2561.640332][   T31] R10: 00007f2c1ba00000 R11: 0000000000000246 R12: 00007f2c1bdb5fac
[ 2561.648419][   T31] R13: 00007f2c1bdb5fa0 R14: ffffffffffffffff R15: 00007f2c1bedfca0
[ 2561.656604][   T31]  </TASK>
[ 2561.659676][   T31] INFO: task syz.3.8152:2080 blocked for more than 144 seconds.
[ 2561.667574][   T31]       Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0
[ 2561.675321][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2561.684023][   T31] task:syz.3.8152      state:D stack:26352 pid:2080  tgid:2079  ppid:26964  task_flags:0x400140 flags:0x00004006
[ 2561.700823][   T31] Call Trace:
[ 2561.704134][   T31]  <TASK>
[ 2561.707151][   T31]  __schedule+0x16e2/0x4cd0
[ 2561.711699][   T31]  ? schedule+0x165/0x360
[ 2561.716175][   T31]  ? __pfx___schedule+0x10/0x10
[ 2561.721066][   T31]  ? schedule+0x91/0x360
[ 2561.725404][   T31]  schedule+0x165/0x360
[ 2561.729599][   T31]  schedule_preempt_disabled+0x13/0x30
[ 2561.735305][   T31]  __mutex_lock+0x724/0xe80
[ 2561.739843][   T31]  ? __mutex_lock+0x51b/0xe80
[ 2561.744699][   T31]  ? rfkill_register+0x37/0x8e0
[ 2561.749597][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 2561.754796][   T31]  ? __init_waitqueue_head+0xa9/0x150
[ 2561.760205][   T31]  ? device_initialize+0x24b/0x440
[ 2561.765521][   T31]  rfkill_register+0x37/0x8e0
[ 2561.770248][   T31]  nfc_register_device+0x14a/0x320
[ 2561.775505][   T31]  nci_register_device+0x87f/0x9d0
[ 2561.780666][   T31]  ? __pfx_nci_register_device+0x10/0x10
[ 2561.786504][   T31]  ? __raw_spin_lock_init+0x45/0x100
[ 2561.791861][   T31]  ? __init_waitqueue_head+0xa9/0x150
[ 2561.797467][   T31]  virtual_ncidev_open+0x129/0x1a0
[ 2561.802650][   T31]  ? __pfx_virtual_ncidev_open+0x10/0x10
[ 2561.808567][   T31]  misc_open+0x2b9/0x330
[ 2561.812886][   T31]  chrdev_open+0x4c9/0x5e0
[ 2561.817523][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 2561.822501][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 2561.827502][   T31]  do_dentry_open+0xdf0/0x1970
[ 2561.832327][   T31]  vfs_open+0x3b/0x340
[ 2561.836522][   T31]  ? path_openat+0x2ecd/0x3830
[ 2561.841338][   T31]  path_openat+0x2ee5/0x3830
[ 2561.846123][   T31]  ? arch_stack_walk+0xfc/0x150
[ 2561.851035][   T31]  ? futex_wait_queue+0x31/0x200
[ 2561.856306][   T31]  ? __pfx_path_openat+0x10/0x10
[ 2561.861293][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2561.867541][   T31]  do_filp_open+0x1fa/0x410
[ 2561.872076][   T31]  ? __pfx_do_filp_open+0x10/0x10
[ 2561.877233][   T31]  ? _raw_spin_unlock+0x28/0x50
[ 2561.882114][   T31]  ? alloc_fd+0x64c/0x6c0
[ 2561.886557][   T31]  do_sys_openat2+0x121/0x1c0
[ 2561.891273][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[ 2561.896596][   T31]  ? rcu_is_watching+0x15/0xb0
[ 2561.901406][   T31]  __x64_sys_openat+0x138/0x170
[ 2561.906408][   T31]  do_syscall_64+0xf6/0x210
[ 2561.910951][   T31]  ? clear_bhb_loop+0x45/0xa0
[ 2561.915759][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2561.921699][   T31] RIP: 0033:0x7f654dd8e969
[ 2561.926421][   T31] RSP: 002b:00007f654ebb0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2561.935046][   T31] RAX: ffffffffffffffda RBX: 00007f654dfb5fa0 RCX: 00007f654dd8e969
[ 2561.943050][   T31] RDX: 0000000000000002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 2561.951123][   T31] RBP: 00007f654de10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 2561.959513][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2561.967817][   T31] R13: 0000000000000000 R14: 00007f654dfb5fa0 R15: 00007f654e0dfa28
[ 2561.975900][   T31]  </TASK>
[ 2561.978967][   T31] INFO: task syz.4.8156:2095 blocked for more than 144 seconds.
