last executing test programs:

17m43.903163049s ago: executing program 4 (id=540):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x140, 0x82) (async)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='\x00', 0x1}], 0x1, 0x1)
close(r2) (async)
r3 = fanotify_init(0x2, 0x1000)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x3, &(0x7f0000002480))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0xd)
socketpair(0x1, 0x1, 0x0, 0x0) (async)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='.\x00', 0x0, 0x0)
fanotify_mark(r3, 0x445, 0x800002a, r4, 0x0) (async)
fanotify_mark(r3, 0x105, 0x40001032, r0, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)

17m41.955352737s ago: executing program 4 (id=554):
socket$nl_generic(0x10, 0x3, 0x10)
socket$packet(0x11, 0x3, 0x300)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x55)
write(r0, &(0x7f0000000000)="0a000000010001", 0x7)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
socket$inet6_sctp(0xa, 0x801, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000940)={&(0x7f00000000c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRESHEX=r1], 0x64}, 0x1, 0x0, 0x0, 0x8811}, 0x0)

17m39.877724742s ago: executing program 4 (id=559):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000000c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100fdffffff000000001d00000008000300", @ANYRES32=r2, @ANYBLOB='@\x00/'], 0x5c}}, 0x0) (fail_nth: 4)

17m39.493836267s ago: executing program 4 (id=561):
mknod(&(0x7f00000048c0)='./file0\x00', 0x0, 0xffffffff)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB, @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f000000a380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f00000006c0)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x0, 0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x80}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008df76a250000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea21056000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000131a5d9400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
ioctl$VIDIOC_G_STD(r2, 0x80085617, &(0x7f0000000040))

17m38.704507031s ago: executing program 4 (id=565):
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b99}, 0x37, [0xfffffff8, 0x1, 0x5, 0x9, 0x10008, 0x155f, 0x6, 0x4, 0x25cd, 0x1, 0xb4, 0xa, 0xa2b9, 0x6, 0x7, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x1, 0x8, 0xd, 0x4, 0x12a3, 0x6, 0xffffffff, 0x2, 0x6, 0x7, 0x81, 0x9, 0x79, 0x25713dc3, 0x10000, 0x0, 0x95, 0x4, 0x4, 0x16, 0x2, 0x5, 0x401, 0xfffffff5, 0x405, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x2, 0x1000, 0xef1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x9, 0x4], [0x9, 0x3, 0x6, 0x9, 0x8, 0xc66, 0xa8a9, 0x20000073, 0x8e, 0xd50, 0x7, 0x5, 0x2, 0x809, 0x4, 0xa7, 0x1000, 0x0, 0x200b398, 0x400000, 0x0, 0x4, 0x1c, 0x7, 0x1, 0x2, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x7, 0xf1, 0x4, 0x1, 0xffff, 0x6, 0x2, 0x5, 0x3ff, 0x1ff, 0x1, 0x7fff, 0x1, 0x1cb, 0x1, 0x80000004, 0x6, 0x438, 0x2, 0x9, 0x95, 0x7fffffff, 0x4, 0xfffffff9, 0x1, 0x1000, 0xfffff801, 0x5], [0xfffffffe, 0xfffffffe, 0xffff, 0xc, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x5, 0x491, 0x8d3, 0x200006, 0x8, 0x400, 0x2, 0x400, 0x41, 0x6, 0xee4b, 0x2000004, 0x1, 0x8000003, 0x5, 0x9, 0x3, 0x3, 0x9, 0x3, 0xc7, 0xfff, 0x10000a, 0x8000, 0x400, 0x3e55, 0x5, 0xd3, 0x408, 0x3437, 0x3, 0xd, 0x7, 0x601, 0x101, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x6, 0x8000, 0x4, 0x3, 0xd500, 0x8, 0x77, 0x9, 0x6, 0x10000, 0xfffffffd, 0x8, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0x40bfc, 0x8, 0x5, 0x7f, 0x2a29, 0x40, 0xff, 0x1005, 0x1, 0x7, 0x1e, 0x9, 0x81, 0x1, 0x19d86, 0xd, 0xfffffff7, 0x8, 0x6, 0x5396, 0x3, 0x200006, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0x8, 0x7fffffff, 0x9, 0xc, 0x32d, 0x3, 0x201, 0x2000803, 0xffffffff, 0x10000, 0x0, 0x8008, 0x7fff, 0x3, 0x6, 0xf, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0xdab, 0x3, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x40000000000180, 0x2, 0x80000000, 0xf2, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x7, 0x0, 0x5, 0x4, 0x8], 0x25000, 0x304})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a3200000000140000001100"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000200000a98000000060a010400000000000000000a0004050900010073797a31000000006c000480680001800a000100696e6e657200000058000280080004400000001a340005800c000100706179"], 0xc0}, 0x1, 0x0, 0x0, 0x8890}, 0x24008080)
bind$inet6(0xffffffffffffffff, &(0x7f0000000500)={0xa, 0x4e20, 0xffffffff, @empty, 0x4}, 0x1c)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x89f0, &(0x7f0000000340)={'gre0\x00', &(0x7f0000000200)=@ethtool_ringparam={0x10, 0x80000001, 0x3, 0x1, 0xd, 0xefe, 0x0, 0x0, 0x8}})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

17m37.218738314s ago: executing program 4 (id=577):
r0 = open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0xdc)
openat(0xffffffffffffff9c, 0x0, 0x187042, 0x15)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x34f)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x38, 0x1403, 0x1, 0x70bd2a, 0x25dfdbff, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'bond0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000000) (async)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000000c0)=0x20) (async)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x9000)

17m21.883889328s ago: executing program 32 (id=577):
r0 = open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0xdc)
openat(0xffffffffffffff9c, 0x0, 0x187042, 0x15)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x34f)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x38, 0x1403, 0x1, 0x70bd2a, 0x25dfdbff, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'bond0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000000) (async)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000000c0)=0x20) (async)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x9000)

17m0.644131794s ago: executing program 2 (id=755):
syz_io_uring_setup(0xf00, 0x0, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
r3 = openat$random(0xffffffffffffff9c, &(0x7f0000004600), 0x42, 0x0)
sendfile(r3, r3, 0x0, 0x4)
setitimer(0x0, &(0x7f0000000040)={{0x6, 0x9}, {0x1ff, 0x32e3}}, 0x0)
alarm(0x38)

16m58.588114424s ago: executing program 2 (id=758):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000100)=0x6, 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xffffffffffffffff, 0x10010, 0xffffffffffffffff, 0xffffc000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f000000e0c0)=""/102400, 0x19000)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x1a1)
socket$tipc(0x1e, 0x5, 0x0)
socket$netlink(0x10, 0x3, 0x4)
newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', &(0x7f0000000200), 0x6000)

16m58.388006521s ago: executing program 2 (id=760):
unshare(0x2c020400)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)

16m58.076096743s ago: executing program 2 (id=763):
clock_getres(0x7ffffffff000, 0x0) (async)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0) (async)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0) (async)
mount$bpf(0x200000000000, &(0x7f0000000140)='./file0/../file0\x00', 0x0, 0x8b7848, 0x0) (async)
mount$bpf(0x200000000000, &(0x7f0000000000)='.\x00', 0x0, 0x8b7848, 0x0)
umount2(&(0x7f0000000080)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x1, 0x18, &(0x7f0000000a40)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

16m57.774708717s ago: executing program 2 (id=765):
newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x6000)
setresuid(0xee01, r0, r0)

16m50.063980932s ago: executing program 2 (id=791):
r0 = open$dir(&(0x7f00000006c0)='./file0/file0\x00', 0x4002c0, 0xe9)
r1 = open_tree(r0, &(0x7f0000000080)='./file0\x00', 0x9000)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000300)={<r2=>0x0, 0x82, "2106c009851a7918d946f0077873a30be745f20ba3f87390b3307f041812799f41488338b40858b4f79b7a529ebe8c8c77e7488aa59cd50bd1099b8b277acfb3bf16f817237c8d96af58146793683c93b90da90fc7676695686c8b0e6a02317b4fc6b488220c7053ce2928e5f4caa0b9b80950e76a851e98c08a651db51ecf4854ee"}, &(0x7f00000003c0)=0x8a)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000400)={r2, 0x2, 0xb4cd}, &(0x7f00000004c0)=0x8)
r3 = openat$procfs(0xffffff9c, &(0x7f0000000040)='/proc/sysvipc/shm\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000003000000000000000040000018010000786c6c250000000000202020731af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000ff0000008500000006000000850000002a00000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180700000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
write$sndseq(r4, &(0x7f0000001080)=[{0xff, 0x10, 0x3, 0xfd, @time={0x0, 0x1}, {0x46, 0xfa}, {0xf}, @note={0x3, 0xb7, 0x10, 0xc2, 0x5}}], 0x1c)
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000007c0)=ANY=[@ANYRES32=r9, @ANYRES32=r8, @ANYBLOB='&'], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r9}, &(0x7f0000000000), &(0x7f00000002c0)=r5}, 0x20)
sendmsg$inet(r7, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x22fe0}], 0x1}, 0x0)
recvmsg$unix(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)=""/243, 0xfffffed7}], 0x1}, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @flow_dissector=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r10, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
preadv(r3, &(0x7f0000003240), 0x0, 0x1, 0x0)

16m49.332506154s ago: executing program 33 (id=791):
r0 = open$dir(&(0x7f00000006c0)='./file0/file0\x00', 0x4002c0, 0xe9)
r1 = open_tree(r0, &(0x7f0000000080)='./file0\x00', 0x9000)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000300)={<r2=>0x0, 0x82, "2106c009851a7918d946f0077873a30be745f20ba3f87390b3307f041812799f41488338b40858b4f79b7a529ebe8c8c77e7488aa59cd50bd1099b8b277acfb3bf16f817237c8d96af58146793683c93b90da90fc7676695686c8b0e6a02317b4fc6b488220c7053ce2928e5f4caa0b9b80950e76a851e98c08a651db51ecf4854ee"}, &(0x7f00000003c0)=0x8a)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000400)={r2, 0x2, 0xb4cd}, &(0x7f00000004c0)=0x8)
r3 = openat$procfs(0xffffff9c, &(0x7f0000000040)='/proc/sysvipc/shm\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000003000000000000000040000018010000786c6c250000000000202020731af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000ff0000008500000006000000850000002a00000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180700000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
write$sndseq(r4, &(0x7f0000001080)=[{0xff, 0x10, 0x3, 0xfd, @time={0x0, 0x1}, {0x46, 0xfa}, {0xf}, @note={0x3, 0xb7, 0x10, 0xc2, 0x5}}], 0x1c)
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7088c60897d4a6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3540546bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000007c0)=ANY=[@ANYRES32=r9, @ANYRES32=r8, @ANYBLOB='&'], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r9}, &(0x7f0000000000), &(0x7f00000002c0)=r5}, 0x20)
sendmsg$inet(r7, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x22fe0}], 0x1}, 0x0)
recvmsg$unix(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)=""/243, 0xfffffed7}], 0x1}, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @flow_dissector=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r10, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
preadv(r3, &(0x7f0000003240), 0x0, 0x1, 0x0)

16m32.612539648s ago: executing program 1 (id=843):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xe, 0x4, 0x4, 0x2}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x7, &(0x7f0000000100)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}]}, &(0x7f0000000180)='GPL\x00', 0x8, 0xff8, &(0x7f0000001e00)=""/4088, 0x0, 0xd}, 0x94)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0xb, @loopback, 0x4}, 0x1c, &(0x7f0000000100)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x48043)
r3 = dup(r0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001a80)=[{{&(0x7f0000000080)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x2f}}, 0x10, 0x0}}], 0x1, 0x4)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'bridge_slave_1\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="440000001000010029bd7000ffdbdf2500000000", @ANYRES32=r6, @ANYBLOB="100804002010000024001280110001006272696467655f736c618c65000000000c000580050019"], 0x44}, 0x1, 0x0, 0x0, 0x44441}, 0x40040d4)
timer_create(0x7, 0x0, &(0x7f0000000080))
mprotect(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x1000002)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r7 = creat(&(0x7f0000000280)='./file0\x00', 0xb0)
sync_file_range(r7, 0x800000000976, 0x80, 0x3)
sendmsg$nl_route(r4, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x24044040)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000000)='ip6gretap0\x00', 0x10)
shutdown(r3, 0x1)
pipe2$9p(&(0x7f0000000080)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
write$P9_RSETATTR(r9, &(0x7f0000000140)={0x6, 0x1b, 0x202}, 0x7)
splice(r8, 0x0, r0, 0x0, 0xfffe, 0x2)

16m32.028267975s ago: executing program 1 (id=847):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'caif0\x00'})
r2 = syz_open_dev$sg(&(0x7f00000002c0), 0xe6, 0x2602)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x380000f, 0x12, r2, 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x86840)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, &(0x7f0000000040)=0x7)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)

16m31.027743009s ago: executing program 1 (id=852):
r0 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040)="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", 0x128)

16m30.236907138s ago: executing program 1 (id=854):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r3=>0x0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d80)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010426bd7000f8dbdf250200000008000100", @ANYRES32=r3], 0x1c}}, 0x4008054) (fail_nth: 3)
r4 = socket(0x1e, 0x4, 0x0)
write$nci(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="5001", @ANYRES8=r1, @ANYRES16=r4], 0x14)

16m29.884855284s ago: executing program 1 (id=858):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000001000000327bd7000fbdbdf", @ANYBLOB="320a0500230800001000128008000100767469000400029a0800"], 0x38}, 0x1, 0x0, 0x0, 0x4000080}, 0x4010)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r0)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01400010000600000000067400062c00070073797352656d5f753a6f626a6563745f723a756465765f68656c7065725f657865635f743a733000080002"], 0x78}, 0x1, 0xffffffff00000003}, 0x4) (fail_nth: 3)

