last executing test programs:

7m56.191525915s ago: executing program 2 (id=45):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)=[0x0], 0x0, 0x0, 0x0, 0x1})
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r1, 0xc05064a7, 0x0)

7m56.072743854s ago: executing program 2 (id=46):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000f80)={{0x14}, [@NFT_MSG_NEWSETELEM={0x20, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x48}}, 0x0)
r1 = io_uring_setup(0x773d, &(0x7f0000000a40)={0x0, 0x0, 0x1000, 0x2, 0x3bc})
syz_usb_connect(0x3, 0x146, &(0x7f0000000200)=ANY=[@ANYBLOB="12010002a4b4b708b40402005ce201020301090234010205093002090434"], 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f0000000440)={0x28, 0x0, 0x2710, @host}, 0x10)
listen(r2, 0x3)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
r4 = accept4(r2, 0x0, 0x0, 0x0)
recvfrom$inet(r4, &(0x7f0000000540)=""/234, 0xea, 0x40000182, 0x0, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r6 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCGPTLCK(r6, 0x80045439, &(0x7f0000000000))
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r5, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x68, 0x0, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast1}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @rand_addr=0x64010101}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @empty}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'bridge0\x00'}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @loopback}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @empty}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @local}]}, 0x68}, 0x1, 0x0, 0x0, 0x40005}, 0x20008040)

7m54.907378295s ago: executing program 2 (id=53):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xe}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x101}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001bc0)=@deltfilter={0x24, 0x2d, 0x1, 0x78bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xfff3, 0x8}, {0xffff, 0xffff}, {0x0, 0xf}}}, 0x24}}, 0x20044000)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'ipvlan1\x00', <r4=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@empty, 0x400000, r4})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000040)=ANY=[@ANYBLOB="6c0000001000390400"/20, @ANYRES32=r4, @ANYRES64=<r5=>r0], 0x6c}, 0x1, 0x0, 0x0, 0x24040000}, 0x0)
r6 = socket(0x10, 0x3, 0x0)
timer_create(0x9, 0x0, &(0x7f0000bbdffc))
sendmsg$nl_generic(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001e00010a00000000000000a42d"], 0x14}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r8, 0x4018620d, &(0x7f0000000240))
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r10 = dup3(r9, r8, 0x0)
r11 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r11, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r11, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r10, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f00000004c0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r10, 0xc0306201, &(0x7f0000002800)={0x44, 0x0, &(0x7f0000002680)=[@transaction={0x40406301, {0x1, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x1500, 0x0})
bind$inet6(r6, &(0x7f00000000c0)={0xa, 0x4e22, 0x1, @empty, 0x7}, 0x1c)
sendmsg$nl_generic(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000140)=ANY=[@ANYBLOB="101300002d00090036bd70000100000004000000cb011180c708605d8a0c9549f671af21be3edd7313f3b3cefa172a8aae2f295cc72b60b2", @ANYRES8=r5], 0x1310}, 0x1, 0x0, 0x0, 0x20000004}, 0x84)
socket$packet(0x11, 0x3, 0x300)

7m54.506135292s ago: executing program 2 (id=55):
r0 = socket(0x11, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0xfffffffffffffffe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000001a40)=""/102392, 0x18ff8)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f00000000c0)={0x1000, 0x0, {<r2=>0x0}, {0xffffffffffffffff}, 0x4})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
syz_open_procfs$namespace(r2, &(0x7f0000000180)='ns/pid\x00')
syz_open_procfs(0x0, 0x0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
umount2(&(0x7f0000000080)='./file0\x00', 0x1)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r4, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x9, 0x0, 0xffffffff}, 0x1c)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r6=>0x0})
bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @dev}, 0x14)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)

7m53.643485229s ago: executing program 2 (id=59):
mkdir(&(0x7f0000000140)='./control\x00', 0x8)
r0 = inotify_init1(0x180800)
inotify_add_watch(r0, 0x0, 0xa4000960)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x9, 0x800000000004, @thr={&(0x7f00000000c0)="5e61df1afda3485c", &(0x7f0000000880)="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"}}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x77359400}, {0x0, 0x989680}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x10)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x8000, 0x0)
r3 = fanotify_init(0x0, 0x2)
fanotify_mark(r3, 0x1, 0x48000000, r2, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x42, 0x58)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./bus\x00', r4, &(0x7f00000004c0)='./file0\x00', 0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff})
pipe(0x0)
splice(r5, 0x0, 0xffffffffffffffff, 0x0, 0x7, 0x5)
write$P9_RWRITE(0xffffffffffffffff, 0x0, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)
inotify_init1(0x0)
inotify_add_watch(r4, &(0x7f0000000040)='./control\x00', 0x40000000)
syz_open_dev$char_usb(0xc, 0xb4, 0x7)
setsockopt$rose(0xffffffffffffffff, 0x104, 0x1, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x2, 0x3, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffeea}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
rmdir(&(0x7f0000000100)='./control\x00')

7m52.680741181s ago: executing program 2 (id=63):
socket$xdp(0x2c, 0x3, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = syz_io_uring_setup(0x70ca, &(0x7f0000001380)={0x0, 0x0, 0x10100, 0x3, 0x179}, &(0x7f0000000100)=<r5=>0x0, &(0x7f00000007c0)=<r6=>0x0)
r7 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x2000, @fd=r7, 0x0, 0x0})
io_uring_enter(r4, 0x4d10, 0x2, 0x2, 0x0, 0x0)

7m52.137202134s ago: executing program 32 (id=63):
socket$xdp(0x2c, 0x3, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = syz_io_uring_setup(0x70ca, &(0x7f0000001380)={0x0, 0x0, 0x10100, 0x3, 0x179}, &(0x7f0000000100)=<r5=>0x0, &(0x7f00000007c0)=<r6=>0x0)
r7 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x2000, @fd=r7, 0x0, 0x0})
io_uring_enter(r4, 0x4d10, 0x2, 0x2, 0x0, 0x0)

5m40.558357005s ago: executing program 3 (id=519):
socket$xdp(0x2c, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000006c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x5}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000000100001f8ffffff000000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b8008000100", @ANYRES32=r1, @ANYBLOB="08001b"], 0x34}}, 0x4004010)
r5 = socket(0x2, 0x3, 0x6)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
sendto$inet(r5, 0x0, 0x5b, 0x0, &(0x7f0000000600)={0x2, 0x0, @remote}, 0x10)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x8)
rmdir(&(0x7f00000001c0)='./cgroup/../file0\x00')
bind$can_j1939(0xffffffffffffffff, 0x0, 0x0)
sendmsg$can_j1939(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)}}, 0xee)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000001b00)={0x1c, 0x2d, 0x1, 0x70bd26, 0x25dfdbfc, {0x4}, [@typed={0x8, 0xc, 0x0, 0x0, @u32=0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000804)

5m38.960043357s ago: executing program 3 (id=525):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
syz_open_dev$loop(&(0x7f0000000100), 0x80000006, 0x48002)
pipe(&(0x7f0000000040))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_user\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000000008b}, 0x0)
fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000000)=0x5)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x5, 0xb, &(0x7f0000000500)=ANY=[@ANYRESDEC], 0x0, 0x6, 0x0, 0x0, 0x40f00, 0x71, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000080)=ANY=[@ANYRES64=r1, @ANYRES8=r0, @ANYRES16], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_open_dev$usbmon(&(0x7f0000001980), 0x1, 0x10280)
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
clock_getres(0xfffffffffffffff1, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0xc2354000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r5 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_x25_SIOCADDRT(r5, 0x890b, 0x0)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000)={<r7=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r6, &(0x7f0000000280)={0x15, 0x110, 0xfa00, {r7, 0xfffffffd, 0x0, 0x30, 0x0, @in={0x2, 0x4e22, @remote}, @ib={0x1b, 0x4, 0x40000000, {"7d0300"}, 0x0, 0x0, 0xb4ba}}}, 0x130)
write$RDMA_USER_CM_CMD_LISTEN(r6, &(0x7f0000000180)={0x7, 0x8, 0xfa00, {r7, 0x9}}, 0x10)
close(r6)

5m37.914427686s ago: executing program 3 (id=528):
r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x75fa, 0xe475, 0x0, 0x0, 0x0)
ioctl$IMADDTIMER(r0, 0x80044940, &(0x7f0000000000))
openat$cuse(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
r4 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000002a00)='./file0\x00', 0x40, 0x1)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000580)=ANY=[@ANYRESHEX=r6, @ANYRES32, @ANYRES16=r2, @ANYRESOCT=r6, @ANYRESDEC=0x0, @ANYRESDEC, @ANYRES64=r5])
read$FUSE(r6, &(0x7f0000006380)={0x2020, 0x0, <r7=>0x0}, 0x2020)
write$FUSE_INIT(r6, &(0x7f0000000100)={0x50, 0x0, r7, {0x7, 0x1f, 0x0, 0x45c0d00c}}, 0x50)
syz_fuse_handle_req(r6, &(0x7f00000083c0)="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", 0x2000, &(0x7f0000000cc0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x18, 0x0, 0x0, {0x800007ff}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
llistxattr(&(0x7f00000006c0)='./file0\x00', 0x0, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r4, 0x7a7, &(0x7f0000000000)=0x10000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, &(0x7f0000000100)={@local})
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
get_mempolicy(0x0, 0x0, 0x2, &(0x7f0000240000/0x1000)=nil, 0x3)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a00000005000000020000000700000000000000", @ANYRES32, @ANYBLOB="40000000008000"/20, @ANYRES32=0x0, @ANYRES32], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

5m37.276930964s ago: executing program 3 (id=533):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000000)=@req3={0xfffff800, 0xb1, 0xf, 0x0, 0x6, 0x800, 0x1af1}, 0x1c)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
request_key(&(0x7f0000000000)='rxrpc_s\x00', &(0x7f0000001ffb)={'syz', 0x3}, &(0x7f0000001fee)='y\xa9rustV\x1eS=\xd4\x16\x95:\x00\x01\x00\x00', 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
write$cgroup_devices(0xffffffffffffffff, &(0x7f00000002c0)=ANY=[@ANYBLOB="0700a3fcf070d1ff"], 0xffdd)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x4, 0x0, 0x7ffc0005}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r4)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYRES16=r5, @ANYBLOB='ya\x00?\b\x00\x00\x00\x00\x00~'], 0x1c}}, 0x4000054)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001480)='./cgroup/syz1\x00', 0x200002, 0x0)
r7 = openat$cgroup_ro(r6, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r7, &(0x7f0000000200)=0x1, 0x12)

5m36.213475857s ago: executing program 3 (id=536):
r0 = syz_open_dev$video4linux(&(0x7f0000001600), 0xb9, 0x1)
ioctl$VIDIOC_SUBDEV_G_CROP(r0, 0xc038563b, &(0x7f0000001640)={0x0, 0x0, {0x4, 0x8, 0x4, 0xda}})
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
r2 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000040)=0x10)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$KVM_CLEAR_DIRTY_LOG(0xffffffffffffffff, 0xc018aec0, &(0x7f00000002c0)={0x10004, 0xc0, 0x0, &(0x7f0000000940)=[0x6, 0x71, 0x4, 0x0, 0x7, 0x6, 0x80000000, 0xffffffffffffffff, 0x2, 0x6, 0x100000000, 0x5, 0x0, 0x9, 0x944, 0x8, 0x6c, 0x1, 0x1, 0x5, 0x54, 0xffffffff, 0x200, 0x2d42, 0x800, 0x7fffffff, 0xec, 0x9, 0x6, 0x6, 0x2, 0xfffffffffffffffd, 0x2, 0x4, 0x4, 0x7, 0xd6a1, 0x1, 0x2, 0x0, 0x7fff, 0xa, 0x1, 0x5, 0x6c, 0xfffffffffffffc01, 0xbcba, 0x0, 0x7ff, 0x0, 0x5c7, 0x100, 0x7, 0x8, 0x2, 0x1, 0x0, 0x10, 0x7f, 0x9, 0x2200000000, 0x1ff, 0x1, 0x3, 0x2, 0x6, 0x1800000000, 0xffffffffedcea9f6, 0x8, 0xadf9, 0x1, 0x0, 0x4, 0xffffffff00000000, 0x8d26, 0x100000001, 0x2, 0x197, 0x8, 0x4a9, 0x6, 0xe87, 0x91, 0x0, 0x44, 0x100, 0x1, 0xa21e, 0x0, 0x5, 0x6, 0x1, 0x4, 0x18da, 0xffffffff, 0x1, 0x2, 0xcaa, 0x2, 0x6, 0x5, 0x4, 0x579, 0x0, 0x3, 0x197, 0xfffffffffffff691, 0x800, 0xffffffffffff8001, 0x48, 0x6, 0xd63, 0x7, 0x9, 0x8, 0x2931, 0x9, 0x349e, 0x8, 0x2, 0x210d, 0x7, 0x81, 0x7, 0x7, 0xfffffffffffffffd, 0x8, 0x331f]})
bind$unix(r3, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0xfffffffffffffe8b, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r4, 0x2000002, 0xe, 0x20, &(0x7f0000000200)="df33c9f7b9a60000000000000000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r5, &(0x7f0000000440)={0x28, 0x0, 0x2710, @host}, 0x10)
rmdir(&(0x7f00000000c0)='./cgroup/../file0\x00')
r6 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r6, 0x400, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x103000, 0x8d)
open$dir(&(0x7f0000000000)='./file1\x00', 0x80, 0x1c9)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
pread64(r7, &(0x7f0000001440)=""/126, 0x7e, 0x40)
listen(r5, 0x7ff)
r8 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r8, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
r9 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r10 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r10, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)
sendmsg$SOCK_DIAG_BY_FAMILY(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000900)=ANY=[@ANYBLOB="2800000014001901000000000000000228"], 0x28}}, 0x0)
r11 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=ANY=[@ANYBLOB="380000001800dd8d000000000000000002"], 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

5m35.101655512s ago: executing program 3 (id=539):
r0 = syz_open_dev$usbmon(&(0x7f0000000080), 0x40000000000007, 0x8a87)
ioctl$MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f0000000c40)={0x0, 0xfe72})
ioctl$MON_IOCX_GETX(r0, 0x80089203, &(0x7f0000000a40)={0x0, 0x0})

5m19.975033965s ago: executing program 33 (id=539):
r0 = syz_open_dev$usbmon(&(0x7f0000000080), 0x40000000000007, 0x8a87)
ioctl$MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f0000000c40)={0x0, 0xfe72})
ioctl$MON_IOCX_GETX(r0, 0x80089203, &(0x7f0000000a40)={0x0, 0x0})

8.149168967s ago: executing program 0 (id=1522):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'erspan0\x00', <r5=>0x0})
sendmsg$ETHTOOL_MSG_FEATURES_GET(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)={0x20, r3, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x20}}, 0x20000010)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x105042, 0x189)
rseq(&(0x7f0000000080)={0x0, 0x0, 0x0, 0x562591dcef2c6738}, 0x20, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r7 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r7, &(0x7f0000000100)={&(0x7f0000000000)={0x2, 0x0, @empty}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000400)='\b', 0x1}, {&(0x7f0000000580)="000000070020ac", 0x7}], 0x2}, 0xbb8)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r6, 0x4004f506, &(0x7f00000004c0))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{0x1}, &(0x7f0000001c00), 0x0}, 0x20)
socket$netlink(0x10, 0x3, 0x5)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001f40)=ANY=[@ANYBLOB="1b0000000000008a84a0d7570b5807000000000006000000000000b6476e4148b338fe6dbb33cb62a6f2810d00", @ANYBLOB, @ANYRES32=r5, @ANYRES32], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001dc0)={{0x1}, &(0x7f0000001d40), &(0x7f0000001d80)='%pi6   \x00'}, 0x20)
syz_open_dev$vcsn(&(0x7f0000001e00), 0x100000001, 0x200000)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01002dbd7000fddbdf254f00000008000300", @ANYRES32=r10, @ANYBLOB='@\x00z'], 0x5c}, 0x1, 0x0, 0x0, 0x240040d1}, 0x4040080)

7.917261198s ago: executing program 0 (id=1527):
socket(0x10, 0x803, 0x0)
r0 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x101040)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue1\x00', 0x200000})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x3}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f00000000c0)={0x2, 0x0, 0x40, 0x0, 0x8})
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0x5)
r3 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000340)={'team0\x00', &(0x7f0000001700)=@ethtool_per_queue_op={0x4b, 0x4a}})
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmmsg$inet(r4, &(0x7f0000000640)=[{{&(0x7f0000000000)={0x2, 0x0, @dev}, 0x10, &(0x7f0000000340)=[{&(0x7f0000000080)="120e", 0x2}], 0x1}}, {{&(0x7f0000000040)={0x2, 0x0, @local}, 0x10, &(0x7f0000000480)=[{0x0}, {&(0x7f0000000380)='_', 0x1}], 0x2}}], 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f0000000180)={'syztnl2\x00', &(0x7f0000000c80)={'syztnl0\x00', <r5=>0x0, 0x29, 0x8, 0x9, 0x9, 0x4, @initdev={0xfe, 0x88, '\x00', 0x3, 0x0}, @ipv4={'\x00', '\xff\xff', @remote}, 0x1, 0x8000, 0x8, 0x300}})
sendmsg$inet(r4, &(0x7f0000000e40)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000080)="a844a0db63175395be37ff4d1a86411304db8a78538a1231f3d662a445b877d05c3e6f7a0c0e33020e4c9d9cae810938f8fa4fd9c5237343572a5d9aaa1bf1514ed339e00e6101255b6019ca6d7684801c7fde6433fdf8a9a9a76a11edce719bd6d6627f29c8a9afef02817240f28cf71a04cdd6744266481f04365dc15588e77529822b95dbb5bd293d6ec9b49966b5f27308fd1364682093718adbe8db2c789b7ea777e7d67b2462e9", 0xaa}, {&(0x7f0000001940)="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", 0x1000}, {&(0x7f0000000b80)="9a26cff2eed35c5400688737aec5b3f26c2b348116b79a4bb493b0b4b042c77c0b73904bc2979196bbe6576f01cd1d6f13e8bf594b878c8203adee1f00c4a75cc1b3cdd60e40ef58decb847cc93f97a8c540579d353bc8835b5f7db39684ddec64d1f9eb42b88dc2c4198c5732b7d6112e84839b1bd7a4c55538e97cd81c1fe26fb54881686e5268c8cd80747b6d83b26df88219f385a934e2a92e17902e18d5960b104620456c8e2274c4c2c86d880cc58c27547a1dc74c5e97160b926cf4553324c0e7bbb4", 0xc6}], 0x3, &(0x7f0000000d00)=[@ip_tos_int={{0x14, 0x0, 0x1, 0xdce4}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x3f}}, @ip_ttl={{0x14, 0x0, 0x2, 0x101}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x20}}, @ip_ttl={{0x14, 0x0, 0x2, 0x8}}, @ip_retopts={{0x38, 0x0, 0x7, {[@cipso={0x86, 0x11, 0x1, [{0x6, 0xb, "48b6b0c0c29b37d0c9"}]}, @ssrr={0x89, 0x17, 0xee, [@loopback, @empty, @multicast2, @remote, @local]}]}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x5}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @remote}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @broadcast, @loopback}}}], 0x108}, 0x40)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x22900, 0x0)
pwritev2(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000140)}], 0x1, 0x8, 0x4, 0x8)
openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c7100, 0x0)
sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x30, 0x0, 0x1, 0x70bd2a, 0x25dfdbff, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x100240, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x24}}, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r8, 0x4048ae9b, &(0x7f0000000300)={0x4376ea830d4d549b, 0x0, [0x8000000000000001, 0x8, 0x400000000, 0x4, 0x9, 0x3, 0xfffffffffffffffc, 0x1000800000]})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000ab000/0x18000)=nil, &(0x7f00000001c0)=[@text64={0x40, &(0x7f0000000140)="470f23fc6541fc48b8e7320000000000000f23d80f21f80f23e1f8f30f1edd0f2221c744240200800000ff2c24f30f516797c483fd005b02ea6426470f01cf65666466430f3833af00580000", 0x4c}], 0x1, 0x24, 0x0, 0x0)

7.741582621s ago: executing program 0 (id=1529):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f00000001c0)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x22)
syz_emit_ethernet(0x26c, &(0x7f000001b240)={@random="856b934629fa", @multicast, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "14d61e", 0x236, 0x21, 0x1fe, @dev={0xfe, 0x80, '\x00', 0x1f}, @empty, {[@hopopts={0x2c, 0x7, '\x00', [@hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0x10}}, @hao={0xc9, 0x10, @remote}, @calipso={0x7, 0x18, {0x2, 0x4, 0x5d, 0x0, [0x9, 0x1]}}]}, @hopopts={0x33, 0x5, '\x00', [@padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0x9}, @ra={0x5, 0x2, 0xb}, @hao={0xc9, 0x10, @mcast2}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}]}, @hopopts={0x84, 0x17, '\x00', [@enc_lim={0x4, 0x1, 0x3e}, @generic={0x6, 0x55, "3b399c492a91f832a36a93815bf2903418b36e8ea699b5e37ca62f35a4236a54bae01b2c06a0e3e03905d2e472558b1fd1fd8849e349a2eba7a7e09ec0bdb78dbb521b859b4f6b5265e45194448f520a3a7a3a79e9"}, @padn={0x1, 0x1, [0x0]}, @generic={0x10, 0x60, "feeb3dae0907ee427b56fcc33dbc58a313c4f9641602876d7d7ad7d61e764856a8a0e45a0a14ef66db7a0b8ca64200b59b037382f6f1e035906b0617155ab1e1ed8af7b2df529e64744d652521b704a0a6a1beb7bcf608686990a6d63b832550"}]}], {{0x4e22, 0x4e21, 0x4, 0x1, 0xa, 0x0, 0x0, 0x4, 0x0, "ea8dce", 0x8, "944557"}, "29ca320e277892ffeebe39d493e386d20b41ba7dffc74010c68f8496a8966742e87c939ff6b308f9b64e7f28436c37599b8f8f63d88f8b2adc79ca4ad06e60b5ddaad1763014eed62da49ab87c831f7d42fdd9a4084c4c7bd07a44309e3c047ad3ebdc3cff19154646f4111590c6d6056f96956dd3d272bba70d1a3f83a89f81cc659a22b5bf5315772c2c6bb2b5c8c53a2d1acbb2840ad1789e84c437ed4716f38f50bc45eec09beaa62076d5e88b09bece51f6992ea789db1322efaa3afdf3ee803b9f7f835ed0f88be9fb67557e96ce020ecb7bd14b8eddf60d4b043a"}}}}}}, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r2 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r2, 0xc0184800, &(0x7f0000000100)={0x4, r1})
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x8, 0xfffa}, 0x3a, [0x8000, 0x3ff, 0xf, 0x8, 0x80000001, 0x2, 0x7, 0x7f, 0xa9, 0x4d, 0x6, 0x5f, 0x9, 0x15, 0xffff2d37, 0xff7fff01, 0x7, 0x5, 0x1fd, 0x0, 0x6, 0x0, 0x7, 0x3c5b, 0x1, 0x22, 0xd, 0x1, 0x0, 0xffffffff, 0xe661, 0x0, 0x7, 0x5, 0x8, 0x4c74, 0x10000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x0, 0x1, 0x7, 0x3, 0x3e, 0x20018e, 0xa, 0xfffffeff, 0x0, 0x6, 0x4, 0x8, 0x3ff, 0xfffffff9, 0x0, 0x4, 0x6, 0x4, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8008, 0x5, 0xfffffff3, 0x129432f6, 0xc8, 0x5, 0x1510edcf, 0x2c3, 0x6c7, 0x9, 0x0, 0x3, 0x7, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x66abcbd2, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x2, 0xff, 0x5, 0x1000005, 0x5f2d, 0xd, 0x4e0, 0x381, 0x4, 0xb, 0x4, 0x9, 0x8, 0x44, 0x6, 0x47, 0x8000, 0x1, 0x0, 0xffff, 0x2, 0x4, 0x9, 0x4, 0x3, 0x4000009, 0x6, 0x0, 0x3, 0x1, 0x48c93793, 0x42, 0x3], [0x7, 0x408, 0x3ff, 0x5, 0xffffffff, 0x100, 0x9, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x80, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x303e, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x200, 0x40200, 0xffffffff, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0xf3, 0xa9, 0x20000005, 0x6, 0xac4, 0xbf, 0xfffffffe, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0xffffffff, 0x7, 0x1c, 0x120000, 0x7ff, 0x2009, 0x2, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce4, 0x1ff, 0x2, 0x57, 0x4000005, 0x3, 0x2, 0x10001, 0x4, 0x7fff, 0xffff, 0xa620, 0x1, 0x5, 0x1, 0x2000006, 0x150, 0x1, 0x6, 0x6, 0xffffffff, 0x80000004, 0x5, 0x5, 0xc8, 0x1, 0xfffff002, 0x10000, 0x3, 0x7e, 0x100, 0x9622, 0x8, 0xae, 0x20000008, 0x5, 0x226, 0x2, 0x5, 0x0, 0x30b1d693, 0xa1f, 0xf3f, 0x7, 0x530e, 0x6a, 0x0, 0x4, 0x5, 0x7ff, 0xd7, 0x200, 0xb, 0xfff]}, 0x45c)
ppoll(&(0x7f00000002c0)=[{0xffffffffffffffff, 0x60c2}, {r1, 0x40}, {0xffffffffffffffff, 0x2}, {}, {0xffffffffffffffff, 0x230}], 0x20000000000003ca, 0x0, 0x0, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000002000)=""/102400, 0x19000)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='net/ip_tables_matches\x00')
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000640), r3)
sendmsg$IEEE802154_LLSEC_DEL_KEY(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={0x30, r5, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0xc4}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x4008000}, 0x48004)

