last executing test programs:

14.229310343s ago: executing program 2 (id=6110):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000004c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x8, 0x8001, 0x40, 0x0, 0x9, 0x293a, 0xfa11, 0xffffffff}, 0x0)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
ptrace$pokeuser(0x6, r2, 0x358, 0xffff8880b870dfff)
ptrace$getregset(0x4204, r2, 0x200, &(0x7f0000000140)={&(0x7f0000000380)=""/237, 0xed})
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = syz_io_uring_setup(0x49a, &(0x7f0000000500)={0x0, 0x79af, 0x3180, 0x1, 0x36}, &(0x7f0000000340)=<r4=>0x0, &(0x7f0000000040)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000480), 0x84400)
ioctl$FS_IOC_GETVERSION(r6, 0x80087601, &(0x7f0000000080))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0xc, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}})
r8 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r8, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
syz_open_dev$sndpcmp(&(0x7f0000000180), 0x7fff, 0x800)
io_uring_enter(r3, 0x627, 0x4c1, 0x43, 0x0, 0x30)
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xd5}, 0x80)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r9 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_dsack\x00', 0x1, 0x0)
r10 = syz_open_dev$video(&(0x7f0000000040), 0x7f, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x80000000, 0x20000006, 0x4d, 0x6, 0x5d, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x0, 0x7, 0x3c5b, 0x1, 0x24, 0xd, 0x7, 0x0, 0xffffffff, 0xe661, 0x629, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8c, 0x6, 0x10002, 0x0, 0x5, 0x4, 0x8008, 0x400, 0x80, 0x0, 0x5, 0x6, 0x8, 0x7, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x2008004, 0x5, 0xfffffff3, 0x129432e6, 0xc8, 0xf9, 0xe, 0x2c0, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f2e, 0xd, 0x4e2, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x7c9d, 0x9, 0x8, 0x3, 0x3, 0x81, 0x48c93690, 0x42, 0x3], [0x7, 0xb, 0x7, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa9, 0x5, 0x6, 0xac8, 0xca, 0x2, 0x3, 0x7ff, 0x8000012b, 0x4, 0x1, 0xa, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x3c484551], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x93a, 0x5, 0x6, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0xff, 0x3, 0x101, 0x10000, 0x2000004, 0x7fff, 0xffff, 0xa620, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x4, 0xc8, 0xfffffff9, 0xfffff000, 0x10000, 0x0, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x5, 0x6, 0x226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1e, 0xd7, 0x200, 0xffff3441, 0x1000]}, 0x45c)
ioctl$VIDIOC_S_FMT(r10, 0xc0d05605, &(0x7f0000000180)={0x1, @pix={0x3, 0xd06, 0x32315659, 0x4, 0x4, 0x3, 0x3, 0xfeedcafe, 0x2, 0x2, 0x2}})
write$sysctl(r9, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

11.580761299s ago: executing program 2 (id=6121):
syz_usb_connect(0x0, 0x2d, &(0x7f0000001240)=ANY=[@ANYBLOB="1201000051b7f020510452516aaa0102030209021b0001010010000904ec0201af3af30009050502", @ANYBLOB="5954a827e929bd97efdb51b10b02e53e818f6944a86e117143dbf4c22f208aa9c8204cb606ac977f264618b6853845849a75f72e28584f87ea07d595469be71476440c4f723a73751066ef0473c3f92ec6196a4ccc13fa4727ed0044fa4e191f0c7802b87cbaeb8ffaf0aa0caadd23406130b909b3e5eefa9e513229d7d03b455a38021f3f61d71f0ba1bdac87895d4558a98c13a5fa53c4723a39f1aef68f34dabecad0c5194b3143ef3b0125a5e413dc1c6280a3a8a1", @ANYBLOB="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", @ANYRES8], 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
setsockopt$RXRPC_EXCLUSIVE_CONNECTION(r2, 0x110, 0x3)
syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000280)={0x3, 0x5000000, 0x2, 0x8}, 0x10)
sendto$packet(0xffffffffffffffff, &(0x7f0000000180)="0b0312002e0064000200475400f6a13bb1000000086086dd4803", 0x100a6, 0x0, &(0x7f0000000140)={0x11, 0x88a8}, 0x14)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000980)={'wg2\x00', <r6=>0x0})
sendto$packet(r5, &(0x7f0000000180)="0b031407e0ff640f020047540f68a13bb1000e00080008004803", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r6}, 0x14)

11.32534609s ago: executing program 4 (id=6122):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x46100, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
set_mempolicy(0x6005, &(0x7f0000000080)=0xfffffffffffffffd, 0x4)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0xfffffffc}, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x0)
syz_open_procfs(0x0, &(0x7f0000000500)='fdinfo\x00')
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r5, &(0x7f00000029c0)={0x9, {"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", 0x1000}}, 0x1006)
ioctl$TCSETA(r5, 0x5406, &(0x7f0000000000)={0x7, 0x80, 0x7, 0x7, 0x0, "ccd37930fe7a84d2"})
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCSIFBR(r6, 0x8941, &(0x7f0000000100)=@get={0x1, &(0x7f0000000000)=""/234, 0x3})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x20000000, '\x00', 0x0, 0x0}, 0x50)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYBLOB, @ANYRES32=0x0, @ANYBLOB='\x00'/12], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf0900000000000055090100000000009500000000000000b7020000000000007baaf8ff00000000b5090800000000007baaf0ff00000000bf8700000000000007070000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018280000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7050000080000004600000076000000bf9800000000000000000000008500000047000000b700000000009500000000000000"], &(0x7f00000000c0)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = memfd_create(&(0x7f00000005c0)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6\xb5\x01\x83y\xf3\xb2\xe6b$\a\x00\x00\x00\x00\x00\x01\x00\x00\xb7\xffg\xf5\x12oP\b\x00\x00\x00LR\xa1\x00\x00\x17\x1f$^\xe1\x00\x04\x00\x00\x00\x00\a\xff;\xeb\xf1H\xce\xe5\x19\x12\b\x01\xd9\xae>/\x05\x00\xce\xd5O\xcc\b\x9e\x19\x19#\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xdcc\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0D\x93.\xf25\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x05\x00\x00\x91\x98\x15\xec\xdb\xaa\t9\x11\xb4h$h\x0ew\x00&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{a?\xd0\xe1{\x84\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0\xb1\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83q\xb6Pr\x83\x0e\x00\x00\x00\x00\x00\x00G\x00\x04\x00\x01\xbc\xac\x18\xba\xce\xb3%QF\x03\b\x9dh\xcb)\xf4f\x12[\xf9\r\t\xff\x06\xe7j\x9fTJ;T\xf3\xfa\xef{h\xb0\xc0:\x8f|\x8f\x06\xf8T\x826`M\x11\x1c\xb0*8\v\x1e\xcf\x03\xd3\xe8,?P\xac\x86\x13b\xa8D\x0f\x93\xab\x1c\x11\x00\xc5\x8d\x82\x00\x00\x00\x00\x00\x00\x00\x0f\x81\xf3\x05\xa3{\x96\xf9\xba\x9em\xe9\"\x03\x933P\xbb\xd6\x9b\f\xa7\x8f9\x988\tgC\xbc\xe0\xc5\xf4\xe0E%\xd9\xd8w\x00k\x042Y\xd9\xc5\xe59\xa95\xd1m\xd8hCuZYi\x10\x00\xb9\xe6\xff\x04K%yH\xe5\xf4\x8b\x03Ca8\x1e\xe9\\#\xf8O\fw\xd9\xf5cF\xcc\x1a2ex\xb4\x0f\a\x00\x97\x81.\x02\x04m\xfbT2\xd4\"\x1e\xf0\x16\x0f\x97\xe6j}J\xca\xb8)f\xd5\xfd>\x9bU\xb0\x03Zt0\xc0b\xad\xef@o\xc1\xd6\x17T\xf6\xc20\xe2\x89\xf6L\x131\x9c\t\xa7\x80\x1b:\xbb\x04\xd7\xd1\x06\xa0\xe9\xbah\xb6\xb2\xea/{Q\xca\x14\x13\x9ajWt\xc9\xecd\r\xd5)\x1d\xaf\n\xc0\xc1\x1d}DY\x95&\xe7\xf4U\xff\xcd&\a\x9f\x1bg\xe5|~\xc1\xc5n\x12%ur\xa1\x9e`\xc2\x01\b,\x18\xaf\xccD\xdeag\xc6\xf3\xd6\x94\x9d\xae\x8bl\xee\x7fu\xe5bu\x84\x04\xb3@\xa1\xf7\xc6\x13\xf9I\xfa\x12\xfc\x96\",aT\xfd\"\x01\x92\xb1\xbf\x8a\x15\x88\xfd\x8f\x88\x87\x82\x9c:L\xd2\xb8\xfa5\x066\x82\xf3_LUr\xfa\xd2\x99d \x97c9G\x99\xe3\xcc$\x96cu\x97\xe7\xc7a\tm\xe8F\xc7j\xf8\x98\x81\xe7\xf7\xab3F\xf4u\xdaav\xd21A\xa3\xd8\v\x99HG\xdfx\x1cPl\t#\xc1\x8e\xddW\x00\x00\x00\x8fw\xa9A\xf7m\xeec\xb6\\\xa4T\xeej\xe2\xba\xb2V\xacc\xc6|\xae]\xdb\x10\xb3\x80z\xd5\n\xa3u\xfb\b\x03\xe5\xca;\xe5uH<\x9a\x12\x84(\x9f\xd2\xe1k\x955;J\xa4\x81Lm\x90\x1a\xfdI}\xb0\xa1\xfa9\x17\xd1\xa2\xc7\xca\x98\xaeS\x92Ew`\xd2\x02\xda\xc9\xd4\xea\x02\x1d\xd3\xd5\x81\xdb\xd9~\xd6-:\xee\xe8\t\xf7\xe6\xf1\x88\x86\xb0\x04\x9ep\xb1\x93\x16\xf9\xdb\x15\x8a\xa3h<\xaf\xa0\xb5\xb0\x05ir\xff\xff\xff\xff\x00\x00\x00\x00\x83\x91\xad\x11\xf4\xbcz\x9b\x8bp]o\au\x175I\x1d\xe2\x97\xb6\x06\xdc\x14\x9b>\xd7F\xdb?\xc7%0n/\xf5S\xb5\xe8\xa5\xd1\xddN\xf9ir\xd1r\xf4L\t3\xadDz\\\xf4`\x13\xf7)\x91w\a\xcc+E\xdd\xe9\xdbb\x9c\xff\x98\x03\xb7\x0e=\xba\xa3um\xde\xff$|\xb7\x86j+\x00\x00\x00\x00\x00\x00\x00Z\xef\xd6\xf4Zs\xfc\ro\x03\xabB\x18\xdc\a\xe3\r\x00\x00\x00\x00\x00\x00\x8a\x96\xe8\xc4\xc3g\xcf\xf3\xac\x90\x1a\x9b\xe4\xb1pf\x9f\xb1\x01\xb3\x95\xcf\xce\xc4\xe5\xcc\xb0\x83\xf8\xca#\x9f\xdd\xfe\a\x8e\'R\x1dC\xd1\x005\x85\x0eX\xa8>\xb6\x04*\xd7\x01\xaf\xbc\xd5q2B\f\xf9\x10m\x15[^\xee\xafS\xf4}\xf5\x9c7_F\xf6\xcfQ\x8dWHZM:\x7f\xb3&\x06\xaaE\xfd\x1e.\xbf\xad\xeb\xa2S\xec\n\xcf\x80\xebH\x81\x133:(\x8ew\xa9$\x90\xa2K$-\xb6\bj2Cg\x9e\x88\xfa\xcb\xfa\xa5y\xa1\x85_\xbc:\xff\xbd\xba\x87\xaf\xfai\v\v\t<Q\xce|\xe7x\x87x\x02\xeci\xa3\x06\xf4\xefD%\x95T\x9b|\n\x01}\x15\x81](\xef\x18A\xa0\xe4<3\xa0\xed\xf26\xbe\xb1\xb4\f*\x17<\xe3\x04', 0xb)
fallocate(r9, 0x0, 0x0, 0x400001)
ioctl$FS_IOC_RESVSP(r9, 0x40305828, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x80})
r10 = syz_open_procfs(0x0, 0x0)
pread64(r10, &(0x7f0000000280)=""/70, 0x46, 0xbbf9)

9.655425172s ago: executing program 4 (id=6128):
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaa"], 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007880)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000040)="af0ac95ab194f93f8e795a9b294a0fa62d", 0x11}], 0x1}}], 0x1, 0x4000000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000009c0)={0x8, 0x6, &(0x7f0000000200)=ANY=[@ANYBLOB="1800008080b63428e900"/20, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055"], 0x0, 0x7, 0x0, 0x0, 0x41000, 0xf72cb191e650caa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
r0 = syz_open_dev$loop(&(0x7f0000000280), 0xffff, 0x14f600)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}})

9.230348815s ago: executing program 4 (id=6131):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x401, 0x0, 0x4, {0x0, 0x0, 0x0, 0x0, 0x5a18, 0x2000}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @sit={{0x8}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_6RD_PREFIXLEN={0x6}, @IFLA_IPTUN_LOCAL={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x16}}, @IFLA_IPTUN_6RD_RELAY_PREFIXLEN={0x6, 0xe, 0x9}]}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x40085}, 0x41810)
mmap(&(0x7f0000498000/0x2000)=nil, 0x2000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x6, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
r3 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
r5 = openat$cgroup_ro(r4, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000040), 0x208e24b)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c831, 0xffffffffffffffff, 0x0)
r6 = syz_io_uring_setup(0x17dc, &(0x7f0000000100)={0x0, 0xcb43, 0x8, 0x1000, 0x5cd}, &(0x7f0000000300), &(0x7f0000000080))
io_uring_register$IORING_REGISTER_PBUF_STATUS(r6, 0x1a, 0x0, 0x1)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000002e80)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)={0x54, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0xff}]}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}]}, 0x54}}, 0x0)

8.337163261s ago: executing program 2 (id=6134):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000840)=ANY=[@ANYBLOB="300000001c00c92429bd70000000020007000000", @ANYRES32=r3, @ANYBLOB="80008f0b0a000200aaaaaaaaaaaa00000600050001"], 0x30}, 0x1, 0x0, 0x0, 0xc0041}, 0x0)

7.868248212s ago: executing program 4 (id=6135):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0xa000000}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590)

7.717552649s ago: executing program 4 (id=6137):
dup(0xffffffffffffffff)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r0, 0xf504, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$kcm(0x21, 0x7, 0x2)
sendmsg$kcm(r2, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0)
r3 = socket$kcm(0x11, 0x2, 0x0)
setsockopt$sock_attach_bpf(r3, 0x107, 0x14, &(0x7f0000000000), 0x4)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getpeername$qrtr(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x1000000000, 0x7, 0xfa11, 0xffffffff}, 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="fc00000019000100000000000000000000000000000000000000000000000000fc01000000000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000b93760000000000000000000000000000000000000000000200000000000000010000000000000044000500ac141400000000000000000000000000000000003c00000000000000000000000000000000000000000000000000000001"], 0xfc}, 0x1, 0x0, 0x0, 0x24008040}, 0x20040000)
sendmsg$nl_xfrm(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="c400000019000100fcffffff00000000ac14142c000000000000000000000000fe8000000000000000000000000000aa4e2200004e2400000a000060000000006ad85c5eb0d459af252f4c763dd639a87c18ccabc252069a64ea01edd2643f7ce2302c4d849346f819f47ab95f021ec4546c903c9bacb67c5b9fb3287ac231159cc14419bb", @ANYRES32=0x0, @ANYRES32=0x0], 0xc4}}, 0x8044)
sendto$inet6(r6, 0x0, 0x0, 0x51, &(0x7f0000000080)={0xa, 0x3, 0x1, @local, 0x9}, 0x1c)
sendmsg$kcm(r3, &(0x7f0000000300)={&(0x7f00000000c0)=@phonet={0x23, 0x0, 0x0, 0x45}, 0x80, 0x0}, 0x20000080)
sendmsg$kcm(r2, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0xffff, 0x2, 0x10, {0x2, 0x4e22, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000000600)=ANY=[], 0x10b8}, 0x20000000)
sendmsg$kcm(r2, &(0x7f0000000100)={&(0x7f0000000080)=@caif, 0x80, 0x0, 0x0, &(0x7f0000001a00)=ANY=[], 0x10b8}, 0x0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000940)=ANY=[@ANYBLOB="58000000020601080000000000000000030000000900020073797a3100000000050001000700000005000500020000000c000780080006400000040111000300686173683a6e65742c6e657400000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a32000000002c0003800800014000000000180003801400010076657468315f00005f626f6e64000000080002400000000064000000160a0101000b000000000000010000000900020073797a32000000000900010073797a3000000000300003802c0003801400010067656e657665300000000000000000001400010076657468315f"], 0x104}}, 0x0)
syz_usb_connect(0x0, 0x35, &(0x7f00000007c0)=ANY=[@ANYBLOB="12010000cc0940401915430497150102030509022300010000030009042f0001020d0000090500000000000000080b10958155ebf8"], 0x0)
r9 = syz_usb_connect(0x0, 0x4a, &(0x7f0000000040)=ANY=[@ANYBLOB="120100005520f010402038b1420104000001090238000100000000090400000371055900090582eb1000000001020009050276"], 0x0)
syz_usb_control_io$cdc_ncm(r9, &(0x7f0000000400)={0x14, 0x0, &(0x7f00000001c0)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)

5.622475729s ago: executing program 2 (id=6143):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x1a6c42)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f0000001ac0)={r0, 0x2000, {0x0, 0x0, 0x0, 0x3, 0x14a1ff, 0x0, 0x0, 0x1e, 0x1c, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323691c58d66500000000ff", "a9103939c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "24431a1e77a68e174f000000000000000010e200", [0x0, 0x400]}})

5.241452885s ago: executing program 2 (id=6145):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r3 = dup(r2)
r4 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r4, 0x40045532, &(0x7f0000000040)=0x7)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001880)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r5 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x54d})
pselect6(0x40, &(0x7f0000000100)={0x0, 0x8, 0x2, 0x0, 0x0, 0x2, 0x0, 0x4}, 0x0, &(0x7f0000000240)={0x1d, 0x2, 0x0, 0x0, 0x1000000802, 0x0, 0xfffffffffffffffd, 0x6}, 0x0, 0x0)
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x8)
r6 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100), 0x400000000c0b01, 0x0)
r7 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000500)={0xe0ff, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_RESET(r7, 0x4141, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r3, 0x2000)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r8, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
r9 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_SREGS2(r9, 0x4140aecd, &(0x7f0000000140)={{0xe566c797b7515b9, 0xffff1000, 0x10, 0x9, 0x7f, 0x7, 0x81, 0xff, 0x0, 0x84, 0x0, 0xb}, {0xd000, 0xd000, 0x10, 0x3, 0x3, 0x7, 0x6, 0x6, 0x1, 0x4, 0xfa, 0x5}, {0xf000, 0x8000000, 0x4, 0x4, 0x10, 0x81, 0x4, 0x13, 0x5, 0x4, 0x92, 0x80}, {0x10000, 0xeeef0000, 0xe, 0x7, 0x1, 0x40, 0x2, 0x0, 0xfd, 0x29, 0x9, 0x9}, {0xeeee8000, 0xdddd0000, 0xf, 0x9, 0x5, 0x2, 0x7, 0xf1, 0x2, 0x6e, 0x2, 0x8}, {0x4000, 0xdddd1000, 0xe, 0x2, 0xad, 0x2, 0x5, 0x5, 0x1, 0xe, 0x6, 0xa}, {0x10000, 0x10000, 0xb, 0x0, 0xcd, 0x5, 0x5, 0x26, 0x8, 0x6, 0xff, 0x6}, {0x1, 0xf000, 0xd, 0xe, 0x13, 0x40, 0x3, 0x0, 0x7f, 0x1, 0x0, 0x8}, {0x100000, 0x5}, {0x80a0000, 0xff81}, 0x80000003, 0x0, 0x6000, 0x21, 0x5, 0xa800, 0x8000900, 0x1, [0x6, 0x2, 0x3, 0x3]})
syz_kvm_setup_cpu$x86(r1, r9, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x6a, 0x0, 0x0)

5.181992677s ago: executing program 0 (id=6146):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ftruncate(r0, 0xc17a)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x1, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="bfffffff903000006a1082f240420f9004000000000000079500000000000000"], &(0x7f0000000080)='GPL\x00', 0x2, 0x3f7, &(0x7f000000cf3d)=""/195}, 0x48)

4.83029943s ago: executing program 0 (id=6148):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f00000005c0)={'#! ', './file1/../file0', [{0x20, '\x00.\x11U!\xac\xb2\x80\x9f4Lg\x1d\xbek\xefL !\t\xa8\x81\x1a\x84O\xcb\x9b5\x0e^\xe8\xd72L\xba\x06\xef7m\xb6z\xa2\xfev 2\x12X\xbb\xe3-1\xac\xdc\xeaX\xb8\xdb\x88\x80;\xd2\xf7\x11\xcd\xc1\x81\x144\x96tJ&\xaa\x8e\x111HX\xc2Z\xdc\xa5\xe1\xc2p/\xc1\xa7\x82*\v\xbfk\x12S\x92\xa3\x87\xa8v\xa0\x01\xca\xab\xa1\x19\'j\x8a\xbdf \xf5@\xb1\x8aE <\xa7K\xe3\xedG\xffM\xd2e\xadfi\xba\x121\x175\x1a\xee+X*\x8a\x82\x8aNm9\x96\x11\x15\xe9\xb5;3\t\x06-\xe6\xf2\xdf%[C6,\x91\xe6\xfb\xef\xcd\xd3\x0fg\x8e;p\xa7_\x98\xcen\xb2\a\xfb7y\xec\xd1\xdb\xd3\x1e\xd1\xcc\xc7e\x82\xf6\xe0\xbb\xeftD\x7f\x89\xb7\xf8\xc1\x1f\xfbz9\xa8\xc9\x87\x0f\xb8!\xb5\x93\xf6\xe9m\xb4\x13M\xf9E\x06\x85\x1f]\xd7\n3\x0e\x1f\x1aT\x05\xc7\x81\xdfs\'UJ\x92\xc3\x9a\xfe\xa8\xa7\xa9G\xd3'}]}, 0x115)
write$UHID_INPUT(r1, &(0x7f00000007c0)={0x8, {"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", 0x1000}}, 0x1006)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x7d, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc5e3ed1e00d96072000001ea8a1d91bec8d4b5a6d80b8785d9600010000000000000094d75396dccd0ff600000000a81b0000000000000d00", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "9001001c551265406c7f306003d8a0f4bd0000000300", [0x1]}})

4.541696912s ago: executing program 0 (id=6150):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)=ANY=[@ANYBLOB="500000000a0601020000000000000000020000840900020073797a31000000000500010007000000280007800c00018008000340fffffff70500"], 0x50}, 0x1, 0x0, 0x0, 0x10000002}, 0x90)

