last executing test programs:

18m50.818236922s ago: executing program 3 (id=995):
syz_open_dev$tty20(0xc, 0x4, 0x0)
pipe2(&(0x7f0000000080)={<r0=>0xffffffffffffffff}, 0x4800)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400000008"], 0x50)
openat(0xffffffffffffff9c, 0x0, 0x143441, 0x98)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000040), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="0100259d7000fcdbdf250200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x4800}, 0x8004)
write$nci(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="414601", @ANYRES32=r0], 0x4)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x50)

18m48.649338037s ago: executing program 3 (id=1000):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="07000000040000000802000001", @ANYBLOB], 0x50)
r4 = fcntl$dupfd(r1, 0x406, r3)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), r5)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r5, 0x8933, &(0x7f0000000080)={'wg2\x00', <r7=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r5, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000d00)={&(0x7f0000000880)=ANY=[@ANYBLOB="2c020000", @ANYRES16=r6, @ANYBLOB="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", @ANYRES32=r7], 0x22c}}, 0x0)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000280)=<r8=>0x0, &(0x7f0000000300)=0x4)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000000340)={'wg1\x00', <r9=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r4, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x64, r6, 0x400, 0x70bd26, 0x25dfdbfb, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg2\x00'}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r8}, @WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r9}]}, 0x64}, 0x1, 0x0, 0x0, 0x10044}, 0x4c800)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000021000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/disk', 0x0, 0x0)
r11 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/disk', 0x121a02, 0x0)
sendfile(r11, r10, 0x0, 0x8)

18m46.540336527s ago: executing program 3 (id=1007):
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c25"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r0}, 0x18)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000140)={0x28, 0x0, 0x2710, @my=0x1}, 0x10)

18m45.548234214s ago: executing program 3 (id=1011):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000f00)={0x11, 0x7, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000300000018110000", @ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000240)={0x0, 0x8000, 0x0, 0x0, 0x0, "7f12ddc1517600"})
r3 = syz_open_pts(r2, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000200)=0x2)
read(r3, 0x0, 0x2006)
close_range(r1, 0xffffffffffffffff, 0x0)

18m44.714039965s ago: executing program 3 (id=1013):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan1\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={0x0}}, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)={0x58, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11}, @IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x4}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x58}}, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x149002)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r1, 0xc08c5334, &(0x7f0000000140)={0xee, 0x4, 0x0, 'queue1\x00', 0xe402})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
getpriority(0x2, 0x0)
sendmsg$IPSET_CMD_TEST(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x38, 0xb, 0x6, 0x801, 0x0, 0x0, {0x6, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x10, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x38}}, 0x20004804)

18m43.523605201s ago: executing program 3 (id=1020):
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000080), 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00'}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a38000000000a01010000000000000000050000000900010073797a30000000000c00044000000000000000040c0004400000000000000005bc000000030a01030000000000000000050000000900010073797a300000000008000540000000004c0008800c00014000000000000000010c0002400000000000f6ff000c00024000000000000016cc0c21014000000000000100010c00024000000000000000140c00014000000000000000090900030073797a32000000000b00070066696c7465"], 0x130}}, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$TIOCL_BLANKSCREEN(0xffffffffffffffff, 0x4b4b, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r3}, &(0x7f0000000000), &(0x7f00000005c0)=r4}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a31000000001400078005001500070000000800124000000000050005000200000005000400000000000d000300686173683a6e6574"], 0x5c}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="4400000009060102000000e0ffffff00000000000900020073797a310000000005000100070000001c0007800c00018008000140ffffffff0c00028008000140"], 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', 0xffffffffffffffff, 0x0, 0x192}, 0x18)

18m27.149621487s ago: executing program 32 (id=1020):
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000080), 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00'}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a38000000000a01010000000000000000050000000900010073797a30000000000c00044000000000000000040c0004400000000000000005bc000000030a01030000000000000000050000000900010073797a300000000008000540000000004c0008800c00014000000000000000010c0002400000000000f6ff000c00024000000000000016cc0c21014000000000000100010c00024000000000000000140c00014000000000000000090900030073797a32000000000b00070066696c7465"], 0x130}}, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$TIOCL_BLANKSCREEN(0xffffffffffffffff, 0x4b4b, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r3}, &(0x7f0000000000), &(0x7f00000005c0)=r4}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a31000000001400078005001500070000000800124000000000050005000200000005000400000000000d000300686173683a6e6574"], 0x5c}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="4400000009060102000000e0ffffff00000000000900020073797a310000000005000100070000001c0007800c00018008000140ffffffff0c00028008000140"], 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', 0xffffffffffffffff, 0x0, 0x192}, 0x18)

11m17.591300956s ago: executing program 1 (id=2324):
epoll_create1(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
syz_emit_ethernet(0x3b6, &(0x7f00000020c0)={@multicast, @random="caf66222e6aa", @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "430093", 0x380, 0x3a, 0xff, @dev, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x41, 0x0, 0x10000000, [{0x19, 0xa, "a78ce5400659808000ffffc0fe4023493b87aafaffffffffffffff2373247202fa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "00000000000000000800ee00"}, {0xe, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23a5026e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c61bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0822a18b79f7c5eba31fb68b2d734a6671e27182aee4df24a4a5c6186c0d3baa75af390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5acaa556b9f30dcab2b90aa235a670670ffc5dc49dfb58d89310000000000"}, {0x18, 0xb, "d47ae6e8805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f018"}, {0x21, 0x7, "fcf98a142ec1876de04ca4682fb87790a7855b4e6fa3b20519bbaa8a029cee00b8d3485efe68a356f542b043059ff05912fb0000000000"}, {0x0, 0x14, "5e14f0e74d2d52cfb3f27fafa40845f90b6dfc87c6905bbc94d33e4575c853105f543e8e8a8a73b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb1fdc5fd020000000000006ae88c001a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fb632dbfeb532188b196e213408c"}, {0x0, 0x5, "d517fb2cf1a4ffdc1b7e018dff16e70b8b14c4b7a94fe18e88605aa6be1a02a326a6bce65e81ed"}]}}}}}}, 0x0)
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(0x0, 0x32)
fgetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioprio_set$pid(0x3, 0x0, 0x4007)
fsopen(0x0, 0x0)
syz_emit_vhci(0x0, 0x9)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
close(0xffffffffffffffff)

11m16.195159726s ago: executing program 1 (id=2326):
r0 = syz_open_dev$sndpcmp(&(0x7f0000000b00), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc2604110, &(0x7f0000000040)={0x0, [[0x10000000, 0x0, 0x0, 0x20000000, 0x0, 0xb, 0x2000], [0x10000, 0x0, 0x3, 0x200000, 0x0, 0x0, 0x9], [0x7]], '\x00', [{}, {0xd}, {}, {0x0, 0x8}, {0x3, 0x7}, {0x8000000, 0x4005f, 0x1}, {0x1}, {0x1}, {}, {}, {}, {0x0, 0x400000}], '\x00', 0x1000})
r1 = add_key$keyring(&(0x7f0000000400), &(0x7f0000000440)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000000)='trusted\x00', &(0x7f00000002c0)={'syz', 0x3}, &(0x7f0000000300)="e59b25fcdee573b49bf946f7c031c4714bb5d4437d826aeb884a48a56341454a962b82fea87a7f45aa13f08488414856667b92f15845c8539b117e01881da9583ab07ece9dc53d7e60f6de55c073d8a85d70409647f915a903bc90207cbeff15896e66e49cd6a3a64eccfb3d33ec3436f02c6861d688b43ddd110bb9c35cd050c84885eca5ed1dc825ff269a22544d8d1590a6f340ff6a6947fac7c130bce409baf10590193f78e2f42ab729ef162753a8e0d1155ce4f396471022444f04b68dc629c66da5febd734df4d38df5160507a965ef1c1f3ce6045a6b796d1c51aa73f3c7ec2e", 0xe4, r1)

11m15.803908635s ago: executing program 1 (id=2331):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x1a0, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = syz_io_uring_setup(0x81f, &(0x7f0000000480)={0x0, 0xbc02, 0x10, 0x0, 0x30f}, &(0x7f00000000c0)=<r2=>0x0, &(0x7f0000000540)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r4 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r4, 0x29, 0x3b, &(0x7f00000000c0)=ANY=[@ANYBLOB='+\x00\x00\x00\x00\x00\x00\x00'], 0x8)
connect$inet6(r4, &(0x7f0000000dc0)={0xa, 0x4e23, 0x400, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3b}}}, 0x1c)
io_uring_register$IORING_UNREGISTER_RING_FDS(r1, 0x15, &(0x7f0000000d40)=[{0x2, 0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000580)=""/165, 0xa5}, {&(0x7f0000000640)=""/173, 0xad}], &(0x7f0000000140)=[0x9, 0x8, 0x4, 0x8, 0x8, 0xffff]}, {0x5, 0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000000700)=""/197, 0xc5}, {&(0x7f00000001c0)=""/9, 0x9}, {&(0x7f0000000340)=""/23, 0x17}, {&(0x7f0000000880)=""/167, 0xa7}, {&(0x7f0000000400)}], &(0x7f0000000440)=[0x80000001, 0x74f, 0x6, 0x7]}, {0x5, 0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000000500)=""/56, 0x38}, {&(0x7f00000009c0)=""/138, 0x8a}, {&(0x7f0000000e00)=""/221, 0xdd}, {&(0x7f0000000b80)=""/233, 0xe9}, {&(0x7f0000000800)=""/11, 0xb}], &(0x7f0000000d00)=[0x3, 0x2, 0x7fffffffffffffff, 0x3, 0x7, 0x8000]}], 0x3)
setsockopt$inet6_IPV6_ADDRFORM(r4, 0x29, 0x1, &(0x7f00000003c0), 0x4)
ioctl$MEDIA_IOC_SETUP_LINK(0xffffffffffffffff, 0xc0347c03, &(0x7f0000000200)={{0x80000000, 0x0, 0xf5a1c2b8e98148d, [0x6, 0x1]}, {0x80000000, 0x0, 0x7, [0xffffffda, 0x9]}, 0x2, [0x5, 0x84000000]})
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000040)=0x14)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000000)=0x5)
ioctl$TIOCVHANGUP(r8, 0x5437, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_GET_REGS(r7, 0x8090ae81, &(0x7f0000000240))
r9 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_FILL_RING(r9, 0x11b, 0x5, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x1})
mount(&(0x7f0000000040)=@nullb, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000080)='cramfs\x00', 0x2a00000, 0x0)

11m14.644977961s ago: executing program 1 (id=2334):
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000200)=0x10)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000700)={0x228, 0x19, 0x1, 0x0, 0x0, {0x1d, 0xd601, 0x9}, [@nested={0x50, 0x12, 0x0, 0x1, [@typed={0x49, 0x121, 0x0, 0x0, @binary="c9a7befe6f6d645a1a11b81b2c4b101c7510e19feecb90ee6bb49f6cc7a2c50fd57c06db1a75df432aa833928a0772effe40e5ff8f5e9ed32d3b477d35b296674f1fe35663"}]}, @nested={0x1c4, 0x6, 0x0, 0x1, [@nested={0x1c0, 0x75, 0x0, 0x1, [@nested={0xc, 0x105, 0x0, 0x1, [@typed={0x4, 0x22}, @typed={0x4, 0x98}]}, @nested={0x4, 0x8}, @typed={0x8, 0xe6, 0x0, 0x0, @fd=r2}, @generic="897a22072687e1d29eb84b27bdf276e1", @nested={0x194, 0x425, 0x0, 0x1, [@nested={0x18d, 0xc7, 0x0, 0x1, [@generic="0e8a1ba9d0d1c3c46f11f097dd31b5ac0d84d4d2b2f914e4192e9f5e09954309143035825e421199ef3742a5289e741571d2ac7ef6550f8c0454460c177a12d8c5", @typed={0x41, 0xe4, 0x0, 0x0, @binary="6423d7fbd06565c156e976ea2705ead6f599a9ab0d0f0b42f23c719ad59cbf301b5dfa5c580b1cc4643e60b078837a9e0bbd915ec517e815e3d158c99e"}, @nested={0x104, 0xc6, 0x0, 0x1, [@nested={0xfd, 0x122, 0x0, 0x1, [@generic="43a60e941cac7f90617a677f3f919392600395a3af658475f7db179b1c003b0273901a71be6ad23b6a96988cbb776483e99346f8d28b06749c7edcc56d7e29feed916175612abc44ac50676778befa191dad4e0209346efe42192c0869a175eddd7074a75382b9e65d5393bfc00800586a792f24f2c2f256ccfd6cc1f37b8549c7a820324d20706d36d5d3a3315b6375877b7cb814557a0711c3a81c7b2715748ae584f3c7fd9662bee874d1558c6885b00da359c284bb9089c5e93db6657588b0b2e05e0b76bdb1ce7623ca627961d4c6fc671fa53e968159", @generic="e96c0df381a14a3c0b3ccaef33d226349e43f34829aab5a8b5ce7563", @nested={0x4, 0x17}]}]}]}]}]}]}]}, 0x228}, 0x1, 0x0, 0x0, 0x5}, 0x0)
syz_usb_connect$uac1(0x4, 0xb2, &(0x7f0000000280)=ANY=[@ANYRESDEC], &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, 0x2, [{0x2c, &(0x7f0000001300)=ANY=[@ANYBLOB="4303a6f9c72535a848c53d496b0606a199b252938a165f1a1afc8f1e2c9c87cab46a97630a7265482f3b1026"]}, {0x1b, &(0x7f0000001380)=@lang_id={0x0, 0x3, 0x459}}]})
r3 = openat$smackfs_change_rule(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
write$binfmt_script(r3, &(0x7f0000000340)={'#! ', './file0', [{0x20, 'WTbB'}, {0x20, '(\xe9\xe6^'}]}, 0x15)
r4 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r4, 0xc004500a, &(0x7f0000001340))
ioctl$SNDCTL_DSP_CHANNELS(r4, 0xc0045006, &(0x7f0000000180)=0x6f)
r5 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
read$dsp(r5, &(0x7f00000002c0)=""/4096, 0x1000)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x1a3)
writev(r6, &(0x7f0000000200)=[{&(0x7f0000000380)='\f', 0x1}], 0x1)
write$dsp(r4, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
syz_usb_connect(0x3, 0x7ba, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000240)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x250, 0x90, 0x6, 0x8, 0x40, 0x74}, 0xdc, &(0x7f00000000c0)=ANY=[@ANYBLOB="050fdc0002c31002690b6092ecaa6f1d4261b1de0e04d227e7ee1b92afcd49b024a87c938d19b1d6d373dd45e0535d004db248285d9a69bf348fd70c5f905be6a16ec42a992c7ffc0d4df9a0e82fca5f4bdbe115d92ee8026c6a94a8f230334f15ffb7b54d3ba41a62f49dd437a67f14a146ad7ae3e612fd9013f43379f67809d423a923c9a86d8ceb543d1e11a11f0d644715bcd1987cb27c89f84f6b236d5c3e4fdfa0c0c706e24f3c4b6651b20fc463cf7ad29339df1421bbe2033c2f6a46ec2b2ccb164cf3f214100402a624da5cf7dc81310d10274bbdce722b"], 0x2, [{0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x44e}}, {0x4, &(0x7f0000000200)=@lang_id={0x4, 0x3, 0xf8ff}}]})

11m13.035859718s ago: executing program 1 (id=2339):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x168)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bind$l2tp(0xffffffffffffffff, &(0x7f00000000c0), 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)={0x3c, 0x0, 0x1, 0x70bd24, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x1}, @ETHTOOL_A_LINKINFO_PHYADDR={0x5, 0x3, 0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20009005}, 0x4000080)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_nanosleep(0x2, 0x0, &(0x7f0000000040)={0x0, 0x989680}, 0x0)
socket$l2tp(0x2, 0x2, 0x73)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r5, &(0x7f0000000000)="3f0000000100f4", 0x7)
openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0)

11m11.899779166s ago: executing program 1 (id=2342):
syz_emit_ethernet(0x75, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, 0x0, 0x0)
sendmsg$SEG6_CMD_SET_TUNSRC(0xffffffffffffffff, 0x0, 0x240048d5)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000)
ioctl$PTP_SYS_OFFSET(0xffffffffffffffff, 0xc0403d08, 0xffffffffffffffff)
syslog(0x2, 0x0, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0xe8)
mount(&(0x7f0000000200)=@nullb, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='hpfs\x00', 0x321021d, 0x0)

11m10.864873694s ago: executing program 33 (id=2342):
syz_emit_ethernet(0x75, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, 0x0, 0x0)
sendmsg$SEG6_CMD_SET_TUNSRC(0xffffffffffffffff, 0x0, 0x240048d5)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000)
ioctl$PTP_SYS_OFFSET(0xffffffffffffffff, 0xc0403d08, 0xffffffffffffffff)
syslog(0x2, 0x0, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0xe8)
mount(&(0x7f0000000200)=@nullb, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='hpfs\x00', 0x321021d, 0x0)

8m48.396145855s ago: executing program 2 (id=2763):
r0 = socket$xdp(0x2c, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000640), r4)
sendmsg$IEEE802154_LLSEC_DEL_KEY(r4, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={0x30, r5, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0xc4}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x4008000}, 0x48004)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000000180)=0x8, 0x4)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', <r7=>0x0})
r8 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r8, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r8, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r9 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r8, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r9, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', <r10=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r8, 0x11b, 0x5, &(0x7f0000000300)=0x1, 0x4)
bind$xdp(r8, &(0x7f0000000100)={0x2c, 0x0, r10}, 0x10)
bind$xdp(r0, &(0x7f0000000240)={0x2c, 0x1, r7, 0x0, r8}, 0x60)
socket$netlink(0x10, 0x3, 0x1)

8m47.310240362s ago: executing program 2 (id=2766):
openat$adsp1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x32, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000480)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f00000001c0)=@gcm_256={{0x304}, "3d8b00", "d4cc4a4423daabeb8e7ba12fe6e1c742a683fa6e58757db76aae864d57fbaf37", "c3650f3f", "5e963dfa951f9b3d"}, 0x38)
sendto$inet6(r2, &(0x7f00000001c0), 0xfffffffffffffede, 0x300, 0x0, 0x3000137)

8m42.75783589s ago: executing program 2 (id=2785):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0x3, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000140)={r1}, 0x4)
r2 = memfd_create(&(0x7f0000000480)='\xff\x00l\x1e\xa0</\x00\x8eO4._\x14zC\x8a\xe8\xe0u\xe0\xff\xf1\xb2\xfd\xf6nz\x05-]\xc2Vk\xaeky\xd3\x83\xe2\xc7\xd3\xe6M^\x98ox\x14\t\xe9Q1\x1dK\x9a\x045\xd37\xb22\xfdD(\xd2\xdd\xa0\xff\x0f\x00\x00\x00\x00\x00\x00v\n\xd8?]k\x14N\x18\xf4\xc2j\xed6g\xfd\xd2\xd4\xe3\x1f\xa6 \xa0\x8d\xb5\x9aE<2`]<\x8cR\xd69\x0fO\xbf\xc3\xbd\xb0\x96\x90\x91k\x86\x1a\x10\xd2\xf5\x8b\xfc\xf4\xd0[\x12\xf5+\x1aS\x02/Yx\xf2jJb\x97\x9c/\x1f5i\xc6\x861\x9a\xff\xc3\xe7\xbfU\xd5\xac\xccB=\x8f\xfd\x84\xeepQ\x93nn\x0f\xc6\xa9?\xad\x8b~\x96@i=G\x9ft\x1d\xcc\xc6Ys7\x7f\x8ehv\xd3$\x13s\xa0\xbfi\xfaFS\xa9=Xe\xf8tI\x15\x882\x8b\x8e-X\xb8\xf2\x9du\x15S^\xec\xce\xfaf$S\x9f\xe7Ed\n\x84\\ u\xd2\x16\xc1\xa5\xa0\xaa\xe8.i\xc8\x0e\vt\xe2\xf1lA\x93\xdd\xce\x8f$\x06v\xbe\xe7\x95nN\xc5\xaa\x1ev\xc6P\x9c\\G&y\x8bYA\xc3}\xd9\x86[\xb2\xf3\x0f\x90%\xcb\x81\xe8\xea\xbcs\x95\xe9\x8eXH\x19m\xdfOY\xf1E9-\xc8\xe7\x13^+(\x034\x82\xafiOO\x14\x8f^\x8c', 0x7)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xa, 0x4d091, r2, 0x0)
fcntl$addseals(r2, 0x409, 0x2)
r3 = openat$udambuf(0xffffff9c, &(0x7f0000000000), 0x2)
ioctl$UDMABUF_CREATE(r3, 0x40187542, &(0x7f0000000040)={r2, 0x1, 0x0, 0x8000})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x10, &(0x7f00000003c0)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0xb, &(0x7f0000000000)=0x2, 0x4)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)=@newtaction={0x6c, 0x1c, 0x1, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x58, 0x1, [@m_nat={0x54, 0x1c, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x100, 0x2, 0x8, 0x8, 0x101}, @remote, @empty, 0xff}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x7}}}}]}]}, 0xffffffffffffffef}, 0x1, 0x0, 0x0, 0x4004880}, 0x0)

