last executing test programs:

8.879194893s ago: executing program 4 (id=8886):
r0 = syz_usb_connect(0x2, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100007e3dc410cd0621013ddd0102030109021b000100094000090485000189fe1f000905820220"], 0x0)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x3a4, &(0x7f00000000c0)=ANY=[])
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
timer_create(0x0, 0x0, 0x0)
ptrace$PTRACE_GETSIGMASK(0x420a, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x0, 0x0})
setpriority(0x1, 0x0, 0x0)
r2 = socket(0x2, 0x80805, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000000)={0x3, 0x1000}, 0x4)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000003180)=@req={0x1, 0x2, 0x7, 0x9}, 0x10)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r4, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r4, &(0x7f0000007fc0), 0x800001d, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
keyctl$restrict_keyring(0xa, 0x0, 0x0, 0x0)
shutdown(r5, 0x0)
close(0x3)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BLKBSZSET(0xffffffffffffffff, 0x40041271, 0x0)
dup3(r6, 0xffffffffffffffff, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r7 = eventfd(0xffffffff)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r7)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r7})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000600)=""/79, 0x0, 0x10000})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000080)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, 0x0})

8.409617838s ago: executing program 3 (id=8892):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000680)={0xa, 0x4e22, 0xfffff2cd, @local, 0xb}, 0x1c)
listen(r0, 0x2)
syz_emit_ethernet(0x4e, &(0x7f00000010c0)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "f900f5", 0x18, 0x6, 0x1, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x2, 0x0, 0x0, 0x0, {[@fastopen={0x1e, 0x4, "369d"}]}}}}}}}}, 0x0)

8.328113095s ago: executing program 3 (id=8894):
lseek(0xffffffffffffffff, 0x6, 0x0)
r0 = syz_usb_connect(0x5, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000007794608cd0c39007b90000000010902120001fc0000000904"], 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
r1 = syz_usb_connect$printer(0x5, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0xff, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x1, 0x0, 0x35, [{{0x9, 0x4, 0x0, 0x1b, 0x2, 0x7, 0x1, 0x3, 0xff, "", {{{0x9, 0x5, 0x1, 0x2, 0x3ff, 0x3, 0x4d, 0x3}}, [{{0x9, 0x5, 0x82, 0x2, 0x400, 0xf, 0xff, 0x7b}}]}}}]}}]}}, &(0x7f00000003c0)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x0, 0x0, 0x9, 0x1, 0x8, 0x6e}, 0x34, &(0x7f0000000100)={0x5, 0xf, 0x34, 0x5, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x4, 0x6, 0x2, 0x1}, @wireless={0xb, 0x10, 0x1, 0x8, 0x40, 0x8, 0x0, 0x2}, @generic={0x3, 0x10, 0x1}, @ptm_cap={0x3}, @ss_container_id={0x14, 0x10, 0x4, 0xc8, "ba4b935bf77b670c0c171d3fefd49449"}]}, 0x3, [{0x74, &(0x7f0000000140)=@string={0x74, 0x3, "ffa81eb0a343b3e963d9345d2805760e41f86c65e84e2ff707fb71aaf96bf250944f8d57c4e199401dd5385ca81e3fd80adeaf55badc562ea574e8498b806f3a8aea50308d984b6e03e6ec6c3d98a66a6c9b94f62aa44e379add16b930ae616366821957445971063c62e1950c33c1452c4c"}}, {0x62, &(0x7f00000001c0)=@string={0x62, 0x3, "f5d7438ab57053af633f45fc6696767fead9741fda91d13011c402197194e4ffce9b1e763c3538898bf7b10182b235a1232362406361d00d8d383f5d17001136644fc44be80f58b6cf16a715f94d8ceb065a5eab55026d264d896ca7ad2b6250"}}, {0xea, &(0x7f0000000280)=@string={0xea, 0x3, "4c6e37e66ba7a0f3eed201de1b5b81254e68c4a6d6ff1f081a21f2f746a09a7024ecfb0c0c1f7093088baa3d52a4eee304d560ddada35eeaa7f4ff1014e447ef3347a6555326c6101e877718ee43a6489e20cb455658c9da63d17f3cf857ecea801cf1c7ab5d59de7af3004fabdc55077dae5eabd7e898ec07297cfca618b7f55cffdcf5387187ba8941f46a03926909c0a1a17dcc9c32d273c1b82644b2d49cf776c07f5cbc5e6038800926a82ce10c3515825f61a73fb2e8460a45de39e1cca497faef6ee826888280ee320f86c1b04657e0bb12b5df8ff520f7ee868bcab2201ff83fe1fe58a5"}}]})
syz_usb_control_io$printer(r1, &(0x7f0000000580)={0xc, &(0x7f0000000400)={0x20, 0xe, 0x47, {0x47, 0x9, "c8e812db8b27560488db242536beb20f1c587435edaf31b39b44fffaad326e6c5bf352b09bd30064cba065e5cfddd951a9299e4cbbee4f821691659e14758050c847f3b41c"}}, &(0x7f0000000480)={0x0, 0x3, 0xdf, @string={0xdf, 0x3, "89f2c38efac6fcebb13a28ebd7a22000f0eedb08b9f796cddbd538a4aa059160ecdaec9fc409cdff56f4997da5cbb04cbf26c465ea9210403e80719e1b93cd45fcd691b69dab6c30e50af1ec52840553037969f320719023610b8edbb4ba0c94ce61ebbf2a38a2516762870cf89f940057669b0eb6f35d5f554da1ca56c096f199ec9290e375de55b3e120cd38e130a05ada83ba7fac253d69a963d76a7705421f7938f8e73a7968f4c3edac472c53b9840e4b2d8f60d8a2829126ac38f70b2f50025a812dab36b2c287fa65b92834999f263fa752970eeaf392ac2ae4"}}}, &(0x7f0000000840)={0x1c, &(0x7f00000005c0)={0x40, 0x10, 0x59, "f1ff34d17159d9a442e6ddea870e786398a4fea739e5a80db40dc30c3ccfa2515f72abdf57fc6ef59971b95c171df4c1c1755a0f888ca791e1c9dbbbd6b2285dfa860c6fac68600ce206c1b601139ff164bd69a1d8bd6c30ba"}, &(0x7f0000000640)={0x0, 0xa, 0x1, 0x7}, &(0x7f0000000680)={0x0, 0x8, 0x1, 0x38}, &(0x7f00000006c0)={0x20, 0x0, 0xe7, {0xe5, "9dbb81142df92533f9d95879ca8a877b97897f6707532cfc7fff62ed973b4f91a9749ba9534d0729e9663f5db0451502b743093caa541e79b56b6eda32d89ab96072846e6bd67ccd15d66812e1950cfc731728cfd3b324780cf4d1de514cabb99f61be1ac85fe52208abaf75e36e84ae988680cf649e5bc1ba566dd690b542c837f114eba3539efcb318a282c6afc12841c91d71b543f381c5254fdb1a40f150db919409e267111e2c105358324ab3728a96d5aa6f2b3b00c9b8f642c2a4e9c38bf54eaa2d78b67634bb7b22a5b44b80d5b48b52e171f328f554888755c34f3636af2863c4"}}, &(0x7f00000007c0)={0x20, 0x1, 0x1, 0x5}, &(0x7f0000000800)={0x20, 0x0, 0x1}})
r2 = syz_open_dev$I2C(&(0x7f0000000040), 0x1, 0x2603)
ioctl$I2C_RDWR(r2, 0x707, &(0x7f0000000240)={&(0x7f0000000380)=[{0x1, 0x9000, 0x0, 0x0}, {0xf, 0x8211, 0x0, 0x0}], 0x2})

7.813601811s ago: executing program 4 (id=8896):
syz_emit_ethernet(0x4f, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd6c2d01000019840100000000000000000002000000010102fe8000000000000000000000000000aaa5ba94e385673ccfd3fe184ab0643975bcc85fbf438632261b"], 0x0)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0x8, 0xd4eb]}, 0x8, 0x800)
mkdirat(r0, &(0x7f00000000c0)='./file0\x00', 0x1a0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000500), 0x842, 0x0)
fcntl$setstatus(r2, 0x4, 0x42c00)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r3, 0x84, 0x75, 0x0, &(0x7f0000000040)=0x12)
close(r2)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r5 = fsopen(&(0x7f0000000100)='mqueue\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r5, 0x7, 0x0, 0x0, 0x0)
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r8, {0x0, 0x7}, {}, {0xffff, 0x8}}, [@filter_kind_options=@f_fw={{0x7}, {0x20, 0x2, [@TCA_FW_MASK={0x8, 0x5, 0x8}, @TCA_FW_INDEV={0x14, 0x3, 'pimreg0\x00'}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x1}, 0x810)

7.650553766s ago: executing program 4 (id=8897):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000001c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
sendmsg$inet(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000000340)="5c00000013006bcd9e3fe3dc4e48aa31086b8703140000001f03000000330000040014000d000a000d0000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x4040844)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
syz_open_dev$vim2m(&(0x7f0000000040), 0xa, 0x2)
r3 = memfd_create(&(0x7f0000000000)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6;\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa', 0x2)
ftruncate(r3, 0x80079a0)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r3, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
modify_ldt$write(0x1, &(0x7f0000000000)={0xfff, 0x20000000, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xffffffffffffff89)
lseek(r3, 0x0, 0x4)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/vmallocinfo\x00', 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x8, &(0x7f00000010c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x1a, 0x0, @void}, 0x10)
r5 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
read$char_usb(r4, &(0x7f00000000c0)=""/104, 0x12)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x4, 0x8}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000340), &(0x7f00000001c0), 0xfffffff8, r6}, 0x38)
syz_usb_connect(0x0, 0x24, &(0x7f0000001000)=ANY=[@ANYBLOB="120110014c256c200416078055c301020301090212000107e3009af43c34a098c4ff6c0d"], 0x0)
sendfile(r5, r4, 0x0, 0x3fffff)
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="700000000b060500b29e87ad7d1edb6174cecb63b63abc48000000000000000001000007200008800c0007800500030003000000100007800c000180080001407f0000010900020073797a32000000003000078018000280140002400000000000000000000000000000000005001500040000000b001a0025402c2d7d2a0000"], 0x70}, 0x1, 0x0, 0x0, 0x4}, 0x4)
socket$nl_netfilter(0x10, 0x3, 0xc)
chdir(&(0x7f0000000540)='./cgroup\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r7, &(0x7f0000000200)=""/179, 0xb3)

7.022006691s ago: executing program 1 (id=8901):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
fcntl$setstatus(r0, 0x4, 0x2800)
userfaultfd(0x801)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) (async)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x218, 0x0) (async)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket(0x22, 0x2, 0x24) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
ioctl$TIOCSPTLCK(r0, 0x40045431, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0) (async)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000180)={<r4=>0x0, 0x7, 0x1d}, &(0x7f0000000280)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, &(0x7f00000002c0)={r4, 0x8, 0x30}, 0xc)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
writev(0xffffffffffffffff, 0x0, 0x0) (async)
shutdown(r5, 0x1)
r6 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)=[<r7=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r6, 0xc05064a7, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x0, 0x0, r7}) (async)
r8 = socket$inet6(0x10, 0x3, 0x0)
sendmsg(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000001500)="5500000020007fafb72d13b2a4a2719302000000030b43026c26236925000400fe7f0000bd2dca8a9848a3c728f1c46b7b31afdc1338d509000000000100005ae583de0dd7d8319f98af84fda542e718f94b929ade", 0x55}], 0x1}, 0x0)
syz_usb_connect(0x0, 0x36, 0x0, 0x0) (async)
r9 = socket(0x10, 0x803, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x33, 0x790, 0x80000000002, 0x180, 0x400000004, 0xffffffffffffffff, 0xf1, 0x3, 0xfffffffffffffd7e, 0x45, 0x0, 0x3b9, 0xfffffffffffffffe, 0x0, 0x0, 0x8], 0x8000000, 0x3c4210}) (async)
sendmsg$nl_route(r9, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000056000100000000f70000000007020000", @ANYRES32, @ANYBLOB="200001"], 0x38}}, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000200)=0xffffffff)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0xc2882, 0x0) (async)
syz_open_dev$midi(0x0, 0x500, 0x0)
r10 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r10, 0xffffffffffffffff, 0x0)

6.654374581s ago: executing program 3 (id=8904):
r0 = syz_usb_connect$uac1(0x0, 0x83, &(0x7f0000000740)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x71, 0x3, 0x1, 0x0, 0x0, 0x0, {{}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x8, 0x0, 0x0, 0x0, {0x7, 0x25, 0x1, 0x1}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_continuous={0xb, 0x24, 0x2, 0x1, 0x6f, 0x2, 0x0, 0x1, "8b7e", "8e"}, @as_header={0x7}]}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0x0, 0x0, 0x0, {0x7, 0x25, 0x1, 0x81}}}}}}}]}}, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000001100)={0x14, 0x0, &(0x7f0000001040)={0x0, 0x3, 0x2, @string={0x2}}}, 0x0)
r2 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x20, 0x52, 0x1, 0x70bd2a, 0x0, {0x1c}, [@typed={0xc, 0x94, 0x0, 0x0, @u64=0x7}]}, 0x20}}, 0x0)
syz_usb_control_io(r0, &(0x7f00000021c0)={0x2c, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="00000000000000000000dd8c21a8d7de64dd7d37b0ca583e29fb7865a13cf754866200bd2c3f23051d2d498f054b2d957e8587c0def8b2d73b"], 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
r3 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x100, 0x0)
read(r3, &(0x7f0000000380)=""/208, 0xd0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = syz_open_dev$video4linux(&(0x7f0000000080), 0x1, 0x800)
ioctl$VIDIOC_DQEVENT(r6, 0x80805659, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r5, 0x4038ae7a, &(0x7f0000000000)={0x0, 0x40000105, 0x0, 0x0})
r7 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000180)={0x1, 0x0, [{0x40000102, 0x0, 0xfffffffffffffffc}]})
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000c80)={'lo\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r10, {0x0, 0xc}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x14, 0x2, [@TCA_FQ_FLOW_REFILL_DELAY={0x8, 0x9, 0x7}, @TCA_FQ_QUANTUM={0x8}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x8000}, 0x50000)
read$dsp(r1, &(0x7f00000001c0)=""/68, 0x44)
ioctl$SNDCTL_DSP_SUBDIVIDE(r3, 0xc0045009, &(0x7f00000004c0)=0x7ff)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000680)={0x84, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

6.008295488s ago: executing program 2 (id=8906):
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan0\x00'})
unshare(0x6a040000)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x1, 0x0, @mcast1={0xff, 0x5}}, 0x1c)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000100)=0x3)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000000)=[0x0, 0x0, 0x0], 0x3, 0x80000, 0x0, <r3=>0xffffffffffffffff})
r4 = openat$sysfs(0xffffff9c, &(0x7f0000000080)='/sys/power/pm_test', 0x0, 0x0)
close_range(r4, 0xffffffffffffffff, 0x2)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
syz_clone3(&(0x7f0000000140)={0x385000080, 0x0, 0x0, 0x0, {0x33}, 0x0, 0x0, 0x0, 0x0, 0x0, {r4}}, 0x58)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x8, 0x0, 0xff91, 0x10, 0x0, 0x0, 0xffffffffffffffff, r3}, 0x94)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
recvmsg(r5, 0x0, 0x12020)
sendmsg$IPSET_CMD_LIST(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)={0x1c, 0x7, 0x6, 0x801, 0x0, 0x0, {0xa, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000005}, 0x0)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f00000004c0), 0x800, 0x0)
ioctl$EVIOCGPROP(r6, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCSMRU1(r6, 0x40047454, &(0x7f0000000300)=0x5)

5.907163503s ago: executing program 1 (id=8907):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_tables_matches\x00')
pread64(r0, &(0x7f0000002280)=""/4096, 0x1000, 0xff)
socket$kcm(0x10, 0x2, 0x0)
r1 = open(&(0x7f0000000280)='.\x00', 0x80, 0x122)
fcntl$notify(r1, 0x402, 0x8000003d)
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r1, 0x4020565b, &(0x7f0000000000)={0x3, 0x7, 0x1})
inotify_init1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x50, 0x4, 0x0, 0x100000001, 0x953a, 0x80000000, 0xfffffffc}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="6c00000001040500000000000000000000000000060006400000004a080005400000000005000100010000950a00020000e4ff00000000000800034000000000060006400000000008000440000000000a0002000000001f420000000800044000000000080004400aaff612c7b6a41d20040f835d9f1a16082f984662f3"], 0x6c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r4, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0x4, 0x1, 0x801, 0x0, 0x0, {0x3, 0x0, 0x6}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000081}, 0x0)
unshare(0x2040400)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
fchdir(0xffffffffffffffff)
r5 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000180)={0xa0, 0xfffffffffffffff5, 0x0, {{0x5, 0x1, 0x5, 0x6, 0x3, 0x1, {0x1, 0x180, 0xff, 0x5, 0x100, 0x7cf4, 0x9, 0x7ffffffd, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0)
sendfile(r5, r5, &(0x7f0000000080)=0x2, 0x7f03)
open(0x0, 0x400000, 0x30)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xc000, 0x103)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001180), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000010c0)={{'fd', 0x3d, r6}, 0x2c, {'rootmode', 0x3d, 0x8000}})
syz_fuse_handle_req(r6, &(0x7f00000062c0)="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", 0x2000, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x10, 0xffffffffffffffda, 0x3ff, {0x0, 0xb}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r6, &(0x7f0000000180)={0x50, 0x0, 0x0, {0x7, 0x2b, 0xffffffde, 0x30004808, 0x0, 0xfffe, 0x2, 0xfffffffe, 0x0, 0x0, 0x100, 0x100}}, 0x50)

5.396612034s ago: executing program 2 (id=8908):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0x541b, &(0x7f0000000040)={<r2=>0xffffffffffffffff, 0x0, 0x0, 0x8d5})
close_range(r2, 0xffffffffffffffff, 0x0) (fail_nth: 1)

5.317618494s ago: executing program 2 (id=8909):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, &(0x7f00000001c0)=0x2, 0x4)
r2 = syz_io_uring_setup(0x3bd4, &(0x7f0000000180)={0x0, 0xcc19, 0x130c8, 0x6, 0x30e}, &(0x7f0000000000), &(0x7f0000000200))
io_uring_register$IORING_REGISTER_RESTRICTIONS(r2, 0xb, &(0x7f00000003c0), 0x0)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r2, 0xc, 0x0, 0x0)
r3 = syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x807004, &(0x7f0000000240)={{}, 0x2c, {'rootmode', 0x3d, 0x1000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {'group_id', 0x3d, 0xffffffffffffffff}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x80}}, {@max_read={'max_read', 0x3d, 0x7b14}}, {@blksize}], [{@fsmagic={'fsmagic', 0x3d, 0x7f}}, {@euid_lt={'euid<', 0xee01}}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}]}}, 0x0, 0x0, &(0x7f00000000c0)="2f6208b7c790ccff6712a50173b7ef0b90764684b318500ecbf0e781612bbd1dad7565fc5ea00d4560e9c475c20c51aac502a6b4c2bc67c8d3d09aff7b30dc3d15bb637e22ae63e64a9fd8be3a8ebeaaa78ca89f4a676a9ca6318d42a68ac47efb8ba2b0150ccfc885825a1185a0d2dd312db901e6fb1aaeb69ee587d6bd49088481d6be16e68d2b658e6ba50c")
open_tree(r3, &(0x7f0000000380)='./file0\x00', 0x88100)
io_uring_enter(r2, 0x2e6f, 0x8555, 0x2, 0x0, 0x0)

4.98819144s ago: executing program 1 (id=8910):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r0, 0x40047211, &(0x7f0000000040)=0x1)
ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, &(0x7f0000000080)={'lo\x00', 0x400})
mincore(&(0x7f0000ffc000/0x1000)=nil, 0x1000, &(0x7f00000000c0)=""/122)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r2=>r1, {<r3=>r1}}, './file0\x00'})
setsockopt$inet6_tcp_int(r3, 0x6, 0x0, &(0x7f0000000180)=0x5, 0x4)
ioctl$UFFDIO_MOVE(r2, 0xc028aa05, &(0x7f00000001c0)={&(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x2000, 0x2})
r4 = syz_genetlink_get_family_id$team(&(0x7f0000000240), r3)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000000300)={'sit0\x00', &(0x7f0000000280)={'syztnl0\x00', <r5=>0x0, 0x7800, 0x936, 0x54, 0xc4, {{0xf, 0x4, 0x2, 0x9, 0x3c, 0x66, 0x0, 0xd, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, {[@timestamp={0x44, 0x18, 0xb, 0x0, 0x1, [0x4, 0x5, 0xfffffffa, 0x0, 0x0]}, @ra={0x94, 0x4, 0x1}, @timestamp_addr={0x44, 0xc, 0x9f, 0x1, 0x8, [{@rand_addr=0x64010101, 0xd2}]}]}}}}})
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000000340)={'wg1\x00', <r6=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000680)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000640)={&(0x7f0000000380)={0x298, r4, 0x4, 0x70bd2a, 0x25dfdbfd, {}, [{{0x8}, {0x27c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0xeb8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfd}}}, {0x3c, 0x1, @name={{0x24}, {0x5}, {0xb, 0x4, 'random\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r5}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}, {0x3c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0xc, 0x4, [{0x80, 0xd, 0x8, 0x3ff}]}}}, {0x6c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x3c, 0x4, [{0xfff7, 0x2, 0x2, 0x1}, {0x5, 0xeb, 0x80, 0x8}, {0x54b7, 0x0, 0xe4, 0x7}, {0x7, 0x8, 0x1, 0x9}, {0x6, 0xf9, 0x6, 0x2}, {0x5, 0xe, 0xd, 0x3}, {0xff, 0xe7, 0x2, 0x5edf}]}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x3}}, {0x8, 0x6, r6}}}]}}]}, 0x298}, 0x1, 0x0, 0x0, 0x24044084}, 0x41)
ioctl$UI_SET_SWBIT(r3, 0x4004556d, 0x5)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
getsockname$packet(r2, &(0x7f0000000700)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000740)=0x14)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000800)={'syztnl1\x00', &(0x7f0000000780)={'syztnl2\x00', <r9=>r5, 0x4, 0x6, 0x4d, 0x1, 0x0, @local, @empty, 0xc2a53c8720708f59, 0x8, 0x9, 0x1}})
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000840)={'wg1\x00', <r10=>0x0})
sendmsg$ETHTOOL_MSG_DEBUG_GET(r7, &(0x7f0000000ac0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000a80)={&(0x7f0000000880)={0x200, 0x0, 0x300, 0x70bd2d, 0x25dfdbfd, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}]}, @HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}]}, @HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nicvf0\x00'}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x200}, 0x1, 0x0, 0x0, 0x44000}, 0x801)
getdents(r3, &(0x7f0000000b00)=""/240, 0xf0)
write$P9_RLERRORu(r2, &(0x7f0000000c00)={0xf, 0x7, 0x2, {{0x2, '-\xea'}, 0x10001}}, 0xf)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000c40)={{0x1, 0x1, 0x18, <r11=>r3, {0x200}}, './file0\x00'})
ioctl$DRM_IOCTL_ADD_BUFS(r11, 0xc0186416, &(0x7f0000000c80)={0x0, 0x3, 0x80000000, 0x6, 0x17})
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000cc0)={0x20000000})
setsockopt$inet_udp_int(r11, 0x11, 0x67, &(0x7f0000000d00)=0x1, 0x4)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r2, 0x8108551b, &(0x7f0000000d40)={0x774a, 0x0, "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"})
sendmsg$ETHTOOL_MSG_DEBUG_GET(r7, &(0x7f0000000fc0)={&(0x7f0000000e80)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000f80)={&(0x7f0000000ec0)={0x9c, 0x0, 0x4, 0x70bd29, 0x25dfdbff, {}, [@HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x40190}, 0x8000)
mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0)
setsockopt$packet_int(r11, 0x107, 0x11, &(0x7f0000001000)=0x3, 0x4)
timer_create(0x1, &(0x7f0000001040)={0x0, 0x3e, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000001080)=<r12=>0x0)
timer_settime(r12, 0x0, &(0x7f00000010c0)={{0x0, 0x3938700}, {0x77359400}}, &(0x7f0000001100))
io_uring_setup(0x24bf, &(0x7f0000001140)={0x0, 0xdb61, 0x400, 0x0, 0x2ee, 0x0, r11})