7.265246717s ago: executing program 4 (id=1530):
socket$xdp(0x2c, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000006c0)=ANY=[], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000000100001f8ffffff000000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b80", @ANYRES32=r1, @ANYBLOB="08001b"], 0x34}}, 0x4004010)
r5 = socket(0x2, 0x3, 0x6)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x8)
rmdir(&(0x7f00000001c0)='./cgroup/../file0\x00')
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'vcan0\x00', <r6=>0x0})
bind$can_j1939(0xffffffffffffffff, 0x0, 0x0)
sendmsg$can_j1939(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)}}, 0xee)
sendmsg$can_j1939(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000002c0)={0x1d, r6, 0x3, {0x1, 0xf0, 0x3}, 0x1}, 0x18, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x24004000}, 0x20008000)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000001b00)={0x1c, 0x2d, 0x1, 0x70bd26, 0x25dfdbfc, {0x4}, [@typed={0x8, 0xc, 0x0, 0x0, @u32=0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000804)

6.941897295s ago: executing program 5 (id=1531):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0xca000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_io_uring_setup(0x43380, &(0x7f0000000180)={0x0, 0xfbfffffe, 0x200, 0x200, 0x299}, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) (async)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
clock_settime(0x1ed5d7403, &(0x7f0000000180))
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000040)=0x2) (async)
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000040)=0x2)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000880)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

6.088469681s ago: executing program 4 (id=1532):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x1ee6, &(0x7f0000000380)={0x0, 0xfbc6, 0x10100, 0x8000003, 0x35f, 0x0, r1}, &(0x7f00000001c0)=<r3=>0x0, &(0x7f0000000100)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x230}})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x60240)
readv(r5, &(0x7f0000000080)=[{&(0x7f0000002600)=""/46, 0x2e}], 0x1)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000000e00000095"], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00}, 0x94)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r7, 0x6, 0x3, &(0x7f00000001c0)=0x3, 0x4)
bind$inet(r7, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg$inet(r7, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000340)="b9", 0x1}], 0x1}}], 0x1, 0x20008000)
setsockopt$inet_tcp_TLS_TX(r7, 0x6, 0x1, &(0x7f0000000080)=@ccm_128={{0x303}, "f1a0f9fff9e440b4", "881aae83544dfa6412f91b9057e3f415", "9dca43b6", "9ecb592c6ee49fbd"}, 0x28)
ioctl$TIOCMIWAIT(r1, 0x545c, 0x0)
ioctl$BTRFS_IOC_ADD_DEV(r7, 0x5000940a, &(0x7f0000000440)={{r0}, "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"})
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)=ANY=[@ANYRES32, @ANYRES32=r6, @ANYBLOB="05"], 0x10)

5.882984851s ago: executing program 0 (id=1533):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x4)
r3 = userfaultfd(0x1)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r3, 0xc028aa05, &(0x7f0000000180)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00003ab000/0x2000)=nil, 0x400000, 0x2, 0x2})

5.803453756s ago: executing program 6 (id=1534):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_ethernet(0xaa, &(0x7f0000000ac0)=ANY=[@ANYBLOB="9a70b05e7d2caaaaaaaaa8aa86dd606410a600740000fc020000000000000000000000000000fe8000000000000000000000000000aa223427d5c9a46b9fa14172170a013589317d2af31ba55431762f462a5abc3f46494ee91bfca594d52f8c3785143e92da5d2d81edc09f68f122fbf741257bf1319408347a17c89212dfe27a0fc65362487e5afe673f0954f60d9d08b61276ce0b3aa520b5f30a9f52c4aaaf159b7e6b53fc003f8570383ca635fc233e0fd9"], 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000) (fail_nth: 3)

5.71175702s ago: executing program 5 (id=1535):
r0 = open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0)
symlinkat(&(0x7f0000000040)='./file0\x00', r0, &(0x7f0000000380)='./file0\x00')
r1 = syz_io_uring_setup(0x495c, &(0x7f0000000180)={0x0, 0x146a, 0x8000, 0x1, 0x30, 0x0, r0}, &(0x7f0000000200), &(0x7f0000000300))
syz_io_uring_setup(0x5ce, &(0x7f0000000340)={0x0, 0x7734, 0x40, 0x0, 0x354, 0x0, r1}, 0x0, 0x0)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x22102, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = eventfd(0xff7ffff7)
r6 = fcntl$dupfd(r4, 0x0, r3)
ioctl$KVM_IRQFD(r4, 0x4020ae76, &(0x7f0000000280)={r5, 0xffffffff, 0x2, r6})
ioctl$IOMMU_TEST_OP_ACCESS_RW$syz(r2, 0x3ba0, &(0x7f00000003c0)={0x48, 0x8, r6, 0x0, 0x3, 0x63211, 0x2e, &(0x7f0000000240)="c94a0db95bf76d2ad8c0cc44a28f78b108f5b02b423d5250afcf7969b9d82eb1b6e1b34ad19c19fded3511032339", 0x5})
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r7, &(0x7f0000000480)=ANY=[], 0x118)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f0000000980)=@raw={'raw\x00', 0x3c1, 0x3, 0x3f0, 0x0, 0xc8, 0x8, 0x0, 0x5803, 0x320, 0x2e8, 0x2e8, 0x320, 0x2e8, 0x3, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @multicast1}, @mcast1, [], [], 'erspan0\x00', 'geneve1\x00'}, 0x0, 0x190, 0x1c0, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e67262c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x1}}, @common=@inet=@socket3={{0x28}}]}, @common=@unspec=@CONNMARK={0x30}}, {{@uncond, 0x0, 0xf8, 0x160, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x13}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x450)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r7, 0x0)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x04\x00\x00 \x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb\x9a\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w')
setsockopt$inet_tcp_int(r7, 0x6, 0x3, &(0x7f0000000040)=0x1965, 0x4)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r9=>0x0})
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r10=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r2, 0x3ba0, &(0x7f0000000100)={0x48, 0x2, r10, 0x0, <r11=>0x0})
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r12 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000001, 0x31, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r12, 0x40049366, &(0x7f0000000180))
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_REPLACE(r2, 0x3ba0, &(0x7f0000000280)={0x48, 0x15, r11, 0x0, r9})

5.083549556s ago: executing program 4 (id=1536):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="2ca00000", @ANYBLOB="000325bd7000fbdbdf25050000000c00098008000200030000000c0002"], 0x46}}, 0x4004)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newtaction={0xa0, 0x30, 0x51b, 0x0, 0x0, {}, [{0x8c, 0x1, [@m_skbmod={0x5c, 0x1, 0x0, 0x0, {{0xb}, {0x30, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24, 0x2, {{}, 0xe}}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x6}]}, {0x4, 0x14}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x6}}}, @m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000380)=ANY=[@ANYBLOB="180100002e00010000000000fcdbdf250801f2800c00180008ac0f0000000000140001"], 0x118}], 0x1, 0x0, 0x0, 0x1}, 0x0)

4.891381203s ago: executing program 5 (id=1538):
socket$packet(0x11, 0x2, 0x300)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f00000001c0)=0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0xc3afe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000000)={<r5=>0xffffffffffffffff}, 0x2, 0x8}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r4, &(0x7f0000000280)={0x3, 0x40, 0xfa00, {{0xa, 0x4e22, 0x7ff, @empty, 0x1}, {0xa, 0x4e20, 0x1ff, @dev={0xfe, 0x80, '\x00', 0x2f}, 0x9}, r5, 0xb}}, 0x48)
write$RDMA_USER_CM_CMD_DESTROY_ID(r4, &(0x7f0000000380)={0x1, 0x10, 0xfa00, {0x0, r5}}, 0x18)
writev(r0, &(0x7f0000000000)=[{0x0}], 0x1)
shmat(0x0, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x6800)
r6 = syz_open_dev$usbmon(&(0x7f0000000080), 0x40000000000007, 0x8a87)
ioctl$MON_IOCX_MFETCH(r6, 0xc0109207, &(0x7f0000000c40)={0x0, 0xfe72})
ioctl$MON_IOCX_GETX(r6, 0x80089203, &(0x7f0000000a40)={0x0, 0x0})
syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
socket$nl_route(0x10, 0x3, 0x0)

4.890847715s ago: executing program 6 (id=1539):
socket(0x10, 0x803, 0x0)
r0 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x101040)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue1\x00', 0x200000})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x3}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f00000000c0)={0x2, 0x0, 0x40, 0x0, 0x8})
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0x5)
r3 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000340)={'team0\x00', &(0x7f0000001700)=@ethtool_per_queue_op={0x4b, 0x4a}})
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmmsg$inet(r4, &(0x7f0000000640)=[{{&(0x7f0000000000)={0x2, 0x0, @dev}, 0x10, &(0x7f0000000340)=[{&(0x7f0000000080)="120e", 0x2}], 0x1}}, {{&(0x7f0000000040)={0x2, 0x0, @local}, 0x10, &(0x7f0000000480)=[{0x0}, {&(0x7f0000000380)='_', 0x1}], 0x2}}], 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f0000000180)={'syztnl2\x00', &(0x7f0000000c80)={'syztnl0\x00', <r5=>0x0, 0x29, 0x8, 0x9, 0x9, 0x4, @initdev={0xfe, 0x88, '\x00', 0x3, 0x0}, @ipv4={'\x00', '\xff\xff', @remote}, 0x1, 0x8000, 0x8, 0x300}})
sendmsg$inet(r4, &(0x7f0000000e40)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000080)="a844a0db63175395be37ff4d1a86411304db8a78538a1231f3d662a445b877d05c3e6f7a0c0e33020e4c9d9cae810938f8fa4fd9c5237343572a5d9aaa1bf1514ed339e00e6101255b6019ca6d7684801c7fde6433fdf8a9a9a76a11edce719bd6d6627f29c8a9afef02817240f28cf71a04cdd6744266481f04365dc15588e77529822b95dbb5bd293d6ec9b49966b5f27308fd1364682093718adbe8db2c789b7ea777e7d67b2462e9", 0xaa}, {&(0x7f0000001940)="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", 0x1000}, {&(0x7f0000000b80)="9a26cff2eed35c5400688737aec5b3f26c2b348116b79a4bb493b0b4b042c77c0b73904bc2979196bbe6576f01cd1d6f13e8bf594b878c8203adee1f00c4a75cc1b3cdd60e40ef58decb847cc93f97a8c540579d353bc8835b5f7db39684ddec64d1f9eb42b88dc2c4198c5732b7d6112e84839b1bd7a4c55538e97cd81c1fe26fb54881686e5268c8cd80747b6d83b26df88219f385a934e2a92e17902e18d5960b104620456c8e2274c4c2c86d880cc58c27547a1dc74c5e97160b926cf4553324c0e7bbb4", 0xc6}], 0x3, &(0x7f0000000d00)=[@ip_tos_int={{0x14, 0x0, 0x1, 0xdce4}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x3f}}, @ip_ttl={{0x14, 0x0, 0x2, 0x101}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x20}}, @ip_ttl={{0x14, 0x0, 0x2, 0x8}}, @ip_retopts={{0x38, 0x0, 0x7, {[@cipso={0x86, 0x11, 0x1, [{0x6, 0xb, "48b6b0c0c29b37d0c9"}]}, @ssrr={0x89, 0x17, 0xee, [@loopback, @empty, @multicast2, @remote, @local]}]}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x5}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @remote}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @broadcast, @loopback}}}], 0x108}, 0x40)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x22900, 0x0)
pwritev2(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000140)}], 0x1, 0x8, 0x4, 0x8)
openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c7100, 0x0)
sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x30, 0x0, 0x1, 0x70bd2a, 0x25dfdbff, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x100240, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x24}}, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r8, 0x4048ae9b, &(0x7f0000000300)={0x4376ea830d4d549b, 0x0, [0x8000000000000001, 0x8, 0x400000000, 0x4, 0x9, 0x3, 0xfffffffffffffffc, 0x1000800000]})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000ab000/0x18000)=nil, &(0x7f00000001c0)=[@text64={0x40, &(0x7f0000000140)="470f23fc6541fc48b8e7320000000000000f23d80f21f80f23e1f8f30f1edd0f2221c744240200800000ff2c24f30f516797c483fd005b02ea6426470f01cf65666466430f3833af00580000", 0x4c}], 0x1, 0x24, 0x0, 0x0)

4.826180117s ago: executing program 0 (id=1540):
r0 = socket$netlink(0x10, 0x3, 0x15)
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000000)="580000001400192340834b80043f679a10ff3d425f9cc3f4ff7f4e32f61bcdf1e422000000000100804824cabecc4b381eaadc28f23457e792945f64009400050028", 0x42}], 0x1)
prlimit64(0x0, 0x8, &(0x7f0000000140)={0x2, 0x800000088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r2}, 0x18)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_buf(r3, 0x29, 0x22, &(0x7f0000000000), 0x6b)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='jfs\x00', 0x1a0c000, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb3d68000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$nci(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002d00)=ANY=[@ANYBLOB="200000001000010700000000000000000a0000000c0002006e6c3830323131"], 0x20}}, 0x800)
recvmmsg(0xffffffffffffffff, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000001180)=""/4096, 0x1000}, {0x0}], 0x2, &(0x7f00000004c0)=""/193, 0xc1}, 0x7f}, {{&(0x7f00000005c0)=@in, 0x80, &(0x7f0000000700)=[{0x0}, {&(0x7f0000000680)=""/127, 0x7f}], 0x2, &(0x7f0000000740)=""/23, 0x17}, 0xffff}], 0x2, 0x40012042, 0x0)
timer_settime(0x0, 0x236bd4336e4642df, &(0x7f0000000300)={{}, {0x0, 0xe4c}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000600)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r6, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
mount(&(0x7f0000000300)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000012c0)='./file0\x00', &(0x7f0000001300)='gfs2\x00', 0x0, 0x0)

4.735069936s ago: executing program 1 (id=1541):
socket$xdp(0x2c, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000006c0)=ANY=[], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x5}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000000100001f8ffffff000000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b8008000100", @ANYBLOB="08001b"], 0x34}}, 0x4004010)
r4 = socket(0x2, 0x3, 0x6)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
sendto$inet(r4, 0x0, 0x5b, 0x0, &(0x7f0000000600)={0x2, 0x0, @remote}, 0x10)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x8)
rmdir(&(0x7f00000001c0)='./cgroup/../file0\x00')
bind$can_j1939(0xffffffffffffffff, 0x0, 0x0)
sendmsg$can_j1939(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)}}, 0xee)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000001b00)={0x1c, 0x2d, 0x1, 0x70bd26, 0x25dfdbfc, {0x4}, [@typed={0x8, 0xc, 0x0, 0x0, @u32=0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000804)

4.723050354s ago: executing program 4 (id=1542):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETLINK(r0, 0x400454cd, 0x304)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000001540)={0x54, 0x2, 0x6, 0x201, 0x0, 0x0, {0xc}, [@IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x60000}]}]}, 0x54}}, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r3)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000280)='afs_cm_no_server_u\x00', r4}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
io_setup(0x8a, &(0x7f0000000680))
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r5)
socketpair(0x1, 0x4, 0xfffffffd, &(0x7f0000000040))
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})

3.391492592s ago: executing program 1 (id=1543):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
openat$audio(0xffffff9c, 0x0, 0x402, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)
r3 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0)
r4 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_GET_PCI(r4, 0x5393, &(0x7f0000000000))
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r3, 0xc4c85512, &(0x7f0000000280)={{0x6, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0x0, 0x40000000000, 0xffffffffffffffff, 0xffffffefffffffff, 0x0, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfffffeffbfffffff, 0x0, 0x2, 0x0, 0x3, 0x80000000, 0x3, 0x0, 0x0, 0x4, 0x0, 0x6, 0x0, 0x40, 0x0, 0xfffffffffffffffd, 0x100200000, 0xb, 0x6, 0x0, 0x0, 0x0, 0x9, 0x0, 0x10000, 0x1000, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x7, 0x10000, 0x7785, 0x0, 0x4, 0x4, 0x8, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x80000000000, 0x0, 0x4, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x1000000000, 0x0, 0x80000000000000, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x100, 0x81, 0xfffffffffffffffd, 0x20, 0x0, 0x0, 0x2, 0x100000000000, 0x0, 0x3, 0x2, 0x0, 0x7, 0xc0c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffffffeffffc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x80]})
socket$packet(0x11, 0x3, 0x300)
socket$netlink(0x10, 0x3, 0x4)
r5 = socket(0x10, 0x803, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0xfffd}}}]}, 0x38}}, 0x0)
r9 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=@newtfilter={0x8c, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r8, {0x5, 0xfff3}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0x58, 0x2, [@TCA_MATCHALL_ACT={0x54, 0x2, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x6fe2}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0xb380, 0x4, 0x0, 0x4, 0x6}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x10}, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

3.121870049s ago: executing program 5 (id=1544):
r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x75fa, 0xe475, 0x0, 0x0, 0x0)
ioctl$IMADDTIMER(r0, 0x80044940, &(0x7f0000000000))
openat$cuse(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
r4 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000002a00)='./file0\x00', 0x40, 0x1)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000580)=ANY=[@ANYRESHEX=r6, @ANYRES32, @ANYRES16=r2, @ANYRESOCT=r6, @ANYRESDEC=0x0, @ANYRESDEC, @ANYRES64=r5])
read$FUSE(r6, &(0x7f0000006380)={0x2020, 0x0, <r7=>0x0}, 0x2020)
write$FUSE_INIT(r6, &(0x7f0000000100)={0x50, 0x0, r7, {0x7, 0x1f, 0x0, 0x45c0d00c}}, 0x50)
syz_fuse_handle_req(r6, &(0x7f00000083c0)="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", 0x2000, &(0x7f0000000cc0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x18, 0x0, 0x0, {0x800007ff}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
llistxattr(&(0x7f00000006c0)='./file0\x00', 0x0, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r4, 0x7a7, &(0x7f0000000000)=0x10000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, &(0x7f0000000100)={@local})
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
get_mempolicy(0x0, 0x0, 0x2, &(0x7f0000240000/0x1000)=nil, 0x3)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000050000000200000007000000000000", @ANYRES32, @ANYBLOB="40000000008000"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

2.92747953s ago: executing program 6 (id=1545):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff})
r1 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f00000002c0)="58020094", 0x4}], 0x1)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000040)=ANY=[@ANYRES64=r0]) (fail_nth: 3)

2.863323588s ago: executing program 4 (id=1546):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x110e22fff6)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth0_to_hsr\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)=@bridge_getneigh={0x28, 0x1e, 0x3c964e403b131b43, 0x0, 0x0, {}, [@IFLA_MASTER={0x8, 0xa, r3}]}, 0x28}}, 0x0)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)=""/147, 0x93}, {&(0x7f00000003c0)=""/149, 0x95}], 0x2, &(0x7f0000000480)=""/151, 0x97}, 0x7}], 0x1, 0x2, 0x0)
ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000022c000/0x3000)=nil)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r5=>0x0})
r6 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000140)=ANY=[@ANYBLOB="440000001300a7cc4a372eaf541d002007000000", @ANYRES32=r5, @ANYBLOB="00000000100000001c001a80080002802d00ff0008000200", @ANYBLOB="35874207"], 0x44}, 0x1, 0x0, 0x0, 0x50}, 0x0)

2.346677358s ago: executing program 6 (id=1547):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000400)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
creat(0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$igmp(0x2, 0x3, 0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f00000000c0)={'batadv_slave_1\x00', <r5=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000000)={@dev={0xfe, 0x80, '\x00', 0x2b}, 0x40, r5})
r6 = socket(0xa, 0x1, 0x0)
ioctl(r6, 0x8916, &(0x7f0000000000))
ioctl(r6, 0x8936, &(0x7f0000000000))

2.162717855s ago: executing program 5 (id=1548):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$inet6(0xa, 0x3, 0x8000000003c)
openat$mice(0xffffffffffffff9c, 0x0, 0x80882)
syz_usb_connect(0x1, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="1201000009a65d0860040800dee20102030109021b05000000000009040000f678eaf500090584", @ANYBLOB], &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})