4.534819198s ago: executing program 0 (id=6151):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
readv(r0, &(0x7f00000016c0)=[{0x0}, {&(0x7f0000001200)=""/147, 0x93}], 0x2)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000000c0)={0x0, 0xffffffff, 0x0, 0x3, 0x0, '\x00\t\x00'})
r1 = syz_open_pts(r0, 0x42)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r2 = dup3(r1, r0, 0x0)
write$UHID_INPUT(r2, &(0x7f00000001c0)={0xd, {"08c39ee52f329f1698b1c4865f8b0a0a5eee9f496a0809c3d21c25867b6edda88489ab4c09fe0a7f1e8640aa8e344f412df0d69475a5d6570e21f31fac7dfb4aa7ade0e851582d5c1abdd809580cb34c9e48576b1c73ed76013256fca058ada3db47d86cc75b33cf762b67fe61f152618c49a40858f68794a4fc484ab73ccd254ba3d147f5feddaf91dacc238c0a8096f79597ca1e6da781fcf37a0141a335c6a7577d2d53c6e552a7be208381bb31d1d3e0e92ea651655217535734b286d3f19780a4c720075a36a734151f8c00e651cb3a6bbe30e3f6aee48750436da6471e965e81f38134674fcb697108fb7345010bb8fa15fba9b33355d7858327171ab9c68f6c21b2ffbff4eb061dab80bc77a4a7769e7ff73bcd98790e09415bfc5978cf5af45c3ec9ef9c1a39f766c59d59590281038dbcb765580ba2b3f141d5bbfc40910a0894cd1f22d2a8b6d4e4778debef99438b54d44b4b7568de2777431a5b2f3e8d1a45a60a468f5e33e8ef534f803dfb6798c270f52edf031ecd996bb78c4e92961c63c079676d77412ebc6074e5f235417785e7a14b14ce7626b015071c154cc2bf8f4499b93293e9997c23df4c7a1498cf12414fb31eb873728e4f613b540d22e7ca718f18da5b82ed24995e4309c3af4a2e1097465bf09728082d09e71ea365522035eb9772b8e072f8454777ee304dacd59d3eb9f933f151fa14f8c38eadbeba04810a2dea7a66824f09235c13a45f07870210d0d310ce3ae6284577bd4e65f32700f6723727926cb52e4f27776a1dab0f6668327ab5cf1893879a635261f2e0d9923ccecbf5b80f10a8275c1515f47930d614e787f14c105d3a4f8faf8e7f738cf4eae4fc39ef3db3cb87794ace87f7239b69dc4ab4e5ae57cdfbd309e847d99600ef14b51faead01e8ade57d24270bc13a1787896096eeacb8ab1c93d31d93cfb244bb09ecfecf336362a5656db7df327cbb9aeb898f8af229c7bb9452805f2b4510c5df86b6d564e01f000000167ade5205331523a6392af2bea9e6db0ba5480cbf1b202714233289c4017cb66e83c0c8b6e88bedb922162d0ceecf6c5da173bbefe6781ab7720d2be6cca378db650c69d4228141ae190922fbbaddb86c7f0fe138b704e8305b3bcc7910b2280d96d71dafdbfa876b0013fc4de586f85d9ee077b6349becbdca8bd989a51c4c76ed8a8cc691a65078e0272a62edec8236a779f0cbffeda49dcdccd4def7064e0d77ae5a8c64f3057b4a3a0d4457d33f2bc6c112378315411baa4bb126fe540d750491fc58fbb66911ef82bce5ed76872dbcd8e05dea2f3f347a653aa39ab5d75e71671bfeb924e71476134dbf91e3f287fd853cc34bf81e717edd41aa04b6fbeb43cf2074f0c8fe5350401b6cff801c147a3b58b972aa5652629a9fd8b1df2852708ce958d4e9974ec4383aa5da4e3f75fdc85981e97b75863546f67a8703673b6fe2c26f0e9eeb8c45c26f673adac55fa5d69b82ae7d032fd3b26866047e8c029b90a62794a89c11398944b398b4177b2dcc5a743c16d4a5333b1e30af678d3db8df849c1753db067a6f94bab00c0dd3c7e94a8675924c89bda98ac09e10bcdf83f5114b9b466c413477a5cdc48c857230798934bcc1f0eb3a2d2944b139e459af32e515785f46ed4e97cdcb23c7e4dc7c4f91b5b5ca5228344aeb6652fffaf31325c7429bc70a5f6beaaa98ef190dffdeccc94bd814b3edfdd48243bf34291076ab5438ee00e924a827d5b453df42d24144fe1a45bb6c84fcbb2143d0a561c1e867c1279bdf0a47061ea77a84f36c720aff785f0db10eda84c767b5f3874f9455c0f026735ded32f0403ef7dbcf97d2233d59c670114ddf89314ba74fc248bcbdbf43c24e46304e229b3cf583aa410f4dfd119152495da8737518ee2a05a8ca1f004be3c551408f2e4013e444b63bf2bb26ddeae505642dffcc989ee241c48741181b506e22fdc4530319522780c74bf786852dc66ebbb51f8ecbb1e35de09ef7afe589bb8a31c5d63477db5d5e7174694ea04cfa98057d39127a4e5eedb4897a491c6693acd0a036abf846f3b6f3006e5e5fd586f29a4a8a31abbccf732e4f1b88187a72d669c16302657e9cbbeb9322662e111edc7771526400b6123d0f8207bcaa38bee07043e36e223d418ac948d65e7acfe72cc3fdcf03a3e43ecfec8ae489ddba09126709c5c7968829e3504de8a5010c9372de09476a7b96b04d7aed2486d8f89f21f075321abe350024abe00a81f87df3dc372fc3206496776c26b6958243070bda4cace3e358da5d39a3945765c2ba4b002b06efd416af66f3343f218ed84550ea83f02f9a5c3fc677ea60987aa25f0406d6154081cfdc074814a2465accdfa102858f5a52c9eae293c56ddcaf8f6926d3dd0ccb51a30c960d6b7e473038ebd3702b5106f6bc040efdfd7169fd3f2dc42ff23de26a239e13b74278729fd7e843b38a35c55fd50181ac13a9cbbbfd8feb36afaeb1993349c0ac5a0c44ffd92919dfe272b0f8ed7df7198cd299715f021109a58dced4753d3c7ddd6e9ea01596f18b2fe7000000004ccfca57aed5b5cebdff65de480a56bd53f4c7f83ddef00d7c9686311d1fce76f320bb3222a11db30ba6ed31535d8fda61e694478ca9935d72719b8d6b9be88ae3df30b60ee251b919b4d1734b994c62accdf855488b351738331b462eccf27efdc5577d7a5548579dc90d227a42ac010f33a720dc3cf0a63454f8b07c775287495761a058ec1e28e6aaf8057241f4ef8b5de56e279355bb66630c4ddf35e7c2cfff26a4241b1df0379d2a1e9f959e46d3843f89844ead50aff44640fcbc4a1edb033afff7cc9e57c4f8d31900764233e11fa4c28e547788c1b00de4268df692ba3415a9ad90fa712f9618f5ecff57da32809380eeff040cd3b23f508614c72b303cec3bcd732708303b166193366a062b9cea536f28478c387e626744c6a611a8e7162d274efccc84eee8eb31d3310c86752777dd5b5ffe234e895c54909f19a4aabcf3c15b90c02170409e314fd90e766ec4ba93c8ec6321237a980ad3c32fb2fab69e57541ea7f5427a85c2c57d40f9ebe9de5572f46a4713fb28e0af42d0adef3e29195aa41a3ba318181512eebfadffede4e35ff7f975928edc5d4d9f2d931fb44b30e1df55e66c52e1648e9cdaf71221b57c6a6b087428ccc57ade5b1531341cba2be452b426c434c70fd8c493337d4995cbd76ea1dd545226e3eb59d5f94ffb5352f87a4a66cd7c5e88322404fd397c46e198646a9c819d0eb1f10e54d8a3ea912f1cb134ff1095aa7325287f6ea9af8c13b67d6abcbb70dbc06838ecb33e45b60f6cb832c3e72d1401770f66bd02f35a2d007815ab676099e31f5102000000c0e83d5e7107c8dc5830c9cddb9781185b94d7f2814c5058ba3ac54c268741c5728f4997a9628602c2a36090162379f3f37c47619b3e7c7397a5913b7060b51e0c7f7226ff1135444f866f89a4b74136cbd3acb7178bd63183b3fd9cd19fdeb6fcc6341910ad4605da76a9af4bfb8b75fcd666f8188902b380ae560d9aa04f8f9b0ac5c109d1824a470726e06a49d955f8f71c8a86081e75b13f62600deb941da181eaff544cd559c467d8dae432debd22e7a7b3e1ad731a5b9470f5f60423dda061ff899c07c79f3da34f38e1d8182d6ee0c36c602945509167be440382a8a8a759b20e41638fd57152029b190b5701d30a86f579e2d0cc53a2f809ca9bd3aba1eb2772a7acc35c4d983afa83a9baea35c0ed4931234719636cf8f5fe1884bde6cebbdf23bd62b1ebf0a5cb78c27295349b01010000c4ee4689497238fd3aa71a417914e6892667a56bd69dc2e5882cfb67df71494e9a9199e025892e4e7435f727636cd988cc7563d28db5133f649849c5b3973a3428de10ad39d96146b22acc50f50eee5a038876452b960686892de40efe30081ccdaa2bf64af78d5988026e529b36c62a21378ac42d220d0dd878010178e374e6dbb2b61206066d04e729ed03c6fd9a4e00547fe9304aec0925d85a0acd07fdc5d48c1a1cff656916f5d25952327792255e0d606a32517781cc3d737ec753eb95b5b5b95dabd8946907ab54cc85d05b475e2e5486c6fc070417198d3a50910e2949d20d3fa68fd327934cff5171224942b8f18d88947763a7c710d09c4b269bdf2d3e715329917fb70728a4a0530999b755ba8fc04deabf4bc4bcffc4d62d481538c65078122bf2c263ae0020af67cfc9cf19e5b929e086af281fb43d5504d728935c5cfac136eb81703d50fddb39a5a713b2914c6acd9b2d07819cf7bba495ac5734fe423e611d309b80eeafcf9053d51b0ab3c29d5ca5eb8861ffc1ebc4d53f361b8991baecb52860c15202f979e34054fcde869d018103ccd6d914a70f1840fc6aaf426beec975ddb980b19b0f4cc2ca393c0b9e6ebe5e7d1c9fc1ef7a1c91378f0b73262993fb80667ecf62bac3c47cbd002ae1b87b8dc3ec99d5c987765d778868eb55022cc3bed14b8f934a584bcc98fa0b4f6e6982ab8d8a2bb49f9074ef429dd7b8db332a96ccec6983a97be7c8634c02e7937ffc8d613b83aa375886bf40a87ec062090382f874bf2c8e5fbb58ac18a46c4d9e85af3ca21bdacb7755f49776b0eb3972ff682c84beb07d74cbe2764e378253e72128991b73d2730704a5448280e8a0fd8cc87d4cddcffbfe5525ae3d2304877a3988e33c8e12bf77793e753f25840e9af2ce56bdb999fc62623a2298b4244534f662eb398a2577c72f6cfd5174697dcee151d4f3a7293b11de3889c43744da4165aca4e4a1e926d37ae4d7471584a06f3641f2037a74a58c2397a594f29d142d59f91bb57e24e1a3f30f68c626033cc34895c1b16d62e3a375c3e09f5dbd9338cd3a500643143cd404b57019c648c3ec31d696233fe16efc3c4c84aca0830ca8b9fbf1144b98d82f41e4cf67631c74cdcf8d9c8b8556b876ff1592683ccac0b47a26cb3a2cb1b917f433bb54e0b53deae9ac4b1cd0594c1fa0e6744e7ed88fdac60901e3da989f3b0d7c12b140cc576fa1b0e8e705321d37c303691aafc9fed9c3dc419078d0925ead56455ea5f3cd57941e410c1c14c2e8972d7cca44fcaca1f64fc817f4a41b6d9fb237fed159cb09e788ae560726537f49cb64b9f60915d402e0931355c55ad792cde758548b1af54b196e414046d4af3579a6c30ceac3d68bbfd2adef309c064e759a9f0dd69d682a3880b8ff27b69abffaa45ee7e65d8f1f6e40c188f6249fdf72220b4c87243217ba0292b9e9b67ebeda4fb83406216a4d765812bafeff34cc57f7d2cd1608282079c076055b9cabffe5fa491b970291bc2672540ccc15ed877d7dbe3ef683724c715ace770905e48c2dc6a44e1fc095773676d070eac00ee3834b07590cba7093f56b678313870471c81599d34c53fc03ec6c913d8ba3f604ace8da12d2025cbb5000bc062f4db65a6feacaf3915206d1c15ce7e78c17dc2ea32cb57d6fab0a22d487c77118e75016006f812541ec8180a321287a2d57248d4ee4a19706a19d802c70e250c3b0fc400a0b5cdc06537d2f55fd5300be4eeeaab8cc481a84b6a5e17d8c47ec92fe40710d4ec3530a94ca16710ade2ec7562398106e0ddbb6c8af6412166afd99d45d29a3a967e58decd0d6fc5bebb98d639b5606efd358a43d635d50f0ccb8472197da604994e7fb700243d5f7e45700", 0x1000}}, 0xfffffe78)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io(r4, 0x0, &(0x7f00000010c0)={0x84, &(0x7f0000000080)=ANY=[@ANYBLOB="00000100000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = socket(0x40000000015, 0x5, 0x7)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x200, 0x9, @local, 0x20002}, 0x1c)
syz_usb_control_io$hid(r4, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r4, 0x0, &(0x7f0000000280)={0x1c, &(0x7f0000000140)={0x40, 0x7, 0x49, "2a4e22f5c5196e03ba8bebf15b08cd0649fed85d8ccbb74527e74636849e944f932f50821243b8106afba1842d46ec710cb202fb49d1771543d1939ff4a29127c4798a0dee6e9ae5cf"}, 0x0, 0x0})
sendmsg$IPSET_CMD_ADD(r3, &(0x7f0000001300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000012c0)=ANY=[@ANYRESOCT=r4], 0x50}, 0x1, 0x0, 0x0, 0x10000002}, 0x90)

2.950000406s ago: executing program 4 (id=6156):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_usb_connect(0x5, 0x24, &(0x7f0000000100)=ANY=[@ANYBLOB="120101029d3f01274d1f15a1cac501020d26a34cb23edfd301090212004119050002090469190024106a079663844812e5cf92726c9ab8ed1549a8f4dd5820ef8b9f376f17617c75ce3559819736721d5648d3a2a0873365c93e53e10454a9eea063e3e02aaec180d108732e05dcffad711d7e554c3ab3cdcf428b9c3c0f1182b59e137dad4d286b83665ca211218cc690a883f7b87bc6fd2d93a770ef3f3f3916faaf79e3"], &(0x7f0000000f00)={0x0, 0x0, 0x0, 0x0})
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r0, 0x3ba0, &(0x7f0000000380)={0x48, 0x2, r1})
syz_mount_image$fuse(0x0, &(0x7f0000000100)='./file0\x00', 0x14002, 0x0, 0x0, 0x0, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000002100), 0x280449c, &(0x7f0000002140)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r2, &(0x7f00000093c0)={0x2020, 0x0, <r3=>0x0, <r4=>0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000004200)={0x50, 0x0, r3, {0x7, 0x1f, 0x0, 0x2066012}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r2, &(0x7f00000021c0)="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", 0x2000, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="50010000000000000500000000000000040000000000000000000000000000000d0d0000000000000c00000000000000000000005a0000000000000000000000f70000000000000001000100000000007f99000000000000010000000000000000020000000000000400000000010000001c000000c000000f000000", @ANYRES32=r4, @ANYRES32=r5, @ANYBLOB="05000000ff000000000000000100000000000000090000000000000001000000000000002e"], 0x0, 0x0, 0x0})
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x18)
getdents64(r6, &(0x7f0000000040)=""/42, 0x2a)
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000280)={0x28, 0x4, r1, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000, 0x10})

2.538186453s ago: executing program 3 (id=6163):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x6, 0x8, 0x0, 0x3}, 0x0)
r2 = socket(0x1d, 0x2, 0x6)
munmap(&(0x7f0000001000/0x4000)=nil, 0x4000)
getsockopt$SO_COOKIE(r2, 0x1, 0x39, &(0x7f0000000140), &(0x7f0000000300)=0x8)
sendmmsg$sock(r2, &(0x7f0000000280)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)="1f", 0x206c}], 0x1}}], 0x206c, 0x0)
socket(0x400000000010, 0x3, 0x0)
r3 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@private0, 0x8000000, 0x0, 0xff, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x2, 0x9}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000180)={@mcast1, 0x80ffffd, 0x0, 0x1, 0xa, 0x7f, 0x7}, 0x20)
ioctl$VIDIOC_S_EXT_CTRLS(r3, 0xc0205648, &(0x7f0000000200)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0xf0f041, 0x0, '\x00', @value=0x100}})
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="b7020000b96871dfbfa30000000000000703002800feffff7a0af0fff8ffff1971a4f0ff00000000b7060000080000001e6400000000000045040400010000001704000001000a00b7040000000100006a0af2fe0000004f850000001a000000b7000000000000009500000000000000455781a5feee5e1ce784909b849d5550adf200000000000000b61d69f2ffdaa10350e11cb97c8ad51bcda0c4ee6d9674c77404ceb9971e43405d62de53a9a53608c10556e5734eb84049761451ce2e2d9f8004e26f7fcc059c06220002595f6dba87b81d1106fb026cce67a66afd9ac3d09e29a9d542ca9d85a5c9c88474895d679838def0a83a733dc6a39b63a5ed69d32394c53361d7480884bd6fee53f5b2e7b91c61ced1ebad000000000000e8122a793c080a882add4e1179bd4a44f2fcb6d753a78845d8363e0401861abebe428ba953df4aece69311687f4122073a236c3ad198e3f3a532efa04137d452ff47d2638da3261c8362bb7c7824be6195a66d2e17e122040e11e3bd4a69fc6e8d9f7043e09b9e10dc7777bfae5884e4ba1e9cc4a2bbe99e30810400000000000000d63d716c0975e1ce4a655362e7062ff6ab3934555c01840219829472adefa06d3482c7b2711b98eabdca89b77efd13e6dba4a431ce47911834118093b6cabaa17a57727474e1785ee234835088445aa4a9b677d3d342640e328504aea02a2d727e62b7f097a02dbf8fe1d704765de7482040b2fc3000000000000000008947baeaaf954aff687deaa2f804924600273ee26d8115cbca081a14cba24788779291745083fccdddc90d7af35c048d46362ea0d8d79c79ddca066da478c197d4a550470557bc99cca336bd88cd28a5ee651627e3a6fbf6ea53b95ddb64c69c7d8d2f4baddc239828760459564124bad68209d2a1d16ad085886c017679cfcda8b10700ac1e2bcc5ede5b5687aa418abfa29acd7339e73b2cd185c9eb5fb34fccd20ffa155b16c0c309ed6f6663677df37de0ec0d0f548b273940be5d1fe0bae14d1a76bf741330dacd9cc19c0163bcc93059e8d2d1bfa928e2ba458ecd989cb3581a3f270ad48255ac0dad4923e3e357e4e90583ce8d43ec65ed491d87a51d7c13f665dcf772e3ead71112008b16b0ea821f70aee1ccbd71c5a1c21e87d5b7b73d356337dbcf3456ff6cd0d6b98a258e3509a7d15b9dcae4d0d750ffa07909c955e718585b2456308beda2fa03bb9bcf03cdff31ee4b1665b987829c0f0872c006c6e4ed666fe23b343aae943923eedbdb0e7abee90e3da7b98b7d07d2d4816201ad1737798635b0a3ebd3aed120e4500c16e6c9dc729f009db49c6b8b19613e4d792cb4ff5106419291d4222980b49ddb9527ce785822d8f4e2"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19, 0x0, 0xffffffffffffffff, 0x54}, 0x42)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r4, 0x0, 0xe, 0x0, &(0x7f0000000280)="61df718305a35997984d4763fcac", 0x0, 0xe697, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.165094161s ago: executing program 3 (id=6164):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000100001000000000000001c000000000a20000000000a01020000000000000000010000000900010073797a30000000006c0000001c0a01000000000000000000010000000900010073797a3000000000090002"], 0x110}}, 0x0)

2.138103875s ago: executing program 3 (id=6165):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000022c000/0x3000)=nil)
openat$sequencer2(0xffffff9c, 0x0, 0x30b001, 0x0)
socket$kcm(0xa, 0x3, 0x87)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="034886dd010000000000140000006000000003088700fe88a43de1a400000000000000007d01ff0200"], 0xfdef)

1.969604899s ago: executing program 2 (id=6166):
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0xbb)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r1 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000795d6c08450c3e616dc4010203010902120001000000000904"], 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, 0x0, &(0x7f0000000400)={0x2c, &(0x7f00000000c0)=ANY=[], 0x0, 0x0, 0x0, 0x0})
syz_open_dev$loop(&(0x7f0000000000), 0x3, 0x2a440)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
semctl$SETALL(0x0, 0x0, 0x11, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0), 0x88802, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_netprio_ifpriomap(r4, &(0x7f0000000080), 0x2, 0x0)
sendfile(r5, r5, &(0x7f0000000040)=0xa, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_io_uring_setup(0xf1f, &(0x7f0000000440)={0x0, 0x92e1, 0x80, 0x1, 0xb0}, &(0x7f00000006c0), &(0x7f00000001c0))
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), r6)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="1709000000000000000001000000050007000000000008000900fffffffe06000200000000e408000a000100000008001800ac1414aa08001900e000000214001b0017"], 0x58}}, 0x0)

1.835726181s ago: executing program 3 (id=6167):
r0 = socket(0x10, 0x803, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
close(r3)
r5 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000ec0)=@newtfilter={0x84, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0xd, 0xfff2}, {}, {0x7}}, [@filter_kind_options=@f_basic={{0xa}, {0x54, 0x2, [@TCA_BASIC_ACT={0x50, 0x3, [@m_mpls={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0x9, 0x5c, 0x3, 0xfffffffc}, 0x4}}]}, {}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x10}, 0x4)

1.580907125s ago: executing program 1 (id=6169):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="540000001400090525bd70000003000002180d00", @ANYRES32=r2, @ANYBLOB="08000b000000000008000200ac14143f080009c05c"], 0x54}}, 0x400fffd)

1.537534907s ago: executing program 1 (id=6170):
unshare(0x26020480)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x5, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d9600010000000000000000000000000000000000000000000000000000000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}})