4.827103391s ago: executing program 1 (id=8911):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1600000000000000040000000700000000000000", @ANYRES32=0x1], 0x50)
r0 = socket$kcm(0xa, 0x5, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x2, 0x1, @dev}, 0x10, 0x0}, 0x865)
setsockopt$sock_attach_bpf(r1, 0x84, 0x1e, &(0x7f0000000240), 0x4)
r2 = socket$kcm(0xa, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8916, &(0x7f0000000000)={r2})
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8936, &(0x7f0000000000)={r2})

4.806822191s ago: executing program 1 (id=8912):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
ioctl$VIDIOC_EXPBUF(0xffffffffffffffff, 0x2, 0x0)
r2 = openat$dma_heap(0xffffffffffffff9c, 0x0, 0x6000c1, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r2, 0xc0184800, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r3 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r3, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r4 = socket$unix(0x1, 0x2, 0x0)
connect$unix(r4, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
writev(r4, &(0x7f0000000240)=[{&(0x7f0000000000)="f1", 0x1}], 0x1)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x23, &(0x7f0000000080)=0x6, 0x26)
recvmmsg(r3, &(0x7f0000000300), 0x40000000000049e, 0x1000000000fe, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e21, 0x100, @empty, 0x10000}, @in6={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x3d}, 0x7ff}], 0x38)
sendto$inet6(r5, &(0x7f0000000040)="e400", 0x2, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback, 0x5}, 0x1c)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x143)
r6 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
ptrace$pokeuser(0x6, r6, 0x103, 0x528ec475)
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
open(&(0x7f0000000000)='./file0\x00', 0x20e00, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r5, 0x84, 0xb, 0x0, 0x0)
r7 = bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r5}, 0x8)
connect$unix(r7, &(0x7f0000000080)=@abs={0x1, 0x0, 0x4e24}, 0x6e)
recvmmsg(r5, &(0x7f0000000740), 0x0, 0x40000023, 0x0)

4.184164527s ago: executing program 4 (id=8913):
socket(0xa, 0x5, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x1, 0x7fc00100}]})
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x20)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000002c0)={<r1=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000240))
r2 = syz_io_uring_setup(0x8ad, &(0x7f0000000640)={0x0, 0xe826, 0x800, 0x1, 0x3c3}, &(0x7f0000000dc0)=<r3=>0x0, &(0x7f0000000000)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
fsetxattr$trusted_overlay_upper(r2, &(0x7f0000000080), &(0x7f0000000340)={0x0, 0xfb, 0xf7, 0x2, 0x3, "b1f47535880a1815be01a345fa9eb2c0", "0719153bdd1e24f28912491159570c36ef4fdced548b56621e103171a640ea8ba5b80df8bd1fb33c26597aed681988cbeddbbf7e400ca92b42d24a8c56d765534243b373a21f825729a016b946dc02a3e3e5ca8970b6cc0db75c53cdcb4a2fc0cac237d34e2b1cc52d551213ecee2677e27a14315839d8f717c2f51c4bf74006abb02ea9873f94cf80376b0a023a24b4d8e6d5d2ef1f6702efdff26bdafc6dbd80fedfdc0d4063619124a8c50f780ddc23f231a95a6a6c31f508178b38b4dcc748b8ba337bd2fc5cf8d45c883c8390917417f20da4c500e457a277febf82252a84e0"}, 0xf7, 0x3)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r2, 0x847ba, 0x0, 0xe, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r0, 0xc0182101, &(0x7f00000001c0)={r1})

3.706276695s ago: executing program 0 (id=8914):
r0 = add_key$keyring(&(0x7f0000000200), &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
r1 = add_key$user(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x3}, &(0x7f00000002c0)="de", 0x1, r0)
keyctl$setperm(0x5, r1, 0x8001830)
keyctl$read(0xb, r1, 0x0, 0x0)
syz_emit_ethernet(0x52, &(0x7f00000007c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd608a27f2001c2c00fe8000000000000000000000000000bbfe6a00000000000000000000000000aa000000f60000000080000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5000000090780000"], 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffffffffffffff86dd6060626000102c00fe8000000000000000000000000000bbfe8000000000000000000000000000aa11004001"], 0x0)

3.442708849s ago: executing program 0 (id=8915):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10) (async)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4) (async)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @private=0xa010100}, 0x10) (async)
unshare(0x2040400) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
r3 = eventfd(0x8c69)
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000140)={0xfffffffffffffc04, 0x0, 0x4, r3, 0x11}) (async)
r4 = eventfd2(0x6, 0x1)
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f00000000c0)={0x277fffffff9, 0xeeee8000, 0x8, r4, 0x5}) (async)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000080)=0x4, 0x4) (async)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000200)='\x00', 0x1}], 0x1}, 0x0)

3.44019626s ago: executing program 2 (id=8916):
socket$alg(0x26, 0x5, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000001c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1c)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000000)={0x401, 0x0, 0x10000, 0xb998, 0x0, "194f2f83c2e798c3584770116cddc8819592b1"})
write$binfmt_aout(r2, &(0x7f0000000000)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000100)={0xa04c, 0x53b3, 0xfffffffd, 0x8, 0x1b, "53af0f0b4ecf6c29bf81c173f4a8f5f73eb62f"}) (fail_nth: 1)

3.382750077s ago: executing program 3 (id=8917):
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r0 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, 0x18})
r3 = syz_open_dev$dri(&(0x7f0000000040), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r3, 0xc01864b8, &(0x7f0000000000)={0x0, 0x0, 0x1, 0x0, 0x3a9e9908})
io_uring_enter(r0, 0x7a98, 0x0, 0x0, 0x0, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x1000, 0x10ffff, 0xfffffffd})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYRES64=r4, @ANYRES32=0x0, @ANYBLOB="2b030040000000004c0012800b00010067656e65766500003c0002800800050001000000140007"], 0x74}}, 0x0)

3.23736207s ago: executing program 0 (id=8918):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000004c0), 0x800, 0x0)
ioctl$EVIOCGPROP(r0, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCSMRU1(r0, 0x40047454, &(0x7f0000000300)=0x5)

3.089049925s ago: executing program 4 (id=8919):
syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
sendmsg$TIPC_NL_MON_GET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040), 0xc, 0x0}, 0x0)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, 0x0, 0x0)
getsockopt$inet_mptcp_buf(r0, 0x11c, 0x3, &(0x7f0000000040)=""/185, &(0x7f0000000140)=0xb9) (fail_nth: 1)

3.088054155s ago: executing program 0 (id=8920):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_tables_matches\x00')
pread64(r0, &(0x7f0000002280)=""/4096, 0x1000, 0xff)
socket$kcm(0x10, 0x2, 0x0)
r1 = open(&(0x7f0000000280)='.\x00', 0x80, 0x122)
fcntl$notify(r1, 0x402, 0x8000003d)
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r1, 0x4020565b, &(0x7f0000000000)={0x3, 0x7, 0x1})
inotify_init1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x50, 0x4, 0x0, 0x100000001, 0x953a, 0x80000000, 0xfffffffc}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="6c00000001040500000000000000000000000000060006400000004a080005400000000005000100010000950a00020000e4ff00000000000800034000000000060006400000000008000440000000000a0002000000001f420000000800044000000000080004400aaff612c7b6a41d20040f835d9f1a16082f984662f3"], 0x6c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r4, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0x4, 0x1, 0x801, 0x0, 0x0, {0x3, 0x0, 0x6}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000081}, 0x0)
unshare(0x2040400)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
fchdir(0xffffffffffffffff)
r5 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000180)={0xa0, 0xfffffffffffffff5, 0x0, {{0x5, 0x1, 0x5, 0x6, 0x3, 0x1, {0x1, 0x180, 0xff, 0x5, 0x100, 0x7cf4, 0x9, 0x7ffffffd, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0)
sendfile(r5, r5, &(0x7f0000000080)=0x2, 0x7f03)
open(0x0, 0x400000, 0x30)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xc000, 0x103)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001180), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000010c0)={{'fd', 0x3d, r6}, 0x2c, {'rootmode', 0x3d, 0x8000}})
syz_fuse_handle_req(r6, &(0x7f00000062c0)="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", 0x2000, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x10, 0xffffffffffffffda, 0x3ff, {0x0, 0xb}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r6, &(0x7f0000000180)={0x50, 0x0, 0x0, {0x7, 0x2b, 0xffffffde, 0x30004808, 0x0, 0xfffe, 0x2, 0xfffffffe, 0x0, 0x0, 0x100, 0x100}}, 0x50)

2.411140247s ago: executing program 3 (id=8921):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0))
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x3, &(0x7f0000000380)=[{0x8000, 0xf5, 0x1, 0x1}, {0x7, 0x3, 0x2, 0x7fffffff}, {0x7ff, 0x2, 0x7, 0x1}]})
r2 = mq_open(&(0x7f0000000180)='eth0\x00', 0x40, 0x59, 0x0)
mq_notify(r2, 0x0)
sched_setattr(0x0, &(0x7f0000000200)={0x38, 0x5, 0xb, 0x8001, 0x1, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0x38000}, 0x0)
r3 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r3, 0x402, 0x8000003d)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x16)
chdir(&(0x7f0000000140)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000001740)='.\x00', 0x515001, 0x488)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r4, &(0x7f0000000a00)=[{{&(0x7f0000000240)={0xa, 0x4e20, 0xc52, @local, 0x4}, 0x1c, &(0x7f0000000200)=[{&(0x7f0000000000)="001036ffbd0a077c617f9c475f9526f9f1ce846e737358f5", 0x18}], 0x1}}], 0x1, 0x4000841)
r5 = openat(0xffffffffffffff9c, 0x0, 0x4001, 0x100)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYRESDEC=r5], 0x34}, 0x1, 0x0, 0x0, 0x5dc401c2ae5aec79}, 0x4008094)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet6_int(r8, 0x29, 0x1a, &(0x7f0000000000)=0x6, 0x4)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="000000000000000027bd7000fddbee0000000000000000070000000000000001"], 0x30}, 0x1, 0xba01, 0x0, 0x4000050}, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r7, 0x6, 0xe, &(0x7f0000000000)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x1a, 0x0, "2431d0edd9b36cb74d7df7671eacf04be3b08353efa3641776f56c7556fd3713097bd0072577bc6fefb4cdc9e94e420b0ea4fbc5b07a32056eff5e6c42784b46ddab72b1b8fc87f208ad6db80d8dfe25"}, 0xd8)
bind$inet6(r7, 0x0, 0x0)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000140), 0x40202, 0x0)
syz_io_uring_setup(0x5b31, &(0x7f0000000400)={0x0, 0x5c07, 0x100, 0x2, 0x500249}, &(0x7f0000000340), &(0x7f0000000040))

1.910658407s ago: executing program 2 (id=8922):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="adcd1a9a3fc36e961ed00fe41b0cd695", 0x20)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f00000021c0)=[{0x0, 0x0, &(0x7f0000001000)=[{&(0x7f0000000140)="42a28df65f2e81d0991808e31200000004", 0x11}], 0x1, 0x0, 0x0, 0x40088d1}], 0x1, 0x80801)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x800000000000233, 0x12000, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x80b42, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f00000007c0)={"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"})
ioctl$KVM_SIGNAL_MSI(r5, 0x4020aea5, &(0x7f0000000100)={0xffffffff, 0x26000, 0xfffdfffe, 0x1, 0x40})
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CAP_DISABLE_QUIRKS(r8, 0x4068aea3, 0x0)
ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r9, 0x29, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x4, 0x4, 0x608, 0xffffffff, 0x0, 0x41c, 0x41c, 0xfeffffff, 0xffffffff, 0x540, 0x540, 0x540, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x2f2, 0xc8, 0xec, 0x0, {}, [@common=@eui64={{0x24}}]}, @REJECT={0x24, 'REJECT\x00', 0x0, {0x1}}}, {{@uncond, 0x0, 0x30c, 0x330, 0x0, {}, [@common=@unspec=@connbytes={{0x38}, {[{0x5}, {0x9b}], 0x1, 0x1}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0\x00', {0x400}}}]}, @REJECT={0x24}}, {{@uncond, 0x0, 0xc8, 0x124, 0x0, {}, [@common=@eui64={{0x24}}]}, @common=@inet=@HMARK={0x5c, 'HMARK\x00', 0x0, {@ipv4=@private=0xa010100, [0xff000000, 0xff000000, 0xff000000], 0x4e24, 0x4e20, 0x4e24, 0x4e22, 0x9, 0x0, 0x0, 0x12, 0x6}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x664)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})

1.74956248s ago: executing program 4 (id=8923):
ioctl$VT_ACTIVATE(0xffffffffffffffff, 0x4b4a, 0x10000000000004)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x801)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x0, &(0x7f0000000100), 0xc06620, 0x4)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt(0xffffffffffffffff, 0x28, 0x0, 0x0, &(0x7f0000000080))
socket$key(0xf, 0x3, 0x2)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)

1.47862109s ago: executing program 1 (id=8924):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$igmp(0x2, 0x3, 0x2)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = add_key$user(&(0x7f00000002c0), &(0x7f0000000180)={'syz', 0x2}, &(0x7f0000000280)="85952b177328da2f8757c9343d", 0xd, 0xfffffffffffffffd)
r5 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r4, r5, r4}, &(0x7f00000000c0)=""/80, 0x50, 0x0)
r6 = openat$sequencer2(0xffffff9c, &(0x7f00000011c0), 0x143240, 0x0)
ioctl$SNDCTL_SEQ_NRMIDIS(r6, 0xc0045103, &(0x7f0000000040))
setsockopt$MRT6_ADD_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd2, 0x0, 0x0)
sendmsg(r3, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r7 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000240), 0x80040, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x58, 0x2, 0x6, 0x801, 0xe4340000, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_NETMASK={0x5, 0x14, 0xb4}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x48}]}]}, 0x58}}, 0x2)
ioctl$RFKILL_IOCTL_NOINPUT(r7, 0x5218)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
sendto$inet(r1, 0x0, 0x0, 0x400c806, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in6={{0xa, 0x4e21, 0x1f0268bc, @empty, 0x6}}, 0x0, 0x0, 0x3fc, 0x1, 0x12, 0x4}, 0x9c)
bind$inet6(r0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000180)=0x4, 0x4)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r9, &(0x7f0000003240)=[{{&(0x7f0000000a80)={0xa, 0x4e24, 0xc1, @mcast2, 0x9}, 0x1c, 0x0, 0x0, &(0x7f0000000340)=[@dstopts_2292={{0x28, 0x29, 0x4, {0xa7, 0x1, '\x00', [@enc_lim={0x4, 0x1, 0x1}, @calipso={0x7, 0x8, {0x2, 0x0, 0x8, 0x2}}]}}}], 0x28}}], 0x1, 0x4000085)

998.363558ms ago: executing program 0 (id=8925):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x100, 0x8002000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs2/custom0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r1, 0x80000)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r3=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r3, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000bc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000840)={@fda={0x66646185, 0x7, 0x0, 0x1b}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}, @flat=@binder={0x73622a85, 0x0, 0x1}}, &(0x7f0000000200)={0x0, 0x1c, 0x34}}}], 0x0, 0x0, 0x0})
r5 = syz_io_uring_complete(0x0)
ioctl$MON_IOCX_MFETCH(r5, 0xc00c9207, &(0x7f00000002c0)={&(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x9})
r6 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r7, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000440)='./binderfs2/custom1\x00', 0x1800, 0x0)
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r9 = dup3(r8, r7, 0x0)
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x800, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r10, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r10, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f00000003c0)={0x98, 0x0, &(0x7f0000000780)=[@acquire, @transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000500)={@flat=@binder={0x73622a85, 0x1100, 0x1}, @flat=@weak_handle={0x77682a85, 0x0, 0x3}, @fda={0x66646185, 0x8, 0x0, 0x3d}}, &(0x7f0000000180)={0x0, 0x18, 0x30}}, 0x1000}, @transaction={0x40406300, {0x2, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000700)={@ptr={0x70742a85, 0x1, &(0x7f0000000600)=""/210, 0xd2, 0x1, 0x2a}, @flat=@weak_handle={0x77682a85, 0x300a, 0x2}, @fd={0x66642a85, 0x0, r4}}, &(0x7f0000000240)={0x0, 0x28, 0x40}}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r10, 0xc0306201, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000580)="97713b46fbaa2b1044f2d408ffca802db4d770eb9874f493e0ef367e4bde497c403b450c72ff2417d079bb892435a1e107fa5c0ecd207d9e6f2a209bf148e6bc56955cb53347d1499097488fcad724a1"})

539.844938ms ago: executing program 3 (id=8926):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000480)={0xa, 0x1, 0x7})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = syz_open_dev$media(&(0x7f00000012c0), 0x66, 0x180502)
ioctl$MEDIA_IOC_G_TOPOLOGY(0xffffffffffffffff, 0xc0487c04, &(0x7f0000002f00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000240)={'wlan0\x00', <r6=>0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0xffffffffffffffff, 0x70bd27, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0xec37, 0x40024}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r6}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x24004004)
ioctl$MEDIA_IOC_SETUP_LINK(r4, 0xc0347c03, &(0x7f0000000200)={{0x80000000, 0x0, 0x0, [0x4, 0x9]}, {0x80000000, 0x0, 0x0, [0x8, 0xe7]}, 0x1, [0x3, 0xffffb4b5]})
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000100)={0x20004, r3, 0x80000})
mmap(&(0x7f0000200000/0x4000)=nil, 0x4000, 0x4, 0x200000006c832, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x42804}, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x99, 0x37, 0xf0, 0x10, 0x413c, 0x81d2, 0x25e8, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0xd5, 0x0, 0x0, 0x5, 0xde, 0x67}}]}}]}}, 0x0)
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='loginuid\x00')
preadv(r8, &(0x7f00000003c0)=[{&(0x7f0000000380)=""/44, 0x73}], 0x1, 0x2, 0x0)
r9 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r9, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r9, &(0x7f0000000580)={0x2, 0x4e20, @remote}, 0x10)

371.000467ms ago: executing program 0 (id=8927):
sendmsg$NFNL_MSG_ACCT_GET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="74000000010701030000000000000000030000040900010073797a3100000000540007800800024000000002080002400000b55a0800014000000001080001400000000108000240000000070800014000000006080001400000000808000240ffffdfda0800014000e00000080600"], 0x74}, 0x1, 0x0, 0x0, 0x4000010}, 0x8000)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="3c0000004900010000000000000000000a0000000000000000000000140001"], 0x3c}}, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
openat$audio(0xffffff9c, 0x0, 0x402, 0x0)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x3f, 0x80842)
semget(0x1, 0x4, 0x10)
syz_usb_connect(0x1, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e40010203030902240001a82300000904000002ca744d00090503034d00ff99090805", @ANYRES32], &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x8000000)
read(r3, &(0x7f0000000380)=""/144, 0x90)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x94, 0x7fff0000}]})
close_range(r4, 0xffffffffffffffff, 0x0)
readahead(0xffffffffffffffff, 0x100, 0x96)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000180)='ns\x00')
getdents(r5, &(0x7f00000003c0)=""/202, 0xca)
getdents64(r5, &(0x7f0000000000)=""/181, 0xb5)
getdents64(r5, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$kcm(0x10, 0x2, 0x10)

0s ago: executing program 2 (id=8928):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = syz_usb_connect(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="1201000014da2108ab12a390eb1e000000010902240001b30000040904410017ff5d810009050f1f01040000000905830300b3"], 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x38011, r2, 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r4=>r2}, './file0\x00'})
io_uring_setup(0x56b6, &(0x7f0000000240)={0x0, 0x925c, 0x4, 0x0, 0x2f3, 0x0, r4})
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r3, 0xc1205531, &(0x7f0000002680)=""/4078)
syz_usb_connect(0x0, 0x24, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100009dea7840b416fbff7bdc010203010902120001000000000904010000a01f7100"], 0x0)
syz_usb_ep_write$ath9k_ep2(r1, 0x83, 0x8, &(0x7f00000000c0)=ANY=[])
sendfile64(r3, r2, &(0x7f0000000040)=0x5, 0x1)
ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0xd7)
r5 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x5a4, 0x8003, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0xa5, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x400}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_control_io$hid(r5, &(0x7f0000001440)={0x24, 0x0, 0x0, &(0x7f00000013c0)=ANY=[@ANYBLOB='\x00\"\r'], 0x0}, 0x0)
mq_open(0x0, 0x41, 0x80, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x1, 0x20}, 0xc)
io_setup(0xa, &(0x7f00000001c0)=<r6=>0x0)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000500)='/sys/power/hibernate_compression_threads', 0x81, 0x114)
io_submit(r6, 0x1, &(0x7f0000000400)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r7, &(0x7f0000000bc0)='\x00', 0x1, 0x1000000000003}])
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x800, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x1, @loopback}, 0x1c)
ioctl$TUNGETVNETLE(r7, 0x800454dd, &(0x7f0000000100))
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback}}, 0x100, 0x0, 0x0, 0x0, 0x54}, 0x9c)

kernel console output (not intermixed with test programs):