1.181910703s ago: executing program 1 (id=1549):
socket$kcm(0x15, 0x5, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
socket$packet(0x11, 0x3, 0x300)
sendto$inet6(r0, 0x0, 0x0, 0x240540c7, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
r1 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0xc0}, &(0x7f00000002c0)=<r2=>0x0, &(0x7f0000000640)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000cc0)={0x0, 0x21c}}, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2f, 0x8, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r1, 0x47bc, 0x20, 0x0, 0x0, 0x0) (fail_nth: 3)

999.332387ms ago: executing program 1 (id=1550):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x422040, 0x0)
r0 = fsopen(&(0x7f00000003c0)='tracefs\x00', 0x1)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
socket$inet6_udp(0xa, 0x2, 0x0)
pipe(&(0x7f00000009c0)={<r3=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r5, 0x29, 0x36, &(0x7f0000000240)=ANY=[@ANYRES8=r2, @ANYRES64=r4], 0x1b0)
setsockopt$inet6_IPV6_HOPOPTS(r5, 0x29, 0x36, 0x0, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000000)={@empty, 0x0, 0x0, 0x0, 0x2, 0x1e}, 0x26)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x1b, &(0x7f0000000180)={@empty, 0x5, 0x0, 0x1, 0x2, 0x0, 0x4}, 0x20)
close_range(r0, 0xffffffffffffffff, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x1ff, 0x6, 0xd000, 0x2000, &(0x7f0000000000/0x2000)=nil})
pipe2$9p(&(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x800)
write$P9_RVERSION(r8, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r9 = dup(r8)
write$FUSE_BMAP(r9, &(0x7f0000000300)={0x18, 0x0, 0x0, {0xfffffffffffffffa}}, 0x18)
write$FUSE_DIRENTPLUS(r9, &(0x7f0000002100)=ANY=[@ANYBLOB="b0000000000000001659ec0889419429aa5db97288b0f8a87ea8e66d9a8b"], 0xb0)
write$FUSE_DIRENTPLUS(r9, &(0x7f0000000140)=ANY=[@ANYBLOB="10"], 0x10)
write$FUSE_DIRENTPLUS(r9, &(0x7f0000000280)=ANY=[@ANYBLOB="a8"], 0xa8)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
write$FUSE_INIT(r9, &(0x7f0000004200)={0x50, 0x0, 0x0, {0x7, 0x21, 0xffffffff, 0xfffffffff12bd390, 0x2, 0x6, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6}}, 0x50)
mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r9}, 0x2c, {[{@posixacl}]}})
ioctl$KVM_NMI(r6, 0xae9a)
ioctl$KVM_NMI(r6, 0xae9a)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x37, 0x7fffffff}]})
getgroups(0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

696.179309ms ago: executing program 6 (id=1551):
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000495"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0xfffffffffffffffa, 0x8002)
socket$inet_mptcp(0x2, 0x1, 0x106)
r3 = fcntl$dupfd(r2, 0x0, r2)
r4 = openat$ttynull(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x3)
ioctl$SG_GET_REQUEST_TABLE(r3, 0x2286, &(0x7f00000018c0))
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r5}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r6)
io_uring_setup(0x194e, &(0x7f0000000a80)={0x0, 0xd3d5, 0x1000, 0x5, 0x2b0})
r7 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r7, 0xaf01, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r7, 0x4004af61, &(0x7f0000000040)=0x1)

666.79835ms ago: executing program 1 (id=1552):
socket$packet(0x11, 0x3, 0x300)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
fanotify_mark(0xffffffffffffffff, 0x1, 0xe, 0xffffffffffffffff, 0x0)
syz_init_net_socket$ax25(0x3, 0x5, 0xcc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x19)
memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r1, 0x8108551b, &(0x7f0000000380)={0x0, 0x0, "5a77bd318786aeb879ca62cdab2a0000000086d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f6853772b21a140efb76cba37ff3111d6847e8b9398a646717af75fc008daefba68e6222103472bc55704cdb737ae996ed831f3b802549db3a8ffff7d34171113d806726615380fe65a6a0a72e1ac2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be500e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef1d7ee686be0fc58e384f93a13f4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe363590d1f600"})
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff001000000800395032303030"], 0x15)
r4 = dup(r3)
write$FUSE_BMAP(r4, &(0x7f00000002c0)={0x18}, 0x18)
write$FUSE_DIRENT(r4, &(0x7f0000000000)=ANY=[@ANYBLOB="58000000000000009fed2788c5532994414b47034801d524faf416638217", @ANYRES32], 0x58)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000002340), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESDEC=r3])
chdir(&(0x7f0000000100)='./file0\x00')
ioctl$USBDEVFS_CLEAR_HALT(r1, 0xc0105502, &(0x7f0000000300)={0x1, 0x1})

325.437197ms ago: executing program 6 (id=1553):
syz_open_procfs$pagemap(0x0, &(0x7f0000000040))
socket$unix(0x1, 0x5, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
socket(0x40000000015, 0x5, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
syz_open_dev$cec(&(0x7f00000000c0), 0xffffffffffffffff, 0x8802)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x8}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff, 0x2}, 0x0, 0x0) (fail_nth: 3)

114.478701ms ago: executing program 4 (id=1554):
bind$inet(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000280)='contention_end\x00', r0}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000280)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
openat$null(0xffffffffffffff9c, 0x0, 0x218041, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x2, 0x3a)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
sendto$inet6(r2, &(0x7f0000003440)="172cd448287c5a6c51", 0x9, 0x20000000, 0x0, 0x0)
write$FUSE_DIRENTPLUS(0xffffffffffffffff, 0x0, 0xb0)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r3, &(0x7f0000000080)={0x5, 0x40, 0xfa00, {{0xa, 0x0, 0x8001, @empty}, {0xa, 0x0, 0x0, @empty}}}, 0x48)
r4 = dup(0xffffffffffffffff)
write$6lowpan_enable(r4, 0x0, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, 0x0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000000000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="18000000041401002dbd7000fedbdf2508000100000000001aff5142c2ccfaa243b64e33180e537ddc68992bb52dbaa54c58bf6f899d53b045eace4b2a5a42998a5329f026885d6ce64c14f7d86ebbecfb6a109cdf966d95384ed5ccf676a8895fc4a835d9abacf3e2eafa5aae0dbbeb428ceed9feead14b412d4302b12b7f1018257c05ccffe873dad80fa1644475604115841314f764ab4d01aba1"], 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0)

89.879261ms ago: executing program 0 (id=1555):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000700)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0)
preadv(r1, &(0x7f00000000c0)=[{&(0x7f0000000240)=""/140, 0x8c}], 0x1, 0x0, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x4)
writev(r3, &(0x7f0000000040)=[{&(0x7f0000019800)="480000001500190d09b6004beafd0000000084476080ffe00600000000590000a2bc5603ca00eb4809ff5bffff00c7e5ed5e000000000000000000000000000000000001000000001c428d7acf82d75561b4eb1ab6c8d013ed94cf83832ef90dc26ae6137900bd9c05b6dea56997625d3da8c5a205b01f8d2b41b72f1f090694addcff63e066fccf2f29e0b569e2fbab7dca260c10e2681e0dd966e89848a45b5a0e39fbf38a9358092e349ef0ba167fc5d7b3ab6181b90ea447fb270f5d950611c05116bdad7d5c04373f0c0e99f9b778b81ec6cbf028fd8439429db3ac197e366bb303d3ce2fcfe1289dc918229d74aa56888999eab19f7628984718607bc44026984131a7d213b725158cebda2bd0ddeea5488a125245eef688007d36a2e449e1282c2518dfa1c6bf39f002862649003784cac33c9c8e21d5f1a37345b755385cfaf9260c52bc472bd336d9275202fd7b087a04ab124a", 0x158}], 0x1)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
prlimit64(r4, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000000800)=""/102392, 0x18ff8)
mq_unlink(0x0)
syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x101002)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
sendmmsg$inet(r2, &(0x7f0000000e80)=[{{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f00000006c0)="0d18687da3e7f33aed145cf8ff2d1e5a18c0d5f9856f4824f41040f6987d0b531da10713ed151bc4867681f28e033aef683334d03864ed30590dd4ea64a20ecbbc1346c9f42510d91eec0632885b7da95ca85f4b1435c5c1e993a85257df5f19bdfc5e038a16e6a8aef907e347081fdb93cee93217e11f19cde423e6138bd1b79ee615527ccaf8049959ac6e32af46d777ccb8c26ca925f69590df13a81aee3213e80ba5cacf1f930b3cc49093d11594ef13325790b55efbdc2dd99ed1c3c609a49cc151870a", 0xc6}], 0x1}}, {{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f0000001800)="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", 0x221}], 0x1}}], 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
r6 = socket(0x10, 0x3, 0x0)
r7 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'ip6gretap0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=@newqdisc={0x68, 0x24, 0xf0b, 0x4, 0x200, {0x60, 0x0, 0x0, r8, {0x0, 0x8}, {0xffff, 0xffff}, {0x8}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x3c, 0x2, [@TCA_FQ_PLIMIT={0x8, 0x1, 0x401}, @TCA_FQ_QUANTUM={0x8, 0x3, 0x8001}, @TCA_FQ_ORPHAN_MASK={0x8, 0xa, 0x7}, @TCA_FQ_FLOW_PLIMIT={0x8, 0x2, 0xffffff81}, @TCA_FQ_FLOW_REFILL_DELAY={0x8, 0x9, 0x9}, @TCA_FQ_FLOW_REFILL_DELAY={0x8, 0x9, 0x36a}, @TCA_FQ_PLIMIT={0x8, 0x1, 0x8}]}}]}, 0x68}}, 0x40)

88.130829ms ago: executing program 5 (id=1556):
socket$packet(0x11, 0x2, 0x300)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f00000001c0)=0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0xc3afe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000000)={<r5=>0xffffffffffffffff}, 0x2, 0x8}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r4, &(0x7f0000000280)={0x3, 0x40, 0xfa00, {{0xa, 0x4e22, 0x7ff, @empty, 0x1}, {0xa, 0x4e20, 0x1ff, @dev={0xfe, 0x80, '\x00', 0x2f}, 0x9}, r5, 0xb}}, 0x48)
write$RDMA_USER_CM_CMD_DESTROY_ID(r4, &(0x7f0000000380)={0x1, 0x10, 0xfa00, {0x0, r5}}, 0x18)
writev(r0, &(0x7f0000000000)=[{0x0}], 0x1)
shmat(0x0, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x6800)
r6 = syz_open_dev$usbmon(&(0x7f0000000080), 0x40000000000007, 0x8a87)
ioctl$MON_IOCX_MFETCH(r6, 0xc0109207, &(0x7f0000000c40)={0x0, 0xfe72})
ioctl$MON_IOCX_GETX(r6, 0x80089203, &(0x7f0000000a40)={0x0, 0x0})
syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
socket$nl_route(0x10, 0x3, 0x0)

0s ago: executing program 1 (id=1557):
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x100100, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(r0, 0xc0045009, &(0x7f00000000c0)=0x80)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='rdma.current\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000000c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000100)=0x3)
syz_usb_connect(0x0, 0x24, &(0x7f0000000380)=ANY=[@ANYRES32], 0x0)
r3 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
ioctl$I2C_RDWR(r3, 0x707, &(0x7f0000000040)={&(0x7f0000000480)})

kernel console output (not intermixed with test programs):