1.460826668s ago: executing program 1 (id=6171):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_buf(r0, 0x0, 0x30, &(0x7f0000000340)=""/225, &(0x7f0000000180)=0xe1)
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xffffff7b})
r1 = socket(0x2000000015, 0x80005, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x4, 0x31, 0xffffffffffffffff, 0x231cd000)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x14)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x3000001, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c)
setgid(0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
futex_waitv(&(0x7f0000001b00)=[{0xffb, &(0x7f0000000240)=0x200000006, 0xa}], 0x1, 0x0, 0x0, 0x1)
syz_open_dev$vim2m(&(0x7f0000000700), 0x2, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001b80), 0xffffffffffffffff)
r4 = socket(0x18, 0x4, 0x0)
connect$pppoe(r4, &(0x7f0000000100)={0x18, 0x0, {0x2, @multicast, 'vcan0\x00'}}, 0x1e)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
writev(r5, &(0x7f0000000140)=[{&(0x7f00000000c0)="754e245b791e4ee60c1d50c90aef8a877aeafb391b12f0cf083f85f40b1bc12ce38a177621470a0a26c0a92e682f967874e08122da94bae4d7471690f9c7683d", 0x40}], 0x1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3800004, 0x12, r5, 0x0)
getsockname$packet(r1, &(0x7f0000000740)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000780)=0x14)
sendmsg$IPVS_CMD_DEL_SERVICE(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20048810}, 0x800)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002bbd7000000000005c00000008000300", @ANYRES32=r6, @ANYBLOB='\b\x00k'], 0x24}, 0x1, 0x0, 0x0, 0x44000}, 0x48000)
sendmsg$nl_xfrm(r4, &(0x7f00000006c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f0000000440)=@newsa={0x25c, 0x10, 0x400, 0x70bd25, 0x25dfdbfc, {{@in6=@local, @in=@local, 0x4e24, 0x8, 0x4e22, 0x3, 0xa, 0xa0, 0x80, 0x2, 0x0, 0xee00}, {@in=@dev={0xac, 0x14, 0x14, 0x18}, 0x4d4, 0x2b}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', {0x4, 0x10000, 0x0, 0x800, 0x8000000000000001, 0x1, 0x4, 0x9}, {0x200, 0x2, 0xb3e1, 0x2}, {0xe, 0x5}, 0x70bd2b, 0x3503, 0x2, 0x0, 0x1, 0x5ee2fe4cd6eb642f}, [@mark={0xc, 0x15, {0x35075d, 0x8}}, @replay_val={0x10, 0xa, {0x70bd26, 0x70bd26, 0xe}}, @replay_thresh={0x8, 0xb, 0x6}, @tmpl={0x104, 0x5, [{{@in=@empty, 0x4d3, 0x3c}, 0xa, @in=@rand_addr=0x64010101, 0x3502, 0x2, 0x2, 0x5, 0x2, 0xd, 0x5c}, {{@in=@loopback, 0x4d4, 0x6c}, 0xa, @in=@private=0xa010101, 0x3506, 0x0, 0x3, 0x7, 0x1, 0x57f5, 0x3}, {{@in=@private=0xa010101, 0x4d6, 0x32}, 0xa, @in=@loopback, 0x3504, 0x2, 0x1, 0x2, 0x800, 0x4, 0x8e3}, {{@in=@multicast1, 0x4d9, 0x7a}, 0x0, @in6=@mcast2, 0x3502, 0x4, 0x1, 0xd2, 0x0, 0xff, 0x7fff}]}, @lifetime_val={0x24, 0x9, {0x8, 0xe8, 0x5, 0x1}}, @policy_type={0xa, 0x10, {0x1}}, @coaddr={0x14, 0xe, @in6=@rand_addr=' \x01\x00'}]}, 0x25c}, 0x1, 0x0, 0x0, 0x10}, 0x40094)
sendmsg$NL80211_CMD_TDLS_OPER(r1, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000080)={&(0x7f00000001c0)={0x6c, r3, 0x2, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xd, 0x73}}}}, [@NL80211_ATTR_TDLS_OPERATION={0x5, 0x8a, 0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_TDLS_OPERATION={0x5}, @NL80211_ATTR_MAC={0xa}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4000800}, 0x20004810)

1.341584302s ago: executing program 0 (id=6172):
syz_usb_connect$cdc_ecm(0x5, 0x55, &(0x7f0000001040)={{0x12, 0x1, 0x110, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x43, 0x1, 0x1, 0x8, 0x40, 0xe, [{{0x9, 0x4, 0x0, 0x3, 0x2, 0x2, 0x6, 0x0, 0x4, {{0x5}, {0x5, 0x24, 0x0, 0x1}, {0xd, 0x24, 0xf, 0x1, 0x1, 0x8, 0x716, 0x5}, [@mdlm_detail={0x4, 0x24, 0x13, 0x4}, @mdlm_detail={0x4}]}, {[], {{0x9, 0x5, 0x82, 0x2, 0x40, 0x6f, 0x3, 0x3}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0x7, 0x6, 0x25}}}}}]}}]}}, 0x0) (async)
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async, rerun: 64)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x21, 0x92, 0xea, 0x8, 0x545, 0x800c, 0x30a, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x79, 0xe6, 0x1}}]}}]}}, 0x0) (rerun: 64)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f0000000040)=0x9)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r5 = eventfd2(0x0, 0x0)
ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000100)={0x0, 0x0, 0x0, r5}) (async, rerun: 32)
ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000180)={0x0, 0x0, 0x0, r5, 0x14}) (rerun: 32)

1.296188911s ago: executing program 1 (id=6173):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ftruncate(r0, 0xc17a)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x1, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="bfffffff903000006a1082f240420f9004000000000000079500000000000000"], &(0x7f0000000080)='GPL\x00', 0x2, 0x3f7, &(0x7f000000cf3d)=""/195}, 0x48)

1.125818124s ago: executing program 1 (id=6174):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)=ANY=[@ANYBLOB="500000000a0601020000000000000000020000840900020073797a31000000000500010007000000280007800c00018008000340fffffff70500"], 0x50}, 0x1, 0x0, 0x0, 0x10000002}, 0x90)

1.020027302s ago: executing program 1 (id=6175):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000340)={'wlan1\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), r0)
sendmsg$NL80211_CMD_SET_PMKSA(r0, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000280)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES32=r1, @ANYBLOB="010026bd7000fbdbdf253400000008000300", @ANYRES16=r2, @ANYBLOB="1400fe000e4ea62ddb21ae010000fc0d5ecb428314005500772d4547f7b6ee2bdc7752001620fd010100"/53], 0x58}}, 0x20000000)
clock_gettime(0x0, &(0x7f0000000040)={<r3=>0x0, <r4=>0x0})
syz_usb_connect(0x1, 0x24, &(0x7f0000000240)=ANY=[@ANYBLOB="12010002ce859b08402040b13675010203010902120001090340f20904010800ff4e4205958ef53d32c42520ec9367b4097562ff68d1454a84756368bdec917096d00343c5cfacd87ad19c842752425296f4dab8fb5d181cacfc8deb221db613c069e9c41c418116869f6cad8d62d1a315f91e632dea6a54ef6a746813afd0e1ffc6e699305a53b78a406da9b73a011fd077ce8c36aaede2cd79de0200e9c7287a2dac9c4e8a40874d94331605902221a7ed0c5a23e517dc5622ba76c8f1bf6b516b6568d22a29284b19e1280bf3990b25483706a3a303c3361d23b34846c191838df3b367da56562e5ac59f764f06740efe7131c6571d80"], &(0x7f0000003600)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
clock_gettime(0x6, &(0x7f00000001c0))
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a3200000000140000001100"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40241, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r7 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r7, 0x89f0, &(0x7f0000000040)={'bridge0\x00', &(0x7f0000000100)=@ethtool_coalesce={0xe, 0x0, 0x324, 0x6, 0xd, 0xc, 0x0, 0xc0000000, 0x3, 0x32, 0x5, 0x7, 0x5, 0x6, 0x5f, 0xfffffffc, 0x2cb, 0x2, 0x80000000, 0x5, 0x1ff, 0x393, 0xa}})
r8 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r6, &(0x7f0000000300)=ANY=[@ANYBLOB="000086dd03000a000000142800006c07010033d43afffe800000000000000000000000000010ff02000000000000000000000000000189"], 0x340a)
r9 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
ioctl$USBDEVFS_SUBMITURB(r9, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0xa1, 0x0, 0x0, 0x2}, 0x8, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
futex(&(0x7f0000000000)=0x1, 0x1, 0x2, &(0x7f0000000080)={r3, r4+60000000}, &(0x7f00000000c0), 0x2)
syz_io_uring_setup(0x766c, &(0x7f0000000380)={0x0, 0x9030, 0x10, 0x0, 0xaa}, &(0x7f0000000400), &(0x7f0000000440)=<r10=>0x0)
syz_io_uring_submit(0x0, r10, &(0x7f00000005c0)=@IORING_OP_STATX={0x15, 0x34, 0x0, r8, &(0x7f0000000480), &(0x7f0000000580)='./file0\x00', 0x4, 0x100, 0x1})

869.472952ms ago: executing program 3 (id=6176):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x50, 0xffffffffffffffff, 0x0)
r0 = socket(0x3, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
r3 = socket(0x10, 0x803, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000180), &(0x7f00000001c0)=0x8)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=@newtfilter={0x84, 0x2c, 0xd2b, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, r5, {0xf}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_u32={{0x8}, {0x58, 0x2, [@TCA_U32_SEL={0x44, 0x5, {0x1, 0x1, 0x3, 0x1, 0x4, 0x2, 0x6, 0x7ffffffa, [{0x200, 0x500, 0x3, 0x6}, {0x6783, 0x2, 0x8001, 0x10}, {0x0, 0x53, 0xa9, 0x1}]}}, @TCA_U32_MARK={0x10, 0xa, {0x0, 0x6}}]}}]}, 0x84}}, 0x24040084)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, r0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
personality(0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r6 = creat(&(0x7f0000000240)='./file0\x00', 0x122)
lsetxattr$security_capability(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000400)=@v3={0x3000000, [{0x9, 0x1}, {0x0, 0x3d9b}]}, 0x18, 0x1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(r6, 0x0, 0x16)
fchmodat(r6, &(0x7f0000000000)='./file0\x00', 0x10d)

38.981393ms ago: executing program 0 (id=6177):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000022c000/0x3000)=nil)
openat$sequencer2(0xffffff9c, 0x0, 0x30b001, 0x0)
socket$kcm(0xa, 0x3, 0x87)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="034886dd010000000000140000006000000003088700fe88a43de1a400000000000000007d01ff0200"], 0xfdef)

0s ago: executing program 3 (id=6178):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x5, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000040)={0x1, @pix={0x3, 0x6, 0x32314752, 0x7, 0x101, 0xc2, 0x3, 0x65, 0x1, 0x6, 0x2, 0x3}})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = bpf$OBJ_GET_PROG(0x7, &(0x7f00000005c0)=@generic={&(0x7f0000000080)='./mnt\x00', 0x0, 0x18}, 0x18)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, 0x0, 0x2000c000)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x5, 0x4, &(0x7f0000000440)=ANY=[], 0x0, 0x6, 0x21, &(0x7f0000000200)=""/33, 0x41100, 0x8, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r3, 0x0, &(0x7f00000002c0), 0xffffffffffffffff, 0x10, 0x2}, 0x94)
sched_setattr(0x0, &(0x7f0000000000)={0x38, 0x0, 0x4, 0x8001, 0x0, 0xb49, 0x200000000002, 0x7, 0x8, 0x5}, 0x0)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
r5 = socket$netlink(0x10, 0x3, 0x15)
writev(r5, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
recvmmsg(r5, 0x0, 0x0, 0x40010000, 0x0)
keyctl$KEYCTL_WATCH_KEY(0x20, 0x0, 0xffffffffffffffff, 0x71)
unshare(0x40000080)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x8000002)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)
readlinkat(0xffffffffffffffff, &(0x7f0000000140)='./mnt\x00', 0x0, 0x0)
setitimer(0x2, 0x0, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0), 0x3f, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x181000, 0x0)
r6 = syz_io_uring_setup(0x23d, &(0x7f0000000240)={0x0, 0x9c0e, 0x10100, 0x0, 0x200}, &(0x7f0000000000)=<r7=>0x0, &(0x7f00000001c0)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000200)=@IORING_OP_READ=@pass_buffer={0x16, 0x84, 0x4004, @fd_index=0x7, 0x3ff, &(0x7f0000000400)=""/209, 0xd1, 0x9})
io_uring_enter(r6, 0x2df0, 0x0, 0x0, 0x0, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

 idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1398.735004][T23813] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1398.755356][T23813] usb 5-1: config 0 descriptor??
[ 1399.110035][   T30] audit: type=1326 audit(1761538192.759:3459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24905 comm="syz.1.5749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1399.391559][T23813] usb 5-1: string descriptor 0 read error: -71
[ 1399.399337][   T30] audit: type=1326 audit(1761538192.759:3460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24905 comm="syz.1.5749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1399.437883][T23813] uclogic 0003:256C:006D.005A: failed retrieving string descriptor #200: -71
[ 1399.566522][T23813] uclogic 0003:256C:006D.005A: failed retrieving pen parameters: -71
[ 1399.864728][T23813] uclogic 0003:256C:006D.005A: failed probing pen v2 parameters: -71
[ 1399.875414][   T30] audit: type=1326 audit(1761538192.819:3461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24905 comm="syz.1.5749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1399.920667][T23813] uclogic 0003:256C:006D.005A: failed probing parameters: -71
[ 1399.966006][T23813] uclogic 0003:256C:006D.005A: probe with driver uclogic failed with error -71
[ 1400.004930][   T30] audit: type=1326 audit(1761538192.819:3462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24905 comm="syz.1.5749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1400.027385][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1400.056577][T23813] usb 5-1: USB disconnect, device number 120
[ 1400.132588][   T30] audit: type=1326 audit(1761538192.819:3463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24905 comm="syz.1.5749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1400.194970][T24924] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5753'.
[ 1400.221955][T24922] vlan2: entered promiscuous mode
[ 1400.286850][   T30] audit: type=1326 audit(1761538192.819:3464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24905 comm="syz.1.5749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1400.309241][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1400.325859][T24927] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[ 1400.345070][T24922] vlan2: entered allmulticast mode
[ 1400.350213][T24922] hsr_slave_1: entered allmulticast mode
[ 1400.364137][T24927] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1400.425197][   T30] audit: type=1326 audit(1761538192.819:3465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24905 comm="syz.1.5749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1400.447631][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1400.505043][   T30] audit: type=1326 audit(1761538192.819:3466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24905 comm="syz.1.5749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1400.519465][T24931] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1400.527502][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1400.635432][   T30] audit: type=1326 audit(1761538192.829:3467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24905 comm="syz.1.5749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1400.647424][T24935] tipc: Resetting bearer <eth:syzkaller0>
[ 1400.732551][   T30] audit: type=1326 audit(1761538192.829:3468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24905 comm="syz.1.5749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1400.816615][T24930] tipc: Disabling bearer <eth:syzkaller0>
[ 1401.282636][T24941] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5757'.
[ 1402.161754][T24960] syzkaller1: entered promiscuous mode
[ 1402.173388][T24960] syzkaller1: entered allmulticast mode
[ 1402.781870][T24962] xt_bpf: check failed: parse error
[ 1403.468011][T24971] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1403.496153][T24971] syzkaller0: entered promiscuous mode
[ 1403.501682][T24971] syzkaller0: entered allmulticast mode
[ 1403.761304][T24971] syzkaller0: mtu less than device minimum
[ 1403.883464][T24971] syz_tun: entered allmulticast mode
[ 1403.941932][T24970] tipc: Resetting bearer <eth:syzkaller0>
[ 1404.034521][T24970] tipc: Disabling bearer <eth:syzkaller0>
[ 1404.126269][T24970] syz_tun: left allmulticast mode
[ 1404.334865][  T982] usb 2-1: new high-speed USB device number 88 using dummy_hcd
[ 1404.763491][T24991] loop5: detected capacity change from 0 to 7
[ 1404.804772][  T982] usb 2-1: Using ep0 maxpacket: 32
[ 1404.811287][T24991] Dev loop5: unable to read RDB block 7
[ 1404.818249][  T982] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1404.830645][  T982] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1404.842047][T24991]  loop5: AHDI p1 p2 p3
[ 1404.852209][T24991] loop5: partition table partially beyond EOD, truncated
[ 1404.875040][  T982] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1404.885453][  T982] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1404.926873][T24991] loop5: p1 start 1601398130 is beyond EOD, truncated
[ 1404.935394][T24991] loop5: p2 start 1702059890 is beyond EOD, truncated
[ 1404.946441][  T982] usb 2-1: Product: syz
[ 1404.958669][  T982] usb 2-1: Manufacturer: syz
[ 1404.970217][  T982] usb 2-1: SerialNumber: syz
[ 1406.004436][T25012] netlink: 64 bytes leftover after parsing attributes in process `syz.0.5779'.
[ 1406.244691][  T982] cdc_ncm 2-1:1.0: bind() failure
[ 1406.264054][  T982] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[ 1406.271971][T25018] syzkaller1: entered promiscuous mode
[ 1406.277591][  T982] cdc_ncm 2-1:1.1: bind() failure
[ 1406.290954][T25018] syzkaller1: entered allmulticast mode
[ 1406.369442][T25020] loop9: detected capacity change from 0 to 7
[ 1406.401882][T25020] Dev loop9: unable to read RDB block 7
[ 1406.423616][T25020]  loop9: AHDI p4
[ 1406.439310][T25020] loop9: partition table partially beyond EOD, truncated
[ 1406.541767][T23813] usb 2-1: USB disconnect, device number 88
[ 1407.186111][  T982] usb 3-1: new high-speed USB device number 40 using dummy_hcd
[ 1407.344611][T15371] usb 1-1: new high-speed USB device number 109 using dummy_hcd
[ 1407.364534][  T982] usb 3-1: Using ep0 maxpacket: 8
[ 1407.374118][  T982] usb 3-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[ 1407.403742][  T982] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1407.515161][  T982] usb 3-1: Product: syz
[ 1407.524575][T15371] usb 1-1: Using ep0 maxpacket: 8
[ 1407.538223][  T982] usb 3-1: Manufacturer: syz
[ 1407.557267][  T982] usb 3-1: SerialNumber: syz
[ 1407.574946][T15371] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[ 1407.614073][  T982] usb 3-1: config 0 descriptor??
[ 1407.647595][T15371] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 62898, setting to 1024
[ 1407.673934][  T982] gspca_main: sonixj-2.14.0 probing 0c45:613e
[ 1407.708104][T15371] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 1024
[ 1407.744842][T15371] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1407.775440][T15371] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40
[ 1407.785182][T15371] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1407.795586][T15371] usb 1-1: Product: syz
[ 1407.799957][T15371] usb 1-1: Manufacturer: syz
[ 1407.829511][T15371] usb 1-1: SerialNumber: syz
[ 1407.861801][T25035] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[ 1407.869968][T25035] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[ 1408.124218][T15371] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -71
[ 1408.309759][T15371] usbtest 1-1:1.0: Linux user mode ISO test driver
[ 1408.337443][T15371] usbtest 1-1:1.0: high-speed {control bulk-in bulk-out} tests (+alt)
[ 1408.355116][T25049] netlink: 'syz.2.5784': attribute type 27 has an invalid length.
[ 1408.400142][T15371] usb 1-1: USB disconnect, device number 109
[ 1408.594851][  T982] gspca_sonixj: reg_w1 err -110
[ 1408.600061][  T982] sonixj 3-1:0.0: probe with driver sonixj failed with error -110
[ 1408.615480][T25055] FAULT_INJECTION: forcing a failure.
[ 1408.615480][T25055] name failslab, interval 1, probability 0, space 0, times 0
[ 1408.629257][T25055] CPU: 0 UID: 0 PID: 25055 Comm: syz.3.5790 Not tainted syzkaller #0 PREEMPT(full) 
[ 1408.629287][T25055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1408.629299][T25055] Call Trace:
[ 1408.629307][T25055]  <TASK>
[ 1408.629316][T25055]  dump_stack_lvl+0x189/0x250
[ 1408.629349][T25055]  ? __pfx____ratelimit+0x10/0x10
[ 1408.629373][T25055]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1408.629398][T25055]  ? __pfx__printk+0x10/0x10
[ 1408.629422][T25055]  ? __lock_acquire+0xab9/0xd20
[ 1408.629446][T25055]  should_fail_ex+0x414/0x560
[ 1408.629480][T25055]  should_failslab+0xa8/0x100
[ 1408.629501][T25055]  kmem_cache_alloc_noprof+0x74/0x6e0
[ 1408.629527][T25055]  ? skb_clone+0x212/0x3a0
[ 1408.629552][T25055]  skb_clone+0x212/0x3a0
[ 1408.629576][T25055]  __netlink_deliver_tap+0x404/0x850
[ 1408.629616][T25055]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1408.629647][T25055]  netlink_deliver_tap+0x19c/0x1b0
[ 1408.629677][T25055]  netlink_unicast+0x7fa/0x9e0
[ 1408.629710][T25055]  ? __pfx_netlink_unicast+0x10/0x10
[ 1408.629737][T25055]  ? netlink_sendmsg+0x642/0xb30
[ 1408.629753][T25055]  ? skb_put+0x11b/0x210
[ 1408.629772][T25055]  netlink_sendmsg+0x805/0xb30
[ 1408.629797][T25055]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1408.629822][T25055]  ? aa_sock_msg_perm+0xf1/0x1d0
[ 1408.629850][T25055]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1408.629868][T25055]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1408.629887][T25055]  __sock_sendmsg+0x21c/0x270
[ 1408.629914][T25055]  ____sys_sendmsg+0x505/0x830
[ 1408.629939][T25055]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1408.629966][T25055]  ? import_iovec+0x74/0xa0
[ 1408.629994][T25055]  ___sys_sendmsg+0x21f/0x2a0
[ 1408.630020][T25055]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1408.630077][T25055]  ? __fget_files+0x2a/0x420
[ 1408.630093][T25055]  ? __fget_files+0x3a0/0x420
[ 1408.630118][T25055]  __x64_sys_sendmsg+0x19b/0x260
[ 1408.630140][T25055]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1408.630167][T25055]  ? __pfx_ksys_write+0x10/0x10
[ 1408.630197][T25055]  ? do_syscall_64+0xbe/0xfa0
[ 1408.630224][T25055]  do_syscall_64+0xfa/0xfa0
[ 1408.630246][T25055]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1408.630270][T25055]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1408.630288][T25055]  ? clear_bhb_loop+0x60/0xb0
[ 1408.630310][T25055]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1408.630328][T25055] RIP: 0033:0x7f8b6a58efc9
[ 1408.630344][T25055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1408.630360][T25055] RSP: 002b:00007f8b6b3cd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1408.630380][T25055] RAX: ffffffffffffffda RBX: 00007f8b6a7e5fa0 RCX: 00007f8b6a58efc9
[ 1408.630393][T25055] RDX: 0000000000000090 RSI: 00002000000002c0 RDI: 0000000000000003
[ 1408.630404][T25055] RBP: 00007f8b6b3cd090 R08: 0000000000000000 R09: 0000000000000000
[ 1408.630416][T25055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1408.630426][T25055] R13: 00007f8b6a7e6038 R14: 00007f8b6a7e5fa0 R15: 00007f8b6a90fa28
[ 1408.630454][T25055]  </TASK>
[ 1409.091629][T25060] netlink: 64 bytes leftover after parsing attributes in process `syz.3.5794'.
[ 1409.392409][T25065] loop4: detected capacity change from 0 to 456
[ 1409.755439][T15371] usb 3-1: USB disconnect, device number 40
[ 1410.349180][  T982] usb 5-1: new low-speed USB device number 121 using dummy_hcd
[ 1410.368784][T23813] usb 4-1: new high-speed USB device number 125 using dummy_hcd
[ 1410.485072][  T982] usb 5-1: device descriptor read/64, error -71
[ 1410.584860][T23813] usb 4-1: device descriptor read/64, error -71
[ 1410.788781][  T982] usb 5-1: new low-speed USB device number 122 using dummy_hcd
[ 1410.824999][T23813] usb 4-1: new high-speed USB device number 126 using dummy_hcd
[ 1410.954563][T23813] usb 4-1: device descriptor read/64, error -71
[ 1411.285585][T23813] usb usb4-port1: attempt power cycle
[ 1411.301991][T25089] syzkaller1: entered promiscuous mode
[ 1411.315645][T25089] syzkaller1: entered allmulticast mode
[ 1411.515170][  T982] usb 5-1: device descriptor read/64, error -71
[ 1411.635002][  T982] usb usb5-port1: attempt power cycle
[ 1411.685026][T23813] usb 4-1: new high-speed USB device number 127 using dummy_hcd
[ 1411.725628][T23813] usb 4-1: device descriptor read/8, error -71
[ 1411.784026][T25097] FAULT_INJECTION: forcing a failure.
[ 1411.784026][T25097] name failslab, interval 1, probability 0, space 0, times 0
[ 1411.807749][T25097] CPU: 1 UID: 0 PID: 25097 Comm: syz.0.5803 Not tainted syzkaller #0 PREEMPT(full) 
[ 1411.807777][T25097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1411.807791][T25097] Call Trace:
[ 1411.807799][T25097]  <TASK>
[ 1411.807809][T25097]  dump_stack_lvl+0x189/0x250
[ 1411.807843][T25097]  ? __pfx____ratelimit+0x10/0x10
[ 1411.807870][T25097]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1411.807900][T25097]  ? __pfx__printk+0x10/0x10
[ 1411.807928][T25097]  ? __pfx___might_resched+0x10/0x10
[ 1411.807949][T25097]  ? fs_reclaim_acquire+0x7d/0x100
[ 1411.807995][T25097]  should_fail_ex+0x414/0x560
[ 1411.808033][T25097]  should_failslab+0xa8/0x100
[ 1411.808057][T25097]  __kmalloc_noprof+0xcb/0x7f0
[ 1411.808088][T25097]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[ 1411.808116][T25097]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1411.808144][T25097]  genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[ 1411.808180][T25097]  genl_family_rcv_msg_doit+0xb8/0x300
[ 1411.808214][T25097]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1411.808250][T25097]  ? apparmor_capable+0x137/0x1b0
[ 1411.808276][T25097]  ? bpf_lsm_capable+0x9/0x20
[ 1411.808303][T25097]  ? security_capable+0x7e/0x2e0
[ 1411.808338][T25097]  genl_rcv_msg+0x60e/0x790
[ 1411.808371][T25097]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1411.808396][T25097]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1411.808417][T25097]  ? __pfx_nl80211_set_pmksa+0x10/0x10
[ 1411.808444][T25097]  ? __pfx_nl80211_post_doit+0x10/0x10
[ 1411.808468][T25097]  ? __asan_memcpy+0x40/0x70
[ 1411.808496][T25097]  ? __pfx_ref_tracker_free+0x10/0x10
[ 1411.808526][T25097]  netlink_rcv_skb+0x208/0x470
[ 1411.808557][T25097]  ? __lock_acquire+0xab9/0xd20
[ 1411.808579][T25097]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1411.808606][T25097]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1411.808659][T25097]  ? down_read+0x1ad/0x2e0
[ 1411.808693][T25097]  genl_rcv+0x28/0x40
[ 1411.808716][T25097]  netlink_unicast+0x82f/0x9e0
[ 1411.808756][T25097]  ? __pfx_netlink_unicast+0x10/0x10
[ 1411.808788][T25097]  ? netlink_sendmsg+0x642/0xb30
[ 1411.808806][T25097]  ? skb_put+0x11b/0x210
[ 1411.808847][T25097]  netlink_sendmsg+0x805/0xb30
[ 1411.808879][T25097]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1411.808904][T25097]  ? aa_sock_msg_perm+0xf1/0x1d0
[ 1411.808939][T25097]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1411.808960][T25097]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1411.808988][T25097]  __sock_sendmsg+0x21c/0x270
[ 1411.809021][T25097]  ____sys_sendmsg+0x505/0x830
[ 1411.809051][T25097]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1411.809084][T25097]  ? import_iovec+0x74/0xa0
[ 1411.809117][T25097]  ___sys_sendmsg+0x21f/0x2a0
[ 1411.809143][T25097]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1411.809207][T25097]  ? __fget_files+0x2a/0x420
[ 1411.809227][T25097]  ? __fget_files+0x3a0/0x420
[ 1411.809261][T25097]  __x64_sys_sendmsg+0x19b/0x260
[ 1411.809287][T25097]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1411.809323][T25097]  ? __pfx_ksys_write+0x10/0x10
[ 1411.809358][T25097]  ? do_syscall_64+0xbe/0xfa0
[ 1411.809392][T25097]  do_syscall_64+0xfa/0xfa0
[ 1411.809420][T25097]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1411.809448][T25097]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1411.809470][T25097]  ? clear_bhb_loop+0x60/0xb0
[ 1411.809497][T25097]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1411.809530][T25097] RIP: 0033:0x7efc3478efc9
[ 1411.809550][T25097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1411.809570][T25097] RSP: 002b:00007efc355c2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1411.809593][T25097] RAX: ffffffffffffffda RBX: 00007efc349e5fa0 RCX: 00007efc3478efc9
[ 1411.809609][T25097] RDX: 0000000020000000 RSI: 0000200000000b80 RDI: 0000000000000003
[ 1411.809624][T25097] RBP: 00007efc355c2090 R08: 0000000000000000 R09: 0000000000000000
[ 1411.809638][T25097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1411.809651][T25097] R13: 00007efc349e6038 R14: 00007efc349e5fa0 R15: 00007efc34b0fa28
[ 1411.809686][T25097]  </TASK>
[ 1412.274550][T23813] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[ 1412.284882][  T982] usb 5-1: new low-speed USB device number 123 using dummy_hcd
[ 1412.295274][T23813] usb 4-1: device descriptor read/8, error -71
[ 1412.305588][  T982] usb 5-1: device descriptor read/8, error -71
[ 1412.405532][T23813] usb usb4-port1: unable to enumerate USB device
[ 1412.544591][  T982] usb 5-1: new low-speed USB device number 124 using dummy_hcd
[ 1412.565245][  T982] usb 5-1: device descriptor read/8, error -71
[ 1412.674840][  T982] usb usb5-port1: unable to enumerate USB device
[ 1412.724876][T23813] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[ 1412.887234][T23813] usb 3-1: Using ep0 maxpacket: 32
[ 1412.894387][T23813] usb 3-1: config 0 has an invalid interface number: 130 but max is 0
[ 1412.903401][T23813] usb 3-1: config 0 has no interface number 0
[ 1412.918930][T23813] usb 3-1: config 0 interface 130 has no altsetting 0
[ 1412.948064][T23813] usb 3-1: New USB device found, idVendor=1bc7, idProduct=1201, bcdDevice=69.37
[ 1412.957806][T23813] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1412.967550][T23813] usb 3-1: Product: syz
[ 1412.971877][T23813] usb 3-1: Manufacturer: syz
[ 1412.977194][T23813] usb 3-1: SerialNumber: syz
[ 1412.988512][T23813] usb 3-1: config 0 descriptor??
[ 1413.272671][T23813] option 3-1:0.130: GSM modem (1-port) converter detected
[ 1413.323971][T23813] usb 3-1: USB disconnect, device number 41
[ 1413.380065][T23813] option 3-1:0.130: device disconnected
[ 1413.637324][T25131] syzkaller1: entered promiscuous mode
[ 1413.642906][T25131] syzkaller1: entered allmulticast mode
[ 1414.887429][T25146] 8021q: adding VLAN 0 to HW filter on device batadv6
[ 1414.953507][T25148] loop6: detected capacity change from 0 to 2640
[ 1414.954103][T25146] team0: Port device batadv6 added
[ 1414.967562][T25148] buffer_io_error: 11 callbacks suppressed
[ 1414.967582][T25148] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1414.988543][T25148] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1415.014299][T25148] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1415.123640][T25148] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1415.132191][T25148] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1415.154686][T25148] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1415.162853][T25148] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1415.181263][T25148] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1415.248743][T25148] ldm_validate_partition_table(): Disk read failed.
[ 1415.343521][T25148] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1415.394679][T25148] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1415.403739][T25148] Dev loop6: unable to read RDB block 0
[ 1415.435836][T25148]  loop6: unable to read partition table
[ 1415.471647][T25148] loop_reread_partitions: partition scan of loop6 (3�����) failed (rc=-5)
[ 1415.924953][T25161] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5824'.
[ 1415.942776][T25161] FAULT_INJECTION: forcing a failure.
[ 1415.942776][T25161] name failslab, interval 1, probability 0, space 0, times 0
[ 1415.983459][T25161] CPU: 1 UID: 0 PID: 25161 Comm: syz.4.5824 Not tainted syzkaller #0 PREEMPT(full) 
[ 1415.983490][T25161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1415.983504][T25161] Call Trace:
[ 1415.983513][T25161]  <TASK>
[ 1415.983524][T25161]  dump_stack_lvl+0x189/0x250
[ 1415.983567][T25161]  ? __pfx____ratelimit+0x10/0x10
[ 1415.983596][T25161]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1415.983627][T25161]  ? __pfx__printk+0x10/0x10
[ 1415.983652][T25161]  ? __pfx___might_resched+0x10/0x10
[ 1415.983679][T25161]  should_fail_ex+0x414/0x560
[ 1415.983718][T25161]  should_failslab+0xa8/0x100
[ 1415.983742][T25161]  kmem_cache_alloc_node_noprof+0x77/0x710
[ 1415.983773][T25161]  ? __alloc_skb+0x112/0x2d0
[ 1415.983812][T25161]  __alloc_skb+0x112/0x2d0
[ 1415.983850][T25161]  netlink_ack+0x146/0xa50
[ 1415.983881][T25161]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1415.983907][T25161]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1415.983930][T25161]  ? __pfx_nl80211_post_doit+0x10/0x10
[ 1415.983954][T25161]  ? __asan_memcpy+0x40/0x70
[ 1415.983982][T25161]  ? __pfx_ref_tracker_free+0x10/0x10
[ 1415.984013][T25161]  netlink_rcv_skb+0x28c/0x470
[ 1415.984043][T25161]  ? __lock_acquire+0xab9/0xd20
[ 1415.984065][T25161]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1415.984092][T25161]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1415.984146][T25161]  ? down_read+0x1ad/0x2e0
[ 1415.984182][T25161]  genl_rcv+0x28/0x40
[ 1415.984205][T25161]  netlink_unicast+0x82f/0x9e0
[ 1415.984246][T25161]  ? __pfx_netlink_unicast+0x10/0x10
[ 1415.984279][T25161]  ? netlink_sendmsg+0x642/0xb30
[ 1415.984298][T25161]  ? skb_put+0x11b/0x210
[ 1415.984322][T25161]  netlink_sendmsg+0x805/0xb30
[ 1415.984354][T25161]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1415.984379][T25161]  ? aa_sock_msg_perm+0xf1/0x1d0
[ 1415.984428][T25161]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1415.984449][T25161]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1415.984471][T25161]  __sock_sendmsg+0x21c/0x270
[ 1415.984503][T25161]  ____sys_sendmsg+0x505/0x830
[ 1415.984532][T25161]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1415.984573][T25161]  ? import_iovec+0x74/0xa0
[ 1415.984604][T25161]  ___sys_sendmsg+0x21f/0x2a0
[ 1415.984630][T25161]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1415.984693][T25161]  ? __fget_files+0x2a/0x420
[ 1415.984714][T25161]  ? __fget_files+0x3a0/0x420
[ 1415.984746][T25161]  __x64_sys_sendmsg+0x19b/0x260
[ 1415.984772][T25161]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1415.984806][T25161]  ? __pfx_ksys_write+0x10/0x10
[ 1415.984840][T25161]  ? do_syscall_64+0xbe/0xfa0
[ 1415.984871][T25161]  do_syscall_64+0xfa/0xfa0
[ 1415.984898][T25161]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1415.984926][T25161]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1415.984947][T25161]  ? clear_bhb_loop+0x60/0xb0
[ 1415.984975][T25161]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1415.984996][T25161] RIP: 0033:0x7f5c89f8efc9
[ 1415.985023][T25161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1415.985049][T25161] RSP: 002b:00007f5c881f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1415.985073][T25161] RAX: ffffffffffffffda RBX: 00007f5c8a1e5fa0 RCX: 00007f5c89f8efc9
[ 1415.985090][T25161] RDX: 0000000020000000 RSI: 0000200000000b80 RDI: 0000000000000003
[ 1415.985104][T25161] RBP: 00007f5c881f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1415.985118][T25161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1415.985131][T25161] R13: 00007f5c8a1e6038 R14: 00007f5c8a1e5fa0 R15: 00007f5c8a30fa28
[ 1415.985168][T25161]  </TASK>
[ 1415.988756][T23813] usb 2-1: new full-speed USB device number 89 using dummy_hcd
[ 1416.102226][T25163] loop8: detected capacity change from 0 to 8
[ 1416.358768][T25163] Dev loop8: unable to read RDB block 8
[ 1416.374913][T23813] usb 2-1: config 0 has an invalid interface number: 133 but max is 0
[ 1416.383130][T23813] usb 2-1: config 0 has no interface number 0
[ 1416.426851][T25163]  loop8: unable to read partition table
[ 1416.434580][T23813] usb 2-1: config 0 interface 133 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1416.459161][T25163] loop8: partition table beyond EOD, truncated
[ 1416.474723][T25163] loop_reread_partitions: partition scan of loop8 (�被x�^>��� ) failed (rc=-5)
[ 1416.500948][T23813] usb 2-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d
[ 1416.519486][T23813] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1416.538175][T23813] usb 2-1: Product: syz
[ 1416.542404][T23813] usb 2-1: Manufacturer: syz
[ 1416.547630][T23813] usb 2-1: SerialNumber: syz
[ 1416.563313][T23813] usb 2-1: config 0 descriptor??
[ 1416.711523][T25174] syzkaller1: entered promiscuous mode
[ 1416.717580][T25174] syzkaller1: entered allmulticast mode
[ 1416.732679][T25165] vivid-000: disconnect
[ 1416.945309][T12137] usb 1-1: new high-speed USB device number 110 using dummy_hcd
[ 1417.109908][T23813] keyspan 2-1:0.133: Keyspan 1 port adapter converter detected
[ 1417.121481][T23813] keyspan 2-1:0.133: found no endpoint descriptor for endpoint 82
[ 1417.135217][T12137] usb 1-1: Using ep0 maxpacket: 8
[ 1417.142859][T12137] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1417.156342][T23813] keyspan 2-1:0.133: found no endpoint descriptor for endpoint 81
[ 1417.164916][T12137] usb 1-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[ 1417.174100][T23813] keyspan 2-1:0.133: found no endpoint descriptor for endpoint 1
[ 1417.182445][T12137] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1417.191043][T23813] keyspan 2-1:0.133: found no endpoint descriptor for endpoint 2
[ 1417.204913][T12137] usb 1-1: config 0 descriptor??
[ 1417.217205][T23813] usb 2-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[ 1417.234600][T12137] gspca_main: vc032x-2.14.0 probing 046d:0892
[ 1417.254641][T23813] usb 2-1: USB disconnect, device number 89