.283750][ T5686]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2338.283771][ T5686]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2338.283793][ T5686]  ? kstrtoull+0x12f/0x1d0
[ 2338.283817][ T5686]  ___sys_sendmsg+0x201/0x360
[ 2338.283837][ T5686]  ? __lock_acquire+0x6b5/0x2cf0
[ 2338.283863][ T5686]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2338.283887][ T5686]  ? get_pid_task+0x20/0x1f0
[ 2338.283904][ T5686]  ? get_pid_task+0x20/0x1f0
[ 2338.283921][ T5686]  ? get_pid_task+0x20/0x1f0
[ 2338.283962][ T5686]  ? __fget_files+0x2a/0x420
[ 2338.283981][ T5686]  ? __fget_files+0x3a0/0x420
[ 2338.284008][ T5686]  __sys_sendmsg+0x183/0x260
[ 2338.284031][ T5686]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2338.284062][ T5686]  ? __pfx_ksys_write+0x10/0x10
[ 2338.284092][ T5686]  __do_fast_syscall_32+0x1d2/0x540
[ 2338.284112][ T5686]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2338.284128][ T5686]  ? do_fast_syscall_32+0x33/0x70
[ 2338.284145][ T5686]  ? asm_int80_emulation+0x1a/0x20
[ 2338.284162][ T5686]  ? do_int80_emulation+0x20e/0x400
[ 2338.284184][ T5686]  do_fast_syscall_32+0x33/0x70
[ 2338.284203][ T5686]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2338.284222][ T5686] RIP: 0023:0xf7f53539
[ 2338.284237][ T5686] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2338.284251][ T5686] RSP: 002b:00000000f541650c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 2338.284271][ T5686] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[ 2338.284284][ T5686] RDX: 00000000056f0939 RSI: 0000000000000000 RDI: 0000000000000000
[ 2338.284295][ T5686] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2338.284305][ T5686] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2338.284316][ T5686] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2338.284342][ T5686]  </TASK>
[ 2339.109537][ T5699] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2339.151480][ T5699] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2339.286607][ T5905] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[ 2339.486596][ T5905] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2339.497943][ T5905] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2339.552527][ T5905] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 2339.562088][ T5905] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[ 2339.590705][ T5905] usb 2-1: Manufacturer: syz
[ 2339.655866][ T5905] usb 2-1: config 0 descriptor??
[ 2340.306866][ T5722] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2340.336148][ T5722] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2340.391019][ T5724] netlink: 56 bytes leftover after parsing attributes in process `syz.3.8569'.
[ 2340.512317][ T5905] input: syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.0010/input/input223
[ 2340.669137][ T5905] input: syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.0010/input/input224
[ 2340.755778][ T5905] input: syz Touch Strip as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.0010/input/input225
[ 2340.853267][ T5905] input: syz Dial as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.0010/input/input226
[ 2340.926913][ T5905] uclogic 0003:256C:006D.0010: input,hidraw0: USB HID v0.00 Keypad [syz] on usb-dummy_hcd.1-1/input0
[ 2340.950854][ T5626] Set syz1 is full, maxelem 65536 reached
[ 2341.288685][ T5731] netlink: 56 bytes leftover after parsing attributes in process `syz.4.8572'.
[ 2341.776202][T27963] usb 2-1: reset high-speed USB device number 9 using dummy_hcd
[ 2341.879614][ T5747] netlink: 56 bytes leftover after parsing attributes in process `syz.3.8575'.
[ 2342.994897][T27963] usb 2-1: device descriptor read/64, error -71
[ 2343.108278][ T5769] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2343.142692][ T5769] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2343.220139][ T5768] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2343.235269][ T5768] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2343.243202][ T5775] netlink: 56 bytes leftover after parsing attributes in process `syz.0.8585'.
[ 2343.334983][T27963] usb 2-1: reset high-speed USB device number 9 using dummy_hcd
[ 2343.356607][T27963] usb 2-1: device reset changed ep0 maxpacket size!
[ 2343.374625][ T4996] usb 2-1: USB disconnect, device number 9
[ 2343.818575][ T4996] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[ 2343.984625][ T4996] usb 2-1: Using ep0 maxpacket: 32
[ 2343.992854][ T4996] usb 2-1: config 0 has an invalid interface number: 37 but max is 1
[ 2344.020372][ T4996] usb 2-1: config 0 has no interface number 1
[ 2344.060168][ T4996] usb 2-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=20.a3
[ 2344.072931][ T4996] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2344.084115][ T4996] usb 2-1: Product: syz
[ 2344.090600][ T4996] usb 2-1: Manufacturer: syz
[ 2344.097254][ T4996] usb 2-1: SerialNumber: syz
[ 2344.104621][ T5905] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[ 2344.162782][ T5799] netlink: 56 bytes leftover after parsing attributes in process `syz.2.8593'.
[ 2344.240068][ T4996] usb 2-1: config 0 descriptor??
[ 2344.354857][ T5905] usb 4-1: config index 0 descriptor too short (expected 65183, got 72)
[ 2344.373705][ T5905] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 2344.391241][ T5905] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2344.419811][ T5905] usb 4-1: Product: syz
[ 2344.433350][ T5905] usb 4-1: Manufacturer: syz
[ 2344.445539][ T5905] usb 4-1: SerialNumber: syz
[ 2344.478701][ T5905] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 2344.530482][T27963] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 2344.595891][ T5905] usb 2-1: USB disconnect, device number 10
[ 2344.730804][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 2344.737982][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 2344.841133][ T5789] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2344.855070][ T5789] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2345.008157][ T5789] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2345.048398][ T5789] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2345.093105][ T5789] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2345.132882][ T5805] FAULT_INJECTION: forcing a failure.
[ 2345.132882][ T5805] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2345.157816][ T5789] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2345.180908][ T5805] CPU: 0 UID: 0 PID: 5805 Comm: syz.0.8594 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2345.180939][ T5805] Tainted: [L]=SOFTLOCKUP
[ 2345.180946][ T5805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2345.180956][ T5805] Call Trace:
[ 2345.180962][ T5805]  <TASK>
[ 2345.180971][ T5805]  dump_stack_lvl+0xe8/0x150
[ 2345.180997][ T5805]  should_fail_ex+0x412/0x560
[ 2345.181020][ T5805]  _copy_from_user+0x2d/0xb0
[ 2345.181044][ T5805]  get_compat_msghdr+0xb3/0x4c0
[ 2345.181067][ T5805]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2345.181088][ T5805]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2345.181109][ T5805]  ? kstrtoull+0x12f/0x1d0
[ 2345.181132][ T5805]  ___sys_sendmsg+0x201/0x360
[ 2345.181151][ T5805]  ? __lock_acquire+0x6b5/0x2cf0
[ 2345.181177][ T5805]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2345.181199][ T5805]  ? get_pid_task+0x20/0x1f0
[ 2345.181217][ T5805]  ? get_pid_task+0x20/0x1f0
[ 2345.181233][ T5805]  ? get_pid_task+0x20/0x1f0
[ 2345.181275][ T5805]  ? __fget_files+0x2a/0x420
[ 2345.181291][ T5805]  ? __fget_files+0x3a0/0x420
[ 2345.181312][ T5805]  __sys_sendmsg+0x183/0x260
[ 2345.181331][ T5805]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2345.181356][ T5805]  ? __pfx_ksys_write+0x10/0x10
[ 2345.181380][ T5805]  __do_fast_syscall_32+0x1d2/0x540
[ 2345.181399][ T5805]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2345.181416][ T5805]  ? do_fast_syscall_32+0x33/0x70
[ 2345.181431][ T5805]  ? asm_int80_emulation+0x1a/0x20
[ 2345.181443][ T5805]  ? do_int80_emulation+0x20e/0x400
[ 2345.181460][ T5805]  do_fast_syscall_32+0x33/0x70
[ 2345.181475][ T5805]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2345.181490][ T5805] RIP: 0023:0xf73ed539
[ 2345.181504][ T5805] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2345.181516][ T5805] RSP: 002b:00000000f53f550c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 2345.181532][ T5805] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[ 2345.181542][ T5805] RDX: 00000000000000c0 RSI: 0000000000000000 RDI: 0000000000000000
[ 2345.181553][ T5805] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2345.181564][ T5805] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2345.181575][ T5805] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2345.181596][ T5805]  </TASK>
[ 2345.423954][  T797] usb 4-1: USB disconnect, device number 19
[ 2345.601504][ T5815] netlink: 'syz.2.8597': attribute type 1 has an invalid length.
[ 2345.609566][T27963] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[ 2345.616837][T27963] ath9k_htc: Failed to initialize the device
[ 2345.626124][  T797] usb 4-1: ath9k_htc: USB layer deinitialized
[ 2345.661943][ T5815] 8021q: adding VLAN 0 to HW filter on device bond26
[ 2345.734941][ T5905] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[ 2345.844762][ T3993] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[ 2345.884652][ T5905] usb 2-1: Using ep0 maxpacket: 16
[ 2345.891608][ T5905] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2345.903926][ T5905] usb 2-1: New USB device found, idVendor=046d, idProduct=0721, bcdDevice=9c.25
[ 2345.913337][ T5905] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2345.921609][ T5905] usb 2-1: Product: syz
[ 2345.926498][ T5905] usb 2-1: Manufacturer: syz
[ 2345.931177][ T5905] usb 2-1: SerialNumber: syz
[ 2345.935632][  T797] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[ 2345.938616][ T5905] usb 2-1: config 0 descriptor??
[ 2345.953294][ T5905] uvcvideo 2-1:0.0: probe with driver uvcvideo failed with error -22
[ 2346.011863][ T3993] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 2346.023435][ T3993] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 2346.033362][ T3993] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2346.042577][ T3993] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2346.054886][ T5814] raw-gadget.6 gadget.0: fail, usb_ep_enable returned -22
[ 2346.065329][ T3993] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[ 2346.086186][  T797] usb 4-1: Using ep0 maxpacket: 8
[ 2346.106681][  T797] usb 4-1: config index 0 descriptor too short (expected 241, got 72)
[ 2346.126898][  T797] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA1, changing to 0x81
[ 2346.141386][  T797] usb 4-1: config 0 interface 0 altsetting 0 has 6 endpoint descriptors, different from the interface descriptor's value: 5
[ 2346.158127][  T797] usb 4-1: New USB device found, idVendor=2357, idProduct=0109, bcdDevice=bd.da
[ 2346.168314][ T3993] usb 2-1: USB disconnect, device number 11
[ 2346.168427][  T797] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2346.191753][  T797] usb 4-1: config 0 descriptor??
[ 2346.268053][T27963] usb 1-1: USB disconnect, device number 29
[ 2346.442452][ T3993] usb 4-1: USB disconnect, device number 20
[ 2347.150096][ T5830] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8602'.
[ 2347.877223][  T797] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[ 2348.035100][  T797] usb 2-1: Using ep0 maxpacket: 32
[ 2348.049465][  T797] usb 2-1: config 0 has an invalid interface number: 37 but max is 1
[ 2348.087699][  T797] usb 2-1: config 0 has no interface number 1
[ 2348.092789][ T5842] netlink: 16 bytes leftover after parsing attributes in process `syz.3.8606'.
[ 2348.107640][  T797] usb 2-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=20.a3
[ 2348.119627][  T797] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2348.128360][  T797] usb 2-1: Product: syz
[ 2348.132713][ T5842] netlink: 16 bytes leftover after parsing attributes in process `syz.3.8606'.
[ 2348.143361][  T797] usb 2-1: Manufacturer: syz
[ 2348.149156][  T797] usb 2-1: SerialNumber: syz
[ 2348.168116][  T797] usb 2-1: config 0 descriptor??
[ 2348.370850][ T5849] netlink: 56 bytes leftover after parsing attributes in process `syz.4.8607'.
[ 2348.540502][T27963] usb 2-1: USB disconnect, device number 12
[ 2348.850656][ T5853] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2348.871447][ T5854] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2348.957067][ T5856] FAULT_INJECTION: forcing a failure.
[ 2348.957067][ T5856] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2348.983782][ T5853] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2349.017405][ T5856] CPU: 1 UID: 0 PID: 5856 Comm: syz.0.8609 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2349.017436][ T5856] Tainted: [L]=SOFTLOCKUP
[ 2349.017442][ T5856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2349.017452][ T5856] Call Trace:
[ 2349.017459][ T5856]  <TASK>
[ 2349.017468][ T5856]  dump_stack_lvl+0xe8/0x150
[ 2349.017477][ T5854] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2349.017495][ T5856]  should_fail_ex+0x412/0x560
[ 2349.017518][ T5856]  _copy_from_user+0x2d/0xb0
[ 2349.017539][ T5856]  get_compat_msghdr+0xb3/0x4c0
[ 2349.017561][ T5856]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2349.017582][ T5856]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2349.017602][ T5856]  ? kstrtoull+0x12f/0x1d0
[ 2349.017628][ T5856]  ___sys_sendmsg+0x201/0x360
[ 2349.017648][ T5856]  ? __lock_acquire+0x6b5/0x2cf0
[ 2349.017674][ T5856]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2349.017704][ T5856]  ? get_pid_task+0x20/0x1f0
[ 2349.017726][ T5856]  ? get_pid_task+0x20/0x1f0
[ 2349.017742][ T5856]  ? get_pid_task+0x20/0x1f0
[ 2349.017782][ T5856]  ? __fget_files+0x2a/0x420
[ 2349.017800][ T5856]  ? __fget_files+0x3a0/0x420
[ 2349.017826][ T5856]  __sys_sendmsg+0x183/0x260
[ 2349.017849][ T5856]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2349.017880][ T5856]  ? __pfx_ksys_write+0x10/0x10
[ 2349.017909][ T5856]  __do_fast_syscall_32+0x1d2/0x540
[ 2349.017929][ T5856]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2349.017944][ T5856]  ? do_fast_syscall_32+0x33/0x70
[ 2349.017961][ T5856]  ? asm_int80_emulation+0x1a/0x20
[ 2349.017977][ T5856]  ? do_int80_emulation+0x20e/0x400
[ 2349.017997][ T5856]  do_fast_syscall_32+0x33/0x70
[ 2349.018015][ T5856]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2349.018034][ T5856] RIP: 0023:0xf73ed539
[ 2349.018049][ T5856] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2349.018063][ T5856] RSP: 002b:00000000f541650c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 2349.018082][ T5856] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000580
[ 2349.018093][ T5856] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2349.018103][ T5856] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2349.018114][ T5856] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2349.018123][ T5856] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2349.018149][ T5856]  </TASK>
[ 2349.319453][ T5853] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2349.343607][ T5853] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2349.521078][ T5866] FAULT_INJECTION: forcing a failure.
[ 2349.521078][ T5866] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2349.559927][ T5866] CPU: 1 UID: 0 PID: 5866 Comm: syz.4.8612 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2349.559958][ T5866] Tainted: [L]=SOFTLOCKUP
[ 2349.559965][ T5866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2349.559977][ T5866] Call Trace:
[ 2349.559984][ T5866]  <TASK>
[ 2349.559993][ T5866]  dump_stack_lvl+0xe8/0x150
[ 2349.560020][ T5866]  should_fail_ex+0x412/0x560
[ 2349.560046][ T5866]  _copy_from_user+0x2d/0xb0
[ 2349.560069][ T5866]  get_compat_msghdr+0xb3/0x4c0
[ 2349.560092][ T5866]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2349.560113][ T5866]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2349.560133][ T5866]  ? kstrtoull+0x12f/0x1d0
[ 2349.560153][ T5866]  ___sys_sendmsg+0x201/0x360
[ 2349.560172][ T5866]  ? __lock_acquire+0x6b5/0x2cf0
[ 2349.560197][ T5866]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2349.560216][ T5866]  ? get_pid_task+0x20/0x1f0
[ 2349.560232][ T5866]  ? get_pid_task+0x20/0x1f0
[ 2349.560245][ T5866]  ? get_pid_task+0x20/0x1f0
[ 2349.560281][ T5866]  ? __fget_files+0x2a/0x420
[ 2349.560297][ T5866]  ? __fget_files+0x3a0/0x420
[ 2349.560321][ T5866]  __sys_sendmsg+0x183/0x260
[ 2349.560345][ T5866]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2349.560377][ T5866]  ? __pfx_ksys_write+0x10/0x10
[ 2349.560405][ T5866]  __do_fast_syscall_32+0x1d2/0x540
[ 2349.560426][ T5866]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2349.560442][ T5866]  ? do_fast_syscall_32+0x33/0x70
[ 2349.560458][ T5866]  ? asm_int80_emulation+0x1a/0x20
[ 2349.560475][ T5866]  ? do_int80_emulation+0x20e/0x400
[ 2349.560497][ T5866]  do_fast_syscall_32+0x33/0x70
[ 2349.560516][ T5866]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2349.560535][ T5866] RIP: 0023:0xf7f95539
[ 2349.560551][ T5866] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2349.560566][ T5866] RSP: 002b:00000000f545650c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 2349.560586][ T5866] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[ 2349.560598][ T5866] RDX: 0000000000000084 RSI: 0000000000000000 RDI: 0000000000000000
[ 2349.560609][ T5866] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2349.560620][ T5866] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2349.560631][ T5866] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2349.560667][ T5866]  </TASK>
[ 2350.533497][ T5901] netlink: 'syz.4.8616': attribute type 1 has an invalid length.
[ 2350.871964][ T5891] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[ 2351.065231][ T5891] usb 4-1: Using ep0 maxpacket: 32
[ 2351.074067][ T5901] 8021q: adding VLAN 0 to HW filter on device bond20
[ 2351.163875][ T5891] usb 4-1: config 0 has an invalid interface number: 37 but max is 1
[ 2351.176666][ T5891] usb 4-1: config 0 has no interface number 1
[ 2351.186486][ T5891] usb 4-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=20.a3
[ 2351.219251][ T5891] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2351.235306][ T5891] usb 4-1: Product: syz
[ 2351.305221][ T5891] usb 4-1: Manufacturer: syz
[ 2351.309869][ T5891] usb 4-1: SerialNumber: syz
[ 2351.325890][ T5891] usb 4-1: config 0 descriptor??
[ 2351.360669][ T5924] netlink: 56 bytes leftover after parsing attributes in process `syz.2.8622'.
[ 2351.501181][ T5923] FAULT_INJECTION: forcing a failure.
[ 2351.501181][ T5923] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2351.594678][ T5923] CPU: 1 UID: 0 PID: 5923 Comm: syz.0.8624 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2351.594710][ T5923] Tainted: [L]=SOFTLOCKUP
[ 2351.594717][ T5923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2351.594728][ T5923] Call Trace:
[ 2351.594737][ T5923]  <TASK>
[ 2351.594746][ T5923]  dump_stack_lvl+0xe8/0x150
[ 2351.594774][ T5923]  should_fail_ex+0x412/0x560
[ 2351.594800][ T5923]  _copy_from_user+0x2d/0xb0
[ 2351.594827][ T5923]  get_compat_msghdr+0xb3/0x4c0
[ 2351.594851][ T5923]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2351.594872][ T5923]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2351.594894][ T5923]  ? kstrtoull+0x12f/0x1d0
[ 2351.594920][ T5923]  ___sys_sendmsg+0x201/0x360
[ 2351.594941][ T5923]  ? __lock_acquire+0x6b5/0x2cf0
[ 2351.594969][ T5923]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2351.594992][ T5923]  ? get_pid_task+0x20/0x1f0
[ 2351.595010][ T5923]  ? get_pid_task+0x20/0x1f0
[ 2351.595025][ T5923]  ? get_pid_task+0x20/0x1f0
[ 2351.595068][ T5923]  ? __fget_files+0x2a/0x420
[ 2351.595086][ T5923]  ? __fget_files+0x3a0/0x420
[ 2351.595113][ T5923]  __sys_sendmsg+0x183/0x260
[ 2351.595137][ T5923]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2351.595168][ T5923]  ? __pfx_ksys_write+0x10/0x10
[ 2351.595199][ T5923]  __do_fast_syscall_32+0x1d2/0x540
[ 2351.595237][ T5923]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2351.595253][ T5923]  ? do_fast_syscall_32+0x33/0x70
[ 2351.595268][ T5923]  ? asm_int80_emulation+0x1a/0x20
[ 2351.595282][ T5923]  ? do_int80_emulation+0x20e/0x400
[ 2351.595301][ T5923]  do_fast_syscall_32+0x33/0x70
[ 2351.595318][ T5923]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2351.595333][ T5923] RIP: 0023:0xf73ed539
[ 2351.595351][ T5923] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2351.595363][ T5923] RSP: 002b:00000000f541650c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 2351.595381][ T5923] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000800001c0
[ 2351.595391][ T5923] RDX: 0000000000000810 RSI: 0000000000000000 RDI: 0000000000000000
[ 2351.595400][ T5923] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2351.595409][ T5923] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2351.595420][ T5923] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2351.595447][ T5923]  </TASK>
[ 2352.169587][   T10] usb 4-1: USB disconnect, device number 21
[ 2352.218889][ T5929] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2352.286796][ T5929] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2352.561504][ T5936] netlink: 88 bytes leftover after parsing attributes in process `syz.0.8626'.
[ 2353.079021][ T5953] netlink: 104 bytes leftover after parsing attributes in process `syz.0.8631'.
[ 2353.091538][ T5953] netlink: 104 bytes leftover after parsing attributes in process `syz.0.8631'.
[ 2353.212421][ T5957] mac80211_hwsim hwsim59 syzkaller0: entered allmulticast mode
[ 2353.249298][ T5957] FAULT_INJECTION: forcing a failure.
[ 2353.249298][ T5957] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2353.297289][ T5957] CPU: 1 UID: 0 PID: 5957 Comm: syz.2.8633 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2353.297322][ T5957] Tainted: [L]=SOFTLOCKUP
[ 2353.297329][ T5957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2353.297340][ T5957] Call Trace:
[ 2353.297348][ T5957]  <TASK>
[ 2353.297356][ T5957]  dump_stack_lvl+0xe8/0x150
[ 2353.297383][ T5957]  should_fail_ex+0x412/0x560