16m29.524036348s ago: executing program 1 (id=859):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000001e40)='/dev/comedi4\x00', 0x103100, 0x0)
r1 = socket$inet_icmp(0x2, 0x2, 0x1)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000127000/0x1000)=nil, 0x1000, 0x200000b)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x100000a, 0x204031, 0xffffffffffffffff, 0xec776000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000009c0)={{0x14}, [@NFT_MSG_NEWSETELEM={0x14, 0xc, 0xa, 0x301, 0x0, 0x0, {0x1}}], {0x14, 0x10}}, 0x3c}}, 0x0)
bind$inet(r1, &(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10)
unshare(0x64060400)
r4 = dup(r0)
ioctl$UFFDIO_CONTINUE(r4, 0xc020aa07, &(0x7f0000000180)={{&(0x7f0000126000/0x2000)=nil, 0x2000}})
syz_open_procfs(0x0, &(0x7f0000000300)='net/icmp\x00')
socket$inet6_icmp(0xa, 0x2, 0x3a)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r5, 0x80045300, &(0x7f0000000140))

16m14.244001653s ago: executing program 34 (id=859):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000001e40)='/dev/comedi4\x00', 0x103100, 0x0)
r1 = socket$inet_icmp(0x2, 0x2, 0x1)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000127000/0x1000)=nil, 0x1000, 0x200000b)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x100000a, 0x204031, 0xffffffffffffffff, 0xec776000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000009c0)={{0x14}, [@NFT_MSG_NEWSETELEM={0x14, 0xc, 0xa, 0x301, 0x0, 0x0, {0x1}}], {0x14, 0x10}}, 0x3c}}, 0x0)
bind$inet(r1, &(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10)
unshare(0x64060400)
r4 = dup(r0)
ioctl$UFFDIO_CONTINUE(r4, 0xc020aa07, &(0x7f0000000180)={{&(0x7f0000126000/0x2000)=nil, 0x2000}})
syz_open_procfs(0x0, &(0x7f0000000300)='net/icmp\x00')
socket$inet6_icmp(0xa, 0x2, 0x3a)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r5, 0x80045300, &(0x7f0000000140))

48.514087991s ago: executing program 6 (id=3712):
socket$kcm(0xa, 0x3, 0x3a) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c0000002e0000a400a23f65762f6370752fd6f74dd9bf0602000000000000005d006d920d459576d2c553adcd1118027bc08e08afbca840b068ad078ddf95eb406b33e05d77b85baca48b019c223720bf92"], 0x28}, 0x1, 0x0, 0x0, 0x42804}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, 0x0, 0x2400c808) (async)
socket$nl_generic(0x11, 0x3, 0x10) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) (async)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x40020000000002)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) (async, rerun: 32)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a) (rerun: 32)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48) (async)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) (async)
close(0x3) (async, rerun: 32)
r4 = socket(0x2, 0x80805, 0x0) (rerun: 32)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
close(0x3) (async)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10) (async)
sendmmsg$inet_sctp(r4, &(0x7f0000001c00)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000001040)=[@sndrcv={0x30, 0x84, 0x1, {0xb, 0xc2, 0x5, 0x40005, 0x83, 0x0, 0x467b7286, 0x2}}], 0x30, 0x4001}], 0x1, 0x11) (async)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x3000003, 0x204031, 0xffffffffffffffff, 0xac891000) (async)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)) (async)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x12, 0x7, 0x4, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r6, <r7=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000140)=r3}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000060000007b8af8ff001a0000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000950000000000000097e3f977096b263d457e661192905e9895d91b2b78976d231a4347146a9a04aca99abbcee5"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2194037642dfcca0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r8, 0x2000000, 0x4e, 0x0, &(0x7f0000000540)="63eced61ff000000c11bdf33c911034b7955cc5f25d01a253e81c72597962422ac23faeddc195e96a5ec4fd3744cb785b66bca5d57667c0245d2f192979a3d65997d112fc0dbaf0f2eee96d48b39", 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x50)
fallocate(0xffffffffffffffff, 0x2c, 0x5, 0x0) (async)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x27, 0x1c, 0x3fc, 0x0, 0x3, 0x2, 0x0, @rand_addr, @multicast1}, @address_request}}}}, 0x0)

47.496234073s ago: executing program 6 (id=3714):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x20)
fsetxattr$smack_xattr_label(r1, &(0x7f0000000000)='security.SMACK64\x00', 0x0, 0x0, 0x3)
openat$vmci(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r2 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0xd)
ioctl$VT_GETMODE(r2, 0x5601, &(0x7f0000000240))
connect$netlink(r0, &(0x7f0000000380)=@proc={0x10, 0x0, 0x25dfdbfd, 0x20}, 0xc)
sendmsg$AUDIT_SIGNAL_INFO(r0, &(0x7f0000001280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x1157d27a16c047f5}, 0x4000840)
r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x400080, 0x0)
recvfrom$inet(r3, &(0x7f0000000040)=""/43, 0x2b, 0x52, &(0x7f0000000080)={0x2, 0x4e20, @rand_addr=0x64010101}, 0x10)
mount(&(0x7f00000000c0)=@filename='./cgroup\x00', &(0x7f0000000180)='./cgroup\x00', &(0x7f0000000140)='pstore\x00', 0x4, 0x0)

46.828876844s ago: executing program 6 (id=3716):
r0 = socket(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000140)="7800000018002507b9409b14ffff00000204be04020506050e020409430009003f000c00100000000d0085a168d0bf46d32345653600648d0a00120002000a0000005ade4a460c89b6ec0cff3959547f509058ba86c902000000004a3200040016000500020000000000e000e218d1ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000540)=ANY=[@ANYBLOB="ffffffffffffffffffffffff86dd607f00ef00102f0000000000000000000000000000000000ff020000000000000000000000fffffffff888be0010907882a005ff00000000"], 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448cc, &(0x7f0000000100))
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYRES32], 0x50)
connect$llc(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x2000012, 0x0, 0x0, &(0x7f0000000c40), 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1}, 0x50)
syz_emit_ethernet(0x46, &(0x7f0000000400)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x4, 0x38, 0x80, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x6, 0x3f18, {0x5, 0x2, 0x0, 0x3f, 0x0, 0x67, 0x0, 0x0, 0x89, 0x0, @loopback, @multicast2}, "00186371ae9b1c03"}}}}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f0000000240), 0xe7e, 0x0)
read$msr(r3, &(0x7f0000009b80)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xd0}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x5, 0x0, 0x7, 0x9, 0x0, 0x2, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x0, 0x6, 0xa, 0x9, 0xfe04, 0xf1}, {0x7, 0x1, 0xb, 0x7, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x9, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe5}, 0x94)

44.988759848s ago: executing program 6 (id=3718):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0)
r0 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000440)={'\x00', 0x4ef, 0x3, 0x7, 0x0, 0xfff, <r1=>0x0})
sched_setscheduler(r1, 0x1, &(0x7f0000000180)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x1, &(0x7f0000000280)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000003c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x6000, 0x1)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x42)
r5 = fsopen(0x0, 0x1)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040), 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
ioctl$DMA_HEAP_IOCTL_ALLOC(r0, 0xc0184800, 0x0) (fail_nth: 4)
setitimer(0x0, 0x0, 0x0)
ioctl$DMA_BUF_IOCTL_SYNC(0xffffffffffffffff, 0x40086200, 0x0)

44.164199475s ago: executing program 6 (id=3721):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
shutdown(r0, 0x1)
socket$packet(0x11, 0x3, 0x300)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f0000000100)={0x0, 0x6, 0x0, 0x0, 0x800, 0x0, 0x0, 0x1}, 0x0, &(0x7f0000000240)={0x1f, 0x2}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0) (fail_nth: 2)

42.616000662s ago: executing program 6 (id=3725):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000100)=0x6, 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xffffffffffffffff, 0x10010, 0xffffffffffffffff, 0xffffc000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f000000e0c0)=""/102400, 0x19000)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x1a1)
r2 = socket$tipc(0x1e, 0x5, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x4)
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, <r4=>0x0}, 0x6000)
setresuid(0xee01, r4, r4)
writev(r3, &(0x7f0000000300)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560aff820fffff5bab00070000002058000b4824ca945f6400940f6a0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100030c100000000000224e0000", 0x58}], 0x1)
bind$tipc(r2, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
socket$tipc(0x1e, 0x5, 0x0)
r5 = syz_open_dev$cec(&(0x7f0000000c40), 0x0, 0x2000)
ioctl$EXT4_IOC_GROUP_EXTEND(r5, 0x40086607, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000001d40)=ANY=[@ANYBLOB], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1, 0x10, &(0x7f0000000bc0)=ANY=[@ANYBLOB="18080000000000000000000000000000181200", @ANYRES32=r8, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000001801000000082c2500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f00000000c0)=r9, 0x4)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r8}, &(0x7f0000000400), &(0x7f0000000300)=r10}, 0x20)
sendmsg$inet(r7, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002e80)=[{&(0x7f0000000180)="08aa4c2e0a", 0x5}], 0x1}, 0x200900c0)
r11 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x1, 0x0)
write$proc_mixer(r11, &(0x7f0000000280)=ANY=[@ANYBLOB=' \t'], 0x33)
syz_open_dev$usbfs(&(0x7f0000000040), 0xfffffffffffffff0, 0x2400)

9.693052101s ago: executing program 7 (id=3824):
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x35c, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xc888961bc398e5cc, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b400000000000000791000000000000063000000000000009500050000000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000080), 0x10}, 0x94)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0xc3073, 0xffffffffffffffff, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f00000001c0)={0x200, 0xfff, 0x1, 0x4}, 0x10)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=ANY=[@ANYBLOB="640000001a00010029bd700000000000022020", @ANYRES32], 0x64}, 0x1, 0x0, 0x0, 0x8000}, 0x10)
mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1)

8.847995708s ago: executing program 7 (id=3826):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003173610ef171e7206de010203010902f3c8010000000009040000000206"], 0x0)
syz_usb_control_io$sierra_net(r0, 0x0, &(0x7f0000000280)={0x1c, &(0x7f0000000180)={0x0, 0x11, 0x4, "65ef1b62"}, 0x0, 0x0})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1, 0x8031, 0xffffffffffffffff, 0x1000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
setresuid(0xee01, 0xffffffffffffffff, 0xffffffffffffffff)
setreuid(0x0, 0xffffffffffffffff)
sync_file_range(0xffffffffffffffff, 0x1000000000003, 0x2d, 0x8)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000700), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000740)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)={0x20, r3, 0x9a2ea8ba8fb8e27f, 0x70bd2d, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_REKEY_DATA={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x44001}, 0x8c0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100), 0x20001, 0x0)
ioctl$SNDCTL_MIDI_PRETIME(r5, 0xc0046d00, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="130100002add1e20ef050a023691010203010902240001000000000904"], 0x0)
syz_usb_connect$cdc_ecm(0x5, 0x4f, &(0x7f0000000080)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3d, 0x1, 0x1, 0x1, 0x30, 0x5, "", [{{0x9, 0x4, 0x0, 0x3, 0x3, 0x2, 0x6, 0x0, 0xf1, {{0x7, 0x24, 0x6, 0x0, 0x0, 'w\t'}, {0x5, 0x24, 0x0, 0x3}, {0xd, 0x24, 0xf, 0x1, 0x8000, 0x2, 0x3ff, 0xb}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x1ff, 0x5, 0x4, 0x1}}, {{0x9, 0x5, 0x3, 0x2, 0x200, 0x7, 0x0, 0x18}}}}}]}}]}}, &(0x7f00000004c0)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x310, 0x5, 0x40, 0x7, 0xff, 0xfe}, 0x126, &(0x7f0000000140)={0x5, 0xf, 0x126, 0x3, [@generic={0x102, 0x10, 0x3, "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"}, @wireless={0xb, 0x10, 0x1, 0x4, 0xc4, 0xa3, 0x1, 0x9, 0x10}, @ss_container_id={0x14, 0x10, 0x4, 0x10, "fca63b2aecade14e8ddec257c05e8772"}]}, 0x7, [{0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x3009}}, {0x3a, &(0x7f00000002c0)=@string={0x3a, 0x3, "da7866845609766390a72ae4008accadd2d11ca0dfa54e593e917b4ef466b1b60786ff00a7fc46055c6a46387447ba67ac97f506ccf86d82"}}, {0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x439}}, {0x4, &(0x7f0000000340)=@lang_id={0x4, 0x3, 0x419}}, {0xbb, &(0x7f0000000540)=ANY=[@ANYBLOB="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"]}, {0x4, &(0x7f0000000440)=@lang_id={0x4, 0x3, 0xf0ff}}, {0x4, &(0x7f0000000480)=@lang_id={0x4, 0x3, 0x3015}}]})

6.851119846s ago: executing program 0 (id=3829):
r0 = socket(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000140), 0x0, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000540)=ANY=[@ANYBLOB="ffffffffffffffffffffffff86dd607f00ef00102f00"/35], 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000380)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448cc, &(0x7f0000000100))
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYRES32], 0x50)
connect$llc(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
ioctl$FS_IOC_SETFSLABEL(r2, 0x41009432, &(0x7f0000000000)="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")
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f0000000240), 0xe7e, 0x0)
read$msr(r3, &(0x7f0000009b80)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xd0}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x5, 0x0, 0x7, 0x9, 0x0, 0x2, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x0, 0x6, 0xa, 0x9, 0xfe04, 0xf1}, {0x7, 0x1, 0xb, 0x7, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x9, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe5}, 0x94)

5.308093092s ago: executing program 7 (id=3831):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000001c0)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0xf})
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf01b}, {0x0}], 0x2)
r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
sendmmsg$inet(r2, &(0x7f0000000c40)=[{{&(0x7f0000000040)={0x2, 0x0, @multicast2}, 0x23, 0x0}}], 0x3284b164842c97f7, 0x8014)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000100)={0x2})

5.142899074s ago: executing program 3 (id=3832):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x5, 0xa, 0x40, 0x3, 0x41}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140), &(0x7f0000000540), 0x1003, r0}, 0x38)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, 0x0, 0x0)