[ 1417.267387][T23813] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[ 1417.278900][T23813] keyspan 2-1:0.133: device disconnected
[ 1417.383738][T25166] vivid-000: reconnect
[ 1417.719084][T25195] loop6: detected capacity change from 0 to 2640
[ 1417.736524][T25195] ldm_validate_partition_table(): Disk read failed.
[ 1417.744007][T25195] Dev loop6: unable to read RDB block 0
[ 1417.782920][T25195]  loop6: unable to read partition table
[ 1417.805301][T25195] loop_reread_partitions: partition scan of loop6 (3�����) failed (rc=-5)
[ 1418.089260][T25208] netlink: 'syz.3.5836': attribute type 1 has an invalid length.
[ 1419.037911][T25173] netlink: 'syz.0.5829': attribute type 8 has an invalid length.
[ 1419.328133][T12137] gspca_vc032x: reg_w err -110
[ 1419.333087][T12137] vc032x 1-1:0.0: probe with driver vc032x failed with error -110
[ 1419.554180][T25172] ALSA: mixer_oss: invalid OSS volume ''
[ 1419.560565][  T982] usb 1-1: USB disconnect, device number 110
[ 1419.686580][T25235] syzkaller1: entered promiscuous mode
[ 1419.718466][T25235] syzkaller1: entered allmulticast mode
[ 1420.325102][T25246] loop8: detected capacity change from 0 to 8
[ 1420.375482][T21681] Dev loop8: unable to read RDB block 8
[ 1420.381122][T21681]  loop8: unable to read partition table
[ 1420.434843][T21681] loop8: partition table beyond EOD, truncated
[ 1420.457082][T25246] Dev loop8: unable to read RDB block 8
[ 1420.463986][T25246]  loop8: unable to read partition table
[ 1420.496757][T25250] FAULT_INJECTION: forcing a failure.
[ 1420.496757][T25250] name failslab, interval 1, probability 0, space 0, times 0
[ 1420.513516][T25246] loop8: partition table beyond EOD, truncated
[ 1420.534290][T25250] CPU: 1 UID: 0 PID: 25250 Comm: syz.3.5851 Not tainted syzkaller #0 PREEMPT(full) 
[ 1420.534319][T25250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1420.534333][T25250] Call Trace:
[ 1420.534343][T25250]  <TASK>
[ 1420.534353][T25250]  dump_stack_lvl+0x189/0x250
[ 1420.534388][T25250]  ? __pfx____ratelimit+0x10/0x10
[ 1420.534416][T25250]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1420.534449][T25250]  ? __pfx__printk+0x10/0x10
[ 1420.534469][T25250]  ? netlink_sendmsg+0x805/0xb30
[ 1420.534490][T25250]  ? __x64_sys_sendmsg+0x19b/0x260
[ 1420.534513][T25250]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1420.534545][T25250]  should_fail_ex+0x414/0x560
[ 1420.534585][T25250]  should_failslab+0xa8/0x100
[ 1420.534610][T25250]  kmem_cache_alloc_noprof+0x74/0x6e0
[ 1420.534643][T25250]  ? skb_clone+0x212/0x3a0
[ 1420.534673][T25250]  skb_clone+0x212/0x3a0
[ 1420.534702][T25250]  __netlink_deliver_tap+0x404/0x850
[ 1420.534750][T25250]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1420.534787][T25250]  netlink_deliver_tap+0x19c/0x1b0
[ 1420.534823][T25250]  netlink_sendskb+0x68/0x140
[ 1420.534857][T25250]  netlink_unicast+0x397/0x9e0
[ 1420.534886][T25250]  ? __asan_memcpy+0x40/0x70
[ 1420.534925][T25250]  ? __pfx_netlink_unicast+0x10/0x10
[ 1420.534967][T25250]  netlink_rcv_skb+0x28c/0x470
[ 1420.534999][T25250]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1420.535113][T25250]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 1420.535147][T25250]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1420.535194][T25250]  ? bpf_lsm_capable+0x9/0x20
[ 1420.535221][T25250]  ? security_capable+0x7e/0x2e0
[ 1420.535258][T25250]  nfnetlink_rcv+0x282/0x2590
[ 1420.535294][T25250]  ? __dev_queue_xmit+0x27b/0x3b50
[ 1420.535322][T25250]  ? __dev_queue_xmit+0x1d79/0x3b50
[ 1420.535346][T25250]  ? kasan_save_track+0x3e/0x80
[ 1420.535376][T25250]  ? __kasan_slab_alloc+0x6c/0x80
[ 1420.535420][T25250]  ? __dev_queue_xmit+0x27b/0x3b50
[ 1420.535460][T25250]  ? __pfx_nfnetlink_rcv+0x10/0x10
[ 1420.535490][T25250]  ? __pfx___dev_queue_xmit+0x10/0x10
[ 1420.535532][T25250]  ? ref_tracker_free+0x63a/0x7d0
[ 1420.535556][T25250]  ? __asan_memcpy+0x40/0x70
[ 1420.535584][T25250]  ? __pfx_ref_tracker_free+0x10/0x10
[ 1420.535623][T25250]  ? skb_clone+0x246/0x3a0
[ 1420.535651][T25250]  ? __netlink_deliver_tap+0x807/0x850
[ 1420.535685][T25250]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1420.535726][T25250]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1420.535770][T25250]  netlink_unicast+0x82f/0x9e0
[ 1420.535811][T25250]  ? __pfx_netlink_unicast+0x10/0x10
[ 1420.535845][T25250]  ? netlink_sendmsg+0x642/0xb30
[ 1420.535864][T25250]  ? skb_put+0x11b/0x210
[ 1420.535890][T25250]  netlink_sendmsg+0x805/0xb30
[ 1420.535922][T25250]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1420.535948][T25250]  ? aa_sock_msg_perm+0xf1/0x1d0
[ 1420.535983][T25250]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1420.536004][T25250]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1420.536034][T25250]  __sock_sendmsg+0x21c/0x270
[ 1420.536066][T25250]  ____sys_sendmsg+0x505/0x830
[ 1420.536096][T25250]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1420.536130][T25250]  ? import_iovec+0x74/0xa0
[ 1420.536163][T25250]  ___sys_sendmsg+0x21f/0x2a0
[ 1420.536189][T25250]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1420.536253][T25250]  ? __fget_files+0x2a/0x420
[ 1420.536273][T25250]  ? __fget_files+0x3a0/0x420
[ 1420.536303][T25250]  __x64_sys_sendmsg+0x19b/0x260
[ 1420.536330][T25250]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1420.536365][T25250]  ? __pfx_ksys_write+0x10/0x10
[ 1420.536401][T25250]  ? do_syscall_64+0xbe/0xfa0
[ 1420.536434][T25250]  do_syscall_64+0xfa/0xfa0
[ 1420.536461][T25250]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1420.536490][T25250]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1420.536512][T25250]  ? clear_bhb_loop+0x60/0xb0
[ 1420.536540][T25250]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1420.536562][T25250] RIP: 0033:0x7f8b6a58efc9
[ 1420.536584][T25250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1420.536605][T25250] RSP: 002b:00007f8b6b3cd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1420.536629][T25250] RAX: ffffffffffffffda RBX: 00007f8b6a7e5fa0 RCX: 00007f8b6a58efc9
[ 1420.536646][T25250] RDX: 0000000000000090 RSI: 00002000000002c0 RDI: 0000000000000003
[ 1420.536661][T25250] RBP: 00007f8b6b3cd090 R08: 0000000000000000 R09: 0000000000000000
[ 1420.536676][T25250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1420.536689][T25250] R13: 00007f8b6a7e6038 R14: 00007f8b6a7e5fa0 R15: 00007f8b6a90fa28
[ 1420.536726][T25250]  </TASK>
[ 1420.548394][T25246] loop_reread_partitions: partition scan of loop8 (�被x�^>��� ) failed (rc=-5)
[ 1420.556465][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1421.794351][T25275] syzkaller1: entered promiscuous mode
[ 1421.820116][T25275] syzkaller1: entered allmulticast mode
[ 1422.198383][T25283] netlink: 'syz.0.5860': attribute type 3 has an invalid length.
[ 1422.247018][T25285] 8021q: adding VLAN 0 to HW filter on device batadv8
[ 1422.258782][T25285] team0: Port device batadv8 added
[ 1422.624783][    T9] usb 3-1: new high-speed USB device number 42 using dummy_hcd
[ 1422.674042][T25295] netlink: 'syz.1.5863': attribute type 1 has an invalid length.
[ 1422.692442][T25295] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1422.731353][T25299] FAULT_INJECTION: forcing a failure.
[ 1422.731353][T25299] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1422.768557][T25299] CPU: 0 UID: 0 PID: 25299 Comm: syz.4.5865 Not tainted syzkaller #0 PREEMPT(full) 
[ 1422.768587][T25299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1422.768602][T25299] Call Trace:
[ 1422.768612][T25299]  <TASK>
[ 1422.768622][T25299]  dump_stack_lvl+0x189/0x250
[ 1422.768669][T25299]  ? __pfx____ratelimit+0x10/0x10
[ 1422.768696][T25299]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1422.768726][T25299]  ? __pfx__printk+0x10/0x10
[ 1422.768760][T25299]  should_fail_ex+0x414/0x560
[ 1422.768798][T25299]  _copy_to_user+0x31/0xb0
[ 1422.768828][T25299]  simple_read_from_buffer+0xe1/0x170
[ 1422.768866][T25299]  proc_fail_nth_read+0x1b3/0x220
[ 1422.768898][T25299]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1422.768929][T25299]  ? rw_verify_area+0x2a6/0x4d0
[ 1422.768956][T25299]  ? __lock_acquire+0xab9/0xd20
[ 1422.768976][T25299]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1422.769004][T25299]  vfs_read+0x200/0xa30
[ 1422.769032][T25299]  ? fdget_pos+0x247/0x320
[ 1422.769057][T25299]  ? __pfx___mutex_lock+0x10/0x10
[ 1422.769093][T25299]  ? __pfx_vfs_read+0x10/0x10
[ 1422.769124][T25299]  ? __fget_files+0x2a/0x420
[ 1422.769149][T25299]  ? __fget_files+0x3a0/0x420
[ 1422.769168][T25299]  ? __fget_files+0x2a/0x420
[ 1422.769198][T25299]  ksys_read+0x145/0x250
[ 1422.769230][T25299]  ? __pfx_ksys_read+0x10/0x10
[ 1422.769264][T25299]  ? do_syscall_64+0xbe/0xfa0
[ 1422.769297][T25299]  do_syscall_64+0xfa/0xfa0
[ 1422.769327][T25299]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1422.769354][T25299]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1422.769376][T25299]  ? clear_bhb_loop+0x60/0xb0
[ 1422.769402][T25299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1422.769423][T25299] RIP: 0033:0x7f5c89f8d9dc
[ 1422.769443][T25299] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1422.769462][T25299] RSP: 002b:00007f5c881f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1422.769485][T25299] RAX: ffffffffffffffda RBX: 00007f5c8a1e5fa0 RCX: 00007f5c89f8d9dc
[ 1422.769501][T25299] RDX: 000000000000000f RSI: 00007f5c881f60a0 RDI: 0000000000000004
[ 1422.769515][T25299] RBP: 00007f5c881f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1422.769528][T25299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1422.769542][T25299] R13: 00007f5c8a1e6038 R14: 00007f5c8a1e5fa0 R15: 00007f5c8a30fa28
[ 1422.769577][T25299]  </TASK>
[ 1423.071173][    T9] usb 3-1: Using ep0 maxpacket: 8
[ 1423.097248][    T9] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[ 1423.107564][    T9] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 22777, setting to 1024
[ 1423.118675][    T9] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 1024
[ 1423.128851][    T9] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1423.245485][    T9] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40
[ 1423.254600][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1423.262594][    T9] usb 3-1: Product: syz
[ 1423.267467][    T9] usb 3-1: Manufacturer: syz
[ 1423.272088][    T9] usb 3-1: SerialNumber: syz
[ 1423.279370][T25305] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5868'.
[ 1423.298454][T25287] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1423.327903][T25287] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1423.557110][T25310] loop8: detected capacity change from 0 to 8
[ 1423.582279][T21681] Dev loop8: unable to read RDB block 8
[ 1423.588954][T21681]  loop8: unable to read partition table
[ 1423.614311][T21681] loop8: partition table beyond EOD, truncated
[ 1423.625011][T25310] Dev loop8: unable to read RDB block 8
[ 1423.645610][    T9] cdc_ether 3-1:1.0: probe with driver cdc_ether failed with error -71
[ 1423.766097][T25310]  loop8: unable to read partition table
[ 1423.809313][    T9] usbtest 3-1:1.0: Linux user mode ISO test driver
[ 1423.817475][T25310] loop8: partition table beyond EOD, truncated
[ 1423.826331][T25310] loop_reread_partitions: partition scan of loop8 (�被x�^>��� ) failed (rc=-5)
[ 1423.836500][    T9] usbtest 3-1:1.0: high-speed {control bulk-in bulk-out} tests (+alt)
[ 1423.915080][  T982] usb 1-1: new high-speed USB device number 111 using dummy_hcd
[ 1423.928807][    T9] usb 3-1: USB disconnect, device number 42
[ 1424.084518][  T982] usb 1-1: Using ep0 maxpacket: 8
[ 1424.100038][  T982] usb 1-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1424.111381][  T982] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1424.243020][  T982] usb 1-1: config 0 descriptor??
[ 1424.294182][T25314] syzkaller1: entered promiscuous mode
[ 1424.300735][T25314] syzkaller1: entered allmulticast mode
[ 1424.462137][  T982] asix 1-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[ 1426.422466][T25340] syzkaller0: entered promiscuous mode
[ 1426.428148][T25340] syzkaller0: entered allmulticast mode
[ 1426.525005][T23532] usb 5-1: new high-speed USB device number 125 using dummy_hcd
[ 1426.534550][T15371] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[ 1426.550627][  T982] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[ 1426.571658][  T982] asix 1-1:0.0: probe with driver asix failed with error -71
[ 1426.612098][  T982] usb 1-1: USB disconnect, device number 111
[ 1426.714596][T23532] usb 5-1: Using ep0 maxpacket: 32
[ 1426.724302][T23532] usb 5-1: config 0 has an invalid interface number: 89 but max is 0
[ 1426.732607][T23532] usb 5-1: config 0 has no interface number 0
[ 1426.739364][T23532] usb 5-1: config 0 interface 89 has no altsetting 0
[ 1426.747724][T15371] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1426.763118][T15371] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1426.779221][T23532] usb 5-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4e
[ 1426.789310][T23532] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1426.797476][T23532] usb 5-1: Product: syz
[ 1426.815532][T15371] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1426.828727][T23532] usb 5-1: Manufacturer: syz
[ 1426.833375][T23532] usb 5-1: SerialNumber: syz
[ 1426.863709][T23532] usb 5-1: config 0 descriptor??
[ 1426.875852][T15371] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1426.892480][T23532] em28xx 5-1:0.89: New device syz syz @ 480 Mbps (0ccd:10af, interface 89, class 89)
[ 1426.915827][T23532] em28xx 5-1:0.89: Video interface 89 found: bulk
[ 1426.953541][T15371] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1427.005449][T15371] usb 4-1: config 0 descriptor??
[ 1427.446052][T15371] hid_parser_main: 48 callbacks suppressed
[ 1427.446078][T15371] plantronics 0003:047F:FFFF.005B: unknown main item tag 0x0
[ 1427.495331][T15371] plantronics 0003:047F:FFFF.005B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[ 1427.516089][T25351] loop8: detected capacity change from 0 to 8
[ 1427.594128][T23532] em28xx 5-1:0.89: chip ID is em28174
[ 1427.682735][T24003]  loop8: [CUMANA/ADFS] p1 [ADFS] p1
[ 1427.688601][T24003] loop8: partition table partially beyond EOD, truncated
[ 1427.845008][T24003] loop8: p1 size 3004527350 extends beyond EOD, truncated
[ 1427.871711][T25351]  loop8: [CUMANA/ADFS] p1 [ADFS] p1
[ 1427.877569][T25351] loop8: partition table partially beyond EOD, truncated
[ 1427.895740][T25351] loop8: p1 size 3004527350 extends beyond EOD, truncated
[ 1428.132514][T24003] udevd[24003]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[ 1428.250770][T24003] udevd[24003]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[ 1428.299040][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1428.305805][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1428.510542][T25359] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5883'.
[ 1428.871287][T25363] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5885'.
[ 1428.910593][T23532] em28xx 5-1:0.89: reading from i2c device at 0xa0 failed (error=-5)
[ 1428.932454][T23532] em28xx 5-1:0.89: board has no eeprom
[ 1429.007931][T23532] em28xx 5-1:0.89: Identified as Terratec Grabby (card=67)
[ 1429.016664][T23532] em28xx 5-1:0.89: analog set to bulk mode.
[ 1429.023824][  T982] em28xx 5-1:0.89: Registering V4L2 extension
[ 1429.155084][T15371] usb 2-1: new high-speed USB device number 90 using dummy_hcd
[ 1429.398831][  T982] em28xx 5-1:0.89: reading from i2c device at 0x4a failed (error=-5)
[ 1429.435791][T15371] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1429.451799][  T982] em28xx 5-1:0.89: reading from i2c device at 0x48 failed (error=-5)
[ 1429.477161][T25374] loop6: detected capacity change from 0 to 2640
[ 1429.505232][T15371] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1429.519839][T25374] buffer_io_error: 32 callbacks suppressed
[ 1429.519859][T25374] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1429.536513][   T24] usb 4-1: USB disconnect, device number 4
[ 1429.555069][  T982] em28xx 5-1:0.89: reading from i2c device at 0x42 failed (error=-5)
[ 1429.569355][T25374] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1429.581918][T15371] usb 2-1: config 0 descriptor??
[ 1429.651186][  T982] em28xx 5-1:0.89: reading from i2c device at 0x40 failed (error=-5)
[ 1429.666803][T25374] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1429.711800][T15371] cp210x 2-1:0.0: cp210x converter detected
[ 1429.725966][T25376] netlink: 64 bytes leftover after parsing attributes in process `syz.3.5890'.
[ 1429.759549][T25374] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1429.777450][  T982] usb 5-1: Decoder not found
[ 1429.782757][  T982] em28xx 5-1:0.89: failed to create media graph
[ 1429.794980][  T982] em28xx 5-1:0.89: V4L2 device video103 deregistered
[ 1429.817801][T25374] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1429.836757][  T982] em28xx 5-1:0.89: Registering snapshot button...
[ 1429.876773][  T982] input: em28xx snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.89/input/input155
[ 1430.015647][T25374] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1430.042487][T25374] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1430.057466][T25374] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1430.075663][  T982] em28xx 5-1:0.89: Remote control support is not available for this card.
[ 1430.163693][T25374] ldm_validate_partition_table(): Disk read failed.
[ 1430.186236][  T982] usb 5-1: USB disconnect, device number 125
[ 1430.193423][  T982] em28xx 5-1:0.89: Disconnecting em28xx
[ 1430.231544][T15371] cp210x 2-1:0.0: failed to get vendor val 0x000e size 3: -32
[ 1430.246854][  T982] em28xx 5-1:0.89: Closing input extension
[ 1430.267630][T15371] usb 2-1: cp210x converter now attached to ttyUSB0
[ 1430.282165][T25374] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1430.289156][  T982] em28xx 5-1:0.89: Deregistering snapshot button
[ 1430.344797][T25374] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1430.383482][T25374] Dev loop6: unable to read RDB block 0
[ 1430.414094][T25374]  loop6: unable to read partition table
[ 1430.426577][  T982] em28xx 5-1:0.89: Freeing device
[ 1430.446926][T25374] loop_reread_partitions: partition scan of loop6 (3�����) failed (rc=-5)
[ 1430.531403][T12137] usb 2-1: USB disconnect, device number 90
[ 1430.558031][T12137] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1430.604257][T12137] cp210x 2-1:0.0: device disconnected
[ 1430.676768][T25386] loop9: detected capacity change from 0 to 7
[ 1430.703778][T25386] Dev loop9: unable to read RDB block 7
[ 1430.713501][T25386]  loop9: AHDI p4
[ 1430.728092][T25386] loop9: partition table partially beyond EOD, truncated
[ 1431.529279][T25394] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1431.573595][T25394] syzkaller0: entered promiscuous mode
[ 1431.611159][T25394] syzkaller0: entered allmulticast mode
[ 1431.695765][T12137] usb 3-1: new high-speed USB device number 43 using dummy_hcd
[ 1431.745004][T25394] syzkaller0: mtu less than device minimum
[ 1431.787065][T25394] syz_tun: entered allmulticast mode
[ 1431.806938][T25393] tipc: Resetting bearer <eth:syzkaller0>
[ 1431.854925][T12137] usb 3-1: Using ep0 maxpacket: 32
[ 1431.866624][T25393] tipc: Disabling bearer <eth:syzkaller0>
[ 1431.886164][T12137] usb 3-1: config 1 has an invalid interface number: 236 but max is 0
[ 1431.918782][T12137] usb 3-1: config 1 has no interface number 0
[ 1431.956453][T12137] usb 3-1: config 1 interface 236 altsetting 2 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1432.004529][T12137] usb 3-1: config 1 interface 236 altsetting 2 bulk endpoint 0x5 has invalid maxpacket 0
[ 1432.025431][T12137] usb 3-1: config 1 interface 236 has no altsetting 0
[ 1432.027395][T25393] syz_tun: left allmulticast mode
[ 1432.056536][T12137] usb 3-1: config 1 has an invalid interface number: 236 but max is 0
[ 1432.101469][T12137] usb 3-1: config 1 has no interface number 0
[ 1432.121759][T12137] usb 3-1: config 1 interface 236 altsetting 2 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1432.175995][T12137] usb 3-1: config 1 interface 236 altsetting 2 bulk endpoint 0x5 has invalid maxpacket 0
[ 1432.261146][T12137] usb 3-1: config 1 interface 236 has no altsetting 0
[ 1432.278199][T13300] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1432.281086][T12137] usb 3-1: New USB device found, idVendor=0451, idProduct=5152, bcdDevice=aa.6a
[ 1432.290510][T13300] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1432.303497][T13300] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1432.312494][T13300] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1432.320545][T13300] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1432.361948][T12137] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1432.429197][T12137] usb 3-1: Product: syz
[ 1432.463709][T12137] usb 3-1: Manufacturer: syz
[ 1432.508741][T12137] usb 3-1: SerialNumber: syz
[ 1432.562781][T12137] ti_usb_3410_5052 3-1:1.236: TI USB 5052 2 port adapter converter detected
[ 1432.663834][T25410] netlink: 'syz.1.5901': attribute type 1 has an invalid length.
[ 1432.744597][T25410] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1433.043628][T25420] netlink: 'syz.1.5902': attribute type 1 has an invalid length.
[ 1433.152594][T25420] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1433.188297][T25419] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1433.245126][T25405] chnl_net:caif_netlink_parms(): no params data found
[ 1433.485307][T25419] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1434.085413][T25416] xt_socket: unknown flags 0xc
[ 1434.215857][   T30] kauditd_printk_skb: 22 callbacks suppressed
[ 1434.215871][   T30] audit: type=1326 audit(1761538227.869:3491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25426 comm="syz.3.5903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1434.457112][T13300] Bluetooth: hci4: command tx timeout
[ 1434.545497][   T30] audit: type=1326 audit(1761538227.909:3492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25426 comm="syz.3.5903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1434.725756][   T30] audit: type=1326 audit(1761538227.909:3493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25426 comm="syz.3.5903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1434.830024][T25405] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1434.863005][   T30] audit: type=1326 audit(1761538227.909:3494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25426 comm="syz.3.5903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1434.887661][T25405] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1435.042376][T25405] bridge_slave_0: entered allmulticast mode
[ 1435.063361][T25405] bridge_slave_0: entered promiscuous mode
[ 1435.111338][   T30] audit: type=1326 audit(1761538227.909:3495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25426 comm="syz.3.5903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1435.149428][T25405] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1435.187274][T25405] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1435.242793][T25405] bridge_slave_1: entered allmulticast mode
[ 1435.284216][   T30] audit: type=1326 audit(1761538227.929:3496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25426 comm="syz.3.5903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1435.329492][T25405] bridge_slave_1: entered promiscuous mode
[ 1435.390275][   T30] audit: type=1326 audit(1761538227.929:3497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25426 comm="syz.3.5903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1435.554039][   T30] audit: type=1326 audit(1761538227.929:3498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25426 comm="syz.3.5903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1435.632942][    T9] usb 3-1: USB disconnect, device number 43
[ 1435.735914][   T30] audit: type=1326 audit(1761538227.929:3499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25426 comm="syz.3.5903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1435.812012][T25405] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1435.833394][   T30] audit: type=1326 audit(1761538227.929:3500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25426 comm="syz.3.5903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1435.858481][T25405] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1435.916995][T25405] team0: Port device team_slave_0 added
[ 1435.924880][  T982] usb 5-1: new full-speed USB device number 126 using dummy_hcd
[ 1435.928731][T25405] team0: Port device team_slave_1 added
[ 1436.097331][  T982] usb 5-1: not running at top speed; connect to a high speed hub
[ 1436.111556][  T982] usb 5-1: config 7 has an invalid interface number: 220 but max is 2
[ 1436.122530][  T982] usb 5-1: config 7 has an invalid interface number: 101 but max is 2
[ 1436.131344][T25405] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1436.131365][T25405] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1436.131395][T25405] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1436.180721][T25405] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1436.188379][T25405] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1436.230362][T25405] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1436.265531][  T982] usb 5-1: config 7 has an invalid interface number: 197 but max is 2
[ 1436.281699][  T982] usb 5-1: config 7 has an invalid interface number: 171 but max is 2
[ 1436.296445][  T982] usb 5-1: config 7 has 4 interfaces, different from the descriptor's value: 3
[ 1436.305939][  T982] usb 5-1: config 7 has no interface number 0
[ 1436.312242][  T982] usb 5-1: config 7 has no interface number 1
[ 1436.320512][  T982] usb 5-1: config 7 has no interface number 2
[ 1436.327122][  T982] usb 5-1: config 7 has no interface number 3
[ 1436.333401][  T982] usb 5-1: config 7 interface 220 altsetting 2 has an invalid descriptor for endpoint zero, skipping