[ 2353.297409][ T5957]  _copy_from_user+0x2d/0xb0
[ 2353.297434][ T5957]  get_compat_msghdr+0xb3/0x4c0
[ 2353.297458][ T5957]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2353.297479][ T5957]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2353.297501][ T5957]  ? kstrtoull+0x12f/0x1d0
[ 2353.297527][ T5957]  ___sys_sendmsg+0x201/0x360
[ 2353.297549][ T5957]  ? __lock_acquire+0x6b5/0x2cf0
[ 2353.297574][ T5957]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2353.297598][ T5957]  ? get_pid_task+0x20/0x1f0
[ 2353.297616][ T5957]  ? get_pid_task+0x20/0x1f0
[ 2353.297633][ T5957]  ? get_pid_task+0x20/0x1f0
[ 2353.297675][ T5957]  ? __fget_files+0x2a/0x420
[ 2353.297694][ T5957]  ? __fget_files+0x3a0/0x420
[ 2353.297721][ T5957]  __sys_sendmsg+0x183/0x260
[ 2353.297745][ T5957]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2353.297777][ T5957]  ? __pfx_ksys_write+0x10/0x10
[ 2353.297808][ T5957]  __do_fast_syscall_32+0x1d2/0x540
[ 2353.297828][ T5957]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2353.297845][ T5957]  ? do_fast_syscall_32+0x33/0x70
[ 2353.297862][ T5957]  ? asm_int80_emulation+0x1a/0x20
[ 2353.297877][ T5957]  ? do_int80_emulation+0x20e/0x400
[ 2353.297899][ T5957]  do_fast_syscall_32+0x33/0x70
[ 2353.297917][ T5957]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2353.297936][ T5957] RIP: 0023:0xf7f53539
[ 2353.297951][ T5957] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2353.297964][ T5957] RSP: 002b:00000000f541650c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 2353.297981][ T5957] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000800000c0
[ 2353.297992][ T5957] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000
[ 2353.298002][ T5957] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2353.298011][ T5957] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2353.298022][ T5957] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2353.298046][ T5957]  </TASK>
[ 2353.620168][ T5966] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8636'.
[ 2353.669887][ T5966] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2353.681803][ T5968] netlink: 'syz.2.8637': attribute type 1 has an invalid length.
[ 2353.751277][ T5968] 8021q: adding VLAN 0 to HW filter on device bond27
[ 2353.793057][ T5973] netlink: 76 bytes leftover after parsing attributes in process `syz.0.8635'.
[ 2353.807429][ T5973] netlink: 72 bytes leftover after parsing attributes in process `syz.0.8635'.
[ 2353.991416][ T5974] 8021q: adding VLAN 0 to HW filter on device bond27
[ 2354.031889][ T5976] bond27: (slave geneve3): Enslaving as an active interface with an up link
[ 2354.905448][ T4996] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[ 2354.929983][T18175] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 2354.940610][T18175] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 2354.961656][T18175] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 2355.011652][ T5992] netlink: 56 bytes leftover after parsing attributes in process `syz.4.8643'.
[ 2355.083917][T18175] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 2355.091068][ T4996] usb 4-1: Using ep0 maxpacket: 32
[ 2355.098606][T18175] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 2355.105937][ T4996] usb 4-1: config 0 has an invalid interface number: 37 but max is 1
[ 2355.126584][ T4996] usb 4-1: config 0 has no interface number 1
[ 2355.146067][ T4996] usb 4-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=20.a3
[ 2355.162002][ T4996] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2355.285890][ T4996] usb 4-1: Product: syz
[ 2355.350961][ T4996] usb 4-1: Manufacturer: syz
[ 2355.395572][ T4996] usb 4-1: SerialNumber: syz
[ 2355.422743][ T4996] usb 4-1: config 0 descriptor??
[ 2355.528685][ T1887] vhci_hcd: connection reset by peer
[ 2355.663027][  T797] usb 4-1: USB disconnect, device number 22
[ 2355.741419][T16248] vhci_hcd vhci_hcd.1: stop threads
[ 2355.748179][T16248] vhci_hcd vhci_hcd.1: release socket
[ 2355.754139][T16248] vhci_hcd vhci_hcd.1: disconnect device
[ 2355.814704][T23222] vhci_hcd vhci_hcd.1: vhci_device speed not set
[ 2355.929816][T16236] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2355.974940][ T4996] usb 1-1: new full-speed USB device number 30 using dummy_hcd
[ 2356.139322][T16236] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2356.158866][ T4996] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 2356.174754][ T4996] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2356.191760][ T5994] chnl_net:caif_netlink_parms(): no params data found
[ 2356.200496][ T4996] usb 1-1: Product: syz
[ 2356.206117][ T6006] FAULT_INJECTION: forcing a failure.
[ 2356.206117][ T6006] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2356.209196][ T4996] usb 1-1: Manufacturer: syz
[ 2356.228484][ T4996] usb 1-1: SerialNumber: syz
[ 2356.241500][ T4996] usb 1-1: config 0 descriptor??
[ 2356.248456][ T6006] CPU: 1 UID: 0 PID: 6006 Comm: syz.2.8647 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2356.248483][ T6006] Tainted: [L]=SOFTLOCKUP
[ 2356.248489][ T6006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2356.248510][ T6006] Call Trace:
[ 2356.248517][ T6006]  <TASK>
[ 2356.248540][ T6006]  dump_stack_lvl+0xe8/0x150
[ 2356.248577][ T6006]  should_fail_ex+0x412/0x560
[ 2356.248601][ T6006]  _copy_from_user+0x2d/0xb0
[ 2356.248629][ T6006]  get_compat_msghdr+0xb3/0x4c0
[ 2356.248651][ T6006]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2356.248670][ T6006]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2356.248690][ T6006]  ? kstrtoull+0x12f/0x1d0
[ 2356.248716][ T6006]  ___sys_sendmsg+0x201/0x360
[ 2356.248735][ T6006]  ? __lock_acquire+0x6b5/0x2cf0
[ 2356.248761][ T6006]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2356.248784][ T6006]  ? get_pid_task+0x20/0x1f0
[ 2356.248801][ T6006]  ? get_pid_task+0x20/0x1f0
[ 2356.248817][ T6006]  ? get_pid_task+0x20/0x1f0
[ 2356.248857][ T6006]  ? __fget_files+0x2a/0x420
[ 2356.248876][ T6006]  ? __fget_files+0x3a0/0x420
[ 2356.248902][ T6006]  __sys_sendmsg+0x183/0x260
[ 2356.248924][ T6006]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2356.248955][ T6006]  ? __pfx_ksys_write+0x10/0x10
[ 2356.248984][ T6006]  __do_fast_syscall_32+0x1d2/0x540
[ 2356.249012][ T6006]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2356.249028][ T6006]  ? do_fast_syscall_32+0x33/0x70
[ 2356.249043][ T6006]  ? asm_int80_emulation+0x1a/0x20
[ 2356.249058][ T6006]  ? do_int80_emulation+0x20e/0x400
[ 2356.249078][ T6006]  do_fast_syscall_32+0x33/0x70
[ 2356.249097][ T6006]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2356.249116][ T6006] RIP: 0023:0xf7f53539
[ 2356.249132][ T6006] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2356.249146][ T6006] RSP: 002b:00000000f53f550c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 2356.249165][ T6006] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800008c0
[ 2356.249177][ T6006] RDX: 0000000000004004 RSI: 0000000000000000 RDI: 0000000000000000
[ 2356.249187][ T6006] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2356.249197][ T6006] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2356.249208][ T6006] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2356.249229][ T6006]  </TASK>
[ 2356.586606][T16236] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2356.625420][ T6012] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8649'.
[ 2356.647116][ T6012] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2356.704234][ T4996] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 2356.734960][T16236] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2356.757795][ T6013] netlink: 28 bytes leftover after parsing attributes in process `syz.4.8650'.
[ 2356.767981][ T6013] netlink: 28 bytes leftover after parsing attributes in process `syz.4.8650'.
[ 2356.813339][ T5994] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2356.821044][ T5994] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2356.828924][ T5994] bridge_slave_0: entered allmulticast mode
[ 2356.837130][ T5994] bridge_slave_0: entered promiscuous mode
[ 2356.849022][ T5994] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2356.857493][ T5994] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2356.865549][ T5994] bridge_slave_1: entered allmulticast mode
[ 2356.873562][ T5994] bridge_slave_1: entered promiscuous mode
[ 2357.027262][ T5994] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2357.058852][ T5994] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2357.099860][T16236] bridge_slave_1: left allmulticast mode
[ 2357.106908][T16236] bridge_slave_1: left promiscuous mode
[ 2357.115278][T16236] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2357.125856][T16236] bridge_slave_0: left allmulticast mode
[ 2357.131662][T16236] bridge_slave_0: left promiscuous mode
[ 2357.139115][T16236] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2357.213429][T18175] Bluetooth: hci2: command tx timeout
[ 2357.710206][T16236] bond27 (unregistering): (slave geneve3): Releasing backup interface
[ 2357.749301][T16236] bond1 (unregistering): (slave geneve2): Releasing active interface
[ 2357.863814][T16236] team0: Port device geneve0 removed
[ 2357.921074][ T6046] netlink: 208240 bytes leftover after parsing attributes in process `syz.4.8655'.
[ 2358.018024][T16236] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2358.029713][T16236] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2358.041320][T16236] bond0 (unregistering): Released all slaves
[ 2358.179007][ T6052] netlink: 56 bytes leftover after parsing attributes in process `syz.4.8656'.
[ 2358.482111][T16236] bond1 (unregistering): Released all slaves
[ 2358.739607][T16236] bond2 (unregistering): Released all slaves
[ 2358.940608][T16236] bond3 (unregistering): Released all slaves
[ 2359.000668][ T4996] dvb_usb_rtl28xxu 1-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[ 2359.038524][ T4996] usb 1-1: USB disconnect, device number 30
[ 2359.203949][T16236] bond4 (unregistering): Released all slaves
[ 2359.291724][T18175] Bluetooth: hci2: command tx timeout
[ 2359.393564][T16236] bond5 (unregistering): Released all slaves
[ 2359.415725][ T4996] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[ 2359.582655][T16236] bond6 (unregistering): Released all slaves
[ 2359.589047][ T4996] usb 1-1: Using ep0 maxpacket: 32
[ 2359.598817][ T4996] usb 1-1: config 0 has an invalid interface number: 37 but max is 1
[ 2359.622212][ T4996] usb 1-1: config 0 has no interface number 1
[ 2359.666927][ T4996] usb 1-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=20.a3
[ 2359.676092][ T4996] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2359.684083][ T4996] usb 1-1: Product: syz
[ 2359.688492][ T4996] usb 1-1: Manufacturer: syz
[ 2359.693122][ T4996] usb 1-1: SerialNumber: syz
[ 2359.713208][ T4996] usb 1-1: config 0 descriptor??
[ 2359.828570][T16236] bond7 (unregistering): Released all slaves
[ 2359.948137][ T4996] usb 1-1: USB disconnect, device number 31
[ 2360.030451][T16236] bond8 (unregistering): Released all slaves
[ 2360.211324][T16236] bond9 (unregistering): Released all slaves
[ 2360.381862][T16236] bond10 (unregistering): Released all slaves
[ 2360.588952][T16236] bond11 (unregistering): Released all slaves
[ 2360.768631][ T6062] FAULT_INJECTION: forcing a failure.
[ 2360.768631][ T6062] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2360.792881][ T6062] CPU: 1 UID: 0 PID: 6062 Comm: syz.0.8660 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2360.792913][ T6062] Tainted: [L]=SOFTLOCKUP
[ 2360.792921][ T6062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2360.792932][ T6062] Call Trace:
[ 2360.792943][ T6062]  <TASK>
[ 2360.792953][ T6062]  dump_stack_lvl+0xe8/0x150
[ 2360.792981][ T6062]  should_fail_ex+0x412/0x560
[ 2360.793008][ T6062]  _copy_from_user+0x2d/0xb0
[ 2360.793033][ T6062]  get_compat_msghdr+0xb3/0x4c0
[ 2360.793057][ T6062]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2360.793079][ T6062]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2360.793101][ T6062]  ? kstrtoull+0x12f/0x1d0
[ 2360.793127][ T6062]  ___sys_sendmsg+0x201/0x360
[ 2360.793147][ T6062]  ? __lock_acquire+0x6b5/0x2cf0
[ 2360.793174][ T6062]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2360.793198][ T6062]  ? get_pid_task+0x20/0x1f0
[ 2360.793217][ T6062]  ? get_pid_task+0x20/0x1f0
[ 2360.793233][ T6062]  ? get_pid_task+0x20/0x1f0
[ 2360.793274][ T6062]  ? __fget_files+0x2a/0x420
[ 2360.793293][ T6062]  ? __fget_files+0x3a0/0x420
[ 2360.793317][ T6062]  __sys_sendmsg+0x183/0x260
[ 2360.793345][ T6062]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2360.793373][ T6062]  ? __pfx_ksys_write+0x10/0x10
[ 2360.793402][ T6062]  __do_fast_syscall_32+0x1d2/0x540
[ 2360.793421][ T6062]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2360.793437][ T6062]  ? do_fast_syscall_32+0x33/0x70
[ 2360.793454][ T6062]  ? asm_int80_emulation+0x1a/0x20
[ 2360.793469][ T6062]  ? do_int80_emulation+0x20e/0x400
[ 2360.793488][ T6062]  do_fast_syscall_32+0x33/0x70
[ 2360.793505][ T6062]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2360.793522][ T6062] RIP: 0023:0xf73ed539
[ 2360.793539][ T6062] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2360.793553][ T6062] RSP: 002b:00000000f541650c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 2360.793571][ T6062] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[ 2360.793584][ T6062] RDX: 0000000000028040 RSI: 0000000000000000 RDI: 0000000000000000
[ 2360.793594][ T6062] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2360.793604][ T6062] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2360.793615][ T6062] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2360.793640][ T6062]  </TASK>
[ 2361.121683][T16236] bond12 (unregistering): Released all slaves
[ 2361.307651][T16236] bond13 (unregistering): Released all slaves
[ 2361.371291][T18175] Bluetooth: hci2: command tx timeout
[ 2361.487773][T16236] bond14 (unregistering): Released all slaves
[ 2361.658530][T16236] bond15 (unregistering): Released all slaves
[ 2361.840792][T16236] bond16 (unregistering): Released all slaves
[ 2362.043096][T16236] bond17 (unregistering): Released all slaves
[ 2362.222949][T16236] bond18 (unregistering): Released all slaves
[ 2362.401496][T16236] bond19 (unregistering): Released all slaves
[ 2362.571593][T16236] bond20 (unregistering): Released all slaves
[ 2362.763258][T16236] bond21 (unregistering): Released all slaves
[ 2362.961816][T16236] bond22 (unregistering): Released all slaves
[ 2363.152316][T16236] bond23 (unregistering): Released all slaves
[ 2363.342264][T16236] bond24 (unregistering): Released all slaves
[ 2363.456576][T18175] Bluetooth: hci2: command tx timeout
[ 2363.540824][T16236] bond25 (unregistering): Released all slaves
[ 2363.732752][T16236] bond26 (unregistering): (slave veth0_to_bond): Releasing active interface
[ 2363.743055][T16236] bond26 (unregistering): Released all slaves
[ 2363.941044][T16236] bond27 (unregistering): Released all slaves
[ 2364.108257][ T5994] team0: Port device team_slave_0 added
[ 2364.128562][ T5994] team0: Port device team_slave_1 added
[ 2364.241598][ T5994] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2364.253892][ T5994] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2364.307307][ T5994] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2364.320560][ T5994] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2364.327613][ T5994] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2364.363316][ T6077] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8662'.
[ 2364.376636][ T5994] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2364.399682][ T6072] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2364.447775][ T5994] hsr_slave_0: entered promiscuous mode
[ 2364.499390][ T6085] netlink: 20 bytes leftover after parsing attributes in process `syz.4.8665'.
[ 2364.510016][ T6084] netlink: 16 bytes leftover after parsing attributes in process `syz.3.8663'.
[ 2364.539649][ T6084] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8663'.
[ 2364.699845][ T5994] hsr_slave_1: entered promiscuous mode
[ 2364.757451][ T5994] debugfs: 'hsr0' already exists in 'hsr'
[ 2364.798063][ T5994] Cannot create hsr debugfs directory
[ 2365.035381][T27963] usb 4-1: new full-speed USB device number 23 using dummy_hcd
[ 2365.283804][T27963] usb 4-1: config 0 has no interfaces?
[ 2365.296693][T27963] usb 4-1: New USB device found, idVendor=12d1, idProduct=42f7, bcdDevice=aa.47
[ 2365.306488][T27963] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2365.342432][T27963] usb 4-1: config 0 descriptor??
[ 2365.540124][ T6107] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8667'.
[ 2366.128791][T16236] tipc: Disabling bearer <eth:syzkaller0>
[ 2366.137329][T16236] tipc: Left network mode
[ 2366.216672][ T6118] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2366.339888][ T6118] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2366.911588][ T6131] netlink: 72 bytes leftover after parsing attributes in process `syz.2.8670'.
[ 2367.090212][T16236] hsr_slave_0: left promiscuous mode
[ 2367.096501][T16236] hsr_slave_1: left promiscuous mode
[ 2367.102825][T16236] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2367.120891][T16236] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2367.132596][T16236] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2367.140822][T16236] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2367.165344][T16236] veth1_macvtap: left promiscuous mode
[ 2367.177720][T16236] veth0_macvtap: left promiscuous mode
[ 2367.188381][T16236] veth1_vlan: left promiscuous mode
[ 2367.193977][T16236] veth0_vlan: left promiscuous mode
[ 2367.393287][  T797] usb 4-1: USB disconnect, device number 23
[ 2368.242478][ T6164] netlink: 56 bytes leftover after parsing attributes in process `syz.0.8674'.
[ 2368.306502][ T6166] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8675'.
[ 2368.479623][ T6168] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2369.613286][T16236] team0 (unregistering): Port device team_slave_1 removed
[ 2369.692844][T16236] team0 (unregistering): Port device team_slave_0 removed
[ 2370.374914][ T5994] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 2370.401073][ T5994] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 2370.473684][ T6194] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2370.484378][ T6194] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2370.548627][ T6194] netlink: 44 bytes leftover after parsing attributes in process `syz.4.8676'.
[ 2370.718315][ T5994] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 2370.822944][ T5994] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 2370.877243][ T6201] netlink: 'syz.0.8677': attribute type 1 has an invalid length.
[ 2370.962463][ T6201] 8021q: adding VLAN 0 to HW filter on device bond21
[ 2371.048898][T16236] IPVS: stop unused estimator thread 0...
[ 2372.555304][ T5994] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2372.656047][ T5994] 8021q: adding VLAN 0 to HW filter on device team0
[ 2372.787156][ T6230] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 2372.842165][T16246] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2372.849419][T16246] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2372.869272][T16246] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2372.876424][T16246] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2372.968704][ T5994] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2372.995425][T27963] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[ 2373.510202][T27963] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 2373.535581][T27963] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 2373.587322][T27963] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2373.757893][ T5994] veth0_vlan: entered promiscuous mode
[ 2373.773303][ T5994] veth1_vlan: entered promiscuous mode
[ 2373.955405][T27963] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2373.993888][ T6229] raw-gadget.3 gadget.0: fail, usb_ep_enable returned -22
[ 2374.046307][T27963] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[ 2374.064060][ T5994] veth0_macvtap: entered promiscuous mode
[ 2374.114348][ T5994] veth1_macvtap: entered promiscuous mode
[ 2374.268764][  T797] usb 1-1: USB disconnect, device number 32
[ 2374.343840][ T5994] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2374.400367][ T5994] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2374.438216][T27378] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2374.552724][ T4290] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2374.594343][ T4290] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2374.791111][ T4290] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2375.220688][T27378] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2375.280694][T27378] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2375.325787][T27378] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2375.496019][T27378] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2375.569086][ T3993] IPVS: starting estimator thread 0...
[ 2375.695055][ T6254] IPVS: using max 56 ests per chain, 134400 per kthread
[ 2375.948277][ T6263] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8688'.
[ 2375.978383][ T6263] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2376.440451][ T6276] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8689'.
[ 2376.481009][ T6276] : entered promiscuous mode
[ 2377.614828][ T6297] FAULT_INJECTION: forcing a failure.
[ 2377.614828][ T6297] name failslab, interval 1, probability 0, space 0, times 0
[ 2377.636524][ T6297] CPU: 0 UID: 0 PID: 6297 Comm: syz.3.8695 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2377.636555][ T6297] Tainted: [L]=SOFTLOCKUP
[ 2377.636562][ T6297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2377.636573][ T6297] Call Trace:
[ 2377.636581][ T6297]  <TASK>
[ 2377.636589][ T6297]  dump_stack_lvl+0xe8/0x150
[ 2377.636617][ T6297]  should_fail_ex+0x412/0x560
[ 2377.636642][ T6297]  should_failslab+0xa8/0x100
[ 2377.636663][ T6297]  kmem_cache_alloc_noprof+0x87/0x6e0
[ 2377.636687][ T6297]  ? getname_flags+0xb7/0x540
[ 2377.636709][ T6297]  getname_flags+0xb7/0x540