5.127146796s ago: executing program 5 (id=3833):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000180)={0x8, {{0xa, 0x4e21, 0xa3f, @mcast1, 0xbfd}}, {{0xa, 0x4e20, 0x5, @private0={0xfc, 0x0, '\x00', 0x1}, 0x40}}}, 0x108)
getsockopt$inet6_buf(r2, 0x29, 0x30, &(0x7f0000000180)=""/214, &(0x7f0000000080)=0xd6)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/cpuinfo\x00', 0x0, 0x0)
r4 = socket(0x11, 0x3, 0x0)
setrlimit(0x4, &(0x7f00000002c0)={0xfffffffffffffffd})
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f00000000c0)=0x6f3b, 0x4)
ioctl$TIOCGWINSZ(r3, 0x5413, &(0x7f0000000380))
sendmmsg(r4, &(0x7f0000000bc0)=[{{&(0x7f0000000400)=@qipcrtr={0x2a, 0x1, 0x4001}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000040)="d47900000000000000", 0x9}], 0x1}}], 0x1, 0x24044015)
ioctl$IOC_PR_CLEAR(0xffffffffffffffff, 0x401070cd, 0x0)
recvmmsg(r4, &(0x7f0000000300)=[{{0x0, 0x0, 0x0}, 0x2}, {{0x0, 0x0, 0x0}, 0x40}], 0x2, 0x2002, 0x0)
sendfile(r0, r3, 0x0, 0x20000023896)

5.015758028s ago: executing program 0 (id=3834):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x20)
fsetxattr$smack_xattr_label(r1, &(0x7f0000000000)='security.SMACK64\x00', 0x0, 0x0, 0x3)
openat$vmci(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r2 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0xd)
ioctl$VT_GETMODE(r2, 0x5601, &(0x7f0000000240))
connect$netlink(r0, &(0x7f0000000380)=@proc={0x10, 0x0, 0x25dfdbfd, 0x20}, 0xc)
sendmsg$AUDIT_SIGNAL_INFO(r0, &(0x7f0000001280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001240)={&(0x7f0000000000)={0x10, 0x3f2, 0x200, 0x70bd25, 0x25dfdbfe}, 0x10}, 0x1, 0x0, 0x0, 0x1157d27a16c047f5}, 0x4000840)
r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x400080, 0x0)
recvfrom$inet(r3, 0x0, 0x0, 0x52, &(0x7f0000000080)={0x2, 0x4e20, @rand_addr=0x64010101}, 0x10)
mount(&(0x7f00000000c0)=@filename='./cgroup\x00', &(0x7f0000000180)='./cgroup\x00', &(0x7f0000000140)='pstore\x00', 0x4, 0x0)

4.1480582s ago: executing program 7 (id=3835):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x88801, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_CAP_HYPERV_SYNIC2(r2, 0x4068aea3, &(0x7f00000000c0))
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000000)={0x1, 0xff0f, [{0x0, 0x4, 0x0, 0x0, @irqchip={0x0, 0x1}}]})

4.072789875s ago: executing program 3 (id=3836):
unshare(0x20000400)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000001ec0), 0x2003, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, &(0x7f0000001f00)=@s={0x5, @generic=0x6f, 0x4, 0x6}) (fail_nth: 5)

4.041295819s ago: executing program 0 (id=3837):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
shutdown(r0, 0x1)
socket$packet(0x11, 0x3, 0x300)
r1 = socket$alg(0x26, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
socket$isdn(0x22, 0x3, 0x23)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0xc000)
bind$alg(r1, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'generic-gcm-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
openat(0xffffffffffffff9c, 0x0, 0x80101, 0x101)
r5 = accept4(r1, 0x0, 0x0, 0x0)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000007c0)=ANY=[], 0x150}, 0x1, 0x0, 0x0, 0x20000000}, 0x4084)
recvmmsg(r5, &(0x7f0000002180)=[{{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000500)=""/254, 0xfe}], 0x1}, 0x3f}], 0x1, 0x60, 0x0)
clock_gettime(0x0, &(0x7f0000000000)={<r6=>0x0, <r7=>0x0})
pselect6(0x40, &(0x7f0000000100)={0x0, 0x1, 0x0, 0x5, 0x800, 0x0, 0x0, 0x1}, 0x0, &(0x7f0000000040)={0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f0000000280)={r6, r7+60000000}, 0x0)

3.791915927s ago: executing program 3 (id=3838):
mq_open(0x0, 0x42, 0x197, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000005580)=""/102392, 0x18ff8)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000640)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cast6-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c", 0x15)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000ac0)="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", 0x157}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94", 0x79}], 0x2, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmmsg$unix(r2, &(0x7f0000003900)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000008c0)=""/148, 0x94}, {&(0x7f0000000980)=""/225, 0xe1}], 0x2}}], 0x1, 0x41, 0x0)

3.524741627s ago: executing program 5 (id=3839):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$PIO_UNISCRNMAP(r0, 0x4b6a, &(0x7f00000001c0)="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")

2.981683649s ago: executing program 5 (id=3840):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
getsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, &(0x7f0000000340))

2.488135211s ago: executing program 0 (id=3841):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = syz_open_dev$evdev(0x0, 0x1, 0x8000)
ioctl$EVIOCREVOKE(r1, 0x40044591, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = dup3(r2, r0, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0a000000020000006d05000002"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000600), &(0x7f0000001f80), 0xfffffffb, r5}, 0x38)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200), &(0x7f0000000340)="1acefc31af5e8ab3e7b6cba700771ca8aa02b578d3b229f417f9717bd54fd05f564c37", 0x1000, r5}, 0x38)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
syz_io_uring_setup(0xf00, &(0x7f00000001c0)={0x0, 0x4fbe, 0xc00, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000100)=<r6=>0x0, &(0x7f0000000040)=<r7=>0x0, &(0x7f0000000180)=<r8=>0x0)
socket$nl_crypto(0x10, 0x3, 0x15)
syz_io_uring_submit(r6, r7, r8, &(0x7f0000000080)=@IORING_OP_SEND={0x1a, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x4000, 0x1})
r9 = syz_io_uring_setup(0xf00, &(0x7f0000000080)={0x0, 0x0, 0xc00}, &(0x7f0000000100)=<r10=>0x0, &(0x7f0000000140)=<r11=>0x0, 0x0)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
syz_io_uring_submit(r10, r11, 0x0, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x22, 0x1, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000400)}, 0x0, 0x40000000, 0x0, {0x3, r12}})
syz_io_uring_setup(0x9b5, 0x0, &(0x7f00000002c0), &(0x7f0000000380), &(0x7f00000003c0)=<r13=>0x0)
r14 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
r15 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000440)='/proc/diskstats\x00', 0x0, 0x0)
syz_io_uring_submit(r6, r11, r13, &(0x7f0000000480)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index=0x7, 0x8, {0x0, r0}, 0x0, 0x8, 0x0, {0x0, r14, r15}})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x70, 0x18, &(0x7f0000000640)={@ptr={0x70742a85, 0x1, &(0x7f0000000600)=""/55, 0x37, 0x2, 0x22}, @fda={0x66646185, 0x1, 0x0, 0x38}, @ptr={0x70742a85, 0x0, &(0x7f00000008c0)=""/197, 0xc5, 0x2, 0x14}}, &(0x7f0000000200)={0x0, 0x28, 0x48}}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000580)="b3185d7bb56f70f003360fa8bf71ac3086aedebf6fff904f92849a7a07395ee7f0e4cb1d78001c08a0ab73ffcf5ad07693727980eea946e6cba1723e81bfa5c3688803c8a124dcb27df7938e7ddfdd52"})

2.395686961s ago: executing program 5 (id=3842):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000100)=0x6, 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xffffffffffffffff, 0x10010, 0xffffffffffffffff, 0xffffc000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f000000e0c0)=""/102400, 0x19000)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x1a1)
r2 = socket$tipc(0x1e, 0x5, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x4)
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, <r4=>0x0}, 0x6000)
setresuid(0xee01, r4, r4)
writev(r3, &(0x7f0000000300)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560aff820fffff5bab00070000002058000b4824ca945f6400940f6a0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100030c100000000000224e0000", 0x58}], 0x1)
bind$tipc(r2, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
socket$tipc(0x1e, 0x5, 0x0)
r5 = syz_open_dev$cec(&(0x7f0000000c40), 0x0, 0x2000)
ioctl$EXT4_IOC_GROUP_EXTEND(r5, 0x40086607, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000001d40)=ANY=[@ANYBLOB], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1, 0x10, &(0x7f0000000bc0)=ANY=[@ANYBLOB="18080000000000000000000000000000181200", @ANYRES32=r8, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000001801000000082c2500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f00000000c0)=r9, 0x4)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r8}, &(0x7f0000000400), &(0x7f0000000300)=r10}, 0x20)
sendmsg$inet(r7, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002e80)=[{&(0x7f0000000180)="08aa4c2e0a", 0x5}], 0x1}, 0x200900c0)
r11 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x1, 0x0)
write$proc_mixer(r11, &(0x7f0000000280)=ANY=[@ANYBLOB=' \t'], 0x33)
syz_open_dev$usbfs(&(0x7f0000000040), 0xfffffffffffffff0, 0x2400)

2.265812474s ago: executing program 7 (id=3843):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
lseek(r0, 0x1, 0x1)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket(0x10, 0x3, 0x0)
socket$inet6_icmp(0xa, 0x2, 0x3a)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000940)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988a10000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000700000008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r2], 0x64}, 0x1, 0x0, 0x0, 0x8811}, 0x0)
getdents64(r0, 0x0, 0x22)
syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
ioctl$KVM_HAS_DEVICE_ATTR_vm(r0, 0x4018aee3, &(0x7f0000000080)=@attr_other={0x0, 0x0, 0x5, &(0x7f0000000000)=0x2})

1.497914007s ago: executing program 5 (id=3844):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000001c0)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0xf})
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf01b}, {0x0}], 0x2)
r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
sendmmsg$inet(r2, &(0x7f0000000c40)=[{{&(0x7f0000000040)={0x2, 0x0, @multicast2}, 0x23, 0x0}}], 0x3284b164842c97f7, 0x8014)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000100)={0x2})