[ 1436.338688][T25451] loop9: detected capacity change from 0 to 7
[ 1436.361393][T25452] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5906'.
[ 1436.372191][  T982] usb 5-1: config 7 interface 220 altsetting 2 endpoint 0x8 has invalid maxpacket 1023, setting to 64
[ 1436.378083][T25451] Dev loop9: unable to read RDB block 7
[ 1436.388897][T25451]  loop9: AHDI p4
[ 1436.394323][  T982] usb 5-1: config 7 interface 220 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 14
[ 1436.408478][  T982] usb 5-1: too many endpoints for config 7 interface 101 altsetting 132: 249, using maximum allowed: 30
[ 1436.409793][T25452] @: renamed from syz_tun (while UP)
[ 1436.420529][  T982] usb 5-1: config 7 interface 101 altsetting 132 endpoint 0x1 has invalid maxpacket 1024, setting to 64
[ 1436.442816][  T982] usb 5-1: config 7 interface 101 altsetting 132 endpoint 0x9 has invalid maxpacket 1023, setting to 64
[ 1436.457030][  T982] usb 5-1: config 7 interface 101 altsetting 132 endpoint 0xD has invalid maxpacket 1024, setting to 64
[ 1436.468560][T25451] loop9: partition table partially beyond EOD, truncated
[ 1436.470009][  T982] usb 5-1: config 7 interface 101 altsetting 132 has a duplicate endpoint with address 0x4, skipping
[ 1436.488487][  T982] usb 5-1: config 7 interface 101 altsetting 132 has an invalid descriptor for endpoint zero, skipping
[ 1436.504940][  T982] usb 5-1: config 7 interface 101 altsetting 132 endpoint 0xC has invalid maxpacket 1024, setting to 64
[ 1436.517245][  T982] usb 5-1: config 7 interface 101 altsetting 132 has an invalid descriptor for endpoint zero, skipping
[ 1436.524987][T25405] hsr_slave_0: entered promiscuous mode
[ 1436.529316][T13300] Bluetooth: hci4: command tx timeout
[ 1436.556929][  T982] usb 5-1: config 7 interface 101 altsetting 132 has an invalid descriptor for endpoint zero, skipping
[ 1436.577581][  T982] usb 5-1: config 7 interface 101 altsetting 132 has 12 endpoint descriptors, different from the interface descriptor's value: 249
[ 1436.602563][  T982] usb 5-1: config 7 interface 197 altsetting 5 has a duplicate endpoint with address 0x2, skipping
[ 1436.635430][  T982] usb 5-1: config 7 interface 197 altsetting 5 has a duplicate endpoint with address 0x5, skipping
[ 1436.655110][  T982] usb 5-1: config 7 interface 197 altsetting 5 has a duplicate endpoint with address 0x5, skipping
[ 1436.681705][T25405] hsr_slave_1: entered promiscuous mode
[ 1436.694190][  T982] usb 5-1: config 7 interface 197 altsetting 5 has an invalid descriptor for endpoint zero, skipping
[ 1436.790560][T25405] debugfs: 'hsr0' already exists in 'hsr'
[ 1436.804045][  T982] usb 5-1: config 7 interface 197 altsetting 5 has a duplicate endpoint with address 0xD, skipping
[ 1436.804961][T25405] Cannot create hsr debugfs directory
[ 1436.842694][  T982] usb 5-1: config 7 interface 197 altsetting 5 has a duplicate endpoint with address 0xC, skipping
[ 1436.878446][  T982] usb 5-1: config 7 interface 197 altsetting 5 has a duplicate endpoint with address 0x5, skipping
[ 1436.973385][  T982] usb 5-1: config 7 interface 197 altsetting 5 has a duplicate endpoint with address 0x8D, skipping
[ 1437.033920][  T982] usb 5-1: config 7 interface 197 altsetting 5 has a duplicate endpoint with address 0xC, skipping
[ 1437.067713][  T982] usb 5-1: config 7 interface 197 altsetting 5 endpoint 0xE has invalid maxpacket 46236, setting to 64
[ 1437.314573][  T982] usb 5-1: config 7 interface 197 altsetting 5 has a duplicate endpoint with address 0xA, skipping
[ 1437.334925][  T982] usb 5-1: config 7 interface 171 altsetting 251 has a duplicate endpoint with address 0x6, skipping
[ 1437.345957][  T982] usb 5-1: config 7 interface 171 altsetting 251 has a duplicate endpoint with address 0x9, skipping
[ 1437.356964][  T982] usb 5-1: config 7 interface 171 altsetting 251 has an invalid descriptor for endpoint zero, skipping
[ 1437.368107][  T982] usb 5-1: config 7 interface 171 altsetting 251 has an endpoint descriptor with address 0xFA, changing to 0x8A
[ 1437.380056][  T982] usb 5-1: config 7 interface 171 altsetting 251 has a duplicate endpoint with address 0x8A, skipping
[ 1437.391183][  T982] usb 5-1: config 7 interface 171 altsetting 251 has 5 endpoint descriptors, different from the interface descriptor's value: 4
[ 1437.424661][  T982] usb 5-1: config 7 interface 220 has no altsetting 0
[ 1437.431613][  T982] usb 5-1: config 7 interface 101 has no altsetting 0
[ 1437.438997][  T982] usb 5-1: config 7 interface 197 has no altsetting 0
[ 1437.451531][  T982] usb 5-1: config 7 interface 171 has no altsetting 0
[ 1437.475253][  T982] usb 5-1: New USB device found, idVendor=046d, idProduct=08f5, bcdDevice=3c.b5
[ 1437.484805][  T982] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1437.497664][  T982] usb 5-1: Product: င
[ 1437.508043][  T982] usb 5-1: Manufacturer: ၦ
[ 1437.510537][T25405] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1437.532288][  T982] usb 5-1: SerialNumber: syz
[ 1437.552092][T25444] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1437.559757][T25405] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1437.712983][T25405] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1437.751865][T25405] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1437.825410][  T982] usb 5-1: unknown interface protocol 0x41, assuming v1
[ 1437.849617][  T982] usb 5-1: cannot find UAC_HEADER
[ 1437.916824][T25405] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1437.943694][  T982] snd-usb-audio 5-1:7.220: probe with driver snd-usb-audio failed with error -22
[ 1437.958260][T25405] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1438.117712][  T982] usb 5-1: USB disconnect, device number 126
[ 1438.226600][T21681] udevd[21681]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:7.220/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1438.322007][T25405] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1438.372212][T25405] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1438.604640][T13300] Bluetooth: hci4: command tx timeout
[ 1438.615858][T25469] netlink: 'syz.1.5911': attribute type 1 has an invalid length.
[ 1438.640759][T25469] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1438.851191][T25405] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1438.865840][T25405] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1438.886774][T25405] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1438.896423][T25474] netlink: 'syz.2.5913': attribute type 11 has an invalid length.
[ 1438.916085][T25474] netlink: 36 bytes leftover after parsing attributes in process `syz.2.5913'.
[ 1438.916995][T25405] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1439.552822][T25405] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1439.594584][T25492] netlink: 'syz.2.5917': attribute type 1 has an invalid length.
[ 1439.752029][T25492] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1440.100779][T25405] 8021q: adding VLAN 0 to HW filter on device team0
[ 1440.179001][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1440.186221][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1440.252672][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1440.260431][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1440.480820][T25502] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5920'.
[ 1440.685738][T13300] Bluetooth: hci4: command tx timeout
[ 1441.071574][T25405] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1441.236015][T25405] veth0_vlan: entered promiscuous mode
[ 1441.277115][T25405] veth1_vlan: entered promiscuous mode
[ 1441.325847][T25519] 8021q: adding VLAN 0 to HW filter on device batadv9
[ 1441.340975][T25519] team0: Port device batadv9 added
[ 1441.452835][T25405] veth0_macvtap: entered promiscuous mode
[ 1441.543715][T25405] veth1_macvtap: entered promiscuous mode
[ 1441.635900][T25405] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1441.701609][T25405] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1441.795358][ T6273] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1441.821841][ T6273] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1441.833663][T25521] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1441.846351][ T6273] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1441.896127][ T6273] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1441.910537][T25521] syzkaller0: entered promiscuous mode
[ 1441.919531][T25521] syzkaller0: entered allmulticast mode
[ 1441.963028][T25521] syzkaller0: mtu less than device minimum
[ 1441.989766][T25521] syz_tun: entered allmulticast mode
[ 1442.052176][T25531] libceph: resolve '0..' (ret=-3): failed
[ 1442.100701][T25520] tipc: Resetting bearer <eth:syzkaller0>
[ 1442.360596][T25520] tipc: Disabling bearer <eth:syzkaller0>
[ 1442.481935][T25520] syz_tun: left allmulticast mode
[ 1442.560312][T25536] netlink: 'syz.3.5927': attribute type 1 has an invalid length.
[ 1442.659627][T25537] netlink: 'syz.2.5928': attribute type 11 has an invalid length.
[ 1442.668596][T22153] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1442.672394][T25536] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1442.707324][T22153] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1442.724645][T25537] netlink: 36 bytes leftover after parsing attributes in process `syz.2.5928'.
[ 1442.821831][T22155] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1442.832718][T22155] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1443.144751][T25548] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[ 1443.225687][T25548] macsec1: entered promiscuous mode
[ 1443.406061][T25548] netdevsim netdevsim4 netdevsim0: left promiscuous mode
[ 1443.782274][T25547] vivid-000: disconnect
[ 1443.796543][T25546] vivid-000: reconnect
[ 1443.865154][ T5922] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[ 1444.054509][ T5922] usb 4-1: Using ep0 maxpacket: 16
[ 1444.062750][ T5922] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1444.082104][ T5922] usb 4-1: config 1 interface 0 altsetting 64 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1444.126691][ T5922] usb 4-1: config 1 interface 0 has no altsetting 0
[ 1444.249229][ T5922] usb 4-1: New USB device found, idVendor=05ac, idProduct=0236, bcdDevice= 0.40
[ 1444.266899][ T5922] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1444.288448][ T5922] usb 4-1: Product: syz
[ 1444.292686][ T5922] usb 4-1: Manufacturer: syz
[ 1444.303037][ T5922] usb 4-1: SerialNumber: syz
[ 1444.385160][T15371] usb 2-1: new high-speed USB device number 91 using dummy_hcd
[ 1444.484580][T12137] usb 5-1: new high-speed USB device number 127 using dummy_hcd
[ 1444.558506][T15371] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1444.581500][ T5922] input: bcm5974 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/input/input156
[ 1444.598038][ T5185] bcm5974 4-1:1.0: could not read from device
[ 1444.612452][ T5185] bcm5974 4-1:1.0: could not read from device
[ 1444.636343][T12137] usb 5-1: Using ep0 maxpacket: 8
[ 1444.643004][T15371] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1444.656778][ T5922] usb 4-1: USB disconnect, device number 5
[ 1444.683555][T12137] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[ 1444.708398][T12137] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 921
[ 1444.719809][ T5185] bcm5974 4-1:1.0: could not read from device
[ 1444.727047][T12137] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1444.729575][T15371] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1444.772992][T12137] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40
[ 1444.782801][T12137] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1444.812453][T15371] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1444.822722][T15371] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1444.837299][T12137] usb 5-1: Product: syz
[ 1444.841514][T12137] usb 5-1: Manufacturer: syz
[ 1444.865319][T12137] usb 5-1: SerialNumber: syz
[ 1444.866082][T15371] usb 2-1: config 0 descriptor??
[ 1444.897003][T25565] raw-gadget.2 gadget.4: fail, usb_ep_enable returned -22
[ 1444.904977][T25565] raw-gadget.2 gadget.4: fail, usb_ep_enable returned -22
[ 1445.034901][    T9] usb 1-1: new high-speed USB device number 112 using dummy_hcd
[ 1445.127559][T12137] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -71
[ 1445.257981][T12137] usbtest 5-1:1.0: Linux user mode ISO test driver
[ 1445.278496][T12137] usbtest 5-1:1.0: high-speed {control bulk-in bulk-out} tests (+alt)
[ 1445.320180][T12137] usb 5-1: USB disconnect, device number 127
[ 1445.331247][    T9] usb 1-1: Using ep0 maxpacket: 8
[ 1445.333404][T25579] xt_bpf: check failed: parse error
[ 1445.348895][    T9] usb 1-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[ 1445.378281][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1445.398800][    T9] usb 1-1: Product: syz
[ 1445.408162][    T9] usb 1-1: Manufacturer: syz
[ 1445.412910][    T9] usb 1-1: SerialNumber: syz
[ 1445.426660][    T9] usb 1-1: config 0 descriptor??
[ 1445.439663][    T9] gspca_main: sonixj-2.14.0 probing 0c45:613e
[ 1445.462213][T25581] loop8: detected capacity change from 0 to 8
[ 1445.483812][T15371] plantronics 0003:047F:FFFF.005C: unbalanced collection at end of report description
[ 1445.498089][T21588]  loop8: [CUMANA/ADFS] p1 [ADFS] p1
[ 1445.508753][T21588] loop8: partition table partially beyond EOD, truncated
[ 1445.509615][T15371] plantronics 0003:047F:FFFF.005C: parse failed
[ 1445.535010][T15371] plantronics 0003:047F:FFFF.005C: probe with driver plantronics failed with error -22
[ 1445.628983][T21588] loop8: p1 size 3004527350 extends beyond EOD, truncated
[ 1445.638163][T25584] FAULT_INJECTION: forcing a failure.
[ 1445.638163][T25584] name failslab, interval 1, probability 0, space 0, times 0
[ 1445.651620][T25584] CPU: 1 UID: 0 PID: 25584 Comm: syz.3.5943 Not tainted syzkaller #0 PREEMPT(full) 
[ 1445.651649][T25584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1445.651664][T25584] Call Trace:
[ 1445.651674][T25584]  <TASK>
[ 1445.651683][T25584]  dump_stack_lvl+0x189/0x250
[ 1445.651720][T25584]  ? __pfx____ratelimit+0x10/0x10
[ 1445.651747][T25584]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1445.651777][T25584]  ? __pfx__printk+0x10/0x10
[ 1445.651806][T25584]  ? __lock_acquire+0xab9/0xd20
[ 1445.651837][T25584]  should_fail_ex+0x414/0x560
[ 1445.651875][T25584]  should_failslab+0xa8/0x100
[ 1445.651901][T25584]  kmem_cache_alloc_noprof+0x74/0x6e0
[ 1445.651934][T25584]  ? skb_clone+0x212/0x3a0
[ 1445.651964][T25584]  skb_clone+0x212/0x3a0
[ 1445.651991][T25584]  __netlink_deliver_tap+0x404/0x850
[ 1445.652038][T25584]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1445.652082][T25584]  netlink_deliver_tap+0x19c/0x1b0
[ 1445.652116][T25584]  netlink_unicast+0x7fa/0x9e0
[ 1445.652156][T25584]  ? __pfx_netlink_unicast+0x10/0x10
[ 1445.652190][T25584]  ? netlink_sendmsg+0x642/0xb30
[ 1445.652208][T25584]  ? skb_put+0x11b/0x210
[ 1445.652233][T25584]  netlink_sendmsg+0x805/0xb30
[ 1445.652264][T25584]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1445.652289][T25584]  ? aa_sock_msg_perm+0xf1/0x1d0
[ 1445.652324][T25584]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1445.652347][T25584]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1445.652370][T25584]  __sock_sendmsg+0x21c/0x270
[ 1445.652401][T25584]  ____sys_sendmsg+0x505/0x830
[ 1445.652431][T25584]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1445.652469][T25584]  ? import_iovec+0x74/0xa0
[ 1445.652502][T25584]  ___sys_sendmsg+0x21f/0x2a0
[ 1445.652528][T25584]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1445.652591][T25584]  ? __fget_files+0x2a/0x420
[ 1445.652612][T25584]  ? __fget_files+0x3a0/0x420
[ 1445.652645][T25584]  __x64_sys_sendmsg+0x19b/0x260
[ 1445.652672][T25584]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1445.652706][T25584]  ? __pfx_ksys_write+0x10/0x10
[ 1445.652742][T25584]  ? do_syscall_64+0xbe/0xfa0
[ 1445.652777][T25584]  do_syscall_64+0xfa/0xfa0
[ 1445.652803][T25584]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1445.652832][T25584]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1445.652854][T25584]  ? clear_bhb_loop+0x60/0xb0
[ 1445.652882][T25584]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1445.652905][T25584] RIP: 0033:0x7f8b6a58efc9
[ 1445.652924][T25584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1445.652944][T25584] RSP: 002b:00007f8b6b3cd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1445.652968][T25584] RAX: ffffffffffffffda RBX: 00007f8b6a7e5fa0 RCX: 00007f8b6a58efc9
[ 1445.652986][T25584] RDX: 0000000000000090 RSI: 00002000000002c0 RDI: 0000000000000003
[ 1445.653000][T25584] RBP: 00007f8b6b3cd090 R08: 0000000000000000 R09: 0000000000000000
[ 1445.653014][T25584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1445.653028][T25584] R13: 00007f8b6a7e6038 R14: 00007f8b6a7e5fa0 R15: 00007f8b6a90fa28
[ 1445.653064][T25584]  </TASK>
[ 1445.993970][T25581]  loop8: [CUMANA/ADFS] p1 [ADFS] p1
[ 1446.025524][T25581] loop8: partition table partially beyond EOD, truncated
[ 1446.052620][T25581] loop8: p1 size 3004527350 extends beyond EOD, truncated
[ 1446.222731][T21588] udevd[21588]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[ 1446.267242][T21588] udevd[21588]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[ 1446.356503][T25589] netlink: 'syz.0.5939': attribute type 27 has an invalid length.
[ 1446.407993][T25593] netlink: 'syz.3.5944': attribute type 1 has an invalid length.
[ 1446.416919][T25593] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1446.475137][    T9] gspca_sonixj: reg_w1 err -110
[ 1446.480111][    T9] sonixj 1-1:0.0: probe with driver sonixj failed with error -110
[ 1447.083834][    T9] usb 2-1: USB disconnect, device number 91
[ 1447.521440][T25604] vivid-000: disconnect
[ 1447.590467][  T982] usb 1-1: USB disconnect, device number 112
[ 1448.188407][T25600] vivid-000: reconnect
[ 1448.393570][T25620] netlink: 'syz.0.5955': attribute type 4 has an invalid length.
[ 1448.572446][   T30] kauditd_printk_skb: 33 callbacks suppressed
[ 1448.572465][   T30] audit: type=1326 audit(1761538242.219:3534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25623 comm="syz.1.5957" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7c1e98efc9 code=0x0
[ 1448.648829][   T30] audit: type=1326 audit(1761538242.259:3535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25623 comm="syz.1.5957" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7c1e98efc9 code=0x0
[ 1448.671130][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1448.679904][   T30] audit: type=1326 audit(1761538242.269:3536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25623 comm="syz.1.5957" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7c1e98efc9 code=0x0
[ 1448.701835][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1448.789838][T25636] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5962'.
[ 1448.886861][T25639] netlink: 'syz.0.5961': attribute type 1 has an invalid length.
[ 1448.911368][T25639] batman_adv: batadv0: Adding interface: ip6erspan0
[ 1448.918462][T25639] batman_adv: batadv0: The MTU of interface ip6erspan0 is too small (1422) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1448.948414][T25640] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5962'.
[ 1449.019386][T25639] batman_adv: batadv0: Not using interface ip6erspan0 (retrying later): interface not active
[ 1449.224835][T12137] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[ 1449.494567][T12137] usb 5-1: Using ep0 maxpacket: 16
[ 1449.528500][T12137] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1449.547064][T12137] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 64, changing to 7
[ 1449.559054][T12137] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1449.570841][T12137] usb 5-1: config 1 interface 1 has no altsetting 0
[ 1449.582111][T12137] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1449.805704][T12137] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1449.813769][T12137] usb 5-1: Product: syz
[ 1449.861792][T12137] usb 5-1: Manufacturer: 뗍猐淚ևᨚ㣔늰焂콁⨡抺
[ 1449.900826][T12137] usb 5-1: SerialNumber: syz
[ 1450.087533][T25661] loop8: detected capacity change from 0 to 8
[ 1450.095578][T25661] Dev loop8: unable to read RDB block 8
[ 1450.101186][T25661]  loop8: unable to read partition table
[ 1450.111056][T25661] loop8: partition table beyond EOD, truncated
[ 1450.134960][T25661] loop_reread_partitions: partition scan of loop8 (�被x�^>��� ) failed (rc=-5)
[ 1450.167195][T12137] usb 5-1: 2:1 : UAC_AS_GENERAL descriptor not found
[ 1450.310828][T12137] usb 5-1: USB disconnect, device number 2
[ 1450.426362][T21681] udevd[21681]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1451.036269][T25670] netlink: 'syz.4.5970': attribute type 4 has an invalid length.
[ 1451.156018][  T982] usb 1-1: new full-speed USB device number 113 using dummy_hcd
[ 1451.336510][  T982] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1451.353455][  T982] usb 1-1: not running at top speed; connect to a high speed hub
[ 1451.386443][  T982] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1451.406462][  T982] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1451.434538][  T982] usb 1-1: string descriptor 0 read error: -22
[ 1451.454731][  T982] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1451.463915][  T982] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1451.512881][  T982] usb 1-1: 0:2 : does not exist
[ 1451.736012][T25683] vivid-000: disconnect
[ 1451.874668][T15371] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[ 1452.299390][T25674] vivid-000: reconnect
[ 1452.334613][T15371] usb 5-1: Using ep0 maxpacket: 32
[ 1452.379655][T15371] usb 5-1: config 0 has an invalid interface number: 196 but max is 0
[ 1452.523808][T15371] usb 5-1: config 0 has no interface number 0
[ 1452.561850][T15371] usb 5-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[ 1452.655354][T15371] usb 5-1: config 0 interface 196 has no altsetting 0
[ 1452.682976][T15371] usb 5-1: New USB device found, idVendor=05ac, idProduct=77c2, bcdDevice=eb.3a
[ 1452.713059][T15371] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1452.734325][T15371] usb 5-1: Product: syz
[ 1452.744304][T15371] usb 5-1: Manufacturer: syz
[ 1452.749292][T15371] usb 5-1: SerialNumber: syz
[ 1452.773857][T25668] loop6: detected capacity change from 0 to 524288000
[ 1452.806209][T15371] usb 5-1: config 0 descriptor??
[ 1452.812006][T25686] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1452.844779][T25668] loop6: detected capacity change from 524288000 to 0
[ 1452.864843][  T982] usb 1-1: 5:0: failed to get current value for ch 0 (-22)
[ 1452.947104][  T982] usb 1-1: 5:0: cannot get min/max values for control 3 (id 5)
[ 1452.987671][  T982] usb 1-1: 5:0: failed to get current value for ch 1 (-22)
[ 1453.092692][  T982] usb 1-1: 5:0: cannot get min/max values for control 3 (id 5)
[ 1453.151519][  T982] usb 1-1: USB disconnect, device number 113
[ 1453.431985][T15371] ipheth 5-1:0.196: ipheth_enable_ncm: usb_control_msg: 0
[ 1453.509478][T15371] ipheth 5-1:0.196: Apple iPhone USB Ethernet device attached
[ 1453.841360][T25701] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5980'.
[ 1454.242029][T25709] 8021q: adding VLAN 0 to HW filter on device batadv1
[ 1454.293227][T25709] team0: Port device batadv1 added
[ 1454.624885][T12137] usb 2-1: new high-speed USB device number 92 using dummy_hcd
[ 1454.784781][T12137] usb 2-1: Using ep0 maxpacket: 32
[ 1454.792081][T12137] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xC4, changing to 0x84
[ 1454.840452][T12137] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1454.907929][T12137] usb 2-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=51.16
[ 1454.928637][T12137] usb 2-1: New USB device strings: Mfr=154, Product=2, SerialNumber=3
[ 1455.006286][    T9] usb 5-1: USB disconnect, device number 3
[ 1455.014107][T12137] usb 2-1: Product: syz
[ 1455.035765][T12137] usb 2-1: Manufacturer: syz
[ 1455.061601][T12137] usb 2-1: SerialNumber: syz
[ 1455.109774][T12137] usb 2-1: config 0 descriptor??
[ 1455.160604][    T9] ipheth 5-1:0.196: Apple iPhone USB Ethernet now disconnected
[ 1455.205724][T12137] usb 2-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[ 1455.383918][   T24] usb 2-1: USB disconnect, device number 92
[ 1455.391044][ T3002] usb 2-1: Failed to submit usb control message: -71
[ 1455.421203][ T3002] usb 2-1: unable to send the bmi data to the device: -71
[ 1455.440345][ T3002] usb 2-1: unable to get target info from device
[ 1455.456883][ T3002] usb 2-1: could not get target info (-71)
[ 1455.470520][ T3002] usb 2-1: could not probe fw (-71)
[ 1455.547037][T15371] usb 1-1: new high-speed USB device number 114 using dummy_hcd
[ 1455.683319][    T9] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[ 1455.744649][T15371] usb 1-1: Using ep0 maxpacket: 32
[ 1455.781222][T15371] usb 1-1: config 1 has an invalid interface number: 236 but max is 0
[ 1455.790881][T15371] usb 1-1: config 1 has no interface number 0
[ 1455.821074][T15371] usb 1-1: config 1 interface 236 altsetting 2 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1455.838359][    T9] usb 5-1: Using ep0 maxpacket: 8
[ 1455.863884][    T9] usb 5-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[ 1455.924481][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1455.932543][    T9] usb 5-1: Product: syz
[ 1455.938072][T25749] netlink: 64 bytes leftover after parsing attributes in process `syz.2.5991'.
[ 1455.945005][T15371] usb 1-1: config 1 interface 236 altsetting 2 bulk endpoint 0x5 has invalid maxpacket 0
[ 1455.980542][    T9] usb 5-1: Manufacturer: syz
[ 1455.991392][    T9] usb 5-1: SerialNumber: syz
[ 1456.004207][T15371] usb 1-1: config 1 interface 236 has no altsetting 0
[ 1456.023822][    T9] usb 5-1: config 0 descriptor??
[ 1456.026873][T15371] usb 1-1: config 1 has an invalid interface number: 236 but max is 0