[ 2377.636731][ T6297]  __ia32_sys_rename+0x5c/0x90
[ 2377.636750][ T6297]  __do_fast_syscall_32+0x1d2/0x540
[ 2377.636769][ T6297]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2377.636785][ T6297]  ? do_fast_syscall_32+0x33/0x70
[ 2377.636803][ T6297]  ? asm_int80_emulation+0x1a/0x20
[ 2377.636818][ T6297]  ? do_int80_emulation+0x20e/0x400
[ 2377.636847][ T6297]  do_fast_syscall_32+0x33/0x70
[ 2377.636866][ T6297]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2377.636886][ T6297] RIP: 0023:0xf7ff5539
[ 2377.636902][ T6297] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2377.636917][ T6297] RSP: 002b:00000000f547450c EFLAGS: 00000206 ORIG_RAX: 0000000000000026
[ 2377.636937][ T6297] RAX: ffffffffffffffda RBX: 0000000080000100 RCX: 0000000080000140
[ 2377.636950][ T6297] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2377.636960][ T6297] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2377.636969][ T6297] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2377.636978][ T6297] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2377.637003][ T6297]  </TASK>
[ 2378.048889][ T6308] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8702'.
[ 2378.069608][ T6308] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2378.086368][ T6310] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8703'.
[ 2378.401004][ T6321] ip6erspan0: entered allmulticast mode
[ 2378.963880][ T6331] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8708'.
[ 2378.975913][T27963] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[ 2379.165111][T27963] usb 4-1: Using ep0 maxpacket: 8
[ 2379.170860][T27963] usb 4-1: too many configurations: 59, using maximum allowed: 8
[ 2379.228136][T27963] usb 4-1: unable to read config index 0 descriptor/start: -61
[ 2379.237545][T27963] usb 4-1: can't read configurations, error -61
[ 2379.414678][T27963] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[ 2379.509016][ T6346] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8713'.
[ 2379.528122][ T6346] openvswitch: netlink: Invalid VLAN frame
[ 2379.546415][ T6344] mac80211_hwsim hwsim61 syzkaller0: entered promiscuous mode
[ 2379.624607][T27963] usb 4-1: Using ep0 maxpacket: 8
[ 2379.630705][T27963] usb 4-1: too many configurations: 59, using maximum allowed: 8
[ 2379.641889][T27963] usb 4-1: unable to read config index 0 descriptor/start: -61
[ 2379.670816][T27963] usb 4-1: can't read configurations, error -61
[ 2379.690842][T27963] usb usb4-port1: attempt power cycle
[ 2379.725521][ T6344] mac80211_hwsim hwsim61 syzkaller0: entered allmulticast mode
[ 2379.753004][ T6350] input: syz0 as /devices/virtual/input/input227
[ 2379.816454][ T6344] FAULT_INJECTION: forcing a failure.
[ 2379.816454][ T6344] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2379.822951][ T6354] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8715'.
[ 2379.830933][ T6344] CPU: 0 UID: 0 PID: 6344 Comm: syz.4.8714 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2379.830962][ T6344] Tainted: [L]=SOFTLOCKUP
[ 2379.830968][ T6344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2379.830979][ T6344] Call Trace:
[ 2379.830987][ T6344]  <TASK>
[ 2379.830995][ T6344]  dump_stack_lvl+0xe8/0x150
[ 2379.831026][ T6344]  should_fail_ex+0x412/0x560
[ 2379.831054][ T6344]  _copy_from_user+0x2d/0xb0
[ 2379.831078][ T6344]  get_compat_msghdr+0xb3/0x4c0
[ 2379.831103][ T6344]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2379.831125][ T6344]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2379.831146][ T6344]  ? kstrtoull+0x12f/0x1d0
[ 2379.831171][ T6344]  ___sys_sendmsg+0x201/0x360
[ 2379.831194][ T6344]  ? __lock_acquire+0x6b5/0x2cf0
[ 2379.831221][ T6344]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2379.831244][ T6344]  ? get_pid_task+0x20/0x1f0
[ 2379.831263][ T6344]  ? get_pid_task+0x20/0x1f0
[ 2379.831278][ T6344]  ? get_pid_task+0x20/0x1f0
[ 2379.831318][ T6344]  ? __fget_files+0x2a/0x420
[ 2379.831338][ T6344]  ? __fget_files+0x3a0/0x420
[ 2379.831364][ T6344]  __sys_sendmsg+0x183/0x260
[ 2379.831387][ T6344]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2379.831425][ T6344]  ? __pfx_ksys_write+0x10/0x10
[ 2379.831454][ T6344]  __do_fast_syscall_32+0x1d2/0x540
[ 2379.831473][ T6344]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2379.831489][ T6344]  ? do_fast_syscall_32+0x33/0x70
[ 2379.831505][ T6344]  ? asm_int80_emulation+0x1a/0x20
[ 2379.831523][ T6344]  ? do_int80_emulation+0x20e/0x400
[ 2379.831543][ T6344]  do_fast_syscall_32+0x33/0x70
[ 2379.831560][ T6344]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2379.831579][ T6344] RIP: 0023:0xf7f95539
[ 2379.831594][ T6344] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2379.831609][ T6344] RSP: 002b:00000000f545650c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 2379.831628][ T6344] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000280
[ 2379.831640][ T6344] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000000
[ 2379.831650][ T6344] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2379.831660][ T6344] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2379.831670][ T6344] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2379.831696][ T6344]  </TASK>
[ 2380.140032][T27963] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[ 2380.178796][T27963] usb 4-1: Using ep0 maxpacket: 8
[ 2380.187469][T27963] usb 4-1: too many configurations: 59, using maximum allowed: 8
[ 2380.283599][T27963] usb 4-1: unable to read config index 0 descriptor/start: -61
[ 2380.292469][T27963] usb 4-1: can't read configurations, error -61
[ 2380.435034][T27963] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[ 2380.456631][T27963] usb 4-1: Using ep0 maxpacket: 8
[ 2380.471079][ T6362] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8720'.
[ 2380.480473][T27963] usb 4-1: too many configurations: 59, using maximum allowed: 8
[ 2380.509172][ T6364] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8718'.
[ 2380.525888][T27963] usb 4-1: unable to read config index 0 descriptor/start: -61
[ 2380.548991][T27963] usb 4-1: can't read configurations, error -61
[ 2380.569530][T27963] usb usb4-port1: unable to enumerate USB device
[ 2380.620195][ T6370] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2380.951851][ T6382] netlink: 56 bytes leftover after parsing attributes in process `syz.1.8723'.
[ 2381.454673][ T6394] netlink: 'syz.4.8727': attribute type 1 has an invalid length.
[ 2381.502184][ T6394] 8021q: adding VLAN 0 to HW filter on device bond21
[ 2382.594264][ T6412] netlink: 24 bytes leftover after parsing attributes in process `syz.0.8732'.
[ 2382.746683][ T6423] netlink: 56 bytes leftover after parsing attributes in process `syz.2.8734'.
[ 2383.350080][ T6433] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8739'.
[ 2383.362354][ T6433] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2383.986678][T22485] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[ 2384.174958][T22485] usb 2-1: config index 0 descriptor too short (expected 65535, got 146)
[ 2384.195851][T22485] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2384.241617][T22485] usb 2-1: config 0 has no interfaces?
[ 2384.277136][T22485] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 2384.288392][T22485] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 2384.361466][ T6446] usb usb8: usbfs: process 6446 (syz.3.8744) did not claim interface 0 before use
[ 2384.470963][ T6446] syz.3.8744 (6446) used greatest stack depth: 18240 bytes left
[ 2384.471772][T22485] usb 2-1: SerialNumber: syz
[ 2384.500476][T22485] usb 2-1: config 0 descriptor??
[ 2384.580268][ T6450] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2384.696278][ T6455] netlink: 24 bytes leftover after parsing attributes in process `syz.4.8747'.
[ 2385.094542][ T6463] netlink: 56 bytes leftover after parsing attributes in process `syz.0.8748'.
[ 2385.176058][ T6466] netlink: 212368 bytes leftover after parsing attributes in process `syz.4.8749'.
[ 2385.359310][ T6471] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2385.368540][ T6471] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2385.775668][ T6480] netlink: 56 bytes leftover after parsing attributes in process `syz.2.8752'.
[ 2386.229819][ T6484] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8754'.
[ 2386.281738][ T6484] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2386.669562][T23222] usb 2-1: USB disconnect, device number 13
[ 2386.846915][ T6486] FAULT_INJECTION: forcing a failure.
[ 2386.846915][ T6486] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2386.894740][ T6486] CPU: 0 UID: 0 PID: 6486 Comm: syz.0.8755 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2386.894769][ T6486] Tainted: [L]=SOFTLOCKUP
[ 2386.894777][ T6486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2386.894786][ T6486] Call Trace:
[ 2386.894794][ T6486]  <TASK>
[ 2386.894801][ T6486]  dump_stack_lvl+0xe8/0x150
[ 2386.894829][ T6486]  should_fail_ex+0x412/0x560
[ 2386.894854][ T6486]  _copy_from_user+0x2d/0xb0
[ 2386.894887][ T6486]  get_compat_msghdr+0xb3/0x4c0
[ 2386.894910][ T6486]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2386.894931][ T6486]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2386.894952][ T6486]  ? kstrtoull+0x12f/0x1d0
[ 2386.894977][ T6486]  ___sys_sendmsg+0x201/0x360
[ 2386.894997][ T6486]  ? __lock_acquire+0x6b5/0x2cf0
[ 2386.895023][ T6486]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2386.895046][ T6486]  ? get_pid_task+0x20/0x1f0
[ 2386.895064][ T6486]  ? get_pid_task+0x20/0x1f0
[ 2386.895079][ T6486]  ? get_pid_task+0x20/0x1f0
[ 2386.895119][ T6486]  ? __fget_files+0x2a/0x420
[ 2386.895137][ T6486]  ? __fget_files+0x3a0/0x420
[ 2386.895163][ T6486]  __sys_sendmsg+0x183/0x260
[ 2386.895186][ T6486]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2386.895215][ T6486]  ? __pfx_ksys_write+0x10/0x10
[ 2386.895246][ T6486]  __do_fast_syscall_32+0x1d2/0x540
[ 2386.895265][ T6486]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2386.895281][ T6486]  ? do_fast_syscall_32+0x33/0x70
[ 2386.895297][ T6486]  ? asm_int80_emulation+0x1a/0x20
[ 2386.895313][ T6486]  ? do_int80_emulation+0x20e/0x400
[ 2386.895333][ T6486]  do_fast_syscall_32+0x33/0x70
[ 2386.895351][ T6486]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2386.895370][ T6486] RIP: 0023:0xf73ed539
[ 2386.895386][ T6486] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2386.895401][ T6486] RSP: 002b:00000000f541650c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 2386.895420][ T6486] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[ 2386.895432][ T6486] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2386.895442][ T6486] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2386.895453][ T6486] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2386.895464][ T6486] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2386.895490][ T6486]  </TASK>
[ 2387.379474][ T6494] netlink: 24 bytes leftover after parsing attributes in process `syz.0.8759'.
[ 2387.491462][ T6499] FAULT_INJECTION: forcing a failure.
[ 2387.491462][ T6499] name failslab, interval 1, probability 0, space 0, times 0
[ 2387.567430][ T6499] CPU: 1 UID: 0 PID: 6499 Comm: syz.1.8761 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2387.567460][ T6499] Tainted: [L]=SOFTLOCKUP
[ 2387.567468][ T6499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2387.567478][ T6499] Call Trace:
[ 2387.567486][ T6499]  <TASK>
[ 2387.567495][ T6499]  dump_stack_lvl+0xe8/0x150
[ 2387.567525][ T6499]  should_fail_ex+0x412/0x560
[ 2387.567561][ T6499]  should_failslab+0xa8/0x100
[ 2387.567585][ T6499]  kmem_cache_alloc_node_noprof+0x8b/0x6f0
[ 2387.567610][ T6499]  ? __pfx_tcp_current_mss+0x10/0x10
[ 2387.567708][ T6499]  ? __alloc_skb+0x1d7/0x390
[ 2387.567735][ T6499]  __alloc_skb+0x1d7/0x390
[ 2387.567760][ T6499]  tcp_stream_alloc_skb+0x3d/0x350
[ 2387.567789][ T6499]  tcp_sendmsg_locked+0x1af1/0x55b0
[ 2387.567858][ T6499]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[ 2387.567893][ T6499]  ? __local_bh_enable_ip+0xd0/0x130
[ 2387.567916][ T6499]  tcp_sendmsg+0x2f/0x50
[ 2387.567939][ T6499]  __sys_sendto+0x627/0x7a0
[ 2387.567963][ T6499]  ? __pfx___sys_sendto+0x10/0x10
[ 2387.568007][ T6499]  ? fput+0xa0/0xd0
[ 2387.568028][ T6499]  ? ksys_write+0x242/0x270
[ 2387.568054][ T6499]  ? __pfx_ksys_write+0x10/0x10
[ 2387.568080][ T6499]  __ia32_sys_sendto+0xdd/0x100
[ 2387.568105][ T6499]  __do_fast_syscall_32+0x1d2/0x540
[ 2387.568127][ T6499]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2387.568144][ T6499]  ? do_fast_syscall_32+0x33/0x70
[ 2387.568162][ T6499]  ? asm_int80_emulation+0x1a/0x20
[ 2387.568178][ T6499]  ? do_int80_emulation+0x20e/0x400
[ 2387.568202][ T6499]  do_fast_syscall_32+0x33/0x70
[ 2387.568220][ T6499]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2387.568240][ T6499] RIP: 0023:0xf742d539
[ 2387.568257][ T6499] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2387.568272][ T6499] RSP: 002b:00000000f545650c EFLAGS: 00000206 ORIG_RAX: 0000000000000171
[ 2387.568290][ T6499] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[ 2387.568302][ T6499] RDX: 00000000ffffff94 RSI: 0000000000000000 RDI: 0000000000000000
[ 2387.568313][ T6499] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2387.568324][ T6499] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2387.568336][ T6499] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2387.568364][ T6499]  </TASK>
[ 2389.009106][ T6527] netlink: 7 bytes leftover after parsing attributes in process `syz.1.8766'.
[ 2389.027922][ T6527] netlink: 7 bytes leftover after parsing attributes in process `syz.1.8766'.
[ 2389.062663][ T6537] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8770'.
[ 2389.090968][ T6537] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2389.175954][T22485] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[ 2389.354646][T22485] usb 4-1: Using ep0 maxpacket: 8
[ 2389.393392][T22485] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 2389.421165][T22485] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[ 2389.517407][T22485] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40
[ 2389.528610][T22485] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2389.555434][T22485] usb 4-1: Product: syz
[ 2389.560000][T22485] usb 4-1: Manufacturer: syz
[ 2389.736314][T22485] usb 4-1: SerialNumber: syz
[ 2389.875998][ T6544] netlink: 'syz.1.8771': attribute type 1 has an invalid length.
[ 2389.896277][T22485] cdc_ether 4-1:1.0: skipping garbage
[ 2389.904824][T22485] usb 4-1: bad CDC descriptors
[ 2389.923464][T22485] usbtest 4-1:1.0: couldn't get endpoints, -22
[ 2389.933156][T22485] usbtest 4-1:1.0: probe with driver usbtest failed with error -22
[ 2390.139569][T22485] usb 4-1: USB disconnect, device number 28
[ 2390.212748][ T6552] netlink: 'syz.4.8772': attribute type 1 has an invalid length.
[ 2390.308624][ T6554] netlink: 56 bytes leftover after parsing attributes in process `syz.2.8773'.
[ 2390.560715][ T6552] 8021q: adding VLAN 0 to HW filter on device bond22
[ 2391.019182][T22485] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[ 2391.190967][T22485] usb 4-1: Using ep0 maxpacket: 32
[ 2391.209089][T22485] usb 4-1: config 0 interface 0 altsetting 12 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2391.244647][T22485] usb 4-1: config 0 interface 0 has no altsetting 0
[ 2391.251318][T22485] usb 4-1: New USB device found, idVendor=0458, idProduct=501b, bcdDevice= 0.00
[ 2391.281537][T22485] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2391.331121][T22485] usb 4-1: config 0 descriptor??
[ 2391.352132][ T6568] FAULT_INJECTION: forcing a failure.
[ 2391.352132][ T6568] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2391.412305][ T6568] CPU: 1 UID: 0 PID: 6568 Comm: syz.4.8776 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2391.412336][ T6568] Tainted: [L]=SOFTLOCKUP
[ 2391.412342][ T6568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2391.412352][ T6568] Call Trace:
[ 2391.412359][ T6568]  <TASK>
[ 2391.412367][ T6568]  dump_stack_lvl+0xe8/0x150
[ 2391.412394][ T6568]  should_fail_ex+0x412/0x560
[ 2391.412419][ T6568]  _copy_from_user+0x2d/0xb0
[ 2391.412444][ T6568]  get_compat_msghdr+0xb3/0x4c0
[ 2391.412472][ T6568]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2391.412494][ T6568]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2391.412514][ T6568]  ? kstrtoull+0x12f/0x1d0
[ 2391.412539][ T6568]  ___sys_sendmsg+0x201/0x360
[ 2391.412559][ T6568]  ? __lock_acquire+0x6b5/0x2cf0
[ 2391.412584][ T6568]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2391.412607][ T6568]  ? get_pid_task+0x20/0x1f0
[ 2391.412626][ T6568]  ? get_pid_task+0x20/0x1f0
[ 2391.412642][ T6568]  ? get_pid_task+0x20/0x1f0
[ 2391.412682][ T6568]  ? __fget_files+0x2a/0x420
[ 2391.412700][ T6568]  ? __fget_files+0x3a0/0x420
[ 2391.412726][ T6568]  __sys_sendmsg+0x183/0x260
[ 2391.412748][ T6568]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2391.412780][ T6568]  ? __pfx_ksys_write+0x10/0x10
[ 2391.412810][ T6568]  __do_fast_syscall_32+0x1d2/0x540
[ 2391.412830][ T6568]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2391.412847][ T6568]  ? do_fast_syscall_32+0x33/0x70
[ 2391.412861][ T6568]  ? asm_int80_emulation+0x1a/0x20
[ 2391.412877][ T6568]  ? do_int80_emulation+0x20e/0x400
[ 2391.412897][ T6568]  do_fast_syscall_32+0x33/0x70
[ 2391.412915][ T6568]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2391.412935][ T6568] RIP: 0023:0xf7f95539
[ 2391.412950][ T6568] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2391.412965][ T6568] RSP: 002b:00000000f545650c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 2391.412985][ T6568] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000080
[ 2391.412997][ T6568] RDX: 0000000000044000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2391.413008][ T6568] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2391.413019][ T6568] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2391.413030][ T6568] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2391.413056][ T6568]  </TASK>
[ 2392.001879][ T6581] FAULT_INJECTION: forcing a failure.
[ 2392.001879][ T6581] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2392.015580][ T6581] CPU: 1 UID: 0 PID: 6581 Comm: syz.1.8781 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2392.015609][ T6581] Tainted: [L]=SOFTLOCKUP
[ 2392.015616][ T6581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2392.015625][ T6581] Call Trace:
[ 2392.015633][ T6581]  <TASK>
[ 2392.015641][ T6581]  dump_stack_lvl+0xe8/0x150
[ 2392.015669][ T6581]  should_fail_ex+0x412/0x560
[ 2392.015694][ T6581]  _copy_from_user+0x2d/0xb0
[ 2392.015718][ T6581]  tls_setsockopt+0x678/0x15c0
[ 2392.015863][ T6581]  ? aa_sk_perm+0x15a/0x960
[ 2392.015891][ T6581]  ? __pfx_tls_setsockopt+0x10/0x10
[ 2392.015919][ T6581]  ? __fget_files+0x2a/0x420
[ 2392.015935][ T6581]  ? aa_sock_opt_perm+0xff/0x1a0
[ 2392.015957][ T6581]  ? sock_common_setsockopt+0x36/0xc0
[ 2392.015976][ T6581]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 2392.015996][ T6581]  do_sock_setsockopt+0x17c/0x1b0
[ 2392.016021][ T6581]  __ia32_sys_setsockopt+0x13d/0x1b0
[ 2392.016047][ T6581]  __do_fast_syscall_32+0x1d2/0x540
[ 2392.016067][ T6581]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2392.016082][ T6581]  ? do_fast_syscall_32+0x33/0x70
[ 2392.016099][ T6581]  ? asm_int80_emulation+0x1a/0x20
[ 2392.016116][ T6581]  ? do_int80_emulation+0x20e/0x400
[ 2392.016137][ T6581]  do_fast_syscall_32+0x33/0x70
[ 2392.016156][ T6581]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2392.016174][ T6581] RIP: 0023:0xf742d539
[ 2392.016190][ T6581] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2392.016204][ T6581] RSP: 002b:00000000f545650c EFLAGS: 00000206 ORIG_RAX: 000000000000016e
[ 2392.016224][ T6581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000011a
[ 2392.016235][ T6581] RDX: 0000000000000002 RSI: 00000000800000c0 RDI: 0000000000000038
[ 2392.016247][ T6581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2392.016256][ T6581] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2392.016267][ T6581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2392.016294][ T6581]  </TASK>
[ 2392.388413][ T6588] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8782'.
[ 2392.449042][ T6588] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2393.258934][ T6597] macvtap1: entered allmulticast mode
[ 2393.270154][ T6597] veth0_macvtap: entered allmulticast mode
[ 2393.331501][ T6601] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8788'.
[ 2393.790129][T22485] usbhid 4-1:0.0: can't add hid device: -71
[ 2393.797119][T22485] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[ 2393.835309][T22485] usb 4-1: USB disconnect, device number 29
[ 2394.901238][ T6638] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8795'.
[ 2394.927034][ T6637] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2395.712707][ T6655] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8801'.
[ 2395.736163][ T6656] netlink: 'syz.2.8799': attribute type 1 has an invalid length.
[ 2395.836560][ T6656] 8021q: adding VLAN 0 to HW filter on device bond28
[ 2395.857420][ T6660] FAULT_INJECTION: forcing a failure.
[ 2395.857420][ T6660] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2396.037673][ T6660] CPU: 0 UID: 0 PID: 6660 Comm: syz.0.8801 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2396.037705][ T6660] Tainted: [L]=SOFTLOCKUP
[ 2396.037712][ T6660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2396.037723][ T6660] Call Trace:
[ 2396.037731][ T6660]  <TASK>
[ 2396.037747][ T6660]  dump_stack_lvl+0xe8/0x150
[ 2396.037774][ T6660]  should_fail_ex+0x412/0x560
[ 2396.037801][ T6660]  _copy_from_user+0x2d/0xb0
[ 2396.037826][ T6660]  get_compat_msghdr+0xb3/0x4c0
[ 2396.037850][ T6660]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2396.037871][ T6660]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2396.037892][ T6660]  ? kstrtoull+0x12f/0x1d0
[ 2396.037919][ T6660]  ___sys_sendmsg+0x201/0x360
[ 2396.037940][ T6660]  ? __lock_acquire+0x6b5/0x2cf0
[ 2396.037966][ T6660]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2396.037988][ T6660]  ? get_pid_task+0x20/0x1f0
[ 2396.038007][ T6660]  ? get_pid_task+0x20/0x1f0