8m42.122972152s ago: executing program 2 (id=2788):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000240)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x403, 0x97c1, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x40, 0xb1, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x101, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0xc, 0x1}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000000)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="20010402"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$printer(0xffffffffffffffff, &(0x7f00000000c0)={0x14, &(0x7f0000000280)={0x40, 0xc, 0x5a, {0x5a, 0x6, "aa6f24daa6c08492bba6b900528e3411ec4ad158842ff780533bdbc817adaf1aa40e156859dd33949f016b9047939ca970b98c41b9394388f06731dfb0b0657a828316c3ddd823323f99c30bbdf6c5ca810037b697cae176"}}, &(0x7f0000000340)={0x0, 0x3, 0x3d, @string={0x3d, 0x3, "186bf7168a1e772c8187092ed88811ad22b734cebe083514fb27a164fae7b146181865d6e4124a43a189a7399375949094037d5e54eb079e94331a"}}}, &(0x7f0000000680)={0x34, &(0x7f00000003c0)={0x20, 0xe, 0x66, "219132a1295fc8ea13f8910aeaa5e945672a7ab68cb34c86c81d64713d34a2322b1db463d7d3754067fe489dfa2daf21fdb4a50a08711875d1e9b16bfcdb39c83327fd4b9c3e924ddab372bbe6228a30cfdb44264ab72ae72fb35d978af936fb980fedcb5e33"}, &(0x7f0000000440)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000480)={0x0, 0x8, 0x1, 0x4}, &(0x7f0000000d80)=ANY=[@ANYBLOB="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"], &(0x7f0000000580)={0x20, 0x1, 0x1, 0xe}, &(0x7f00000005c0)={0x20, 0x0, 0x1, 0x55}})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r1 = openat$cgroup_devices(0xffffffffffffffff, &(0x7f0000000000)='devices.deny\x00', 0x2, 0x0)
write$cgroup_devices(r1, &(0x7f0000000d00)=ANY=[@ANYBLOB="632037353a9768a61db0b7fa191250eeaceaf6e2e90b83dddbf25afeaf14824a66159a42306310488a468b040f89fa", @ANYRESDEC], 0xd)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x89901)
move_mount(r2, &(0x7f00000001c0)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
openat$cgroup_pressure(0xffffffffffffffff, &(0x7f00000008c0)='io.pressure\x00', 0x2, 0x0)
chroot(&(0x7f0000000200)='./file0\x00')
madvise(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x19)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
r6 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000413f5f201d0650c16fce0102030109021b00010000100009043300011870fd00090582020002"], 0x0)
syz_usb_control_io$uac1(r6, &(0x7f00000018c0)={0x14, 0xfffffffffffffffe, &(0x7f0000001880)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x807}}}, &(0x7f0000001b80)={0x44, &(0x7f0000001900)={0x0, 0x6, 0x9b, "e74b5e7daef57923009197bf8e9cd64a1f76e72a51202ec269867978639575ea9ccf01d57e2541942e88bf01920efb8c566d39547b08ffdbf8c830b13e53696c0bb0d1374e5b7d4c15c34364fca048b9ec5d8361675afcad2e7a6b099eac7a0816554a64ed9ce6aaadd703eb735b0a3621225d822772e2eeb6725fc4a8383aab7e75a29432f528dc613cce3b1a26a1bef61be0b31313e2263cf15a"}, &(0x7f00000019c0)={0x0, 0xa, 0x1, 0x3}, &(0x7f0000001a00)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000001a40)={0x20, 0x81, 0x3, "ca49db"}, &(0x7f0000001a80)={0x20, 0x82, 0x2, "cb3c"}, &(0x7f0000001ac0)={0x20, 0x83, 0x3, "2990e1"}, &(0x7f00000004c0)={0x20, 0x84, 0x4, '\x00\x00\x00\x00'}, &(0x7f0000001b40)={0x20, 0x85, 0x3, "b66b50"}})
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'geneve0\x00', <r7=>0x0})
sendto$packet(r4, &(0x7f0000000180)="0b032200e0ff25000200475400f6a13bb1000000080086dd4803", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r7}, 0x14)
readv(r5, &(0x7f0000000740)=[{&(0x7f0000000680)=""/107, 0x6b}], 0x1)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r3, 0x6, 0x23, &(0x7f0000000700)={&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, &(0x7f0000000b00)=""/240, 0xf0, 0x0, &(0x7f0000000c00)=""/159, 0x9f}, &(0x7f0000000cc0)=0x40)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xe, 0x3}, {}, {0x5, 0xf}}}, 0x24}}, 0x40004)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="340000003e000900000000000008000003000000040004001c000180180010"], 0x34}}, 0x84)
syz_usb_connect$cdc_ecm(0xc, 0x95, &(0x7f0000000a40)=ANY=[@ANYBLOB="12015002020000402505a1a440000102030109028300010104300509040080020206000807240600006ad905240009000d240f01050000006300030008152412ed00a317a88b045e4f01a607c0ffcb7e392a05241508000c2409000100005f070006042402030c241b0a00090003010200060724140500018009058103ff030207050905820288e656bd28085a6a2c46fe5af4d7000406014409050302ff0303050000"], &(0x7f0000000900)={0xa, &(0x7f0000000780)={0xa, 0x6, 0x300, 0x15, 0x6, 0x5, 0xff, 0x7}, 0xc, &(0x7f00000007c0)={0x5, 0xf, 0xc, 0x1, [@ext_cap={0x7, 0x10, 0x2, 0xe, 0x6, 0xe, 0x6}]}, 0x2, [{0x4, &(0x7f0000000800)=@lang_id={0x4, 0x3, 0x459}}, {0xe4, &(0x7f0000000940)=@string={0xe4, 0x3, "b85f512d10c8a95a97c7ae015ca2741e0f58ad62a6c70f3782147862458a5d3b34e648ea950e0cba5e936df42dd0c501ad67d5024bc65a8a8b2f7c09a9ec3fe8dc49edbee7a1729028fbc215ed132cf1a6e691a06a2a3ccfe7fef7f0711b759b372c811dff3796f20b55235624bf8403c213df4f1532ec145fed2a13e0fe9a26ff100be8e04901ddfbde91dfd6df4bc39915b2758b87036ba86c03957f602192254e100e645b7d77b5d470a646ee2d7a45312064810a18d5c8f4b39ff07a45e204f0bfb4abd2bb2abe03e5be54748279438187773e83508182bf9ab71c378cb6386a"}}]})
pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000600)='./file0/../file0/../file0/../file0\x00')
syz_usb_ep_write(r0, 0x5, 0x2d, &(0x7f0000000080)="f73b7d067bf52a982664f2a61ebfd9a834ac4888ad33840a8e35cac50c44df857b9789767bba1c2037ab24daa2")

8m38.507354205s ago: executing program 2 (id=2799):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, 0x0, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x5)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x75b08000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PPPIOCSMAXCID(0xffffffffffffffff, 0x40047451, &(0x7f0000000340)=0x1)
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x4000000)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8}, 0x48)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x19, &(0x7f0000000700)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffd0}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7fff}}, @map_idx_val={0x18, 0x4, 0x6, 0x0, 0x6, 0x0, 0x0, 0x0, 0xc000000}, @generic={0x66, 0x8}, @printk={@lu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7}}, @exit, @alu={0x6, 0x0, 0x1, 0xa, 0x2, 0x2}, @printk={@x, {}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa, 0x0, 0x0, 0xfffffffe}}]}, &(0x7f0000000240)='syzkaller\x00', 0x3, 0xde, &(0x7f0000000600)=""/222, 0x40f00, 0x48, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xe2}, 0x94)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000040)={r6, r5}, 0xc)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x401, 0x70bd29, 0x0, {0x0, 0x0, 0x0, 0x0, 0x32b, 0x4000}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gtp={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GTP_FD0={0x8, 0x1, @udp=r7}, @IFLA_GTP_FD1={0x8, 0x2, @udp=r7}]}}}]}, 0x40}}, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x1c1842, 0x0)
write$cgroup_devices(0xffffffffffffffff, 0x0, 0xffdd)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r8 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f0000000080)={'vxcan1\x00', <r9=>0x0})
connect$can_bcm(r8, &(0x7f0000000040)={0x1d, r9}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)

8m35.241284603s ago: executing program 2 (id=2804):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'veth1_to_bridge\x00', <r1=>0x0})
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x7, 0xab}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
openat$vimc0(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x32600)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000000000), 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/igmp\x00')
pread64(r6, &(0x7f0000000180)=""/15, 0xfffffe9c, 0xb6)
r7 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
write$proc_mixer(r7, &(0x7f0000000340)=ANY=[], 0x86)
r8 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card0/oss_mixer\x00', 0x0, 0x0)
dup3(r8, r7, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000001200)={0x0, 0x0, 0x0}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
r9 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_inet6_SIOCSIFADDR(r9, 0x8916, &(0x7f0000000100)={@private1={0xfc, 0x1, '\x00', 0x1}, 0x0, r1})
r10 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_SIOCADDRT(r10, 0x890b, &(0x7f0000000140)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast1, @private2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa0022})

8m32.98343875s ago: executing program 34 (id=2804):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'veth1_to_bridge\x00', <r1=>0x0})
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x7, 0xab}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
openat$vimc0(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x32600)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000000000), 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/igmp\x00')
pread64(r6, &(0x7f0000000180)=""/15, 0xfffffe9c, 0xb6)
r7 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
write$proc_mixer(r7, &(0x7f0000000340)=ANY=[], 0x86)
r8 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card0/oss_mixer\x00', 0x0, 0x0)
dup3(r8, r7, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000001200)={0x0, 0x0, 0x0}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
r9 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_inet6_SIOCSIFADDR(r9, 0x8916, &(0x7f0000000100)={@private1={0xfc, 0x1, '\x00', 0x1}, 0x0, r1})
r10 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_SIOCADDRT(r10, 0x890b, &(0x7f0000000140)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast1, @private2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa0022})

53.995959458s ago: executing program 5 (id=4025):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
close(r0)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)=ANY=[@ANYRES8=r0, @ANYRESDEC, @ANYRESHEX=r1, @ANYRES8=r1, @ANYRES64=r1, @ANYRES8=r0, @ANYRES8=r0], 0x14}], 0x1, 0x0, 0x0, 0x1}, 0x4)
setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, &(0x7f0000000080)=0xffff0000, 0x4)

53.910499033s ago: executing program 5 (id=4027):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xb, &(0x7f0000000280)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2}, [@printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x6}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84242, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000140), 0x0, 0xfffffffc, 0x104)
setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(0xffffffffffffffff, 0x84, 0x8, &(0x7f0000000000)=0x6, 0x4)
r2 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x122c42)
r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
fsopen(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
ioctl$VIDIOC_G_CROP(0xffffffffffffffff, 0xc014563b, 0x0)
socket(0x2a, 0x2, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x4000)
sendmsg$802154_dgram(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0x24, @short={0x2, 0xffff, 0xffff}}, 0x14, 0x0}, 0x0)
recvmsg(r3, 0x0, 0x60)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000001ac0)={r1, 0x4000, {0x0, 0x0, 0x0, 0x2ead, 0x7fff, 0x0, 0x0, 0x0, 0x4, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323691c58d66500", "a9103939c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "24431a1e77a68e174ff10000000000000010e200"}})
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x0, 0xffffffff, 0xffffffff})
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f00000000c0)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
setsockopt$SO_TIMESTAMP(r5, 0x1, 0x40, &(0x7f0000000200)=0x4, 0x4)
write$bt_hci(r5, &(0x7f0000000200)=ANY=[], 0x6)
ioctl$CEC_G_MODE(r1, 0x80046108, &(0x7f0000000100))
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

51.161275205s ago: executing program 5 (id=4036):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newlink={0x28, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_NET_NS_FD={0x8}]}, 0x28}, 0x1, 0xba01, 0x0, 0x48c01}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x34, 0x3e, 0x107, 0xfffffffe, 0x0, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x10, 0x2, 0x0, 0x1, [@nested={0xc, 0x14, 0x0, 0x1, [@typed={0x8, 0x14, 0x0, 0x0, @u32=0x9}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000) (async)
r2 = getpid() (async)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x10b200, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000010ac05460200000000000109022400010000000009040000010300000009210000000122a00009058103"], 0x0)
syz_usb_control_io(r5, 0x0, 0x0)
syz_usb_control_io(r5, &(0x7f0000000700)={0x2c, &(0x7f00000001c0)={0x20, 0x4, 0xc6, {0xc6, 0x23, "53587e94cca62002d809dbef401b682137f2cb32b26e7f1e67319ce63b832d8e091baf9eaefe5183c84b8d939a81dae2fa79a6caa3510a5d368830aa40ac7f285f1435a8fc64c2cb4ed9ed3d8b68aaa1aeecf9515d2b0dfad7146547ba1c7d150d4cdf78f87268ce159ef88c08a4399b0edc092b5626feaf1c1549ff404fe622354f2c0557962d46bc949a2427720cc2842277b9dab3b4c26b28c767a9ec75f8a74e078563a4b7c465bfdda52dc2cad2d280f425b89db0d9377b6bdc6500393b1cd87a9b"}}, &(0x7f0000000440)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, &(0x7f00000006c0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x3, 0x1, 0x10, 0x2, 0x6, 0x3, 0x7}}}, &(0x7f0000000bc0)={0x84, 0x0, &(0x7f0000000800)={0x0, 0xa, 0x1, 0xe}, &(0x7f0000000840)={0x0, 0x8, 0x1}, 0x0, &(0x7f00000008c0)={0x20, 0x0, 0x4, {0x480, 0x20}}, &(0x7f0000000900)={0x40, 0x7, 0x2, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ac0)={0x40, 0x1a, 0x2, 0x8}, &(0x7f0000000b00)={0x40, 0x1c, 0x1, 0xf9}, 0x0, 0x0}) (async)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f0000000440)="baf80c66b8b8dc558466efbafc0c66b87c51000066efdda1c80026f30fc73600480fc12fde6400660fc7772f65642e3258460f789d46000f01c80fbb750d", 0x3e}], 0x1, 0x74, 0x0, 0x0) (async)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
ioctl$KVM_RUN(r9, 0xae80, 0x0) (async)
r10 = syz_pidfd_open(r2, 0x0)
setns(r10, 0x24020000)
ioctl$F2FS_IOC_SET_COMPRESS_OPTION(r10, 0x4002f516, &(0x7f0000000000)={0x6d, 0x6}) (async)
syz_clone(0xf5982500, 0x0, 0x0, 0x0, 0x0, 0x0)

44.705542811s ago: executing program 5 (id=4051):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = semget$private(0x0, 0x4, 0x29b)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000340), 0xffffffffffffffff)
semop(r2, &(0x7f0000000180)=[{}, {0x0, 0x0, 0xff7f}], 0x2)

10.18838273s ago: executing program 7 (id=4132):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000001180)={0x0, {0x2, 0x4e24, @private=0xa010101}, {0x2, 0x3, @broadcast}, {0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x99, 0x0, 0x0, 0x0, 0x1ff, &(0x7f0000001080)='gretap0\x00', 0xbe380, 0x5, 0xfff2})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
r4 = socket$inet6(0xa, 0x805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000080)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x4620, @private=0xa010101}]}, &(0x7f00000002c0)=0x10)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000001140)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000280)}], 0x1}}], 0x1, 0x200001c0)
getsockopt$bt_hci(r4, 0x84, 0x85, &(0x7f0000000080)=""/4060, &(0x7f00000010c0)=0xfdc)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="4800000010000507000000000000000016000000", @ANYRES32=r3, @ANYBLOB="0000000200000000280012000c00010076657468"], 0x48}}, 0x0)

9.255940754s ago: executing program 4 (id=4135):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x50, 0x2, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa00}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0xffff}]}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x50}}, 0x0)

8.707572377s ago: executing program 4 (id=4138):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000001180)={0x0, {0x2, 0x4e24, @private=0xa010101}, {0x2, 0x3, @broadcast}, {0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x99, 0x0, 0x0, 0x0, 0x1ff, &(0x7f0000001080)='gretap0\x00', 0xbe380, 0x5, 0xfff2})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
r4 = socket$inet6(0xa, 0x805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000080)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x4620, @private=0xa010101}]}, &(0x7f00000002c0)=0x10)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000001140)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000280)}], 0x1}}], 0x1, 0x200001c0)
getsockopt$bt_hci(r4, 0x84, 0x85, &(0x7f0000000080)=""/4060, &(0x7f00000010c0)=0xfdc)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="4800000010000507000000000000000016000000", @ANYRES32=r3, @ANYBLOB="0000000200000000280012000c00010076657468"], 0x48}}, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

8.630366134s ago: executing program 7 (id=4139):
r0 = syz_open_dev$swradio(&(0x7f00000046c0), 0x1, 0x2)
ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f00000000c0)={0x0, 0x5, 0x5})

7.891740809s ago: executing program 4 (id=4142):
syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c80)={'lo\x00'})
pipe2(0x0, 0x80000)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='numa_maps\x00')
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
epoll_create1(0x80000)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
ptrace$pokeuser(0x6, r4, 0x358, 0x800000000000)
ioctl$BTRFS_IOC_SNAP_DESTROY(0xffffffffffffffff, 0x5000940f, &(0x7f0000000080)={{}, "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"})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000001280)=ANY=[@ANYBLOB="18000000000000001d0024a73b7b80e1c1e00000b50000009500000000000000"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x24}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0x5452, &(0x7f0000000140))
pread64(r1, &(0x7f0000001180)=""/4107, 0x100b, 0x200280)

7.880271824s ago: executing program 7 (id=4143):
r0 = socket$inet(0x2, 0x801, 0x0)
pipe2(&(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
splice(r0, 0x0, r1, 0x0, 0x7ffff000, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, 0x2}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, r3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x446102)
dup(0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=@base={0xa, 0x7, 0x2, 0x4}, 0x50)
r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
write$tcp_congestion(r7, &(0x7f0000000100)='reno\x00', 0x5)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x17, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xa0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000002c0)={@cgroup=r9, r8, 0x12, 0x0, 0x0, @void, @value=0x0}, 0x20)
write$tcp_congestion(r7, &(0x7f0000000300)='reno\x00', 0x5)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000340)={@cgroup=r9, r8, 0x12, 0x0, 0x0, @void, @value=0x0}, 0x20)
r10 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r10, 0x11b, 0x2, &(0x7f0000000180)=0x200000, 0x4)
socket(0x40000000015, 0x5, 0x0)

7.700279559s ago: executing program 4 (id=4144):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000001940), 0x0, 0x80202)
ioctl$SCSI_IOCTL_PROBE_HOST(r0, 0x5385, 0x0)

7.697303957s ago: executing program 0 (id=4145):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r2 = dup(r1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r2, 0x2f126000)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r4, 0x0, 0xd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r3, 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x8)
cachestat(r2, &(0x7f0000000180)={0xff}, &(0x7f0000002280), 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="180300000001000000e8e187f63af5cbc371c494e9d809ff070000", @ANYRES32, @ANYBLOB="0000000000000000660000000000000018000000000000000000000000000000950000000000000097030000040000009500000000000000"], &(0x7f0000000000)='GPL\x00'}, 0x94)
write$UHID_CREATE(r0, &(0x7f0000000a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz1\x00', &(0x7f0000000940)=""/3, 0x3, 0x0, 0x4, 0x34, 0xe, 0xc08}}, 0x120)
syz_open_dev$vim2m(&(0x7f0000000580), 0x0, 0x2)
syz_io_uring_setup(0x110, &(0x7f0000002600)={0x0, 0x4b87, 0x10, 0x1}, &(0x7f0000000140), &(0x7f00000025c0))
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89a0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r6, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r6, 0x0, 0xca, &(0x7f0000003d80)={0x1, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
setsockopt$MRT_ADD_MFC_PROXY(r6, 0x0, 0xd2, &(0x7f0000000000)={@empty, @empty, 0x0, "daf86eed51d59c3b227a93fc7264db425e9d015e14f17c0900497e00b3bb00", 0x7, 0x6, 0xffffff9d, 0xffffe6df}, 0x3c)
syz_emit_ethernet(0x17a, &(0x7f0000000b40)={@multicast, @link_local, @void, {@ipv4={0x800, @tcp={{0x12, 0x4, 0x0, 0x3, 0x16c, 0x68, 0x0, 0x6, 0x6, 0x0, @private=0xa010101, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@lsrr={0x83, 0xb, 0x96, [@remote, @remote]}, @timestamp={0x44, 0x28, 0xfd, 0x0, 0x6, [0x8000, 0x78, 0xffff, 0x6, 0x2, 0xfffffff8, 0x800, 0x81, 0xb]}]}}, {{0x4e24, 0x4e23, 0x41424344, 0x41424344, 0x1, 0x0, 0xa, 0x80, 0x9, 0x0, 0x6, {[@exp_fastopen={0xfe, 0x11, 0xf989, "fd357b00b9307614cb42af6214"}]}}, {"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"}}}}}}, 0x0)

7.368501849s ago: executing program 4 (id=4146):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
ppoll(&(0x7f0000000040)=[{r1, 0x164}, {r1, 0xa8}], 0x2, 0x0, 0x0, 0x0)
shutdown(r1, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f0000000180), 0x0, 0x102, 0x0)
r4 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @mcast2, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x0, 0x0, 0x0, 0x50}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
statx(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', 0x1000, 0x7ff, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
mount$9p_xen(&(0x7f0000000180), &(0x7f0000000240)='./file0\x00', &(0x7f0000000280), 0x2030, &(0x7f0000000580)=ANY=[@ANYBLOB="7472616e733d78656e2cf90b52fc706f73697861636c2c6d6d61702c76323030302c756e616d653d2d7b2d2c70726976706f72742c76657273696f6e3d3970323030302e752c63616368653d6e6f6e652c6e6f657874656e642c657569643df876ebaaea13629365eceab0e43b8c7b99c0a7fbc041845329980a7f518110cd31a3e7f6bbf79e674ca8ca8b161cae0fe2469bcab5024063244c968320da963d58762e503aa9", @ANYRESDEC=0x0, @ANYBLOB=',fsname=/dev/video#\x00,uid>', @ANYRESDEC=r5, @ANYBLOB=',\x00'])
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
r6 = socket(0x2, 0xa, 0x0)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
r8 = syz_open_dev$vim2m(&(0x7f0000000c80), 0x6, 0x2)
ioctl$vim2m_VIDIOC_TRY_FMT(r8, 0xc0d05640, &(0x7f0000000080)={0x1, @pix_mp={0x0, 0x0, 0x33524742}})
shutdown(r7, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r7, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r7, 0x84, 0x7a, 0x0, &(0x7f0000000040))
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r6, 0x84, 0x76, &(0x7f00000000c0)={0x0, 0x1}, 0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r9 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r9, &(0x7f00000001c0)={0xa, 0x4e21, 0x0, @loopback}, 0x1c)
sendmsg(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0x2}], 0x1, 0x0, 0x0, 0x2c}, 0x44044)

6.596315889s ago: executing program 7 (id=4147):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
r1 = syz_open_dev$ptys(0xc, 0x3, 0x1)
r2 = landlock_create_ruleset(&(0x7f0000000000)={0x2c41, 0x3}, 0x18, 0x0)
r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
r4 = syz_open_procfs(0x0, &(0x7f0000000180)='net/udplite6\x00')
mount$9p_fd(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r3}})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
landlock_add_rule$LANDLOCK_RULE_NET_PORT(r2, 0x2, &(0x7f0000000080)={0x3, 0x2b7}, 0x0)
ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000080)={0x0, 0x8, 0x6, 0x2, 0x4, "5da3517fab4de7f9f3257595cce5556e82f315"})
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x95)
ioctl$KVM_GET_MSRS(r6, 0xc048aeca, &(0x7f0000000200))

5.589520404s ago: executing program 6 (id=4148):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000001180)={0x0, {0x2, 0x4e24, @private=0xa010101}, {0x2, 0x3, @broadcast}, {0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x99, 0x0, 0x0, 0x0, 0x1ff, &(0x7f0000001080)='gretap0\x00', 0xbe380, 0x5, 0xfff2})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
r4 = socket$inet6(0xa, 0x805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000080)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x4620, @private=0xa010101}]}, &(0x7f00000002c0)=0x10)
getsockopt$bt_hci(r4, 0x84, 0x85, &(0x7f0000000080)=""/4060, &(0x7f00000010c0)=0xfdc)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="4800000010000507000000000000000016000000", @ANYRES32=r3, @ANYBLOB="0000000200000000280012000c00010076657468"], 0x48}}, 0x0)