1.31246023s ago: executing program 7 (id=3845):
r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0xdf9a, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xa)
ioctl$IOC_PR_REGISTER(r0, 0x401870c8, &(0x7f0000000080)={0x7, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000100)={&(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6})
r1 = syz_open_dev$tty1(0xc, 0x4, 0x3)
openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
setsockopt$PNPIPE_HANDLE(r0, 0x113, 0x3, &(0x7f0000000140)=0x6, 0x4)
ioctl$TIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
ioctl$PIO_UNISCRNMAP(r1, 0x4b6a, &(0x7f00000001c0)="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")
r2 = accept4(r0, &(0x7f00000002c0)=@sco={0x1f, @none}, &(0x7f0000000340)=0x80, 0x40000)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
r3 = syz_usb_connect$uac3(0x5, 0xa9, &(0x7f00000003c0)={{0x12, 0x1, 0x341, 0x0, 0x0, 0x0, 0x10, 0x41e, 0x323b, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x97, 0x3, 0x1, 0x40, 0xb0, 0x5, {0x8, 0xb, 0x0, 0x2, 0x1, 0x24, 0x30, 0x5f}, {{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x30, 0x0, {{0xa, 0x24, 0x1, 0xf, 0x1f, 0x80}, [@source_unit={0xc, 0x24, 0xb, 0xb, 0x2, 0x5, 0x4c, 0x9}, @selector_unit={0x9, 0x24, 0xc, 0x7, 0x4, "52fa2882"}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x30, 0x0, {[@format_type_ii_discrete={0xe, 0x24, 0x2, 0x2, 0x2ddb, 0x9, 0x1, "259d2d5120"}]}, {{0x9, 0x5, 0x1, 0x9, 0x20, 0x8e, 0x65, 0x2, {0xa, 0x25, 0x25, 0xd, 0x0, 0x6}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x30, 0x0, {[@format_type_i_descriptor={0x6, 0x24, 0x2, 0x1, 0x2, 0x1}]}, {{0x9, 0x5, 0x82, 0x9, 0x60, 0x3, 0x6, 0x7, {0xa, 0x25, 0x25, 0x6, 0x8}}}}}}}}]}}, &(0x7f0000000640)={0xa, &(0x7f0000000480)={0xa, 0x6, 0x310, 0xd, 0x8, 0x8, 0xff, 0x4}, 0x44, &(0x7f00000004c0)={0x5, 0xf, 0x44, 0x5, [@wireless={0xb, 0x10, 0x1, 0x4, 0x95, 0x7, 0x4, 0x5, 0x4}, @ssp_cap={0x24, 0x10, 0xa, 0x8, 0x6, 0x6, 0xf, 0x5, [0xff0000, 0xc030, 0x1e, 0xffc03f, 0xffff, 0xff0000]}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x1f, 0x8, 0x4, 0x3}, @ptm_cap={0x3}, @ptm_cap={0x3}]}, 0x1, [{0xee, &(0x7f0000000540)=@string={0xee, 0x3, "08240b4c172ec3a182ece8b37cce2d55be8bbafa938199ce32722482fa50e1cdec2539f56eafc097c866da1fc8759cb6f56fc8756229de65abc8d00a01cf2a6f0461296a18b4ddcb1ceaad4ed297a7dacd842abccdfd3808573948aa2e476de91475df8c0c8e121379fcb6a0be14088da54d37a7fa9e53020e4279297ea44537c8e66259e2b65affddc26449d1480db4baccba49fe27f3f394f2ab19374373eab64ae4a678dc98a779ec343d584b7eeb247997c2ee444e8a97dc9f395003082f6abc20051443964106c0e1450cd85dd6f3caf19bb1fc73759e1d0b5b9d5191c760055645db22ff4130bbdc21"}}]})
syz_usb_control_io(r3, &(0x7f0000000880)={0x2c, &(0x7f0000000680)={0x20, 0x3f, 0x99, {0x99, 0x10, "e46186be2366162f4aa97a694fe2710b401bafb80a2a7f83310ffb25ad6dc58dbe967087e3a879330c662a08ab98567c76524f0a42c746e7b50ae0eb3f36578e658a02af1ec146ff811df4d922cf69dbf068d333ccd541e2899e7e23d220a0aba1f6cd3a8d55733ee40daf305a9b737e070cd21ddd3f0bc53b7574c9a2674d6d2c53f30ca221a4b8fad79bd6654da1d0960c3dd4aa07b6"}}, &(0x7f0000000740)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x42f}}, &(0x7f0000000780)={0x0, 0xf, 0x4e, {0x5, 0xf, 0x4e, 0x6, [@ss_container_id={0x14, 0x10, 0x4, 0x7, "c7c31690acd2db75cba31888ba3dfec3"}, @ext_cap={0x7, 0x10, 0x2, 0x14, 0x0, 0x2, 0x200}, @ss_container_id={0x14, 0x10, 0x4, 0x6, "ff410d71972903dd83d7ab3b6ab1ebb3"}, @ptm_cap={0x3}, @ptm_cap={0x3}, @ssp_cap={0x14, 0x10, 0xa, 0x80, 0x2, 0x2, 0xf, 0x9, [0x30, 0xffc0]}]}}, &(0x7f0000000800)={0x20, 0x29, 0xf, {0xf, 0x29, 0x9b, 0x60, 0x52, 0xc3, "d3013f3f", "c1e52aa1"}}, &(0x7f0000000840)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x4, 0x2, 0x3, 0x6, 0xd5, 0x2, 0x7a1}}}, &(0x7f0000000cc0)={0x84, &(0x7f00000008c0)={0x40, 0x3d, 0x35, "4e301d782d231e7ba682cd23128b79a181374f1e69a3e5ae788ce1aecd5d1d2f3e52508987b1f3222fbe2c398656d52a09a9897c34"}, &(0x7f0000000900)={0x0, 0xa, 0x1, 0x1}, &(0x7f0000000940)={0x0, 0x8, 0x1, 0x9}, &(0x7f0000000980)={0x20, 0x0, 0x4}, &(0x7f00000009c0)={0x20, 0x0, 0x8, {0x200, 0x20, [0xf]}}, &(0x7f0000000a00)={0x40, 0x7, 0x2, 0x46f}, &(0x7f0000000a40)={0x40, 0x9, 0x1, 0xc}, &(0x7f0000000a80)={0x40, 0xb, 0x2, "821d"}, &(0x7f0000000ac0)={0x40, 0xf, 0x2, 0x5}, &(0x7f0000000b00)={0x40, 0x13, 0x6, @broadcast}, &(0x7f0000000b40)={0x40, 0x17, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, &(0x7f0000000b80)={0x40, 0x19, 0x2, 'aB'}, &(0x7f0000000bc0)={0x40, 0x1a, 0x2, 0x6}, &(0x7f0000000c00)={0x40, 0x1c, 0x1, 0xfc}, &(0x7f0000000c40)={0x40, 0x1e, 0x1, 0x7}, &(0x7f0000000c80)={0x40, 0x21, 0x1, 0x16}})
ioctl$TCSETAF(r1, 0x5408, &(0x7f0000000d80)={0x10, 0x7, 0x4, 0x9, 0x10, "43da57c2056486bd"})
fsopen(&(0x7f0000000dc0)='securityfs\x00', 0x1)
connect$rds(r0, &(0x7f0000000e00)={0x2, 0x4e22, @multicast2}, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e80), r0)
sendmsg$NL80211_CMD_REQ_SET_REG(r0, &(0x7f00000010c0)={&(0x7f0000000e40)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000001080)={&(0x7f0000000ec0)={0x18c, r4, 0x200, 0x70bd25, 0x25dfdbfb, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x18}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_RULES={0x150, 0x22, 0x0, 0x1, [{0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x5}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xffff}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x9}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x5}]}, {0x4c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x1ff}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x7}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x6}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x7f}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x1}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x1000}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x2}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x2}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xd}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x1}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x5}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x6}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x142a}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x7fffffff}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x101}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x1}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x6}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x10001}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x905}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x1}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x7}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x14c}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x4}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x5}, @NL80211_ATTR_FREQ_RANGE_END={0x8}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x411f}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x2}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x5}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x2}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x2}]}]}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x7}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x68}]}, 0x18c}, 0x1, 0x0, 0x0, 0x4010}, 0x5)
syz_usb_connect$cdc_ecm(0x3, 0x87, &(0x7f0000001100)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x75, 0x1, 0x1, 0x4, 0x40, 0x81, "", [{{0x9, 0x4, 0x0, 0x9, 0x2, 0x2, 0x6, 0x0, 0xff, {{0x8, 0x24, 0x6, 0x0, 0x0, "2139c4"}, {0x5, 0x24, 0x0, 0x3006}, {0xd, 0x24, 0xf, 0x1, 0x7, 0x46, 0x14e2, 0x8}, [@country_functional={0x10, 0x24, 0x7, 0x2, 0x7, [0x2, 0x1, 0x9, 0x7fff, 0x8]}, @call_mgmt={0x5}, @ncm={0x6, 0x24, 0x1a, 0x9, 0x1}, @mbim={0xc, 0x24, 0x1b, 0x5, 0x7fff, 0x6b, 0x9, 0xd, 0x7}, @network_terminal={0x7, 0x24, 0xa, 0x6, 0x0, 0x2, 0x1}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x200, 0x6, 0x88, 0xdc}}], {{0x9, 0x5, 0x82, 0x2, 0x20, 0x10, 0x19}}, {{0x9, 0x5, 0x3, 0x2, 0x0, 0x6, 0x5d, 0xff}}}}}]}}]}}, &(0x7f00000012c0)={0xa, &(0x7f00000011c0)={0xa, 0x6, 0x0, 0x39, 0x4, 0x8, 0x8, 0xf}, 0x27, &(0x7f0000001200)={0x5, 0xf, 0x27, 0x3, [@ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0x2, 0xa1, 0x8, 0x6, 0x7, 0xa}, @ss_container_id={0x14, 0x10, 0x4, 0x40, "8f0a973eacdab0ec2253e295f6919771"}]}, 0x2, [{0x4, &(0x7f0000001240)=@lang_id={0x4, 0x3, 0x44c}}, {0x4, &(0x7f0000001280)=@lang_id={0x4, 0x3, 0x458}}]})
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000001300), r2)
syz_genetlink_get_family_id$team(&(0x7f0000001340), r2)
getsockname$packet(r2, &(0x7f0000001380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000013c0)=0x14)
ioctl$BLKRAGET(r0, 0x1263, &(0x7f0000001400))
sendmsg$TIPC_NL_BEARER_SET(r0, &(0x7f0000001580)={&(0x7f0000001440)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000001540)={&(0x7f0000001480)={0x98, r5, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_SOCK={0x70, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x6}, @TIPC_NLA_SOCK_CON={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}]}, @TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x50000000}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x1}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}]}, @TIPC_NLA_NET={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x6}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x4}, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0xf, &(0x7f00000026c0)={0x2, 0x1, 0x0, &(0x7f0000002640)=[{&(0x7f00000015c0)=""/4096, 0x1000}, {&(0x7f00000025c0)=""/87, 0x57}], &(0x7f0000002680)=[0x1, 0x9, 0x1ff, 0x9e]}, 0x20)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000002700)={<r6=>0x0, 0xa4, "f69169c12d9ad7a0b9edd9dc0d7e9704ead3090187b42b071cc495ea62451666f26c512833776de5d3a7e0c0cfc28c52058e8a0736fc36610e1bebf6fc2fde1f28529b92e35707cbbcdb3b9b72aad6465f91e63659d2668d09161eaa7ee182af46283f62d69ca56690e3f43b264abf923c9cc3e89d8d366ac0b93c747d5588178f95dd010d9ae05313d648a24593242c6e20c677fcf26b944fb12aa855b264a4b311056a"}, &(0x7f00000027c0)=0xac)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000002800)={r6, 0xf, 0xb7, "0b574610f50f7ca9288bd531cfbd8409b7cbb319daff6ac1486aa5905a7569ebe05641a2e88039088f4b7ac8f94f03a27463f31433589327bfe209a082dda1fd5b6e78e1f22eebb2834936de9faf438b81463bd0f65cea124e178667e6caf0ec579c56ee5ce2c66e98e3f230ef3a6073a9cf3919eedd0fdee160a7e82370fe0fc4169d8c6d00712ed69c6d7f48a002d5740910aa7ca614a79db9c0164dcdb51f84a1a799f5976fd6a4bcc5cb64680865220322ed608fe7"}, 0xbf)
ioctl$BLKREPORTZONE(r0, 0xc0101282, &(0x7f00000028c0)={0x0, 0x3, 0x0, [{0x6, 0x100000001, 0x9, 0xb, 0x1, 0x0, 0x1, '\x00', 0x3}, {0x1, 0x4f3, 0xb7d0546, 0x8, 0x37, 0x8, 0x7f, '\x00', 0x9}, {0x18, 0x10001, 0x7f, 0x3, 0x3, 0x8, 0x6, '\x00', 0x40}]})
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000029c0)={r6, 0x6}, 0x8)

705.802423ms ago: executing program 3 (id=3846):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x20)
fsetxattr$smack_xattr_label(r1, &(0x7f0000000000)='security.SMACK64\x00', 0x0, 0x0, 0x3)
openat$vmci(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r2 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0xd)
ioctl$VT_GETMODE(r2, 0x5601, &(0x7f0000000240))
connect$netlink(r0, &(0x7f0000000380)=@proc={0x10, 0x0, 0x25dfdbfd, 0x20}, 0xc)
sendmsg$AUDIT_SIGNAL_INFO(r0, &(0x7f0000001280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001240)={&(0x7f0000000000)={0x10, 0x3f2, 0x200, 0x70bd25, 0x25dfdbfe}, 0x10}, 0x1, 0x0, 0x0, 0x1157d27a16c047f5}, 0x4000840)
r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x400080, 0x0)
recvfrom$inet(r3, 0x0, 0x0, 0x52, &(0x7f0000000080)={0x2, 0x4e20, @rand_addr=0x64010101}, 0x10)
mount(&(0x7f00000000c0)=@filename='./cgroup\x00', &(0x7f0000000180)='./cgroup\x00', &(0x7f0000000140)='pstore\x00', 0x4, 0x0)