[ 1456.037158][T15371] usb 1-1: config 1 has no interface number 0
[ 1456.042164][    T9] gspca_main: sonixj-2.14.0 probing 0c45:613e
[ 1456.054278][T15371] usb 1-1: config 1 interface 236 altsetting 2 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1456.121062][T15371] usb 1-1: config 1 interface 236 altsetting 2 bulk endpoint 0x5 has invalid maxpacket 0
[ 1456.140801][T15371] usb 1-1: config 1 interface 236 has no altsetting 0
[ 1456.217230][T15371] usb 1-1: New USB device found, idVendor=0451, idProduct=5152, bcdDevice=aa.6a
[ 1456.228399][T15371] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1456.290754][T15371] usb 1-1: Product: syz
[ 1456.322261][T15371] usb 1-1: Manufacturer: syz
[ 1456.408783][T15371] usb 1-1: SerialNumber: syz
[ 1456.422142][T15371] ti_usb_3410_5052 1-1:1.236: TI USB 5052 2 port adapter converter detected
[ 1456.772545][T25765] netlink: 'syz.4.5988': attribute type 27 has an invalid length.
[ 1456.859184][T25767] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1456.916361][T25767] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1456.940785][T25767] xt_socket: unknown flags 0xc
[ 1457.005263][    T9] gspca_sonixj: reg_w1 err -110
[ 1457.010239][    T9] sonixj 5-1:0.0: probe with driver sonixj failed with error -110
[ 1458.361650][  T982] usb 5-1: USB disconnect, device number 4
[ 1458.607758][T25788] sctp: [Deprecated]: syz.3.6000 (pid 25788) Use of int in max_burst socket option.
[ 1458.607758][T25788] Use struct sctp_assoc_value instead
[ 1458.728378][T25791] netlink: 'syz.4.5999': attribute type 27 has an invalid length.
[ 1458.984280][T15371] usb 1-1: USB disconnect, device number 114
[ 1459.448833][T25791] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1459.456409][T25791] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1459.638660][T25809] netlink: 'syz.0.6002': attribute type 1 has an invalid length.
[ 1460.723075][T25791] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1460.746816][T25791] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1461.084997][T12137] usb 2-1: new high-speed USB device number 93 using dummy_hcd
[ 1461.167995][T25791] bridge1: left promiscuous mode
[ 1461.173127][T25791] bridge1: left allmulticast mode
[ 1461.218236][T25797] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1461.274521][T12137] usb 2-1: Using ep0 maxpacket: 32
[ 1461.281040][T12137] usb 2-1: config 1 has an invalid interface number: 236 but max is 0
[ 1461.289996][T12137] usb 2-1: config 1 has no interface number 0
[ 1461.303153][T12137] usb 2-1: config 1 interface 236 altsetting 2 endpoint 0x5 has invalid maxpacket 21593, setting to 1024
[ 1461.350700][T12137] usb 2-1: config 1 interface 236 altsetting 2 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1461.353359][T25800] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1461.370983][T25800] 8021q: adding VLAN 0 to HW filter on device team0
[ 1461.382256][T12137] usb 2-1: config 1 interface 236 has no altsetting 0
[ 1461.389728][T25800] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1461.406637][T12137] usb 2-1: config 1 has an invalid interface number: 236 but max is 0
[ 1461.420176][T12137] usb 2-1: config 1 has no interface number 0
[ 1461.438462][T22158] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1461.470843][T25797] tipc: Disabling bearer <eth:syzkaller0>
[ 1461.482567][T22158] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1461.502586][T12137] usb 2-1: config 1 interface 236 altsetting 2 endpoint 0x5 has invalid maxpacket 21593, setting to 1024
[ 1461.542500][T22158] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1461.583298][T22158] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1461.643010][T12137] usb 2-1: config 1 interface 236 altsetting 2 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1461.690480][T12137] usb 2-1: config 1 interface 236 has no altsetting 0
[ 1461.754063][T12137] usb 2-1: New USB device found, idVendor=0451, idProduct=5152, bcdDevice=aa.6a
[ 1461.771839][T12137] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1461.803955][T12137] usb 2-1: Product: syz
[ 1461.813087][T12137] usb 2-1: Manufacturer: syz
[ 1461.818602][T12137] usb 2-1: SerialNumber: syz
[ 1461.836917][T25823] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1461.846591][T12137] ti_usb_3410_5052 2-1:1.236: TI USB 5052 2 port adapter converter detected
[ 1461.860926][T25837] loop5: detected capacity change from 0 to 7
[ 1461.894926][T23532] usb 1-1: new high-speed USB device number 115 using dummy_hcd
[ 1461.896394][T25837]  loop5:
[ 1461.915809][T25837] loop5: partition table partially beyond EOD, truncated
[ 1462.124937][T23532] usb 1-1: Using ep0 maxpacket: 32
[ 1462.143918][T23532] usb 1-1: config 0 has an invalid interface number: 215 but max is 0
[ 1462.165236][T23532] usb 1-1: config 0 has no interface number 0
[ 1462.183143][T23532] usb 1-1: New USB device found, idVendor=1608, idProduct=0301, bcdDevice=f1.24
[ 1462.193936][T23532] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1462.208818][T23532] usb 1-1: Product: syz
[ 1462.217168][T23532] usb 1-1: Manufacturer: syz
[ 1462.223201][T23532] usb 1-1: SerialNumber: syz
[ 1462.243411][T23532] usb 1-1: config 0 descriptor??
[ 1462.270593][T25843] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6004'.
[ 1462.281906][T23532] io_ti 1-1:0.215: required endpoints missing
[ 1462.294483][T25843] sch_fq: defrate 4294967293 ignored.
[ 1462.553968][T25851] loop8: detected capacity change from 0 to 8
[ 1462.575260][T21681]  loop8: [CUMANA/ADFS] p1 [ADFS] p1
[ 1462.581794][T21681] loop8: partition table partially beyond EOD, truncated
[ 1462.602225][T21681] loop8: p1 size 3004527350 extends beyond EOD, truncated
[ 1462.633261][T25851]  loop8: [CUMANA/ADFS] p1 [ADFS] p1
[ 1462.639243][T25851] loop8: partition table partially beyond EOD, truncated
[ 1462.647234][T25851] loop8: p1 size 3004527350 extends beyond EOD, truncated
[ 1462.855819][T21681] udevd[21681]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[ 1462.908258][T25853] tipc: Started in network mode
[ 1462.921542][T25853] tipc: Node identity ce0f6fb769bd, cluster identity 4711
[ 1462.932538][T21681] udevd[21681]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[ 1462.946090][T25853] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1462.959952][T25853] syzkaller0: entered promiscuous mode
[ 1462.984709][T23532] usb 1-1: USB disconnect, device number 115
[ 1462.986401][T25853] syzkaller0: entered allmulticast mode
[ 1463.079934][T25853] syzkaller0: mtu less than device minimum
[ 1463.092195][T25853] @: entered allmulticast mode
[ 1463.101641][T25852] tipc: Resetting bearer <eth:syzkaller0>
[ 1463.121249][T25852] tipc: Disabling bearer <eth:syzkaller0>
[ 1463.216832][T25852] @: left allmulticast mode
[ 1463.387917][T25858] loop8: detected capacity change from 0 to 8
[ 1463.434569][T25858] Dev loop8: unable to read RDB block 8
[ 1463.474579][T25858]  loop8: unable to read partition table
[ 1463.511320][T25858] loop8: partition table beyond EOD, truncated
[ 1463.519504][T25858] loop_reread_partitions: partition scan of loop8 (�被x�^>��� ) failed (rc=-5)
[ 1463.716607][T25814] usb 2-1: USB disconnect, device number 93
[ 1463.799983][T25864] netlink: 'syz.3.6017': attribute type 1 has an invalid length.
[ 1464.129564][T25864] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1464.690988][T25875] netlink: 148 bytes leftover after parsing attributes in process `syz.0.6018'.
[ 1465.518042][T25875] syz.0.6018 (25875): drop_caches: 2
[ 1465.905306][T25885] loop5: detected capacity change from 0 to 7
[ 1465.927361][T25885]  loop5:
[ 1465.935087][T25885] loop5: partition table partially beyond EOD, truncated
[ 1466.208536][T20970] Bluetooth: hci2: command 0x0406 tx timeout
[ 1466.407115][T25895] loop8: detected capacity change from 0 to 8
[ 1466.422469][T25895]  loop8: [CUMANA/ADFS] p1 [ADFS] p1
[ 1466.435329][T25895] loop8: partition table partially beyond EOD, truncated
[ 1466.474094][T25895] loop8: p1 size 3004527350 extends beyond EOD, truncated
[ 1466.818402][T12137] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[ 1466.847616][T21681] udevd[21681]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[ 1466.984572][T12137] usb 5-1: Using ep0 maxpacket: 8
[ 1467.007061][T12137] usb 5-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[ 1467.016666][T12137] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1467.024814][T12137] usb 5-1: Product: syz
[ 1467.029728][T12137] usb 5-1: Manufacturer: syz
[ 1467.034352][T12137] usb 5-1: SerialNumber: syz
[ 1467.082590][T12137] usb 5-1: config 0 descriptor??
[ 1467.098119][T12137] gspca_main: sonixj-2.14.0 probing 0c45:613e
[ 1467.555154][T25916] vivid-000: disconnect
[ 1467.562104][T25915] vivid-000: reconnect
[ 1467.753990][T25926] netlink: 'syz.4.6027': attribute type 27 has an invalid length.
[ 1467.995370][T12137] gspca_sonixj: reg_w1 err -110
[ 1468.000461][T12137] sonixj 5-1:0.0: probe with driver sonixj failed with error -110
[ 1468.755475][T12137] usb 3-1: new high-speed USB device number 44 using dummy_hcd
[ 1468.870531][T25948] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6042'.
[ 1469.047127][T12137] usb 3-1: Using ep0 maxpacket: 16
[ 1469.113516][T12137] usb 3-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1469.170773][T12137] usb 3-1: config 0 interface 0 has no altsetting 0
[ 1469.197106][T12137] usb 3-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[ 1469.222820][T12137] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1469.360171][T12137] usb 3-1: config 0 descriptor??
[ 1469.690779][T25806] usb 5-1: USB disconnect, device number 5
[ 1469.888969][T12137] nzxt-smart2 0003:1E71:2009.005D: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.2-1/input0
[ 1470.008066][T25963] binder: 25961:25963 ioctl 5016 0 returned -22
[ 1470.293127][T25941] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1470.305547][T25941] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1470.381946][T15338] usb 3-1: USB disconnect, device number 44
[ 1470.986023][T25984] netlink: 32 bytes leftover after parsing attributes in process `syz.1.6053'.
[ 1471.247415][T25989] netlink: 32 bytes leftover after parsing attributes in process `syz.1.6053'.
[ 1471.417983][T25996] xt_bpf: check failed: parse error
[ 1471.474562][T12137] usb 4-1: new full-speed USB device number 6 using dummy_hcd
[ 1471.665277][T12137] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1471.733654][T12137] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1471.840495][T12137] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[ 1471.916245][T12137] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1471.947110][T12137] usb 4-1: SerialNumber: syz
[ 1472.070324][T12137] usb 4-1: 0:2 : does not exist
[ 1472.095412][T12137] usb 4-1: unit 255 not found!
[ 1472.643868][T26026] loop9: detected capacity change from 0 to 7
[ 1472.674960][T26026] Dev loop9: unable to read RDB block 7
[ 1472.690914][T26026]  loop9: AHDI p4
[ 1472.694832][T26026] loop9: partition table partially beyond EOD, truncated
[ 1473.211797][T26044] macsec1: entered promiscuous mode
[ 1473.219009][T26044] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[ 1473.243741][T26044] netdevsim netdevsim4 netdevsim0: left promiscuous mode
[ 1473.328891][T26045] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6068'.
[ 1473.363851][T26045] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6068'.
[ 1473.468066][T15338] usb 3-1: new high-speed USB device number 45 using dummy_hcd
[ 1473.520570][T26049] xt_bpf: check failed: parse error
[ 1473.674764][T15338] usb 3-1: Using ep0 maxpacket: 8
[ 1473.930629][T15338] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[ 1473.954547][T15338] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 8490, setting to 1024
[ 1473.966874][T15338] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 1024
[ 1474.105159][T25818] usb 1-1: new high-speed USB device number 116 using dummy_hcd
[ 1474.153547][T15338] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1474.293730][T15338] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40
[ 1474.308955][T15338] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1474.318852][T15338] usb 3-1: Product: syz
[ 1474.324226][T15338] usb 3-1: Manufacturer: syz
[ 1474.329154][T15338] usb 3-1: SerialNumber: syz
[ 1474.337997][T26038] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[ 1474.346121][T26038] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[ 1474.485778][T25818] usb 1-1: Using ep0 maxpacket: 32
[ 1474.502116][T25818] usb 1-1: config 1 has an invalid interface number: 236 but max is 0
[ 1474.510624][T25818] usb 1-1: config 1 has no interface number 0
[ 1474.520818][T25818] usb 1-1: config 1 interface 236 altsetting 2 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1474.696426][T15338] cdc_ether 3-1:1.0: probe with driver cdc_ether failed with error -71
[ 1474.742590][T15338] usbtest 3-1:1.0: Linux user mode ISO test driver
[ 1474.749375][T15338] usbtest 3-1:1.0: high-speed {control bulk-in bulk-out} tests (+alt)
[ 1474.757818][T25818] usb 1-1: config 1 interface 236 altsetting 2 bulk endpoint 0x5 has invalid maxpacket 0
[ 1474.772649][T25818] usb 1-1: config 1 interface 236 has no altsetting 0
[ 1474.792407][T15338] usb 3-1: USB disconnect, device number 45
[ 1474.835173][T25818] usb 1-1: config 1 has an invalid interface number: 236 but max is 0
[ 1474.850356][T25818] usb 1-1: config 1 has no interface number 0
[ 1474.867439][T25818] usb 1-1: config 1 interface 236 altsetting 2 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1474.884243][T25818] usb 1-1: config 1 interface 236 altsetting 2 bulk endpoint 0x5 has invalid maxpacket 0
[ 1474.895431][T25818] usb 1-1: config 1 interface 236 has no altsetting 0
[ 1474.910115][T25818] usb 1-1: New USB device found, idVendor=0451, idProduct=5152, bcdDevice=aa.6a
[ 1474.920328][T25818] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1474.929570][T25818] usb 1-1: Product: syz
[ 1474.937393][T25818] usb 1-1: Manufacturer: syz
[ 1474.947638][T25818] usb 1-1: SerialNumber: syz
[ 1474.976511][T25818] ti_usb_3410_5052 1-1:1.236: TI USB 5052 2 port adapter converter detected
[ 1475.837157][T12137] usb 4-1: USB disconnect, device number 6
[ 1475.852506][T26062] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1476.136813][T26062] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1476.295435][   T30] audit: type=1326 audit(1761538269.909:3537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26077 comm="syz.1.6078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1476.380202][   T30] audit: type=1326 audit(1761538269.909:3538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26077 comm="syz.1.6078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1476.444649][T25818] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[ 1476.471767][   T30] audit: type=1326 audit(1761538269.909:3539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26077 comm="syz.1.6078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1476.495093][   T30] audit: type=1326 audit(1761538269.909:3540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26077 comm="syz.1.6078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1476.544020][   T30] audit: type=1326 audit(1761538269.909:3541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26077 comm="syz.1.6078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1476.627834][T25818] usb 4-1: Using ep0 maxpacket: 16
[ 1476.638706][T25818] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1476.660561][T25818] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1476.697875][   T30] audit: type=1326 audit(1761538269.999:3542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26077 comm="syz.1.6078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1476.700637][T25818] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2c2e, bcdDevice= 0.00
[ 1476.723426][T26063] xt_socket: unknown flags 0xc
[ 1476.783290][T25818] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1476.818591][T25818] usb 4-1: config 0 descriptor??
[ 1476.899713][   T30] audit: type=1326 audit(1761538269.999:3543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26077 comm="syz.1.6078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1476.984942][   T30] audit: type=1326 audit(1761538270.029:3544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26077 comm="syz.1.6078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1477.024893][   T30] audit: type=1326 audit(1761538270.029:3545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26077 comm="syz.1.6078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1477.112909][   T30] audit: type=1326 audit(1761538270.029:3546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26077 comm="syz.1.6078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f7c1e98efc9 code=0x7ffc0000
[ 1477.247453][T25818] lua 0003:1E7D:2C2E.005E: hidraw0: USB HID v0.00 Device [HID 1e7d:2c2e] on usb-dummy_hcd.3-1/input0
[ 1477.389857][T26095] tipc: Enabling of bearer <ib:K�2> rejected, failed to enable media
[ 1477.396526][  T982] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[ 1477.438539][T25818] usb 4-1: USB disconnect, device number 7
[ 1477.556628][  T982] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1477.572341][  T982] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1477.581635][  T982] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[ 1477.585008][T25806] usb 2-1: new high-speed USB device number 94 using dummy_hcd
[ 1477.591012][  T982] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1477.609614][  T982] usb 5-1: config 0 descriptor??
[ 1477.629083][  T982] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[ 1477.636033][  T982] dvb-usb: bulk message failed: -22 (3/0)
[ 1477.644971][  T982] dvb-usb: will use the device's hardware PID filter (table count: 16).
[ 1477.656085][  T982] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[ 1477.663311][  T982] usb 5-1: media controller created
[ 1477.671818][  T982] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1477.690387][  T982] dvb-usb: bulk message failed: -22 (6/0)
[ 1477.698318][  T982] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[ 1477.708659][  T982] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb5/5-1/input/input157
[ 1477.723186][  T982] dvb-usb: schedule remote query interval to 150 msecs.
[ 1477.731753][  T982] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[ 1477.774984][T25806] usb 2-1: Using ep0 maxpacket: 8
[ 1477.782966][T25806] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1477.792381][T25806] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xEE, changing to 0x8E
[ 1477.804829][T25806] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 7
[ 1477.816198][T25806] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[ 1477.826017][T25806] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1477.836087][T25806] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xC has invalid wMaxPacketSize 0
[ 1477.845893][T25806] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xC has invalid maxpacket 0
[ 1477.856069][T25806] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[ 1477.867531][T25806] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xCB, changing to 0x8B
[ 1477.879456][T25806] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1477.885298][  T982] dvb-usb: bulk message failed: -22 (1/0)
[ 1477.893331][T25806] usb 2-1: New USB device found, idVendor=0763, idProduct=1002, bcdDevice=5f.84
[ 1477.906523][T25806] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1477.911478][  T982] dvb-usb: error while querying for an remote control event.
[ 1477.914663][T25806] usb 2-1: Product: syz
[ 1477.914684][T25806] usb 2-1: Manufacturer: syz
[ 1477.914702][T25806] usb 2-1: SerialNumber: syz
[ 1477.941962][T25806] usb 2-1: config 0 descriptor??
[ 1477.962891][T25806] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[ 1477.982768][T23532] usb 5-1: USB disconnect, device number 6
[ 1478.007857][T23532] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[ 1478.101452][T26099] netlink: 64 bytes leftover after parsing attributes in process `syz.3.6084'.
[ 1478.157032][T21608] udevd[21608]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1478.158925][T25806] usb 2-1: USB disconnect, device number 94
[ 1478.292550][T26101] loop8: detected capacity change from 0 to 8
[ 1478.301400][T26101] Dev loop8: unable to read RDB block 8
[ 1478.311840][T26101]  loop8: unable to read partition table
[ 1478.318071][T26101] loop8: partition table beyond EOD, truncated
[ 1478.322985][T12137] usb 1-1: USB disconnect, device number 116
[ 1478.325103][T26101] loop_reread_partitions: partition scan of loop8 (�被x�^>��� ) failed (rc=-5)
[ 1478.544796][T26109] loop9: detected capacity change from 0 to 7
[ 1478.565126][T26109] Dev loop9: unable to read RDB block 7
[ 1478.582382][T26113] usb usb8: usbfs: process 26113 (syz.3.6088) did not claim interface 0 before use
[ 1478.640031][T26109]  loop9: AHDI p4
[ 1478.656480][T26109] loop9: partition table partially beyond EOD, truncated
[ 1479.135774][T26135] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1479.175734][T26135] syzkaller0: entered promiscuous mode
[ 1479.181258][T26135] syzkaller0: entered allmulticast mode
[ 1479.855568][T26135] syzkaller0: mtu less than device minimum
[ 1479.874219][T26145] syz_tun: entered allmulticast mode
[ 1479.892678][T26134] tipc: Resetting bearer <eth:syzkaller0>
[ 1480.036515][T26134] tipc: Disabling bearer <eth:syzkaller0>
[ 1480.156276][T26134] syz_tun: left allmulticast mode
[ 1480.411742][T26160] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1480.541197][T26163] loop8: detected capacity change from 0 to 8
[ 1480.593301][T26163] Dev loop8: unable to read RDB block 8
[ 1480.648703][T26163]  loop8: unable to read partition table
[ 1480.674964][T25806] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[ 1480.716722][T26163] loop8: partition table beyond EOD, truncated
[ 1480.758300][T26163] loop_reread_partitions: partition scan of loop8 (�被x�^>��� ) failed (rc=-5)
[ 1480.825074][T26165] xt_bpf: check failed: parse error
[ 1480.904588][T25806] usb 5-1: Using ep0 maxpacket: 32
[ 1480.922173][T25806] usb 5-1: config 1 has an invalid interface number: 236 but max is 0
[ 1480.937742][T25806] usb 5-1: config 1 has no interface number 0
[ 1480.988208][T25806] usb 5-1: config 1 interface 236 altsetting 2 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1481.015971][T25806] usb 5-1: config 1 interface 236 altsetting 2 bulk endpoint 0x5 has invalid maxpacket 0
[ 1481.026172][T25806] usb 5-1: config 1 interface 236 has no altsetting 0
[ 1481.034716][T25806] usb 5-1: config 1 has an invalid interface number: 236 but max is 0
[ 1481.046540][T25806] usb 5-1: config 1 has no interface number 0
[ 1481.052682][T25806] usb 5-1: config 1 interface 236 altsetting 2 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1481.087330][T25806] usb 5-1: config 1 interface 236 altsetting 2 bulk endpoint 0x5 has invalid maxpacket 0
[ 1481.116661][T25806] usb 5-1: config 1 interface 236 has no altsetting 0
[ 1481.136561][T25806] usb 5-1: New USB device found, idVendor=0451, idProduct=5152, bcdDevice=aa.6a
[ 1481.146145][T25814] usb 1-1: new high-speed USB device number 117 using dummy_hcd
[ 1481.175251][T25806] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1481.183477][T25806] usb 5-1: Product: syz
[ 1481.197999][T25806] usb 5-1: Manufacturer: syz
[ 1481.214485][T25806] usb 5-1: SerialNumber: syz
[ 1481.254372][T25806] ti_usb_3410_5052 5-1:1.236: TI USB 5052 2 port adapter converter detected
[ 1481.345252][T25814] usb 1-1: Using ep0 maxpacket: 16
[ 1481.374991][T25814] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1481.404605][T25814] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1481.439588][T25814] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1481.492535][T25814] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1481.684803][T26189] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1481.686720][T25814] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1481.695254][T26189] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1481.848076][T26195] xt_socket: unknown flags 0xc
[ 1481.874801][T25814] usb 1-1: config 0 descriptor??
[ 1482.348930][T26167] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6104'.
[ 1482.814308][T26204] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1482.885099][T25814] usbhid 1-1:0.0: can't add hid device: -71
[ 1482.891266][T25814] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1482.931041][T25814] usb 1-1: USB disconnect, device number 117
[ 1483.592540][T25814] usb 1-1: new high-speed USB device number 118 using dummy_hcd
[ 1483.682547][T12137] usb 5-1: USB disconnect, device number 7
[ 1483.766707][T25814] usb 1-1: config index 0 descriptor too short (expected 2084, got 36)
[ 1483.798850][T25814] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1483.843080][T25814] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1483.914685][T25814] usb 1-1: New USB device found, idVendor=0079, idProduct=0006, bcdDevice= 0.00
[ 1483.968693][T25814] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1484.003011][T25814] usb 1-1: config 0 descriptor??
[ 1484.056664][T26223] sctp: [Deprecated]: syz.3.6120 (pid 26223) Use of int in max_burst socket option deprecated.
[ 1484.056664][T26223] Use struct sctp_assoc_value instead
[ 1484.274895][T23532] usb 3-1: new high-speed USB device number 46 using dummy_hcd
[ 1484.454648][T23532] usb 3-1: Using ep0 maxpacket: 32
[ 1484.461993][T23532] usb 3-1: config 1 has an invalid interface number: 236 but max is 0
[ 1484.471919][T23532] usb 3-1: config 1 has no interface number 0
[ 1484.622444][T23532] usb 3-1: config 1 interface 236 altsetting 2 endpoint 0x5 has invalid maxpacket 21593, setting to 1024
[ 1484.678043][T26214] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6115'.