liver_tap+0x1ae/0xd30
[  426.088318][T10607]  genl_rcv+0x28/0x40
[  426.088335][T10607]  netlink_unicast+0x58d/0x850
[  426.088357][T10607]  ? __pfx_netlink_unicast+0x10/0x10
[  426.088372][T10607]  ? __build_skb_around+0x278/0x3b0
[  426.088398][T10607]  netlink_sendmsg+0x8d1/0xdd0
[  426.088421][T10607]  ? __pfx_netlink_sendmsg+0x10/0x10
[  426.088449][T10607]  ____sys_sendmsg+0xa98/0xc70
[  426.088469][T10607]  ? copy_msghdr_from_user+0x10a/0x160
[  426.088494][T10607]  ? __pfx_____sys_sendmsg+0x10/0x10
[  426.088519][T10607]  ? __pfx_futex_wake_mark+0x10/0x10
[  426.088543][T10607]  ___sys_sendmsg+0x134/0x1d0
[  426.088569][T10607]  ? __pfx____sys_sendmsg+0x10/0x10
[  426.088591][T10607]  ? __lock_acquire+0x622/0x1c90
[  426.088650][T10607]  __sys_sendmsg+0x16d/0x220
[  426.088675][T10607]  ? __pfx___sys_sendmsg+0x10/0x10
[  426.088699][T10607]  ? __x64_sys_futex+0x1e0/0x4c0
[  426.088747][T10607]  do_syscall_64+0xcd/0x4c0
[  426.088778][T10607]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.088797][T10607] RIP: 0033:0x7f302f18e929
[  426.088813][T10607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  426.088830][T10607] RSP: 002b:00007f3030049038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  426.088850][T10607] RAX: ffffffffffffffda RBX: 00007f302f3b5fa0 RCX: 00007f302f18e929
[  426.088862][T10607] RDX: 0000000000000084 RSI: 0000200000000100 RDI: 0000000000000008
[  426.088874][T10607] RBP: 00007f302f210b39 R08: 0000000000000000 R09: 0000000000000000
[  426.088884][T10607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  426.088895][T10607] R13: 0000000000000000 R14: 00007f302f3b5fa0 R15: 00007ffee43e9048
[  426.088920][T10607]  </TASK>
[  426.859833][T10612] netlink: 'syz.0.1150': attribute type 1 has an invalid length.
[  426.920246][T10612] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1150'.
[  429.911396][   T30] audit: type=1326 audit(1752221474.367:1933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10647 comm="syz.4.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  430.078296][   T30] audit: type=1326 audit(1752221474.367:1934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10647 comm="syz.4.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  430.128677][   T30] audit: type=1326 audit(1752221474.377:1935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10647 comm="syz.4.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  430.153455][   T30] audit: type=1326 audit(1752221474.387:1936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10647 comm="syz.4.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  430.176925][    C1] vkms_vblank_simulate: vblank timer overrun
[  430.185924][   T30] audit: type=1326 audit(1752221474.387:1937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10647 comm="syz.4.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  430.209598][    C1] vkms_vblank_simulate: vblank timer overrun
[  430.219983][   T30] audit: type=1326 audit(1752221474.397:1938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10647 comm="syz.4.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  430.243469][    C1] vkms_vblank_simulate: vblank timer overrun
[  430.545659][T10659] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1161'.
[  430.933683][   T30] audit: type=1326 audit(1752221474.407:1939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10647 comm="syz.4.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  431.204311][   T30] audit: type=1326 audit(1752221474.407:1940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10647 comm="syz.4.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  431.263878][T10666] Lens A: =================  START STATUS  =================
[  431.274224][T10666] Lens A: Focus, Absolute: 0
[  431.284358][   T30] audit: type=1326 audit(1752221474.417:1941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10647 comm="syz.4.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  431.320298][T10666] Lens A: ==================  END STATUS  ==================
[  431.400956][   T30] audit: type=1326 audit(1752221474.417:1942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10647 comm="syz.4.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  432.102056][T10673] netlink: 'syz.4.1165': attribute type 1 has an invalid length.
[  432.145222][T10673] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1165'.
[  432.443594][T10684] netlink: 76 bytes leftover after parsing attributes in process `syz.5.1169'.
[  433.290531][T10684] netlink: 4400 bytes leftover after parsing attributes in process `syz.5.1169'.
[  433.331610][T10684] sysfs: cannot create duplicate filename '/class/ieee80211/Ç`]Š•Iöq¯!¾>Ýsó³Îú*Š®!)\Ç+`²'
[  433.380085][T10684] CPU: 0 UID: 0 PID: 10684 Comm: syz.5.1169 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  433.380117][T10684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  433.380129][T10684] Call Trace:
[  433.380136][T10684]  <TASK>
[  433.380149][T10684]  dump_stack_lvl+0x16c/0x1f0
[  433.380182][T10684]  sysfs_warn_dup+0x7f/0xa0
[  433.380209][T10684]  sysfs_do_create_link_sd+0x124/0x140
[  433.380239][T10684]  sysfs_create_link+0x61/0xc0
[  433.380266][T10684]  device_add+0x62c/0x1a70
[  433.380293][T10684]  ? __pfx_device_add+0x10/0x10
[  433.380309][T10684]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  433.380338][T10684]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  433.380373][T10684]  wiphy_register+0x1c9c/0x2850
[  433.380393][T10684]  ? netdev_run_todo+0x864/0x1320
[  433.380423][T10684]  ? __dev_printk+0x270/0x270
[  433.380451][T10684]  ? __pfx_wiphy_register+0x10/0x10
[  433.380485][T10684]  ieee80211_register_hw+0x24ac/0x4140
[  433.380514][T10684]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  433.380536][T10684]  ? find_held_lock+0x2b/0x80
[  433.380559][T10684]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  433.380579][T10684]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  433.380597][T10684]  ? __hrtimer_setup+0x176/0x280
[  433.380620][T10684]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  433.380657][T10684]  ? trace_kmalloc+0x2b/0xd0
[  433.380683][T10684]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  433.380709][T10684]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  433.380731][T10684]  ? hwsim_new_radio_nl+0xa0e/0x12c0
[  433.380756][T10684]  ? __asan_memcpy+0x3c/0x60
[  433.380781][T10684]  hwsim_new_radio_nl+0xb51/0x12c0
[  433.380809][T10684]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  433.380842][T10684]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  433.380864][T10684]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  433.380891][T10684]  genl_family_rcv_msg_doit+0x206/0x2f0
[  433.380914][T10684]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  433.380944][T10684]  ? bpf_lsm_capable+0x9/0x10
[  433.380963][T10684]  ? security_capable+0x7e/0x260
[  433.380985][T10684]  ? ns_capable+0xd7/0x110
[  433.381010][T10684]  genl_rcv_msg+0x55c/0x800
[  433.381033][T10684]  ? __pfx_genl_rcv_msg+0x10/0x10
[  433.381054][T10684]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  433.381088][T10684]  netlink_rcv_skb+0x155/0x420
[  433.381106][T10684]  ? __pfx_genl_rcv_msg+0x10/0x10
[  433.381127][T10684]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  433.381155][T10684]  ? netlink_deliver_tap+0x1ae/0xd30
[  433.381186][T10684]  genl_rcv+0x28/0x40
[  433.381202][T10684]  netlink_unicast+0x58d/0x850
[  433.381223][T10684]  ? __pfx_netlink_unicast+0x10/0x10
[  433.381237][T10684]  ? __build_skb_around+0x278/0x3b0
[  433.381265][T10684]  netlink_sendmsg+0x8d1/0xdd0
[  433.381287][T10684]  ? __pfx_netlink_sendmsg+0x10/0x10
[  433.381315][T10684]  ____sys_sendmsg+0xa98/0xc70
[  433.381342][T10684]  ? copy_msghdr_from_user+0x10a/0x160
[  433.381366][T10684]  ? __pfx_____sys_sendmsg+0x10/0x10
[  433.381391][T10684]  ? __pfx_futex_wake_mark+0x10/0x10
[  433.381417][T10684]  ___sys_sendmsg+0x134/0x1d0
[  433.381445][T10684]  ? __pfx____sys_sendmsg+0x10/0x10
[  433.381468][T10684]  ? __lock_acquire+0x622/0x1c90
[  433.381523][T10684]  __sys_sendmsg+0x16d/0x220
[  433.381548][T10684]  ? __pfx___sys_sendmsg+0x10/0x10
[  433.381572][T10684]  ? __x64_sys_futex+0x1e0/0x4c0
[  433.381615][T10684]  do_syscall_64+0xcd/0x4c0
[  433.381644][T10684]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  433.381662][T10684] RIP: 0033:0x7f060078e929
[  433.381677][T10684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  433.381695][T10684] RSP: 002b:00007f0601694038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  433.381712][T10684] RAX: ffffffffffffffda RBX: 00007f06009b5fa0 RCX: 00007f060078e929
[  433.381724][T10684] RDX: 0000000000000084 RSI: 0000200000000100 RDI: 0000000000000009
[  433.381734][T10684] RBP: 00007f0600810b39 R08: 0000000000000000 R09: 0000000000000000
[  433.381744][T10684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  433.381754][T10684] R13: 0000000000000000 R14: 00007f06009b5fa0 R15: 00007ffde5e96578
[  433.381777][T10684]  </TASK>
[  436.221511][T10722] netlink: 76 bytes leftover after parsing attributes in process `syz.5.1178'.
[  436.417722][T10722] netlink: 4400 bytes leftover after parsing attributes in process `syz.5.1178'.
[  436.452135][T10722] sysfs: cannot create duplicate filename '/class/ieee80211/Ç`]Š•Iöq¯!¾>Ýsó³Îú*Š®!)\Ç+`²'
[  436.905870][T10722] CPU: 0 UID: 0 PID: 10722 Comm: syz.5.1178 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  436.905902][T10722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  436.905914][T10722] Call Trace:
[  436.905921][T10722]  <TASK>
[  436.905929][T10722]  dump_stack_lvl+0x16c/0x1f0
[  436.905959][T10722]  sysfs_warn_dup+0x7f/0xa0
[  436.905988][T10722]  sysfs_do_create_link_sd+0x124/0x140
[  436.906015][T10722]  sysfs_create_link+0x61/0xc0
[  436.906041][T10722]  device_add+0x62c/0x1a70
[  436.906062][T10722]  ? __pfx_device_add+0x10/0x10
[  436.906078][T10722]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  436.906102][T10722]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  436.906132][T10722]  wiphy_register+0x1c9c/0x2850
[  436.906151][T10722]  ? netdev_run_todo+0x864/0x1320
[  436.906177][T10722]  ? __dev_printk+0x270/0x270
[  436.906202][T10722]  ? __pfx_wiphy_register+0x10/0x10
[  436.906231][T10722]  ieee80211_register_hw+0x24ac/0x4140
[  436.906257][T10722]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  436.906277][T10722]  ? find_held_lock+0x2b/0x80
[  436.906298][T10722]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  436.906325][T10722]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  436.906343][T10722]  ? __hrtimer_setup+0x176/0x280
[  436.906364][T10722]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  436.906398][T10722]  ? trace_kmalloc+0x2b/0xd0
[  436.906420][T10722]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  436.906443][T10722]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  436.906465][T10722]  ? hwsim_new_radio_nl+0xa0e/0x12c0
[  436.906486][T10722]  ? __asan_memcpy+0x3c/0x60
[  436.906510][T10722]  hwsim_new_radio_nl+0xb51/0x12c0
[  436.906535][T10722]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  436.906564][T10722]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  436.906585][T10722]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  436.906611][T10722]  genl_family_rcv_msg_doit+0x206/0x2f0
[  436.906632][T10722]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  436.906660][T10722]  ? bpf_lsm_capable+0x9/0x10
[  436.906675][T10722]  ? security_capable+0x7e/0x260
[  436.906695][T10722]  ? ns_capable+0xd7/0x110
[  436.906720][T10722]  genl_rcv_msg+0x55c/0x800
[  436.906744][T10722]  ? __pfx_genl_rcv_msg+0x10/0x10
[  436.906765][T10722]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  436.906800][T10722]  netlink_rcv_skb+0x155/0x420
[  436.906816][T10722]  ? __pfx_genl_rcv_msg+0x10/0x10
[  436.906838][T10722]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  436.906867][T10722]  ? netlink_deliver_tap+0x1ae/0xd30
[  436.906898][T10722]  genl_rcv+0x28/0x40
[  436.906915][T10722]  netlink_unicast+0x58d/0x850
[  436.906936][T10722]  ? __pfx_netlink_unicast+0x10/0x10
[  436.906951][T10722]  ? __build_skb_around+0x278/0x3b0
[  436.906978][T10722]  netlink_sendmsg+0x8d1/0xdd0
[  436.907000][T10722]  ? __pfx_netlink_sendmsg+0x10/0x10
[  436.907029][T10722]  ____sys_sendmsg+0xa98/0xc70
[  436.907047][T10722]  ? copy_msghdr_from_user+0x10a/0x160
[  436.907070][T10722]  ? __pfx_____sys_sendmsg+0x10/0x10
[  436.907092][T10722]  ? __pfx_futex_wake_mark+0x10/0x10
[  436.907116][T10722]  ___sys_sendmsg+0x134/0x1d0
[  436.907139][T10722]  ? __pfx____sys_sendmsg+0x10/0x10
[  436.907158][T10722]  ? __lock_acquire+0x622/0x1c90
[  436.907210][T10722]  __sys_sendmsg+0x16d/0x220
[  436.907235][T10722]  ? __pfx___sys_sendmsg+0x10/0x10
[  436.907258][T10722]  ? __x64_sys_futex+0x1e0/0x4c0
[  436.907325][T10722]  do_syscall_64+0xcd/0x4c0
[  436.907353][T10722]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  436.907373][T10722] RIP: 0033:0x7f060078e929
[  436.907388][T10722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  436.907403][T10722] RSP: 002b:00007f0601694038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  436.907416][T10722] RAX: ffffffffffffffda RBX: 00007f06009b5fa0 RCX: 00007f060078e929
[  436.907424][T10722] RDX: 0000000000000084 RSI: 0000200000000100 RDI: 0000000000000009
[  436.907431][T10722] RBP: 00007f0600810b39 R08: 0000000000000000 R09: 0000000000000000
[  436.907438][T10722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  436.907445][T10722] R13: 0000000000000000 R14: 00007f06009b5fa0 R15: 00007ffde5e96578
[  436.907460][T10722]  </TASK>
[  438.019898][ T5968] usb 2-1: new low-speed USB device number 23 using dummy_hcd
[  438.211317][ T5968] usb 2-1: config index 0 descriptor too short (expected 1307, got 27)
[  439.167763][ T5968] usb 2-1: config 0 has an invalid interface number: 0 but max is -1
[  439.487330][   T30] kauditd_printk_skb: 40 callbacks suppressed
[  439.487358][   T30] audit: type=1400 audit(1752221483.657:1983): avc:  denied  { name_connect } for  pid=10743 comm="syz.6.1186" dest=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1
[  439.566901][ T5968] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 0
[  439.601022][ T5968] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  439.615555][ T5968] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 246
[  439.617677][   T30] audit: type=1400 audit(1752221484.087:1984): avc:  denied  { write } for  pid=10743 comm="syz.6.1186" name="snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  439.631328][ T5968] usb 2-1: string descriptor 0 read error: -22
[  439.669790][ T5968] usb 2-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  439.678936][ T5968] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  439.690108][ T5968] usb 2-1: config 0 descriptor??
[  439.701988][ T5968] hub 2-1:0.0: bad descriptor, ignoring hub
[  439.709702][ T5968] hub 2-1:0.0: probe with driver hub failed with error -5
[  439.767187][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  439.779120][   T30] audit: type=1400 audit(1752221484.097:1985): avc:  denied  { open } for  pid=10743 comm="syz.6.1186" path="/dev/snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  441.030157][   T78] usb 2-1: USB disconnect, device number 23
[  441.269898][   T30] audit: type=1400 audit(1752221485.797:1986): avc:  denied  { ioctl } for  pid=10756 comm="syz.4.1190" path="socket:[30127]" dev="sockfs" ino=30127 ioctlcmd=0x894c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  441.404957][   T30] audit: type=1400 audit(1752221485.817:1987): avc:  denied  { getopt } for  pid=10756 comm="syz.4.1190" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  441.460274][T10765] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1194'.
[  441.473317][T10765] binder: BINDER_SET_CONTEXT_MGR already set
[  441.479389][T10765] binder: 10760:10765 ioctl 4018620d 2000000002c0 returned -16
[  441.670296][T10765] netlink: 4400 bytes leftover after parsing attributes in process `syz.4.1194'.
[  441.859702][   T30] audit: type=1400 audit(1752221485.987:1988): avc:  denied  { create } for  pid=10761 comm="syz.6.1192" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  441.900213][T10765] sysfs: cannot create duplicate filename '/class/ieee80211/Ç`]Š•Iöq¯!¾>Ýsó³Îú*Š®!)\Ç+`²'
[  441.949397][   T30] audit: type=1400 audit(1752221486.487:1989): avc:  denied  { unmount } for  pid=6194 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  441.959754][T10765] CPU: 1 UID: 0 PID: 10765 Comm: syz.4.1194 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  441.959785][T10765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  441.959796][T10765] Call Trace:
[  441.959802][T10765]  <TASK>
[  441.959809][T10765]  dump_stack_lvl+0x16c/0x1f0
[  441.959838][T10765]  sysfs_warn_dup+0x7f/0xa0
[  441.959862][T10765]  sysfs_do_create_link_sd+0x124/0x140
[  441.959887][T10765]  sysfs_create_link+0x61/0xc0
[  441.959912][T10765]  device_add+0x62c/0x1a70
[  441.959931][T10765]  ? __pfx_device_add+0x10/0x10
[  441.959944][T10765]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  441.959965][T10765]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  441.959993][T10765]  wiphy_register+0x1c9c/0x2850
[  441.960010][T10765]  ? netdev_run_todo+0x864/0x1320
[  441.960034][T10765]  ? __dev_printk+0x270/0x270
[  441.960057][T10765]  ? __pfx_wiphy_register+0x10/0x10
[  441.960087][T10765]  ieee80211_register_hw+0x24ac/0x4140
[  441.960116][T10765]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  441.960135][T10765]  ? find_held_lock+0x2b/0x80
[  441.960156][T10765]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  441.960175][T10765]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  441.960190][T10765]  ? __hrtimer_setup+0x176/0x280
[  441.960211][T10765]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  441.960252][T10765]  ? trace_kmalloc+0x2b/0xd0
[  441.960273][T10765]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  441.960300][T10765]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  441.960322][T10765]  ? hwsim_new_radio_nl+0xa0e/0x12c0
[  441.960345][T10765]  ? __asan_memcpy+0x3c/0x60
[  441.960369][T10765]  hwsim_new_radio_nl+0xb51/0x12c0
[  441.960395][T10765]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  441.960428][T10765]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  441.960449][T10765]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  441.960473][T10765]  genl_family_rcv_msg_doit+0x206/0x2f0
[  441.960493][T10765]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  441.960519][T10765]  ? bpf_lsm_capable+0x9/0x10
[  441.960535][T10765]  ? security_capable+0x7e/0x260
[  441.960554][T10765]  ? ns_capable+0xd7/0x110
[  441.960575][T10765]  genl_rcv_msg+0x55c/0x800
[  441.960596][T10765]  ? __pfx_genl_rcv_msg+0x10/0x10
[  441.960613][T10765]  ? irqentry_exit+0x3b/0x90
[  441.960633][T10765]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  441.960662][T10765]  netlink_rcv_skb+0x155/0x420
[  441.960677][T10765]  ? __pfx_genl_rcv_msg+0x10/0x10
[  441.960696][T10765]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  441.960729][T10765]  genl_rcv+0x28/0x40
[  441.960743][T10765]  netlink_unicast+0x58d/0x850
[  441.960761][T10765]  ? __pfx_netlink_unicast+0x10/0x10
[  441.960774][T10765]  ? __build_skb_around+0x278/0x3b0
[  441.960798][T10765]  netlink_sendmsg+0x8d1/0xdd0
[  441.960818][T10765]  ? __pfx_netlink_sendmsg+0x10/0x10
[  441.960842][T10765]  ____sys_sendmsg+0xa98/0xc70
[  441.960859][T10765]  ? copy_msghdr_from_user+0x10a/0x160
[  441.960880][T10765]  ? __pfx_____sys_sendmsg+0x10/0x10
[  441.960903][T10765]  ? __lock_acquire+0xb8a/0x1c90
[  441.960921][T10765]  ___sys_sendmsg+0x134/0x1d0
[  441.960943][T10765]  ? __pfx____sys_sendmsg+0x10/0x10
[  441.960961][T10765]  ? __lock_acquire+0x622/0x1c90
[  441.961006][T10765]  __sys_sendmsg+0x16d/0x220
[  441.961027][T10765]  ? __pfx___sys_sendmsg+0x10/0x10
[  441.961045][T10765]  ? __pfx___schedule+0x10/0x10
[  441.961064][T10765]  ? __x64_sys_futex+0x1e0/0x4c0
[  441.961093][T10765]  ? xfd_validate_state+0x61/0x180
[  441.961123][T10765]  do_syscall_64+0xcd/0x4c0
[  441.961147][T10765]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.961164][T10765] RIP: 0033:0x7f83fd58e929
[  441.961177][T10765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  441.961192][T10765] RSP: 002b:00007f83fe48a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  441.961209][T10765] RAX: ffffffffffffffda RBX: 00007f83fd7b5fa0 RCX: 00007f83fd58e929
[  441.961219][T10765] RDX: 0000000000000084 RSI: 0000200000000100 RDI: 0000000000000009
[  441.961229][T10765] RBP: 00007f83fd610b39 R08: 0000000000000000 R09: 0000000000000000
[  441.961246][T10765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  441.961255][T10765] R13: 0000000000000000 R14: 00007f83fd7b5fa0 R15: 00007ffc0d541f98
[  441.961278][T10765]  </TASK>
[  442.700939][   T30] audit: type=1326 audit(1752221487.237:1990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10783 comm="syz.5.1198" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f060078e929 code=0x0
[  443.119026][T10785] netlink: zone id is out of range
[  443.128223][T10785] netlink: zone id is out of range
[  443.143626][T10785] netlink: zone id is out of range
[  443.148837][T10785] netlink: zone id is out of range
[  443.170480][T10785] netlink: zone id is out of range
[  443.178110][T10785] netlink: del zone limit has 4 unknown bytes
[  443.563049][T10798] fuse: Unknown parameter '0x0000000000000008ÿÿÿÿ'
[  445.629033][T10805] xt_connbytes: Forcing CT accounting to be enabled
[  445.688295][T10812] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1206'.
[  445.779074][T10805] xt_NFQUEUE: number of total queues is 0
[  445.783375][T10812] netlink: 4400 bytes leftover after parsing attributes in process `syz.4.1206'.
[  445.826803][T10812] sysfs: cannot create duplicate filename '/class/ieee80211/Ç`]Š•Iöq¯!¾>Ýsó³Îú*Š®!)\Ç+`²'
[  445.883233][T10812] CPU: 0 UID: 0 PID: 10812 Comm: syz.4.1206 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  445.883265][T10812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  445.883279][T10812] Call Trace:
[  445.883287][T10812]  <TASK>
[  445.883296][T10812]  dump_stack_lvl+0x16c/0x1f0
[  445.883328][T10812]  sysfs_warn_dup+0x7f/0xa0
[  445.883355][T10812]  sysfs_do_create_link_sd+0x124/0x140
[  445.883389][T10812]  sysfs_create_link+0x61/0xc0
[  445.883417][T10812]  device_add+0x62c/0x1a70
[  445.883439][T10812]  ? __pfx_device_add+0x10/0x10
[  445.883457][T10812]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  445.883487][T10812]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  445.883523][T10812]  wiphy_register+0x1c9c/0x2850
[  445.883543][T10812]  ? netdev_run_todo+0x864/0x1320
[  445.883571][T10812]  ? __dev_printk+0x270/0x270
[  445.883600][T10812]  ? __pfx_wiphy_register+0x10/0x10
[  445.883636][T10812]  ieee80211_register_hw+0x24ac/0x4140
[  445.883667][T10812]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  445.883691][T10812]  ? find_held_lock+0x2b/0x80
[  445.883717][T10812]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  445.883739][T10812]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  445.883759][T10812]  ? __hrtimer_setup+0x176/0x280
[  445.883783][T10812]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  445.883823][T10812]  ? trace_kmalloc+0x2b/0xd0
[  445.883851][T10812]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  445.883878][T10812]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  445.883902][T10812]  ? hwsim_new_radio_nl+0xa0e/0x12c0
[  445.883928][T10812]  ? __asan_memcpy+0x3c/0x60
[  445.883954][T10812]  hwsim_new_radio_nl+0xb51/0x12c0
[  445.883983][T10812]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  445.884017][T10812]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  445.884041][T10812]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  445.884069][T10812]  genl_family_rcv_msg_doit+0x206/0x2f0
[  445.884093][T10812]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  445.884124][T10812]  ? bpf_lsm_capable+0x9/0x10
[  445.884144][T10812]  ? security_capable+0x7e/0x260
[  445.884167][T10812]  ? ns_capable+0xd7/0x110
[  445.884193][T10812]  genl_rcv_msg+0x55c/0x800
[  445.884218][T10812]  ? __pfx_genl_rcv_msg+0x10/0x10
[  445.884238][T10812]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  445.884274][T10812]  netlink_rcv_skb+0x155/0x420
[  445.884292][T10812]  ? __pfx_genl_rcv_msg+0x10/0x10
[  445.884314][T10812]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  445.884344][T10812]  ? netlink_deliver_tap+0x1ae/0xd30
[  445.884378][T10812]  genl_rcv+0x28/0x40
[  445.884395][T10812]  netlink_unicast+0x58d/0x850
[  445.884418][T10812]  ? __pfx_netlink_unicast+0x10/0x10
[  445.884434][T10812]  ? __build_skb_around+0x278/0x3b0
[  445.884462][T10812]  netlink_sendmsg+0x8d1/0xdd0
[  445.884491][T10812]  ? __pfx_netlink_sendmsg+0x10/0x10
[  445.884521][T10812]  ____sys_sendmsg+0xa98/0xc70