383.655683ms ago: executing program 0 (id=3847):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pwritev2(r0, &(0x7f0000000980)=[{&(0x7f0000000540)="a6cb043eda6ed491842280d28bd76eacf43cf4ff843bf25a3dc28c9d66481f13811a2845d8abc3254a6708def133b6d75a3c7dd86dde174f444c35d1c6f663ca4d1c0be92679bb777e5e89b317840159a769580be4f20c57b16f23cdf6e25f5b45bafb55f6c28f403823617b343689be17d81c7199a6925d7f0c6050897e249dc68728facd73d42731f43b6ca4eacba06d703bced92646ff42a6c6ddaf1f3b3c080dadc21f58317b1c258a741bd05d8b9d1ef3efc34b75d9846fde191ada3638b583a69ccfbdebf0e302fc7885cee033d8", 0xd1}, {&(0x7f0000000640)="7bd644de9afa472b624c6e504c69b254f4ddfa12ac10c9a6ca5a133e3e6c58d89b944f74db519498d63eb9bfd93fa6be749acf55d665fa078c54efbd8facfd1dea90e1eac8e8adcc0952d7fb0e1e4a27073c983d72e01a0857840e731e42b3a0015feed8d8ae83305375a3525cf8724e55918c09ebbf94eb6f529b1c5b73369b4ec91e4b6199b4ee9128e6a3600c0e49d57910ef4f7e1dcc277db96ca8d912b866a87e183c3cc8c4da0babe303ff82ef8bfbfe311e038130de8d738287bf03c56d6610a7515a25412a80b70ee42a36893910fe2d8833a4d20f2b0f494c88ac9c0c09bf461e61fde538f88793ffe3a324", 0xf0}, {&(0x7f0000000740)="ea4dc5f8e8ed63cd86", 0x9}, {&(0x7f0000000780)="c62fdd7dfe7136ac627f984a60585ecd0693b6402202a3f61139e004a2187bc1dd82a4251496434ebf523bfc42894436989ebce894d738f60e77ed3934fa10004c0412dd9ee05e8ac718dc08cf27e711d29e294ee339a876d76f5fec3870eb119555d366d05bfb7473890cad1c6d4f5142639e2026d15de2152ac60a8a3d8cb7285d7945c525ebfb8b39272341e75fb11109235aa36ee26b", 0x98}, {&(0x7f0000000840)}, {&(0x7f0000000880)="550c9385c7d44db1db1c831546903a86d01eeb6429cdc980451ab9f791e2062081d8efcea24a427d53d548274258c09f92a82a3f28de8e05da0d3dc52cda5e783d361b7c4567af9cab019ab56f86540448dda25e9c4af76980dc311cc1b79e6b1c553ccb03cb88f7ae1581661100930d2f0466390405aef3ada3504d4b39b8d0942da72ddab583c9c881a631751c0cb0c53ee036b31f423a21b7698fb0c699607d33f9e313966c03b55110e9ad26eeb7a0add009ef03c1a0ddd60f95f90fe0951bd78da8e308e8dd80d4d924deb039a2234006724fe512e125a23ece9c4aec", 0xdf}], 0x6, 0x1, 0x1ff, 0xc)
r1 = memfd_create(&(0x7f00000000c0)='\xfd\x0fm3#/\x00n\xaa\xaa\xe4\x01U\x8b\xc2\f\x03\x19\x9c\x8e\xcb\x90\x00\x00\xaegQ\x0e\x94\\y\x0fU2@\'\x8a\x80\x00$\x12\xfc\xe4.)\x9b\xf2@\xf0\xe0\xdb\x1f\xe6\xb4gc\x13\xda\xf9\xcd7el\xb7\xe6\b\x00\x00\x00\x00\xef\xff\x00vob/~\xc2\x00\b\x00\x00\x00\x00\x00\x00 \xff\xf1\xdem\x9c;%\xb5\"\xe4\xf1x2\x8a\x19p\x04\\\xaa-\x93\xd1\xc4 )\xbfK\xf7E\xf3\x05\xa0\xd0\xe6%\x97\x15\xf0\xab\x86\x90k\x10\xcer\x14\xe0a\xaf\xab\xfe\xd9V\x19\xa5d\x16\x8e]:3\xff\t\xe6\xf7\xb3\xbf\xa3\b[?\xb5\x14t\xd3\x8e\xc0\xe8\xefd\x88\xddz\xa25)\x17\xef\xfb4\xff\xdb\t\x8e\xeb\x1d\\\xf9\x14\xc7\v\xa8\x89\xdb A\xbaBAj\xfe\x18\xc3-+\xd6\xb0K\xee\x1b+\xc7lA\x84\xa6\xfe\x8bU<&\x1a\xe7m\x86\xb7\xa1A\xf9\x02S;C\x99\a.$K\x833\x82\x7f\x1b\'nj\x06\b\xb7\xe8] \x87A[y\xdc\x14\f\xcet\x00\x1f\x0f\xef\xca\xcfz\x7f\an0\xebB\xb8}&\xdd\xc9\xa7\x1dp\t\x9a\xceb \x81\xaaq{H\x88\xdf\xf8\x80\\\x1c8\xfe\xc4\xe3\xb0\x90\xcb\x8b1r\x94\x9f\x00\xce\xc8\xc3\x84\xa0\xc9\b\x00\x81Ks\xba\xbbC6\xd6\x13\xb5\xe086EzD\x18\xd5\x16\x88E\xc6\xf0A9\xf1u\xb3\x85\x02\x12\\Sp\xf4\x9a\xe8\x96^\xe6\xa8K\x12\b}\xff\xcb{\xc6\xf6\xb4\x8b\xb6\xa8Y\xf2\x91\xeeR\v#\xb5)\xb0\x99\x9b-p\xe3\x17\x04\xb0\xdc\x0fk\x11\xe1\x9a\a\x16\xb7\x9b\x88\xfa\x1e`\x84$\xfc\xd7\xf5^X\xd8[}\x032\xd0\x84\xdby\x94Vp\xa5\xcd(\xab\xb6\x95sR\xab\xfc\x8c\'\x9c\x16Q\xad\xbc\xb04%\xb7\xe5\x14\xb1`\x87#X\\W`;\'_4\xc5\xc9\x921<\xd9\xad\x9f\x12@!\xfaI\x88\xab\xef\x86\xe9\a>\xdd7\xb7\x8e\x9c0-o\xc9\xec_|\x02\xc8Ru\x95\xa8#U\xd6J\x87\xf6X\xb6{\x11$\x00\xc8\x14\xcb\xd1nK\xd8\xb9\x0e\x9bA\xed\xbcs\x1fS\r\x12O\x83\x15\xcb(\xdb\xb1S\x1f%\x04\x9a\xa0l\xa3}\xe7r\x02\x00\x00\x00\x8aeh;F[\xe2\x1c<L\xaa\x87A\xcdN#\xfb\xb0\xf2\x1e\x0e#J\xd0hB<\xc0\x82A0)p\xe7&J\x82\x83\x83\xd14\x01\xcf\x1b\xa9\x1d\x1ef\x0f\x86(1\xd6l\xd2\x8f\xb0\xad\t\x15\xdb|\x87\xf1\xc4\xb8\xb2\x9a\xd2A\x80\xbf\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xd6\x80\x00\x00\x00\x00\x00\x00\x00\x88&}\xd1\x00\x00\x00\xe6\xaf\t\x9f\x96\rN\xc9\x90\xbe\xed\x1ad\x14\xe7\x84\t\'\x8b\x00\xdd\xc9\x0f\x14v\xb6\x04\xf2U\xb4\xf6\xbe\xddT\xcb\x00\x00\x00\x00\x00\x00\xe9\x00\x00\x00\x00\x00\x00o:}\xa7jmH\xedn\x11\xfe\xe20T\x00\x94\xbc\xc6\x7f\x93eE1xp\xa3\xdc\xd7K9J<\xeb\xd2!\xf4\x19\xbd#\xb8\x83\x858\n\xf8\x12Z\x1a\x12\xfa\xcc\x04\r\xf3\xf4;\v\x15b^\xea\xa2\x04 \xe8\x99\xb3\x97\x9e\r\xb0\x05\xbb(f\xd0\x85\xc5\x15\xae#\x12Q\xacF\xfb\xc8\xbd\xcc#\v\x00\x00\x00\x00\x00\x00\x8f\x9b\x00\x03\xc8}\x11\xbc\x01\x8fi\xf5\x7f\xaf\x11\xfb\x16\x95\xdfc\xc9\x8a/&\x81w\xdf]ao\\\x88\xf7\xce\xbd\xb0\xa6J~\x8d\xf1\xe9\x1c\xcfo\xb3\xdc\x04Y\x8e\r\xf5\xa0\xeft\x06G0\xe3D\xd6\xa3L\xedN\x0e\xdc@7\xd8^\xae\xea\x92\xbe\x9c\xf9~c\xc1|\xca\x8d\x93R\xe5\xceU\xa5\x0f\xbf\xd8l\x96`\x0f\x00e\x8aR{\x17Y\x15m>\xe26 \x19k&.\x7f\x1d~\xdaI\xd4\x99\a+\xdf]\xbc\xa6\xc3\x0f\x99W\x9c-t\v\xc7J\xfd\x91\x853\xd1j;\x19W\x96V\x8az+\xf9\x82#\xfaC\xa3YN:\xe8\xda\xbc\xb2h\x8f\xe0\xc6d\x96\xccy\xb3\xc2\x98\x1c\xca\xde\"\xaeW\x89\x83\xc2sB\xe7\b\x9b9~}\xc2\xb3\x1d\xcc?\xd1\x89\xef\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00J[\xc4\x04\xc1\xa6\x10\xc2\x9d\x11\t|\xc0\t\xd9(\x80\xe6s\xaa\x88\x8a\xd6\xa2\x01\x10W]Z\x8d\xf7\xd1P\xf9d\x01|\xa3\x03hSq\x95\x8f\xe1J\xd3#/fcCz\xff\x80\xe2M\xa3-r\xf6\x1a\xd74\xdc\xe1\xe4\xc3\x9dU t}\x02\x9a{C|S\xf4\x98\x05\xb9\x15}\xfa\"\xdc\xc2r\xf9\a\xadnD\xb6\x06\xd3\'\x10\x9f|\x17\xd6\x89O\f\x98@\x85\xa5m\x9d\\&\x17o\x11Z=l\xfb\x93\x8exZ', 0x6)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x8010002})
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001400), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000080)={<r3=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0xe, @empty, 0x83}, {0xa, 0x2, 0xfffffffe, @loopback}, r3, 0x40099d}}, 0x48)
writev(r2, &(0x7f0000000040)=[{&(0x7f0000000100), 0x86}], 0x2)
r4 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
write$6lowpan_control(r4, &(0x7f0000000340)='disconnect aa:aa:aa:aa:aa:10 2', 0x1e)
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x17, 0x13, r1, 0x0)

302.169463ms ago: executing program 5 (id=3848):
r0 = syz_usb_connect$lan78xx(0x5, 0x3f, &(0x7f0000000dc0)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0x424, 0x7850, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d}}]}}, 0x0)
syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000000000)={0x34, &(0x7f0000000080)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$lan78xx(r0, 0x0, 0x0)
syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000000940)={0x34, &(0x7f0000000680)={0x0, 0x30}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$lan78xx(r0, 0x0, 0x0)
syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000000f40)={0x34, 0x0, 0x0, 0x0, &(0x7f0000000e80)={0xc0, 0xa1, 0x4, 0x1}, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000003f00)={0x84, &(0x7f0000003b00)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000000880)={0x34, &(0x7f00000006c0)={0x40, 0x6, 0x5c}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000000980)={0x84, &(0x7f0000000e80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r2, 0x4b72, &(0x7f0000000080)={0x4, 0x10, 0x1b, 0x1, 0x100, &(0x7f00000000c0)="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"})
ioctl$KDFONTOP_SET(r1, 0x4b72, &(0x7f0000000080)={0x4, 0x10, 0x1b, 0x1, 0x111, &(0x7f00000000c0)="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"})
syz_usb_control_io$uac3(0xffffffffffffffff, &(0x7f0000000500)={0x14, &(0x7f0000000040)={0x0, 0x4, 0x1c, {0x1c, 0x3, "0895b09fe905fbcc04e2beb9aabd7cebb6ca97c265e68c1e5816"}}, &(0x7f00000004c0)={0x0, 0x3, 0x33, @string={0x33, 0x3, "84750c445fafcf532047cd75d05470c81754154432e7a607442292dff22f3ffa135218240c0bdfe0c7be272c373093961b"}}}, &(0x7f00000008c0)={0x44, &(0x7f0000000540)={0x0, 0x18, 0xdc, "129e93d56b9a152a961d3ea2904fcb0bae9e173ed807da0fe44aa9d9f336a8e88d2de063871dbbf4a5e6148db3b02872cfda8d39e5f8feceef6eec76ca1d957ae43fb5055926a0acc43ce7669968d11f8736692c5c1a1a8e822cd6b7580e3b5bf482442fe8961abab2d83ac627a254e3a9d8bf891ce2113d745020b3d803b067e0f1ee8faaa7b71d82bea6dc5ab581e170d289adcc805bfa248c443caa1a1e6fcc4f97aff36375c47bbadb29e90f28cf67bf49abadf1921014f461f5f96de67754157e9b7ed7f6da11f5b8b4c3018699a6011b1ad61896ae16294b02"}, &(0x7f0000000640)={0x0, 0xa, 0x1, 0xf9}, &(0x7f0000000700)={0x0, 0x8, 0x1, 0x9}, &(0x7f0000000740)={0x20, 0x81, 0x2, "4bdc"}, &(0x7f0000000780)={0x20, 0x82, 0x1, '@'}, &(0x7f00000007c0)={0x20, 0x83, 0x2, "c563"}, &(0x7f0000000800)={0x20, 0x84, 0x3, "14b768"}, &(0x7f0000000840)={0x20, 0x85, 0x3, "8ab378"}})
syz_usb_control_io(r0, 0x0, 0x0)

149.170452ms ago: executing program 3 (id=3849):
ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b6a, &(0x7f00000001c0)="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")

80.146815ms ago: executing program 0 (id=3850):
socket$inet(0x2, 0x4000000000000001, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_open_dev$vcsa(&(0x7f0000000300), 0x1, 0x102)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x1, 0x84)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000000)={0x0, 0x1, 0x6, @remote}, 0x10)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f00000002c0)={0x0, 0x11, 0x6, @remote}, 0x10)
openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000003840)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r1 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x48240)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r2=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r1, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r2], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0)=[0x7fffffff], 0x0, 0x1})

0s ago: executing program 3 (id=3851):
socket$inet(0x2, 0x4000000000000001, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_open_dev$vcsa(&(0x7f0000000300), 0x1, 0x102)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x1, 0x84)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000000)={0x0, 0x1, 0x6, @remote}, 0x10)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f00000002c0)={0x0, 0x11, 0x6, @remote}, 0x10)
openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000003840)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r1 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x48240)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r2=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r1, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r2], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0)=[0x7fffffff], 0x0, 0x1})

kernel console output (not intermixed with test programs):