5.310426903s ago: executing program 0 (id=4149):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000580)='/proc/bus/input/devices\x00', 0x0, 0x0) (async)
epoll_create(0x6) (async)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') (async)
timer_create(0x4, &(0x7f0000000540)={0x0, 0x1, 0x1}, &(0x7f0000000780)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f00000007c0)={{0x77359400}}, &(0x7f0000000800)) (async)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=\x00\x00\x00\x00fdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',\x00']) (async, rerun: 32)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) (async, rerun: 32)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x2100, 0x0)
close(r4) (async, rerun: 64)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (rerun: 64)
ioctl$DMA_BUF_IOCTL_SYNC(r0, 0x40086200, &(0x7f0000000180)=0x1)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@fallback, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r5}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20) (async)
openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000840)={'syz1\x00', {0x0, 0x0, 0x1}, 0x0, [0x0, 0x0, 0x10, 0x6, 0x0, 0xffff8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x1, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0xe, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x20007, 0x0, 0x0, 0x3, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x8000, 0x0, 0x10, 0x2, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x1b], [0xffffffff, 0x1, 0x2000, 0x0, 0x4, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x6be6, 0xffffffff, 0x0, 0x80000004, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x5, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x3, 0x0, 0x4, 0x0, 0xffeffffe, 0x0, 0xffffffff, 0x0, 0x0, 0x100], [0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x9, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x7, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, 0xdb2bb47c, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0xe], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcc5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1, 0x9, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x1, 0x0, 0x200000, 0x0, 0x320146f1, 0x44, 0x1]}, 0x45c) (async)
ioctl$UI_DEV_CREATE(r3, 0x5501)

5.263933995s ago: executing program 4 (id=4150):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000000c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r1, 0x0, 0x800}, 0x18)
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x2066012}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x40)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x4d, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a300000000068000000090a010400000000000000000100000008000a4000000000200011800e000100636f6e6e6c696d69740000000c00028008000140000000000900010073797a30000000000900020073797a3200000000080005400000001f0c000980080001400037"], 0xb0}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)={0x20, 0xd, 0xa, 0xe01, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x20}}, 0x0)
getdents64(r3, 0x0, 0x0)
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000080)={0x2a, 0x6, 0x0, {0x1, 0x200000000000, 0x1, 0x2, '\x00', 0x8}}, 0x2a)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001040)=ANY=[@ANYBLOB="b00000000000000000000000000000000000000000200000000000000000000000000000000000000200000000000000000020000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000c0000000000000", @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="0021000000000000467700000000000000000000000000000000000001"], 0x0, 0x0, 0x0})
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TLS_TX(r9, 0x11a, 0x2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB], 0x48)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x0, 0x0, 0x32314247}})

4.677883596s ago: executing program 0 (id=4151):
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x200000, 0x3}, 0x10)
socket$tipc(0x1e, 0x2, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x1, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="7a0a00ff00000000711066000000000095"], &(0x7f0000000480)='syzkaller\x00'}, 0x94)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_open_dev$swradio(&(0x7f00000046c0), 0x1, 0x2)
ioctl$VIDIOC_S_FREQUENCY(r2, 0x402c5639, &(0x7f00000000c0)={0x0, 0x5, 0x5})
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmmsg$alg(r4, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe1a}], 0x1, &(0x7f0000000380)=[@op={0x18}], 0x18}], 0x4924924924924b9, 0x0)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x20000253)

4.616747538s ago: executing program 6 (id=4152):
r0 = syz_open_dev$swradio(&(0x7f00000046c0), 0x1, 0x2)
ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f00000000c0)={0x0, 0x5, 0x5})

3.992492404s ago: executing program 6 (id=4153):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000014c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100ffffb702000008000000b70300000000000085000000060000009500"/81], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x200400, 0x0)
socket(0x1e, 0x805, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0x10, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, 0x0, 0x8300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xe, 0x3}, {}, {0x5, 0x2}}}, 0x24}}, 0x40004)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="07000000000000007912a8000000000006000000000000009500000c00d23f65"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xb6, &(0x7f000000cf3d)=""/182, 0x0, 0x12, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
sendto(0xffffffffffffffff, &(0x7f0000000540)="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", 0x2ae, 0x0, 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x108, &(0x7f0000001700)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x18}, @void, {@mpls_uc={0x8847, {[{0x8}, {0x1}, {0x4, 0x0, 0x1}, {0x3}, {0x100, 0x0, 0x1}, {0x3}, {0x7fff}, {0x8}], @llc={@snap={0x0, 0xaa, "8ade", "aba098", 0x1a, "87a1bd426fc3fb09e61f0faca04d800de7a499ea62d7efdc3266111dd62b37f5b3f52792b953faf769b80701c4eaeb6734f5388301d11db2fdacc8441091bdb5ae0109c132c24ad4af695f9d0861df6ef8dedc5b05c85dcbce5e9fe1352bfda4a8aefe34749bac4a28ff014efc4d37603bb90ff146841c84727553893aee89cbfe69e98b4f0042263cb0cd25f9c5975d373ee35457d118692fefda0bd9cbdd2b7731fe42adeb2eedfd02cde247f8192b4b5cad02042cdf28ba47533e9337764af9f0aa60fc3aaa35c43ebc23d6c58477d0"}}}}}}, 0x0)
recvmsg(r2, &(0x7f0000001a00)={0x0, 0x0, &(0x7f00000018c0)=[{0x0, 0x4000}, {&(0x7f00000004c0)=""/4096, 0x1000}], 0x2}, 0x20)
sendmsg$nl_xfrm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=@updpolicy={0xb8, 0x19, 0xfd3649826d894c67, 0x0, 0x25dfdbfc, {{@in6=@private0={0xfc, 0x0, '\x00', 0x2}, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x20, 0x100}, {0x1, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0xfffffffffffffffc}, {0x0, 0x2}, 0x400}}, 0xb8}}, 0x4c050)
r3 = socket$key(0xf, 0x3, 0x2)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010002000000000000000000000a60000000060a090400000000000000000200000034000480300001800b0001006c6f6f6b757000002000028008000440000000000900010073797a310000000008000240000000080900010073797a30000000000900020073797a3200000000140000001100010000000000000000000000000a"], 0x88}}, 0x0)
sendmsg$key(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000001580)=ANY=[@ANYBLOB="021209090200000026bd7000fbdbdf2512240727827109eb4af8bc1d3f9427c1e4dc0c44f882c05ae35e0189d1b6e263fd50fbc89ed1ddd12a57ebb40a3f3bbf89cb382bc360590e9a12311e699717ccbba6f775f4b423edeb690286d3b40b9f3404da62ebf86422e35fdef037968c15ad81d8e77119a0a43f0d334483601596033bedfda2730423d5"], 0x10}}, 0x40010)
setgroups(0x400000000000026f, &(0x7f0000000080)=[0x0, 0xee00])

2.502762622s ago: executing program 0 (id=4154):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$fuse(0x18689, &(0x7f0000002880)='.\x00', &(0x7f00000028c0), 0x4001, &(0x7f0000000180)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000040)={0x2a, 0x4, 0x0, {0x1, 0xffffffffffdfffff, 0x2, 0x0, [0x0, 0x0]}}, 0x2a)

2.409988198s ago: executing program 6 (id=4155):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000001940), 0x0, 0x80202)
ioctl$SCSI_IOCTL_PROBE_HOST(r0, 0x5385, 0x0)

2.154450509s ago: executing program 5 (id=4066):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r2=>0x0})
r3 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000cc0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB, @ANYRES32=r2, @ANYBLOB="0a00060008021100000100000c004300", @ANYRES8=r3], 0x34}}, 0x0)

1.497414907s ago: executing program 6 (id=4156):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioprio_set$pid(0x1, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x38, 0x5}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000240)={&(0x7f0000000580)=ANY=[@ANYBLOB="06a8b700f57fd271e6d89129668041d478366dc5b78d8ca8fac91b2dad021d755e67ab48d6710a31107bdeee9cf4e5545546b939e25bfe8d28962ff9ff39a05ec3be7e6466c4b2c187f3524e97", @ANYRES16=r3, @ANYBLOB="00012bbd7000fcdbdf253700000008000300", @ANYRES32=r4, @ANYBLOB="0800570002000000"], 0x24}, 0x1, 0x0, 0x0, 0x2000}, 0x5) (async)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000240)={&(0x7f0000000580)=ANY=[@ANYBLOB="06a8b700f57fd271e6d89129668041d478366dc5b78d8ca8fac91b2dad021d755e67ab48d6710a31107bdeee9cf4e5545546b939e25bfe8d28962ff9ff39a05ec3be7e6466c4b2c187f3524e97", @ANYRES16=r3, @ANYBLOB="00012bbd7000fcdbdf253700000008000300", @ANYRES32=r4, @ANYBLOB="0800570002000000"], 0x24}, 0x1, 0x0, 0x0, 0x2000}, 0x5)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000540)='/sys/power/resume', 0x14de82, 0x57)
syz_genetlink_get_family_id$team(&(0x7f0000000340), r5)
syz_open_procfs$namespace(0x0, &(0x7f0000000380)='ns/cgroup\x00') (async)
syz_open_procfs$namespace(0x0, &(0x7f0000000380)='ns/cgroup\x00')
write$cgroup_int(r5, &(0x7f0000000040)=0x1f00, 0x12)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r7, 0x12, 0x2, 0x0, &(0x7f00000001c0)) (async)
getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r7, 0x12, 0x2, 0x0, &(0x7f00000001c0))
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r6, &(0x7f00000004c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2400a02}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="00042abd7000fbdbdf254c00000008000300", @ANYRES32=r4, @ANYBLOB="0c009900060000006e0000000c00580046000000000000000c00580027000000000000000c0058002a000000000000000c00580080000000000000970c0058006900000000000000"], 0x64}, 0x1, 0x0, 0x0, 0x4008011}, 0x4008004) (async)
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r6, &(0x7f00000004c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2400a02}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="00042abd7000fbdbdf254c00000008000300", @ANYRES32=r4, @ANYBLOB="0c009900060000006e0000000c00580046000000000000000c00580027000000000000000c0058002a000000000000000c00580080000000000000970c0058006900000000000000"], 0x64}, 0x1, 0x0, 0x0, 0x4008011}, 0x4008004)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
lgetxattr(0x0, &(0x7f0000000040)=@known='trusted.overlay.upper\x00', 0x0, 0x0) (async)
lgetxattr(0x0, &(0x7f0000000040)=@known='trusted.overlay.upper\x00', 0x0, 0x0)
fcntl$lock(r5, 0x0, &(0x7f0000000000)={0x2, 0x0, 0x0, 0x8000000000000001})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), r2) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), r2)
write$binfmt_script(r8, &(0x7f0000000000), 0x208e24b) (async)
write$binfmt_script(r8, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r8, 0x0)
uname(&(0x7f0000000640)=""/4096)
syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x109301)
ioctl$USBDEVFS_BULK(r5, 0xc0185502, &(0x7f0000000680)={{{0x1, 0x1}}, 0x0, 0x2, 0x0})
preadv(r8, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0) (async)
preadv(r8, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
r9 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)

1.425924697s ago: executing program 5 (id=4157):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000f00), 0xffffffffffffffff)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)
r6 = dup(r5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r5, 0xffffc000)
ioctl$BLKBSZSET(r5, 0x40081271, &(0x7f0000000100)=0x10000)
read$FUSE(r6, &(0x7f0000001040)={0x2020}, 0x2020)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01000000000000000000420000000e0001006e657464657673696d0000000f0002006e657464657673696d3000000d0087325f64726f70730000000005008300000000000000"], 0x4c}}, 0x0)
sync()

1.383892958s ago: executing program 7 (id=4158):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x14}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="400100001000010000000000000000000a010102000000000000100000000000ac1414bb00000000000000000000000000000a00002016000000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000001000004d26c000000ac1414aa000000000000000000000000000000000000000003000000000000000000000000000000010000000000000000000000000000000000000000000000000001000400000000000000000000000000000000000000feffffffffffffff0000000000000000000000000000000000000000000000000000000000000000000000000a0001002000000000000000480003006c7a6a6800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080016"], 0x140}}, 0x0)
r4 = socket(0x2, 0x80805, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r4, 0x84, 0xa, &(0x7f0000000200), 0x20)
r5 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r5, 0x0, 0x23, &(0x7f0000000100)={@rand_addr=0x64010100, @rand_addr=0x64010101}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="1800"/13], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, 0x0, 0x1ab)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f00000000c0)={'syz0\x00', {0xfff7, 0xc, 0x100, 0x81}, 0x1d, [0x7b, 0xb7e2, 0x3, 0x9, 0x100, 0x3, 0x1, 0x7, 0x9, 0x2, 0x7, 0xa, 0x3, 0x0, 0x7f, 0xd, 0x7fff, 0x6, 0x6, 0x5, 0x5, 0x6, 0x7, 0x6, 0xff, 0x2, 0xfffff5ee, 0x401, 0x0, 0xfc75, 0x8, 0x9, 0x4, 0x2, 0xffffffff, 0x81, 0xfffff765, 0x2, 0x3, 0xfffffff9, 0xa, 0x2, 0x5, 0x0, 0x3ff, 0x6, 0x7, 0x4c, 0xfffffffd, 0x80, 0x8, 0x8, 0x9, 0x7, 0x8000101, 0xc3c, 0x1733, 0x7fff, 0x7ffc, 0x1, 0x6, 0x5, 0x1, 0x4], [0x8, 0x3, 0x8, 0x8, 0x0, 0x8, 0x4, 0x0, 0x25, 0x10, 0x6, 0x7, 0x8, 0xe62, 0xffffff73, 0x1000, 0x6, 0x13e5, 0x3, 0x3, 0x1000, 0x7, 0x1, 0x3b40, 0x4, 0x1000, 0x5, 0x7fff, 0x8, 0x5a, 0x1, 0x7fffffff, 0x6995, 0x1, 0x80000000, 0x8, 0xdaa, 0x5, 0x2, 0x76c4, 0xfffffffd, 0x7, 0x4, 0x10000, 0xd, 0x2, 0x9, 0x10, 0x4000e, 0x9, 0x7, 0xa, 0x9, 0x3, 0x8, 0x3, 0x2, 0x3a6, 0x27f8, 0xc0d, 0xfffffffd, 0xb, 0xc, 0xfffffffb], [0xa3, 0x6, 0x6, 0x9, 0x1003, 0x0, 0x80000000, 0x5, 0x7f, 0xa, 0x100, 0x1000, 0xf1, 0x6, 0xc, 0x10000, 0x72, 0xb, 0x633, 0xd, 0x7, 0x6, 0x80000000, 0x6, 0x0, 0x7, 0x8, 0x2ef3adcb, 0x10, 0x2, 0x8, 0x8, 0x74, 0x4, 0x7, 0x7ff, 0xfffffff2, 0x63, 0x7, 0x2, 0x3, 0x3, 0x200, 0xfffffffd, 0xffffffff, 0xa1, 0x0, 0x9d, 0x7, 0xa8a, 0x2, 0x6, 0x77, 0x8, 0x1ff, 0x7, 0x7, 0x2, 0x0, 0x2, 0x8, 0x2, 0x3, 0x5], [0x6, 0x4, 0x5, 0x8000, 0x493e, 0x3, 0x35ff4447, 0x7, 0x5, 0x4, 0x7fff, 0x5, 0x5, 0x3ff, 0x3, 0xffff0000, 0x9, 0xf7df, 0x2, 0x10, 0x8, 0x2, 0xff, 0x6, 0x4, 0x4, 0x0, 0x0, 0x7, 0x4e6, 0x8, 0x6, 0x5ef, 0x8000, 0xc, 0x4, 0x401, 0x1, 0x5, 0x0, 0x9a8, 0x99f, 0x231, 0x3ff, 0x8, 0x1, 0xffff0001, 0x1, 0x1, 0x10, 0x8, 0x5396, 0x6161, 0x9, 0x101, 0x1ff, 0x8, 0x431, 0x6, 0x5, 0x4, 0x7b, 0x7fc, 0x9]}, 0x45c)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="30000000190001000000000000000000021800000000ff000000000008000100ac1414000c00090008"], 0x30}}, 0x0)

1.383482215s ago: executing program 0 (id=4159):
openat$iommufd(0xffffffffffffff9c, 0x0, 0x200000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
getsockopt$kcm_KCM_RECV_DISABLE(r3, 0x6, 0x2b, 0x0, 0x74efdfe049b861ab)

145.23513ms ago: executing program 0 (id=4160):
rseq(&(0x7f0000000040), 0x20, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
gettid()
ioctl$PTP_PIN_SETFUNC2(0xffffffffffffffff, 0x40603d10, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
openat$cuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket(0x10, 0x3, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000000)={'macvlan0\x00', @random="010000201000"})
getsockopt$IP_VS_SO_GET_VERSION(0xffffffffffffffff, 0x0, 0x480, 0x0, 0x0)
ioctl$KVM_CAP_DIRTY_LOG_RING(0xffffffffffffffff, 0x4068aea3, 0x0)
quotactl_fd$Q_SETINFO(0xffffffffffffffff, 0xffffffff80000600, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r1, 0x404c534a, &(0x7f0000000380)) (fail_nth: 4)

95.263524ms ago: executing program 7 (id=4161):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000001180)={0x0, {0x2, 0x4e24, @private=0xa010101}, {0x2, 0x3, @broadcast}, {0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x99, 0x0, 0x0, 0x0, 0x1ff, &(0x7f0000001080)='gretap0\x00', 0xbe380, 0x5, 0xfff2})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
r4 = socket$inet6(0xa, 0x805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000080)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x4620, @private=0xa010101}]}, &(0x7f00000002c0)=0x10)
getsockopt$bt_hci(r4, 0x84, 0x85, &(0x7f0000000080)=""/4060, &(0x7f00000010c0)=0xfdc)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="4800000010000507000000000000000016000000", @ANYRES32=r3, @ANYBLOB="0000000200000000280012000c00010076657468"], 0x48}}, 0x0)

0s ago: executing program 6 (id=4162):
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x200000, 0x3}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x1, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="7a0a00ff00000000711066000000000095"], &(0x7f0000000480)='syzkaller\x00'}, 0x94)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = syz_open_dev$swradio(&(0x7f00000046c0), 0x1, 0x2)
ioctl$VIDIOC_S_FREQUENCY(r4, 0x402c5639, &(0x7f00000000c0)={0x0, 0x5, 0x5})
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r6 = accept4(r5, 0x0, 0x0, 0x0)
sendmmsg$alg(r6, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe1a}], 0x1, &(0x7f0000000380)=[@op={0x18}], 0x18}], 0x4924924924924b9, 0x0)
recvmsg(r6, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x20000253)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r10, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000000000008302"])
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x1}, 0x10)
sendmsg$tipc(r1, &(0x7f0000000140)={0x0, 0x20d302, 0x0}, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000440), r2)

kernel console output (not intermixed with test programs):