[ 2396.038023][ T6660]  ? get_pid_task+0x20/0x1f0
[ 2396.038065][ T6660]  ? __fget_files+0x2a/0x420
[ 2396.038083][ T6660]  ? __fget_files+0x3a0/0x420
[ 2396.038111][ T6660]  __sys_sendmsg+0x183/0x260
[ 2396.038134][ T6660]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2396.038166][ T6660]  ? __pfx_ksys_write+0x10/0x10
[ 2396.038196][ T6660]  __do_fast_syscall_32+0x1d2/0x540
[ 2396.038217][ T6660]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2396.038234][ T6660]  ? do_fast_syscall_32+0x33/0x70
[ 2396.038252][ T6660]  ? asm_int80_emulation+0x1a/0x20
[ 2396.038268][ T6660]  ? do_int80_emulation+0x20e/0x400
[ 2396.038291][ T6660]  do_fast_syscall_32+0x33/0x70
[ 2396.038310][ T6660]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2396.038330][ T6660] RIP: 0023:0xf73ed539
[ 2396.038346][ T6660] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2396.038361][ T6660] RSP: 002b:00000000f53f550c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 2396.038382][ T6660] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000080
[ 2396.038395][ T6660] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2396.038406][ T6660] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2396.038417][ T6660] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2396.038428][ T6660] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2396.038455][ T6660]  </TASK>
[ 2396.723864][ T6673] FAULT_INJECTION: forcing a failure.
[ 2396.723864][ T6673] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2396.737916][ T6673] CPU: 1 UID: 0 PID: 6673 Comm: syz.0.8804 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2396.737943][ T6673] Tainted: [L]=SOFTLOCKUP
[ 2396.737949][ T6673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2396.737959][ T6673] Call Trace:
[ 2396.737967][ T6673]  <TASK>
[ 2396.737974][ T6673]  dump_stack_lvl+0xe8/0x150
[ 2396.738002][ T6673]  should_fail_ex+0x412/0x560
[ 2396.738027][ T6673]  _copy_from_user+0x2d/0xb0
[ 2396.738052][ T6673]  get_compat_msghdr+0xb3/0x4c0
[ 2396.738077][ T6673]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2396.738098][ T6673]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2396.738120][ T6673]  ? kstrtoull+0x12f/0x1d0
[ 2396.738146][ T6673]  ___sys_sendmsg+0x201/0x360
[ 2396.738168][ T6673]  ? __lock_acquire+0x6b5/0x2cf0
[ 2396.738194][ T6673]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2396.738218][ T6673]  ? get_pid_task+0x20/0x1f0
[ 2396.738237][ T6673]  ? get_pid_task+0x20/0x1f0
[ 2396.738253][ T6673]  ? get_pid_task+0x20/0x1f0
[ 2396.738295][ T6673]  ? __fget_files+0x2a/0x420
[ 2396.738314][ T6673]  ? __fget_files+0x3a0/0x420
[ 2396.738339][ T6673]  __sys_sendmsg+0x183/0x260
[ 2396.738363][ T6673]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2396.738396][ T6673]  ? __pfx_ksys_write+0x10/0x10
[ 2396.738427][ T6673]  __do_fast_syscall_32+0x1d2/0x540
[ 2396.738447][ T6673]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2396.738464][ T6673]  ? do_fast_syscall_32+0x33/0x70
[ 2396.738481][ T6673]  ? asm_int80_emulation+0x1a/0x20
[ 2396.738497][ T6673]  ? do_int80_emulation+0x20e/0x400
[ 2396.738519][ T6673]  do_fast_syscall_32+0x33/0x70
[ 2396.738538][ T6673]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2396.738558][ T6673] RIP: 0023:0xf73ed539
[ 2396.738574][ T6673] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2396.738588][ T6673] RSP: 002b:00000000f541650c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 2396.738607][ T6673] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[ 2396.738620][ T6673] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2396.738631][ T6673] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2396.738650][ T6673] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2396.738661][ T6673] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2396.738687][ T6673]  </TASK>
[ 2397.021224][ T6675] FAULT_INJECTION: forcing a failure.
[ 2397.021224][ T6675] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2397.034341][ T6675] CPU: 1 UID: 0 PID: 6675 Comm: syz.3.8805 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2397.034360][ T6675] Tainted: [L]=SOFTLOCKUP
[ 2397.034364][ T6675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2397.034370][ T6675] Call Trace:
[ 2397.034377][ T6675]  <TASK>
[ 2397.034383][ T6675]  dump_stack_lvl+0xe8/0x150
[ 2397.034403][ T6675]  should_fail_ex+0x412/0x560
[ 2397.034418][ T6675]  _copy_from_user+0x2d/0xb0
[ 2397.034436][ T6675]  __sys_sendto+0x2af/0x7a0
[ 2397.034451][ T6675]  ? __pfx___sys_sendto+0x10/0x10
[ 2397.034474][ T6675]  ? fput+0xa0/0xd0
[ 2397.034487][ T6675]  ? ksys_write+0x242/0x270
[ 2397.034510][ T6675]  ? __pfx_ksys_write+0x10/0x10
[ 2397.034530][ T6675]  __ia32_sys_sendto+0xdd/0x100
[ 2397.034550][ T6675]  __do_fast_syscall_32+0x1d2/0x540
[ 2397.034567][ T6675]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2397.034582][ T6675]  ? do_fast_syscall_32+0x33/0x70
[ 2397.034598][ T6675]  ? asm_int80_emulation+0x1a/0x20
[ 2397.034622][ T6675]  ? do_int80_emulation+0x20e/0x400
[ 2397.034643][ T6675]  do_fast_syscall_32+0x33/0x70
[ 2397.034663][ T6675]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2397.034683][ T6675] RIP: 0023:0xf7ff5539
[ 2397.034700][ T6675] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2397.034715][ T6675] RSP: 002b:00000000f54b650c EFLAGS: 00000206 ORIG_RAX: 0000000000000171
[ 2397.034735][ T6675] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[ 2397.034748][ T6675] RDX: 0000000000000000 RSI: 0000000000008004 RDI: 0000000080000540
[ 2397.034760][ T6675] RBP: 0000000000000014 R08: 0000000000000000 R09: 0000000000000000
[ 2397.034771][ T6675] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2397.034782][ T6675] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2397.034809][ T6675]  </TASK>
[ 2397.389765][ T6678] netlink: 28 bytes leftover after parsing attributes in process `syz.4.8808'.
[ 2397.480421][ T6680] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8807'.
[ 2397.543849][ T6682] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8809'.
[ 2397.585212][ T6681] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2397.586070][ T6684] FAULT_INJECTION: forcing a failure.
[ 2397.586070][ T6684] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2397.625094][ T6684] CPU: 0 UID: 0 PID: 6684 Comm: syz.4.8810 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2397.625123][ T6684] Tainted: [L]=SOFTLOCKUP
[ 2397.625130][ T6684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2397.625139][ T6684] Call Trace:
[ 2397.625145][ T6684]  <TASK>
[ 2397.625152][ T6684]  dump_stack_lvl+0xe8/0x150
[ 2397.625180][ T6684]  should_fail_ex+0x412/0x560
[ 2397.625206][ T6684]  _copy_from_user+0x2d/0xb0
[ 2397.625232][ T6684]  get_compat_msghdr+0xb3/0x4c0
[ 2397.625257][ T6684]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2397.625278][ T6684]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2397.625300][ T6684]  ? kstrtoull+0x12f/0x1d0
[ 2397.625325][ T6684]  ___sys_sendmsg+0x201/0x360
[ 2397.625344][ T6684]  ? __lock_acquire+0x6b5/0x2cf0
[ 2397.625368][ T6684]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2397.625389][ T6684]  ? get_pid_task+0x20/0x1f0
[ 2397.625405][ T6684]  ? get_pid_task+0x20/0x1f0
[ 2397.625421][ T6684]  ? get_pid_task+0x20/0x1f0
[ 2397.625464][ T6684]  ? __fget_files+0x2a/0x420
[ 2397.625483][ T6684]  ? __fget_files+0x3a0/0x420
[ 2397.625510][ T6684]  __sys_sendmsg+0x183/0x260
[ 2397.625534][ T6684]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2397.625564][ T6684]  ? __pfx_ksys_write+0x10/0x10
[ 2397.625595][ T6684]  __do_fast_syscall_32+0x1d2/0x540
[ 2397.625614][ T6684]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2397.625630][ T6684]  ? do_fast_syscall_32+0x33/0x70
[ 2397.625647][ T6684]  ? asm_int80_emulation+0x1a/0x20
[ 2397.625664][ T6684]  ? do_int80_emulation+0x20e/0x400
[ 2397.625686][ T6684]  do_fast_syscall_32+0x33/0x70
[ 2397.625705][ T6684]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2397.625725][ T6684] RIP: 0023:0xf7f95539
[ 2397.625741][ T6684] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2397.625756][ T6684] RSP: 002b:00000000f545650c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 2397.625776][ T6684] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080009b40
[ 2397.625789][ T6684] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2397.625807][ T6684] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2397.625819][ T6684] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2397.625830][ T6684] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2397.625857][ T6684]  </TASK>
[ 2397.884412][ T6686] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8811'.
[ 2398.019360][ T6689] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2398.039211][ T6689] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2398.131369][ T6689] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2398.168689][ T6689] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2398.188616][ T6695] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8812'.
[ 2398.218721][ T6689] syz.4.8813 (6689): /proc/6688/oom_adj is deprecated, please use /proc/6688/oom_score_adj instead.
[ 2398.296623][ T6699] netlink: 'syz.2.8814': attribute type 1 has an invalid length.
[ 2398.827382][ T6699] 8021q: adding VLAN 0 to HW filter on device bond29
[ 2399.998793][ T6730] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8825'.
[ 2400.207980][ T6728] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2400.226500][ T6736] netlink: 72 bytes leftover after parsing attributes in process `syz.0.8826'.
[ 2400.250116][ T6736] netlink: 24 bytes leftover after parsing attributes in process `syz.0.8826'.
[ 2400.656084][ T6742] hma(sha224): entered promiscuous mode
[ 2400.683467][ T6743] warning: `syz.0.8829' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[ 2400.875375][ T6745] netlink: 40 bytes leftover after parsing attributes in process `syz.2.8830'.
[ 2401.787533][ T6773] veth1_to_bond: entered allmulticast mode
[ 2401.793978][ T6773] veth1_to_bond: left allmulticast mode
[ 2402.823987][ T6797] FAULT_INJECTION: forcing a failure.
[ 2402.823987][ T6797] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2402.916131][ T6797] CPU: 1 UID: 0 PID: 6797 Comm: syz.3.8835 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2402.916159][ T6797] Tainted: [L]=SOFTLOCKUP
[ 2402.916167][ T6797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2402.916177][ T6797] Call Trace:
[ 2402.916183][ T6797]  <TASK>
[ 2402.916190][ T6797]  dump_stack_lvl+0xe8/0x150
[ 2402.916218][ T6797]  should_fail_ex+0x412/0x560
[ 2402.916244][ T6797]  _copy_from_user+0x2d/0xb0
[ 2402.916269][ T6797]  __sys_connect+0x156/0x450
[ 2402.916291][ T6797]  ? __pfx___sys_connect+0x10/0x10
[ 2402.916322][ T6797]  ? __pfx_ksys_write+0x10/0x10
[ 2402.916348][ T6797]  __ia32_sys_connect+0x7a/0x90
[ 2402.916366][ T6797]  __do_fast_syscall_32+0x1d2/0x540
[ 2402.916386][ T6797]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2402.916402][ T6797]  ? do_fast_syscall_32+0x33/0x70
[ 2402.916418][ T6797]  ? asm_int80_emulation+0x1a/0x20
[ 2402.916434][ T6797]  ? do_int80_emulation+0x20e/0x400
[ 2402.916456][ T6797]  do_fast_syscall_32+0x33/0x70
[ 2402.916475][ T6797]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2402.916494][ T6797] RIP: 0023:0xf7ff5539
[ 2402.916510][ T6797] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2402.916524][ T6797] RSP: 002b:00000000f54b650c EFLAGS: 00000206 ORIG_RAX: 000000000000016a
[ 2402.916543][ T6797] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000080
[ 2402.916555][ T6797] RDX: 000000000000006e RSI: 0000000000000000 RDI: 0000000000000000
[ 2402.916566][ T6797] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2402.916576][ T6797] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2402.916586][ T6797] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2402.916611][ T6797]  </TASK>
[ 2402.977168][ T6800] netlink: 'syz.4.8836': attribute type 1 has an invalid length.
[ 2403.411743][ T6800] 8021q: adding VLAN 0 to HW filter on device bond23
[ 2403.419522][ T6813] netlink: 'syz.2.8841': attribute type 12 has an invalid length.
[ 2403.962419][ T6823] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8840'.
[ 2404.076211][ T6821] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2404.507845][ T6832] FAULT_INJECTION: forcing a failure.
[ 2404.507845][ T6832] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2404.522710][ T6832] CPU: 0 UID: 0 PID: 6832 Comm: syz.4.8845 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2404.522738][ T6832] Tainted: [L]=SOFTLOCKUP
[ 2404.522745][ T6832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2404.522755][ T6832] Call Trace:
[ 2404.522762][ T6832]  <TASK>
[ 2404.522769][ T6832]  dump_stack_lvl+0xe8/0x150
[ 2404.522797][ T6832]  should_fail_ex+0x412/0x560
[ 2404.522821][ T6832]  _copy_from_user+0x2d/0xb0
[ 2404.522847][ T6832]  get_compat_msghdr+0xb3/0x4c0
[ 2404.522870][ T6832]  ? aa_file_perm+0x12d/0x1630
[ 2404.522893][ T6832]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2404.522932][ T6832]  ___sys_sendmsg+0x201/0x360
[ 2404.522953][ T6832]  ? __lock_acquire+0x6b5/0x2cf0
[ 2404.522978][ T6832]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2404.522999][ T6832]  ? kstrtoull+0x12f/0x1d0
[ 2404.523043][ T6832]  ? __fget_files+0x2a/0x420
[ 2404.523062][ T6832]  ? __fget_files+0x3a0/0x420
[ 2404.523088][ T6832]  __sys_sendmmsg+0x2e7/0x4e0
[ 2404.523115][ T6832]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 2404.523144][ T6832]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 2404.523178][ T6832]  ? ksys_write+0x242/0x270
[ 2404.523203][ T6832]  ? __pfx_ksys_write+0x10/0x10
[ 2404.523227][ T6832]  __ia32_compat_sys_sendmmsg+0xa2/0xc0
[ 2404.523249][ T6832]  __do_fast_syscall_32+0x1d2/0x540
[ 2404.523268][ T6832]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2404.523283][ T6832]  ? do_fast_syscall_32+0x33/0x70
[ 2404.523300][ T6832]  ? asm_int80_emulation+0x1a/0x20
[ 2404.523316][ T6832]  ? do_int80_emulation+0x20e/0x400
[ 2404.523338][ T6832]  do_fast_syscall_32+0x33/0x70
[ 2404.523356][ T6832]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2404.523376][ T6832] RIP: 0023:0xf7f95539
[ 2404.523393][ T6832] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2404.523408][ T6832] RSP: 002b:00000000f545650c EFLAGS: 00000206 ORIG_RAX: 0000000000000159
[ 2404.523429][ T6832] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080003240
[ 2404.523441][ T6832] RDX: 0000000000000001 RSI: 0000000004000800 RDI: 0000000000000000
[ 2404.523453][ T6832] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2404.523463][ T6832] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2404.523474][ T6832] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2404.523500][ T6832]  </TASK>
[ 2404.844904][ T6837] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2404.871370][ T6837] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2404.950610][ T6840] input: syz0 as /devices/virtual/input/input228
[ 2405.443424][ T6853] FAULT_INJECTION: forcing a failure.
[ 2405.443424][ T6853] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2405.459588][ T6853] CPU: 1 UID: 0 PID: 6853 Comm: syz.2.8850 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2405.459609][ T6853] Tainted: [L]=SOFTLOCKUP
[ 2405.459613][ T6853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2405.459620][ T6853] Call Trace:
[ 2405.459625][ T6853]  <TASK>
[ 2405.459631][ T6853]  dump_stack_lvl+0xe8/0x150
[ 2405.459650][ T6853]  should_fail_ex+0x412/0x560
[ 2405.459666][ T6853]  _copy_from_user+0x2d/0xb0
[ 2405.459682][ T6853]  get_compat_msghdr+0xb3/0x4c0
[ 2405.459697][ T6853]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2405.459709][ T6853]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2405.459722][ T6853]  ? kstrtoull+0x12f/0x1d0
[ 2405.459736][ T6853]  ___sys_sendmsg+0x201/0x360
[ 2405.459749][ T6853]  ? __lock_acquire+0x6b5/0x2cf0
[ 2405.459765][ T6853]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2405.459779][ T6853]  ? get_pid_task+0x20/0x1f0
[ 2405.459793][ T6853]  ? get_pid_task+0x20/0x1f0
[ 2405.459802][ T6853]  ? get_pid_task+0x20/0x1f0
[ 2405.459824][ T6853]  ? __fget_files+0x2a/0x420
[ 2405.459835][ T6853]  ? __fget_files+0x3a0/0x420
[ 2405.459850][ T6853]  __sys_sendmsg+0x183/0x260
[ 2405.459864][ T6853]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2405.459883][ T6853]  ? __pfx_ksys_write+0x10/0x10
[ 2405.459901][ T6853]  __do_fast_syscall_32+0x1d2/0x540
[ 2405.459914][ T6853]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2405.459924][ T6853]  ? do_fast_syscall_32+0x33/0x70
[ 2405.459934][ T6853]  ? asm_int80_emulation+0x1a/0x20
[ 2405.459944][ T6853]  ? do_int80_emulation+0x20e/0x400
[ 2405.459956][ T6853]  do_fast_syscall_32+0x33/0x70
[ 2405.459967][ T6853]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2405.459979][ T6853] RIP: 0023:0xf7f53539
[ 2405.459989][ T6853] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2405.459998][ T6853] RSP: 002b:00000000f541650c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 2405.460010][ T6853] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000100
[ 2405.460017][ T6853] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000000
[ 2405.460023][ T6853] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2405.460029][ T6853] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2405.460035][ T6853] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2405.460066][ T6853]  </TASK>
[ 2406.087428][ T6858] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2406.127751][ T6858] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2406.181395][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 2406.187949][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 2406.199858][ T5891] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[ 2406.386161][ T5891] usb 2-1: Using ep0 maxpacket: 16
[ 2406.480311][ T6863] FAULT_INJECTION: forcing a failure.
[ 2406.480311][ T6863] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2406.493754][ T6863] CPU: 1 UID: 0 PID: 6863 Comm: syz.3.8854 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2406.493782][ T6863] Tainted: [L]=SOFTLOCKUP
[ 2406.493789][ T6863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2406.493799][ T6863] Call Trace:
[ 2406.493808][ T6863]  <TASK>
[ 2406.493815][ T6863]  dump_stack_lvl+0xe8/0x150
[ 2406.493842][ T6863]  should_fail_ex+0x412/0x560
[ 2406.493868][ T6863]  _copy_from_user+0x2d/0xb0
[ 2406.493893][ T6863]  get_compat_msghdr+0xb3/0x4c0
[ 2406.493926][ T6863]  ? aa_file_perm+0x12d/0x1630
[ 2406.493949][ T6863]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2406.493981][ T6863]  ___sys_sendmsg+0x201/0x360
[ 2406.494002][ T6863]  ? __lock_acquire+0x6b5/0x2cf0
[ 2406.494029][ T6863]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2406.494051][ T6863]  ? kstrtoull+0x12f/0x1d0
[ 2406.494097][ T6863]  ? __fget_files+0x2a/0x420
[ 2406.494115][ T6863]  ? __fget_files+0x3a0/0x420
[ 2406.494142][ T6863]  __sys_sendmmsg+0x2e7/0x4e0
[ 2406.494168][ T6863]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 2406.494198][ T6863]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 2406.494234][ T6863]  ? ksys_write+0x242/0x270
[ 2406.494259][ T6863]  ? __pfx_ksys_write+0x10/0x10
[ 2406.494284][ T6863]  __ia32_compat_sys_sendmmsg+0xa2/0xc0
[ 2406.494305][ T6863]  __do_fast_syscall_32+0x1d2/0x540
[ 2406.494323][ T6863]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2406.494338][ T6863]  ? do_fast_syscall_32+0x33/0x70
[ 2406.494355][ T6863]  ? asm_int80_emulation+0x1a/0x20
[ 2406.494370][ T6863]  ? do_int80_emulation+0x20e/0x400
[ 2406.494392][ T6863]  do_fast_syscall_32+0x33/0x70
[ 2406.494410][ T6863]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2406.494429][ T6863] RIP: 0023:0xf7ff5539
[ 2406.494445][ T6863] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2406.494461][ T6863] RSP: 002b:00000000f54b650c EFLAGS: 00000206 ORIG_RAX: 0000000000000159
[ 2406.494480][ T6863] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800094c0
[ 2406.494492][ T6863] RDX: 0000000000000001 RSI: 0000000000000080 RDI: 0000000000000000
[ 2406.494505][ T6863] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2406.494514][ T6863] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2406.494523][ T6863] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2406.494546][ T6863]  </TASK>
[ 2406.839831][ T5891] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2406.866787][ T5891] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 2406.898569][ T5891] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 2406.931500][ T5891] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 576
[ 2406.968683][ T5891] usb 2-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[ 2406.992841][ T6868] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8855'.
[ 2407.039770][ T5891] usb 2-1: New USB device found, idVendor=0505, idProduct=a4a1, bcdDevice= 0.40
[ 2407.048918][T18175] Bluetooth: hci5: command 0x0406 tx timeout
[ 2407.061874][T22485] Bluetooth: hci5: Opcode 0x0c1a failed: -110
[ 2407.078957][T22485] Bluetooth: hci5: Error when powering off device on rfkill (-110)
[ 2407.095913][ T5891] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 2407.119493][ T5891] usb 2-1: SerialNumber: syz
[ 2407.185028][ T6851] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[ 2407.225921][ T5891] cdc_acm 2-1:1.0: Control and data interfaces are not separated!
[ 2407.236588][ T6875] FAULT_INJECTION: forcing a failure.
[ 2407.236588][ T6875] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2407.238576][ T5891] cdc_acm 2-1:1.0: probe with driver cdc_acm failed with error -12
[ 2407.277723][ T6874] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8858'.
[ 2407.359301][ T6872] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2407.377569][ T6875] CPU: 1 UID: 0 PID: 6875 Comm: syz.4.8859 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2407.377589][ T6875] Tainted: [L]=SOFTLOCKUP
[ 2407.377593][ T6875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2407.377599][ T6875] Call Trace:
[ 2407.377604][ T6875]  <TASK>
[ 2407.377609][ T6875]  dump_stack_lvl+0xe8/0x150
[ 2407.377627][ T6875]  should_fail_ex+0x412/0x560
[ 2407.377644][ T6875]  _copy_from_user+0x2d/0xb0