32359][T16940]  ? trace_irq_disable+0x3b/0x150
[ 1117.432384][T16940]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1117.432406][T16940]  ? clear_bhb_loop+0x40/0x90
[ 1117.432433][T16940]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1117.432456][T16940] RIP: 0033:0x7f2cd8c3c819
[ 1117.432478][T16940] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1117.432496][T16940] RSP: 002b:00007f2cd6e96028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1117.432519][T16940] RAX: ffffffffffffffda RBX: 00007f2cd8eb5fa0 RCX: 00007f2cd8c3c819
[ 1117.432534][T16940] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000003
[ 1117.432553][T16940] RBP: 00007f2cd6e96090 R08: 0000000000000000 R09: 0000000000000000
[ 1117.432567][T16940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1117.432580][T16940] R13: 00007f2cd8eb6038 R14: 00007f2cd8eb5fa0 R15: 00007ffc75ef9c38
[ 1117.432622][T16940]  </TASK>
[ 1118.307326][T16948] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3427'.
[ 1118.332260][T16695] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1118.423945][T16695] 8021q: adding VLAN 0 to HW filter on device team0
[ 1118.475212][ T8559] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1118.475457][ T8559] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1118.497973][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1118.498234][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1118.619469][ T5945] usb 6-1: new high-speed USB device number 77 using dummy_hcd
[ 1119.257649][T16961] netlink: 256 bytes leftover after parsing attributes in process `syz.6.3431'.
[ 1119.319745][ T5945] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1119.319780][ T5945] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1119.319803][ T5945] usb 6-1: Product: syz
[ 1119.319817][ T5945] usb 6-1: Manufacturer: syz
[ 1119.319832][ T5945] usb 6-1: SerialNumber: syz
[ 1119.379748][ T5945] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1119.418890][   T36] kauditd_printk_skb: 276 callbacks suppressed
[ 1119.418912][   T36] audit: type=1326 audit(2000000734.206:2205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16960 comm="syz.6.3431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc328bcc819 code=0x7ffc0000
[ 1119.418947][   T36] audit: type=1326 audit(2000000734.206:2206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16960 comm="syz.6.3431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc328bcc819 code=0x7ffc0000
[ 1119.431038][   T36] audit: type=1326 audit(2000000734.206:2207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16960 comm="syz.6.3431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc328bcc819 code=0x7ffc0000
[ 1119.431099][   T36] audit: type=1326 audit(2000000734.206:2208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16960 comm="syz.6.3431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7fc328bcc819 code=0x7ffc0000
[ 1119.431141][   T36] audit: type=1326 audit(2000000734.206:2209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16960 comm="syz.6.3431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc328bcc819 code=0x7ffc0000
[ 1119.431181][   T36] audit: type=1326 audit(2000000734.206:2210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16960 comm="syz.6.3431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc328bcc819 code=0x7ffc0000
[ 1119.431222][   T36] audit: type=1326 audit(2000000734.206:2211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16960 comm="syz.6.3431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc328bcc819 code=0x7ffc0000
[ 1119.431262][   T36] audit: type=1326 audit(2000000734.206:2212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16960 comm="syz.6.3431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc328bcc819 code=0x7ffc0000
[ 1119.431302][   T36] audit: type=1326 audit(2000000734.206:2213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16960 comm="syz.6.3431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc328bcc819 code=0x7ffc0000
[ 1119.431342][   T36] audit: type=1326 audit(2000000734.206:2214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16960 comm="syz.6.3431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc328bcc819 code=0x7ffc0000
[ 1119.693155][ T5944] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1119.939258][T16130] usb 6-1: USB disconnect, device number 77
[ 1120.436875][T16695] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1120.617180][T16695] veth0_vlan: entered promiscuous mode
[ 1120.634665][T16695] veth1_vlan: entered promiscuous mode
[ 1120.791974][T16695] veth0_macvtap: entered promiscuous mode
[ 1120.831249][ T5944] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[ 1120.831471][ T5944] ath9k_htc: Failed to initialize the device
[ 1120.836461][T16130] usb 6-1: ath9k_htc: USB layer deinitialized
[ 1120.872511][T16695] veth1_macvtap: entered promiscuous mode
[ 1121.567702][T16981] netlink: 148 bytes leftover after parsing attributes in process `syz.5.3436'.
[ 1121.609484][T16695] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1121.713913][T16695] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1121.757980][  T105] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1121.771905][  T105] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1121.772496][  T105] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1121.773443][  T105] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1123.442823][  T105] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1123.442849][  T105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1124.111045][ T9998] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1124.111062][ T9998] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1124.984834][T17006] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1125.300345][T17017] IPVS: set_ctl: invalid protocol: 0 172.30.1.1:20001
[ 1128.958063][T17046] loop8: detected capacity change from 0 to 7
[ 1128.975545][T17046] Dev loop8: unable to read RDB block 7
[ 1128.975598][T17046]  loop8: unable to read partition table
[ 1128.976012][T17046] loop8: partition table beyond EOD, truncated
[ 1128.976049][T17046] loop_reread_partitions: partition scan of loop8 (�被x������ ) failed (rc=-5)
[ 1129.113003][T16604] Dev loop8: unable to read RDB block 7
[ 1129.113035][T16604]  loop8: unable to read partition table
[ 1129.113209][T16604] loop8: partition table beyond EOD, truncated
[ 1129.321347][T17046] Dev loop8: unable to read RDB block 7
[ 1129.321408][T17046]  loop8: unable to read partition table
[ 1129.321727][T17046] loop8: partition table beyond EOD, truncated
[ 1129.321767][T17046] loop_reread_partitions: partition scan of loop8 (�被x������ ) failed (rc=-5)
[ 1129.932488][T17055] netlink: 'syz.6.3458': attribute type 5 has an invalid length.
[ 1134.610071][  T808] usb 1-1: new high-speed USB device number 98 using dummy_hcd
[ 1134.950054][  T808] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1134.950159][  T808] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1134.950260][  T808] usb 1-1: Product: syz
[ 1134.950352][  T808] usb 1-1: Manufacturer: syz
[ 1134.950439][  T808] usb 1-1: SerialNumber: syz
[ 1135.166218][  T808] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1135.201061][ T5944] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1135.354733][T17088] ALSA: mixer_oss: invalid OSS volume ''
[ 1136.332704][ T5944] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[ 1136.332857][ T5944] ath9k_htc: Failed to initialize the device
[ 1136.370360][  T808] usb 1-1: USB disconnect, device number 98
[ 1136.418181][  T808] usb 1-1: ath9k_htc: USB layer deinitialized
[ 1136.424779][    C1] dummy_hcd dummy_hcd.0: timer fired with no URBs pending?
[ 1137.823799][T17110] netlink: 'syz.7.3474': attribute type 1 has an invalid length.
[ 1137.823826][T17110] netlink: 224 bytes leftover after parsing attributes in process `syz.7.3474'.
[ 1144.531490][T17159] lo: entered allmulticast mode
[ 1144.559529][T17159] tunl0: entered allmulticast mode
[ 1144.563524][T17159] gre0: entered allmulticast mode
[ 1146.255414][T17159] gretap0: entered allmulticast mode
[ 1146.341560][T17159] erspan0: entered allmulticast mode
[ 1146.374124][T17159] ip_vti0: entered allmulticast mode
[ 1146.394600][T17159] ip6_vti0: entered allmulticast mode
[ 1147.019333][T17159] sit0: entered allmulticast mode
[ 1147.028539][T17159] ip6tnl0: entered allmulticast mode
[ 1147.052237][T17159] ip6gre0: entered allmulticast mode
[ 1147.152847][T17159] syz_tun: entered allmulticast mode
[ 1147.236381][T17159] ip6gretap0: entered allmulticast mode
[ 1147.327898][T17159] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1147.348056][T17159] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1147.358592][T17159] bridge0: entered allmulticast mode
[ 1147.420438][T17159] bond0: entered allmulticast mode
[ 1147.420456][T17159] bond_slave_0: entered allmulticast mode
[ 1147.420469][T17159] bond_slave_1: entered allmulticast mode
[ 1147.437771][T17159] team0: entered allmulticast mode
[ 1147.437794][T17159] team_slave_0: entered allmulticast mode
[ 1147.437813][T17159] team_slave_1: entered allmulticast mode
[ 1147.476994][T17159] dummy0: entered allmulticast mode
[ 1147.632683][T17159] nlmon0: entered allmulticast mode
[ 1147.650678][T17159] caif0: entered allmulticast mode
[ 1147.652033][T17159] batadv0: entered allmulticast mode
[ 1147.715036][T17159] vxcan0: entered allmulticast mode
[ 1147.725428][T17159] vxcan1: entered allmulticast mode
[ 1147.735594][T17159] veth0: entered allmulticast mode
[ 1147.802115][T17159] veth1: entered allmulticast mode
[ 1148.042997][T17159] wg0: entered allmulticast mode
[ 1148.244602][T17159] wg1: entered allmulticast mode
[ 1148.371843][T17159] wg2: entered allmulticast mode
[ 1148.382126][T17159] veth0_to_bridge: entered allmulticast mode
[ 1148.454036][T17159] veth1_to_bridge: entered allmulticast mode
[ 1148.528148][T17195] af_packet: tpacket_rcv: packet too big, clamped from 65354 to 4294967272. macoff=96
[ 1148.541299][T17159] veth0_to_bond: entered allmulticast mode
[ 1148.607306][T17159] veth1_to_bond: entered allmulticast mode
[ 1148.651947][T17159] veth0_to_team: entered allmulticast mode
[ 1148.697163][T17159] veth1_to_team: entered allmulticast mode
[ 1148.708501][T17159] veth0_to_batadv: entered allmulticast mode
[ 1148.721450][T17159] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1148.721514][T17159] batadv_slave_0: entered allmulticast mode
[ 1148.739850][T17159] veth1_to_batadv: entered allmulticast mode
[ 1148.750629][T17159] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1148.750689][T17159] batadv_slave_1: entered allmulticast mode
[ 1148.758040][T17159] xfrm0: entered allmulticast mode
[ 1148.768276][T17159] veth0_to_hsr: entered allmulticast mode
[ 1148.788428][T17159] hsr_slave_0: entered allmulticast mode
[ 1148.797879][T17159] veth1_to_hsr: entered allmulticast mode
[ 1148.806916][T17159] hsr_slave_1: entered allmulticast mode
[ 1148.820079][T17159] hsr0: entered allmulticast mode
[ 1148.847643][T17159] veth1_virt_wifi: entered allmulticast mode
[ 1148.858284][T17159] veth0_virt_wifi: entered allmulticast mode
[ 1148.875672][T17159] virt_wifi0: entered allmulticast mode
[ 1148.875975][T17159] veth1_vlan: entered allmulticast mode
[ 1148.894169][T17159] veth0_vlan: entered allmulticast mode
[ 1148.966871][T17159] vlan0: entered allmulticast mode
[ 1148.967012][T17159] vlan1: entered allmulticast mode
[ 1149.151510][T17159] macvlan0: entered allmulticast mode
[ 1149.971547][T17159] macvlan1: entered allmulticast mode
[ 1149.978422][T17159] ipvlan0: entered allmulticast mode
[ 1149.978646][T17159] ipvlan1: entered allmulticast mode
[ 1149.979136][T17159] veth1_macvtap: entered allmulticast mode
[ 1149.991295][T17159] veth0_macvtap: entered allmulticast mode
[ 1150.099463][T17159] macvtap0: entered allmulticast mode
[ 1150.142315][T17159] macsec0: entered allmulticast mode
[ 1150.219347][T17159] geneve0: entered allmulticast mode
[ 1150.284390][T17159] geneve1: entered allmulticast mode
[ 1150.364012][T17159] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[ 1150.439496][T17159] netdevsim netdevsim3 netdevsim1: entered allmulticast mode
[ 1150.526349][T17159] netdevsim netdevsim3 netdevsim2: entered allmulticast mode
[ 1150.609295][T17159] netdevsim netdevsim3 netdevsim3: entered allmulticast mode
[ 1150.712209][T17159] mac80211_hwsim hwsim25 wlan0: entered allmulticast mode
[ 1150.838597][T17159] mac80211_hwsim hwsim26 wlan1: entered allmulticast mode
[ 1150.859256][ T8981] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1150.899097][ T8981] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1150.904588][ T8981] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1150.904637][ T8981] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1151.120782][T17216] FAULT_INJECTION: forcing a failure.
[ 1151.120782][T17216] name failslab, interval 1, probability 0, space 0, times 0
[ 1151.120823][T17216] CPU: 1 UID: 0 PID: 17216 Comm: syz.0.3503 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1151.120854][T17216] Tainted: [L]=SOFTLOCKUP
[ 1151.120862][T17216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1151.120876][T17216] Call Trace:
[ 1151.120885][T17216]  <TASK>
[ 1151.120894][T17216]  dump_stack_lvl+0xe8/0x150
[ 1151.120944][T17216]  should_fail_ex+0x46b/0x600
[ 1151.120982][T17216]  should_failslab+0xa8/0x100
[ 1151.121008][T17216]  __kmalloc_cache_noprof+0x84/0x690
[ 1151.121031][T17216]  ? mutex_lock_nested+0x152/0x1d0
[ 1151.121062][T17216]  ? rtm_new_nexthop+0x28bc/0x8630
[ 1151.121092][T17216]  ? rtm_new_nexthop+0xfbc/0x8630
[ 1151.121124][T17216]  rtm_new_nexthop+0x28bc/0x8630
[ 1151.121153][T17216]  ? nlmon_xmit+0xb0/0x100
[ 1151.121173][T17216]  ? dev_hard_start_xmit+0x2f2/0x8b0
[ 1151.121197][T17216]  ? __dev_queue_xmit+0x171a/0x39b0
[ 1151.121225][T17216]  ? ___sys_sendmsg+0x2a5/0x360
[ 1151.121248][T17216]  ? __x64_sys_sendmsg+0x1c3/0x2a0
[ 1151.121271][T17216]  ? do_syscall_64+0x14d/0xf80
[ 1151.121310][T17216]  ? __pfx_rtm_new_nexthop+0x10/0x10
[ 1151.121353][T17216]  ? __lock_acquire+0x6b5/0x2cf0
[ 1151.121386][T17216]  ? kasan_quarantine_put+0xbb/0x1f0
[ 1151.121418][T17216]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1151.121449][T17216]  ? kmem_cache_free+0x185/0x6b0
[ 1151.121470][T17216]  ? nlmon_xmit+0xb0/0x100
[ 1151.121506][T17216]  ? __local_bh_enable+0x1e1/0x2f0
[ 1151.121556][T17216]  ? __dev_queue_xmit+0x1ebb/0x39b0
[ 1151.121582][T17216]  ? netlink_unicast+0x805/0x9f0
[ 1151.121608][T17216]  ? netlink_sendmsg+0x813/0xb40
[ 1151.121639][T17216]  ? ____sys_sendmsg+0x94c/0x9c0
[ 1151.121692][T17216]  ? __pfx_rtm_new_nexthop+0x10/0x10
[ 1151.121722][T17216]  rtnetlink_rcv_msg+0x7d5/0xbe0