18172] RDX: 0000000000000020 RSI: 0000200000000240 RDI: 000000000000001c
[ 1114.163596][T18172] RBP: 00007f7ce83f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1114.163608][T18172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1114.163619][T18172] R13: 0000000000000000 R14: 00007f7cea7b6160 R15: 00007ffd70833078
[ 1114.163649][T18172]  </TASK>
[ 1114.839910][T18181] FAULT_INJECTION: forcing a failure.
[ 1114.839910][T18181] name failslab, interval 1, probability 0, space 0, times 0
[ 1114.869930][T18181] CPU: 0 UID: 0 PID: 18181 Comm: syz.7.3492 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[ 1114.869956][T18181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1114.869967][T18181] Call Trace:
[ 1114.869975][T18181]  <TASK>
[ 1114.869984][T18181]  dump_stack_lvl+0x189/0x250
[ 1114.870019][T18181]  ? __pfx____ratelimit+0x10/0x10
[ 1114.870042][T18181]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1114.870064][T18181]  ? __pfx__printk+0x10/0x10
[ 1114.870089][T18181]  ? __pfx___might_resched+0x10/0x10
[ 1114.870110][T18181]  ? fs_reclaim_acquire+0x7d/0x100
[ 1114.870138][T18181]  should_fail_ex+0x414/0x560
[ 1114.870163][T18181]  should_failslab+0xa8/0x100
[ 1114.870186][T18181]  __kmalloc_noprof+0xcb/0x4f0
[ 1114.870204][T18181]  ? kfree+0x4d/0x440
[ 1114.870219][T18181]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 1114.870247][T18181]  tomoyo_realpath_from_path+0xe3/0x5d0
[ 1114.870272][T18181]  ? tomoyo_domain+0xda/0x130
[ 1114.870300][T18181]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 1114.870320][T18181]  tomoyo_path_number_perm+0x1e8/0x5a0
[ 1114.870342][T18181]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1114.870380][T18181]  ? __lock_acquire+0xab9/0xd20
[ 1114.870423][T18181]  ? __fget_files+0x2a/0x420
[ 1114.870447][T18181]  ? __fget_files+0x2a/0x420
[ 1114.870466][T18181]  ? __fget_files+0x3a0/0x420
[ 1114.870485][T18181]  ? __fget_files+0x2a/0x420
[ 1114.870510][T18181]  security_file_ioctl+0xcb/0x2d0
[ 1114.870533][T18181]  __se_sys_ioctl+0x47/0x170
[ 1114.870555][T18181]  do_syscall_64+0xfa/0x3b0
[ 1114.870576][T18181]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1114.870597][T18181]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1114.870614][T18181]  ? clear_bhb_loop+0x60/0xb0
[ 1114.870636][T18181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1114.870653][T18181] RIP: 0033:0x7fefb4d8e929
[ 1114.870668][T18181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1114.870683][T18181] RSP: 002b:00007fefb5b3e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1114.870702][T18181] RAX: ffffffffffffffda RBX: 00007fefb4fb5fa0 RCX: 00007fefb4d8e929
[ 1114.870715][T18181] RDX: 0000200000000040 RSI: 00000000c0405602 RDI: 0000000000000003
[ 1114.870727][T18181] RBP: 00007fefb5b3e090 R08: 0000000000000000 R09: 0000000000000000
[ 1114.870738][T18181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1114.870749][T18181] R13: 0000000000000000 R14: 00007fefb4fb5fa0 R15: 00007ffcac17b608
[ 1114.870779][T18181]  </TASK>
[ 1114.870787][T18181] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1116.210653][T18201] loop9: detected capacity change from 0 to 8
[ 1116.344700][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.354285][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.419925][T18201]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[ 1116.425301][T18201] loop9: partition table partially beyond EOD, truncated
[ 1116.432423][T18201] loop9: p1 size 81768186 extends beyond EOD, truncated
[ 1117.236767][T18208] overlayfs: metacopy with no lower data found - abort lookup (/bus)
[ 1117.305947][T18212] lo speed is unknown, defaulting to 1000
[ 1117.351878][T18216] random: crng reseeded on system resumption
[ 1118.784412][T18224] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3505'.
[ 1118.802844][T18225] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3505'.
[ 1118.947264][T18232] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3508'.
[ 1118.970151][T18232] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3508'.
[ 1120.484948][T18240] netlink: 'syz.7.3512': attribute type 10 has an invalid length.
[ 1121.394388][T17331] usb 7-1: new full-speed USB device number 20 using dummy_hcd
[ 1121.420555][T18240] team0: Device dummy0 is up. Set it down before adding it as a team port
[ 1121.458155][T18245] @: renamed from vlan0 (while UP)
[ 1121.556355][T17331] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[ 1121.610655][T17331] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[ 1121.611639][T18252] openvswitch: netlink: EtherType 0 is less than min 600
[ 1121.677662][T17331] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[ 1121.693625][T17331] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[ 1121.735044][T17331] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[ 1121.744837][T17331] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[ 1121.767389][T17331] usb 7-1: New USB device found, idVendor=0451, idProduct=5152, bcdDevice=c0.b9
[ 1121.778143][T17331] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1121.848487][T18256] FAULT_INJECTION: forcing a failure.
[ 1121.848487][T18256] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1121.861884][T17331] usb 7-1: Product: syz
[ 1121.867283][T17331] usb 7-1: Manufacturer: syz
[ 1121.969722][T18256] CPU: 0 UID: 0 PID: 18256 Comm: syz.7.3515 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[ 1121.969750][T18256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1121.969761][T18256] Call Trace:
[ 1121.969769][T18256]  <TASK>
[ 1121.969777][T18256]  dump_stack_lvl+0x189/0x250
[ 1121.969805][T18256]  ? __pfx____ratelimit+0x10/0x10
[ 1121.969828][T18256]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1121.969851][T18256]  ? __pfx__printk+0x10/0x10
[ 1121.969869][T18256]  ? __might_fault+0xb0/0x130
[ 1121.969899][T18256]  should_fail_ex+0x414/0x560
[ 1121.969924][T18256]  _copy_from_user+0x2d/0xb0
[ 1121.969948][T18256]  ___sys_sendmsg+0x158/0x2a0
[ 1121.969971][T18256]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1121.970046][T18256]  ? __fget_files+0x2a/0x420
[ 1121.970066][T18256]  ? __fget_files+0x3a0/0x420
[ 1121.970097][T18256]  __x64_sys_sendmsg+0x19b/0x260
[ 1121.970119][T18256]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1121.970154][T18256]  ? __pfx_ksys_write+0x10/0x10
[ 1121.970171][T18256]  ? rcu_is_watching+0x15/0xb0
[ 1121.970199][T18256]  ? do_syscall_64+0xbe/0x3b0
[ 1121.970226][T18256]  do_syscall_64+0xfa/0x3b0
[ 1121.970246][T18256]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1121.970267][T18256]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1121.970284][T18256]  ? clear_bhb_loop+0x60/0xb0
[ 1121.970311][T18256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1121.970327][T18256] RIP: 0033:0x7fefb4d8e929
[ 1121.970343][T18256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1121.970357][T18256] RSP: 002b:00007fefb5b3e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1121.970376][T18256] RAX: ffffffffffffffda RBX: 00007fefb4fb5fa0 RCX: 00007fefb4d8e929
[ 1121.970389][T18256] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000003
[ 1121.970401][T18256] RBP: 00007fefb5b3e090 R08: 0000000000000000 R09: 0000000000000000
[ 1121.970412][T18256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1121.970423][T18256] R13: 0000000000000000 R14: 00007fefb4fb5fa0 R15: 00007ffcac17b608
[ 1121.970449][T18256]  </TASK>
[ 1121.970583][T17331] usb 7-1: SerialNumber: syz
[ 1122.258156][T17331] usb 7-1: config 0 descriptor??
[ 1122.258805][T18258] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1122.270179][T17331] usb 7-1: can't set config #0, error -71
[ 1122.278357][T17331] usb 7-1: USB disconnect, device number 20
[ 1123.723791][T18275] netlink: 'syz.6.3519': attribute type 21 has an invalid length.
[ 1123.731941][T18275] netlink: 156 bytes leftover after parsing attributes in process `syz.6.3519'.
[ 1123.758874][T18275] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1123.819561][T18275] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3519'.
[ 1124.305921][T18278] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3521'.
[ 1124.319256][T18278] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3521'.
[ 1125.353947][T18283] can0: slcan on ttyS3.
[ 1125.702042][T18291] openvswitch: netlink: EtherType 0 is less than min 600
[ 1126.394734][T18282] can0 (unregistered): slcan off ttyS3.
[ 1126.777917][T18305] loop9: detected capacity change from 0 to 8
[ 1127.506143][  T926] usb 1-1: new full-speed USB device number 23 using dummy_hcd
[ 1127.512864][T18305]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[ 1127.519092][T18305] loop9: partition table partially beyond EOD, truncated
[ 1127.526224][T18305] loop9: p1 size 81768186 extends beyond EOD, truncated
[ 1127.918635][  T926] usb 1-1: config 0 has an invalid interface number: 105 but max is 0
[ 1127.992185][  T926] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1128.363695][  T926] usb 1-1: config 0 has no interface number 0
[ 1128.566849][  T926] usb 1-1: New USB device found, idVendor=046c, idProduct=14e8, bcdDevice= b.28
[ 1128.616500][  T926] usb 1-1: New USB device strings: Mfr=5, Product=2, SerialNumber=3
[ 1128.656981][  T926] usb 1-1: Product: syz
[ 1128.661189][  T926] usb 1-1: Manufacturer: syz
[ 1128.725528][  T926] usb 1-1: SerialNumber: syz
[ 1129.066035][  T926] usb 1-1: config 0 descriptor??
[ 1129.083239][  T926] usb 1-1: Found UVC 0.00 device syz (046c:14e8)
[ 1129.134692][  T926] uvcvideo 1-1:0.105: Entity type for entity Output 1 was not initialized!
[ 1129.143970][  T926] usb 1-1: Failed to create links for entity 1
[ 1129.164499][  T926] usb 1-1: Failed to register entities (-22).
[ 1129.480923][ T5879] usb 1-1: USB disconnect, device number 23
[ 1129.628708][T18341] openvswitch: netlink: EtherType 0 is less than min 600
[ 1129.658414][   T43] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[ 1130.551088][   T43] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1130.585959][   T43] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1130.605876][   T43] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[ 1130.639784][   T43] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1130.663479][   T43] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1130.672648][   T43] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1130.687533][   T43] usb 7-1: config 0 descriptor??
[ 1130.826342][  T926] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[ 1131.406102][ T5879] hid-generic 0000:0004:0034.0008: unknown main item tag 0x0
[ 1131.455828][ T5879] hid-generic 0000:0004:0034.0008: unknown main item tag 0x0
[ 1131.505881][ T5879] hid-generic 0000:0004:0034.0008: unknown main item tag 0x0
[ 1131.528546][   T43] plantronics 0003:047F:FFFF.0009: ignoring exceeding usage max
[ 1131.557060][ T5879] hid-generic 0000:0004:0034.0008: hidraw0: <UNKNOWN> HID v0.0e Device [syz0] on syz1
[ 1131.844468][ T5943] usb 1-1: new low-speed USB device number 24 using dummy_hcd
[ 1131.855975][   T43] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[ 1131.867441][   T43] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[ 1131.874972][   T43] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[ 1131.882440][   T43] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[ 1131.889946][   T43] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[ 1131.917958][   T43] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[ 1131.930435][  T926] usb 6-1: Using ep0 maxpacket: 8
[ 1131.947006][   T43] usb 7-1: USB disconnect, device number 21
[ 1131.954471][  T926] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1131.964150][  T926] usb 6-1: config 4 has an invalid interface number: 255 but max is 0
[ 1131.972466][  T926] usb 6-1: config 4 has no interface number 0
[ 1131.989672][  T926] usb 6-1: config 4 interface 255 has no altsetting 0
[ 1132.002162][  T926] usb 6-1: New USB device found, idVendor=a257, idProduct=2013, bcdDevice= e.87
[ 1132.011318][  T926] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1132.022872][  T926] usb 6-1: Product: syz
[ 1132.027312][  T926] usb 6-1: Manufacturer: syz
[ 1132.032149][  T926] usb 6-1: SerialNumber: syz
[ 1132.037265][ T5943] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1132.053707][ T5943] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1132.066800][ T5943] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x1 has an invalid bInterval 0, changing to 4
[ 1132.079313][ T5943] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[ 1132.099124][ T5943] usb 1-1: string descriptor 0 read error: -22
[ 1132.113055][ T5943] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1132.122693][ T5943] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1132.149823][ T5943] usb 1-1: 0:2 : does not exist
[ 1132.343311][T18346] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1132.405789][ T5879] usb 1-1: USB disconnect, device number 24
[ 1133.124645][  T926] usb 6-1: USB disconnect, device number 34
[ 1133.923629][  T926] usb 7-1: new full-speed USB device number 22 using dummy_hcd
[ 1135.301599][  T926] usb 7-1: config 0 has an invalid interface number: 105 but max is 0
[ 1136.004279][  T926] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1136.015380][  T926] usb 7-1: config 0 has no interface number 0
[ 1136.068337][  T926] usb 7-1: string descriptor 0 read error: -71
[ 1136.081432][  T926] usb 7-1: New USB device found, idVendor=046c, idProduct=14e8, bcdDevice= b.28
[ 1136.137873][  T926] usb 7-1: New USB device strings: Mfr=5, Product=2, SerialNumber=3
[ 1136.192317][  T926] usb 7-1: config 0 descriptor??
[ 1136.199761][T18394] openvswitch: netlink: EtherType 0 is less than min 600
[ 1136.494562][T16417] usb 5-1: new full-speed USB device number 35 using dummy_hcd
[ 1136.722712][T16417] usb 5-1: not running at top speed; connect to a high speed hub
[ 1136.834540][T16417] usb 5-1: config 1 interface 0 has no altsetting 0
[ 1137.088363][  T926] usb 7-1: can't set config #0, error -71
[ 1137.095837][  T926] usb 7-1: USB disconnect, device number 22
[ 1137.105634][T16417] usb 5-1: New USB device found, idVendor=05ac, idProduct=0230, bcdDevice= 0.40
[ 1138.148116][T16417] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1138.163362][T16417] usb 5-1: Product: syz
[ 1138.167604][T16417] usb 5-1: Manufacturer: syz
[ 1138.172205][T16417] usb 5-1: SerialNumber: syz
[ 1138.474502][T18411] FAULT_INJECTION: forcing a failure.
[ 1138.474502][T18411] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1138.487662][T18411] CPU: 0 UID: 0 PID: 18411 Comm: syz.6.3560 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[ 1138.487687][T18411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1138.487699][T18411] Call Trace:
[ 1138.487708][T18411]  <TASK>
[ 1138.487717][T18411]  dump_stack_lvl+0x189/0x250
[ 1138.487745][T18411]  ? __pfx____ratelimit+0x10/0x10
[ 1138.487772][T18411]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1138.487795][T18411]  ? __pfx__printk+0x10/0x10
[ 1138.487828][T18411]  should_fail_ex+0x414/0x560
[ 1138.487854][T18411]  _copy_from_user+0x2d/0xb0
[ 1138.487879][T18411]  sctp_setsockopt+0x19f/0x1200
[ 1138.487899][T18411]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1138.487926][T18411]  do_sock_setsockopt+0x25a/0x3e0
[ 1138.487949][T18411]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1138.487972][T18411]  ? __fget_files+0x2a/0x420
[ 1138.488002][T18411]  __x64_sys_setsockopt+0x18b/0x220
[ 1138.488028][T18411]  do_syscall_64+0xfa/0x3b0
[ 1138.488053][T18411]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1138.488070][T18411]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1138.488087][T18411]  ? clear_bhb_loop+0x60/0xb0
[ 1138.488108][T18411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1138.488125][T18411] RIP: 0033:0x7f7cea58e929
[ 1138.488142][T18411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1138.488157][T18411] RSP: 002b:00007f7ce83f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1138.488177][T18411] RAX: ffffffffffffffda RBX: 00007f7cea7b6160 RCX: 00007f7cea58e929
[ 1138.488191][T18411] RDX: 0000000000000076 RSI: 0000000000000084 RDI: 0000000000000009
[ 1138.488202][T18411] RBP: 00007f7ce83f6090 R08: 0000000000000008 R09: 0000000000000000
[ 1138.488214][T18411] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[ 1138.488227][T18411] R13: 0000000000000000 R14: 00007f7cea7b6160 R15: 00007ffd70833078
[ 1138.488257][T18411]  </TASK>
[ 1139.194716][T16417] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/input/input26
[ 1139.208714][ T5174] bcm5974 5-1:1.0: could not read from device
[ 1139.265239][T16417] usb 5-1: USB disconnect, device number 35
[ 1139.680049][T18420] hpfs: Bad magic ... probably not HPFS
[ 1140.365396][ T2949] Bluetooth: hci2: Frame reassembly failed (-84)
[ 1141.501369][T18450] FAULT_INJECTION: forcing a failure.
[ 1141.501369][T18450] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1141.521962][T18450] CPU: 0 UID: 0 PID: 18450 Comm: syz.0.3568 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[ 1141.521989][T18450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1141.522000][T18450] Call Trace:
[ 1141.522009][T18450]  <TASK>
[ 1141.522018][T18450]  dump_stack_lvl+0x189/0x250
[ 1141.522052][T18450]  ? __pfx____ratelimit+0x10/0x10
[ 1141.522075][T18450]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1141.522097][T18450]  ? __pfx__printk+0x10/0x10
[ 1141.522114][T18450]  ? __might_fault+0xb0/0x130
[ 1141.522144][T18450]  should_fail_ex+0x414/0x560
[ 1141.522169][T18450]  _copy_from_user+0x2d/0xb0
[ 1141.522193][T18450]  ___sys_sendmsg+0x158/0x2a0
[ 1141.522217][T18450]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1141.522272][T18450]  ? __fget_files+0x2a/0x420
[ 1141.522292][T18450]  ? __fget_files+0x3a0/0x420
[ 1141.522323][T18450]  __x64_sys_sendmsg+0x19b/0x260
[ 1141.522346][T18450]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1141.522374][T18450]  ? __pfx_ksys_write+0x10/0x10
[ 1141.522392][T18450]  ? rcu_is_watching+0x15/0xb0
[ 1141.522420][T18450]  ? do_syscall_64+0xbe/0x3b0
[ 1141.522446][T18450]  do_syscall_64+0xfa/0x3b0
[ 1141.522467][T18450]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1141.522488][T18450]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1141.522506][T18450]  ? clear_bhb_loop+0x60/0xb0
[ 1141.522527][T18450]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1141.522544][T18450] RIP: 0033:0x7fd5c3b8e929
[ 1141.522560][T18450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1141.522574][T18450] RSP: 002b:00007fd5c4978038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1141.522593][T18450] RAX: ffffffffffffffda RBX: 00007fd5c3db5fa0 RCX: 00007fd5c3b8e929
[ 1141.522607][T18450] RDX: 0000000000040080 RSI: 0000200000000000 RDI: 0000000000000003
[ 1141.522619][T18450] RBP: 00007fd5c4978090 R08: 0000000000000000 R09: 0000000000000000
[ 1141.522630][T18450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1141.522641][T18450] R13: 0000000000000000 R14: 00007fd5c3db5fa0 R15: 00007ffd13687078
[ 1141.522669][T18450]  </TASK>
[ 1142.136378][T16417] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[ 1142.334749][T16417] usb 5-1: Using ep0 maxpacket: 32
[ 1142.373467][T16417] usb 5-1: config 0 has an invalid interface number: 114 but max is 0
[ 1142.402142][T16417] usb 5-1: config 0 has no interface number 0
[ 1142.426962][T16653] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 1142.566948][T16417] usb 5-1: config 0 interface 114 altsetting 0 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 1142.626733][   T43] usb 7-1: new full-speed USB device number 23 using dummy_hcd
[ 1142.634600][T18421] delete_channel: no stack
[ 1142.652146][T16417] usb 5-1: New USB device found, idVendor=05ac, idProduct=9218, bcdDevice=aa.8b
[ 1142.675401][T16417] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1142.683930][T16417] usb 5-1: Product: syz
[ 1142.689526][T16417] usb 5-1: Manufacturer: syz
[ 1142.758891][T16417] usb 5-1: SerialNumber: syz
[ 1142.767379][T16417] usb 5-1: config 0 descriptor??
[ 1142.787361][T16417] appledisplay 5-1:0.114: Could not find int-in endpoint
[ 1142.798722][T16417] usbhid 5-1:0.114: couldn't find an input interrupt endpoint
[ 1142.807259][   T43] usb 7-1: config 0 has an invalid interface number: 105 but max is 0
[ 1142.818645][   T43] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1142.850656][   T43] usb 7-1: config 0 has no interface number 0
[ 1142.871813][   T43] usb 7-1: New USB device found, idVendor=046c, idProduct=14e8, bcdDevice= b.28
[ 1142.891034][   T43] usb 7-1: New USB device strings: Mfr=5, Product=2, SerialNumber=3
[ 1143.184881][T18453] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1143.194833][T18453] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1143.202690][   T43] usb 7-1: Product: syz
[ 1143.214036][   T43] usb 7-1: Manufacturer: syz
[ 1143.219533][T18453] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1143.244781][   T43] usb 7-1: SerialNumber: syz
[ 1143.261669][   T43] usb 7-1: config 0 descriptor??
[ 1143.278429][T18453] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1143.281017][   T43] usb 7-1: Found UVC 0.00 device syz (046c:14e8)
[ 1143.310034][   T43] uvcvideo 7-1:0.105: Entity type for entity Output 1 was not initialized!
[ 1143.326575][   T43] usb 7-1: Failed to create links for entity 1
[ 1143.329543][T18468] FAULT_INJECTION: forcing a failure.
[ 1143.329543][T18468] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1143.335858][   T43] usb 7-1: Failed to register entities (-22).
[ 1143.441733][T18468] CPU: 0 UID: 0 PID: 18468 Comm: syz.7.3575 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[ 1143.441774][T18468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1143.441786][T18468] Call Trace:
[ 1143.441793][T18468]  <TASK>
[ 1143.441802][T18468]  dump_stack_lvl+0x189/0x250
[ 1143.441837][T18468]  ? __pfx____ratelimit+0x10/0x10
[ 1143.441861][T18468]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1143.441882][T18468]  ? __pfx__printk+0x10/0x10
[ 1143.441898][T18468]  ? __might_fault+0xb0/0x130
[ 1143.441929][T18468]  should_fail_ex+0x414/0x560
[ 1143.441953][T18468]  _copy_from_user+0x2d/0xb0
[ 1143.441976][T18468]  ___sys_sendmsg+0x158/0x2a0
[ 1143.441999][T18468]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1143.442052][T18468]  ? __fget_files+0x2a/0x420
[ 1143.442073][T18468]  ? __fget_files+0x3a0/0x420
[ 1143.442099][T18468]  __x64_sys_sendmsg+0x19b/0x260
[ 1143.442121][T18468]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1143.442148][T18468]  ? __pfx_ksys_write+0x10/0x10
[ 1143.442164][T18468]  ? rcu_is_watching+0x15/0xb0
[ 1143.442192][T18468]  ? do_syscall_64+0xbe/0x3b0
[ 1143.442217][T18468]  do_syscall_64+0xfa/0x3b0
[ 1143.442237][T18468]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1143.442258][T18468]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1143.442276][T18468]  ? clear_bhb_loop+0x60/0xb0
[ 1143.442298][T18468]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1143.442315][T18468] RIP: 0033:0x7fefb4d8e929
[ 1143.442332][T18468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1143.442347][T18468] RSP: 002b:00007fefb5b3e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1143.442366][T18468] RAX: ffffffffffffffda RBX: 00007fefb4fb5fa0 RCX: 00007fefb4d8e929
[ 1143.442380][T18468] RDX: 0000000000000800 RSI: 0000200000000280 RDI: 0000000000000003
[ 1143.442391][T18468] RBP: 00007fefb5b3e090 R08: 0000000000000000 R09: 0000000000000000
[ 1143.442402][T18468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1143.442412][T18468] R13: 0000000000000000 R14: 00007fefb4fb5fa0 R15: 00007ffcac17b608
[ 1143.442439][T18468]  </TASK>
[ 1143.681706][  T926] usb 7-1: USB disconnect, device number 23
[ 1143.793076][T18479] hpfs: Bad magic ... probably not HPFS
[ 1144.213765][  T926] usb 5-1: USB disconnect, device number 36
[ 1144.214544][   T30] audit: type=1800 audit(1751387551.076:1525): pid=18453 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.3571" name="/" dev="fuse" ino=0 res=0 errno=0
[ 1144.297369][T18482] netlink: 64 bytes leftover after parsing attributes in process `syz.7.3578'.
[ 1144.321428][T18485] cifs: Unknown parameter 'h}#��
[ 1144.321428][T18485] �[���b����IT�&��:���"����1:���ӭ'�4,�Zz-#F�<��]%gC��
[ 1144.321428][T18485] S�Ș�ȞZ�6��'
[ 1145.089792][T18482] dvmrp1: entered allmulticast mode
[ 1145.112794][T18482] dvmrp0: left allmulticast mode
[ 1145.118888][T18482] dvmrp1: left allmulticast mode
[ 1145.203975][T18499] FAULT_INJECTION: forcing a failure.
[ 1145.203975][T18499] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1145.225004][T18499] CPU: 0 UID: 0 PID: 18499 Comm: syz.6.3582 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[ 1145.225032][T18499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1145.225043][T18499] Call Trace:
[ 1145.225051][T18499]  <TASK>
[ 1145.225059][T18499]  dump_stack_lvl+0x189/0x250
[ 1145.225089][T18499]  ? __pfx____ratelimit+0x10/0x10
[ 1145.225112][T18499]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1145.225135][T18499]  ? __pfx__printk+0x10/0x10
[ 1145.225153][T18499]  ? __might_fault+0xb0/0x130
[ 1145.225185][T18499]  should_fail_ex+0x414/0x560
[ 1145.225209][T18499]  copy_fpstate_to_sigframe+0xa8d/0xce0
[ 1145.225235][T18499]  ? copy_fpstate_to_sigframe+0x181/0xce0
[ 1145.225261][T18499]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[ 1145.225295][T18499]  ? __lock_acquire+0xab9/0xd20
[ 1145.225323][T18499]  ? fpu__alloc_mathframe+0xad/0x130
[ 1145.225346][T18499]  get_sigframe+0x58d/0x7d0
[ 1145.225371][T18499]  ? __pfx_get_sigframe+0x10/0x10
[ 1145.225412][T18499]  x64_setup_rt_frame+0x15c/0xd40
[ 1145.225437][T18499]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1145.225461][T18499]  ? _raw_spin_unlock_irq+0x2e/0x50
[ 1145.225481][T18499]  ? get_signal+0x1122/0x1310
[ 1145.225510][T18499]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[ 1145.225540][T18499]  arch_do_signal_or_restart+0x3dc/0x750
[ 1145.225566][T18499]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1145.225602][T18499]  ? exit_to_user_mode_loop+0x40/0x110
[ 1145.225626][T18499]  exit_to_user_mode_loop+0x75/0x110
[ 1145.225655][T18499]  do_syscall_64+0x2bd/0x3b0
[ 1145.225676][T18499]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1145.225696][T18499]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1145.225713][T18499]  ? clear_bhb_loop+0x60/0xb0
[ 1145.225734][T18499]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1145.225751][T18499] RIP: 0033:0x7f7cea58e927
[ 1145.225767][T18499] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[ 1145.225781][T18499] RSP: 002b:00007f7ceb331038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1145.225801][T18499] RAX: 0000000000000000 RBX: 00007f7cea7b5fa0 RCX: 00007f7cea58e929
[ 1145.225814][T18499] RDX: 0000000000002020 RSI: 0000200000000980 RDI: 0000000000000003
[ 1145.225826][T18499] RBP: 00007f7ceb331090 R08: 0000000000000000 R09: 0000000000000000
[ 1145.225838][T18499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1145.225850][T18499] R13: 0000000000000000 R14: 00007f7cea7b5fa0 R15: 00007ffd70833078
[ 1145.225879][T18499]  </TASK>
[ 1148.138543][T16417] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[ 1148.295358][T18530] hpfs: Bad magic ... probably not HPFS
[ 1148.454506][T16417] usb 1-1: Using ep0 maxpacket: 8
[ 1148.461166][T16417] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[ 1148.484347][T16417] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1148.495433][T16417] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1148.508661][T16417] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[ 1148.536439][T18540] netlink: 'syz.6.3585': attribute type 1 has an invalid length.
[ 1148.547618][T18540] netlink: 224 bytes leftover after parsing attributes in process `syz.6.3585'.
[ 1148.559172][T16417] usb 1-1: New USB device found, idVendor=0c45, idProduct=760b, bcdDevice= 0.00
[ 1148.571172][T16417] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1148.584839][T16417] usb 1-1: config 0 descriptor??
[ 1149.561817][T16417] hid (null): report_id 0 is invalid
[ 1149.572698][T16417] redragon 0003:0C45:760B.000A: report_id 0 is invalid
[ 1149.581860][T16417] redragon 0003:0C45:760B.000A: item 0 1 1 8 parsing failed
[ 1149.590034][T16417] redragon 0003:0C45:760B.000A: probe with driver redragon failed with error -22
[ 1151.325923][ T5880] usb 1-1: USB disconnect, device number 25
[ 1153.241091][T18596] loop9: detected capacity change from 0 to 8
[ 1153.260769][T18596]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[ 1153.266991][T18596] loop9: partition table partially beyond EOD, truncated
[ 1153.279805][T18596] loop9: p1 size 81768186 extends beyond EOD, truncated
[ 1154.289875][T18600] binder: 18598:18600 ioctl 806c4120 200000000000 returned -22
[ 1155.537790][T18624] netlink: 'syz.6.3609': attribute type 1 has an invalid length.
[ 1155.545707][T18624] netlink: 224 bytes leftover after parsing attributes in process `syz.6.3609'.
[ 1157.153418][T18638] loop9: detected capacity change from 0 to 8
[ 1157.695795][T18638]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[ 1157.701229][T18638] loop9: partition table partially beyond EOD, truncated
[ 1157.709001][T18638] loop9: p1 size 81768186 extends beyond EOD, truncated
[ 1161.727686][T18703] ALSA: mixer_oss: invalid OSS volume ''
[ 1162.333526][T18709] openvswitch: netlink: Missing valid actions attribute.
[ 1162.342852][T18709] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1166.698654][T18749] loop9: detected capacity change from 0 to 8
[ 1166.716320][T18749]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[ 1166.721889][T18749] loop9: partition table partially beyond EOD, truncated
[ 1166.729667][T18749] loop9: p1 size 81768186 extends beyond EOD, truncated
[ 1167.604672][T18759] loop9: detected capacity change from 0 to 8
[ 1168.196614][T18759]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[ 1168.201979][T18759] loop9: partition table partially beyond EOD, truncated
[ 1168.209766][T18759] loop9: p1 size 81768186 extends beyond EOD, truncated
[ 1169.310001][T18786] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1169.634019][T18773] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3646'.
[ 1169.910557][T18787] openvswitch: netlink: Missing valid actions attribute.
[ 1169.917662][T18787] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1170.823941][T18803] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3650'.
[ 1170.835702][T18803] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3650'.
[ 1170.864330][ T5880] usb 1-1: new full-speed USB device number 26 using dummy_hcd
[ 1171.652774][ T5880] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1171.673300][ T5880] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1171.716778][ T5880] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1171.873598][ T5880] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1171.950100][T18811] loop9: detected capacity change from 0 to 8
[ 1172.472880][ T5880] usb 1-1: Product: syz
[ 1172.477134][ T5880] usb 1-1: Manufacturer: syz
[ 1172.481789][ T5880] usb 1-1: SerialNumber: syz
[ 1172.487598][T18811]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[ 1172.492898][T18811] loop9: partition table partially beyond EOD, truncated
[ 1172.499996][T18811] loop9: p1 size 81768186 extends beyond EOD, truncated
[ 1172.519643][ T5880] usb 1-1: can't set config #1, error -71
[ 1172.548464][ T5880] usb 1-1: USB disconnect, device number 26
[ 1172.942595][T18822] ALSA: mixer_oss: invalid OSS volume 'V3'
[ 1172.948592][T18822] ALSA: mixer_oss: invalid OSS volume '010000E0'
[ 1172.955036][T18822] ALSA: mixer_oss: invalid OSS volume '11'
[ 1172.960915][T18822] ALSA: mixer_oss: invalid OSS volume '010000E0'
[ 1172.967383][T18822] ALSA: mixer_oss: invalid OSS volume '12'
[ 1172.973291][T18822] ALSA: mixer_oss: invalid OSS volume ''
[ 1173.534693][ T5880] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[ 1173.720945][ T5880] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x86 has an invalid bInterval 0, changing to 7
[ 1173.802260][ T5880] usb 5-1: New USB device found, idVendor=2040, idProduct=5530, bcdDevice=a8.82
[ 1173.874330][T18838] netlink: 5 bytes leftover after parsing attributes in process `syz.7.3658'.
[ 1174.338136][ T5880] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1174.348952][ T5880] usb 5-1: config 0 descriptor??
[ 1174.362934][ T5880] smsusb:smsusb_probe: board id=8, interface number 0
[ 1174.416799][ T5880] smsusb:smsusb_probe: Device initialized with return code -19
[ 1174.562432][T18816] tmpfs: Bad value for 'mpol'
[ 1174.655826][T18845] netlink: 'syz.7.3661': attribute type 9 has an invalid length.
[ 1174.712803][T18846] netlink: 'syz.7.3661': attribute type 9 has an invalid length.
[ 1174.931986][T18854] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3663'.
[ 1176.088605][T16417] usb 5-1: USB disconnect, device number 37
[ 1176.198382][T18865] openvswitch: netlink: Missing valid actions attribute.
[ 1176.208786][T18865] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1177.223182][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.244625][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1177.283825][T18878] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3666'.
[ 1177.675658][T18880] syz_tun: entered allmulticast mode
[ 1177.909820][T18877] syz_tun: left allmulticast mode
[ 1178.547069][  T926] hid-generic 0000:0004:0034.000B: unknown main item tag 0x0
[ 1178.793454][  T926] hid-generic 0000:0004:0034.000B: unknown main item tag 0x0
[ 1178.961360][  T926] hid-generic 0000:0004:0034.000B: unknown main item tag 0x0
[ 1179.269339][  T926] hid-generic 0000:0004:0034.000B: hidraw0: <UNKNOWN> HID v0.0e Device [syz0] on syz1
[ 1181.405650][T18918] binder: 18912:18918 ioctl c0306201 200000000340 returned -14
[ 1181.910429][T18921] futex_wake_op: syz.7.3677 tries to shift op by -1; fix this program
[ 1181.934725][T16417] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[ 1182.006644][T18927] netlink: 108 bytes leftover after parsing attributes in process `syz.6.3680'.
[ 1182.039236][T18927] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3680'.
[ 1182.085227][T16417] usb 5-1: Using ep0 maxpacket: 8
[ 1182.096959][T16417] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1182.109470][T16417] usb 5-1: config 4 has an invalid interface number: 255 but max is 0
[ 1182.121089][T16417] usb 5-1: config 4 has no interface number 0
[ 1182.139033][T16417] usb 5-1: config 4 interface 255 has no altsetting 0
[ 1182.156350][T16417] usb 5-1: New USB device found, idVendor=a257, idProduct=2013, bcdDevice= e.87
[ 1182.197973][T16417] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1182.224404][T16417] usb 5-1: Product: syz
[ 1182.234519][T16417] usb 5-1: Manufacturer: syz
[ 1182.244464][T16417] usb 5-1: SerialNumber: syz
[ 1182.491458][T16417] usb 5-1: USB disconnect, device number 38
[ 1183.056893][T18943] ALSA: mixer_oss: invalid OSS volume 'V3'
[ 1183.063405][T18943] ALSA: mixer_oss: invalid OSS volume '010000E0'
[ 1183.069797][T18943] ALSA: mixer_oss: invalid OSS volume '11'
[ 1183.075727][T18943] ALSA: mixer_oss: invalid OSS volume '010000E0'
[ 1183.082030][T18943] ALSA: mixer_oss: invalid OSS volume '12'
[ 1183.087849][T18943] ALSA: mixer_oss: invalid OSS volume ''
[ 1184.092403][T16417] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[ 1184.153074][T18962] hpfs: Bad magic ... probably not HPFS
[ 1184.414322][T16417] usb 6-1: Using ep0 maxpacket: 32
[ 1184.419503][T16653] Bluetooth: hci4: command 0x0405 tx timeout
[ 1184.797382][T16417] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[ 1185.041069][T16417] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[ 1185.054265][T16417] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1185.066647][T16417] usb 6-1: New USB device found, idVendor=072f, idProduct=2200, bcdDevice=3f.bf
[ 1185.075896][T16417] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1185.083899][T16417] usb 6-1: Product: syz
[ 1185.105001][T16417] usb 6-1: Manufacturer: syz
[ 1185.110771][T16417] usb 6-1: SerialNumber: syz
[ 1185.183902][T16417] usb 6-1: config 0 descriptor??
[ 1185.193152][T18972] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3688'.
[ 1185.245622][T16417] pn533_usb 6-1:0.0: NFC: Could not find bulk-in or bulk-out endpoint
[ 1185.454619][T16417] usb 6-1: USB disconnect, device number 35
[ 1191.744405][T19023] netlink: 5128 bytes leftover after parsing attributes in process `syz.4.3703'.
[ 1191.757879][T19023] netlink: 5128 bytes leftover after parsing attributes in process `syz.4.3703'.
[ 1191.769607][T19023] netlink: 584 bytes leftover after parsing attributes in process `syz.4.3703'.
[ 1192.505567][T19038] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[ 1192.507597][T19036] lo speed is unknown, defaulting to 1000
[ 1192.624293][ T5879] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[ 1192.766206][T19040] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3706'.
[ 1192.789254][ T5879] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1192.841140][ T5879] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1192.866163][ T5879] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1192.896096][ T5879] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1192.934754][ T5879] usb 5-1: SerialNumber: syz
[ 1193.902094][ T5879] usb 5-1: 0:2 : does not exist
[ 1193.981925][ T5879] usb 5-1: unit 255 not found!
[ 1194.226514][ T5879] usb 5-1: USB disconnect, device number 39
[ 1194.260432][T19051] Bluetooth: (null): Too short H5 packet
[ 1196.560607][T19082] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3719'.
[ 1197.388583][T19085] loop6: detected capacity change from 0 to 63
[ 1197.455090][T19085] support for the xor transformation has been removed.
[ 1197.629408][T19093] usb usb8: usbfs: process 19093 (syz.6.3720) did not claim interface 0 before use
[ 1197.678455][T19095] QAT: failed to copy from user cfg_data.
[ 1198.717557][T19101] netlink: 60 bytes leftover after parsing attributes in process `syz.5.3722'.
[ 1198.753042][T19101] netlink: 116 bytes leftover after parsing attributes in process `syz.5.3722'.
[ 1199.077323][  T926] usb 1-1: new full-speed USB device number 27 using dummy_hcd
[ 1199.259347][  T926] usb 1-1: config 0 has an invalid interface number: 96 but max is 0
[ 1199.281747][  T926] usb 1-1: config 0 has no interface number 0
[ 1199.307228][  T926] usb 1-1: config 0 interface 96 has no altsetting 0
[ 1199.332852][  T926] usb 1-1: New USB device found, idVendor=2639, idProduct=0003, bcdDevice=10.b8
[ 1199.362846][  T926] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1199.448489][  T926] usb 1-1: Product: syz
[ 1199.520410][  T926] usb 1-1: Manufacturer: syz
[ 1199.556760][  T926] usb 1-1: SerialNumber: syz
[ 1199.577945][  T926] usb 1-1: config 0 descriptor??
[ 1201.033847][T19103] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1201.065906][T19103] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1201.103883][ T5942] usb 1-1: USB disconnect, device number 27
[ 1201.914760][ T5942] usb 6-1: new high-speed USB device number 36 using dummy_hcd
[ 1202.138008][T19154] F2FS-fs (loop13): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1202.147297][T19154] F2FS-fs (loop13): Can't find valid F2FS filesystem in 1th superblock
[ 1202.326580][T19154] F2FS-fs (loop13): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1202.334694][T19154] F2FS-fs (loop13): Can't find valid F2FS filesystem in 2th superblock
[ 1203.100800][ T5942] usb 6-1: config 0 has an invalid interface number: 255 but max is 0
[ 1203.424601][ T5942] usb 6-1: config 0 has no interface number 0
[ 1203.485574][ T5942] usb 6-1: config 0 interface 255 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1203.523930][ T5942] usb 6-1: config 0 interface 255 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1203.600177][T19162] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.3738' sets config #0
[ 1203.612010][T19162] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.3738' sets config #1
[ 1203.689722][   T30] audit: type=1326 audit(1751387610.466:1526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19161 comm="syz.4.3738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1203.725634][ T5942] usb 6-1: New USB device found, idVendor=10cf, idProduct=8065, bcdDevice=91.79
[ 1203.735024][ T5942] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1203.743074][ T5942] usb 6-1: Product: syz
[ 1203.752149][ T5942] usb 6-1: Manufacturer: syz
[ 1203.756842][ T5942] usb 6-1: SerialNumber: syz
[ 1203.766549][ T5942] usb 6-1: config 0 descriptor??
[ 1204.605981][ T5942] vmk80xx 6-1:0.255: driver 'vmk80xx' failed to auto-configure device.
[ 1204.949757][ T5942] vmk80xx 6-1:0.255: probe with driver vmk80xx failed with error -22
[ 1205.261484][   T30] audit: type=1326 audit(1751387610.466:1527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19161 comm="syz.4.3738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1205.286859][   T30] audit: type=1326 audit(1751387610.466:1528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19161 comm="syz.4.3738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1205.313402][   T30] audit: type=1326 audit(1751387610.466:1529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19161 comm="syz.4.3738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1205.337361][   T30] audit: type=1326 audit(1751387610.466:1530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19161 comm="syz.4.3738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1205.360165][   T30] audit: type=1326 audit(1751387610.466:1531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19161 comm="syz.4.3738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1205.384384][   T30] audit: type=1326 audit(1751387610.466:1532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19161 comm="syz.4.3738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1205.412681][ T5943] usb 6-1: USB disconnect, device number 36
[ 1205.459859][   T30] audit: type=1326 audit(1751387610.466:1533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19161 comm="syz.4.3738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1205.485674][   T30] audit: type=1326 audit(1751387610.466:1534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19161 comm="syz.4.3738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1205.513977][   T30] audit: type=1326 audit(1751387610.466:1535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19161 comm="syz.4.3738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1205.764747][ T5943] usb 6-1: new high-speed USB device number 37 using dummy_hcd
[ 1205.954415][ T5943] usb 6-1: Using ep0 maxpacket: 16
[ 1205.992528][ T5943] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1206.163203][ T5943] usb 6-1: too many endpoints for config 1 interface 0 altsetting 0: 254, using maximum allowed: 30
[ 1206.243880][ T5943] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 254
[ 1206.269622][ T5943] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1206.280464][ T5943] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1206.292368][ T5943] usb 6-1: SerialNumber: syz
[ 1207.452876][T19177] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1207.474785][T19177] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1208.975946][ T5943] usb 6-1: USB disconnect, device number 37
[ 1210.085821][T19230] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3756'.
[ 1210.285408][T16417] usb 6-1: new high-speed USB device number 38 using dummy_hcd
[ 1210.955546][T16417] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1210.976579][T16417] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1210.993572][T16417] usb 6-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1211.024824][T16417] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1211.065824][T16417] usb 6-1: config 0 descriptor??
[ 1211.364564][T19250] loop9: detected capacity change from 0 to 8
[ 1211.580594][T19250]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[ 1211.586151][T19250] loop9: partition table partially beyond EOD, truncated
[ 1211.593302][T19250] loop9: p1 size 81768186 extends beyond EOD, truncated
[ 1211.797218][T19254] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3761'.
[ 1211.807448][T19254] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3761'.
[ 1212.288819][T16417] uclogic 0003:256C:006D.000C: interface is invalid, ignoring
[ 1212.559286][ T5880] kernel write not supported for file /dlm-control (pid: 5880 comm: kworker/0:5)
[ 1212.572806][T19276] dlm: non-version read from control device 211
[ 1212.581567][T19276] dlm: non-version read from control device 211
[ 1212.588293][T19276] dlm: non-version read from control device 211
[ 1212.595212][T19276] dlm: non-version read from control device 211
[ 1212.601489][T19276] dlm: non-version read from control device 211
[ 1212.607815][T19276] dlm: non-version read from control device 211
[ 1212.614085][T19276] dlm: non-version read from control device 211
[ 1212.620395][T19276] dlm: non-version read from control device 211
[ 1212.626712][T19276] dlm: non-version read from control device 211
[ 1212.632981][T19276] dlm: non-version read from control device 211
[ 1212.639791][T19276] dlm: non-version read from control device 211
[ 1212.646228][T19276] dlm: non-version read from control device 211
[ 1212.653622][T19276] dlm: non-version read from control device 211
[ 1212.660071][T19276] dlm: non-version read from control device 211
[ 1212.666415][T19276] dlm: non-version read from control device 211
[ 1212.672688][T19276] dlm: non-version read from control device 211
[ 1212.678986][T19276] dlm: non-version read from control device 211
[ 1212.685324][T19276] dlm: non-version read from control device 211
[ 1212.691586][T19276] dlm: non-version read from control device 211
[ 1212.698276][T19276] dlm: non-version read from control device 211
[ 1212.704599][T19276] dlm: non-version read from control device 211
[ 1212.710865][T19276] dlm: non-version read from control device 211
[ 1212.717164][T19276] dlm: non-version read from control device 211
[ 1212.723444][T19276] dlm: non-version read from control device 211
[ 1212.729893][T19276] dlm: non-version read from control device 211
[ 1212.736309][T19276] dlm: non-version read from control device 211
[ 1212.742894][T19276] dlm: non-version read from control device 211
[ 1212.749354][T19276] dlm: non-version read from control device 211
[ 1212.756769][T19276] dlm: non-version read from control device 211
[ 1212.763050][T19276] dlm: non-version read from control device 211
[ 1212.769368][T19276] dlm: non-version read from control device 211
[ 1212.775655][T19276] dlm: non-version read from control device 211
[ 1212.781925][T19276] dlm: non-version read from control device 211
[ 1212.788290][T19276] dlm: non-version read from control device 211
[ 1212.794641][T19276] dlm: non-version read from control device 211
[ 1212.801000][T19276] dlm: non-version read from control device 211
[ 1212.807361][T19276] dlm: non-version read from control device 211
[ 1212.813631][T19276] dlm: non-version read from control device 211
[ 1212.820494][T19276] dlm: non-version read from control device 211
[ 1212.826813][T19276] dlm: non-version read from control device 211
[ 1212.833074][T19276] dlm: non-version read from control device 211
[ 1212.839387][T19276] dlm: non-version read from control device 211
[ 1212.845835][T19276] dlm: non-version read from control device 211
[ 1212.852231][T19276] dlm: non-version read from control device 211
[ 1212.859681][T19276] dlm: non-version read from control device 211
[ 1212.866018][T19276] dlm: non-version read from control device 211
[ 1212.872283][T19276] dlm: non-version read from control device 211
[ 1212.878588][T19276] dlm: non-version read from control device 211
[ 1212.884910][T19276] dlm: non-version read from control device 211
[ 1212.891172][T19276] dlm: non-version read from control device 211
[ 1212.897486][T19276] dlm: non-version read from control device 211
[ 1212.903876][T19276] dlm: non-version read from control device 211
[ 1212.910302][T19276] dlm: non-version read from control device 211
[ 1212.916601][T19276] dlm: non-version read from control device 211
[ 1212.922867][T19276] dlm: non-version read from control device 211
[ 1212.929189][T19276] dlm: non-version read from control device 211
[ 1212.935507][T19276] dlm: non-version read from control device 211
[ 1212.941776][T19276] dlm: non-version read from control device 211
[ 1212.948104][T19276] dlm: non-version read from control device 211
[ 1212.954482][T19276] dlm: non-version read from control device 211
[ 1212.961927][T19276] dlm: non-version read from control device 211
[ 1212.968275][T19276] dlm: non-version read from control device 211
[ 1212.974586][T19276] dlm: non-version read from control device 211
[ 1212.980851][T19276] dlm: non-version read from control device 211
[ 1212.987168][T19276] dlm: non-version read from control device 211
[ 1212.993431][T19276] dlm: non-version read from control device 211
[ 1212.999762][T19276] dlm: non-version read from control device 211
[ 1213.006200][T19276] dlm: non-version read from control device 211
[ 1213.012466][T19276] dlm: non-version read from control device 211
[ 1213.018803][T19276] dlm: non-version read from control device 211
[ 1213.025112][T19276] dlm: non-version read from control device 211
[ 1213.031379][T19276] dlm: non-version read from control device 211
[ 1213.037681][T19276] dlm: non-version read from control device 211