[ 2561.986678][   T31]       Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0
[ 2561.994310][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2562.003395][   T31] task:syz.4.8156      state:D stack:27000 pid:2095  tgid:2092  ppid:27964  task_flags:0x400040 flags:0x00004004
[ 2562.015653][   T31] Call Trace:
[ 2562.018969][   T31]  <TASK>
[ 2562.021928][   T31]  __schedule+0x16e2/0x4cd0
[ 2562.026613][   T31]  ? schedule+0x165/0x360
[ 2562.030991][   T31]  ? __pfx___schedule+0x10/0x10
[ 2562.035980][   T31]  ? schedule+0x91/0x360
[ 2562.040275][   T31]  schedule+0x165/0x360
[ 2562.044521][   T31]  schedule_preempt_disabled+0x13/0x30
[ 2562.050009][   T31]  __mutex_lock+0x724/0xe80
[ 2562.054639][   T31]  ? __mutex_lock+0x51b/0xe80
[ 2562.059352][   T31]  ? misc_open+0x51/0x330
[ 2562.063697][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 2562.068830][   T31]  misc_open+0x51/0x330
[ 2562.073024][   T31]  chrdev_open+0x4c9/0x5e0
[ 2562.077770][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 2562.082773][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 2562.088182][   T31]  do_dentry_open+0xdf0/0x1970
[ 2562.092995][   T31]  vfs_open+0x3b/0x340
[ 2562.097154][   T31]  ? path_openat+0x2ecd/0x3830
[ 2562.101977][   T31]  path_openat+0x2ee5/0x3830
[ 2562.106652][   T31]  ? rcu_is_watching+0x15/0xb0
[ 2562.111455][   T31]  ? trace_sched_exit_tp+0x38/0x120
[ 2562.116806][   T31]  ? __pfx_path_openat+0x10/0x10
[ 2562.121786][   T31]  ? __pfx___schedule+0x10/0x10
[ 2562.126754][   T31]  do_filp_open+0x1fa/0x410
[ 2562.131333][   T31]  ? __pfx_do_filp_open+0x10/0x10
[ 2562.136473][   T31]  ? preempt_schedule_common+0x83/0xd0
[ 2562.141980][   T31]  ? _raw_spin_unlock+0x3f/0x50
[ 2562.146905][   T31]  ? alloc_fd+0x64c/0x6c0
[ 2562.151289][   T31]  do_sys_openat2+0x121/0x1c0
[ 2562.156057][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[ 2562.161304][   T31]  ? exc_page_fault+0x68/0x110
[ 2562.166588][   T31]  ? do_user_addr_fault+0xc8a/0x1390
[ 2562.171915][   T31]  __x64_sys_openat+0x138/0x170
[ 2562.176916][   T31]  do_syscall_64+0xf6/0x210
[ 2562.181453][   T31]  ? clear_bhb_loop+0x45/0xa0
[ 2562.186444][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2562.192377][   T31] RIP: 0033:0x7f879998d2d0
[ 2562.196908][   T31] RSP: 002b:00007f879a846ef0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 2562.205405][   T31] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f879998d2d0
[ 2562.213386][   T31] RDX: 0000000000000002 RSI: 00007f8799a1078c RDI: 00000000ffffff9c
[ 2562.221445][   T31] RBP: 00007f8799a1078c R08: 0000000000000000 R09: 0000000000000000
[ 2562.229566][   T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 2562.237692][   T31] R13: 000000000000005f R14: 0000200000000680 R15: 00007f8799cdfa28
[ 2562.245904][   T31]  </TASK>
[ 2562.249038][   T31] INFO: task syz.2.8160:2110 blocked for more than 144 seconds.