[ 1151.121762][T17216]  ? rtnetlink_rcv_msg+0x1b9/0xbe0
[ 1151.121795][T17216]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1151.121825][T17216]  ? ref_tracker_free+0x673/0x820
[ 1151.121855][T17216]  ? __copy_skb_header+0xa3/0x4a0
[ 1151.121883][T17216]  ? __pfx_ref_tracker_free+0x10/0x10
[ 1151.121928][T17216]  netlink_rcv_skb+0x232/0x4b0
[ 1151.121971][T17216]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1151.122008][T17216]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1151.122055][T17216]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1151.122097][T17216]  netlink_unicast+0x831/0x9f0
[ 1151.122138][T17216]  ? __pfx_netlink_unicast+0x10/0x10
[ 1151.122170][T17216]  ? netlink_sendmsg+0x650/0xb40
[ 1151.122200][T17216]  ? skb_put+0x11b/0x210
[ 1151.122227][T17216]  netlink_sendmsg+0x813/0xb40
[ 1151.122270][T17216]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1151.122306][T17216]  ? unwind_get_return_address+0x4d/0x90
[ 1151.122333][T17216]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1151.122370][T17216]  ____sys_sendmsg+0x94c/0x9c0
[ 1151.122403][T17216]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1151.122440][T17216]  ? import_iovec+0x73/0xa0
[ 1151.122467][T17216]  ___sys_sendmsg+0x2a5/0x360
[ 1151.122500][T17216]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1151.122568][T17216]  ? __fget_files+0x2a/0x420
[ 1151.122597][T17216]  ? __fget_files+0x3a6/0x420
[ 1151.122639][T17216]  __x64_sys_sendmsg+0x1c3/0x2a0
[ 1151.122669][T17216]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1151.122708][T17216]  ? __pfx_ksys_write+0x10/0x10
[ 1151.122757][T17216]  do_syscall_64+0x14d/0xf80
[ 1151.122780][T17216]  ? trace_irq_disable+0x3b/0x150
[ 1151.122808][T17216]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1151.122831][T17216]  ? clear_bhb_loop+0x40/0x90
[ 1151.122860][T17216]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1151.122883][T17216] RIP: 0033:0x7f6f787fc819
[ 1151.122906][T17216] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1151.122926][T17216] RSP: 002b:00007f6f76a56028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1151.122961][T17216] RAX: ffffffffffffffda RBX: 00007f6f78a75fa0 RCX: 00007f6f787fc819
[ 1151.122977][T17216] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000007
[ 1151.122992][T17216] RBP: 00007f6f76a56090 R08: 0000000000000000 R09: 0000000000000000
[ 1151.123006][T17216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1151.123019][T17216] R13: 00007f6f78a76038 R14: 00007f6f78a75fa0 R15: 00007fff5bd93388
[ 1151.123057][T17216]  </TASK>
[ 1151.348732][T17223] netlink: 'syz.6.3508': attribute type 5 has an invalid length.
[ 1151.649248][ T5899] usb 6-1: new high-speed USB device number 78 using dummy_hcd
[ 1151.809685][ T5899] usb 6-1: config 1 interface 0 has no altsetting 0
[ 1151.816839][ T5899] usb 6-1: New USB device found, idVendor=056a, idProduct=0061, bcdDevice= 0.40
[ 1151.816862][ T5899] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1151.816874][ T5899] usb 6-1: Product: מּ껿ᖨ逍찷倾瑫ե譮盪㖹쥩鑖袝昶簋⯯⤞呺蒩蜉办Ꮭ붢끨퇀⟌﹦〦࣑跅拆轰苗嶶
⎸鿾㴘⟸誜꽉ᚔ땺锻籒ﳼ篭殽荟剮妜样해뫯䍒値鯾䤩톟証앐봢㑷櫦ﶃ匩搹弁暴⸒锪덦멓㞕ဋ뺋ಷ띯掠蠯眀벉秘슸励ö。ꬥ⠹뭱䒕䬈ꪝᨁ캘㕹면広枑忦鍈飢༥䊼䖈銍㪻隩ᴄ芛툆蒫
[ 1151.816894][ T5899] usb 6-1: Manufacturer: ᘭ䋔蚧㮧贂ー䮕૕ട᪙ꓦꏑ蟇璑㝲沆檥ࣄ㽠쟦ඌ쏂ꝟ튰Ⱊ읨ꄚ㹇먘ח첻꾟奿ᕏ奈⾩껌㢣猠낱间廑
[ 1152.530890][ T5899] usbhid 6-1:1.0: can't add hid device: -71
[ 1152.530980][ T5899] usbhid 6-1:1.0: probe with driver usbhid failed with error -71
[ 1152.557366][ T5899] usb 6-1: USB disconnect, device number 78
[ 1155.745291][T17252] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3514'.
[ 1155.810728][T17244] 9p: Bad value for 'rfdno'
[ 1156.399149][ T5808] usb 6-1: new full-speed USB device number 79 using dummy_hcd
[ 1156.427553][T17278] FAULT_INJECTION: forcing a failure.
[ 1156.427553][T17278] name failslab, interval 1, probability 0, space 0, times 0
[ 1156.427600][T17278] CPU: 0 UID: 0 PID: 17278 Comm: syz.7.3522 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1156.427631][T17278] Tainted: [L]=SOFTLOCKUP
[ 1156.427640][T17278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1156.427654][T17278] Call Trace:
[ 1156.427663][T17278]  <TASK>
[ 1156.427673][T17278]  dump_stack_lvl+0xe8/0x150
[ 1156.427715][T17278]  should_fail_ex+0x46b/0x600
[ 1156.427753][T17278]  should_failslab+0xa8/0x100
[ 1156.427779][T17278]  kmem_cache_alloc_noprof+0x87/0x680
[ 1156.427814][T17278]  ? ep_ptable_queue_proc+0x5c/0x200
[ 1156.427863][T17278]  ep_ptable_queue_proc+0x5c/0x200
[ 1156.427899][T17278]  ? __pfx_ep_ptable_queue_proc+0x10/0x10
[ 1156.427931][T17278]  datagram_poll_queue+0x8c/0x430
[ 1156.427962][T17278]  ? __pfx_sock_poll+0x10/0x10
[ 1156.427990][T17278]  ep_insert+0x11e7/0x1820
[ 1156.428038][T17278]  ? __pfx_ep_insert+0x10/0x10
[ 1156.428067][T17278]  ? trace_irq_disable+0x3b/0x150
[ 1156.428103][T17278]  ? __pfx_ep_ptable_queue_proc+0x10/0x10
[ 1156.428152][T17278]  do_epoll_ctl+0x7fd/0xe90
[ 1156.428193][T17278]  __x64_sys_epoll_ctl+0x165/0x1b0
[ 1156.428228][T17278]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[ 1156.428274][T17278]  do_syscall_64+0x14d/0xf80
[ 1156.428299][T17278]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1156.428322][T17278]  ? clear_bhb_loop+0x40/0x90
[ 1156.428351][T17278]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1156.428374][T17278] RIP: 0033:0x7f9c0c42c819
[ 1156.428395][T17278] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1156.428415][T17278] RSP: 002b:00007f9c0a686028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[ 1156.428440][T17278] RAX: ffffffffffffffda RBX: 00007f9c0c6a5fa0 RCX: 00007f9c0c42c819
[ 1156.428457][T17278] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004
[ 1156.428471][T17278] RBP: 00007f9c0a686090 R08: 0000000000000000 R09: 0000000000000000
[ 1156.428485][T17278] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000001
[ 1156.428499][T17278] R13: 00007f9c0c6a6038 R14: 00007f9c0c6a5fa0 R15: 00007ffe2d810e08
[ 1156.428536][T17278]  </TASK>
[ 1157.131647][ T5808] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1157.131686][ T5808] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1157.131731][ T5808] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1157.131757][ T5808] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1157.136193][T17285] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3523'.
[ 1157.136221][T17285] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3523'.
[ 1157.137865][ T5808] usb 6-1: config 0 descriptor??
[ 1157.217947][ T5808] hub 6-1:0.0: USB hub found
[ 1157.410558][ T5808] hub 6-1:0.0: config failed, can't read hub descriptor (err -90)
[ 1158.218687][   T36] kauditd_printk_skb: 71 callbacks suppressed
[ 1158.218709][   T36] audit: type=1326 audit(2000000773.016:2286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17300 comm="syz.0.3528" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6f787fc819 code=0x0
[ 1159.319906][T17293] netlink: 148 bytes leftover after parsing attributes in process `syz.7.3526'.
[ 1159.788202][T17322] FAULT_INJECTION: forcing a failure.
[ 1159.788202][T17322] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1159.788244][T17322] CPU: 1 UID: 0 PID: 17322 Comm: syz.6.3533 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1159.788276][T17322] Tainted: [L]=SOFTLOCKUP
[ 1159.788285][T17322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1159.788299][T17322] Call Trace:
[ 1159.788308][T17322]  <TASK>
[ 1159.788319][T17322]  dump_stack_lvl+0xe8/0x150
[ 1159.788360][T17322]  should_fail_ex+0x46b/0x600
[ 1159.788395][T17322]  _copy_to_user+0x31/0xb0
[ 1159.788421][T17322]  simple_read_from_buffer+0xe1/0x170
[ 1159.788454][T17322]  proc_fail_nth_read+0x1be/0x230
[ 1159.788485][T17322]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1159.788516][T17322]  ? rw_verify_area+0x2ac/0x4e0
[ 1159.788549][T17322]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1159.788578][T17322]  vfs_read+0x212/0xa80
[ 1159.788620][T17322]  ? __pfx_vfs_read+0x10/0x10
[ 1159.788657][T17322]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1159.788683][T17322]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1159.788706][T17322]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1159.788744][T17322]  ? mutex_lock_nested+0x152/0x1d0
[ 1159.788775][T17322]  ? fdget_pos+0x252/0x320
[ 1159.788812][T17322]  ksys_read+0x156/0x270
[ 1159.788848][T17322]  ? __pfx_ksys_read+0x10/0x10
[ 1159.788880][T17322]  ? __pfx_snd_seq_ioctl+0x10/0x10
[ 1159.788925][T17322]  do_syscall_64+0x14d/0xf80
[ 1159.788949][T17322]  ? trace_irq_disable+0x3b/0x150
[ 1159.788980][T17322]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1159.789002][T17322]  ? clear_bhb_loop+0x40/0x90
[ 1159.789028][T17322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1159.789051][T17322] RIP: 0033:0x7fc328b8d04e
[ 1159.789072][T17322] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1159.789090][T17322] RSP: 002b:00007fc326e1dfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1159.789115][T17322] RAX: ffffffffffffffda RBX: 00007fc326e1e6c0 RCX: 00007fc328b8d04e
[ 1159.789131][T17322] RDX: 000000000000000f RSI: 00007fc326e1e0a0 RDI: 0000000000000004
[ 1159.789145][T17322] RBP: 00007fc326e1e090 R08: 0000000000000000 R09: 0000000000000000
[ 1159.789159][T17322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1159.789173][T17322] R13: 00007fc328e46038 R14: 00007fc328e45fa0 R15: 00007ffc1c4ec178
[ 1159.789208][T17322]  </TASK>
[ 1161.259646][T17330] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3535'.
[ 1161.259679][T17330] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3535'.
[ 1161.334395][ T5808] usbhid 6-1:0.0: can't add hid device: -71
[ 1161.334540][ T5808] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[ 1161.364847][ T5808] usb 6-1: USB disconnect, device number 79
[ 1161.482652][T17335] dvmrp0: entered allmulticast mode
[ 1161.564031][T17340] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3537'.
[ 1162.935905][T17356] FAULT_INJECTION: forcing a failure.
[ 1162.935905][T17356] name failslab, interval 1, probability 0, space 0, times 0
[ 1162.935946][T17356] CPU: 0 UID: 0 PID: 17356 Comm: syz.6.3543 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1162.935977][T17356] Tainted: [L]=SOFTLOCKUP
[ 1162.935986][T17356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1162.935999][T17356] Call Trace:
[ 1162.936008][T17356]  <TASK>
[ 1162.936017][T17356]  dump_stack_lvl+0xe8/0x150
[ 1162.936055][T17356]  should_fail_ex+0x46b/0x600
[ 1162.936090][T17356]  should_failslab+0xa8/0x100
[ 1162.936117][T17356]  kmem_cache_alloc_noprof+0x87/0x680
[ 1162.936151][T17356]  ? skb_clone+0x212/0x3a0
[ 1162.936182][T17356]  skb_clone+0x212/0x3a0
[ 1162.936213][T17356]  __netlink_deliver_tap+0x404/0x850
[ 1162.936260][T17356]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1162.936295][T17356]  netlink_deliver_tap+0x19c/0x1b0
[ 1162.936329][T17356]  netlink_unicast+0x805/0x9f0
[ 1162.936368][T17356]  ? __pfx_netlink_unicast+0x10/0x10
[ 1162.936398][T17356]  ? netlink_sendmsg+0x650/0xb40
[ 1162.936424][T17356]  ? skb_put+0x11b/0x210
[ 1162.936451][T17356]  netlink_sendmsg+0x813/0xb40
[ 1162.936494][T17356]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1162.936530][T17356]  ? unwind_get_return_address+0x4d/0x90
[ 1162.936558][T17356]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1162.936594][T17356]  ____sys_sendmsg+0x94c/0x9c0
[ 1162.936627][T17356]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1162.936663][T17356]  ? import_iovec+0x73/0xa0
[ 1162.936689][T17356]  ___sys_sendmsg+0x2a5/0x360
[ 1162.936721][T17356]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1162.936797][T17356]  ? __fget_files+0x2a/0x420
[ 1162.936826][T17356]  ? __fget_files+0x3a6/0x420
[ 1162.936867][T17356]  __x64_sys_sendmsg+0x1c3/0x2a0
[ 1162.936896][T17356]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1162.936931][T17356]  ? __pfx_ksys_write+0x10/0x10
[ 1162.936974][T17356]  do_syscall_64+0x14d/0xf80
[ 1162.936997][T17356]  ? trace_irq_disable+0x3b/0x150
[ 1162.937021][T17356]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1162.937034][T17356]  ? clear_bhb_loop+0x40/0x90
[ 1162.937050][T17356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1162.937063][T17356] RIP: 0033:0x7fc328bcc819
[ 1162.937076][T17356] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1162.937087][T17356] RSP: 002b:00007fc326e1e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1162.937103][T17356] RAX: ffffffffffffffda RBX: 00007fc328e45fa0 RCX: 00007fc328bcc819
[ 1162.937112][T17356] RDX: 0000000004000000 RSI: 0000200000009b40 RDI: 0000000000000003
[ 1162.937121][T17356] RBP: 00007fc326e1e090 R08: 0000000000000000 R09: 0000000000000000
[ 1162.937129][T17356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1162.937137][T17356] R13: 00007fc328e46038 R14: 00007fc328e45fa0 R15: 00007ffc1c4ec178
[ 1162.937156][T17356]  </TASK>
[ 1163.240238][T17351] ALSA: mixer_oss: invalid OSS volume ''
[ 1163.636234][ T5816] Bluetooth: hci1: link tx timeout
[ 1163.637882][ T5816] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 1164.230999][T17361] netlink: 148 bytes leftover after parsing attributes in process `syz.5.3545'.
[ 1164.748635][T17396] netlink: 'syz.0.3558': attribute type 5 has an invalid length.
[ 1165.712426][ T5816] Bluetooth: hci1: command 0x0406 tx timeout
[ 1165.940860][T17401] netlink: 'syz.5.3559': attribute type 5 has an invalid length.
[ 1167.601612][T17417] FAULT_INJECTION: forcing a failure.
[ 1167.601612][T17417] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1167.601654][T17417] CPU: 1 UID: 0 PID: 17417 Comm: syz.0.3564 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1167.601685][T17417] Tainted: [L]=SOFTLOCKUP
[ 1167.601694][T17417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1167.601707][T17417] Call Trace:
[ 1167.601716][T17417]  <TASK>
[ 1167.601726][T17417]  dump_stack_lvl+0xe8/0x150
[ 1167.601777][T17417]  should_fail_ex+0x46b/0x600
[ 1167.601815][T17417]  _copy_from_user+0x2d/0xb0
[ 1167.601838][T17417]  do_ipv6_setsockopt+0x264/0x31c0
[ 1167.601878][T17417]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[ 1167.601927][T17417]  ? __lock_acquire+0x6b5/0x2cf0
[ 1167.601966][T17417]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1167.601991][T17417]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1167.602030][T17417]  ? __fget_files+0x2a/0x420
[ 1167.602063][T17417]  ipv6_setsockopt+0x59/0x170
[ 1167.602088][T17417]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1167.602124][T17417]  do_sock_setsockopt+0x17c/0x1b0
[ 1167.602153][T17417]  __x64_sys_setsockopt+0x143/0x1b0
[ 1167.602184][T17417]  do_syscall_64+0x14d/0xf80
[ 1167.602207][T17417]  ? trace_irq_disable+0x3b/0x150