[ 1213.043942][T19276] dlm: non-version read from control device 211
[ 1213.044450][T19277] trusted_key: encrypted_key: master key parameter 'use0000000000000004093' is invalid
[ 1213.050279][T19276] dlm: non-version read from control device 211
[ 1213.068826][T19276] dlm: non-version read from control device 211
[ 1213.075190][T19276] dlm: non-version read from control device 211
[ 1213.081461][T19276] dlm: non-version read from control device 211
[ 1213.087775][T19276] dlm: non-version read from control device 211
[ 1213.094037][T19276] dlm: non-version read from control device 211
[ 1213.100358][T19276] dlm: non-version read from control device 211
[ 1213.106658][T19276] dlm: non-version read from control device 211
[ 1213.112930][T19276] dlm: non-version read from control device 211
[ 1213.119339][T19276] dlm: non-version read from control device 211
[ 1213.125658][T19276] dlm: non-version read from control device 211
[ 1213.131921][T19276] dlm: non-version read from control device 211
[ 1213.138216][T19276] dlm: non-version read from control device 211
[ 1213.144536][T19276] dlm: non-version read from control device 211
[ 1213.150806][T19276] dlm: non-version read from control device 211
[ 1213.157103][T19276] dlm: non-version read from control device 211
[ 1213.163388][T19276] dlm: non-version read from control device 211
[ 1213.171047][T19276] dlm: non-version read from control device 211
[ 1213.177389][T19276] dlm: non-version read from control device 211
[ 1213.183664][T19276] dlm: non-version read from control device 211
[ 1213.189990][T19276] dlm: non-version read from control device 211
[ 1213.196295][T19276] dlm: non-version read from control device 211
[ 1213.202561][T19276] dlm: non-version read from control device 211
[ 1213.208897][T19276] dlm: non-version read from control device 211
[ 1213.215221][T19276] dlm: non-version read from control device 211
[ 1213.578284][ T5880] usb 6-1: USB disconnect, device number 38
[ 1213.604403][ T5942] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[ 1213.719512][T19276] C: renamed from team_slave_0 (while UP)
[ 1213.768047][T19276] netlink: 'syz.4.3767': attribute type 3 has an invalid length.
[ 1213.776084][T19276] netlink: 152 bytes leftover after parsing attributes in process `syz.4.3767'.
[ 1213.787073][T19276] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[ 1213.847516][ T5942] usb 1-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1213.870319][ T5942] usb 1-1: config 0 interface 0 has no altsetting 0
[ 1213.893947][ T5942] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1213.912792][ T5942] usb 1-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1213.970350][ T5942] usb 1-1: Product: syz
[ 1213.984851][ T5942] usb 1-1: Manufacturer: syz
[ 1213.989550][ T5942] usb 1-1: SerialNumber: syz
[ 1214.008225][T19285] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3769'.
[ 1214.020001][T19285] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3769'.
[ 1214.032700][ T5942] usb 1-1: config 0 descriptor??
[ 1214.044955][ T5942] usb 1-1: selecting invalid altsetting 0
[ 1214.257306][ T5880] usb 1-1: USB disconnect, device number 28
[ 1214.594450][T17331] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[ 1214.754505][T17331] usb 7-1: Using ep0 maxpacket: 16
[ 1214.766287][T17331] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1214.786840][T17331] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1214.811322][T17331] usb 7-1: config 0 interface 0 has no altsetting 0
[ 1214.824240][T17331] usb 7-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[ 1214.843586][T17331] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1214.861859][T17331] usb 7-1: config 0 descriptor??
[ 1216.333319][   T30] kauditd_printk_skb: 14 callbacks suppressed
[ 1216.333336][   T30] audit: type=1326 audit(1751387623.196:1550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19287 comm="syz.6.3771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1216.422867][T19310] loop2: detected capacity change from 0 to 7
[ 1216.595610][   T30] audit: type=1326 audit(1751387623.196:1551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19287 comm="syz.6.3771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1217.509161][   T30] audit: type=1326 audit(1751387623.196:1552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19287 comm="syz.6.3771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1217.551846][T19310] Dev loop2: unable to read RDB block 7
[ 1217.588430][T19310]  loop2: unable to read partition table
[ 1217.661587][   T30] audit: type=1326 audit(1751387623.196:1553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19287 comm="syz.6.3771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1217.685018][T19310] loop2: partition table beyond EOD, truncated
[ 1217.691211][T19310] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[ 1217.747011][   T30] audit: type=1326 audit(1751387623.206:1554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19287 comm="syz.6.3771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1217.813982][   T30] audit: type=1326 audit(1751387623.236:1555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19287 comm="syz.6.3771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=91 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1217.854194][T19322] FAULT_INJECTION: forcing a failure.
[ 1217.854194][T19322] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1217.875614][T19323] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3781'.
[ 1217.904438][T19322] CPU: 0 UID: 0 PID: 19322 Comm: syz.4.3779 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[ 1217.904467][T19322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1217.904478][T19322] Call Trace:
[ 1217.904486][T19322]  <TASK>
[ 1217.904495][T19322]  dump_stack_lvl+0x189/0x250
[ 1217.904524][T19322]  ? __pfx____ratelimit+0x10/0x10
[ 1217.904548][T19322]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1217.904571][T19322]  ? __pfx__printk+0x10/0x10
[ 1217.904601][T19322]  should_fail_ex+0x414/0x560
[ 1217.904627][T19322]  _copy_to_user+0x31/0xb0
[ 1217.904654][T19322]  simple_read_from_buffer+0xe1/0x170
[ 1217.904680][T19322]  proc_fail_nth_read+0x1df/0x250
[ 1217.904707][T19322]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1217.904733][T19322]  ? rw_verify_area+0x258/0x650
[ 1217.904751][T19322]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1217.904775][T19322]  vfs_read+0x1fd/0x980
[ 1217.904800][T19322]  ? __pfx___mutex_lock+0x10/0x10
[ 1217.904825][T19322]  ? __pfx_vfs_read+0x10/0x10
[ 1217.904846][T19322]  ? __fget_files+0x2a/0x420
[ 1217.904872][T19322]  ? __fget_files+0x3a0/0x420
[ 1217.904891][T19322]  ? __fget_files+0x2a/0x420
[ 1217.904921][T19322]  ksys_read+0x145/0x250
[ 1217.904944][T19322]  ? __pfx_ksys_read+0x10/0x10
[ 1217.904964][T19322]  ? rcu_is_watching+0x15/0xb0
[ 1217.904992][T19322]  ? do_syscall_64+0xbe/0x3b0
[ 1217.905019][T19322]  do_syscall_64+0xfa/0x3b0
[ 1217.905039][T19322]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1217.905061][T19322]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1217.905079][T19322]  ? clear_bhb_loop+0x60/0xb0
[ 1217.905101][T19322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1217.905117][T19322] RIP: 0033:0x7fb63d98d33c
[ 1217.905133][T19322] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1217.905148][T19322] RSP: 002b:00007fb63e7dc030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1217.905167][T19322] RAX: ffffffffffffffda RBX: 00007fb63dbb6080 RCX: 00007fb63d98d33c
[ 1217.905180][T19322] RDX: 000000000000000f RSI: 00007fb63e7dc0a0 RDI: 0000000000000004
[ 1217.905191][T19322] RBP: 00007fb63e7dc090 R08: 0000000000000000 R09: 0000000000000000
[ 1217.905202][T19322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1217.905213][T19322] R13: 0000000000000001 R14: 00007fb63dbb6080 R15: 00007fff57dc7df8
[ 1217.905244][T19322]  </TASK>
[ 1218.124436][ T5942] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[ 1218.152984][T19323] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3781'.
[ 1218.243750][   T30] audit: type=1326 audit(1751387623.236:1556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19287 comm="syz.6.3771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1218.287912][   T30] audit: type=1326 audit(1751387623.236:1557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19287 comm="syz.6.3771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1218.414362][ T5942] usb 1-1: Using ep0 maxpacket: 32
[ 1219.799802][   T30] audit: type=1326 audit(1751387623.236:1558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19287 comm="syz.6.3771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1219.841701][ T5942] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1219.856354][ T5942] usb 1-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[ 1219.865659][ T5942] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1219.883019][ T5942] usb 1-1: Product: syz
[ 1219.887412][ T5942] usb 1-1: Manufacturer: syz
[ 1219.892037][ T5942] usb 1-1: SerialNumber: syz
[ 1219.900289][   T30] audit: type=1326 audit(1751387623.236:1559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19287 comm="syz.6.3771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1219.925171][ T5942] usb 1-1: config 0 descriptor??
[ 1219.933925][ T5942] cdc_ether 1-1:0.0: probe with driver cdc_ether failed with error -22
[ 1219.942934][ T5942] usb 1-1: unsupported MDLM descriptors
[ 1220.259277][T19334] openvswitch: netlink: Missing valid actions attribute.
[ 1220.267605][T19334] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1221.474291][T17331] usb 6-1: new full-speed USB device number 39 using dummy_hcd
[ 1221.706910][T17331] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1221.731250][T17331] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1221.742180][T17331] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[ 1221.753263][T17331] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1221.765615][ T5942] usb 7-1: USB disconnect, device number 24
[ 1221.769390][T17331] usb 6-1: config 0 descriptor??
[ 1221.786353][T17331] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[ 1221.793504][T17331] dvb-usb: bulk message failed: -22 (3/0)
[ 1221.813778][T17331] dvb-usb: will use the device's hardware PID filter (table count: 16).
[ 1221.829205][T17331] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[ 1221.843011][T17331] usb 6-1: media controller created
[ 1221.862284][T17331] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1221.883034][T17331] dvb-usb: bulk message failed: -22 (6/0)
[ 1221.892571][T17331] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[ 1221.908954][T17331] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.5/usb6/6-1/input/input31
[ 1221.942715][T17331] dvb-usb: schedule remote query interval to 150 msecs.
[ 1221.960516][T17331] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[ 1222.128240][T17331] dvb-usb: bulk message failed: -22 (1/0)
[ 1222.134863][T17331] dvb-usb: error while querying for an remote control event.
[ 1222.161969][T19340] IPVS: set_ctl: invalid protocol: 94 224.0.0.1:20000
[ 1222.169879][T19340] dvb-usb: bulk message failed: -22 (4/0)
[ 1222.191980][T17331] usb 6-1: USB disconnect, device number 39
[ 1222.204796][T19352] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3788'.
[ 1222.332844][T17331] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[ 1222.538718][T19358] trusted_key: encrypted_key: keylen parameter is missing
[ 1222.571363][T19358] netdevsim netdevsim7: Direct firmware load for ./file0 failed with error -2
[ 1222.580929][T19358] netdevsim netdevsim7: Falling back to sysfs fallback for: ./file0
[ 1224.305612][ T5880] usb 1-1: USB disconnect, device number 29
[ 1224.528149][T19372] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3794'.
[ 1224.539486][T19372] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3794'.
[ 1229.122307][T19411] loop9: detected capacity change from 0 to 8
[ 1230.104335][T17331] usb 5-1: new full-speed USB device number 40 using dummy_hcd
[ 1230.126245][T19411]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[ 1230.131690][T19411] loop9: partition table partially beyond EOD, truncated
[ 1230.138849][T19411] loop9: p1 size 81768186 extends beyond EOD, truncated
[ 1231.044565][T17331] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1231.054832][T17331] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1231.074340][T17331] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1231.085171][T17331] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1231.093237][T17331] usb 5-1: Product: syz
[ 1231.097579][T17331] usb 5-1: Manufacturer: syz
[ 1231.102193][T17331] usb 5-1: SerialNumber: syz
[ 1234.723777][T19419] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3808'.
[ 1234.733615][T19419] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3808'.
[ 1234.803709][T19426] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1234.847107][T17331] usb 5-1: 0:2 : does not exist
[ 1234.852118][ T5906] lo speed is unknown, defaulting to 1000
[ 1234.897375][T17331] usb 5-1: 5:0: failed to get current value for ch 0 (-22)
[ 1235.029301][T17331] usb 5-1: USB disconnect, device number 40
[ 1235.198551][T19437] xt_SECMARK: invalid mode: 2
[ 1235.214905][  T926] usb 6-1: new high-speed USB device number 40 using dummy_hcd
[ 1235.414574][  T926] usb 6-1: Using ep0 maxpacket: 16
[ 1235.557211][  T926] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1236.064258][  T926] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1236.593495][   T30] kauditd_printk_skb: 4 callbacks suppressed
[ 1236.593513][   T30] audit: type=1326 audit(1751387643.456:1564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19447 comm="syz.6.3816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1236.692352][  T926] usb 6-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[ 1238.044297][  T926] usb 6-1: New USB device strings: Mfr=0, Product=2, SerialNumber=0
[ 1238.053709][  T926] usb 6-1: Product: syz
[ 1240.113111][   T30] audit: type=1326 audit(1751387643.496:1565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19447 comm="syz.6.3816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1240.148614][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1240.167410][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1240.178406][  T926] usb 6-1: config 0 descriptor??
[ 1240.188189][   T30] audit: type=1326 audit(1751387643.506:1566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19447 comm="syz.6.3816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=79 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1240.211412][   T30] audit: type=1326 audit(1751387643.506:1567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19447 comm="syz.6.3816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1240.233517][   T30] audit: type=1326 audit(1751387643.506:1568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19447 comm="syz.6.3816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1240.256518][   T30] audit: type=1326 audit(1751387643.516:1569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19447 comm="syz.6.3816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1240.294288][  T926] usb 6-1: can't set config #0, error -71
[ 1240.304447][   T30] audit: type=1326 audit(1751387643.526:1570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19447 comm="syz.6.3816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1240.339954][  T926] usb 6-1: USB disconnect, device number 40
[ 1240.386895][   T30] audit: type=1326 audit(1751387643.526:1571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19447 comm="syz.6.3816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1240.425319][   T30] audit: type=1326 audit(1751387643.536:1572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19447 comm="syz.6.3816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1241.242951][   T30] audit: type=1326 audit(1751387643.536:1573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19447 comm="syz.6.3816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cea58e929 code=0x7ffc0000
[ 1241.325432][ T5879] usb 1-1: new full-speed USB device number 30 using dummy_hcd
[ 1242.545286][ T5879] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1242.565596][ T5879] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1242.577748][ T5879] usb 1-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[ 1242.589185][ T5879] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1242.682199][ T5879] usb 1-1: config 0 descriptor??
[ 1242.703246][ T5879] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[ 1242.727502][ T5879] dvb-usb: bulk message failed: -22 (3/0)
[ 1243.012530][ T5879] dvb-usb: will use the device's hardware PID filter (table count: 16).
[ 1243.139165][T19488] loop9: detected capacity change from 0 to 8
[ 1243.354783][ T5879] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[ 1243.362589][ T5879] usb 1-1: media controller created
[ 1243.756205][ T5879] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1243.765410][T19488]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[ 1243.770767][T19488] loop9: partition table partially beyond EOD, truncated
[ 1243.781192][T19488] loop9: p1 size 81768186 extends beyond EOD, truncated
[ 1243.814816][ T5879] dvb-usb: bulk message failed: -22 (6/0)
[ 1243.820691][ T5879] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[ 1243.977609][ T5879] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input32
[ 1244.165398][ T5879] dvb-usb: schedule remote query interval to 150 msecs.
[ 1244.212964][ T5879] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[ 1244.375376][ T5880] dvb-usb: bulk message failed: -22 (1/0)
[ 1244.383344][ T5880] dvb-usb: error while querying for an remote control event.
[ 1244.400599][ T5879] usb 1-1: USB disconnect, device number 30
[ 1244.460626][T19505] fuse: Unknown parameter 'romtm�de'
[ 1245.165103][T19509] cgroup: Need name or subsystem set
[ 1245.330477][ T5879] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[ 1246.824421][ T5880] usb 5-1: new full-speed USB device number 41 using dummy_hcd
[ 1247.096101][ T5880] usb 5-1: not running at top speed; connect to a high speed hub
[ 1247.129853][ T5880] usb 5-1: config 1 interface 0 has no altsetting 0
[ 1247.140253][ T5880] usb 5-1: New USB device found, idVendor=05ac, idProduct=0230, bcdDevice= 0.40
[ 1247.150464][ T5880] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1247.167290][ T5880] usb 5-1: Product: syz
[ 1247.171833][ T5880] usb 5-1: Manufacturer: syz
[ 1247.178113][ T5880] usb 5-1: SerialNumber: syz
[ 1247.204361][ T5943] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[ 1247.400382][ T5880] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/input/input33
[ 1247.412512][ T5174] bcm5974 5-1:1.0: could not read from device
[ 1247.423247][ T5174] bcm5974 5-1:1.0: could not read from device
[ 1248.052134][ T5880] usb 5-1: USB disconnect, device number 41
[ 1248.064407][ T5174] bcm5974 5-1:1.0: could not read from device
[ 1248.154499][ T5943] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1248.165734][ T5943] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1248.176745][ T5943] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1248.189095][ T5943] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 1248.203583][ T5943] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1248.219929][ T5943] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1248.244624][ T5943] usb 7-1: Manufacturer: syz
[ 1248.279990][ T5943] usb 7-1: config 0 descriptor??
[ 1248.813456][T19528] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1248.839349][T19528] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1249.276619][T19543] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1249.297112][T19543] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1249.298859][T19528] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1249.323454][T19528] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1249.381713][ T5943] usbhid 7-1:0.0: can't add hid device: -71
[ 1249.432861][ T5943] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[ 1249.644492][ T5879] usb 6-1: new full-speed USB device number 41 using dummy_hcd
[ 1249.853423][ T5943] usb 7-1: USB disconnect, device number 25
[ 1249.943706][T19554] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3844'.
[ 1250.248734][T19560] trusted_key: encrypted_key: insufficient parameters specified
[ 1250.414322][ T5879] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1250.444574][ T5879] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1250.467568][ T5879] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[ 1250.483104][ T5879] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1250.522637][ T5879] usb 6-1: config 0 descriptor??
[ 1250.534220][ T5879] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[ 1250.543688][ T5879] dvb-usb: bulk message failed: -22 (3/0)
[ 1250.561162][ T5879] dvb-usb: will use the device's hardware PID filter (table count: 16).
[ 1250.580410][ T5879] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[ 1250.596046][ T5879] usb 6-1: media controller created
[ 1250.613460][ T5879] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1250.640583][ T5879] dvb-usb: bulk message failed: -22 (6/0)
[ 1250.649170][ T5879] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[ 1250.670458][ T5879] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.5/usb6/6-1/input/input34
[ 1250.688046][ T5879] dvb-usb: schedule remote query interval to 150 msecs.
[ 1250.696649][ T5879] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[ 1250.801504][ T5879] usb 6-1: USB disconnect, device number 41
[ 1250.892510][ T5879] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[ 1251.437304][ T5942] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[ 1252.054363][ T5942] usb 1-1: Using ep0 maxpacket: 16
[ 1252.064172][ T5942] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1252.082429][ T5942] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1252.097805][ T5942] usb 1-1: New USB device found, idVendor=04d8, idProduct=f002, bcdDevice= 0.00
[ 1252.112562][ T5942] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1252.362836][ T5942] usb 1-1: config 0 descriptor??
[ 1253.427957][ T5942] usbhid 1-1:0.0: can't add hid device: -71
[ 1253.428767][T19607] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3855'.
[ 1253.433975][ T5942] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1254.828441][ T5942] usb 1-1: USB disconnect, device number 31
[ 1255.088753][T19621] program syz.6.3858 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1255.305914][ T5879] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[ 1255.434603][T19634] xt_cluster: node mask cannot exceed total number of nodes
[ 1255.937650][ T5879] usb 5-1: Using ep0 maxpacket: 32
[ 1255.975809][ T5879] usb 5-1: config 1 interface 0 altsetting 1 bulk endpoint 0x1 has invalid maxpacket 1024
[ 1256.005330][ T5879] usb 5-1: config 1 interface 0 has no altsetting 0
[ 1256.041167][ T5879] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1256.083023][ T5879] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1256.114710][ T5879] usb 5-1: Product: ゐꮦ詶몏排⯝印먕綔⊒ﵿ넴៧뽔㢩ɜ䤃ェ奅爉㙫孅冷ꀘ﹠☙鑖퇮쀢ᎁꗁ⥇泰▫릕룐⃄鸇ꈈࡿ楳䉺ꇡ᫯ⷃ鯑焷堝袛ȗ孖閏
[ 1256.165134][ T5879] usb 5-1: Manufacturer: 怀
[ 1256.169800][ T5879] usb 5-1: SerialNumber: syz
[ 1256.181968][ T5879] usb 5-1: rejected 1 configuration due to insufficient available bus power
[ 1256.216206][ T5879] usb 5-1: no configuration chosen from 1 choice
[ 1258.293133][T19665] syz_tun: entered allmulticast mode
[ 1258.591056][  T926] hid-generic 0000:0004:0034.000E: unknown main item tag 0x0
[ 1258.661235][T19664] syz_tun: left allmulticast mode
[ 1258.686654][  T926] hid-generic 0000:0004:0034.000E: unknown main item tag 0x0
[ 1258.767599][  T926] hid-generic 0000:0004:0034.000E: unknown main item tag 0x0
[ 1259.248910][  T926] hid-generic 0000:0004:0034.000E: hidraw0: <UNKNOWN> HID v0.0e Device [syz0] on syz1
[ 1259.284425][ T5942] usb 5-1: USB disconnect, device number 42
[ 1259.794455][T17331] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[ 1260.754228][T17331] usb 1-1: Using ep0 maxpacket: 16
[ 1260.819111][T19686] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(13)
[ 1260.826208][T19686] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1260.842054][T19686] vhci_hcd vhci_hcd.0: Device attached
[ 1260.852778][T19689] xt_nfacct: accounting object `syz1' does not exists
[ 1260.861332][T19686] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[ 1260.886126][T17331] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1260.897426][T17331] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1260.914269][T17331] usb 1-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00