[ 2407.377662][ T6875]  lowpan_control_write+0x108/0x8f0
[ 2407.377774][ T6875]  ? __pfx_lowpan_control_write+0x10/0x10
[ 2407.377788][ T6875]  ? __pfx___debugfs_file_get+0x10/0x10
[ 2407.377817][ T6875]  ? vfs_write+0x227/0xb90
[ 2407.377836][ T6875]  full_proxy_write+0x127/0x1f0
[ 2407.377850][ T6875]  ? __pfx_full_proxy_write+0x10/0x10
[ 2407.377863][ T6875]  vfs_write+0x29a/0xb90
[ 2407.377881][ T6875]  ? __pfx_vfs_write+0x10/0x10
[ 2407.377901][ T6875]  ? __fget_files+0x2a/0x420
[ 2407.377915][ T6875]  ? __fget_files+0x3a0/0x420
[ 2407.377925][ T6875]  ? __fget_files+0x2a/0x420
[ 2407.377940][ T6875]  ksys_write+0x150/0x270
[ 2407.377955][ T6875]  ? __pfx_ksys_write+0x10/0x10
[ 2407.377969][ T6875]  ? __pfx_ksys_write+0x10/0x10
[ 2407.377987][ T6875]  __do_fast_syscall_32+0x1d2/0x540
[ 2407.378000][ T6875]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2407.378009][ T6875]  ? do_fast_syscall_32+0x33/0x70
[ 2407.378019][ T6875]  ? asm_int80_emulation+0x1a/0x20
[ 2407.378028][ T6875]  ? do_int80_emulation+0x20e/0x400
[ 2407.378040][ T6875]  do_fast_syscall_32+0x33/0x70
[ 2407.378052][ T6875]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2407.378063][ T6875] RIP: 0023:0xf7f95539
[ 2407.378074][ T6875] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2407.378082][ T6875] RSP: 002b:00000000f545650c EFLAGS: 00000206 ORIG_RAX: 0000000000000004
[ 2407.378094][ T6875] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000380
[ 2407.378101][ T6875] RDX: 000000000000001e RSI: 0000000000000000 RDI: 0000000000000000
[ 2407.378107][ T6875] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2407.378113][ T6875] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2407.378119][ T6875] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2407.378134][ T6875]  </TASK>
[ 2408.188745][ T6893] FAULT_INJECTION: forcing a failure.
[ 2408.188745][ T6893] name failslab, interval 1, probability 0, space 0, times 0
[ 2408.202878][ T6893] CPU: 0 UID: 0 PID: 6893 Comm: syz.3.8864 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2408.202898][ T6893] Tainted: [L]=SOFTLOCKUP
[ 2408.202902][ T6893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2408.202908][ T6893] Call Trace:
[ 2408.202913][ T6893]  <TASK>
[ 2408.202918][ T6893]  dump_stack_lvl+0xe8/0x150
[ 2408.202938][ T6893]  should_fail_ex+0x412/0x560
[ 2408.202954][ T6893]  should_failslab+0xa8/0x100
[ 2408.202967][ T6893]  kmem_cache_alloc_node_noprof+0x8b/0x6f0
[ 2408.202983][ T6893]  ? __alloc_skb+0x193/0x390
[ 2408.202996][ T6893]  ? __alloc_skb+0x1d7/0x390
[ 2408.203005][ T6893]  ? __local_bh_enable_ip+0xd0/0x130
[ 2408.203016][ T6893]  ? __alloc_skb+0x193/0x390
[ 2408.203028][ T6893]  __alloc_skb+0x1d7/0x390
[ 2408.203041][ T6893]  netlink_sendmsg+0x5d4/0xb40
[ 2408.203145][ T6893]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2408.203161][ T6893]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2408.203173][ T6893]  ? kstrtouint+0x6e/0xe0
[ 2408.203183][ T6893]  ? aa_sock_msg_perm+0xf1/0x1b0
[ 2408.203197][ T6893]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 2408.203210][ T6893]  sock_write_iter+0x503/0x550
[ 2408.203226][ T6893]  ? __pfx_sock_write_iter+0x10/0x10
[ 2408.203248][ T6893]  ? bpf_lsm_file_permission+0x9/0x20
[ 2408.203260][ T6893]  ? security_file_permission+0x75/0x260
[ 2408.203275][ T6893]  vfs_write+0x61d/0xb90
[ 2408.203294][ T6893]  ? __pfx_vfs_write+0x10/0x10
[ 2408.203312][ T6893]  ? __fget_files+0x2a/0x420
[ 2408.203327][ T6893]  ksys_write+0x150/0x270
[ 2408.203343][ T6893]  ? __pfx_ksys_write+0x10/0x10
[ 2408.203357][ T6893]  ? __pfx_ksys_write+0x10/0x10
[ 2408.203374][ T6893]  __do_fast_syscall_32+0x1d2/0x540
[ 2408.203387][ T6893]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2408.203397][ T6893]  ? do_fast_syscall_32+0x33/0x70
[ 2408.203407][ T6893]  ? asm_int80_emulation+0x1a/0x20
[ 2408.203416][ T6893]  ? do_int80_emulation+0x20e/0x400
[ 2408.203429][ T6893]  do_fast_syscall_32+0x33/0x70
[ 2408.203440][ T6893]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2408.203452][ T6893] RIP: 0023:0xf7ff5539
[ 2408.203462][ T6893] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2408.203477][ T6893] RSP: 002b:00000000f54b650c EFLAGS: 00000206 ORIG_RAX: 0000000000000004
[ 2408.203489][ T6893] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000040
[ 2408.203497][ T6893] RDX: 000000000000033a RSI: 0000000000000000 RDI: 0000000000000000
[ 2408.203503][ T6893] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2408.203509][ T6893] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2408.203515][ T6893] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2408.203529][ T6893]  </TASK>
[ 2408.823607][ T6904] FAULT_INJECTION: forcing a failure.
[ 2408.823607][ T6904] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2408.840092][ T6902] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2408.850632][ T6902] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2408.873257][ T5891] usb 2-1: USB disconnect, device number 14
[ 2408.878287][ T6904] CPU: 1 UID: 0 PID: 6904 Comm: syz.4.8867 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2408.878318][ T6904] Tainted: [L]=SOFTLOCKUP
[ 2408.878324][ T6904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2408.878334][ T6904] Call Trace:
[ 2408.878343][ T6904]  <TASK>
[ 2408.878351][ T6904]  dump_stack_lvl+0xe8/0x150
[ 2408.878378][ T6904]  should_fail_ex+0x412/0x560
[ 2408.878423][ T6904]  _copy_from_user+0x2d/0xb0
[ 2408.878454][ T6904]  io_submit_one+0xd3/0x14c0
[ 2408.878479][ T6904]  ? irqentry_exit+0x59c/0x620
[ 2408.878498][ T6904]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2408.878514][ T6904]  ? irqentry_exit+0x59c/0x620
[ 2408.878535][ T6904]  ? __pfx_io_submit_one+0x10/0x10
[ 2408.878556][ T6904]  ? __might_fault+0xaf/0x130
[ 2408.878589][ T6904]  ? __might_fault+0xaf/0x130
[ 2408.878614][ T6904]  __ia32_compat_sys_io_submit+0x1e1/0x390
[ 2408.878637][ T6904]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[ 2408.878662][ T6904]  ? __pfx_ksys_write+0x10/0x10
[ 2408.878690][ T6904]  __do_fast_syscall_32+0x1d2/0x540
[ 2408.878708][ T6904]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2408.878723][ T6904]  ? do_fast_syscall_32+0x33/0x70
[ 2408.878740][ T6904]  ? asm_int80_emulation+0x1a/0x20
[ 2408.878755][ T6904]  ? do_int80_emulation+0x20e/0x400
[ 2408.878776][ T6904]  do_fast_syscall_32+0x33/0x70
[ 2408.878795][ T6904]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2408.878814][ T6904] RIP: 0023:0xf7f95539
[ 2408.878830][ T6904] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2408.878844][ T6904] RSP: 002b:00000000f545650c EFLAGS: 00000206 ORIG_RAX: 00000000000000f8
[ 2408.878863][ T6904] RAX: ffffffffffffffda RBX: 00000000f7f8e000 RCX: 0000000000000001
[ 2408.878876][ T6904] RDX: 0000000080001300 RSI: 0000000000000000 RDI: 0000000000000000
[ 2408.878886][ T6904] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2408.878897][ T6904] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2408.878908][ T6904] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2408.878933][ T6904]  </TASK>
[ 2409.134368][T22485] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[ 2409.141239][T22485] Bluetooth: hci0: Error when powering off device on rfkill (-110)
[ 2409.165171][T18175] Bluetooth: hci0: command 0x0406 tx timeout
[ 2409.531437][ T6913] FAULT_INJECTION: forcing a failure.
[ 2409.531437][ T6913] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2409.579056][ T6913] CPU: 1 UID: 0 PID: 6913 Comm: syz.1.8870 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2409.579089][ T6913] Tainted: [L]=SOFTLOCKUP
[ 2409.579096][ T6913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2409.579107][ T6913] Call Trace:
[ 2409.579114][ T6913]  <TASK>
[ 2409.579122][ T6913]  dump_stack_lvl+0xe8/0x150
[ 2409.579151][ T6913]  should_fail_ex+0x412/0x560
[ 2409.579177][ T6913]  _copy_from_user+0x2d/0xb0
[ 2409.579203][ T6913]  __sys_sendto+0x2af/0x7a0
[ 2409.579227][ T6913]  ? __pfx___sys_sendto+0x10/0x10
[ 2409.579268][ T6913]  ? fput+0xa0/0xd0
[ 2409.579290][ T6913]  ? ksys_write+0x242/0x270
[ 2409.579313][ T6913]  ? __pfx_ksys_write+0x10/0x10
[ 2409.579345][ T6913]  __ia32_sys_sendto+0xdd/0x100
[ 2409.579367][ T6913]  __do_fast_syscall_32+0x1d2/0x540
[ 2409.579385][ T6913]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2409.579401][ T6913]  ? do_fast_syscall_32+0x33/0x70
[ 2409.579417][ T6913]  ? asm_int80_emulation+0x1a/0x20
[ 2409.579433][ T6913]  ? do_int80_emulation+0x20e/0x400
[ 2409.579453][ T6913]  do_fast_syscall_32+0x33/0x70
[ 2409.579470][ T6913]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2409.579488][ T6913] RIP: 0023:0xf742d539
[ 2409.579503][ T6913] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2409.579517][ T6913] RSP: 002b:00000000f545650c EFLAGS: 00000206 ORIG_RAX: 0000000000000171
[ 2409.579535][ T6913] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[ 2409.579547][ T6913] RDX: 000000000000002a RSI: 0000000000000000 RDI: 0000000080000200
[ 2409.579558][ T6913] RBP: 0000000000000014 R08: 0000000000000000 R09: 0000000000000000
[ 2409.579569][ T6913] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2409.579580][ T6913] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2409.579604][ T6913]  </TASK>
[ 2409.841661][ T6919] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8873'.
[ 2409.881635][ T6918] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2409.980910][ T6927] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2409.989911][ T6927] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2410.598668][ T6942] netlink: 'syz.1.8880': attribute type 1 has an invalid length.
[ 2410.616010][ T6945] FAULT_INJECTION: forcing a failure.
[ 2410.616010][ T6945] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2410.616036][ T6945] CPU: 0 UID: 0 PID: 6945 Comm: syz.2.8881 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2410.616050][ T6945] Tainted: [L]=SOFTLOCKUP
[ 2410.616054][ T6945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2410.616061][ T6945] Call Trace:
[ 2410.616065][ T6945]  <TASK>
[ 2410.616070][ T6945]  dump_stack_lvl+0xe8/0x150
[ 2410.616089][ T6945]  should_fail_ex+0x412/0x560
[ 2410.616105][ T6945]  _copy_from_user+0x2d/0xb0
[ 2410.616122][ T6945]  get_compat_msghdr+0xb3/0x4c0
[ 2410.616137][ T6945]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2410.616149][ T6945]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2410.616162][ T6945]  ? kstrtoull+0x12f/0x1d0
[ 2410.616177][ T6945]  ___sys_sendmsg+0x201/0x360
[ 2410.616190][ T6945]  ? __lock_acquire+0x6b5/0x2cf0
[ 2410.616207][ T6945]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2410.616230][ T6945]  ? get_pid_task+0x20/0x1f0
[ 2410.616241][ T6945]  ? get_pid_task+0x20/0x1f0
[ 2410.616250][ T6945]  ? get_pid_task+0x20/0x1f0
[ 2410.616273][ T6945]  ? __fget_files+0x2a/0x420
[ 2410.616284][ T6945]  ? __fget_files+0x3a0/0x420
[ 2410.616299][ T6945]  __sys_sendmsg+0x183/0x260
[ 2410.616314][ T6945]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2410.616331][ T6945]  ? __pfx_ksys_write+0x10/0x10
[ 2410.616349][ T6945]  __do_fast_syscall_32+0x1d2/0x540
[ 2410.616362][ T6945]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2410.616371][ T6945]  ? do_fast_syscall_32+0x33/0x70
[ 2410.616382][ T6945]  ? asm_int80_emulation+0x1a/0x20
[ 2410.616392][ T6945]  ? do_int80_emulation+0x20e/0x400
[ 2410.616405][ T6945]  do_fast_syscall_32+0x33/0x70
[ 2410.616415][ T6945]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2410.616427][ T6945] RIP: 0023:0xf7f53539
[ 2410.616437][ T6945] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2410.616445][ T6945] RSP: 002b:00000000f541650c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 2410.616457][ T6945] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000380
[ 2410.616464][ T6945] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 0000000000000000
[ 2410.616470][ T6945] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2410.616476][ T6945] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2410.616482][ T6945] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2410.616496][ T6945]  </TASK>
[ 2410.774859][ T6942] 8021q: adding VLAN 0 to HW filter on device bond1
[ 2410.863976][ T6948] bond1: (slave veth3): Enslaving as an active interface with a down link
[ 2411.172549][ T6942] vlan2: entered allmulticast mode
[ 2411.172575][ T6942] veth1: entered allmulticast mode
[ 2411.179636][ T6942] veth1: entered promiscuous mode
[ 2411.180211][ T6942] veth1: left promiscuous mode
[ 2411.182294][ T6942] bond1: (slave vlan2): making interface the new active one
[ 2411.183115][ T6942] veth1: entered promiscuous mode
[ 2411.183730][ T6942] vlan2: entered promiscuous mode
[ 2411.184220][ T6942] bond1: (slave vlan2): Enslaving as an active interface with an up link
[ 2411.360135][ T6958] FAULT_INJECTION: forcing a failure.
[ 2411.360135][ T6958] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2411.375320][ T6958] CPU: 0 UID: 0 PID: 6958 Comm: syz.1.8884 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2411.375350][ T6958] Tainted: [L]=SOFTLOCKUP
[ 2411.375357][ T6958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2411.375368][ T6958] Call Trace:
[ 2411.375376][ T6958]  <TASK>
[ 2411.375384][ T6958]  dump_stack_lvl+0xe8/0x150
[ 2411.375411][ T6958]  should_fail_ex+0x412/0x560
[ 2411.375436][ T6958]  _copy_from_iter+0x1d3/0x1670
[ 2411.375463][ T6958]  ? txopt_get+0x79/0x3f0
[ 2411.375672][ T6958]  ? txopt_get+0x79/0x3f0
[ 2411.375690][ T6958]  ? txopt_get+0x79/0x3f0
[ 2411.375709][ T6958]  ? __pfx__copy_from_iter+0x10/0x10
[ 2411.375728][ T6958]  ? txopt_get+0x343/0x3f0
[ 2411.375747][ T6958]  ? __lock_acquire+0x6b5/0x2cf0
[ 2411.375767][ T6958]  ? txopt_get+0x79/0x3f0
[ 2411.375785][ T6958]  ? __pfx_txopt_get+0x10/0x10
[ 2411.375815][ T6958]  rawv6_sendmsg+0xbcb/0x18f0
[ 2411.375845][ T6958]  ? __pfx_rawv6_sendmsg+0x10/0x10
[ 2411.375878][ T6958]  ? aa_sk_perm+0x82d/0x960
[ 2411.375904][ T6958]  ? __pfx_aa_sk_perm+0x10/0x10
[ 2411.375924][ T6958]  ? __pfx_aa_file_perm+0x10/0x10
[ 2411.375943][ T6958]  ? sock_rps_record_flow+0x19/0x400
[ 2411.376000][ T6958]  ? inet_sendmsg+0x2f4/0x370
[ 2411.376019][ T6958]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 2411.376040][ T6958]  sock_write_iter+0x421/0x550
[ 2411.376066][ T6958]  ? __pfx_sock_write_iter+0x10/0x10
[ 2411.376096][ T6958]  ? bpf_lsm_file_permission+0x9/0x20
[ 2411.376115][ T6958]  ? security_file_permission+0x75/0x260
[ 2411.376139][ T6958]  vfs_write+0x61d/0xb90
[ 2411.376170][ T6958]  ? __pfx_vfs_write+0x10/0x10
[ 2411.376201][ T6958]  ? __fget_files+0x2a/0x420
[ 2411.376237][ T6958]  ksys_write+0x150/0x270
[ 2411.376260][ T6958]  ? __pfx_ksys_write+0x10/0x10
[ 2411.376282][ T6958]  ? __pfx_ksys_write+0x10/0x10
[ 2411.376310][ T6958]  __do_fast_syscall_32+0x1d2/0x540
[ 2411.376330][ T6958]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2411.376346][ T6958]  ? do_fast_syscall_32+0x33/0x70
[ 2411.376361][ T6958]  ? asm_int80_emulation+0x1a/0x20
[ 2411.376375][ T6958]  ? do_int80_emulation+0x20e/0x400
[ 2411.376392][ T6958]  do_fast_syscall_32+0x33/0x70
[ 2411.376408][ T6958]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2411.376426][ T6958] RIP: 0023:0xf742d539
[ 2411.376442][ T6958] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2411.376456][ T6958] RSP: 002b:00000000f545650c EFLAGS: 00000206 ORIG_RAX: 0000000000000004
[ 2411.376474][ T6958] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[ 2411.376486][ T6958] RDX: 00000000000005ac RSI: 0000000000000000 RDI: 0000000000000000
[ 2411.376496][ T6958] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2411.376505][ T6958] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2411.376516][ T6958] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2411.376540][ T6958]  </TASK>
[ 2411.675169][T22485] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[ 2411.681296][T22485] Bluetooth: hci1: Error when powering off device on rfkill (-110)
[ 2411.691041][T18175] Bluetooth: hci1: command 0x0406 tx timeout
[ 2411.735632][ T6962] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2411.749623][ T6962] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2411.770686][ T6960] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8885'.
[ 2411.789566][ T6960] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8885'.
[ 2411.802011][ T6964] netlink: 40 bytes leftover after parsing attributes in process `syz.1.8887'.
[ 2412.634656][T23222] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[ 2412.799904][T23222] usb 4-1: Using ep0 maxpacket: 8
[ 2412.831668][T23222] usb 4-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[ 2412.855666][T23222] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2412.890950][T23222] pvrusb2: Hardware description: Terratec Grabster AV400
[ 2412.905136][T23222] pvrusb2: **********
[ 2412.909355][T23222] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[ 2412.921863][T23222] pvrusb2: Important functionality might not be entirely working.
[ 2412.933537][T23222] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[ 2412.946748][T23222] pvrusb2: **********
[ 2413.084344][ T2344] pvrusb2: Invalid write control endpoint
[ 2413.196263][ T6999] netlink: 'syz.4.8897': attribute type 10 has an invalid length.
[ 2413.208140][ T6999] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2413.219127][ T6999] bond0: (slave batadv0): Enslaving as an active interface with an up link
[ 2413.233299][ T6999] netlink: 'syz.4.8897': attribute type 10 has an invalid length.
[ 2413.233324][ T6999] netlink: 40 bytes leftover after parsing attributes in process `syz.4.8897'.
[ 2413.233353][ T6999] batadv0: entered promiscuous mode
[ 2413.233371][ T6999] batadv0: entered allmulticast mode
[ 2413.300858][ T2344] pvrusb2: Invalid write control endpoint
[ 2413.300876][ T2344] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[ 2413.300887][ T2344] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[ 2413.300896][ T2344] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[ 2413.300906][ T2344] pvrusb2: Device being rendered inoperable
[ 2413.302248][ T2344] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[ 2413.302321][ T2344] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_b)
[ 2413.335269][ T2344] pvrusb2: Attached sub-driver cx25840
[ 2413.335288][ T2344] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[ 2413.335298][ T2344] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[ 2413.335811][ T6984] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2413.336191][ T6984] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2413.339403][ T6864] usb 4-1: USB disconnect, device number 30
[ 2413.438127][ T6999] bond0: (slave batadv0): Releasing backup interface
[ 2413.454402][ T6999] bridge0: port 3(batadv0) entered blocking state
[ 2413.463710][ T6999] bridge0: port 3(batadv0) entered disabled state
[ 2413.765686][T16236] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[ 2413.768383][T22485] Bluetooth: hci4: Opcode 0x0c1a failed: -110
[ 2413.774689][T16236] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[ 2413.801449][T18175] Bluetooth: hci4: command 0x0406 tx timeout
[ 2413.843444][T22485] Bluetooth: hci4: Error when powering off device on rfkill (-110)
[ 2413.955763][ T7015] FAULT_INJECTION: forcing a failure.
[ 2413.955763][ T7015] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2413.969181][ T7015] CPU: 0 UID: 0 PID: 7015 Comm: syz.2.8903 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2413.969210][ T7015] Tainted: [L]=SOFTLOCKUP
[ 2413.969216][ T7015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2413.969227][ T7015] Call Trace:
[ 2413.969234][ T7015]  <TASK>
[ 2413.969241][ T7015]  dump_stack_lvl+0xe8/0x150
[ 2413.969267][ T7015]  should_fail_ex+0x412/0x560
[ 2413.969291][ T7015]  _copy_from_user+0x2d/0xb0
[ 2413.969314][ T7015]  __sys_connect+0x156/0x450
[ 2413.969336][ T7015]  ? __pfx___sys_connect+0x10/0x10
[ 2413.969364][ T7015]  ? __pfx_ksys_write+0x10/0x10
[ 2413.969390][ T7015]  __ia32_sys_connect+0x7a/0x90
[ 2413.969408][ T7015]  __do_fast_syscall_32+0x1d2/0x540
[ 2413.969426][ T7015]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2413.969441][ T7015]  ? do_fast_syscall_32+0x33/0x70
[ 2413.969457][ T7015]  ? asm_int80_emulation+0x1a/0x20
[ 2413.969472][ T7015]  ? do_int80_emulation+0x20e/0x400
[ 2413.969495][ T7015]  do_fast_syscall_32+0x33/0x70
[ 2413.969514][ T7015]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2413.969533][ T7015] RIP: 0023:0xf7f53539
[ 2413.969549][ T7015] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2413.969564][ T7015] RSP: 002b:00000000f541650c EFLAGS: 00000206 ORIG_RAX: 000000000000016a
[ 2413.969583][ T7015] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800001c0
[ 2413.969596][ T7015] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[ 2413.969606][ T7015] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2413.969616][ T7015] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2413.969627][ T7015] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2413.969653][ T7015]  </TASK>
[ 2414.225294][ T7006] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2414.234142][ T7006] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2414.533307][ T7020] netlink: 96 bytes leftover after parsing attributes in process `syz.2.8905'.
[ 2414.548623][ T7022] netlink: 96 bytes leftover after parsing attributes in process `syz.2.8905'.
[ 2414.625462][ T5891] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[ 2414.665477][ T7008] delete_channel: no stack
[ 2414.785146][ T5891] usb 4-1: Using ep0 maxpacket: 16
[ 2414.792343][ T5891] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 2414.802845][ T5891] usb 4-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[ 2414.820430][ T5891] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 2414.842647][ T5891] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 2414.852127][ T5891] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2414.861378][ T5891] usb 4-1: Product: syz
[ 2414.940941][ T5891] usb 4-1: Manufacturer: syz
[ 2414.953166][ T5891] usb 4-1: SerialNumber: syz
[ 2415.533222][ T7038] lo: Caught tx_queue_len zero misconfig