[ 2562.256804][   T31]       Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0
[ 2562.264457][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2562.273231][   T31] task:syz.2.8160      state:D stack:27864 pid:2110  tgid:2107  ppid:26833  task_flags:0x400040 flags:0x00000004
[ 2562.285335][   T31] Call Trace:
[ 2562.288658][   T31]  <TASK>
[ 2562.291634][   T31]  __schedule+0x16e2/0x4cd0
[ 2562.296487][   T31]  ? schedule+0x165/0x360
[ 2562.300865][   T31]  ? __pfx___schedule+0x10/0x10
[ 2562.305824][   T31]  ? schedule+0x91/0x360
[ 2562.310274][   T31]  schedule+0x165/0x360
[ 2562.314439][   T31]  schedule_preempt_disabled+0x13/0x30
[ 2562.319982][   T31]  __mutex_lock+0x724/0xe80
[ 2562.324622][   T31]  ? __mutex_lock+0x51b/0xe80
[ 2562.329348][   T31]  ? misc_open+0x51/0x330
[ 2562.333714][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 2562.338859][   T31]  misc_open+0x51/0x330
[ 2562.343058][   T31]  chrdev_open+0x4c9/0x5e0
[ 2562.347598][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 2562.352760][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 2562.357818][   T31]  do_dentry_open+0xdf0/0x1970
[ 2562.362632][   T31]  vfs_open+0x3b/0x340
[ 2562.366810][   T31]  ? path_openat+0x2ecd/0x3830
[ 2562.371605][   T31]  path_openat+0x2ee5/0x3830
[ 2562.376269][   T31]  ? arch_stack_walk+0xfc/0x150
[ 2562.381167][   T31]  ? futex_wait_queue+0x31/0x200
[ 2562.386226][   T31]  ? __pfx_path_openat+0x10/0x10
[ 2562.391192][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2562.397503][   T31]  do_filp_open+0x1fa/0x410
[ 2562.402054][   T31]  ? __pfx_do_filp_open+0x10/0x10
[ 2562.407424][   T31]  ? _raw_spin_unlock+0x28/0x50
[ 2562.412327][   T31]  ? alloc_fd+0x64c/0x6c0
[ 2562.416852][   T31]  do_sys_openat2+0x121/0x1c0
[ 2562.421591][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[ 2562.426894][   T31]  ? __pfx___se_sys_futex+0x10/0x10
[ 2562.432128][   T31]  __x64_sys_openat+0x138/0x170
[ 2562.437060][   T31]  do_syscall_64+0xf6/0x210
[ 2562.441606][   T31]  ? clear_bhb_loop+0x45/0xa0
[ 2562.446388][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2562.452312][   T31] RIP: 0033:0x7f2937d8e969
[ 2562.456790][   T31] RSP: 002b:00007f2938b92038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2562.465379][   T31] RAX: ffffffffffffffda RBX: 00007f2937fb6080 RCX: 00007f2937d8e969
[ 2562.473377][   T31] RDX: 0000000000000002 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[ 2562.481515][   T31] RBP: 00007f2937e10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 2562.489762][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2562.497924][   T31] R13: 0000000000000000 R14: 00007f2937fb6080 R15: 00007f29380dfa28
[ 2562.506311][   T31]  </TASK>
[ 2562.509430][   T31] INFO: task syz.1.8163:2118 blocked for more than 144 seconds.