[  445.884541][T10812]  ? copy_msghdr_from_user+0x10a/0x160
[  445.884566][T10812]  ? __pfx_____sys_sendmsg+0x10/0x10
[  445.884592][T10812]  ? __pfx_futex_wake_mark+0x10/0x10
[  445.884617][T10812]  ___sys_sendmsg+0x134/0x1d0
[  445.884643][T10812]  ? __pfx____sys_sendmsg+0x10/0x10
[  445.884667][T10812]  ? __lock_acquire+0x622/0x1c90
[  445.884722][T10812]  __sys_sendmsg+0x16d/0x220
[  445.884748][T10812]  ? __pfx___sys_sendmsg+0x10/0x10
[  445.884774][T10812]  ? __x64_sys_futex+0x1e0/0x4c0
[  445.884819][T10812]  do_syscall_64+0xcd/0x4c0
[  445.884850][T10812]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  445.884869][T10812] RIP: 0033:0x7f83fd58e929
[  445.884885][T10812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  445.884903][T10812] RSP: 002b:00007f83fe48a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  445.884921][T10812] RAX: ffffffffffffffda RBX: 00007f83fd7b5fa0 RCX: 00007f83fd58e929
[  445.884933][T10812] RDX: 0000000000000084 RSI: 0000200000000100 RDI: 0000000000000008
[  445.884945][T10812] RBP: 00007f83fd610b39 R08: 0000000000000000 R09: 0000000000000000
[  445.884956][T10812] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  445.884967][T10812] R13: 0000000000000000 R14: 00007f83fd7b5fa0 R15: 00007ffc0d541f98
[  445.884995][T10812]  </TASK>
[  446.719696][ T5961] usb 7-1: new low-speed USB device number 9 using dummy_hcd
[  446.901389][ T5961] usb 7-1: config index 0 descriptor too short (expected 1307, got 27)
[  447.029876][ T5961] usb 7-1: config 0 has an invalid interface number: 0 but max is -1
[  447.143677][ T5961] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 0
[  447.171322][ T5961] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  447.186242][ T5961] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 246
[  447.320074][ T5961] usb 7-1: string descriptor 0 read error: -22
[  447.402097][ T5961] usb 7-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  447.555783][ T5961] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  447.654953][ T5961] usb 7-1: config 0 descriptor??
[  447.678887][ T5961] hub 7-1:0.0: bad descriptor, ignoring hub
[  447.704505][ T5961] hub 7-1:0.0: probe with driver hub failed with error -5
[  447.779053][ T1837] usb 5-1: new low-speed USB device number 31 using dummy_hcd
[  447.827470][T10833] input: syz0 as /devices/virtual/input/input27
[  448.590753][T10834] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1212'.
[  448.667104][ T1837] usb 5-1: config index 0 descriptor too short (expected 1307, got 27)
[  448.865842][ T1837] usb 5-1: config 0 has an invalid interface number: 0 but max is -1
[  448.876421][ T1837] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 0
[  448.912348][ T1837] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  448.942365][ T1837] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  448.969415][ T1837] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  448.979924][  T881] usb 7-1: USB disconnect, device number 9
[  449.104365][ T1837] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  449.121835][ T1837] usb 5-1: string descriptor 0 read error: -22
[  449.129397][ T1837] usb 5-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  449.606088][   T78] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  449.639973][ T1837] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  449.715270][ T1837] usb 5-1: config 0 descriptor??
[  449.796343][ T1837] hub 5-1:0.0: bad descriptor, ignoring hub
[  449.821038][   T78] usb 6-1: too many configurations: 14, using maximum allowed: 8
[  449.940585][ T1837] hub 5-1:0.0: probe with driver hub failed with error -5
[  450.051821][   T78] usb 6-1: config index 0 descriptor too short (expected 65375, got 72)
[  450.218417][ T1837] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input28
[  450.427628][   T78] usb 6-1: config index 1 descriptor too short (expected 65375, got 72)
[  450.546073][   T78] usb 6-1: config index 2 descriptor too short (expected 65375, got 72)
[  450.585434][   T78] usb 6-1: config index 3 descriptor too short (expected 65375, got 72)
[  450.614484][ T1837] input: failed to attach handler mousedev to device input28, error: -5
[  450.637432][T10849] 9pnet: p9_errstr2errno: server reported unknown error �Çpî‘AçÁ›
¬ž
[  450.645115][   T78] usb 6-1: config index 4 descriptor too short (expected 65375, got 72)
[  450.682857][T10853] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10853 comm=syz.6.1219
[  450.760888][   T78] usb 6-1: config index 5 descriptor too short (expected 65375, got 72)
[  450.809733][ T1837] usb 5-1: USB disconnect, device number 31
[  450.813037][T10856] netlink: 'syz.6.1219': attribute type 1 has an invalid length.
[  450.823694][T10856] netlink: 224 bytes leftover after parsing attributes in process `syz.6.1219'.
[  451.182847][   T78] usb 6-1: unable to read config index 6 descriptor/start: -71
[  451.214061][   T78] usb 6-1: can't read configurations, error -71
[  451.632973][   T30] audit: type=1400 audit(1752221496.167:1991): avc:  denied  { append } for  pid=10866 comm="syz.4.1223" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  452.183323][T10882] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1226'.
[  452.978904][   T30] audit: type=1400 audit(1752221497.447:1992): avc:  denied  { getopt } for  pid=10884 comm="syz.0.1228" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  453.012524][   T30] audit: type=1400 audit(1752221497.497:1993): avc:  denied  { create } for  pid=10884 comm="syz.0.1228" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  454.792162][  T881] usb 5-1: new low-speed USB device number 32 using dummy_hcd
[  454.811649][T10904] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10904 comm=syz.0.1232
[  454.950875][T10906] netlink: 'syz.0.1232': attribute type 1 has an invalid length.
[  454.958974][T10906] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1232'.
[  455.157641][T10908] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10908 comm=syz.5.1233
[  455.186271][  T881] usb 5-1: config index 0 descriptor too short (expected 1307, got 27)
[  455.196217][  T881] usb 5-1: config 0 has an invalid interface number: 0 but max is -1
[  455.206332][  T881] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 0
[  455.215474][  T881] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  455.226487][  T881] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 246
[  455.403916][T10915] netlink: 'syz.5.1233': attribute type 1 has an invalid length.
[  455.518467][T10915] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1233'.
[  456.124523][  T881] usb 5-1: string descriptor 0 read error: -22
[  456.232019][  T881] usb 5-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  456.241747][  T881] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  456.255107][  T881] usb 5-1: config 0 descriptor??
[  456.263188][  T881] hub 5-1:0.0: bad descriptor, ignoring hub
[  456.269407][  T881] hub 5-1:0.0: probe with driver hub failed with error -5
[  456.570002][  T881] usb 5-1: USB disconnect, device number 32
[  457.585313][T10945] fuse: Unknown parameter '0x0000000000000008ÿÿÿÿ'
[  457.832566][T10950] fuse: Unknown parameter '0x0000000000000008ÿÿÿÿ'
[  457.936302][T10954] syz.6.1246: attempt to access beyond end of device
[  457.936302][T10954] nbd6: rw=0, sector=64, nr_sectors = 8 limit=0
[  457.975300][T10954] syz.6.1246: attempt to access beyond end of device
[  457.975300][T10954] nbd6: rw=0, sector=120, nr_sectors = 8 limit=0
[  458.435863][T10954] Mount JFS Failure: -5
[  459.155601][T10964] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10964 comm=syz.5.1249
[  459.807806][T10970] netlink: 'syz.5.1249': attribute type 1 has an invalid length.
[  459.815741][T10970] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1249'.
[  460.355527][T10978] syz.4.1251: attempt to access beyond end of device
[  460.355527][T10978] nbd4: rw=0, sector=64, nr_sectors = 8 limit=0
[  460.446563][T10978] syz.4.1251: attempt to access beyond end of device
[  460.446563][T10978] nbd4: rw=0, sector=120, nr_sectors = 8 limit=0
[  460.487932][T10978] Mount JFS Failure: -5
[  462.202230][T11009] fuse: Unknown parameter '0x0000000000000008ÿÿÿÿ'
[  462.259734][ T5961] usb 5-1: new full-speed USB device number 33 using dummy_hcd
[  462.441531][ T5961] usb 5-1: config 0 has an invalid interface number: 47 but max is 0
[  462.453284][ T5961] usb 5-1: config 0 has no interface number 0
[  462.559418][ T5961] usb 5-1: config 0 interface 47 altsetting 0 endpoint 0x2 has invalid maxpacket 512, setting to 64
[  462.573072][ T5961] usb 5-1: New USB device found, idVendor=045a, idProduct=5210, bcdDevice= 1.01
[  462.595331][ T5961] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  462.638186][ T5961] usb 5-1: Product: syz
[  462.744428][ T5961] usb 5-1: Manufacturer: syz
[  462.769446][ T5961] usb 5-1: SerialNumber: syz
[  462.878550][ T5961] usb 5-1: config 0 descriptor??
[  462.948999][T10978] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  463.043856][ T5961] ums-karma 5-1:0.47: USB Mass Storage device detected
[  463.167779][ T5961] ums-karma 5-1:0.47: probe with driver ums-karma failed with error -5
[  463.937542][ T5961] usb 5-1: USB disconnect, device number 33
[  465.460771][T11043] syz.0.1267: attempt to access beyond end of device
[  465.460771][T11043] nbd0: rw=0, sector=64, nr_sectors = 8 limit=0
[  465.480338][T11043] syz.0.1267: attempt to access beyond end of device
[  465.480338][T11043] nbd0: rw=0, sector=120, nr_sectors = 8 limit=0
[  465.517052][T11043] Mount JFS Failure: -5
[  467.472279][ T5961] usb 6-1: new low-speed USB device number 18 using dummy_hcd
[  467.494085][T11068] FAULT_INJECTION: forcing a failure.
[  467.494085][T11068] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  467.507584][T11068] CPU: 1 UID: 0 PID: 11068 Comm: syz.1.1274 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  467.507606][T11068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  467.507615][T11068] Call Trace:
[  467.507621][T11068]  <TASK>
[  467.507627][T11068]  dump_stack_lvl+0x16c/0x1f0
[  467.507652][T11068]  should_fail_ex+0x512/0x640
[  467.507676][T11068]  _copy_from_iter+0x29f/0x16f0
[  467.507698][T11068]  ? __pfx_avc_has_perm+0x10/0x10
[  467.507715][T11068]  ? __pfx__copy_from_iter+0x10/0x10
[  467.507734][T11068]  ? avc_has_perm_noaudit+0x149/0x3b0
[  467.507752][T11068]  ? sock_has_perm+0x259/0x2f0
[  467.507769][T11068]  ? __pfx_sock_has_perm+0x10/0x10
[  467.507789][T11068]  hci_sock_sendmsg+0x46d/0x25f0
[  467.507818][T11068]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  467.507846][T11068]  sock_write_iter+0x4fc/0x5b0
[  467.507863][T11068]  ? __pfx_sock_write_iter+0x10/0x10
[  467.507886][T11068]  ? bpf_lsm_file_permission+0x9/0x10
[  467.507911][T11068]  ? security_file_permission+0x71/0x210
[  467.507935][T11068]  ? rw_verify_area+0xcf/0x680
[  467.507957][T11068]  vfs_write+0x6c7/0x1150
[  467.507977][T11068]  ? __pfx_sock_write_iter+0x10/0x10
[  467.507994][T11068]  ? __pfx_vfs_write+0x10/0x10
[  467.508012][T11068]  ? find_held_lock+0x2b/0x80
[  467.508045][T11068]  ksys_write+0x1f8/0x250
[  467.508064][T11068]  ? __pfx_ksys_write+0x10/0x10
[  467.508087][T11068]  do_syscall_64+0xcd/0x4c0
[  467.508110][T11068]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  467.508127][T11068] RIP: 0033:0x7f302f18e929
[  467.508140][T11068] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  467.508156][T11068] RSP: 002b:00007f3030028038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  467.508171][T11068] RAX: ffffffffffffffda RBX: 00007f302f3b6080 RCX: 00007f302f18e929
[  467.508180][T11068] RDX: 0000000000000006 RSI: 0000200000000000 RDI: 0000000000000006
[  467.508189][T11068] RBP: 00007f3030028090 R08: 0000000000000000 R09: 0000000000000000
[  467.508198][T11068] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  467.508207][T11068] R13: 0000000000000000 R14: 00007f302f3b6080 R15: 00007ffee43e9048
[  467.508227][T11068]  </TASK>
[  467.751444][ T5961] usb 6-1: config index 0 descriptor too short (expected 1307, got 27)
[  467.766704][ T5961] usb 6-1: config 0 has an invalid interface number: 0 but max is -1
[  467.775459][ T5961] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 0
[  467.789704][ T5961] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  467.811941][ T5961] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  467.823989][ T5961] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10
[  467.968677][ T5961] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  467.997495][T11076] FAULT_INJECTION: forcing a failure.
[  467.997495][T11076] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  468.011980][T11076] CPU: 1 UID: 0 PID: 11076 Comm: syz.1.1276 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  468.012009][T11076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  468.012020][T11076] Call Trace:
[  468.012027][T11076]  <TASK>
[  468.012035][T11076]  dump_stack_lvl+0x16c/0x1f0
[  468.012068][T11076]  should_fail_ex+0x512/0x640
[  468.012096][T11076]  _copy_from_user+0x2e/0xd0
[  468.012122][T11076]  do_devconfig_ioctl+0x117/0x580
[  468.012153][T11076]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[  468.012195][T11076]  ? find_held_lock+0x2b/0x80
[  468.012231][T11076]  comedi_unlocked_ioctl+0x15bb/0x2e90
[  468.012256][T11076]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  468.012277][T11076]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  468.012295][T11076]  ? do_vfs_ioctl+0x523/0x1a60
[  468.012315][T11076]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  468.012340][T11076]  ? ioctl_has_perm.constprop.0.isra.0+0x379/0x540
[  468.012365][T11076]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  468.012391][T11076]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  468.012423][T11076]  ? hook_file_ioctl_common+0x145/0x410
[  468.012447][T11076]  ? selinux_file_ioctl+0x180/0x270
[  468.012468][T11076]  ? selinux_file_ioctl+0xb4/0x270
[  468.012492][T11076]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  468.012512][T11076]  __x64_sys_ioctl+0x18b/0x210
[  468.012533][T11076]  do_syscall_64+0xcd/0x4c0
[  468.012559][T11076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  468.012578][T11076] RIP: 0033:0x7f302f18e929
[  468.012594][T11076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  468.012611][T11076] RSP: 002b:00007f3030049038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  468.012629][T11076] RAX: ffffffffffffffda RBX: 00007f302f3b5fa0 RCX: 00007f302f18e929
[  468.012640][T11076] RDX: 0000200000000180 RSI: 0000000040946400 RDI: 0000000000000003
[  468.012651][T11076] RBP: 00007f3030049090 R08: 0000000000000000 R09: 0000000000000000
[  468.012662][T11076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  468.012671][T11076] R13: 0000000000000000 R14: 00007f302f3b5fa0 R15: 00007ffee43e9048
[  468.012696][T11076]  </TASK>
[  468.294451][ T5961] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  468.366799][ T5961] usb 6-1: string descriptor 0 read error: -22
[  468.386834][ T5961] usb 6-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  468.451075][ T5961] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  468.485816][ T5961] usb 6-1: config 0 descriptor??
[  468.521562][ T5961] hub 6-1:0.0: bad descriptor, ignoring hub
[  468.546505][ T5961] hub 6-1:0.0: probe with driver hub failed with error -5
[  468.596310][ T5961] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/input/input29
[  469.621189][ T5961] input: failed to attach handler mousedev to device input29, error: -5
[  469.640417][ T5961] usb 6-1: USB disconnect, device number 18
[  469.862231][   T30] audit: type=1400 audit(1752221514.407:1994): avc:  denied  { execute } for  pid=11097 comm="syz.0.1284" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=31076 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  470.006443][ T5899] usb 7-1: new low-speed USB device number 10 using dummy_hcd
[  470.187442][ T5899] usb 7-1: config index 0 descriptor too short (expected 1307, got 27)
[  470.259251][ T5899] usb 7-1: config 0 has an invalid interface number: 0 but max is -1
[  471.162912][ T5899] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 0
[  471.193427][ T5899] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  471.241444][ T5899] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  471.273256][ T5899] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  471.358617][ T5899] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  471.422352][ T5899] usb 7-1: string descriptor 0 read error: -22
[  471.439377][ T5899] usb 7-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  471.552104][   T30] audit: type=1400 audit(1752221516.027:1995): avc:  denied  { read } for  pid=11104 comm="syz.5.1286" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  471.572135][ T5899] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  471.594004][ T5899] usb 7-1: config 0 descriptor??
[  471.602169][ T5899] hub 7-1:0.0: bad descriptor, ignoring hub
[  471.629708][ T5899] hub 7-1:0.0: probe with driver hub failed with error -5
[  471.693651][T11110] fuse: Bad value for 'fd'
[  471.748264][ T5899] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/input/input30
[  472.107688][T11112] syz.5.1288: attempt to access beyond end of device
[  472.107688][T11112] nbd5: rw=0, sector=64, nr_sectors = 8 limit=0
[  472.133071][T11112] syz.5.1288: attempt to access beyond end of device
[  472.133071][T11112] nbd5: rw=0, sector=120, nr_sectors = 8 limit=0
[  472.159720][T11112] Mount JFS Failure: -5
[  472.173647][ T5899] input: failed to attach handler mousedev to device input30, error: -5
[  472.224610][ T5899] usb 7-1: USB disconnect, device number 10
[  472.358415][T11114] FAULT_INJECTION: forcing a failure.
[  472.358415][T11114] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  472.387585][T11114] CPU: 0 UID: 0 PID: 11114 Comm: syz.0.1289 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  472.387612][T11114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  472.387621][T11114] Call Trace:
[  472.387627][T11114]  <TASK>
[  472.387634][T11114]  dump_stack_lvl+0x16c/0x1f0
[  472.387662][T11114]  should_fail_ex+0x512/0x640
[  472.387688][T11114]  _copy_from_user+0x2e/0xd0
[  472.387712][T11114]  do_sys_poll+0x1d5/0xdf0
[  472.387735][T11114]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  472.387759][T11114]  ? kernel_text_address+0x8d/0x100
[  472.387778][T11114]  ? __kernel_text_address+0xd/0x40
[  472.387797][T11114]  ? __pfx_do_sys_poll+0x10/0x10
[  472.387836][T11114]  ? find_held_lock+0x2b/0x80
[  472.387899][T11114]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  472.387927][T11114]  ? set_user_sigmask+0x21b/0x2b0
[  472.387956][T11114]  ? __pfx_set_user_sigmask+0x10/0x10
[  472.387972][T11114]  ? __fget_files+0x20e/0x3c0
[  472.387995][T11114]  __x64_sys_ppoll+0x254/0x2d0
[  472.388014][T11114]  ? __pfx___x64_sys_ppoll+0x10/0x10
[  472.388032][T11114]  ? ksys_write+0x1ac/0x250
[  472.388050][T11114]  ? __pfx_ksys_write+0x10/0x10
[  472.388076][T11114]  do_syscall_64+0xcd/0x4c0
[  472.388101][T11114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.388122][T11114] RIP: 0033:0x7f89feb8e929
[  472.388134][T11114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  472.388150][T11114] RSP: 002b:00007f89ffad2038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f
[  472.388168][T11114] RAX: ffffffffffffffda RBX: 00007f89fedb5fa0 RCX: 00007f89feb8e929
[  472.388179][T11114] RDX: 0000000000000000 RSI: 20000000000000dc RDI: 00002000000000c0
[  472.388189][T11114] RBP: 00007f89ffad2090 R08: 0000000000000000 R09: 0000000000000000
[  472.388198][T11114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  472.388207][T11114] R13: 0000000000000000 R14: 00007f89fedb5fa0 R15: 00007ffd6156aed8
[  472.388230][T11114]  </TASK>
[  482.965651][   T30] audit: type=1400 audit(1752221527.497:1996): avc:  denied  { kexec_image_load } for  pid=11194 comm="syz.5.1311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  483.451468][   T30] audit: type=1326 audit(1752221527.987:1997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11206 comm="syz.6.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff91df8e929 code=0x7ffc0000
[  483.693490][ T5899] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  483.701606][   T30] audit: type=1326 audit(1752221528.017:1998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11206 comm="syz.6.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff91df8e929 code=0x7ffc0000
[  483.739661][   T30] audit: type=1326 audit(1752221528.037:1999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11206 comm="syz.6.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7ff91df8e929 code=0x7ffc0000
[  483.887445][ T5899] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  483.918357][   T30] audit: type=1326 audit(1752221528.047:2000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11206 comm="syz.6.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff91df8e929 code=0x7ffc0000
[  484.205294][   T30] audit: type=1326 audit(1752221528.047:2001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11206 comm="syz.6.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff91df8e929 code=0x7ffc0000
[  484.229478][   T30] audit: type=1326 audit(1752221528.067:2002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11206 comm="syz.6.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff91df8e929 code=0x7ffc0000
[  484.254635][   T30] audit: type=1326 audit(1752221528.077:2003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11206 comm="syz.6.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff91df8e929 code=0x7ffc0000
[  484.256606][ T5899] usb 2-1: New USB device found, idVendor=05ac, idProduct=0236, bcdDevice= 0.00
[  484.292919][ T5899] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  484.305540][ T5899] usb 2-1: config 0 descriptor??
[  484.357283][ T5899] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input31
[  484.362514][   T30] audit: type=1326 audit(1752221528.077:2004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11206 comm="syz.6.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff91df8e929 code=0x7ffc0000
[  484.479406][   T30] audit: type=1326 audit(1752221528.087:2005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11206 comm="syz.6.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ff91df8e929 code=0x7ffc0000
[  484.592896][ T5190] bcm5974 2-1:0.0: could not read from device
[  484.643254][ T5190] bcm5974 2-1:0.0: could not read from device
[  484.698600][T11220] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11220 comm=syz.6.1318
[  484.772275][T11222] netlink: 'syz.6.1318': attribute type 1 has an invalid length.
[  484.780396][T11222] netlink: 224 bytes leftover after parsing attributes in process `syz.6.1318'.
[  485.069647][ T5968] usb 5-1: new low-speed USB device number 34 using dummy_hcd
[  485.129762][T11219] bcm5974 2-1:0.0: could not read from device
[  485.271344][ T5968] usb 5-1: config index 0 descriptor too short (expected 1307, got 27)
[  485.287534][ T5968] usb 5-1: config 0 has an invalid interface number: 0 but max is -1
[  485.358165][T11205] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  485.455699][ T5968] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 0
[  485.987093][ T5968] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  486.012062][ T5190] bcm5974 2-1:0.0: could not read from device
[  486.012505][ T1837] usb 2-1: USB disconnect, device number 24
[  486.027667][ T5968] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  486.129873][ T5968] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  486.165560][ T5968] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  486.189875][ T5190] bcm5974 2-1:0.0: could not read from device
[  486.480228][ T5830] udevd[5830]: Error opening device "/dev/input/event4": No such device
[  486.503646][ T5968] usb 5-1: string descriptor 0 read error: -22
[  486.512632][ T5968] usb 5-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  486.522343][ T5830] udevd[5830]: Unable to EVIOCGABS device "/dev/input/event4"
[  486.529874][ T5968] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  486.538208][ T5830] udevd[5830]: Unable to EVIOCGABS device "/dev/input/event4"
[  486.649054][ T5830] udevd[5830]: Unable to EVIOCGABS device "/dev/input/event4"
[  486.662681][ T5830] udevd[5830]: Unable to EVIOCGABS device "/dev/input/event4"
[  486.683515][ T5968] usb 5-1: config 0 descriptor??
[  486.719689][ T5968] hub 5-1:0.0: bad descriptor, ignoring hub
[  486.742090][ T5968] hub 5-1:0.0: probe with driver hub failed with error -5
[  486.778750][ T5968] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input32
[  486.843026][ T5968] input: failed to attach handler mousedev to device input32, error: -5
[  487.011685][ T5968] usb 5-1: USB disconnect, device number 34
[  488.494709][   T30] kauditd_printk_skb: 8 callbacks suppressed