[ 2416.340452][T22485] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[ 2416.354953][T22485] Bluetooth: hci2: Error when powering off device on rfkill (-110)
[ 2416.431896][T18175] Bluetooth: hci2: command 0x0c1a tx timeout
[ 2416.535493][ T5891] usb 4-1: 0:2 : does not exist
[ 2416.549156][ T5891] usb 4-1: USB disconnect, device number 31
[ 2416.599863][ T5520] udevd[5520]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card4/controlC4/../uevent} for writing: No such file or directory
[ 2417.476317][ T7066] capability: warning: `syz.3.8917' uses deprecated v2 capabilities in a way that may be insecure
[ 2417.556806][ T7070] FAULT_INJECTION: forcing a failure.
[ 2417.556806][ T7070] name failslab, interval 1, probability 0, space 0, times 0
[ 2417.642111][ T7070] CPU: 1 UID: 0 PID: 7070 Comm: syz.2.8916 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2417.642142][ T7070] Tainted: [L]=SOFTLOCKUP
[ 2417.642148][ T7070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2417.642159][ T7070] Call Trace:
[ 2417.642166][ T7070]  <TASK>
[ 2417.642172][ T7070]  dump_stack_lvl+0xe8/0x150
[ 2417.642201][ T7070]  should_fail_ex+0x412/0x560
[ 2417.642228][ T7070]  should_failslab+0xa8/0x100
[ 2417.642251][ T7070]  __kmalloc_noprof+0xde/0x7e0
[ 2417.642267][ T7070]  ? kfree+0x4d/0x650
[ 2417.642286][ T7070]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 2417.642315][ T7070]  tomoyo_realpath_from_path+0xe3/0x5d0
[ 2417.642336][ T7070]  ? tomoyo_domain+0xd7/0x130
[ 2417.642361][ T7070]  ? tomoyo_path_number_perm+0x219/0x630
[ 2417.642378][ T7070]  tomoyo_path_number_perm+0x246/0x630
[ 2417.642398][ T7070]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2417.642417][ T7070]  ? __lock_acquire+0x6b5/0x2cf0
[ 2417.642475][ T7070]  ? __fget_files+0x2a/0x420
[ 2417.642498][ T7070]  ? __fget_files+0x3a0/0x420
[ 2417.642515][ T7070]  ? __fget_files+0x2a/0x420
[ 2417.642537][ T7070]  security_file_ioctl_compat+0xc3/0x2a0
[ 2417.642558][ T7070]  __ia32_compat_sys_ioctl+0x139/0x950
[ 2417.642585][ T7070]  ? __pfx___ia32_compat_sys_ioctl+0x10/0x10
[ 2417.642620][ T7070]  ? __fget_files+0x3a0/0x420
[ 2417.642645][ T7070]  ? fput+0xa0/0xd0
[ 2417.642666][ T7070]  ? ksys_write+0x242/0x270
[ 2417.642691][ T7070]  ? __pfx_ksys_write+0x10/0x10
[ 2417.642722][ T7070]  __do_fast_syscall_32+0x1d2/0x540
[ 2417.642742][ T7070]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2417.642758][ T7070]  ? do_fast_syscall_32+0x33/0x70
[ 2417.642776][ T7070]  ? asm_int80_emulation+0x1a/0x20
[ 2417.642792][ T7070]  ? do_int80_emulation+0x20e/0x400
[ 2417.642815][ T7070]  do_fast_syscall_32+0x33/0x70
[ 2417.642835][ T7070]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2417.642854][ T7070] RIP: 0023:0xf7f53539
[ 2417.642869][ T7070] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2417.642884][ T7070] RSP: 002b:00000000f53f550c EFLAGS: 00000206 ORIG_RAX: 0000000000000036
[ 2417.642903][ T7070] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000005402
[ 2417.642916][ T7070] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000000000000
[ 2417.642928][ T7070] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2417.642939][ T7070] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2417.642950][ T7070] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2417.642977][ T7070]  </TASK>
[ 2417.643250][ T7070] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2418.142245][ T7072] FAULT_INJECTION: forcing a failure.
[ 2418.142245][ T7072] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2418.358586][ T7072] CPU: 0 UID: 0 PID: 7072 Comm: syz.4.8919 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2418.358606][ T7072] Tainted: [L]=SOFTLOCKUP
[ 2418.358611][ T7072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2418.358617][ T7072] Call Trace:
[ 2418.358622][ T7072]  <TASK>
[ 2418.358627][ T7072]  dump_stack_lvl+0xe8/0x150
[ 2418.358646][ T7072]  should_fail_ex+0x412/0x560
[ 2418.358662][ T7072]  _copy_from_user+0x2d/0xb0
[ 2418.358679][ T7072]  mptcp_get_subflow_data+0xa0/0x250
[ 2418.358785][ T7072]  mptcp_getsockopt+0x9f7/0x1ed0
[ 2418.358803][ T7072]  ? __pfx_mptcp_getsockopt+0x10/0x10
[ 2418.358819][ T7072]  ? __lock_acquire+0x6b5/0x2cf0
[ 2418.358838][ T7072]  ? __lock_acquire+0x6b5/0x2cf0
[ 2418.358852][ T7072]  ? __lock_acquire+0x6b5/0x2cf0
[ 2418.358869][ T7072]  ? unwind_next_frame+0xa5/0x23c0
[ 2418.358884][ T7072]  ? __lock_acquire+0x6b5/0x2cf0
[ 2418.358903][ T7072]  ? __lock_acquire+0x6b5/0x2cf0
[ 2418.358919][ T7072]  ? aa_file_perm+0x12d/0x1630
[ 2418.358940][ T7072]  ? __lock_acquire+0x6b5/0x2cf0
[ 2418.358954][ T7072]  ? aa_label_sk_perm+0x529/0x6d0
[ 2418.358964][ T7072]  ? _parse_integer_limit+0x1ae/0x1f0
[ 2418.358979][ T7072]  ? __pfx_aa_label_sk_perm+0x10/0x10
[ 2418.358992][ T7072]  ? kstrtouint+0x6e/0xe0
[ 2418.359003][ T7072]  ? get_pid_task+0x20/0x1f0
[ 2418.359015][ T7072]  ? get_pid_task+0x20/0x1f0
[ 2418.359033][ T7072]  ? aa_sk_perm+0x15a/0x960
[ 2418.359045][ T7072]  ? aa_sk_perm+0x82d/0x960
[ 2418.359059][ T7072]  ? __pfx_aa_sk_perm+0x10/0x10
[ 2418.359071][ T7072]  ? aa_sock_opt_perm+0xff/0x1a0
[ 2418.359084][ T7072]  ? sock_common_getsockopt+0x2d/0xb0
[ 2418.359095][ T7072]  ? __pfx_sock_common_getsockopt+0x10/0x10
[ 2418.359106][ T7072]  do_sock_getsockopt+0x2d3/0x3f0
[ 2418.359121][ T7072]  ? __pfx_do_sock_getsockopt+0x10/0x10
[ 2418.359134][ T7072]  ? __fget_files+0x3a0/0x420
[ 2418.359146][ T7072]  ? __fget_files+0x2a/0x420
[ 2418.359159][ T7072]  __ia32_sys_getsockopt+0x1a4/0x240
[ 2418.359176][ T7072]  __do_fast_syscall_32+0x1d2/0x540
[ 2418.359188][ T7072]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2418.359197][ T7072]  ? do_fast_syscall_32+0x33/0x70
[ 2418.359207][ T7072]  ? asm_int80_emulation+0x1a/0x20
[ 2418.359217][ T7072]  ? do_int80_emulation+0x20e/0x400
[ 2418.359229][ T7072]  do_fast_syscall_32+0x33/0x70
[ 2418.359240][ T7072]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2418.359252][ T7072] RIP: 0023:0xf7f95539
[ 2418.359262][ T7072] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 2418.359271][ T7072] RSP: 002b:00000000f545650c EFLAGS: 00000206 ORIG_RAX: 000000000000016d
[ 2418.359283][ T7072] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000011c
[ 2418.359289][ T7072] RDX: 0000000000000003 RSI: 0000000080000040 RDI: 0000000080000140
[ 2418.359296][ T7072] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2418.359302][ T7072] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2418.359307][ T7072] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2418.359321][ T7072]  </TASK>
[ 2419.093834][ T7081] xt_connbytes: Forcing CT accounting to be enabled
[ 2419.132624][   T30] kauditd_printk_skb: 33 callbacks suppressed
[ 2419.141551][   T30] audit: type=1326 audit(1769665737.776:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7080 comm="syz.2.8922" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53539 code=0x7ffc0000
[ 2419.582860][   T30] audit: type=1326 audit(1769665737.776:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7080 comm="syz.2.8922" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53539 code=0x7ffc0000
[ 2419.937241][ T7099] binder: BINDER_SET_CONTEXT_MGR already set
[ 2419.943788][ T7099] binder: 7098:7099 ioctl 4018620d 80004a80 returned -16
[ 2419.980023][ T7099] binder: BINDER_SET_CONTEXT_MGR already set
[ 2419.994684][ T7099] binder: 7098:7099 ioctl 4018620d 800000c0 returned -16
[ 2420.013898][ T7099] binder: BINDER_SET_CONTEXT_MGR already set
[ 2420.041650][ T7099] binder: 7098:7099 ioctl 4018620d 80000040 returned -16
[ 2420.790743][ T7108] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2420.822748][ T7108] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2420.889658][   T31] INFO: task kworker/1:7:2006 blocked for more than 143 seconds.
[ 2420.914071][   T31]       Tainted: G             L      syzkaller #0
[ 2420.944936][T27963] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[ 2420.970071][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2420.988131][ T7112] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2420.999030][   T31] task:kworker/1:7     state:D stack:22744 pid:2006  tgid:2006  ppid:2      task_flags:0x4208060 flags:0x00080000
[ 2421.014132][ T7112] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2421.026023][   T31] Workqueue: usb_hub_wq hub_event
[ 2421.039444][ T7108] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2421.048854][   T31] Call Trace:
[ 2421.052250][   T31]  <TASK>
[ 2421.055844][   T31]  __schedule+0x14ea/0x5050
[ 2421.075106][ T7108] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2421.095173][   T31]  ? wq_worker_sleeping+0xfe/0x250
[ 2421.109237][   T31]  ? __pfx___schedule+0x10/0x10
[ 2421.123522][   T31]  ? schedule+0x90/0x360
[ 2421.134942][T27963] usb 4-1: Using ep0 maxpacket: 16
[ 2421.141312][   T31]  schedule+0x164/0x360
[ 2421.146539][ T5891] usb 1-1: new low-speed USB device number 33 using dummy_hcd
[ 2421.165221][   T31]  schedule_preempt_disabled+0x13/0x30
[ 2421.166471][T27963] usb 4-1: config 0 has an invalid interface number: 213 but max is 0
[ 2421.179510][T27963] usb 4-1: config 0 has no interface number 0
[ 2421.187787][   T31]  __mutex_lock+0x7fe/0x1300
[ 2421.199174][   T31]  ? __mutex_lock+0x5ac/0x1300
[ 2421.208260][T27963] usb 4-1: New USB device found, idVendor=413c, idProduct=81d2, bcdDevice=25.e8
[ 2421.217687][T27963] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2421.230690][   T31]  ? hub_event+0x21a2/0x4f30
[ 2421.236430][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 2421.242934][   T31]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 2421.250280][T27963] usb 4-1: Product: syz
[ 2421.273204][T27963] usb 4-1: Manufacturer: syz
[ 2421.290296][   T31]  hub_event+0x21a2/0x4f30
[ 2421.297755][T27963] usb 4-1: SerialNumber: syz
[ 2421.306914][ T5891] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[ 2421.314484][ T5891] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[ 2421.343896][   T31]  ? __pfx_hub_event+0x10/0x10
[ 2421.349423][T27963] usb 4-1: config 0 descriptor??
[ 2421.354881][   T31]  ? process_scheduled_works+0xa0f/0x17a0
[ 2421.356998][ T5891] usb 1-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 2421.367071][   T31]  ? process_scheduled_works+0xa0f/0x17a0
[ 2421.378497][   T31]  ? process_scheduled_works+0xa0f/0x17a0
[ 2421.393806][   T31]  process_scheduled_works+0xaec/0x17a0
[ 2421.404592][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2421.410834][   T31]  ? do_raw_spin_lock+0x12b/0x2f0
[ 2421.420087][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 2421.428600][   T31]  ? schedule+0x90/0x360
[ 2421.428626][ T5891] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[ 2421.428664][ T5891] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[ 2421.433081][   T31]  worker_thread+0xda6/0x1360
[ 2421.483179][   T31]  ? __kthread_parkme+0x19c/0x1f0
[ 2421.489040][   T31]  kthread+0x726/0x8b0
[ 2421.493767][ T5891] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[ 2421.501430][ T5891] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[ 2421.512575][ T5891] usb 1-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 2421.525249][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 2421.531936][ T5891] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[ 2421.544181][   T31]  ? __pfx_kthread+0x10/0x10
[ 2421.549041][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2421.554309][   T31]  ? __pfx_kthread+0x10/0x10
[ 2421.562218][   T31]  ret_from_fork+0x51b/0xa40
[ 2421.563603][ T5891] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[ 2421.567664][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 2421.567703][   T31]  ? __switch_to+0xc82/0x1410
[ 2421.567729][   T31]  ? __pfx_kthread+0x10/0x10
[ 2421.567750][   T31]  ret_from_fork_asm+0x1a/0x30
[ 2421.617772][ T5891] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[ 2421.627471][ T5891] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[ 2421.638824][ T5891] usb 1-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 2421.651680][ T5891] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[ 2421.651757][   T31]  </TASK>
[ 2421.664076][ T5891] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[ 2421.685698][   T31] 
[ 2421.685698][   T31] Showing all locks held in the system:
[ 2421.709762][   T31] 1 lock held by khungtaskd/31:
[ 2421.720683][   T31]  #0: ffffffff8e55a360 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 2421.724483][ T5891] usb 1-1: string descriptor 0 read error: -22
[ 2421.737345][ T5891] usb 1-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 2421.738338][   T31] 5 locks held by kworker/1:2/981:
[ 2421.754210][ T5891] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2421.783941][   T31]  #0: ffff888142297548 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_scheduled_works+0x9d4/0x17a0
[ 2421.803648][   T31]  #1: ffffc900038afbc0 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_scheduled_works+0xa0f/0x17a0
[ 2421.823507][   T31]  #2: ffff888145f97198 (&dev->mutex){....}-{4:4}, at: hub_event+0x17f/0x4f30
[ 2421.851666][ T5891] adutux 1-1:168.0: ADU100  now attached to /dev/usb/adutux0
[ 2421.853012][   T31]  #3: ffff888145fa2518 (&port_dev->status_lock){+.+.}-{4:4}, at: hub_event+0x217a/0x4f30
[ 2421.881705][   T31]  #4: ffff88802985e068 (hcd->address0_mutex){+.+.}-{4:4}, at: hub_event+0x21a2/0x4f30
[ 2421.899678][   T31] 2 locks held by getty/5579:
[ 2421.910747][   T31]  #0: ffff88814dd3a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 2421.926761][   T31]  #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x45c/0x13c0
[ 2421.943361][   T31] 5 locks held by kworker/1:5/5878:
[ 2421.951928][   T31]  #0: ffff888142297548 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_scheduled_works+0x9d4/0x17a0
[ 2421.972141][   T31]  #1: ffffc9000444fbc0 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_scheduled_works+0xa0f/0x17a0
[ 2421.988806][   T31]  #2: ffff888145b37198 (&dev->mutex){....}-{4:4}, at: hub_event+0x17f/0x4f30
[ 2422.002722][   T31]  #3: ffff888145b63518 (&port_dev->status_lock){+.+.}-{4:4}, at: hub_event+0x217a/0x4f30
[ 2422.017980][   T31]  #4: ffff8880296c4168 (hcd->address0_mutex){+.+.}-{4:4}, at: hub_event+0x21a2/0x4f30
[ 2422.027820][   T31] 3 locks held by kworker/0:3/5891:
[ 2422.033320][   T31] 7 locks held by kworker/u8:16/16704:
[ 2422.039231][   T31]  #0: ffff8880b863a918 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0xa9/0x140
[ 2422.049228][   T31]  #1: ffff8880b8624588 (psi_seq){-.-.}-{0:0}, at: psi_task_switch+0x53/0x880
[ 2422.058372][   T31]  #2: ffff8880b86260d8 (&base->lock){-.-.}-{2:2}, at: __mod_timer+0x1ae/0xf30
[ 2422.067747][   T31]  #3: ffffffff9a265b18 (&obj_hash[i].lock){-.-.}-{2:2}, at: debug_object_activate+0x83/0x580
[ 2422.078378][   T31]  #4: ffffffff8e3febe8 (text_mutex){+.+.}-{4:4}, at: arch_jump_label_transform_apply+0x17/0x30
[ 2422.091150][   T31]  #5: ffffffff8e55a360 (rcu_read_lock){....}-{1:3}, at: ___pte_offset_map+0x29/0x240
[ 2422.101288][   T31]  #6: ffff88813fe64078 (ptlock_ptr(ptdesc)#2){+.+.}-{3:3}, at: __pte_offset_map_lock+0x13d/0x210
[ 2422.112191][   T31] 5 locks held by kworker/0:7/16760:
[ 2422.119792][   T31]  #0: ffff888142297548 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_scheduled_works+0x9d4/0x17a0
[ 2422.134269][   T31]  #1: ffffc90003c8fbc0 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_scheduled_works+0xa0f/0x17a0
[ 2422.146818][   T31]  #2: ffff888145f39198 (&dev->mutex){....}-{4:4}, at: hub_event+0x17f/0x4f30
[ 2422.157567][   T31]  #3: ffff888145f3c518 (&port_dev->status_lock){+.+.}-{4:4}, at: hub_event+0x217a/0x4f30
[ 2422.170298][   T31]  #4: ffff88802985e068 (hcd->address0_mutex){+.+.}-{4:4}, at: hub_event+0x21a2/0x4f30
[ 2422.170784][T22485] usb 1-1: USB disconnect, device number 33
[ 2422.180289][   T31] 6 locks held by kworker/0:0/22485:
[ 2422.180326][   T31] 5 locks held by kworker/1:3/1335:
[ 2422.180339][   T31]  #0: ffff888142297548 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_scheduled_works+0x9d4/0x17a0
[ 2422.180404][   T31]  #1: ffffc90012807bc0 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_scheduled_works+0xa0f/0x17a0
[ 2422.180458][   T31]  #2: ffff888146389198 (&dev->mutex){....}-{4:4}, at: hub_event+0x17f/0x4f30
[ 2422.180510][   T31]  #3: ffff88814638c518 (&port_dev->status_lock){+.+.}-{4:4}, at: hub_event+0x217a/0x4f30
[ 2422.180561][   T31]  #4: ffff888145f86968 (hcd->address0_mutex){+.+.}-{4:4}, at: hub_event+0x21a2/0x4f30
[ 2422.180609][   T31] 5 locks held by kworker/1:4/1686:
[ 2422.180619][   T31]  #0: ffff888142297548 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_scheduled_works+0x9d4/0x17a0
[ 2422.267401][   T31]  #1: ffffc90004aafbc0 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_scheduled_works+0xa0f/0x17a0
[ 2422.280296][   T31]  #2: ffff888145fae198 (&dev->mutex){....}-{4:4}, at: hub_event+0x17f/0x4f30
[ 2422.289813][   T31]  #3: ffff888145faf518 (&port_dev->status_lock){+.+.}-{4:4}, at: hub_event+0x217a/0x4f30
[ 2422.300614][   T31]  #4: ffff88802985c468 (hcd->address0_mutex){+.+.}-{4:4}, at: hub_event+0x21a2/0x4f30
[ 2422.339078][   T31] 5 locks held by kworker/1:7/2006:
[ 2422.344492][   T31]  #0: ffff888142297548 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_scheduled_works+0x9d4/0x17a0
[ 2422.356390][   T31]  #1: ffffc90011387bc0 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_scheduled_works+0xa0f/0x17a0
[ 2422.368426][   T31]  #2: ffff888145b6e198 (&dev->mutex){....}-{4:4}, at: hub_event+0x17f/0x4f30
[ 2422.378293][   T31]  #3: ffff888029899518 (&port_dev->status_lock){+.+.}-{4:4}, at: hub_event+0x217a/0x4f30
[ 2422.388304][   T31]  #4: ffff8880296c4168 (hcd->address0_mutex){+.+.}-{4:4}, at: hub_event+0x21a2/0x4f30
[ 2422.398071][   T31] 
[ 2422.400413][   T31] =============================================
[ 2422.400413][   T31] 
[ 2422.410838][   T31] NMI backtrace for cpu 1
[ 2422.410854][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2422.410868][   T31] Tainted: [L]=SOFTLOCKUP
[ 2422.410872][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2422.410879][   T31] Call Trace:
[ 2422.410884][   T31]  <TASK>
[ 2422.410889][   T31]  dump_stack_lvl+0xe8/0x150
[ 2422.410907][   T31]  nmi_cpu_backtrace+0x274/0x2d0
[ 2422.410997][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 2422.411015][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 2422.411030][   T31]  sys_info+0x135/0x170
[ 2422.411042][   T31]  watchdog+0xf90/0xfe0
[ 2422.411055][   T31]  ? watchdog+0x209/0xfe0
[ 2422.411068][   T31]  kthread+0x726/0x8b0
[ 2422.411081][   T31]  ? __pfx_watchdog+0x10/0x10
[ 2422.411091][   T31]  ? __pfx_kthread+0x10/0x10
[ 2422.411102][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2422.411124][   T31]  ? __pfx_kthread+0x10/0x10
[ 2422.411134][   T31]  ret_from_fork+0x51b/0xa40
[ 2422.411151][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 2422.411165][   T31]  ? __switch_to+0xc82/0x1410
[ 2422.411181][   T31]  ? __pfx_kthread+0x10/0x10
[ 2422.411192][   T31]  ret_from_fork_asm+0x1a/0x30
[ 2422.411212][   T31]  </TASK>
[ 2422.411216][   T31] Sending NMI from CPU 1 to CPUs 0:
[ 2422.537609][    C0] NMI backtrace for cpu 0
[ 2422.537631][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2422.537652][    C0] Tainted: [L]=SOFTLOCKUP
[ 2422.537657][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2422.537667][    C0] RIP: 0010:pv_native_safe_halt+0xf/0x20
[ 2422.537690][    C0] Code: a8 60 02 e9 53 e8 02 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d d3 67 12 00 fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90
[ 2422.537703][    C0] RSP: 0018:ffffffff8e207dc0 EFLAGS: 00000242
[ 2422.537717][    C0] RAX: 000000000225b4c1 RBX: ffffffff8199570d RCX: 0000000080000001
[ 2422.537729][    C0] RDX: 0000000000000001 RSI: ffffffff8dcc90a8 RDI: ffffffff8c073980
[ 2422.537740][    C0] RBP: ffffffff8e207eb0 R08: ffff8880b86336db R09: 1ffff110170c66db
[ 2422.537751][    C0] R10: dffffc0000000000 R11: ffffed10170c66dc R12: ffffffff8fef1a70
[ 2422.537762][    C0] R13: 1ffffffff1c52a78 R14: 0000000000000000 R15: 0000000000000000
[ 2422.537773][    C0] FS:  0000000000000000(0000) GS:ffff8881256f5000(0000) knlGS:0000000000000000
[ 2422.537785][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2422.537796][    C0] CR2: 000000000c3b5f18 CR3: 0000000075c36000 CR4: 00000000003526f0
[ 2422.537811][    C0] Call Trace:
[ 2422.537817][    C0]  <TASK>
[ 2422.537823][    C0]  default_idle+0x9/0x20
[ 2422.537840][    C0]  default_idle_call+0x72/0xb0
[ 2422.537857][    C0]  do_idle+0x1bd/0x500
[ 2422.537872][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[ 2422.537888][    C0]  ? __pfx_do_idle+0x10/0x10
[ 2422.537905][    C0]  cpu_startup_entry+0x43/0x60
[ 2422.537919][    C0]  rest_init+0x2de/0x300
[ 2422.537936][    C0]  start_kernel+0x380/0x3d0
[ 2422.537994][    C0]  x86_64_start_reservations+0x24/0x30
[ 2422.538076][    C0]  x86_64_start_kernel+0x143/0x1c0
[ 2422.538091][    C0]  common_startup_64+0x13e/0x147
[ 2422.538117][    C0]  </TASK>
[ 2422.729845][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 2422.736710][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 2422.747382][   T31] Tainted: [L]=SOFTLOCKUP
[ 2422.751786][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[ 2422.761829][   T31] Call Trace:
[ 2422.765112][   T31]  <TASK>
[ 2422.768041][   T31]  vpanic+0x1e0/0x670
[ 2422.772023][   T31]  panic+0xc5/0xd0
[ 2422.775736][   T31]  ? __pfx_panic+0x10/0x10
[ 2422.780155][   T31]  ? preempt_schedule_thunk+0x16/0x30
[ 2422.785556][   T31]  ? nmi_trigger_cpumask_backtrace+0x2bb/0x300
[ 2422.791706][   T31]  watchdog+0xfda/0xfe0
[ 2422.795857][   T31]  ? watchdog+0x209/0xfe0
[ 2422.800180][   T31]  kthread+0x726/0x8b0
[ 2422.804258][   T31]  ? __pfx_watchdog+0x10/0x10
[ 2422.809016][   T31]  ? __pfx_kthread+0x10/0x10
[ 2422.813600][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2422.818793][   T31]  ? __pfx_kthread+0x10/0x10
[ 2422.823397][   T31]  ret_from_fork+0x51b/0xa40
[ 2422.828012][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 2422.833130][   T31]  ? __switch_to+0xc82/0x1410
[ 2422.837839][   T31]  ? __pfx_kthread+0x10/0x10
[ 2422.842548][   T31]  ret_from_fork_asm+0x1a/0x30
[ 2422.847334][   T31]  </TASK>
[ 2422.850735][   T31] Kernel Offset: disabled
[ 2422.855052][   T31] Rebooting in 86400 seconds..