[ 2562.517377][   T31]       Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0
[ 2562.525177][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2562.533883][   T31] task:syz.1.8163      state:D stack:28104 pid:2118  tgid:2117  ppid:30585  task_flags:0x400040 flags:0x00000004
[ 2562.546028][   T31] Call Trace:
[ 2562.549352][   T31]  <TASK>
[ 2562.552315][   T31]  __schedule+0x16e2/0x4cd0
[ 2562.556977][   T31]  ? __kasan_slab_free+0x62/0x70
[ 2562.561946][   T31]  ? security_file_open+0xb1/0x270
[ 2562.567245][   T31]  ? schedule+0x165/0x360
[ 2562.571613][   T31]  ? __pfx___schedule+0x10/0x10
[ 2562.576585][   T31]  ? schedule+0x91/0x360
[ 2562.580857][   T31]  schedule+0x165/0x360
[ 2562.585101][   T31]  schedule_preempt_disabled+0x13/0x30
[ 2562.590584][   T31]  __mutex_lock+0x724/0xe80
[ 2562.595184][   T31]  ? __mutex_lock+0x51b/0xe80
[ 2562.599896][   T31]  ? misc_open+0x51/0x330
[ 2562.604236][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 2562.609475][   T31]  misc_open+0x51/0x330
[ 2562.613668][   T31]  chrdev_open+0x4c9/0x5e0
[ 2562.618290][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 2562.623270][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 2562.628520][   T31]  do_dentry_open+0xdf0/0x1970
[ 2562.633503][   T31]  vfs_open+0x3b/0x340
[ 2562.637683][   T31]  ? path_openat+0x2ecd/0x3830
[ 2562.642670][   T31]  path_openat+0x2ee5/0x3830
[ 2562.647386][   T31]  ? arch_stack_walk+0xfc/0x150
[ 2562.652290][   T31]  ? futex_wait_queue+0x31/0x200
[ 2562.657334][   T31]  ? __pfx_path_openat+0x10/0x10
[ 2562.662310][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2562.668511][   T31]  do_filp_open+0x1fa/0x410
[ 2562.673065][   T31]  ? __pfx_do_filp_open+0x10/0x10
[ 2562.678348][   T31]  ? _raw_spin_unlock+0x28/0x50
[ 2562.683253][   T31]  ? alloc_fd+0x64c/0x6c0
[ 2562.687715][   T31]  do_sys_openat2+0x121/0x1c0
[ 2562.692567][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[ 2562.697895][   T31]  ? __pfx___se_sys_futex+0x10/0x10
[ 2562.703140][   T31]  __x64_sys_openat+0x138/0x170
[ 2562.708120][   T31]  do_syscall_64+0xf6/0x210
[ 2562.712659][   T31]  ? clear_bhb_loop+0x45/0xa0
[ 2562.717445][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2562.723362][   T31] RIP: 0033:0x7f5d9af8e969
[ 2562.729524][   T31] RSP: 002b:00007f5d9bebd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2562.738196][   T31] RAX: ffffffffffffffda RBX: 00007f5d9b1b5fa0 RCX: 00007f5d9af8e969
[ 2562.746684][   T31] RDX: 0000000000181040 RSI: 0000200000000140 RDI: ffffffffffffff9c
[ 2562.754879][   T31] RBP: 00007f5d9b010ab1 R08: 0000000000000000 R09: 0000000000000000
[ 2562.762994][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2562.771136][   T31] R13: 0000000000000000 R14: 00007f5d9b1b5fa0 R15: 00007f5d9b2dfa28
[ 2562.779453][   T31]  </TASK>
[ 2562.782557][   T31] INFO: task syz.1.8163:2120 blocked for more than 145 seconds.