[  488.494765][   T30] audit: type=1326 audit(1752221533.017:2014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11256 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  488.678857][   T30] audit: type=1326 audit(1752221533.017:2015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11256 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  488.703324][   T30] audit: type=1326 audit(1752221533.027:2016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11256 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  488.729549][   T30] audit: type=1326 audit(1752221533.027:2017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11256 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  489.436214][   T30] audit: type=1326 audit(1752221533.027:2018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11256 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  489.462047][   T30] audit: type=1326 audit(1752221533.037:2019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11256 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  489.469518][T11268] netlink: 'syz.4.1330': attribute type 1 has an invalid length.
[  489.489046][   T30] audit: type=1326 audit(1752221533.037:2020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11256 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  489.517411][T11268] netlink: 184 bytes leftover after parsing attributes in process `syz.4.1330'.
[  489.520392][   T30] audit: type=1326 audit(1752221533.037:2021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11256 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  489.527685][T11268] netlink: 'syz.4.1330': attribute type 1 has an invalid length.
[  489.564827][   T30] audit: type=1326 audit(1752221533.037:2022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11256 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  489.643224][   T30] audit: type=1326 audit(1752221533.037:2023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11256 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  489.699678][T11270] netlink: 'syz.5.1331': attribute type 1 has an invalid length.
[  489.728422][T11270] netlink: 184 bytes leftover after parsing attributes in process `syz.5.1331'.
[  489.749303][T11270] netlink: 'syz.5.1331': attribute type 1 has an invalid length.
[  490.193944][T11284] fuse: Bad value for 'fd'
[  491.019844][ T5961] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  491.311213][ T5961] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  491.371583][ T5961] usb 6-1: New USB device found, idVendor=05ac, idProduct=0236, bcdDevice= 0.00
[  491.393141][ T5961] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  491.412792][ T5961] usb 6-1: config 0 descriptor??
[  491.441768][ T5961] input: bcm5974 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/input/input33
[  491.652284][T11300] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1340'.
[  492.394584][ T5190] bcm5974 6-1:0.0: could not read from device
[  492.419002][ T5190] bcm5974 6-1:0.0: could not read from device
[  492.466265][ T5842] bcm5974 6-1:0.0: could not read from device
[  492.618140][T11312] netlink: 'syz.4.1345': attribute type 1 has an invalid length.
[  492.637990][T11312] netlink: 184 bytes leftover after parsing attributes in process `syz.4.1345'.
[  492.647890][T11312] netlink: 'syz.4.1345': attribute type 1 has an invalid length.
[  492.744933][T11278] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  493.364089][   T78] usb 6-1: USB disconnect, device number 19
[  493.369761][ T5842] bcm5974 6-1:0.0: could not read from device
[  493.407572][ T5190] bcm5974 6-1:0.0: could not read from device
[  494.472612][T11325] fuse: Bad value for 'fd'
[  495.079816][   T30] kauditd_printk_skb: 28 callbacks suppressed
[  495.079856][   T30] audit: type=1326 audit(1752221539.537:2052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11331 comm="syz.4.1351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  495.160988][T11334] trusted_key: syz.6.1350 sent an empty control message without MSG_MORE.
[  495.206322][T11340] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1352'.
[  495.218972][   T30] audit: type=1326 audit(1752221539.547:2053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11331 comm="syz.4.1351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  495.250171][   T30] audit: type=1326 audit(1752221539.557:2054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11331 comm="syz.4.1351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  495.277011][   T30] audit: type=1326 audit(1752221539.557:2055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11331 comm="syz.4.1351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  495.617178][   T30] audit: type=1326 audit(1752221539.567:2056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11331 comm="syz.4.1351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  495.659818][ T5968] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  495.690186][   T30] audit: type=1326 audit(1752221539.567:2057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11331 comm="syz.4.1351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  495.843914][   T30] audit: type=1326 audit(1752221539.567:2058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11331 comm="syz.4.1351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  495.878002][   T30] audit: type=1326 audit(1752221539.567:2059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11331 comm="syz.4.1351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  495.911968][   T30] audit: type=1326 audit(1752221539.577:2060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11331 comm="syz.4.1351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  495.950156][ T5968] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  495.960790][ T5968] usb 7-1: config 0 has no interface number 0
[  495.967652][ T5968] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  495.983153][ T5968] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  496.004781][   T30] audit: type=1326 audit(1752221539.577:2061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11331 comm="syz.4.1351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  496.031713][   T24] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  496.033450][ T5968] usb 7-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  496.049469][ T5968] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  496.094818][ T5968] usb 7-1: config 0 descriptor??
[  496.222664][   T24] usb 5-1: Using ep0 maxpacket: 32
[  496.288598][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  496.307367][   T24] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[  496.355926][   T24] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  496.389316][   T24] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  496.405749][   T24] usb 5-1: Product: syz
[  496.412970][   T24] usb 5-1: Manufacturer: syz
[  496.426991][   T24] usb 5-1: SerialNumber: syz
[  496.500100][   T24] usb 5-1: config 0 descriptor??
[  496.782733][   T24] usb 5-1: USB disconnect, device number 35
[  496.997392][T11364] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  497.068655][ T5968] uclogic 0003:256C:006D.000B: hidraw0: USB HID v0.00 Device [HID 256c:006d] on usb-dummy_hcd.6-1/input1
[  497.079816][T11364] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  497.296330][   T24] usb 7-1: USB disconnect, device number 11
[  498.183377][T11376] binder: BINDER_SET_CONTEXT_MGR already set
[  498.204198][T11376] binder: 11375:11376 ioctl 4018620d 2000000002c0 returned -16
[  498.282718][T11382] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1365'.
[  498.346482][T11384] netlink: 4400 bytes leftover after parsing attributes in process `syz.4.1363'.
[  498.381712][T11384] sysfs: cannot create duplicate filename '/class/ieee80211/Ç`]Š•Iöq¯!¾>Ýsó³Îú*Š®!)\Ç+`²ÿ'
[  498.407253][T11383] fuse: Unknown parameter '0x0000000000000008ÿÿÿÿ'
[  498.408529][T11384] CPU: 1 UID: 0 PID: 11384 Comm: syz.4.1363 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  498.408552][T11384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  498.408562][T11384] Call Trace:
[  498.408569][T11384]  <TASK>
[  498.408576][T11384]  dump_stack_lvl+0x16c/0x1f0
[  498.408604][T11384]  sysfs_warn_dup+0x7f/0xa0
[  498.408627][T11384]  sysfs_do_create_link_sd+0x124/0x140
[  498.408651][T11384]  sysfs_create_link+0x61/0xc0
[  498.408673][T11384]  device_add+0x62c/0x1a70
[  498.408691][T11384]  ? __pfx_device_add+0x10/0x10
[  498.408705][T11384]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  498.408725][T11384]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  498.408754][T11384]  wiphy_register+0x1c9c/0x2850
[  498.408771][T11384]  ? netdev_run_todo+0x864/0x1320
[  498.408793][T11384]  ? __dev_printk+0x270/0x270
[  498.408816][T11384]  ? __pfx_wiphy_register+0x10/0x10
[  498.408849][T11384]  ieee80211_register_hw+0x24ac/0x4140
[  498.408874][T11384]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  498.408902][T11384]  ? find_held_lock+0x2b/0x80
[  498.408925][T11384]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  498.408945][T11384]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  498.408962][T11384]  ? __hrtimer_setup+0x176/0x280
[  498.408984][T11384]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  498.409020][T11384]  ? trace_kmalloc+0x2b/0xd0
[  498.409044][T11384]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  498.409065][T11384]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  498.409085][T11384]  ? hwsim_new_radio_nl+0xa0e/0x12c0
[  498.409106][T11384]  ? __asan_memcpy+0x3c/0x60
[  498.409128][T11384]  hwsim_new_radio_nl+0xb51/0x12c0
[  498.409151][T11384]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  498.409179][T11384]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  498.409197][T11384]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  498.409221][T11384]  genl_family_rcv_msg_doit+0x206/0x2f0
[  498.409241][T11384]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  498.409267][T11384]  ? bpf_lsm_capable+0x9/0x10
[  498.409282][T11384]  ? security_capable+0x7e/0x260
[  498.409301][T11384]  ? ns_capable+0xd7/0x110
[  498.409322][T11384]  genl_rcv_msg+0x55c/0x800
[  498.409343][T11384]  ? __pfx_genl_rcv_msg+0x10/0x10
[  498.409360][T11384]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  498.409390][T11384]  netlink_rcv_skb+0x155/0x420
[  498.409405][T11384]  ? __pfx_genl_rcv_msg+0x10/0x10
[  498.409423][T11384]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  498.409449][T11384]  ? netlink_deliver_tap+0x1ae/0xd30
[  498.409476][T11384]  genl_rcv+0x28/0x40
[  498.409491][T11384]  netlink_unicast+0x58d/0x850
[  498.409509][T11384]  ? __pfx_netlink_unicast+0x10/0x10
[  498.409523][T11384]  ? __build_skb_around+0x278/0x3b0
[  498.409546][T11384]  netlink_sendmsg+0x8d1/0xdd0
[  498.409566][T11384]  ? __pfx_netlink_sendmsg+0x10/0x10
[  498.409590][T11384]  ____sys_sendmsg+0xa98/0xc70
[  498.409607][T11384]  ? copy_msghdr_from_user+0x10a/0x160
[  498.409627][T11384]  ? __pfx_____sys_sendmsg+0x10/0x10
[  498.409649][T11384]  ? try_to_wake_up+0xa2f/0x1680
[  498.409672][T11384]  ___sys_sendmsg+0x134/0x1d0
[  498.409694][T11384]  ? __pfx____sys_sendmsg+0x10/0x10
[  498.409712][T11384]  ? __lock_acquire+0x622/0x1c90
[  498.409757][T11384]  __sys_sendmsg+0x16d/0x220
[  498.409778][T11384]  ? __pfx___sys_sendmsg+0x10/0x10
[  498.409798][T11384]  ? __x64_sys_futex+0x1e0/0x4c0
[  498.409835][T11384]  do_syscall_64+0xcd/0x4c0
[  498.409860][T11384]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  498.409876][T11384] RIP: 0033:0x7f83fd58e929
[  498.409895][T11384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  498.409909][T11384] RSP: 002b:00007f83fe469038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  498.409925][T11384] RAX: ffffffffffffffda RBX: 00007f83fd7b6080 RCX: 00007f83fd58e929
[  498.409935][T11384] RDX: 0000000000000084 RSI: 0000200000000100 RDI: 0000000000000009
[  498.409945][T11384] RBP: 00007f83fd610b39 R08: 0000000000000000 R09: 0000000000000000
[  498.409954][T11384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  498.409963][T11384] R13: 0000000000000000 R14: 00007f83fd7b6080 R15: 00007ffc0d541f98
[  498.409985][T11384]  </TASK>
[  498.433918][T11388] tipc: Started in network mode
[  498.966353][T11388] tipc: Node identity b65befdf0a9b, cluster identity 4711
[  499.006769][T11388] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  499.164026][T11391] syzkaller0: entered promiscuous mode
[  499.194802][T11391] syzkaller0: entered allmulticast mode
[  499.287977][T11391] tipc: Resetting bearer <eth:syzkaller0>
[  499.381050][T11391] tipc: Disabling bearer <eth:syzkaller0>
[  499.438955][T11402] netlink: 'syz.4.1369': attribute type 1 has an invalid length.
[  499.459788][T11402] netlink: 228 bytes leftover after parsing attributes in process `syz.4.1369'.
[  501.230335][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  501.705472][T11440] binder: BINDER_SET_CONTEXT_MGR already set
[  501.712865][T11440] binder: 11439:11440 ioctl 4018620d 2000000002c0 returned -16
[  501.721717][T11440] netlink: 4400 bytes leftover after parsing attributes in process `syz.5.1379'.
[  501.924615][T11440] sysfs: cannot create duplicate filename '/class/ieee80211/Ç`]Š•Iöq¯!¾>Ýsó³Îú*Š®!)\Ç+`²ÿ'
[  501.959712][ T5968] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  501.967511][T11440] CPU: 0 UID: 0 PID: 11440 Comm: syz.5.1379 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  501.967528][T11440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  501.967536][T11440] Call Trace:
[  501.967540][T11440]  <TASK>
[  501.967546][T11440]  dump_stack_lvl+0x16c/0x1f0
[  501.967565][T11440]  sysfs_warn_dup+0x7f/0xa0
[  501.967582][T11440]  sysfs_do_create_link_sd+0x124/0x140
[  501.967599][T11440]  sysfs_create_link+0x61/0xc0
[  501.967614][T11440]  device_add+0x62c/0x1a70
[  501.967628][T11440]  ? __pfx_device_add+0x10/0x10
[  501.967637][T11440]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  501.967652][T11440]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  501.967671][T11440]  wiphy_register+0x1c9c/0x2850
[  501.967682][T11440]  ? netdev_run_todo+0x864/0x1320
[  501.967703][T11440]  ? __dev_printk+0x270/0x270
[  501.967719][T11440]  ? __pfx_wiphy_register+0x10/0x10
[  501.967737][T11440]  ieee80211_register_hw+0x24ac/0x4140
[  501.967755][T11440]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  501.967769][T11440]  ? find_held_lock+0x2b/0x80
[  501.967785][T11440]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  501.967798][T11440]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  501.967810][T11440]  ? __hrtimer_setup+0x176/0x280
[  501.967825][T11440]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  501.967847][T11440]  ? trace_kmalloc+0x2b/0xd0
[  501.967862][T11440]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  501.967876][T11440]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  501.967890][T11440]  ? hwsim_new_radio_nl+0xa0e/0x12c0
[  501.967904][T11440]  ? __asan_memcpy+0x3c/0x60
[  501.967918][T11440]  hwsim_new_radio_nl+0xb51/0x12c0
[  501.967933][T11440]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  501.967952][T11440]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  501.967964][T11440]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  501.967980][T11440]  genl_family_rcv_msg_doit+0x206/0x2f0
[  501.967992][T11440]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  501.968009][T11440]  ? bpf_lsm_capable+0x9/0x10
[  501.968020][T11440]  ? security_capable+0x7e/0x260
[  501.968033][T11440]  ? ns_capable+0xd7/0x110
[  501.968047][T11440]  genl_rcv_msg+0x55c/0x800
[  501.968060][T11440]  ? __pfx_genl_rcv_msg+0x10/0x10
[  501.968072][T11440]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  501.968091][T11440]  netlink_rcv_skb+0x155/0x420
[  501.968105][T11440]  ? __pfx_genl_rcv_msg+0x10/0x10
[  501.968117][T11440]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  501.968133][T11440]  ? netlink_deliver_tap+0x1ae/0xd30
[  501.968152][T11440]  genl_rcv+0x28/0x40
[  501.968162][T11440]  netlink_unicast+0x58d/0x850
[  501.968174][T11440]  ? __pfx_netlink_unicast+0x10/0x10
[  501.968183][T11440]  ? __build_skb_around+0x278/0x3b0
[  501.968198][T11440]  netlink_sendmsg+0x8d1/0xdd0
[  501.968210][T11440]  ? __pfx_netlink_sendmsg+0x10/0x10
[  501.968226][T11440]  ____sys_sendmsg+0xa98/0xc70
[  501.968237][T11440]  ? copy_msghdr_from_user+0x10a/0x160
[  501.968251][T11440]  ? __pfx_____sys_sendmsg+0x10/0x10
[  501.968266][T11440]  ? __pfx_futex_wake_mark+0x10/0x10
[  501.968281][T11440]  ___sys_sendmsg+0x134/0x1d0
[  501.968296][T11440]  ? __pfx____sys_sendmsg+0x10/0x10
[  501.968309][T11440]  ? __lock_acquire+0x622/0x1c90
[  501.968337][T11440]  __sys_sendmsg+0x16d/0x220
[  501.968351][T11440]  ? __pfx___sys_sendmsg+0x10/0x10
[  501.968364][T11440]  ? __x64_sys_futex+0x1e0/0x4c0
[  501.968388][T11440]  do_syscall_64+0xcd/0x4c0
[  501.968405][T11440]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  501.968416][T11440] RIP: 0033:0x7f060078e929
[  501.968426][T11440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  501.968436][T11440] RSP: 002b:00007f0601694038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  501.968446][T11440] RAX: ffffffffffffffda RBX: 00007f06009b5fa0 RCX: 00007f060078e929
[  501.968453][T11440] RDX: 0000000000000084 RSI: 0000200000000100 RDI: 0000000000000009
[  501.968459][T11440] RBP: 00007f0600810b39 R08: 0000000000000000 R09: 0000000000000000
[  501.968465][T11440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  501.968471][T11440] R13: 0000000000000000 R14: 00007f06009b5fa0 R15: 00007ffde5e96578
[  501.968485][T11440]  </TASK>
[  502.759673][ T5968] usb 7-1: Using ep0 maxpacket: 32
[  502.776389][ T5968] usb 7-1: config 4 has an invalid interface number: 8 but max is 0
[  502.784487][ T5968] usb 7-1: config 4 has no interface number 0
[  502.790654][ T5968] usb 7-1: config 4 interface 8 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[  502.800490][ T5968] usb 7-1: config 4 interface 8 altsetting 1 bulk endpoint 0x8A has invalid maxpacket 0
[  502.810273][ T5968] usb 7-1: config 4 interface 8 has no altsetting 0
[  502.826469][ T5968] usb 7-1: New USB device found, idVendor=065a, idProduct=0009, bcdDevice=60.65
[  502.835679][ T5968] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  502.843746][ T5968] usb 7-1: Product: syz
[  502.847971][ T5968] usb 7-1: Manufacturer: syz
[  502.857971][ T5968] usb 7-1: SerialNumber: syz
[  502.860115][   T30] kauditd_printk_skb: 6 callbacks suppressed
[  502.860127][   T30] audit: type=1326 audit(1752221547.397:2068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11443 comm="syz.1.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  502.932582][   T30] audit: type=1326 audit(1752221547.397:2069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11443 comm="syz.1.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  502.959703][   T30] audit: type=1326 audit(1752221547.397:2070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11443 comm="syz.1.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  502.999144][   T30] audit: type=1326 audit(1752221547.397:2071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11443 comm="syz.1.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  503.335626][ T5968] opticon 7-1:4.8: opticon converter detected
[  503.347862][ T5968] usb 7-1: opticon converter now attached to ttyUSB0
[  503.507217][   T30] audit: type=1326 audit(1752221547.397:2072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11443 comm="syz.1.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  503.510797][ T5968] usb 7-1: USB disconnect, device number 12
[  503.552055][   T30] audit: type=1326 audit(1752221547.397:2073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11443 comm="syz.1.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  503.651698][   T30] audit: type=1326 audit(1752221547.397:2074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11443 comm="syz.1.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  503.816909][T11457] 9pnet_fd: Insufficient options for proto=fd
[  503.987426][ T5968] opticon ttyUSB0: opticon converter now disconnected from ttyUSB0
[  504.071922][ T5968] opticon 7-1:4.8: device disconnected
[  504.144152][   T30] audit: type=1326 audit(1752221547.397:2075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11443 comm="syz.1.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  504.333419][   T30] audit: type=1326 audit(1752221547.397:2076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11443 comm="syz.1.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  504.370527][   T30] audit: type=1326 audit(1752221547.397:2077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11443 comm="syz.1.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  504.885976][T11460] lo speed is unknown, defaulting to 1000
[  504.976539][T11468] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1386'.
[  505.009305][T11468] netlink: 4400 bytes leftover after parsing attributes in process `syz.1.1386'.
[  505.292940][T11468] sysfs: cannot create duplicate filename '/class/ieee80211/Ç`]Š•Iöq¯!¾>Ýsó³Îú*Š®!)\Ç+`²'
[  505.409875][T11468] CPU: 1 UID: 0 PID: 11468 Comm: syz.1.1386 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  505.409908][T11468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  505.409920][T11468] Call Trace:
[  505.409928][T11468]  <TASK>
[  505.409936][T11468]  dump_stack_lvl+0x16c/0x1f0
[  505.409968][T11468]  sysfs_warn_dup+0x7f/0xa0
[  505.409996][T11468]  sysfs_do_create_link_sd+0x124/0x140
[  505.410024][T11468]  sysfs_create_link+0x61/0xc0
[  505.410049][T11468]  device_add+0x62c/0x1a70
[  505.410070][T11468]  ? __pfx_device_add+0x10/0x10
[  505.410085][T11468]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  505.410108][T11468]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  505.410143][T11468]  wiphy_register+0x1c9c/0x2850
[  505.410172][T11468]  ? __pfx_wiphy_register+0x10/0x10
[  505.410199][T11468]  ? ieee80211_register_hw+0x246e/0x4140
[  505.410224][T11468]  ieee80211_register_hw+0x24ac/0x4140
[  505.410253][T11468]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  505.410275][T11468]  ? find_held_lock+0x2b/0x80
[  505.410298][T11468]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  505.410321][T11468]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  505.410340][T11468]  ? __hrtimer_setup+0x176/0x280
[  505.410365][T11468]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  505.410406][T11468]  ? trace_kmalloc+0x2b/0xd0
[  505.410433][T11468]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  505.410460][T11468]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  505.410483][T11468]  ? hwsim_new_radio_nl+0xa0e/0x12c0
[  505.410508][T11468]  ? __asan_memcpy+0x3c/0x60
[  505.410535][T11468]  hwsim_new_radio_nl+0xb51/0x12c0
[  505.410577][T11468]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  505.410614][T11468]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  505.410640][T11468]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  505.410670][T11468]  genl_family_rcv_msg_doit+0x206/0x2f0
[  505.410695][T11468]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  505.410725][T11468]  ? bpf_lsm_capable+0x9/0x10
[  505.410744][T11468]  ? security_capable+0x7e/0x260
[  505.410766][T11468]  ? ns_capable+0xd7/0x110
[  505.410790][T11468]  genl_rcv_msg+0x55c/0x800
[  505.410813][T11468]  ? __pfx_genl_rcv_msg+0x10/0x10
[  505.410834][T11468]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  505.410870][T11468]  netlink_rcv_skb+0x155/0x420
[  505.410893][T11468]  ? __pfx_genl_rcv_msg+0x10/0x10
[  505.410917][T11468]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  505.410947][T11468]  ? netlink_deliver_tap+0x1ae/0xd30
[  505.410980][T11468]  genl_rcv+0x28/0x40
[  505.410998][T11468]  netlink_unicast+0x58d/0x850
[  505.411020][T11468]  ? __pfx_netlink_unicast+0x10/0x10
[  505.411036][T11468]  ? __build_skb_around+0x278/0x3b0
[  505.411064][T11468]  netlink_sendmsg+0x8d1/0xdd0
[  505.411087][T11468]  ? __pfx_netlink_sendmsg+0x10/0x10
[  505.411114][T11468]  ____sys_sendmsg+0xa98/0xc70
[  505.411134][T11468]  ? copy_msghdr_from_user+0x10a/0x160
[  505.411158][T11468]  ? __pfx_____sys_sendmsg+0x10/0x10
[  505.411183][T11468]  ? try_to_wake_up+0xa2f/0x1680
[  505.411211][T11468]  ___sys_sendmsg+0x134/0x1d0
[  505.411237][T11468]  ? __pfx____sys_sendmsg+0x10/0x10
[  505.411259][T11468]  ? __lock_acquire+0x622/0x1c90
[  505.411311][T11468]  __sys_sendmsg+0x16d/0x220
[  505.411336][T11468]  ? __pfx___sys_sendmsg+0x10/0x10
[  505.411360][T11468]  ? __x64_sys_futex+0x1e0/0x4c0
[  505.411405][T11468]  do_syscall_64+0xcd/0x4c0
[  505.411435][T11468]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  505.411455][T11468] RIP: 0033:0x7f302f18e929
[  505.411471][T11468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  505.411489][T11468] RSP: 002b:00007f3030049038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  505.411509][T11468] RAX: ffffffffffffffda RBX: 00007f302f3b5fa0 RCX: 00007f302f18e929