[ 1484.708036][T23532] usb 3-1: config 1 interface 236 altsetting 2 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1484.745683][T23532] usb 3-1: config 1 interface 236 has no altsetting 0
[ 1484.753778][T23532] usb 3-1: config 1 has an invalid interface number: 236 but max is 0
[ 1484.762843][T23532] usb 3-1: config 1 has no interface number 0
[ 1484.792730][T23532] usb 3-1: config 1 interface 236 altsetting 2 endpoint 0x5 has invalid maxpacket 21593, setting to 1024
[ 1484.815394][T23532] usb 3-1: config 1 interface 236 altsetting 2 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1484.935524][T23532] usb 3-1: config 1 interface 236 has no altsetting 0
[ 1484.966265][T23532] usb 3-1: New USB device found, idVendor=0451, idProduct=5152, bcdDevice=aa.6a
[ 1484.975832][T23532] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1484.992226][T23532] usb 3-1: Product: syz
[ 1485.001379][T23532] usb 3-1: Manufacturer: syz
[ 1485.009728][T23532] usb 3-1: SerialNumber: syz
[ 1485.043718][T26225] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1485.075015][T23532] ti_usb_3410_5052 3-1:1.236: TI USB 5052 2 port adapter converter detected
[ 1485.299559][T26243] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1485.914851][T25812] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[ 1485.957885][T26249] loop5: detected capacity change from 0 to 7
[ 1485.991698][T25814] usbhid 1-1:0.0: can't add hid device: -71
[ 1486.023989][T21681] Dev loop5: unable to read RDB block 7
[ 1486.029855][T21681]  loop5: unable to read partition table
[ 1486.035988][T21681] loop5: partition table beyond EOD, truncated
[ 1486.043186][T26249] Dev loop5: unable to read RDB block 7
[ 1486.063232][T26249]  loop5: unable to read partition table
[ 1486.064365][T25814] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1486.078670][T25812] usb 4-1: Using ep0 maxpacket: 32
[ 1486.087887][T26251] netlink: 40 bytes leftover after parsing attributes in process `syz.0.6129'.
[ 1486.099149][T25812] usb 4-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[ 1486.116216][T26249] loop5: partition table beyond EOD, truncated
[ 1486.116421][T25812] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1486.145346][T25814] usb 1-1: USB disconnect, device number 118
[ 1486.159358][T26249] loop_reread_partitions: partition scan of loop5 (�被x������ ) failed (rc=-5)
[ 1486.179482][T25812] usb 4-1: config 0 descriptor??
[ 1486.205794][T25812] as10x_usb: device has been detected
[ 1486.233310][T25812] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[ 1486.282633][T25812] usb 4-1: DVB: registering adapter 2 frontend 0 (nBox DVB-T Dongle)...
[ 1486.371950][T25812] as10x_usb: error during firmware upload part1
[ 1486.382074][T25812] Registered device nBox DVB-T Dongle
[ 1486.906955][T26247] ip6t_srh: unknown srh match flags  5F28
[ 1487.118293][  T982] usb 4-1: USB disconnect, device number 8
[ 1487.151640][  T982] Unregistered device nBox DVB-T Dongle
[ 1487.157001][  T982] as10x_usb: device has been disconnected
[ 1487.174578][T23532] usb 3-1: USB disconnect, device number 46
[ 1487.367430][T26274] bridge_slave_0: vlans aren't supported yet for dev_uc|mc_add()
[ 1487.865903][T26280] netlink: 'syz.0.6136': attribute type 1 has an invalid length.
[ 1488.051770][T26280] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1488.109903][T26284] netlink: 'syz.3.6138': attribute type 4 has an invalid length.
[ 1488.260141][T26295] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6137'.
[ 1488.277701][T26295] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6137'.
[ 1488.305858][T26296] netlink: 'syz.1.6139': attribute type 1 has an invalid length.
[ 1488.715651][T26296] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1489.004821][T23532] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[ 1489.211768][T23532] usb 5-1: config 0 has an invalid interface number: 47 but max is 0
[ 1489.223367][T23532] usb 5-1: config 0 has no interface number 0
[ 1489.406540][T23532] usb 5-1: config 0 interface 47 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1489.482025][T23532] usb 5-1: config 0 has an invalid interface number: 47 but max is 0
[ 1489.522610][T23532] usb 5-1: config 0 has no interface number 0
[ 1489.551446][T26304] netlink: 'syz.3.6142': attribute type 11 has an invalid length.
[ 1489.582730][T23532] usb 5-1: config 0 interface 47 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1489.644883][T23532] usb 5-1: config 0 has an invalid interface number: 47 but max is 0
[ 1489.661535][T26304] netlink: 36 bytes leftover after parsing attributes in process `syz.3.6142'.
[ 1489.691917][T23532] usb 5-1: config 0 has no interface number 0
[ 1489.708568][T23532] usb 5-1: config 0 interface 47 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1489.755271][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1489.761649][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1489.776049][T23532] usb 5-1: config 0 has an invalid interface number: 47 but max is 0
[ 1489.784265][T23532] usb 5-1: config 0 has no interface number 0
[ 1489.822916][T23532] usb 5-1: config 0 interface 47 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1489.874878][T23532] usb 5-1: config 0 has an invalid interface number: 47 but max is 0
[ 1489.883018][T23532] usb 5-1: config 0 has no interface number 0
[ 1489.889294][T23532] usb 5-1: config 0 interface 47 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1489.947694][T23532] usb 5-1: New USB device found, idVendor=1519, idProduct=0443, bcdDevice=15.97
[ 1489.961192][T23532] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1490.004588][T23532] usb 5-1: Product: syz
[ 1490.008816][T23532] usb 5-1: Manufacturer: syz
[ 1490.032408][T23532] usb 5-1: SerialNumber: syz
[ 1490.075829][T26307] loop9: detected capacity change from 0 to 7
[ 1490.095994][T21681] Dev loop9: unable to read RDB block 7
[ 1490.102599][T23532] usb 5-1: config 0 descriptor??
[ 1490.107856][T21681]  loop9: AHDI p4
[ 1490.127866][T21681] loop9: partition table partially beyond EOD, truncated
[ 1490.170795][T26307] Dev loop9: unable to read RDB block 7
[ 1490.176898][T26307]  loop9: AHDI p4
[ 1490.183854][T26307] loop9: partition table partially beyond EOD, truncated
[ 1490.191442][T23532] cdc_ncm 5-1:0.47: CDC Union missing and no IAD found
[ 1490.218857][T23532] cdc_ncm 5-1:0.47: bind() failure
[ 1490.428310][T26295] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1490.438845][T26295] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1490.748511][T26318] loop8: detected capacity change from 0 to 8
[ 1490.758260][T21681] Dev loop8: unable to read RDB block 8
[ 1490.768685][T21681]  loop8: unable to read partition table
[ 1490.775145][T21681] loop8: partition table beyond EOD, truncated
[ 1490.783465][T26318] Dev loop8: unable to read RDB block 8
[ 1490.805347][T26318]  loop8: unable to read partition table
[ 1490.813803][T26318] loop8: partition table beyond EOD, truncated
[ 1490.834798][T26318] loop_reread_partitions: partition scan of loop8 (�被x�^>��� ) failed (rc=-5)
[ 1490.956848][T25812] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[ 1491.117783][T25812] usb 4-1: New USB device found, idVendor=055f, idProduct=c420, bcdDevice=6a.33
[ 1491.145411][T25812] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1491.173067][T25812] usb 4-1: config 0 descriptor??
[ 1491.194718][T23532] usb 2-1: new high-speed USB device number 95 using dummy_hcd
[ 1491.197852][T25812] gspca_main: sunplus-2.14.0 probing 055f:c420
[ 1491.359175][T23532] usb 2-1: config 0 has an invalid interface number: 150 but max is 0
[ 1491.367585][T23532] usb 2-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[ 1491.376473][T23532] usb 2-1: config 0 has an invalid descriptor of length 1, skipping remainder of the config
[ 1491.387081][T23532] usb 2-1: config 0 has no interface number 0
[ 1491.393235][T23532] usb 2-1: config 0 interface 150 altsetting 0 endpoint 0xB has invalid maxpacket 1024, setting to 64
[ 1491.404633][T23532] usb 2-1: config 0 interface 150 altsetting 0 endpoint 0xA has an invalid bInterval 128, changing to 11
[ 1491.416373][T23532] usb 2-1: config 0 interface 150 altsetting 0 has an endpoint descriptor with address 0x1A, changing to 0xA
[ 1491.417265][T12137] usb 1-1: new high-speed USB device number 119 using dummy_hcd
[ 1491.428159][T23532] usb 2-1: config 0 interface 150 altsetting 0 has a duplicate endpoint with address 0xA, skipping
[ 1491.428193][T23532] usb 2-1: config 0 interface 150 altsetting 0 has 5 endpoint descriptors, different from the interface descriptor's value: 7
[ 1491.431593][T23532] usb 2-1: Dual-Role OTG device on HNP port
[ 1491.467234][T23532] usb 2-1: New USB device found, idVendor=045e, idProduct=007a, bcdDevice=75.42
[ 1491.476500][T23532] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1491.484939][T23532] usb 2-1: Product: syz
[ 1491.489172][T23532] usb 2-1: Manufacturer: syz
[ 1491.493795][T23532] usb 2-1: SerialNumber: syz
[ 1491.502456][T23532] usb 2-1: config 0 descriptor??
[ 1491.575997][T12137] usb 1-1: device descriptor read/64, error -71
[ 1491.638428][T25812] gspca_sunplus: reg_w_riv err -71
[ 1491.651478][T25812] sunplus 4-1:0.0: probe with driver sunplus failed with error -71
[ 1491.679041][T25812] usb 4-1: USB disconnect, device number 9
[ 1491.773616][T26322] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1491.783166][T26322] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1491.815756][T12137] usb 1-1: new high-speed USB device number 120 using dummy_hcd
[ 1491.954580][T12137] usb 1-1: device descriptor read/64, error -71
[ 1492.065424][T12137] usb usb1-port1: attempt power cycle
[ 1492.349090][T23532] pegasus 2-1:0.150: probe with driver pegasus failed with error -71
[ 1492.404985][T12137] usb 1-1: new high-speed USB device number 121 using dummy_hcd
[ 1492.410042][T23532] usb 2-1: USB disconnect, device number 95
[ 1492.435158][T12137] usb 1-1: device descriptor read/8, error -71
[ 1492.453654][T25812] usb 5-1: USB disconnect, device number 8
[ 1492.494738][T26336] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6154'.
[ 1492.530366][T26334] bond4: option lp_interval: invalid value (0)
[ 1492.537286][T26336] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6154'.
[ 1492.547943][T26336] netlink: 'syz.1.6154': attribute type 19 has an invalid length.
[ 1492.557883][T26334] bond4: option lp_interval: allowed values 1 - 2147483647
[ 1492.578043][T26334] bond4 (unregistering): Released all slaves
[ 1492.662102][T26339] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6154'.
[ 1492.676456][T12137] usb 1-1: new high-speed USB device number 122 using dummy_hcd
[ 1492.715277][T12137] usb 1-1: device descriptor read/8, error -71
[ 1492.843512][T12137] usb usb1-port1: unable to enumerate USB device
[ 1492.905348][T25812] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[ 1492.998342][T26355] netlink: 36 bytes leftover after parsing attributes in process `syz.1.6162'.
[ 1493.045002][T25812] usb 5-1: device descriptor read/64, error -71
[ 1493.169296][T26353] vivid-000: disconnect
[ 1493.182043][T26352] vivid-000: reconnect
[ 1493.296857][T25812] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[ 1493.304444][T26361] netlink: 64 bytes leftover after parsing attributes in process `syz.3.6164'.
[ 1493.455030][T25812] usb 5-1: device descriptor read/64, error -71
[ 1493.503996][T26364] syzkaller1: entered promiscuous mode
[ 1493.526713][T26364] syzkaller1: entered allmulticast mode
[ 1493.565257][T25812] usb usb5-port1: attempt power cycle
[ 1493.814531][T23532] usb 3-1: new high-speed USB device number 47 using dummy_hcd
[ 1493.924925][T25812] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[ 1493.950942][T25812] usb 5-1: device descriptor read/8, error -71
[ 1493.984931][T23532] usb 3-1: Using ep0 maxpacket: 8
[ 1493.998360][T23532] usb 3-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[ 1494.008469][T23532] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1494.018722][T23532] usb 3-1: Product: syz
[ 1494.023592][T23532] usb 3-1: Manufacturer: syz
[ 1494.030607][T23532] usb 3-1: SerialNumber: syz
[ 1494.041186][T23532] usb 3-1: config 0 descriptor??
[ 1494.067859][T23532] gspca_main: sonixj-2.14.0 probing 0c45:613e
[ 1494.146322][T26382] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1494.185567][T26382] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1494.197730][T26382] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1494.207424][T25812] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[ 1494.236046][T25812] usb 5-1: device descriptor read/8, error -71
[ 1494.243247][T26382] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1494.253096][T26382] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1494.264296][T26382] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1494.275808][T26382] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1494.286482][T26382] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1494.299292][T26382] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1494.311196][T26382] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1494.355402][T25812] usb usb5-port1: unable to enumerate USB device
[ 1494.484850][T25806] usb 1-1: new high-speed USB device number 123 using dummy_hcd
[ 1494.711467][   T30] kauditd_printk_skb: 31 callbacks suppressed
[ 1494.711488][   T30] audit: type=1326 audit(1761538288.359:3578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26390 comm="syz.3.6176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1494.753285][T26393] netlink: 'syz.2.6166': attribute type 27 has an invalid length.
[ 1494.764597][T15338] usb 2-1: new low-speed USB device number 96 using dummy_hcd
[ 1494.772551][   T30] audit: type=1326 audit(1761538288.359:3579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26390 comm="syz.3.6176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1494.798173][   T30] audit: type=1326 audit(1761538288.399:3580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26390 comm="syz.3.6176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1494.824990][   T30] audit: type=1326 audit(1761538288.399:3581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26390 comm="syz.3.6176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1494.861399][   T30] audit: type=1326 audit(1761538288.399:3582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26390 comm="syz.3.6176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1494.885714][   T30] audit: type=1326 audit(1761538288.399:3583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26390 comm="syz.3.6176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1494.909594][   T30] audit: type=1326 audit(1761538288.399:3584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26390 comm="syz.3.6176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1494.935112][   T30] audit: type=1326 audit(1761538288.409:3585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26390 comm="syz.3.6176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1494.958723][   T30] audit: type=1326 audit(1761538288.409:3586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26390 comm="syz.3.6176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1494.983398][T23532] gspca_sonixj: reg_w1 err -110
[ 1494.989319][T15338] usb 2-1: config 9 has an invalid interface number: 1 but max is 0
[ 1494.998326][T23532] sonixj 3-1:0.0: probe with driver sonixj failed with error -110
[ 1495.007939][T15338] usb 2-1: config 9 has no interface number 0
[ 1495.017032][T15338] usb 2-1: config 9 interface 1 has no altsetting 0
[ 1495.026785][   T30] audit: type=1326 audit(1761538288.409:3587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26390 comm="syz.3.6176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b6a58efc9 code=0x7ffc0000
[ 1495.034207][T15338] usb 2-1: string descriptor 0 read error: -22
[ 1495.056949][T15338] usb 2-1: New USB device found, idVendor=2040, idProduct=b140, bcdDevice=75.36
[ 1495.066882][T15338] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1495.088642][T15338] cx231xx 2-1:9.1: New device   @ 1.5 Mbps (2040:b140) with 1 interfaces
[ 1495.110707][T15338] cx231xx 2-1:9.1: Not found matching IAD interface
[ 1495.323876][T26389] usb usb7: usbfs: process 26389 (syz.1.6175) did not claim interface 2 before use
[ 1495.485486][   T31] INFO: task kworker/u8:3:50 blocked for more than 143 seconds.
[ 1495.495079][   T31]       Not tainted syzkaller #0
[ 1495.500077][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1495.524146][   T31] task:kworker/u8:3    state:D stack:21128 pid:50    tgid:50    ppid:2      task_flags:0x4208160 flags:0x00080000
[ 1495.554437][   T31] Workqueue: netns cleanup_net
[ 1495.564376][T26396] syzkaller1: entered promiscuous mode
[ 1495.566238][   T31] Call Trace:
[ 1495.579151][   T31]  <TASK>
[ 1495.583507][T26396] syzkaller1: entered allmulticast mode
[ 1495.592522][   T31]  __schedule+0x1798/0x4cc0
[ 1495.597936][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1495.610254][   T31]  ? __pfx___schedule+0x10/0x10
[ 1495.616338][   T31]  ? schedule+0x91/0x360
[ 1495.620810][   T31]  schedule+0x165/0x360
[ 1495.625730][   T31]  rxrpc_destroy_all_calls+0x55e/0x660
[ 1495.631557][   T31]  ? __pfx_rxrpc_destroy_all_calls+0x10/0x10
[ 1495.638388][   T31]  ? __pfx_var_wake_function+0x10/0x10
[ 1495.644225][   T31]  ? rxrpc_net+0x23/0x240
[ 1495.650381][   T31]  rxrpc_exit_net+0x6f/0xc0
[ 1495.655701][   T31]  ops_undo_list+0x49a/0x990
[ 1495.660517][   T31]  ? __pfx_ops_undo_list+0x10/0x10
[ 1495.666549][   T31]  ? do_raw_spin_unlock+0x122/0x240
[ 1495.671982][   T31]  cleanup_net+0x4d8/0x820
[ 1495.758235][   T31]  ? __pfx_cleanup_net+0x10/0x10
[ 1495.763277][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1495.768630][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[ 1495.774526][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[ 1495.780344][   T31]  process_scheduled_works+0xae1/0x17b0
[ 1495.787745][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1495.793804][   T31]  worker_thread+0x8a0/0xda0
[ 1495.798754][   T31]  kthread+0x711/0x8a0
[ 1495.803780][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 1495.810150][   T31]  ? __pfx_kthread+0x10/0x10
[ 1495.815014][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1495.820266][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1495.826863][   T31]  ? __pfx_kthread+0x10/0x10
[ 1495.831812][   T31]  ret_from_fork+0x4bc/0x870
[ 1495.839767][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1495.848795][   T31]  ? __switch_to_asm+0x39/0x70
[ 1495.857473][T26401] random: crng reseeded on system resumption
[ 1495.905756][   T31]  ? __switch_to_asm+0x33/0x70
[ 1495.914213][   T31]  ? __pfx_kthread+0x10/0x10
[ 1495.921644][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1495.929109][   T31]  </TASK>
[ 1495.934304][   T31] 
[ 1495.934304][   T31] Showing all locks held in the system:
[ 1495.937362][T15338] usb 2-1: USB disconnect, device number 96
[ 1495.948268][   T31] 1 lock held by khungtaskd/31:
[ 1495.953260][   T31]  #0: ffffffff8df3d2e0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 1495.963462][   T31] 3 locks held by kworker/u8:3/50:
[ 1495.982027][   T31]  #0: ffff88801aedf148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1495.995772][   T31]  #1: ffffc90000bb7ba0 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1496.006921][   T31]  #2: ffffffff8f2be2b0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf7/0x820
[ 1496.016910][   T31] 2 locks held by getty/5592:
[ 1496.022706][   T31]  #0: ffff888033aa50a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1496.035471][   T31]  #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[ 1496.046082][   T31] 3 locks held by kworker/u9:1/13300:
[ 1496.054469][   T31]  #0: ffff8880599c8148 ((wq_completion)hci3){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1496.069710][   T31]  #1: ffffc90011757ba0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1496.085493][   T31]  #2: ffff888048cf4dc8 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1d4/0x3a0
[ 1496.100194][   T31] 3 locks held by kworker/1:11/15338:
[ 1496.107996][   T31]  #0: ffff88823be1c148 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1496.128272][   T31]  #1: ffffc9000ba17ba0 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1496.143307][   T31]  #2: ffff888027a1e198 (&dev->mutex){....}-{4:4}, at: hub_event+0x184/0x4a20
[ 1496.161961][   T31] 6 locks held by kworker/0:7/25806:
[ 1496.175181][   T31]  #0: ffff88823be1c148 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1496.189471][   T31]  #1: ffffc900045b7ba0 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1496.202873][   T31]  #2: ffff888027974198 (&dev->mutex){....}-{4:4}, at: hub_event+0x184/0x4a20
[ 1496.221736][   T31]  #3: ffff888052456518 (&port_dev->status_lock){+.+.}-{4:4}, at: hub_event+0x21b8/0x4a20
[ 1496.232086][   T31]  #4: ffff888027844e68 (hcd->address0_mutex){+.+.}-{4:4}, at: hub_event+0x21e5/0x4a20
[ 1496.243274][   T31]  #5: ffffffff8eb93330 (ehci_cf_port_reset_rwsem){.+.+}-{4:4}, at: hub_port_reset+0x163/0x1750
[ 1496.255443][   T31] 2 locks held by syz.0.6177/26395:
[ 1496.261072][   T31]  #0: ffff88805d5a5288 (&sb->s_type->i_mutex_key#11){+.+.}-{4:4}, at: sock_close+0x9b/0x240
[ 1496.272293][   T31]  #1: ffffffff8df42d78 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x3b9/0x730
[ 1496.291939][   T31] 2 locks held by syz.3.6178/26399:
[ 1496.298008][   T31] 
[ 1496.300806][   T31] =============================================
[ 1496.300806][   T31] 
[ 1496.310731][   T31] NMI backtrace for cpu 0
[ 1496.310751][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[ 1496.310775][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1496.310789][   T31] Call Trace:
[ 1496.310798][   T31]  <TASK>
[ 1496.310808][   T31]  dump_stack_lvl+0x189/0x250
[ 1496.310846][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1496.310877][   T31]  ? __pfx__printk+0x10/0x10
[ 1496.310916][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[ 1496.310942][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1496.310962][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1496.311002][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1496.311052][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 1496.311071][   T31]  watchdog+0xf60/0xfa0
[ 1496.311090][   T31]  ? watchdog+0x1e2/0xfa0
[ 1496.311109][   T31]  kthread+0x711/0x8a0
[ 1496.311133][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1496.311150][   T31]  ? __pfx_kthread+0x10/0x10
[ 1496.311172][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1496.311190][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1496.311208][   T31]  ? __pfx_kthread+0x10/0x10
[ 1496.311229][   T31]  ret_from_fork+0x4bc/0x870
[ 1496.311247][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1496.311268][   T31]  ? __switch_to_asm+0x39/0x70
[ 1496.311280][   T31]  ? __switch_to_asm+0x33/0x70
[ 1496.311294][   T31]  ? __pfx_kthread+0x10/0x10
[ 1496.311314][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1496.311340][   T31]  </TASK>
[ 1496.311365][   T31] Sending NMI from CPU 0 to CPUs 1:
[ 1496.461241][    C1] NMI backtrace for cpu 1
[ 1496.461259][    C1] CPU: 1 UID: 0 PID: 26399 Comm: syz.3.6178 Not tainted syzkaller #0 PREEMPT(full) 
[ 1496.461286][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1496.461297][    C1] RIP: 0010:check_preemption_disabled+0x59/0x120
[ 1496.461329][    C1] Code: 8b 0d bb f4 27 07 48 3b 4c 24 08 0f 85 cc 00 00 00 48 83 c4 10 5b 41 5e 41 5f 5d c3 cc cc cc cc cc 48 c7 04 24 00 00 00 00 9c <8f> 04 24 f7 04 24 00 02 00 00 74 c8 65 4c 8b 3c 25 08 20 6e 92 41
[ 1496.461345][    C1] RSP: 0018:ffffc9000db8fb98 EFLAGS: 00000046
[ 1496.461362][    C1] RAX: 0000000000000001 RBX: 0000000000000287 RCX: 0000000080000000
[ 1496.461375][    C1] RDX: 0000000000000000 RSI: ffffffff8d720264 RDI: ffffffff8bbf05e0
[ 1496.461387][    C1] RBP: ffffc9000db8fe10 R08: 0000000000000000 R09: ffffffff820d5bf0
[ 1496.461400][    C1] R10: dffffc0000000000 R11: fffff52001b71ecd R12: 00002000002d69c0
[ 1496.461414][    C1] R13: ffffffff820d5bf0 R14: ffff88804a902ce0 R15: ffff88802b33dac0
[ 1496.461429][    C1] FS:  00007f8b6b3ac6c0(0000) GS:ffff88812623e000(0000) knlGS:0000000000000000
[ 1496.461444][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1496.461457][    C1] CR2: 00002000002d6030 CR3: 0000000046634000 CR4: 00000000003526f0
[ 1496.461473][    C1] Call Trace:
[ 1496.461480][    C1]  <TASK>
[ 1496.461491][    C1]  lock_release+0xbc/0x3e0
[ 1496.461509][    C1]  ? __might_fault+0xb0/0x130
[ 1496.461538][    C1]  do_recvmmsg+0x330/0x770
[ 1496.461563][    C1]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1496.461589][    C1]  ? count_memcg_event_mm+0x21/0x260
[ 1496.461620][    C1]  __x64_sys_recvmmsg+0x190/0x240
[ 1496.461641][    C1]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 1496.461663][    C1]  ? do_syscall_64+0xbe/0xfa0
[ 1496.461689][    C1]  do_syscall_64+0xfa/0xfa0
[ 1496.461710][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1496.461733][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1496.461751][    C1]  ? clear_bhb_loop+0x60/0xb0
[ 1496.461772][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1496.461789][    C1] RIP: 0033:0x7f8b6a58efc9
[ 1496.461805][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1496.461821][    C1] RSP: 002b:00007f8b6b3ac038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1496.461839][    C1] RAX: ffffffffffffffda RBX: 00007f8b6a7e6090 RCX: 00007f8b6a58efc9
[ 1496.461853][    C1] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000004
[ 1496.461865][    C1] RBP: 00007f8b6a611f91 R08: 0000000000000000 R09: 0000000000000000
[ 1496.461878][    C1] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 1496.461889][    C1] R13: 00007f8b6a7e6128 R14: 00007f8b6a7e6090 R15: 00007f8b6a90fa28
[ 1496.461911][    C1]  </TASK>
[ 1496.959461][T20970] Bluetooth: hci3: command 0x0406 tx timeout
[ 1497.088532][T23532] usb 3-1: USB disconnect, device number 47