[ 1260.932592][T17331] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1261.099515][T17331] usb 1-1: config 0 descriptor??
[ 1261.114489][T19686] vhci_hcd vhci_hcd.0: pdev(5) rhport(2) sockfd(17)
[ 1261.121754][T19686] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1261.157991][ T5880] vhci_hcd: vhci_device speed not set
[ 1261.280970][T19686] vhci_hcd vhci_hcd.0: Device attached
[ 1261.575735][ T5880] usb 43-1: new full-speed USB device number 2 using vhci_hcd
[ 1261.656004][T19683] vhci_hcd vhci_hcd.0: pdev(5) rhport(3) sockfd(20)
[ 1261.662674][T19683] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[ 1262.000127][T19704] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[ 1262.010129][T17331] corsair 0003:1B1C:1B02.000F: item fetching failed at offset 3/5
[ 1262.240827][T19683] vhci_hcd vhci_hcd.0: Device attached
[ 1262.255336][T17331] corsair 0003:1B1C:1B02.000F: parse failed
[ 1262.262903][T19683] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[ 1262.282981][T19686] vhci_hcd vhci_hcd.0: pdev(5) rhport(4) sockfd(19)
[ 1262.289617][T19686] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[ 1262.298357][T17331] corsair 0003:1B1C:1B02.000F: probe with driver corsair failed with error -22
[ 1262.341759][T19686] vhci_hcd vhci_hcd.0: Device attached
[ 1262.379946][T19696] vhci_hcd: connection closed
[ 1262.379969][T19692] vhci_hcd: connection closed
[ 1262.383143][T19687] vhci_hcd: connection reset by peer
[ 1262.385151][T19703] vhci_hcd: connection closed
[ 1262.394283][T13648] vhci_hcd: stop threads
[ 1262.416183][T13648] vhci_hcd: release socket
[ 1262.466980][T13648] vhci_hcd: disconnect device
[ 1262.521551][T13648] vhci_hcd: stop threads
[ 1262.527580][T13648] vhci_hcd: release socket
[ 1262.532289][T13648] vhci_hcd: disconnect device
[ 1262.542616][T13648] vhci_hcd: stop threads
[ 1262.547996][T13648] vhci_hcd: release socket
[ 1262.552707][T13648] vhci_hcd: disconnect device
[ 1262.568598][T13648] vhci_hcd: stop threads
[ 1262.573069][T13648] vhci_hcd: release socket
[ 1262.579889][T13648] vhci_hcd: disconnect device
[ 1262.661122][T16653] Bluetooth: hci2: unexpected event 0x02 length: 0 < 1
[ 1262.671787][T13648] Bluetooth: hci2: Frame reassembly failed (-84)
[ 1262.679193][T13648] Bluetooth: hci2: Frame reassembly failed (-84)
[ 1262.769995][T19712] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3883'.
[ 1263.711238][T19713] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3882'.
[ 1263.765617][  T926] usb 1-1: USB disconnect, device number 32
[ 1264.485756][T19725] trusted_key: encrypted_key: master key parameter 'use0000000000000004093' is invalid
[ 1264.656069][T16653] Bluetooth: hci2: command 0x1003 tx timeout
[ 1264.674682][ T5823] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 1265.784771][T19716] ceph: No mds server is up or the cluster is laggy
[ 1266.845691][ T5880] vhci_hcd: vhci_device speed not set
[ 1266.986071][T19747] loop9: detected capacity change from 0 to 8
[ 1267.004654][T19747]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[ 1267.010203][T19747] loop9: partition table partially beyond EOD, truncated
[ 1267.018068][T19747] loop9: p1 size 81768186 extends beyond EOD, truncated
[ 1268.569919][   T30] kauditd_printk_skb: 4 callbacks suppressed
[ 1268.569938][   T30] audit: type=1326 audit(1751387674.696:1578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19750 comm="syz.7.3892" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fefb4d8e929 code=0x0
[ 1270.204529][T19773] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[ 1272.335582][T16653] Bluetooth: hci2: command 0x1003 tx timeout
[ 1272.971990][T19769] syz_tun: entered allmulticast mode
[ 1273.000903][ T5823] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 1273.103995][T19768] syz_tun: left allmulticast mode
[ 1273.686485][T19781] fuse: Bad value for 'user_id'
[ 1273.724269][T19781] fuse: Bad value for 'user_id'
[ 1273.851913][ T5879] hid-generic 0000:0004:0034.0010: unknown main item tag 0x0
[ 1273.929327][ T5879] hid-generic 0000:0004:0034.0010: unknown main item tag 0x0
[ 1273.992096][ T5879] hid-generic 0000:0004:0034.0010: unknown main item tag 0x0
[ 1274.211375][T19777] syz_tun: entered allmulticast mode
[ 1274.487130][T19776] syz_tun: left allmulticast mode
[ 1274.545421][ T5879] hid-generic 0000:0004:0034.0010: hidraw0: <UNKNOWN> HID v0.0e Device [syz0] on syz1
[ 1275.244980][ T5943] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[ 1275.624358][ T5943] usb 1-1: Using ep0 maxpacket: 32
[ 1275.840769][ T5943] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1275.840804][ T5943] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[ 1275.840828][ T5943] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1275.840871][ T5943] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1275.840894][ T5943] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1275.867369][ T5943] usb 1-1: config 0 descriptor??
[ 1275.871132][T19791] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1275.875829][ T5943] hub 1-1:0.0: USB hub found
[ 1278.459587][ T5943] hub 1-1:0.0: config failed, can't read hub descriptor (err -22)
[ 1278.573970][ T5943] usbhid 1-1:0.0: can't add hid device: -71
[ 1278.653632][ T5943] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1278.922433][ T5943] usb 1-1: USB disconnect, device number 33
[ 1278.977844][T19835] netlink: 56 bytes leftover after parsing attributes in process `syz.6.3914'.
[ 1279.817236][T17331] usb 7-1: new high-speed USB device number 26 using dummy_hcd
[ 1280.164256][T17331] usb 7-1: Using ep0 maxpacket: 32
[ 1280.187820][T17331] usb 7-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[ 1280.197398][T17331] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1280.337712][T17331] usb 7-1: config 0 descriptor??
[ 1280.540297][   T30] audit: type=1326 audit(1751387687.406:1579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19846 comm="syz.4.3919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1280.564596][  T926] usb 6-1: new high-speed USB device number 42 using dummy_hcd
[ 1280.579448][T17331] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[ 1280.595402][   T30] audit: type=1326 audit(1751387687.406:1580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19846 comm="syz.4.3919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1280.626515][T17331] usb 7-1: Direct firmware load for dvb-usb-az6027-03.fw failed with error -2
[ 1280.640128][T17331] usb 7-1: Falling back to sysfs fallback for: dvb-usb-az6027-03.fw
[ 1280.739491][  T926] usb 6-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[ 1280.860059][  T926] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1280.868476][  T926] usb 6-1: Product: syz
[ 1280.872666][  T926] usb 6-1: Manufacturer: syz
[ 1280.877419][  T926] usb 6-1: SerialNumber: syz
[ 1280.884835][  T926] usb 6-1: config 0 descriptor??
[ 1281.426242][  T926] hso 6-1:0.0: Failed to find INT IN ep
[ 1281.638004][  T926] usb-storage 6-1:0.0: USB Mass Storage device detected
[ 1282.500892][  T926] usb 6-1: USB disconnect, device number 42
[ 1283.338500][   T30] audit: type=1400 audit(1751387689.726:1581): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=19881 comm="syz.7.3928" netif=wpan0
[ 1285.204413][ T5942] usb 6-1: new high-speed USB device number 43 using dummy_hcd
[ 1285.455383][ T5942] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1285.504305][ T5942] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1285.524308][ T5942] usb 6-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[ 1285.540778][ T5942] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1285.579087][ T5942] usb 6-1: config 0 descriptor??
[ 1286.407783][ T5942] cm6533_jd 0003:0D8C:0022.0011: unknown main item tag 0x0
[ 1286.415575][ T5942] cm6533_jd 0003:0D8C:0022.0011: unknown main item tag 0x0
[ 1286.426455][ T5942] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:0D8C:0022.0011/input/input35
[ 1286.456476][ T5942] cm6533_jd 0003:0D8C:0022.0011: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.5-1/input0
[ 1286.965904][T19945] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3943'.
[ 1287.454631][T19946] netlink: 'syz.7.3944': attribute type 30 has an invalid length.
[ 1287.575208][T16417] usb 6-1: reset high-speed USB device number 43 using dummy_hcd
[ 1289.407638][T19969] fuse: Unknown parameter 'romtm�de'
[ 1290.693513][ T5880] usb 6-1: USB disconnect, device number 43
[ 1292.703610][T20003] netlink: 112 bytes leftover after parsing attributes in process `syz.5.3960'.
[ 1295.364258][ T5942] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[ 1295.523299][ T5942] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1295.536775][ T5942] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1295.547046][ T5942] usb 1-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice=d6.af
[ 1295.557431][ T5942] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1295.567290][ T5942] usb 1-1: config 0 descriptor??
[ 1296.496754][T20068] loop6: detected capacity change from 0 to 63
[ 1296.506630][    C1] raw-gadget.0 gadget.0: ignoring, device is not running
[ 1296.515645][    C1] raw-gadget.0 gadget.0: ignoring, device is not running
[ 1296.519974][T20068] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1296.524121][    C1] raw-gadget.0 gadget.0: ignoring, device is not running
[ 1296.539396][ T5942] usbhid 1-1:0.0: can't add hid device: -32
[ 1296.546203][ T5942] usbhid 1-1:0.0: probe with driver usbhid failed with error -32
[ 1296.558649][T20068] Buffer I/O error on dev loop6, logical block 1, async page read
[ 1296.560652][ T5942] usb 1-1: USB disconnect, device number 34
[ 1296.582866][T20068] Buffer I/O error on dev loop6, logical block 2, async page read
[ 1296.598881][T20068] Buffer I/O error on dev loop6, logical block 3, async page read
[ 1296.722948][T20068] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1296.734629][T20068] Buffer I/O error on dev loop6, logical block 1, async page read
[ 1296.924245][T20068] Buffer I/O error on dev loop6, logical block 2, async page read
[ 1296.924356][T20068] Buffer I/O error on dev loop6, logical block 3, async page read
[ 1296.925293][T20068] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1296.929120][T20068] Buffer I/O error on dev loop6, logical block 1, async page read
[ 1297.589616][T16417] usb 5-1: new high-speed USB device number 43 using dummy_hcd
[ 1297.748437][T16417] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1297.759865][T16417] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1297.780554][T16417] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1297.813773][T16417] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1297.825015][T16417] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1297.839339][T16417] usb 5-1: config 0 descriptor??
[ 1298.276955][T16417] plantronics 0003:047F:FFFF.0012: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[ 1298.655591][T20097] loop9: detected capacity change from 0 to 8
[ 1299.651137][T20096] syz_tun: entered allmulticast mode
[ 1299.791128][T20091] syz_tun: left allmulticast mode
[ 1299.899325][T20097]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[ 1299.904796][T20097] loop9: partition table partially beyond EOD, truncated
[ 1299.912244][T20097] loop9: p1 size 81768186 extends beyond EOD, truncated
[ 1300.071947][T20100] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3988'.
[ 1300.101414][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.108842][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1301.218379][ T5880] usb 5-1: USB disconnect, device number 43
[ 1301.475998][T20121] block nbd7: NBD_DISCONNECT
[ 1303.371884][T20145] syz_tun: entered allmulticast mode
[ 1303.658697][T20142] syz_tun: left allmulticast mode
[ 1304.909976][T20178] netlink: 112 bytes leftover after parsing attributes in process `syz.7.4009'.
[ 1304.928445][T20179] random: crng reseeded on system resumption
[ 1305.811313][T20182] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4009'.
[ 1306.028442][T20179] xt_CT: No such helper "snmp"
[ 1306.454914][T20202] FAULT_INJECTION: forcing a failure.
[ 1306.454914][T20202] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1306.480064][T20202] CPU: 1 UID: 0 PID: 20202 Comm: syz.6.4015 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[ 1306.480096][T20202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1306.480108][T20202] Call Trace:
[ 1306.480116][T20202]  <TASK>
[ 1306.480125][T20202]  dump_stack_lvl+0x189/0x250
[ 1306.480228][T20202]  ? __pfx____ratelimit+0x10/0x10
[ 1306.480252][T20202]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1306.480273][T20202]  ? __pfx__printk+0x10/0x10
[ 1306.480291][T20202]  ? __might_fault+0xb0/0x130
[ 1306.480319][T20202]  should_fail_ex+0x414/0x560
[ 1306.480343][T20202]  _copy_from_user+0x2d/0xb0
[ 1306.480391][T20202]  ___sys_sendmsg+0x158/0x2a0
[ 1306.480414][T20202]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1306.480468][T20202]  ? __fget_files+0x2a/0x420
[ 1306.480504][T20202]  ? __fget_files+0x3a0/0x420
[ 1306.480535][T20202]  __sys_sendmmsg+0x227/0x430
[ 1306.480578][T20202]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1306.480597][T20202]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1306.480644][T20202]  ? ksys_write+0x22a/0x250
[ 1306.480666][T20202]  ? __pfx_ksys_write+0x10/0x10
[ 1306.480683][T20202]  ? rcu_is_watching+0x15/0xb0
[ 1306.480713][T20202]  __x64_sys_sendmmsg+0xa0/0xc0
[ 1306.480735][T20202]  do_syscall_64+0xfa/0x3b0
[ 1306.480757][T20202]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1306.480779][T20202]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1306.480797][T20202]  ? clear_bhb_loop+0x60/0xb0
[ 1306.480818][T20202]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1306.480835][T20202] RIP: 0033:0x7f7cea58e929
[ 1306.480853][T20202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1306.480869][T20202] RSP: 002b:00007f7ceb331038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1306.480889][T20202] RAX: ffffffffffffffda RBX: 00007f7cea7b5fa0 RCX: 00007f7cea58e929
[ 1306.480903][T20202] RDX: 0000000000000001 RSI: 0000200000001ac0 RDI: 0000000000000003
[ 1306.480915][T20202] RBP: 00007f7ceb331090 R08: 0000000000000000 R09: 0000000000000000
[ 1306.480927][T20202] R10: 0000000020000800 R11: 0000000000000246 R12: 0000000000000001
[ 1306.480938][T20202] R13: 0000000000000000 R14: 00007f7cea7b5fa0 R15: 00007ffd70833078
[ 1306.480966][T20202]  </TASK>
[ 1307.555065][T20213] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4019'.
[ 1307.575263][T20213] openvswitch: netlink: nsh attr 8196 is out of range max 3
[ 1307.597187][T20213] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1308.257924][ T5880] kernel write not supported for file /media1 (pid: 5880 comm: kworker/0:5)
[ 1309.125796][T20236] loop6: detected capacity change from 0 to 63
[ 1309.483753][T20236] buffer_io_error: 958 callbacks suppressed
[ 1309.483938][T20236] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1309.517434][T20236] Buffer I/O error on dev loop6, logical block 1, async page read
[ 1309.544800][T20236] Buffer I/O error on dev loop6, logical block 2, async page read
[ 1309.570999][T20236] Buffer I/O error on dev loop6, logical block 3, async page read
[ 1309.587908][T20236] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1309.614716][T20236] Buffer I/O error on dev loop6, logical block 1, async page read
[ 1309.632180][T20236] Buffer I/O error on dev loop6, logical block 2, async page read
[ 1309.642448][T20236] Buffer I/O error on dev loop6, logical block 3, async page read
[ 1309.658138][T20237] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1309.807116][T20237] Buffer I/O error on dev loop6, logical block 1, async page read
[ 1310.211173][T20249] loop9: detected capacity change from 0 to 8
[ 1310.843695][T20249]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[ 1310.849150][T20249] loop9: partition table partially beyond EOD, truncated
[ 1310.857842][T20249] loop9: p1 size 81768186 extends beyond EOD, truncated
[ 1311.129936][T20253] syzkaller0: entered promiscuous mode
[ 1311.144391][T20253] syzkaller0: entered allmulticast mode
[ 1312.344478][T20265] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1313.579634][ T5880] usb 6-1: new high-speed USB device number 44 using dummy_hcd
[ 1314.303579][ T5880] usb 6-1: Using ep0 maxpacket: 16
[ 1314.340823][ T5880] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1152, setting to 1024
[ 1314.447404][ T5880] usb 6-1: New USB device found, idVendor=05ac, idProduct=0246, bcdDevice= 0.00
[ 1314.483431][ T5880] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1314.511845][ T5880] usb 6-1: config 0 descriptor??
[ 1314.526807][T20265] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1314.577723][T20280] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4039'.
[ 1314.641201][   T30] audit: type=1326 audit(1751387721.506:1582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20279 comm="syz.4.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1314.645441][T20281] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.4041' sets config #0
[ 1314.675803][   T30] audit: type=1326 audit(1751387721.506:1583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20279 comm="syz.4.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1314.709666][T20281] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.4041' sets config #1
[ 1314.720530][   T30] audit: type=1326 audit(1751387721.506:1584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20279 comm="syz.4.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1314.774313][   T30] audit: type=1326 audit(1751387721.506:1585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20279 comm="syz.4.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1314.838961][   T30] audit: type=1326 audit(1751387721.506:1586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20279 comm="syz.4.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1314.945472][   T30] audit: type=1326 audit(1751387721.506:1587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20279 comm="syz.4.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1314.968573][   T30] audit: type=1326 audit(1751387721.506:1588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20279 comm="syz.4.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1314.990904][   T30] audit: type=1326 audit(1751387721.506:1589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20279 comm="syz.4.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1315.013256][   T30] audit: type=1326 audit(1751387721.506:1590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20279 comm="syz.4.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1315.046403][T20295] netlink: 'syz.6.4042': attribute type 1 has an invalid length.
[ 1315.055185][T20295] netlink: 224 bytes leftover after parsing attributes in process `syz.6.4042'.
[ 1315.475647][   T30] audit: type=1326 audit(1751387721.506:1591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20279 comm="syz.4.4041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1315.714667][ T5880] apple 0003:05AC:0246.0013: unknown global tag 0xc
[ 1315.721329][ T5880] apple 0003:05AC:0246.0013: item 0 2 1 12 parsing failed
[ 1315.726928][T20294] loop9: detected capacity change from 0 to 8
[ 1315.736692][T20294]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[ 1315.742056][T20294] loop9: partition table partially beyond EOD, truncated
[ 1315.743735][ T5880] apple 0003:05AC:0246.0013: parse failed
[ 1315.749315][T20294] loop9: p1 size 81768186 extends beyond EOD, truncated
[ 1315.762812][ T5880] apple 0003:05AC:0246.0013: probe with driver apple failed with error -22
[ 1315.893658][  T926] usb 5-1: new high-speed USB device number 44 using dummy_hcd
[ 1315.947494][ T5943] usb 6-1: USB disconnect, device number 44
[ 1316.967479][  T926] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1317.059518][  T926] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1317.069593][  T926] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1317.155987][  T926] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1317.433712][  T926] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1317.444893][  T926] usb 5-1: config 0 descriptor??
[ 1318.042071][  T926] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1318.051491][  T926] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1318.062992][  T926] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1318.072149][  T926] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1318.084436][  T926] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1318.102825][  T926] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1318.310984][  T926] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1318.344757][  T926] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1319.396056][  T926] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1319.433279][T20318] vti0: entered promiscuous mode
[ 1319.492182][  T926] plantronics 0003:047F:FFFF.0014: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[ 1319.563427][T20326] netlink: 32 bytes leftover after parsing attributes in process `syz.6.4053'.
[ 1319.652173][   T30] kauditd_printk_skb: 12 callbacks suppressed
[ 1319.652191][   T30] audit: type=1326 audit(1751387726.516:1604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20329 comm="syz.0.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c3b8e929 code=0x7ffc0000
[ 1319.662845][T20331] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.4054' sets config #0
[ 1319.738868][   T30] audit: type=1326 audit(1751387726.516:1605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20329 comm="syz.0.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c3b8e929 code=0x7ffc0000
[ 1319.856973][T20337] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.4054' sets config #1
[ 1319.971254][  T926] usb 5-1: USB disconnect, device number 44
[ 1320.057418][   T30] audit: type=1326 audit(1751387726.526:1606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20329 comm="syz.0.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5c3b8e929 code=0x7ffc0000
[ 1320.413210][   T30] audit: type=1326 audit(1751387726.526:1607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20329 comm="syz.0.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c3b8e929 code=0x7ffc0000
[ 1320.670560][   T30] audit: type=1326 audit(1751387726.526:1608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20329 comm="syz.0.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5c3b8e929 code=0x7ffc0000
[ 1321.176032][   T30] audit: type=1326 audit(1751387726.526:1609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20329 comm="syz.0.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c3b8e929 code=0x7ffc0000
[ 1321.271036][T20343] netlink: 'syz.4.4057': attribute type 1 has an invalid length.
[ 1321.278924][T20343] netlink: 224 bytes leftover after parsing attributes in process `syz.4.4057'.
[ 1321.413210][   T30] audit: type=1326 audit(1751387726.526:1610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20329 comm="syz.0.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd5c3b8e929 code=0x7ffc0000
[ 1321.689682][   T30] audit: type=1326 audit(1751387726.526:1611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20329 comm="syz.0.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c3b8e929 code=0x7ffc0000
[ 1321.906845][   T30] audit: type=1326 audit(1751387726.526:1612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20329 comm="syz.0.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7fd5c3b8e929 code=0x7ffc0000
[ 1321.934513][   T30] audit: type=1326 audit(1751387726.526:1613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20329 comm="syz.0.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c3b8e929 code=0x7ffc0000
[ 1322.565615][T20354] (unnamed net_device) (uninitialized): option arp_validate: invalid value (18446744073709551614)
[ 1323.276104][T20358] tipc: Started in network mode
[ 1323.281048][T20358] tipc: Node identity fef331000000000000000000000000aa, cluster identity 4711
[ 1323.290088][T20358] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[ 1324.548943][T20368] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0.
[ 1324.639209][T20372] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.4069' sets config #0
[ 1324.650651][T20372] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.4069' sets config #1
[ 1324.674828][   T30] kauditd_printk_skb: 28 callbacks suppressed
[ 1324.674846][   T30] audit: type=1326 audit(1751387731.546:1642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20369 comm="syz.4.4069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1324.749668][   T30] audit: type=1326 audit(1751387731.546:1643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20369 comm="syz.4.4069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63d98e929 code=0x7ffc0000