[  505.411524][T11468] RDX: 0000000000000084 RSI: 0000200000000100 RDI: 0000000000000009
[  505.411536][T11468] RBP: 00007f302f210b39 R08: 0000000000000000 R09: 0000000000000000
[  505.411548][T11468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  505.411566][T11468] R13: 0000000000000000 R14: 00007f302f3b5fa0 R15: 00007ffee43e9048
[  505.411592][T11468]  </TASK>
[  506.552344][T11481] netlink: 'syz.5.1392': attribute type 1 has an invalid length.
[  506.589697][T11481] netlink: 184 bytes leftover after parsing attributes in process `syz.5.1392'.
[  506.647995][T11481] netlink: 'syz.5.1392': attribute type 1 has an invalid length.
[  507.177863][T11496] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1396'.
[  507.224315][T11500] syz.5.1397: attempt to access beyond end of device
[  507.224315][T11500] nbd5: rw=0, sector=64, nr_sectors = 8 limit=0
[  507.240671][T11500] syz.5.1397: attempt to access beyond end of device
[  507.240671][T11500] nbd5: rw=0, sector=120, nr_sectors = 8 limit=0
[  507.291599][T11500] Mount JFS Failure: -5
[  508.469942][ T5968] usb 6-1: new full-speed USB device number 20 using dummy_hcd
[  509.906491][ T5968] usb 6-1: config 0 has an invalid interface number: 47 but max is 0
[  509.915858][ T5968] usb 6-1: config 0 has no interface number 0
[  509.932701][ T5968] usb 6-1: config 0 interface 47 altsetting 0 endpoint 0x2 has invalid maxpacket 512, setting to 64
[  509.964481][ T5968] usb 6-1: New USB device found, idVendor=045a, idProduct=5210, bcdDevice= 1.01
[  509.996808][ T5968] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  510.020134][ T5968] usb 6-1: Product: syz
[  510.239140][ T5968] usb 6-1: Manufacturer: syz
[  510.560252][ T5968] usb 6-1: SerialNumber: syz
[  510.604051][ T5968] usb 6-1: config 0 descriptor??
[  510.617924][ T5968] usb 6-1: can't set config #0, error -71
[  510.646542][ T5968] usb 6-1: USB disconnect, device number 20
[  510.832745][T11536] input: syz1 as /devices/virtual/input/input34
[  510.913570][T11536] netlink: 'syz.4.1407': attribute type 8 has an invalid length.
[  510.944695][   T30] kauditd_printk_skb: 11 callbacks suppressed
[  510.944711][   T30] audit: type=1326 audit(1752221555.487:2089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11535 comm="syz.4.1407" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x0
[  511.055184][   T30] audit: type=1400 audit(1752221555.597:2090): avc:  denied  { connect } for  pid=11535 comm="syz.4.1407" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  511.440713][T11551] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1410'.
[  513.120618][T11570] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1415'.
[  513.589193][T11575] tipc: Started in network mode
[  513.658347][T11575] tipc: Node identity 52182c66358f, cluster identity 4711
[  513.676618][T11575] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  513.684805][T11580] syzkaller0: entered promiscuous mode
[  513.703809][T11580] syzkaller0: entered allmulticast mode
[  513.776943][T11574] tipc: Resetting bearer <eth:syzkaller0>
[  513.803114][T11574] tipc: Disabling bearer <eth:syzkaller0>
[  513.928562][T11586] syz.5.1420: attempt to access beyond end of device
[  513.928562][T11586] nbd5: rw=0, sector=64, nr_sectors = 8 limit=0
[  513.947047][T11586] syz.5.1420: attempt to access beyond end of device
[  513.947047][T11586] nbd5: rw=0, sector=120, nr_sectors = 8 limit=0
[  513.963877][T11586] Mount JFS Failure: -5
[  513.979928][ T5968] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  514.145720][ T5968] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  514.206324][ T5968] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  514.258169][ T5968] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  514.311834][ T5968] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  514.353665][ T5968] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  514.372230][ T5968] usb 5-1: config 0 descriptor??
[  514.661274][ T5961] usb 6-1: new full-speed USB device number 21 using dummy_hcd
[  514.818617][ T5968] plantronics 0003:047F:FFFF.000C: reserved main item tag 0xd
[  514.846227][ T5968] plantronics 0003:047F:FFFF.000C: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  514.864629][ T5961] usb 6-1: config 0 has an invalid interface number: 47 but max is 0
[  514.884932][ T5961] usb 6-1: config 0 has no interface number 0
[  514.948174][ T5961] usb 6-1: config 0 interface 47 altsetting 0 endpoint 0x2 has invalid maxpacket 512, setting to 64
[  515.012964][ T5844] Bluetooth: hci0: unexpected event for opcode 0x0c20
[  515.311624][T11605] FAULT_INJECTION: forcing a failure.
[  515.311624][T11605] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  515.327260][T11605] CPU: 0 UID: 0 PID: 11605 Comm: syz.1.1424 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  515.327287][T11605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  515.327296][T11605] Call Trace:
[  515.327302][T11605]  <TASK>
[  515.327309][T11605]  dump_stack_lvl+0x16c/0x1f0
[  515.327342][T11605]  should_fail_ex+0x512/0x640
[  515.327369][T11605]  _copy_from_user+0x2e/0xd0
[  515.327396][T11605]  inet_ioctl+0x31c/0x3f0
[  515.327417][T11605]  ? __pfx_inet_ioctl+0x10/0x10
[  515.327451][T11605]  ? tomoyo_path_number_perm+0x18d/0x580
[  515.327482][T11605]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  515.327504][T11605]  sock_do_ioctl+0x118/0x280
[  515.327522][T11605]  ? __pfx_sock_do_ioctl+0x10/0x10
[  515.327545][T11605]  ? ioctl_has_perm.constprop.0.isra.0+0x379/0x540
[  515.327569][T11605]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  515.327594][T11605]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  515.327623][T11605]  sock_ioctl+0x227/0x6b0
[  515.327641][T11605]  ? __pfx_sock_ioctl+0x10/0x10
[  515.327656][T11605]  ? hook_file_ioctl_common+0x145/0x410
[  515.327680][T11605]  ? selinux_file_ioctl+0x180/0x270
[  515.327703][T11605]  ? selinux_file_ioctl+0xb4/0x270
[  515.327726][T11605]  ? __pfx_sock_ioctl+0x10/0x10
[  515.327745][T11605]  __x64_sys_ioctl+0x18b/0x210
[  515.327766][T11605]  do_syscall_64+0xcd/0x4c0
[  515.327792][T11605]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  515.327810][T11605] RIP: 0033:0x7f302f18e929
[  515.327824][T11605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  515.327841][T11605] RSP: 002b:00007f3030049038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  515.327858][T11605] RAX: ffffffffffffffda RBX: 00007f302f3b5fa0 RCX: 00007f302f18e929
[  515.327870][T11605] RDX: 0000200000000840 RSI: 000000000000890b RDI: 0000000000000003
[  515.327880][T11605] RBP: 00007f3030049090 R08: 0000000000000000 R09: 0000000000000000
[  515.327891][T11605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  515.327901][T11605] R13: 0000000000000000 R14: 00007f302f3b5fa0 R15: 00007ffee43e9048
[  515.327925][T11605]  </TASK>
[  515.653268][T11608] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  515.666432][ T5961] usb 6-1: New USB device found, idVendor=045a, idProduct=5210, bcdDevice= 1.01
[  515.676467][ T5961] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  515.684737][ T5961] usb 6-1: Product: syz
[  515.688967][ T5961] usb 6-1: Manufacturer: syz
[  515.693655][ T5961] usb 6-1: SerialNumber: syz
[  515.700658][ T5961] usb 6-1: config 0 descriptor??
[  515.714958][T11594] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  515.727308][ T5961] ums-karma 6-1:0.47: USB Mass Storage device detected
[  515.728442][T11608] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  515.853550][ T5961] ums-karma 6-1:0.47: probe with driver ums-karma failed with error -5
[  515.960603][T11614] FAULT_INJECTION: forcing a failure.
[  515.960603][T11614] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  516.166867][T11614] CPU: 1 UID: 0 PID: 11614 Comm: syz.6.1426 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  516.166898][T11614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  516.166907][T11614] Call Trace:
[  516.166913][T11614]  <TASK>
[  516.166921][T11614]  dump_stack_lvl+0x16c/0x1f0
[  516.166948][T11614]  should_fail_ex+0x512/0x640
[  516.166974][T11614]  _copy_from_user+0x2e/0xd0
[  516.166998][T11614]  vmci_host_do_alloc_queuepair.constprop.0+0x28d/0x3d0
[  516.167023][T11614]  ? __pfx_vmci_host_do_alloc_queuepair.constprop.0+0x10/0x10
[  516.167048][T11614]  ? rcu_is_watching+0x12/0xc0
[  516.167071][T11614]  ? finish_task_switch.isra.0+0x2fa/0xc10
[  516.167100][T11614]  ? tomoyo_path_number_perm+0x18d/0x580
[  516.167123][T11614]  vmci_host_unlocked_ioctl+0x562/0x2040
[  516.167143][T11614]  ? do_vfs_ioctl+0x523/0x1a60
[  516.167162][T11614]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[  516.167184][T11614]  ? __pfx___schedule+0x10/0x10
[  516.167207][T11614]  ? ioctl_has_perm.constprop.0.isra.0+0x379/0x540
[  516.167230][T11614]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  516.167252][T11614]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  516.167279][T11614]  ? rcu_is_watching+0x12/0xc0
[  516.167306][T11614]  ? selinux_file_ioctl+0x180/0x270
[  516.167324][T11614]  ? selinux_file_ioctl+0xb4/0x270
[  516.167346][T11614]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[  516.167369][T11614]  __x64_sys_ioctl+0x18b/0x210
[  516.167388][T11614]  do_syscall_64+0xcd/0x4c0
[  516.167413][T11614]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  516.167430][T11614] RIP: 0033:0x7ff91df8e929
[  516.167445][T11614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  516.167460][T11614] RSP: 002b:00007ff91ee96038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  516.167478][T11614] RAX: ffffffffffffffda RBX: 00007ff91e1b5fa0 RCX: 00007ff91df8e929
[  516.167490][T11614] RDX: 0000200000000540 RSI: 00000000000007a8 RDI: 0000000000000004
[  516.167501][T11614] RBP: 00007ff91ee96090 R08: 0000000000000000 R09: 0000000000000000
[  516.167511][T11614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  516.167522][T11614] R13: 0000000000000000 R14: 00007ff91e1b5fa0 R15: 00007ffe7112bdb8
[  516.167545][T11614]  </TASK>
[  516.651053][ T5961] usb 6-1: USB disconnect, device number 21
[  516.695123][ T5899] usb 5-1: USB disconnect, device number 36
[  517.791984][T11634] binder: Binderfs stats mode cannot be changed during a remount
[  517.801359][   T30] audit: type=1400 audit(1752221562.337:2091): avc:  denied  { remount } for  pid=11633 comm="syz.5.1434" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  518.090227][  T881] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  518.261616][  T881] usb 6-1: device descriptor read/64, error -71
[  518.589753][  T881] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  518.769794][  T881] usb 6-1: device descriptor read/64, error -71
[  518.890050][  T881] usb usb6-port1: attempt power cycle
[  519.361169][  T881] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  519.639754][   T30] audit: type=1326 audit(1752221563.797:2092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11655 comm="syz.4.1440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  519.693793][   T30] audit: type=1326 audit(1752221563.797:2093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11655 comm="syz.4.1440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  519.701029][  T881] usb 6-1: device descriptor read/8, error -71
[  519.718796][   T30] audit: type=1326 audit(1752221563.807:2094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11655 comm="syz.4.1440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  519.755660][   T30] audit: type=1326 audit(1752221563.807:2095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11655 comm="syz.4.1440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  519.956296][   T30] audit: type=1326 audit(1752221563.807:2096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11655 comm="syz.4.1440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  520.378846][   T30] audit: type=1326 audit(1752221563.807:2097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11655 comm="syz.4.1440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  520.410121][   T30] audit: type=1326 audit(1752221563.807:2098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11655 comm="syz.4.1440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  520.434839][   T30] audit: type=1326 audit(1752221563.807:2099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11655 comm="syz.4.1440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  520.458969][   T30] audit: type=1326 audit(1752221563.817:2100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11655 comm="syz.4.1440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  520.493031][T11667] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1443'.
[  520.609687][  T881] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  522.615370][  T881] usb 6-1: device not accepting address 25, error -71
[  522.629372][  T881] usb usb6-port1: unable to enumerate USB device
[  524.615640][T11711] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1457'.
[  526.361246][T11717] netlink: 132 bytes leftover after parsing attributes in process `syz.5.1455'.
[  527.259966][ T5961] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  527.492531][ T5961] usb 7-1: Using ep0 maxpacket: 8
[  527.514933][ T5961] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  527.544172][ T5961] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  527.570940][ T5961] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 200
[  527.589881][ T5961] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  527.619693][ T5961] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  527.638998][ T5961] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  527.740408][T11745] FAULT_INJECTION: forcing a failure.
[  527.740408][T11745] name failslab, interval 1, probability 0, space 0, times 0
[  527.776329][T11745] CPU: 0 UID: 0 PID: 11745 Comm: syz.1.1466 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  527.776355][T11745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  527.776365][T11745] Call Trace:
[  527.776371][T11745]  <TASK>
[  527.776378][T11745]  dump_stack_lvl+0x16c/0x1f0
[  527.776413][T11745]  should_fail_ex+0x512/0x640
[  527.776445][T11745]  should_failslab+0xc2/0x120
[  527.776468][T11745]  __kmalloc_cache_noprof+0x6a/0x3e0
[  527.776488][T11745]  ? __pfx__copy_from_iter+0x10/0x10
[  527.776509][T11745]  ? vhost_iotlb_add_range_ctx+0xf0/0xa80
[  527.776530][T11745]  vhost_iotlb_add_range_ctx+0xf0/0xa80
[  527.776553][T11745]  vhost_chr_write_iter+0x5e9/0x10f0
[  527.776582][T11745]  ? __pfx_vhost_chr_write_iter+0x10/0x10
[  527.776605][T11745]  ? selinux_file_permission+0x126/0x660
[  527.776631][T11745]  ? bpf_lsm_file_permission+0x9/0x10
[  527.776656][T11745]  ? security_file_permission+0x71/0x210
[  527.776681][T11745]  ? rw_verify_area+0xcf/0x680
[  527.776703][T11745]  vfs_write+0x6c7/0x1150
[  527.776725][T11745]  ? __pfx_vhost_vsock_chr_write_iter+0x10/0x10
[  527.776755][T11745]  ? __pfx_vfs_write+0x10/0x10
[  527.776775][T11745]  ? find_held_lock+0x2b/0x80
[  527.776815][T11745]  ksys_write+0x12a/0x250
[  527.776836][T11745]  ? __pfx_ksys_write+0x10/0x10
[  527.776865][T11745]  do_syscall_64+0xcd/0x4c0
[  527.776891][T11745]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  527.776909][T11745] RIP: 0033:0x7f302f18e929
[  527.776923][T11745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  527.776940][T11745] RSP: 002b:00007f3030049038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  527.776957][T11745] RAX: ffffffffffffffda RBX: 00007f302f3b5fa0 RCX: 00007f302f18e929
[  527.776968][T11745] RDX: 0000000000000048 RSI: 0000200000000280 RDI: 0000000000000003
[  527.776978][T11745] RBP: 00007f3030049090 R08: 0000000000000000 R09: 0000000000000000
[  527.776988][T11745] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  527.776997][T11745] R13: 0000000000000000 R14: 00007f302f3b5fa0 R15: 00007ffee43e9048
[  527.777022][T11745]  </TASK>
[  528.178250][ T5961] usb 7-1: GET_CAPABILITIES returned 0
[  528.184881][ T5961] usbtmc 7-1:16.0: can't read capabilities
[  528.396448][ T5961] usb 7-1: USB disconnect, device number 13
[  529.542807][   T30] kauditd_printk_skb: 11 callbacks suppressed
[  529.542824][   T30] audit: type=1326 audit(1752221575.087:2112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11762 comm="syz.5.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f060078e929 code=0x7ffc0000
[  529.681947][   T30] audit: type=1326 audit(1752221575.087:2113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11762 comm="syz.5.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f060078e929 code=0x7ffc0000
[  529.706274][   T30] audit: type=1326 audit(1752221575.127:2114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11762 comm="syz.5.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f060078e929 code=0x7ffc0000
[  529.763468][   T30] audit: type=1326 audit(1752221575.127:2115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11762 comm="syz.5.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f060078e929 code=0x7ffc0000
[  529.798392][   T30] audit: type=1326 audit(1752221575.127:2116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11762 comm="syz.5.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f060078e929 code=0x7ffc0000
[  530.107096][T11780] hfsplus: unable to find HFS+ superblock
[  530.629822][   T30] audit: type=1326 audit(1752221576.157:2117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11778 comm="syz.0.1476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89feb8e929 code=0x7ffc0000
[  530.690913][   T30] audit: type=1326 audit(1752221576.157:2118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11778 comm="syz.0.1476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89feb8e929 code=0x7ffc0000
[  530.739873][   T30] audit: type=1326 audit(1752221576.167:2119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11778 comm="syz.0.1476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f89feb8e929 code=0x7ffc0000
[  530.903169][   T30] audit: type=1326 audit(1752221576.167:2120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11778 comm="syz.0.1476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89feb8e929 code=0x7ffc0000
[  531.032484][   T30] audit: type=1326 audit(1752221576.177:2121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11778 comm="syz.0.1476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89feb8e929 code=0x7ffc0000
[  531.919836][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  536.359749][   T24] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  536.510904][T11811] netlink: 'syz.6.1485': attribute type 1 has an invalid length.
[  536.518772][T11811] netlink: 228 bytes leftover after parsing attributes in process `syz.6.1485'.
[  536.613999][   T24] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  536.646743][   T24] usb 5-1: config 1 has 0 interfaces, different from the descriptor's value: 3
[  536.677709][   T24] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  536.758281][T11815] fuse: Unknown parameter '0x0000000000000008ÿÿÿÿ'
[  536.942540][   T30] kauditd_printk_skb: 11 callbacks suppressed
[  536.942589][   T30] audit: type=1326 audit(1752221582.387:2133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11812 comm="syz.1.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  537.214033][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  537.222170][   T24] usb 5-1: SerialNumber: syz
[  537.229185][   T30] audit: type=1326 audit(1752221582.387:2134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11812 comm="syz.1.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  537.255691][   T30] audit: type=1326 audit(1752221582.397:2135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11812 comm="syz.1.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  537.292881][   T30] audit: type=1326 audit(1752221582.397:2136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11812 comm="syz.1.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  537.347270][   T30] audit: type=1326 audit(1752221582.397:2137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11812 comm="syz.1.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  537.447495][   T30] audit: type=1326 audit(1752221582.397:2138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11812 comm="syz.1.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  537.461841][T11806] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1483'.
[  537.675814][T11806] netlink: 43 bytes leftover after parsing attributes in process `syz.4.1483'.
[  537.829709][   T30] audit: type=1326 audit(1752221582.397:2139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11812 comm="syz.1.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  537.835565][T11823] pimreg: entered allmulticast mode
[  537.864157][   T30] audit: type=1326 audit(1752221582.397:2140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11812 comm="syz.1.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  538.229797][T11806] netlink: 'syz.4.1483': attribute type 5 has an invalid length.
[  538.244155][   T30] audit: type=1326 audit(1752221582.407:2141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11812 comm="syz.1.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  538.413026][T11834] 9pnet_fd: Insufficient options for proto=fd
[  538.599287][T11806] netlink: 43 bytes leftover after parsing attributes in process `syz.4.1483'.
[  538.726344][   T30] audit: type=1326 audit(1752221582.407:2142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11812 comm="syz.1.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302f18e929 code=0x7ffc0000
[  538.767797][   T24] usb 5-1: USB disconnect, device number 37
[  538.902756][T11842] netlink: 'syz.1.1493': attribute type 1 has an invalid length.
[  538.925605][T11842] netlink: 172 bytes leftover after parsing attributes in process `syz.1.1493'.
[  538.963584][T11842] netlink: 'syz.1.1493': attribute type 1 has an invalid length.
[  538.974579][T11840] max out of range
[  539.094383][T11848] netlink: 'syz.6.1495': attribute type 1 has an invalid length.
[  539.102364][T11848] netlink: 224 bytes leftover after parsing attributes in process `syz.6.1495'.
[  540.408069][  T881] usb 5-1: new full-speed USB device number 38 using dummy_hcd
[  541.044424][T11875] 9pnet_virtio: no channels available for device /dev/loop0
[  541.108649][  T881] usb 5-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  541.126290][  T881] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  541.176390][  T881] usb 5-1: config 0 descriptor??
[  541.429728][   T24] usb 7-1: new low-speed USB device number 14 using dummy_hcd
[  541.704640][T11887] lo speed is unknown, defaulting to 1000
[  541.710636][T11887] lo speed is unknown, defaulting to 1000
[  541.717392][T11887] lo speed is unknown, defaulting to 1000
[  541.726494][T11887] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  541.739379][T11887] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  541.759524][T11887] lo speed is unknown, defaulting to 1000
[  541.767100][T11887] lo speed is unknown, defaulting to 1000
[  541.774364][T11887] lo speed is unknown, defaulting to 1000
[  541.782199][T11887] lo speed is unknown, defaulting to 1000
[  541.789689][T11887] lo speed is unknown, defaulting to 1000
[  541.856827][   T24] usb 7-1: config index 0 descriptor too short (expected 1307, got 27)
[  541.902207][   T24] usb 7-1: config 0 has an invalid interface number: 0 but max is -1
[  541.909815][  T881] udl 5-1:0.0: [drm] Unrecognized vendor firmware descriptor
[  541.922340][  T881] [drm:udl_init] *ERROR* Selecting channel failed
[  541.949602][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 0
[  542.054140][   T24] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  542.174003][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  542.416780][  T881] [drm] Initialized udl 0.0.1 for 5-1:0.0 on minor 2
[  542.424750][  T881] [drm] Initialized udl on minor 2
[  542.440415][  T881] udl 5-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  542.455058][  T881] udl 5-1:0.0: [drm] Cannot find any crtc or sizes
[  542.459536][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 39, setting to 8
[  542.465797][ T5961] udl 5-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  542.486136][  T881] usb 5-1: USB disconnect, device number 38
[  542.500910][ T5961] udl 5-1:0.0: [drm] Cannot find any crtc or sizes
[  542.509130][   T24] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  542.575589][   T24] usb 7-1: string descriptor 0 read error: -22
[  542.596123][   T24] usb 7-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  542.630019][   T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  542.668544][T11897] netlink: 10 bytes leftover after parsing attributes in process `syz.4.1508'.
[  542.669246][   T24] usb 7-1: config 0 descriptor??
[  542.722858][T11881] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  542.739033][   T24] hub 7-1:0.0: bad descriptor, ignoring hub
[  542.755289][   T24] hub 7-1:0.0: probe with driver hub failed with error -5