[ 2562.791439][   T31]       Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0
[ 2562.799569][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2562.808503][   T31] task:syz.1.8163      state:D stack:28104 pid:2120  tgid:2117  ppid:30585  task_flags:0x400040 flags:0x00000004
[ 2562.820916][   T31] Call Trace:
[ 2562.824231][   T31]  <TASK>
[ 2562.827276][   T31]  __schedule+0x16e2/0x4cd0
[ 2562.831925][   T31]  ? __kasan_slab_free+0x62/0x70
[ 2562.837090][   T31]  ? security_file_open+0xb1/0x270
[ 2562.842277][   T31]  ? schedule+0x165/0x360
[ 2562.846879][   T31]  ? __pfx___schedule+0x10/0x10
[ 2562.851804][   T31]  ? schedule+0x91/0x360
[ 2562.856241][   T31]  schedule+0x165/0x360
[ 2562.860438][   T31]  schedule_preempt_disabled+0x13/0x30
[ 2562.866015][   T31]  __mutex_lock+0x724/0xe80
[ 2562.870553][   T31]  ? __mutex_lock+0x51b/0xe80
[ 2562.875407][   T31]  ? misc_open+0x51/0x330
[ 2562.879783][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 2562.885196][   T31]  misc_open+0x51/0x330
[ 2562.889429][   T31]  chrdev_open+0x4c9/0x5e0
[ 2562.893878][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 2562.898998][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 2562.903979][   T31]  do_dentry_open+0xdf0/0x1970
[ 2562.908913][   T31]  vfs_open+0x3b/0x340
[ 2562.913060][   T31]  ? path_openat+0x2ecd/0x3830
[ 2562.918029][   T31]  path_openat+0x2ee5/0x3830
[ 2562.922731][   T31]  ? arch_stack_walk+0xfc/0x150
[ 2562.927750][   T31]  ? __pfx_path_openat+0x10/0x10
[ 2562.932725][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2562.938891][   T31]  do_filp_open+0x1fa/0x410
[ 2562.943436][   T31]  ? __pfx_do_filp_open+0x10/0x10
[ 2562.948583][   T31]  ? _raw_spin_unlock+0x28/0x50
[ 2562.953467][   T31]  ? alloc_fd+0x64c/0x6c0
[ 2562.957981][   T31]  do_sys_openat2+0x121/0x1c0
[ 2562.962708][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[ 2562.968092][   T31]  ? rcu_is_watching+0x15/0xb0
[ 2562.972912][   T31]  __x64_sys_openat+0x138/0x170
[ 2562.977878][   T31]  do_syscall_64+0xf6/0x210
[ 2562.982423][   T31]  ? clear_bhb_loop+0x45/0xa0
[ 2562.987204][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2562.993127][   T31] RIP: 0033:0x7f5d9af8e969
[ 2562.997704][   T31] RSP: 002b:00007f5d9be7b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2563.006260][   T31] RAX: ffffffffffffffda RBX: 00007f5d9b1b6160 RCX: 00007f5d9af8e969
[ 2563.014260][   T31] RDX: 0000000000000400 RSI: 0000200000000140 RDI: ffffffffffffff9c
[ 2563.022347][   T31] RBP: 00007f5d9b010ab1 R08: 0000000000000000 R09: 0000000000000000
[ 2563.030471][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2563.038660][   T31] R13: 0000000000000000 R14: 00007f5d9b1b6160 R15: 00007f5d9b2dfa28
[ 2563.046846][   T31]  </TASK>
[ 2563.049920][   T31] INFO: task syz.1.8163:2121 blocked for more than 145 seconds.