[ 1324.802345][T20376] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4070'.
[ 1324.891085][T16653] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1324.903069][T16653] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1324.929815][T16653] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1324.945057][T16653] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1324.948173][T16653] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1325.954392][T20380] lo speed is unknown, defaulting to 1000
[ 1327.123525][T16653] Bluetooth: hci2: command tx timeout
[ 1327.434441][  T926] usb 5-1: new high-speed USB device number 45 using dummy_hcd
[ 1327.989183][T20380] chnl_net:caif_netlink_parms(): no params data found
[ 1328.473880][  T926] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1328.490310][  T926] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 1328.499680][  T926] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1328.513140][  T926] usb 5-1: config 0 descriptor??
[ 1328.534919][  T926] pwc: Askey VC010 type 2 USB webcam detected.
[ 1328.590992][T20419] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0.
[ 1329.214353][T16653] Bluetooth: hci2: command tx timeout
[ 1329.384022][  T926] pwc: recv_control_msg error -32 req 02 val 2b00
[ 1329.540705][  T926] pwc: recv_control_msg error -32 req 02 val 2700
[ 1329.565709][  T926] pwc: recv_control_msg error -32 req 02 val 2c00
[ 1329.708847][T20430] FAULT_INJECTION: forcing a failure.
[ 1329.708847][T20430] name failslab, interval 1, probability 0, space 0, times 0
[ 1329.746036][T20430] CPU: 1 UID: 0 PID: 20430 Comm: syz.6.4083 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[ 1329.746069][T20430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1329.746087][T20430] Call Trace:
[ 1329.746095][T20430]  <TASK>
[ 1329.746105][T20430]  dump_stack_lvl+0x189/0x250
[ 1329.746133][T20430]  ? __pfx____ratelimit+0x10/0x10
[ 1329.746157][T20430]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1329.746179][T20430]  ? __pfx__printk+0x10/0x10
[ 1329.746204][T20430]  ? __pfx___might_resched+0x10/0x10
[ 1329.746231][T20430]  should_fail_ex+0x414/0x560
[ 1329.746256][T20430]  should_failslab+0xa8/0x100
[ 1329.746279][T20430]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[ 1329.746301][T20430]  ? __alloc_skb+0x112/0x2d0
[ 1329.746323][T20430]  __alloc_skb+0x112/0x2d0
[ 1329.746344][T20430]  netlink_sendmsg+0x5c6/0xb30
[ 1329.746373][T20430]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1329.746400][T20430]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1329.746420][T20430]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1329.746440][T20430]  __sock_sendmsg+0x219/0x270
[ 1329.746466][T20430]  ____sys_sendmsg+0x505/0x830
[ 1329.746492][T20430]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1329.746521][T20430]  ? import_iovec+0x74/0xa0
[ 1329.746546][T20430]  ___sys_sendmsg+0x21f/0x2a0
[ 1329.746565][T20430]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1329.746615][T20430]  ? __fget_files+0x2a/0x420
[ 1329.746632][T20430]  ? __fget_files+0x3a0/0x420
[ 1329.746660][T20430]  __x64_sys_sendmsg+0x19b/0x260
[ 1329.746682][T20430]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1329.746707][T20430]  ? __pfx_ksys_write+0x10/0x10
[ 1329.746720][T20430]  ? rcu_is_watching+0x15/0xb0
[ 1329.746742][T20430]  ? do_syscall_64+0xbe/0x3b0
[ 1329.746763][T20430]  do_syscall_64+0xfa/0x3b0
[ 1329.746780][T20430]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1329.746800][T20430]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1329.746817][T20430]  ? clear_bhb_loop+0x60/0xb0
[ 1329.746837][T20430]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1329.746854][T20430] RIP: 0033:0x7f7cea58e929
[ 1329.746869][T20430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1329.746883][T20430] RSP: 002b:00007f7ceb331038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1329.746901][T20430] RAX: ffffffffffffffda RBX: 00007f7cea7b5fa0 RCX: 00007f7cea58e929
[ 1329.746912][T20430] RDX: 0000000000000010 RSI: 00002000000002c0 RDI: 0000000000000003
[ 1329.746922][T20430] RBP: 00007f7ceb331090 R08: 0000000000000000 R09: 0000000000000000
[ 1329.746931][T20430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1329.746939][T20430] R13: 0000000000000000 R14: 00007f7cea7b5fa0 R15: 00007ffd70833078
[ 1329.746955][T20430]  </TASK>
[ 1330.008704][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1330.065143][T20380] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1330.072639][T20380] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1330.251432][T20380] bridge_slave_0: entered allmulticast mode
[ 1330.559841][T20380] bridge_slave_0: entered promiscuous mode
[ 1330.590478][T20380] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1330.599100][T20380] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1330.606523][T20380] bridge_slave_1: entered allmulticast mode
[ 1330.614966][T20380] bridge_slave_1: entered promiscuous mode
[ 1330.695558][T20380] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1330.869236][T20380] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1331.324642][T16653] Bluetooth: hci2: command tx timeout
[ 1331.638692][  T926] pwc: recv_control_msg error -71 req 04 val 1000
[ 1331.649459][  T926] pwc: recv_control_msg error -71 req 04 val 1300
[ 1331.661821][T20380] team0: Port device team_slave_0 added
[ 1331.668535][  T926] pwc: recv_control_msg error -71 req 04 val 1400
[ 1331.794252][  T926] pwc: recv_control_msg error -71 req 02 val 2000
[ 1331.809294][  T926] pwc: recv_control_msg error -71 req 02 val 2100
[ 1331.825072][  T926] pwc: recv_control_msg error -71 req 04 val 1500
[ 1331.848280][  T926] pwc: recv_control_msg error -71 req 02 val 2500
[ 1331.857162][  T926] pwc: recv_control_msg error -71 req 02 val 2400
[ 1332.745946][T20380] team0: Port device team_slave_1 added
[ 1332.866025][  T926] pwc: recv_control_msg error -71 req 02 val 2600
[ 1333.366016][  T926] pwc: recv_control_msg error -71 req 02 val 2900
[ 1333.377870][  T926] pwc: recv_control_msg error -71 req 02 val 2800
[ 1333.393203][  T926] pwc: recv_control_msg error -71 req 04 val 1100
[ 1333.404777][  T926] pwc: recv_control_msg error -71 req 04 val 1200
[ 1333.424275][T16653] Bluetooth: hci2: command tx timeout
[ 1333.534970][  T926] pwc: Registered as video103.
[ 1333.547322][  T926] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input37
[ 1333.566937][  T926] usb 5-1: USB disconnect, device number 45
[ 1333.740502][T20460] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0.
[ 1334.296573][T20380] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1334.304970][T20380] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1334.544333][T20380] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1334.557100][T20380] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1334.565140][T20380] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1334.591661][T20380] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1335.231904][T20474] FAULT_INJECTION: forcing a failure.
[ 1335.231904][T20474] name failslab, interval 1, probability 0, space 0, times 0
[ 1335.313905][T20474] CPU: 1 UID: 0 PID: 20474 Comm: syz.0.4096 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[ 1335.313931][T20474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1335.313942][T20474] Call Trace:
[ 1335.313948][T20474]  <TASK>
[ 1335.313956][T20474]  dump_stack_lvl+0x189/0x250
[ 1335.313983][T20474]  ? __pfx____ratelimit+0x10/0x10
[ 1335.314004][T20474]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1335.314025][T20474]  ? __pfx__printk+0x10/0x10
[ 1335.314046][T20474]  ? __pfx___might_resched+0x10/0x10
[ 1335.314067][T20474]  ? fs_reclaim_acquire+0x7d/0x100
[ 1335.314092][T20474]  should_fail_ex+0x414/0x560
[ 1335.314117][T20474]  should_failslab+0xa8/0x100
[ 1335.314140][T20474]  __kmalloc_noprof+0xcb/0x4f0
[ 1335.314158][T20474]  ? kfree+0x4d/0x440
[ 1335.314171][T20474]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 1335.314197][T20474]  tomoyo_realpath_from_path+0xe3/0x5d0
[ 1335.314219][T20474]  ? tomoyo_domain+0xda/0x130
[ 1335.314245][T20474]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 1335.314263][T20474]  tomoyo_path_number_perm+0x1e8/0x5a0
[ 1335.314283][T20474]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1335.314317][T20474]  ? __lock_acquire+0xab9/0xd20
[ 1335.314359][T20474]  ? __fget_files+0x2a/0x420
[ 1335.314383][T20474]  ? __fget_files+0x2a/0x420
[ 1335.314400][T20474]  ? __fget_files+0x3a0/0x420
[ 1335.314418][T20474]  ? __fget_files+0x2a/0x420
[ 1335.314441][T20474]  security_file_ioctl+0xcb/0x2d0
[ 1335.314464][T20474]  __se_sys_ioctl+0x47/0x170
[ 1335.314484][T20474]  do_syscall_64+0xfa/0x3b0
[ 1335.314504][T20474]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1335.314523][T20474]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1335.314539][T20474]  ? clear_bhb_loop+0x60/0xb0
[ 1335.314559][T20474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1335.314582][T20474] RIP: 0033:0x7fd5c3b8e929
[ 1335.314598][T20474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1335.314612][T20474] RSP: 002b:00007fd5c4978038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1335.314631][T20474] RAX: ffffffffffffffda RBX: 00007fd5c3db5fa0 RCX: 00007fd5c3b8e929
[ 1335.314644][T20474] RDX: 0000000000000000 RSI: 000000000000541b RDI: 0000000000000004
[ 1335.314654][T20474] RBP: 00007fd5c4978090 R08: 0000000000000000 R09: 0000000000000000
[ 1335.314665][T20474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1335.314675][T20474] R13: 0000000000000000 R14: 00007fd5c3db5fa0 R15: 00007ffd13687078
[ 1335.314701][T20474]  </TASK>
[ 1335.715206][T20474] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1339.064001][ T5942] hid-generic 0000:0004:0034.0015: unknown main item tag 0x0
[ 1339.162359][ T5942] hid-generic 0000:0004:0034.0015: unknown main item tag 0x0
[ 1339.254281][ T5942] hid-generic 0000:0004:0034.0015: unknown main item tag 0x0
[ 1339.317537][ T5942] hid-generic 0000:0004:0034.0015: hidraw0: <UNKNOWN> HID v0.0e Device [syz0] on syz1
[ 1340.354890][T20485] syz_tun: entered allmulticast mode
[ 1340.395453][T20486] syz_tun: left allmulticast mode
[ 1340.404981][T20380] hsr_slave_0: entered promiscuous mode
[ 1340.426259][T20380] hsr_slave_1: entered promiscuous mode
[ 1340.494496][ T5906] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[ 1340.665779][ T5906] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1340.708352][ T5906] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1340.728384][ T5906] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1340.754168][ T5906] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1340.780079][ T5906] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1340.796934][ T5906] usb 1-1: config 0 descriptor??
[ 1341.318282][T17331] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -110). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[ 1341.343580][ T5906] usbhid 1-1:0.0: can't add hid device: -71
[ 1341.648044][ T5906] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1341.679486][T17331] dvb_usb_az6027 7-1:0.0: probe with driver dvb_usb_az6027 failed with error -110
[ 1341.865649][ T5906] usb 1-1: USB disconnect, device number 35
[ 1342.199415][T17331] usb 7-1: USB disconnect, device number 26
[ 1344.303920][T20380] netdevsim netdevsim5 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1344.320633][T20543] netlink: 64 bytes leftover after parsing attributes in process `syz.0.4112'.
[ 1344.331124][T20380] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1344.655120][T20380] netdevsim netdevsim5 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1344.694318][T20380] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1345.046065][T20380] netdevsim netdevsim5 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1345.077772][T20380] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1345.441943][T20380] netdevsim netdevsim5 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1345.520411][T20380] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1345.644724][T13782] usb 7-1: new full-speed USB device number 27 using dummy_hcd
[ 1345.997679][T13782] usb 7-1: config 1 has an invalid descriptor of length 150, skipping remainder of the config
[ 1346.024441][T13782] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1346.035734][T13782] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 60156, setting to 64
[ 1346.054830][T13782] usb 7-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1346.076686][T13782] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1346.087717][T13782] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1346.097878][T13782] usb 7-1: Product: syz
[ 1346.102193][T13782] usb 7-1: Manufacturer: syz
[ 1346.107009][T13782] usb 7-1: SerialNumber: syz
[ 1346.724966][T20380] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1346.761951][T20380] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1346.869768][T20380] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1346.989645][T20380] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1347.711978][T20581] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4122'.
[ 1349.472022][T13782] cdc_ncm 7-1:1.0: bind() failure
[ 1349.498147][T20380] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1349.531986][T20380] 8021q: adding VLAN 0 to HW filter on device team0
[ 1349.547512][T13745] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1349.554726][T13745] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1349.573417][T13782] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[ 1349.675397][ T2949] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1349.682934][ T2949] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1349.690504][T13782] cdc_ncm 7-1:1.1: bind() failure
[ 1349.882938][T13782] usb 7-1: USB disconnect, device number 27
[ 1352.407121][T20623] overlayfs: failed to clone upperpath
[ 1352.694530][T20621] netlink: 24 bytes leftover after parsing attributes in process `syz.7.4132'.
[ 1353.207034][T20380] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1353.700878][T20640] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4138'.
[ 1353.848338][T20647] ALSA: mixer_oss: invalid OSS volume 'V3'
[ 1353.855203][T20647] ALSA: mixer_oss: invalid OSS volume '010000E0'
[ 1353.863874][T20647] ALSA: mixer_oss: invalid OSS volume '11'
[ 1353.870383][T20647] ALSA: mixer_oss: invalid OSS volume '010000E0'
[ 1353.877137][T20647] ALSA: mixer_oss: invalid OSS volume '12'
[ 1353.883238][T20647] ALSA: mixer_oss: invalid OSS volume ''
[ 1355.854033][T20660] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1356.168061][T20665] syz_tun: entered allmulticast mode
[ 1356.456117][T20663] syz_tun: left allmulticast mode
[ 1356.737656][T20380] veth0_vlan: entered promiscuous mode
[ 1356.846445][T20380] veth1_vlan: entered promiscuous mode
[ 1357.085287][T20380] veth0_macvtap: entered promiscuous mode
[ 1357.086551][T20683] netlink: 24 bytes leftover after parsing attributes in process `syz.6.4148'.
[ 1357.587039][T20380] veth1_macvtap: entered promiscuous mode
[ 1357.689219][T20380] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1357.742331][T20380] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1357.851150][T20380] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1357.931400][T20380] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1357.988522][T20380] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1358.288616][T20380] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1358.442194][T13646] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1358.467850][T13646] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1359.945853][T13748] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1359.955086][T13748] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1360.744624][T20717] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4066'.
[ 1361.594216][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1361.600768][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1362.135269][T20734] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff8880589dc400 pfn:0x589d8
[ 1362.146034][T20734] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1362.154816][T20734] memcg:ffff88802962a580
[ 1362.169252][T20734] flags: 0xfff00000000041(locked|head|node=0|zone=1|lastcpupid=0x7ff)
[ 1362.178493][T20734] raw: 00fff00000000041 0000000000000000 dead000000000122 0000000000000000
[ 1362.188455][T20734] raw: ffff8880589dc400 0000000000000000 00000001ffffffff ffff88802962a580
[ 1362.197169][T20734] head: 00fff00000000041 0000000000000000 dead000000000122 0000000000000000
[ 1362.205959][T20734] head: ffff8880589dc400 0000000000000000 00000001ffffffff ffff88802962a580
[ 1362.228295][T20734] head: 00fff00000000202 ffffea0001627601 00000000ffffffff 00000000ffffffff
[ 1362.237313][T20734] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[ 1362.252101][T20734] page dumped because: VM_BUG_ON_FOLIO(folio_order(folio) < mapping_min_folio_order(mapping))
[ 1362.265126][T20734] page_owner tracks the page as allocated
[ 1362.272100][T20734] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 20734, tgid 20724 (syz.5.4157), ts 1362135235760, free_ts 1355592181523
[ 1362.293054][T20734]  post_alloc_hook+0x240/0x2a0
[ 1362.297903][T20734]  get_page_from_freelist+0x21d5/0x22b0
[ 1362.303542][T20734]  __alloc_frozen_pages_noprof+0x181/0x370
[ 1362.309433][T20734]  alloc_pages_mpol+0x232/0x4a0
[ 1362.314361][T20734]  alloc_pages_noprof+0xa9/0x190
[ 1362.319318][T20734]  folio_alloc_noprof+0x1e/0x30
[ 1362.324219][T20734]  filemap_alloc_folio_noprof+0xdf/0x470
[ 1362.329877][T20734]  page_cache_ra_order+0x5e5/0xc70
[ 1362.336033][T20734]  filemap_fault+0x59e/0x1200
[ 1362.340743][T20734]  __do_fault+0x135/0x390
[ 1362.345159][T20734]  __handle_mm_fault+0x37ed/0x5620
[ 1362.350289][T20734]  handle_mm_fault+0x2d5/0x7f0
[ 1362.355120][T20734]  do_user_addr_fault+0x764/0x1390
[ 1362.360260][T20734]  exc_page_fault+0x76/0xf0
[ 1362.366330][T20734]  asm_exc_page_fault+0x26/0x30
[ 1362.371202][T20734] page last free pid 20670 tgid 20659 stack trace:
[ 1362.385359][T20734]  __free_frozen_pages+0xc65/0xe60
[ 1362.396925][T20734]  vfree+0x25a/0x400
[ 1362.401071][T20734]  __vmalloc_node_range_noprof+0x100d/0x12f0
[ 1362.407488][T20734]  vmalloc_user_noprof+0xad/0xf0
[ 1362.413047][T20734]  xskq_create+0xbf/0x170
[ 1362.421959][T20734]  xsk_init_queue+0xb0/0x110
[ 1362.426636][T20734]  xsk_setsockopt+0x4de/0x710
[ 1362.431321][T20734]  do_sock_setsockopt+0x25a/0x3e0
[ 1362.436546][T20734]  __x64_sys_setsockopt+0x18b/0x220
[ 1362.441756][T20734]  do_syscall_64+0xfa/0x3b0
[ 1362.446330][T20734]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1362.455984][T20734] ------------[ cut here ]------------
[ 1362.461456][T20734] kernel BUG at mm/filemap.c:868!
[ 1362.467505][T20734] Oops: invalid opcode: 0000 [#1] SMP KASAN PTI
[ 1362.473762][T20734] CPU: 1 UID: 0 PID: 20734 Comm: syz.5.4157 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[ 1362.485817][T20734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1362.496671][T20734] RIP: 0010:__filemap_add_folio+0x11ad/0x12f0
[ 1362.502911][T20734] Code: fe c8 ff 4c 89 e7 48 c7 c6 20 37 94 8b e8 4b 99 0e 00 90 0f 0b e8 03 fe c8 ff 4c 89 e7 48 c7 c6 00 2e 94 8b e8 34 99 0e 00 90 <0f> 0b e8 ec fd c8 ff 4c 89 e7 48 c7 c6 20 37 94 8b e8 1d 99 0e 00
[ 1362.522693][T20734] RSP: 0018:ffffc9000bca71a0 EFLAGS: 00010246
[ 1362.528846][T20734] RAX: b5e15350bb275d00 RBX: 0000000000000002 RCX: 0000000000000000
[ 1362.536987][T20734] RDX: 0000000000000007 RSI: ffffffff8d96e77b RDI: 00000000ffffffff
[ 1362.545140][T20734] RBP: ffffc9000bca7308 R08: ffffffff8f9fdaf7 R09: 1ffffffff1f3fb5e
[ 1362.553215][T20734] R10: dffffc0000000000 R11: fffffbfff1f3fb5f R12: ffffea0001627600
[ 1362.561276][T20734] R13: dffffc0000000000 R14: ffffea0001627608 R15: 0000000000000004
[ 1362.569256][T20734] FS:  00007f17362746c0(0000) GS:ffff888125d84000(0000) knlGS:0000000000000000
[ 1362.578190][T20734] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1362.584766][T20734] CR2: 000000110c26c7f4 CR3: 000000003265e000 CR4: 00000000003526f0
[ 1362.592734][T20734] Call Trace:
[ 1362.596004][T20734]  <TASK>
[ 1362.598928][T20734]  ? percpu_ref_put+0x19/0x180
[ 1362.603690][T20734]  ? __pfx___filemap_add_folio+0x10/0x10
[ 1362.609312][T20734]  ? percpu_ref_put+0xf9/0x180
[ 1362.614072][T20734]  filemap_add_folio+0xd5/0x270
[ 1362.618915][T20734]  page_cache_ra_order+0x74c/0xc70
[ 1362.624022][T20734]  filemap_fault+0x59e/0x1200
[ 1362.628691][T20734]  ? __pfx_filemap_fault+0x10/0x10
[ 1362.633790][T20734]  ? __handle_mm_fault+0x296f/0x5620
[ 1362.639065][T20734]  __do_fault+0x135/0x390
[ 1362.643387][T20734]  __handle_mm_fault+0x37ed/0x5620
[ 1362.648495][T20734]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1362.653956][T20734]  ? find_vma+0xe7/0x160
[ 1362.658187][T20734]  ? __pfx_find_vma+0x10/0x10
[ 1362.662852][T20734]  handle_mm_fault+0x2d5/0x7f0
[ 1362.667609][T20734]  do_user_addr_fault+0x764/0x1390
[ 1362.672717][T20734]  exc_page_fault+0x76/0xf0
[ 1362.677220][T20734]  asm_exc_page_fault+0x26/0x30
[ 1362.682062][T20734] RIP: 0010:rep_movs_alternative+0x30/0x90
[ 1362.687872][T20734] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 3d 00 04 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[ 1362.707644][T20734] RSP: 0018:ffffc9000bca7a18 EFLAGS: 00050206
[ 1362.713707][T20734] RAX: 00007ffffffff001 RBX: 0000000000000038 RCX: 0000000000000038
[ 1362.721757][T20734] RDX: 0000000000000001 RSI: 00002000001ab000 RDI: ffffc9000bca7aa0
[ 1362.729807][T20734] RBP: ffffc9000bca7c30 R08: ffffc9000bca7ad7 R09: 1ffff92001794f5a
[ 1362.737775][T20734] R10: dffffc0000000000 R11: fffff52001794f5b R12: 0000000000000002
[ 1362.745756][T20734] R13: dffffc0000000000 R14: ffffc9000bca7aa0 R15: 00002000001ab000
[ 1362.753741][T20734]  _copy_from_user+0x7a/0xb0
[ 1362.758329][T20734]  ___sys_recvmsg+0x12e/0x510
[ 1362.762998][T20734]  ? __pfx____sys_recvmsg+0x10/0x10
[ 1362.768192][T20734]  ? __might_fault+0xb0/0x130
[ 1362.772866][T20734]  do_recvmmsg+0x307/0x770
[ 1362.777281][T20734]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1362.782216][T20734]  ? __pfx_do_futex+0x10/0x10
[ 1362.786888][T20734]  __x64_sys_recvmmsg+0x190/0x240
[ 1362.791913][T20734]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 1362.797447][T20734]  ? rcu_is_watching+0x15/0xb0
[ 1362.802202][T20734]  ? do_syscall_64+0xbe/0x3b0
[ 1362.806871][T20734]  do_syscall_64+0xfa/0x3b0
[ 1362.811366][T20734]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1362.816555][T20734]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1362.822610][T20734]  ? clear_bhb_loop+0x60/0xb0
[ 1362.827279][T20734]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1362.833162][T20734] RIP: 0033:0x7f173538e929
[ 1362.837576][T20734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1362.857176][T20734] RSP: 002b:00007f1736274038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1362.865651][T20734] RAX: ffffffffffffffda RBX: 00007f17355b6080 RCX: 00007f173538e929
[ 1362.873614][T20734] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000003
[ 1362.881578][T20734] RBP: 00007f1735410b39 R08: 0000000000000000 R09: 0000000000000000
[ 1362.889539][T20734] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 1362.897531][T20734] R13: 0000000000000000 R14: 00007f17355b6080 R15: 00007ffdc3433188
[ 1362.905509][T20734]  </TASK>
[ 1362.908528][T20734] Modules linked in:
[ 1362.915555][T20734] ---[ end trace 0000000000000000 ]---
[ 1362.922153][T20734] RIP: 0010:__filemap_add_folio+0x11ad/0x12f0
[ 1362.928272][T20734] Code: fe c8 ff 4c 89 e7 48 c7 c6 20 37 94 8b e8 4b 99 0e 00 90 0f 0b e8 03 fe c8 ff 4c 89 e7 48 c7 c6 00 2e 94 8b e8 34 99 0e 00 90 <0f> 0b e8 ec fd c8 ff 4c 89 e7 48 c7 c6 20 37 94 8b e8 1d 99 0e 00
[ 1362.947906][T20734] RSP: 0018:ffffc9000bca71a0 EFLAGS: 00010246
[ 1362.954066][T20734] RAX: b5e15350bb275d00 RBX: 0000000000000002 RCX: 0000000000000000
[ 1362.962098][T20734] RDX: 0000000000000007 RSI: ffffffff8d96e77b RDI: 00000000ffffffff
[ 1362.970091][T20734] RBP: ffffc9000bca7308 R08: ffffffff8f9fdaf7 R09: 1ffffffff1f3fb5e
[ 1362.979210][T20734] R10: dffffc0000000000 R11: fffffbfff1f3fb5f R12: ffffea0001627600
[ 1362.987276][T20734] R13: dffffc0000000000 R14: ffffea0001627608 R15: 0000000000000004
[ 1362.995290][T20734] FS:  00007f17362746c0(0000) GS:ffff888125d84000(0000) knlGS:0000000000000000
[ 1363.004233][T20734] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1363.010802][T20734] CR2: 00007f7ce83f6d58 CR3: 000000003265e000 CR4: 00000000003526f0
[ 1363.018847][T20734] Kernel panic - not syncing: Fatal exception
[ 1363.025245][T20734] Kernel Offset: disabled
[ 1363.029578][T20734] Rebooting in 86400 seconds..