[  542.790990][   T24] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/input/input36
[  543.789985][    C1] usb_acecad 7-1:0.0: can't resubmit intr, dummy_hcd.6-1/input0, status -1
[  543.814545][   T24] usb 7-1: USB disconnect, device number 14
[  543.834239][T11904] syz.4.1510: attempt to access beyond end of device
[  543.834239][T11904] nbd4: rw=0, sector=64, nr_sectors = 8 limit=0
[  543.851517][T11904] syz.4.1510: attempt to access beyond end of device
[  543.851517][T11904] nbd4: rw=0, sector=120, nr_sectors = 8 limit=0
[  543.865361][T11904] Mount JFS Failure: -5
[  543.965036][T11908] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1511'.
[  543.986704][T11908] netlink: 4400 bytes leftover after parsing attributes in process `syz.1.1511'.
[  544.014444][T11908] sysfs: cannot create duplicate filename '/class/ieee80211/Ç`]Š•Iöq¯!¾>Ýsó³Îú*Š®!)\Ç+`²'
[  544.039274][T11908] CPU: 1 UID: 0 PID: 11908 Comm: syz.1.1511 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  544.039312][T11908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  544.039328][T11908] Call Trace:
[  544.039340][T11908]  <TASK>
[  544.039352][T11908]  dump_stack_lvl+0x16c/0x1f0
[  544.039389][T11908]  sysfs_warn_dup+0x7f/0xa0
[  544.039420][T11908]  sysfs_do_create_link_sd+0x124/0x140
[  544.039451][T11908]  sysfs_create_link+0x61/0xc0
[  544.039480][T11908]  device_add+0x62c/0x1a70
[  544.039505][T11908]  ? __pfx_device_add+0x10/0x10
[  544.039521][T11908]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  544.039553][T11908]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  544.039591][T11908]  wiphy_register+0x1c9c/0x2850
[  544.039614][T11908]  ? netdev_run_todo+0x864/0x1320
[  544.039643][T11908]  ? __dev_printk+0x270/0x270
[  544.039677][T11908]  ? __pfx_wiphy_register+0x10/0x10
[  544.039722][T11908]  ieee80211_register_hw+0x24ac/0x4140
[  544.039763][T11908]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  544.039792][T11908]  ? find_held_lock+0x2b/0x80
[  544.039824][T11908]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  544.039853][T11908]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  544.039877][T11908]  ? __hrtimer_setup+0x176/0x280
[  544.039907][T11908]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  544.039957][T11908]  ? trace_kmalloc+0x2b/0xd0
[  544.039990][T11908]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  544.040023][T11908]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  544.040052][T11908]  ? hwsim_new_radio_nl+0xa0e/0x12c0
[  544.040081][T11908]  ? __asan_memcpy+0x3c/0x60
[  544.040110][T11908]  hwsim_new_radio_nl+0xb51/0x12c0
[  544.040146][T11908]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  544.040203][T11908]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  544.040234][T11908]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  544.040272][T11908]  genl_family_rcv_msg_doit+0x206/0x2f0
[  544.040300][T11908]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  544.040334][T11908]  ? bpf_lsm_capable+0x9/0x10
[  544.040356][T11908]  ? security_capable+0x7e/0x260
[  544.040379][T11908]  ? ns_capable+0xd7/0x110
[  544.040404][T11908]  genl_rcv_msg+0x55c/0x800
[  544.040427][T11908]  ? __pfx_genl_rcv_msg+0x10/0x10
[  544.040449][T11908]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  544.040485][T11908]  netlink_rcv_skb+0x155/0x420
[  544.040503][T11908]  ? __pfx_genl_rcv_msg+0x10/0x10
[  544.040526][T11908]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  544.040556][T11908]  ? netlink_deliver_tap+0x1ae/0xd30
[  544.040590][T11908]  genl_rcv+0x28/0x40
[  544.040608][T11908]  netlink_unicast+0x58d/0x850
[  544.040631][T11908]  ? __pfx_netlink_unicast+0x10/0x10
[  544.040647][T11908]  ? __build_skb_around+0x278/0x3b0
[  544.040676][T11908]  netlink_sendmsg+0x8d1/0xdd0
[  544.040700][T11908]  ? __pfx_netlink_sendmsg+0x10/0x10
[  544.040730][T11908]  ____sys_sendmsg+0xa98/0xc70
[  544.040750][T11908]  ? copy_msghdr_from_user+0x10a/0x160
[  544.040774][T11908]  ? __pfx_____sys_sendmsg+0x10/0x10
[  544.040798][T11908]  ? try_to_wake_up+0xa2f/0x1680
[  544.040827][T11908]  ___sys_sendmsg+0x134/0x1d0
[  544.040854][T11908]  ? __pfx____sys_sendmsg+0x10/0x10
[  544.040877][T11908]  ? __lock_acquire+0x622/0x1c90
[  544.040930][T11908]  __sys_sendmsg+0x16d/0x220
[  544.040959][T11908]  ? __pfx___sys_sendmsg+0x10/0x10
[  544.040984][T11908]  ? __x64_sys_futex+0x1e0/0x4c0
[  544.041029][T11908]  do_syscall_64+0xcd/0x4c0
[  544.041060][T11908]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  544.041079][T11908] RIP: 0033:0x7f302f18e929
[  544.041097][T11908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  544.041116][T11908] RSP: 002b:00007f3030049038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  544.041138][T11908] RAX: ffffffffffffffda RBX: 00007f302f3b5fa0 RCX: 00007f302f18e929
[  544.041151][T11908] RDX: 0000000000000084 RSI: 0000200000000100 RDI: 0000000000000008
[  544.041170][T11908] RBP: 00007f302f210b39 R08: 0000000000000000 R09: 0000000000000000
[  544.041181][T11908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  544.041192][T11908] R13: 0000000000000000 R14: 00007f302f3b5fa0 R15: 00007ffee43e9048
[  544.041221][T11908]  </TASK>
[  544.552830][ T5961] usb 5-1: new full-speed USB device number 39 using dummy_hcd
[  544.879976][ T5961] usb 5-1: config 0 has an invalid interface number: 47 but max is 0
[  545.474411][ T5961] usb 5-1: config 0 has no interface number 0
[  545.483868][ T5961] usb 5-1: config 0 interface 47 altsetting 0 endpoint 0x2 has invalid maxpacket 512, setting to 64
[  545.741892][ T5961] usb 5-1: New USB device found, idVendor=045a, idProduct=5210, bcdDevice= 1.01
[  545.759622][ T5961] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  545.814536][ T5961] usb 5-1: Product: syz
[  545.818799][ T5961] usb 5-1: Manufacturer: syz
[  545.843250][T11937] netlink: 'syz.0.1516': attribute type 1 has an invalid length.
[  545.853349][ T5961] usb 5-1: SerialNumber: syz
[  545.863666][ T5961] usb 5-1: config 0 descriptor??
[  545.886427][T11915] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  545.929904][T11937] netlink: 228 bytes leftover after parsing attributes in process `syz.0.1516'.
[  546.006953][ T5961] ums-karma 5-1:0.47: USB Mass Storage device detected
[  546.535096][ T5961] ums-karma 5-1:0.47: probe with driver ums-karma failed with error -5
[  546.923872][ T5961] usb 5-1: USB disconnect, device number 39
[  547.014857][T11952] FAULT_INJECTION: forcing a failure.
[  547.014857][T11952] name failslab, interval 1, probability 0, space 0, times 0
[  547.027757][T11952] CPU: 1 UID: 0 PID: 11952 Comm: syz.0.1520 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  547.027783][T11952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  547.027793][T11952] Call Trace:
[  547.027800][T11952]  <TASK>
[  547.027807][T11952]  dump_stack_lvl+0x16c/0x1f0
[  547.027837][T11952]  should_fail_ex+0x512/0x640
[  547.027861][T11952]  ? __kmalloc_noprof+0xbf/0x510
[  547.027885][T11952]  ? load_msg+0x118/0x4a0
[  547.027909][T11952]  should_failslab+0xc2/0x120
[  547.027933][T11952]  __kmalloc_noprof+0xd2/0x510
[  547.027953][T11952]  ? __pfx___might_resched+0x10/0x10
[  547.027976][T11952]  ? rcu_watching_snap_stopped_since+0x51/0x110
[  547.027999][T11952]  ? ipcctl_obtain_check+0x3e1/0x3f0
[  547.028027][T11952]  load_msg+0x118/0x4a0
[  547.028056][T11952]  do_msgsnd+0x1a7/0x17b0
[  547.028080][T11952]  ? __pfx_do_msgsnd+0x10/0x10
[  547.028098][T11952]  ? find_held_lock+0x2b/0x80
[  547.028119][T11952]  ? __might_fault+0xe3/0x190
[  547.028140][T11952]  ? __might_fault+0xe3/0x190
[  547.028160][T11952]  ? __might_fault+0x13b/0x190
[  547.028186][T11952]  ? __x64_sys_msgsnd+0xe5/0x130
[  547.028202][T11952]  __x64_sys_msgsnd+0xe5/0x130
[  547.028222][T11952]  do_syscall_64+0xcd/0x4c0
[  547.028249][T11952]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  547.028267][T11952] RIP: 0033:0x7f89feb8e929
[  547.028282][T11952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  547.028299][T11952] RSP: 002b:00007f89ffa90038 EFLAGS: 00000246 ORIG_RAX: 0000000000000045
[  547.028316][T11952] RAX: ffffffffffffffda RBX: 00007f89fedb6160 RCX: 00007f89feb8e929
[  547.028327][T11952] RDX: 0000000000002000 RSI: 0000200000000400 RDI: 0000000000000000
[  547.028338][T11952] RBP: 00007f89ffa90090 R08: 0000000000000000 R09: 0000000000000000
[  547.028348][T11952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  547.028358][T11952] R13: 0000000000000000 R14: 00007f89fedb6160 R15: 00007ffd6156aed8
[  547.028383][T11952]  </TASK>
[  547.181116][T11951] binder: BINDER_SET_CONTEXT_MGR already set
[  547.275249][T11951] binder: 11950:11951 ioctl 4018620d 200000000040 returned -16
[  547.384304][T11957] netlink: 'syz.1.1521': attribute type 1 has an invalid length.
[  547.392523][T11957] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1521'.
[  547.829640][   T30] kauditd_printk_skb: 14 callbacks suppressed
[  547.829656][   T30] audit: type=1400 audit(1752221593.367:2157): avc:  denied  { create } for  pid=11961 comm="syz.0.1522" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_nflog_socket permissive=1
[  547.881339][T11968] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1522'.
[  548.179815][ T1837] usb 2-1: new low-speed USB device number 25 using dummy_hcd
[  548.338655][T11993] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1528'.
[  548.552424][ T1837] usb 2-1: config index 0 descriptor too short (expected 1307, got 27)
[  548.561315][ T1837] usb 2-1: config 0 has an invalid interface number: 0 but max is -1
[  548.569509][ T1837] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 0
[  548.634189][ T1837] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  548.657825][ T1837] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  548.678427][ T1837] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  548.726732][ T1837] usb 2-1: string descriptor 0 read error: -22
[  548.735129][ T1837] usb 2-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  548.749805][ T1837] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  548.782142][ T1837] usb 2-1: config 0 descriptor??
[  548.807491][ T1837] hub 2-1:0.0: bad descriptor, ignoring hub
[  548.814474][ T1837] hub 2-1:0.0: probe with driver hub failed with error -5
[  549.151845][T12000] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1530'.
[  549.687306][ T1837] usb 2-1: USB disconnect, device number 25
[  550.749179][T12021] ip6t_rpfilter: unknown options
[  550.877802][T12026] netlink: 'syz.4.1536': attribute type 1 has an invalid length.
[  550.892402][T12026] netlink: 184 bytes leftover after parsing attributes in process `syz.4.1536'.
[  550.939161][T12026] netlink: 'syz.4.1536': attribute type 1 has an invalid length.
[  551.246310][T12035] syz.0.1540: attempt to access beyond end of device
[  551.246310][T12035] nbd0: rw=0, sector=64, nr_sectors = 8 limit=0
[  551.268564][T12035] syz.0.1540: attempt to access beyond end of device
[  551.268564][T12035] nbd0: rw=0, sector=120, nr_sectors = 8 limit=0
[  551.281973][T12035] Mount JFS Failure: -5
[  551.911288][T12043] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1541'.
[  552.660680][   T30] audit: type=1326 audit(1752221598.197:2158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12038 comm="syz.4.1542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  552.801057][   T30] audit: type=1326 audit(1752221598.267:2159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12038 comm="syz.4.1542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83fd58e929 code=0x7ffc0000
[  552.958597][T12052] fuse: Unknown parameter '0x0000000000000008ÿÿÿÿ'
[  553.436886][T12054] program syz.6.1545 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  554.032921][ T5961] usb 6-1: new low-speed USB device number 26 using dummy_hcd
[  554.260267][ T5961] usb 6-1: config index 0 descriptor too short (expected 1307, got 27)
[  554.389655][ T5961] usb 6-1: config 0 has an invalid interface number: 0 but max is -1
[  554.424859][ T5961] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 0
[  554.464111][ T5961] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  554.476288][ T5961] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  554.489039][ T5961] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  554.514096][ T5961] usb 6-1: string descriptor 0 read error: -22
[  554.525554][ T5961] usb 6-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  554.534962][ T5961] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  554.558140][ T5961] usb 6-1: config 0 descriptor??
[  554.587584][ T5961] hub 6-1:0.0: bad descriptor, ignoring hub
[  554.612353][ T5961] hub 6-1:0.0: probe with driver hub failed with error -5
[  554.905751][ T5961] usb 6-1: USB disconnect, device number 26
[  555.598822][T12087] 9pnet_fd: Insufficient options for proto=fd
[  555.873760][T12090] FAULT_INJECTION: forcing a failure.
[  555.873760][T12090] name failslab, interval 1, probability 0, space 0, times 0
[  555.895893][T12090] CPU: 1 UID: 0 PID: 12090 Comm: syz.6.1553 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  555.895921][T12090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  555.895931][T12090] Call Trace:
[  555.895937][T12090]  <TASK>
[  555.895943][T12090]  dump_stack_lvl+0x16c/0x1f0
[  555.895971][T12090]  should_fail_ex+0x512/0x640
[  555.895990][T12090]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  555.896011][T12090]  should_failslab+0xc2/0x120
[  555.896033][T12090]  __kmalloc_cache_noprof+0x6a/0x3e0
[  555.896049][T12090]  ? binder_get_thread+0x1eb/0x8c0
[  555.896071][T12090]  ? binder_get_thread+0x225/0x8c0
[  555.896094][T12090]  ? __pfx_binder_poll+0x10/0x10
[  555.896115][T12090]  binder_get_thread+0x225/0x8c0
[  555.896139][T12090]  ? __pfx_binder_poll+0x10/0x10
[  555.896159][T12090]  binder_poll+0x3f/0x400
[  555.896180][T12090]  ? __pfx_binder_poll+0x10/0x10
[  555.896200][T12090]  do_select+0xd3d/0x17e0
[  555.896238][T12090]  ? __pfx_do_select+0x10/0x10
[  555.896259][T12090]  ? __pfx___pollwait+0x10/0x10
[  555.896280][T12090]  ? __pfx_pollwake+0x10/0x10
[  555.896306][T12090]  ? __pfx_pollwake+0x10/0x10
[  555.896326][T12090]  ? __pfx_pollwake+0x10/0x10
[  555.896347][T12090]  ? __pfx_pollwake+0x10/0x10
[  555.896367][T12090]  ? __pfx_pollwake+0x10/0x10
[  555.896387][T12090]  ? __pfx_pollwake+0x10/0x10
[  555.896407][T12090]  ? __pfx_pollwake+0x10/0x10
[  555.896427][T12090]  ? __pfx_pollwake+0x10/0x10
[  555.896451][T12090]  ? find_held_lock+0x2b/0x80
[  555.896470][T12090]  ? __might_fault+0xe3/0x190
[  555.896489][T12090]  ? __might_fault+0xe3/0x190
[  555.896506][T12090]  ? __might_fault+0x13b/0x190
[  555.896533][T12090]  ? core_sys_select+0x453/0xc10
[  555.896550][T12090]  core_sys_select+0x453/0xc10
[  555.896575][T12090]  ? __pfx_core_sys_select+0x10/0x10
[  555.896616][T12090]  ? set_user_sigmask+0x21b/0x2b0
[  555.896635][T12090]  ? __pfx_set_user_sigmask+0x10/0x10
[  555.896658][T12090]  do_pselect.constprop.0+0x19f/0x1e0
[  555.896681][T12090]  ? __pfx_do_pselect.constprop.0+0x10/0x10
[  555.896712][T12090]  __x64_sys_pselect6+0x182/0x240
[  555.896733][T12090]  ? __pfx___x64_sys_pselect6+0x10/0x10
[  555.896759][T12090]  do_syscall_64+0xcd/0x4c0
[  555.896783][T12090]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  555.896798][T12090] RIP: 0033:0x7ff91df8e929
[  555.896812][T12090] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  555.896828][T12090] RSP: 002b:00007ff91ee96038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[  555.896846][T12090] RAX: ffffffffffffffda RBX: 00007ff91e1b5fa0 RCX: 00007ff91df8e929
[  555.896857][T12090] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000040
[  555.896868][T12090] RBP: 00007ff91ee96090 R08: 0000000000000000 R09: 0000000000000000
[  555.896878][T12090] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  555.896889][T12090] R13: 0000000000000000 R14: 00007ff91e1b5fa0 R15: 00007ffe7112bdb8
[  555.896912][T12090]  </TASK>
[  556.505417][T12093] siw: device registration error -23
[  556.515463][T12093] smc: removing ib device syz0
[  557.166514][T12093] ------------[ cut here ]------------
[  557.172090][T12093] WARNING: CPU: 0 PID: 12093 at drivers/infiniband/sw/rxe/rxe_pool.c:116 rxe_pool_cleanup+0x41/0x60
[  557.182956][T12093] Modules linked in:
[  557.187174][T12093] CPU: 0 UID: 0 PID: 12093 Comm: syz.4.1554 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  557.199391][T12093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  557.210027][T12093] RIP: 0010:rxe_pool_cleanup+0x41/0x60
[  557.215518][T12093] Code: 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 1f 48 83 bb 80 00 00 00 00 75 06 5b e9 e5 5d 0a f9 e8 e0 5d 0a f9 90 <0f> 0b 90 5b e9 d6 5d 0a f9 e8 a1 39 71 f9 eb da 66 66 2e 0f 1f 84
[  557.235314][T12093] RSP: 0018:ffffc900101c71e8 EFLAGS: 00010246
[  557.241496][T12093] RAX: 0000000000080000 RBX: ffff888051119320 RCX: ffffc9000d00b000
[  557.249911][T12093] RDX: 0000000000080000 RSI: ffffffff88b19930 RDI: ffff8880511193a0
[  557.258152][T12093] RBP: ffffffff88affde0 R08: 0000000000000005 R09: 0000000000000001
[  557.266191][T12093] R10: 0000000000000002 R11: 0000000000000001 R12: ffff888051118668
[  557.274241][T12093] R13: ffff888051117fe0 R14: ffff888051117fe0 R15: ffff888051119080
[  557.282315][T12093] FS:  00007f83fe48a6c0(0000) GS:ffff888124715000(0000) knlGS:0000000000000000
[  557.291293][T12093] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  557.297899][T12093] CR2: 0000001b30513ff8 CR3: 000000005640d000 CR4: 00000000003526f0
[  557.305959][T12093] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000004144
[  557.313973][T12093] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  557.321975][T12093] Call Trace:
[  557.325293][T12093]  <TASK>
[  557.328234][T12093]  rxe_dealloc+0x25/0xc0
[  557.332507][T12093]  ib_dealloc_device+0x46/0x230
[  557.337366][T12093]  __ib_unregister_device+0x396/0x480
[  557.342766][T12093]  ? __pfx_ib_device_get_by_index+0x10/0x10
[  557.349109][T12093]  ib_unregister_device_and_put+0x5a/0x80
[  557.354877][T12093]  nldev_dellink+0x21f/0x320
[  557.359479][T12093]  ? __pfx_nldev_dellink+0x10/0x10
[  557.364692][T12093]  ? cap_capable+0xb3/0x250
[  557.369198][T12093]  ? bpf_lsm_capable+0x9/0x10
[  557.373894][T12093]  ? security_capable+0x7e/0x260
[  557.378833][T12093]  ? ns_capable+0xd7/0x110
[  557.383274][T12093]  ? __pfx_nldev_dellink+0x10/0x10
[  557.388391][T12093]  rdma_nl_rcv_msg+0x387/0x6e0
[  557.393185][T12093]  ? __pfx_rdma_nl_rcv_msg+0x10/0x10
[  557.398474][T12093]  ? __lock_acquire+0x622/0x1c90
[  557.403435][T12093]  rdma_nl_rcv_skb.constprop.0.isra.0+0x2d0/0x430
[  557.409867][T12093]  ? __pfx_rdma_nl_rcv_skb.constprop.0.isra.0+0x10/0x10
[  557.416840][T12093]  ? netlink_deliver_tap+0x1ae/0xd30
[  557.422162][T12093]  ? is_vmalloc_addr+0x86/0xa0
[  557.426928][T12093]  netlink_unicast+0x58d/0x850
[  557.431716][T12093]  ? __pfx_netlink_unicast+0x10/0x10
[  557.437022][T12093]  netlink_sendmsg+0x8d1/0xdd0
[  557.441837][T12093]  ? __pfx_netlink_sendmsg+0x10/0x10
[  557.447849][T12093]  ____sys_sendmsg+0xa98/0xc70
[  557.452665][T12093]  ? copy_msghdr_from_user+0x10a/0x160
[  557.458133][T12093]  ? __pfx_____sys_sendmsg+0x10/0x10
[  557.463442][T12093]  ? __pfx_futex_wake_mark+0x10/0x10
[  557.468731][T12093]  ___sys_sendmsg+0x134/0x1d0
[  557.473433][T12093]  ? __pfx____sys_sendmsg+0x10/0x10
[  557.478643][T12093]  ? __lock_acquire+0x622/0x1c90
[  557.483652][T12093]  __sys_sendmsg+0x16d/0x220
[  557.488246][T12093]  ? __pfx___sys_sendmsg+0x10/0x10
[  557.493371][T12093]  ? __x64_sys_futex+0x1e0/0x4c0
[  557.498330][T12093]  do_syscall_64+0xcd/0x4c0
[  557.502898][T12093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  557.508797][T12093] RIP: 0033:0x7f83fd58e929
[  557.513253][T12093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  557.534045][T12093] RSP: 002b:00007f83fe48a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  557.542538][T12093] RAX: ffffffffffffffda RBX: 00007f83fd7b5fa0 RCX: 00007f83fd58e929
[  557.551045][T12093] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 000000000000000b
[  557.559048][T12093] RBP: 00007f83fd610b39 R08: 0000000000000000 R09: 0000000000000000
[  557.567080][T12093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  557.575101][T12093] R13: 0000000000000000 R14: 00007f83fd7b5fa0 R15: 00007ffc0d541f98
[  557.583122][T12093]  </TASK>
[  557.586141][T12093] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  557.593407][T12093] CPU: 0 UID: 0 PID: 12093 Comm: syz.4.1554 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
[  557.605450][T12093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  557.615483][T12093] Call Trace:
[  557.618739][T12093]  <TASK>
[  557.621654][T12093]  dump_stack_lvl+0x3d/0x1f0
[  557.626246][T12093]  panic+0x71c/0x800
[  557.630121][T12093]  ? __pfx_panic+0x10/0x10
[  557.634518][T12093]  ? show_trace_log_lvl+0x29b/0x3e0
[  557.639700][T12093]  ? rxe_pool_cleanup+0x41/0x60
[  557.644528][T12093]  check_panic_on_warn+0xab/0xb0
[  557.649443][T12093]  __warn+0xf6/0x3c0
[  557.653314][T12093]  ? rxe_pool_cleanup+0x41/0x60
[  557.658144][T12093]  report_bug+0x3c3/0x580
[  557.662451][T12093]  ? rxe_pool_cleanup+0x41/0x60
[  557.667281][T12093]  handle_bug+0x184/0x210
[  557.671606][T12093]  exc_invalid_op+0x17/0x50
[  557.676083][T12093]  asm_exc_invalid_op+0x1a/0x20
[  557.680909][T12093] RIP: 0010:rxe_pool_cleanup+0x41/0x60
[  557.686344][T12093] Code: 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 1f 48 83 bb 80 00 00 00 00 75 06 5b e9 e5 5d 0a f9 e8 e0 5d 0a f9 90 <0f> 0b 90 5b e9 d6 5d 0a f9 e8 a1 39 71 f9 eb da 66 66 2e 0f 1f 84
[  557.705940][T12093] RSP: 0018:ffffc900101c71e8 EFLAGS: 00010246
[  557.711990][T12093] RAX: 0000000000080000 RBX: ffff888051119320 RCX: ffffc9000d00b000
[  557.719955][T12093] RDX: 0000000000080000 RSI: ffffffff88b19930 RDI: ffff8880511193a0
[  557.727899][T12093] RBP: ffffffff88affde0 R08: 0000000000000005 R09: 0000000000000001
[  557.735844][T12093] R10: 0000000000000002 R11: 0000000000000001 R12: ffff888051118668
[  557.743789][T12093] R13: ffff888051117fe0 R14: ffff888051117fe0 R15: ffff888051119080
[  557.751748][T12093]  ? __pfx_rxe_dealloc+0x10/0x10
[  557.756675][T12093]  ? rxe_pool_cleanup+0x40/0x60
[  557.761514][T12093]  ? rxe_pool_cleanup+0x40/0x60
[  557.766350][T12093]  rxe_dealloc+0x25/0xc0
[  557.770572][T12093]  ib_dealloc_device+0x46/0x230
[  557.775402][T12093]  __ib_unregister_device+0x396/0x480
[  557.780752][T12093]  ? __pfx_ib_device_get_by_index+0x10/0x10
[  557.786619][T12093]  ib_unregister_device_and_put+0x5a/0x80
[  557.792312][T12093]  nldev_dellink+0x21f/0x320
[  557.796879][T12093]  ? __pfx_nldev_dellink+0x10/0x10
[  557.801999][T12093]  ? cap_capable+0xb3/0x250
[  557.806491][T12093]  ? bpf_lsm_capable+0x9/0x10
[  557.811144][T12093]  ? security_capable+0x7e/0x260
[  557.816055][T12093]  ? ns_capable+0xd7/0x110
[  557.820446][T12093]  ? __pfx_nldev_dellink+0x10/0x10
[  557.825536][T12093]  rdma_nl_rcv_msg+0x387/0x6e0
[  557.830279][T12093]  ? __pfx_rdma_nl_rcv_msg+0x10/0x10
[  557.835541][T12093]  ? __lock_acquire+0x622/0x1c90
[  557.840457][T12093]  rdma_nl_rcv_skb.constprop.0.isra.0+0x2d0/0x430
[  557.846849][T12093]  ? __pfx_rdma_nl_rcv_skb.constprop.0.isra.0+0x10/0x10
[  557.853765][T12093]  ? netlink_deliver_tap+0x1ae/0xd30
[  557.859037][T12093]  ? is_vmalloc_addr+0x86/0xa0
[  557.863781][T12093]  netlink_unicast+0x58d/0x850
[  557.868517][T12093]  ? __pfx_netlink_unicast+0x10/0x10
[  557.873779][T12093]  netlink_sendmsg+0x8d1/0xdd0
[  557.878515][T12093]  ? __pfx_netlink_sendmsg+0x10/0x10
[  557.883776][T12093]  ____sys_sendmsg+0xa98/0xc70
[  557.888512][T12093]  ? copy_msghdr_from_user+0x10a/0x160
[  557.893946][T12093]  ? __pfx_____sys_sendmsg+0x10/0x10
[  557.899207][T12093]  ? __pfx_futex_wake_mark+0x10/0x10
[  557.904468][T12093]  ___sys_sendmsg+0x134/0x1d0
[  557.909121][T12093]  ? __pfx____sys_sendmsg+0x10/0x10
[  557.914295][T12093]  ? __lock_acquire+0x622/0x1c90
[  557.919218][T12093]  __sys_sendmsg+0x16d/0x220
[  557.923784][T12093]  ? __pfx___sys_sendmsg+0x10/0x10
[  557.928870][T12093]  ? __x64_sys_futex+0x1e0/0x4c0
[  557.933792][T12093]  do_syscall_64+0xcd/0x4c0
[  557.938276][T12093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  557.944149][T12093] RIP: 0033:0x7f83fd58e929
[  557.948546][T12093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  557.968130][T12093] RSP: 002b:00007f83fe48a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  557.976518][T12093] RAX: ffffffffffffffda RBX: 00007f83fd7b5fa0 RCX: 00007f83fd58e929
[  557.984463][T12093] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 000000000000000b
[  557.992409][T12093] RBP: 00007f83fd610b39 R08: 0000000000000000 R09: 0000000000000000
[  558.000366][T12093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  558.008308][T12093] R13: 0000000000000000 R14: 00007f83fd7b5fa0 R15: 00007ffc0d541f98
[  558.016270][T12093]  </TASK>
[  558.019470][T12093] Kernel Offset: disabled
[  558.023779][T12093] Rebooting in 86400 seconds..