[ 2563.059133][   T31]       Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0
[ 2563.066932][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2563.075777][   T31] task:syz.1.8163      state:D stack:28104 pid:2121  tgid:2117  ppid:30585  task_flags:0x400040 flags:0x00000004
[ 2563.087810][   T31] Call Trace:
[ 2563.091111][   T31]  <TASK>
[ 2563.094048][   T31]  __schedule+0x16e2/0x4cd0
[ 2563.098620][   T31]  ? __kasan_slab_free+0x62/0x70
[ 2563.103587][   T31]  ? security_file_open+0xb1/0x270
[ 2563.108824][   T31]  ? schedule+0x165/0x360
[ 2563.113198][   T31]  ? __pfx___schedule+0x10/0x10
[ 2563.118224][   T31]  ? schedule+0x91/0x360
[ 2563.122505][   T31]  schedule+0x165/0x360
[ 2563.126781][   T31]  schedule_preempt_disabled+0x13/0x30
[ 2563.132272][   T31]  __mutex_lock+0x724/0xe80
[ 2563.136905][   T31]  ? __mutex_lock+0x51b/0xe80
[ 2563.141616][   T31]  ? misc_open+0x51/0x330
[ 2563.146097][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 2563.151171][   T31]  misc_open+0x51/0x330
[ 2563.155449][   T31]  chrdev_open+0x4c9/0x5e0
[ 2563.159903][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 2563.164957][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 2563.169930][   T31]  do_dentry_open+0xdf0/0x1970
[ 2563.174815][   T31]  vfs_open+0x3b/0x340
[ 2563.178954][   T31]  ? path_openat+0x2ecd/0x3830
[ 2563.183756][   T31]  path_openat+0x2ee5/0x3830
[ 2563.188476][   T31]  ? arch_stack_walk+0xfc/0x150
[ 2563.193394][   T31]  ? futex_wait_queue+0x31/0x200
[ 2563.198435][   T31]  ? __pfx_path_openat+0x10/0x10
[ 2563.203408][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2563.209794][   T31]  do_filp_open+0x1fa/0x410
[ 2563.214345][   T31]  ? __pfx_do_filp_open+0x10/0x10
[ 2563.219509][   T31]  ? _raw_spin_unlock+0x28/0x50
[ 2563.224391][   T31]  ? alloc_fd+0x64c/0x6c0
[ 2563.228842][   T31]  do_sys_openat2+0x121/0x1c0
[ 2563.233575][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[ 2563.238857][   T31]  ? rcu_is_watching+0x15/0xb0
[ 2563.243679][   T31]  __x64_sys_openat+0x138/0x170
[ 2563.248758][   T31]  do_syscall_64+0xf6/0x210
[ 2563.253356][   T31]  ? clear_bhb_loop+0x45/0xa0
[ 2563.258150][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2563.264082][   T31] RIP: 0033:0x7f5d9af8e969
[ 2563.268606][   T31] RSP: 002b:00007f5d9be5a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2563.277094][   T31] RAX: ffffffffffffffda RBX: 00007f5d9b1b6240 RCX: 00007f5d9af8e969
[ 2563.285457][   T31] RDX: 0000000000000002 RSI: 00002000000004c0 RDI: ffffffffffffff9c
[ 2563.293474][   T31] RBP: 00007f5d9b010ab1 R08: 0000000000000000 R09: 0000000000000000
[ 2563.301576][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2563.309690][   T31] R13: 0000000000000000 R14: 00007f5d9b1b6240 R15: 00007f5d9b2dfa28
[ 2563.317832][   T31]  </TASK>
[ 2563.321018][   T31] 
[ 2563.321018][   T31] Showing all locks held in the system:
[ 2563.328916][   T31] 3 locks held by kworker/1:0/24:
[ 2563.334073][   T31]  #0: ffff88801a080d48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 2563.345180][   T31]  #1: ffffc900001e7c60 ((work_completion)(&rfkill_global_led_trigger_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 2563.358813][   T31]  #2: ffffffff8f5c8f68 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_global_led_trigger_worker+0x27/0xd0
[ 2563.370552][   T31] 1 lock held by khungtaskd/31:
[ 2563.375815][   T31]  #0: ffffffff8df3b860 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 2563.385963][   T31] 2 locks held by getty/5593:
[ 2563.390768][   T31]  #0: ffff88814cfeb0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 2563.400638][   T31]  #1: ffffc90002ffe2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[ 2563.411132][   T31] 4 locks held by kworker/1:3/5829:
[ 2563.416470][   T31]  #0: ffff88801a080d48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 2563.427565][   T31]  #1: ffffc9000414fc60 ((work_completion)(&rfkill->sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 2563.440148][   T31]  #2: ffffffff8f5c8f68 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_sync_work+0x2e/0x200
[ 2563.450592][   T31]  #3: ffff888063acd100 (&dev->mutex){....}-{4:4}, at: nfc_rfkill_set_block+0x50/0x2e0
[ 2563.460429][   T31] 3 locks held by kworker/u8:3/28013:
[ 2563.466020][   T31] 1 lock held by syz.0.8150/2071:
[ 2563.471086][   T31]  #0: ffff888063acd100 (&dev->mutex){....}-{4:4}, at: nfc_unregister_device+0x63/0x2a0
[ 2563.480969][   T31] 3 locks held by syz.3.8152/2080:
[ 2563.486201][   T31]  #0: ffffffff8e7ad468 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 2563.494880][   T31]  #1: ffff88805ca08100 (&dev->mutex){....}-{4:4}, at: nfc_register_device+0xa1/0x320
[ 2563.504603][   T31]  #2: ffffffff8f5c8f68 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x37/0x8e0
[ 2563.514701][   T31] 1 lock held by syz.4.8156/2095:
[ 2563.519748][   T31]  #0: ffffffff8e7ad468 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 2563.528576][   T31] 1 lock held by syz.2.8160/2110:
[ 2563.533625][   T31]  #0: ffffffff8e7ad468 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 2563.542210][   T31] 1 lock held by syz.1.8163/2118:
[ 2563.547299][   T31]  #0: ffffffff8e7ad468 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 2563.555854][   T31] 1 lock held by syz.1.8163/2120:
[ 2563.560896][   T31]  #0: ffffffff8e7ad468 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 2563.569486][   T31] 1 lock held by syz.1.8163/2121:
[ 2563.574597][   T31]  #0: ffffffff8e7ad468 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 2563.583127][   T31] 1 lock held by syz-executor/2123:
[ 2563.588448][   T31]  #0: ffffffff8e7ad468 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 2563.597065][   T31] 1 lock held by syz-executor/2124:
[ 2563.602278][   T31]  #0: ffffffff8e7ad468 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 2563.610864][   T31] 1 lock held by syz-executor/2125:
[ 2563.616134][   T31]  #0: ffffffff8e7ad468 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 2563.624736][   T31] 1 lock held by syz-executor/2126:
[ 2563.629957][   T31]  #0: ffffffff8e7ad468 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 2563.638544][   T31] 1 lock held by syz-executor/2127:
[ 2563.643780][   T31]  #0: ffffffff8e7ad468 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 2563.652484][   T31] 
[ 2563.654930][   T31] =============================================
[ 2563.654930][   T31] 
[ 2563.663397][   T31] NMI backtrace for cpu 0
[ 2563.663414][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[ 2563.663436][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[ 2563.663447][   T31] Call Trace:
[ 2563.663458][   T31]  <TASK>
[ 2563.663467][   T31]  dump_stack_lvl+0x189/0x250
[ 2563.663497][   T31]  ? __wake_up_klogd+0xd9/0x110
[ 2563.663522][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2563.663549][   T31]  ? __pfx__printk+0x10/0x10
[ 2563.663583][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[ 2563.663617][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 2563.663643][   T31]  ? _printk+0xcf/0x120
[ 2563.663668][   T31]  ? __pfx__printk+0x10/0x10
[ 2563.663690][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 2563.663708][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 2563.663732][   T31]  watchdog+0xfee/0x1030
[ 2563.663753][   T31]  ? watchdog+0x1de/0x1030
[ 2563.663776][   T31]  kthread+0x70e/0x8a0
[ 2563.663795][   T31]  ? __pfx_watchdog+0x10/0x10
[ 2563.663813][   T31]  ? __pfx_kthread+0x10/0x10
[ 2563.663830][   T31]  ? __pfx_kthread+0x10/0x10
[ 2563.663846][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2563.663862][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2563.663879][   T31]  ? __pfx_kthread+0x10/0x10
[ 2563.663895][   T31]  ret_from_fork+0x4b/0x80
[ 2563.663909][   T31]  ? __pfx_kthread+0x10/0x10
[ 2563.663926][   T31]  ret_from_fork_asm+0x1a/0x30
[ 2563.663950][   T31]  </TASK>
[ 2563.663956][   T31] Sending NMI from CPU 0 to CPUs 1:
[ 2563.811888][    C1] NMI backtrace for cpu 1
[ 2563.811912][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[ 2563.811932][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[ 2563.811944][    C1] RIP: 0010:pv_native_safe_halt+0x13/0x20
[ 2563.811968][    C1] Code: cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 03 eb 11 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[ 2563.811984][    C1] RSP: 0018:ffffc90000197de0 EFLAGS: 000002c6
[ 2563.812000][    C1] RAX: c2cfced4aab6b000 RBX: ffffffff81974f28 RCX: c2cfced4aab6b000
[ 2563.812014][    C1] RDX: 0000000000000001 RSI: ffffffff8d74aa4f RDI: ffffffff8bc1d1e0
[ 2563.812026][    C1] RBP: ffffc90000197f20 R08: ffff8880b8932b5b R09: 1ffff1101712656b
[ 2563.812039][    C1] R10: dffffc0000000000 R11: ffffed101712656c R12: ffffffff8f7ed970
[ 2563.812052][    C1] R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff110038d9b40
[ 2563.812063][    C1] FS:  0000000000000000(0000) GS:ffff8881261cb000(0000) knlGS:0000000000000000
[ 2563.812078][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2563.812089][    C1] CR2: 0000563aab2c1168 CR3: 000000000dd36000 CR4: 00000000003526f0
[ 2563.812105][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2563.812115][    C1] DR3: 3a810b1eb6134bdc DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2563.812127][    C1] Call Trace:
[ 2563.812135][    C1]  <TASK>
[ 2563.812142][    C1]  default_idle+0x13/0x20
[ 2563.812164][    C1]  default_idle_call+0x74/0xb0
[ 2563.812188][    C1]  do_idle+0x1e8/0x510
[ 2563.812207][    C1]  ? __pfx_do_idle+0x10/0x10
[ 2563.812230][    C1]  cpu_startup_entry+0x44/0x60
[ 2563.812246][    C1]  start_secondary+0x101/0x110
[ 2563.812262][    C1]  common_startup_64+0x13e/0x147
[ 2563.812294][    C1]  </TASK>
[ 2563.812869][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 2563.998124][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[ 2564.009935][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[ 2564.020004][   T31] Call Trace:
[ 2564.023298][   T31]  <TASK>
[ 2564.026239][   T31]  dump_stack_lvl+0x99/0x250
[ 2564.030848][   T31]  ? __asan_memcpy+0x40/0x70
[ 2564.035445][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2564.040659][   T31]  ? __pfx__printk+0x10/0x10
[ 2564.045269][   T31]  panic+0x2db/0x790
[ 2564.049181][   T31]  ? __pfx_panic+0x10/0x10
[ 2564.053611][   T31]  ? nmi_backtrace_stall_check+0x433/0x440
[ 2564.059438][   T31]  ? irq_work_queue+0xc3/0x140
[ 2564.064222][   T31]  watchdog+0x102d/0x1030
[ 2564.068565][   T31]  ? watchdog+0x1de/0x1030
[ 2564.072996][   T31]  kthread+0x70e/0x8a0
[ 2564.077082][   T31]  ? __pfx_watchdog+0x10/0x10
[ 2564.081778][   T31]  ? __pfx_kthread+0x10/0x10
[ 2564.086378][   T31]  ? __pfx_kthread+0x10/0x10
[ 2564.090976][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2564.096184][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2564.101394][   T31]  ? __pfx_kthread+0x10/0x10
[ 2564.105993][   T31]  ret_from_fork+0x4b/0x80
[ 2564.110416][   T31]  ? __pfx_kthread+0x10/0x10
[ 2564.115017][   T31]  ret_from_fork_asm+0x1a/0x30
[ 2564.119798][   T31]  </TASK>
[ 2564.123135][   T31] Kernel Offset: disabled
[ 2564.127467][   T31] Rebooting in 86400 seconds..