[ 1167.602233][T17417]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1167.602256][T17417]  ? clear_bhb_loop+0x40/0x90
[ 1167.602284][T17417]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1167.602307][T17417] RIP: 0033:0x7f6f787fc819
[ 1167.602329][T17417] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1167.602348][T17417] RSP: 002b:00007f6f76a56028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1167.602373][T17417] RAX: ffffffffffffffda RBX: 00007f6f78a75fa0 RCX: 00007f6f787fc819
[ 1167.602389][T17417] RDX: 0000000000000030 RSI: 0000000000000029 RDI: 0000000000000003
[ 1167.602403][T17417] RBP: 00007f6f76a56090 R08: 0000000000000090 R09: 0000000000000000
[ 1167.602418][T17417] R10: 00002000000005c0 R11: 0000000000000246 R12: 0000000000000001
[ 1167.602434][T17417] R13: 00007f6f78a76038 R14: 00007f6f78a75fa0 R15: 00007fff5bd93388
[ 1167.602469][T17417]  </TASK>
[ 1167.670643][T17409] netlink: 148 bytes leftover after parsing attributes in process `syz.7.3562'.
[ 1169.471006][T13472] Bluetooth: hci4: command 0x0406 tx timeout
[ 1169.987986][T17448] fuse: Bad value for 'group_id'
[ 1169.988002][T17448] fuse: Bad value for 'group_id'
[ 1171.333141][   T36] audit: type=1326 audit(2000000786.116:2287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17460 comm="syz.7.3582" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9c0c42c819 code=0x0
[ 1171.460808][T17471] ubi31: attaching mtd0
[ 1171.557505][T17471] ubi31: scanning is finished
[ 1171.557633][T17471] ubi31: empty MTD device detected
[ 1172.661231][T17471] ubi31 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt31d", error -4
[ 1174.839215][ T5882] usb 4-1: new high-speed USB device number 99 using dummy_hcd
[ 1175.549194][ T5882] usb 4-1: Using ep0 maxpacket: 16
[ 1175.554078][ T5882] usb 4-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[ 1175.554113][ T5882] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1175.554137][ T5882] usb 4-1: Product: syz
[ 1175.554153][ T5882] usb 4-1: Manufacturer: syz
[ 1175.554169][ T5882] usb 4-1: SerialNumber: syz
[ 1175.561801][ T5882] usb 4-1: config 0 descriptor??
[ 1176.011907][ T5882] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state.
[ 1176.052895][ T5882] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1176.060077][ T5882] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T)
[ 1176.060169][ T5882] usb 4-1: media controller created
[ 1176.209944][ T5882] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1176.418091][ T5882] zl10353_read_register: readreg error (reg=127, ret==0)
[ 1176.418161][ T5882] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T'
[ 1176.418176][ T5882] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected.
[ 1176.431802][ T5882] usb 4-1: USB disconnect, device number 99
[ 1177.065935][T13472] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1177.093988][T13472] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1177.111492][T13472] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1177.143912][ T5882] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected.
[ 1177.145315][T13472] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1177.146755][T13472] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1177.221274][T17525] netlink: 'syz.7.3599': attribute type 5 has an invalid length.
[ 1177.633890][ T1326] ieee802154 phy0 wpan0: encryption failed: -22
[ 1178.969136][T17080] usb 1-1: new high-speed USB device number 99 using dummy_hcd
[ 1179.119260][T17080] usb 1-1: Using ep0 maxpacket: 32
[ 1179.125909][T17080] usb 1-1: config index 0 descriptor too short (expected 35577, got 27)
[ 1179.125939][T17080] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[ 1179.125956][T17080] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1179.125968][T17080] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92
[ 1179.125981][T17080] usb 1-1: config 1 has no interface number 0
[ 1179.126010][T17080] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[ 1179.126025][T17080] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1179.225586][T17080] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found
[ 1179.309909][T13472] Bluetooth: hci3: command tx timeout
[ 1179.347627][T17520] chnl_net:caif_netlink_parms(): no params data found
[ 1179.642315][T17080] snd_usb_pod 1-1:1.1: set_interface failed
[ 1179.642609][T17080] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected
[ 1179.642854][T17080] snd_usb_pod 1-1:1.1: probe with driver snd_usb_pod failed with error -71
[ 1180.083362][T17080] usb 1-1: USB disconnect, device number 99
[ 1180.506224][T17520] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1180.513349][T17520] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1180.513942][T17520] bridge_slave_0: entered allmulticast mode
[ 1180.520895][T17520] bridge_slave_0: entered promiscuous mode
[ 1180.562952][T17520] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1180.569787][ T5882] usb 4-1: new high-speed USB device number 100 using dummy_hcd
[ 1180.571941][T17520] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1180.572319][T17520] bridge_slave_1: entered allmulticast mode
[ 1180.576811][T17565] FAULT_INJECTION: forcing a failure.
[ 1180.576811][T17565] name failslab, interval 1, probability 0, space 0, times 0
[ 1180.576843][T17565] CPU: 0 UID: 0 PID: 17565 Comm: syz.6.3612 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1180.576869][T17565] Tainted: [L]=SOFTLOCKUP
[ 1180.576877][T17565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1180.576888][T17565] Call Trace:
[ 1180.576897][T17565]  <TASK>
[ 1180.576905][T17565]  dump_stack_lvl+0xe8/0x150
[ 1180.576940][T17565]  should_fail_ex+0x46b/0x600
[ 1180.576971][T17565]  should_failslab+0xa8/0x100
[ 1180.577005][T17565]  kmem_cache_alloc_noprof+0x87/0x680
[ 1180.577034][T17565]  ? percpu_counter_add_batch+0xea/0x1d0
[ 1180.577056][T17565]  ? ep_insert+0x285/0x1820
[ 1180.577086][T17565]  ep_insert+0x285/0x1820
[ 1180.577113][T17565]  ? __lock_acquire+0x6b5/0x2cf0
[ 1180.577144][T17565]  ? __pfx_ep_insert+0x10/0x10
[ 1180.577177][T17565]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1180.577199][T17565]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1180.577220][T17565]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1180.577241][T17565]  ? mutex_lock_nested+0x152/0x1d0
[ 1180.577267][T17565]  ? do_epoll_ctl+0x3d2/0xe90
[ 1180.577295][T17565]  do_epoll_ctl+0x7fd/0xe90
[ 1180.577329][T17565]  __x64_sys_epoll_ctl+0x165/0x1b0
[ 1180.577358][T17565]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[ 1180.577397][T17565]  do_syscall_64+0x14d/0xf80
[ 1180.577418][T17565]  ? trace_irq_disable+0x3b/0x150
[ 1180.577439][T17565]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1180.577459][T17565]  ? clear_bhb_loop+0x40/0x90
[ 1180.577483][T17565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1180.577509][T17565] RIP: 0033:0x7fc328bcc819
[ 1180.577528][T17565] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1180.577545][T17565] RSP: 002b:00007fc326e1e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[ 1180.577567][T17565] RAX: ffffffffffffffda RBX: 00007fc328e45fa0 RCX: 00007fc328bcc819
[ 1180.577582][T17565] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004
[ 1180.577593][T17565] RBP: 00007fc326e1e090 R08: 0000000000000000 R09: 0000000000000000
[ 1180.577606][T17565] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001
[ 1180.577618][T17565] R13: 00007fc328e46038 R14: 00007fc328e45fa0 R15: 00007ffc1c4ec178
[ 1180.577650][T17565]  </TASK>
[ 1180.578376][T17520] bridge_slave_1: entered promiscuous mode
[ 1180.708252][T17520] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1180.717958][T17520] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1180.754209][ T5882] usb 4-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1180.754240][ T5882] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1180.754260][ T5882] usb 4-1: Product: syz
[ 1180.754275][ T5882] usb 4-1: Manufacturer: syz
[ 1180.754290][ T5882] usb 4-1: SerialNumber: syz
[ 1180.877679][T17520] team0: Port device team_slave_0 added
[ 1180.910844][T17520] team0: Port device team_slave_1 added
[ 1181.389162][T13472] Bluetooth: hci3: command tx timeout
[ 1181.575581][ T5882] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPIPE
[ 1181.575625][ T5882] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to sync IRQ enable register: -EPIPE
[ 1181.576250][ T5882] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPIPE
[ 1181.576285][ T5882] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1181.578359][ T5882] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1181.666401][ T5882] lan78xx 4-1:1.0: probe with driver lan78xx failed with error -32
[ 1181.705323][T17520] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1181.705337][T17520] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1181.705353][T17520] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1181.719627][T17520] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1181.719644][T17520] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1181.719670][T17520] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1181.869937][T17577] overlayfs: missing 'lowerdir'
[ 1181.901758][T17520] hsr_slave_0: entered promiscuous mode
[ 1181.903538][T17520] hsr_slave_1: entered promiscuous mode
[ 1181.907153][T17520] debugfs: 'hsr0' already exists in 'hsr'
[ 1181.907172][T17520] Cannot create hsr debugfs directory
[ 1182.511183][T17520] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1183.469245][T13472] Bluetooth: hci3: command tx timeout
[ 1183.770380][ T5814] usb 4-1: USB disconnect, device number 100
[ 1185.549175][T13472] Bluetooth: hci3: command tx timeout
[ 1185.612949][T17520] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1186.474976][T17605] ALSA: mixer_oss: invalid OSS volume ''
[ 1186.716224][T17520] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1187.690114][T17080] usb 1-1: new high-speed USB device number 100 using dummy_hcd
[ 1188.028214][T17080] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023
[ 1188.028280][T17080] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[ 1188.028334][T17080] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 121
[ 1188.046145][T17080] usb 1-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[ 1188.046204][T17080] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1188.046252][T17080] usb 1-1: Product: syz
[ 1188.046294][T17080] usb 1-1: Manufacturer: syz
[ 1188.046336][T17080] usb 1-1: SerialNumber: syz
[ 1188.202203][T17080] usb 1-1: config 0 descriptor??
[ 1188.203081][T17620] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[ 1188.203219][T17620] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[ 1188.205431][T17080] usb 1-1: ucan: probing device on interface #0
[ 1188.469197][T17080] usb 1-1: ucan: could not read protocol version, ret=-32
[ 1188.469227][T17080] usb 1-1: ucan: probe failed; try to update the device firmware
[ 1188.496498][T17520] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1189.169331][T17520] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1189.816171][T17520] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1189.919940][ T5808] usb 1-1: USB disconnect, device number 100
[ 1189.958248][T17520] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1190.169510][T17520] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1191.598537][T17520] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1191.636693][T17520] 8021q: adding VLAN 0 to HW filter on device team0
[ 1191.655170][ T9838] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1191.659728][ T9838] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1191.691925][T13337] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1191.692156][T13337] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1192.395731][T17644] ALSA: mixer_oss: invalid OSS volume ''
[ 1195.087313][T17520] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1195.156254][T17679] loop5: detected capacity change from 0 to 7
[ 1195.157770][T17679] Dev loop5: unable to read RDB block 7
[ 1195.157816][T17679]  loop5: unable to read partition table
[ 1195.158050][T17679] loop5: partition table beyond EOD, truncated
[ 1195.158088][T17679] loop_reread_partitions: partition scan of loop5 (�被x������ ) failed (rc=-5)
[ 1195.489096][ T5904] usb 1-1: new high-speed USB device number 101 using dummy_hcd
[ 1195.619124][ T5904] usb 1-1: device descriptor read/64, error -71
[ 1195.769587][  T808] usb 4-1: new high-speed USB device number 101 using dummy_hcd
[ 1195.859207][ T5904] usb 1-1: new high-speed USB device number 102 using dummy_hcd
[ 1195.922341][  T808] usb 4-1: Using ep0 maxpacket: 8
[ 1195.928255][  T808] usb 4-1: New USB device found, idVendor=09e8, idProduct=0062, bcdDevice= 0.40
[ 1195.928290][  T808] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1195.928312][  T808] usb 4-1: Product:  
[ 1195.928328][  T808] usb 4-1: Manufacturer: Ѝ
[ 1195.928344][  T808] usb 4-1: SerialNumber: 눧篅둺␕鵊䏋繥厩좈ዷʭ礬⼔㨈ᚹ芔'쒫䡾⻔⡬膈풧ᥠ಴ꢦીꢽࢼ慔ᷪꖡ䈕ா飶릐씘⎦↍≇挡⡍䓸铀漸飼㊾堚䆊౤焿쭢幘䈎얟⭞硣馅䰻Ꞝ限⺉Š욇ﲠ쨌慳譵Ｃ睤㝝̃纶臘׈ጝ뒜顶甉䖝몚༇빹䑏⏍蘟끶蕪
[ 1195.989582][ T5904] usb 1-1: device descriptor read/64, error -71
[ 1196.104010][ T5904] usb usb1-port1: attempt power cycle
[ 1196.193186][  T808] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[ 1196.194394][  T808] snd-usb-audio 4-1:1.0: probe with driver snd-usb-audio failed with error -2
[ 1196.310492][T17520] veth0_vlan: entered promiscuous mode
[ 1196.325857][T17520] veth1_vlan: entered promiscuous mode
[ 1196.400296][T17520] veth0_macvtap: entered promiscuous mode
[ 1196.415958][T17520] veth1_macvtap: entered promiscuous mode
[ 1196.428302][T17689] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1196.459273][ T5904] usb 1-1: new high-speed USB device number 103 using dummy_hcd
[ 1196.466235][T17520] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1196.481131][ T5904] usb 1-1: device descriptor read/8, error -71
[ 1196.517255][T17080] usb 4-1: USB disconnect, device number 101
[ 1196.533940][T17520] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1196.604818][ T9998] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1196.610173][ T8559] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1196.617458][ T8559] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1196.643822][ T8559] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1196.739161][ T5904] usb 1-1: new high-speed USB device number 104 using dummy_hcd
[ 1196.760206][ T5904] usb 1-1: device descriptor read/8, error -71
[ 1196.871294][ T5904] usb usb1-port1: unable to enumerate USB device
[ 1197.672979][T17695] ALSA: mixer_oss: invalid OSS volume ''
[ 1197.715161][   T43] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1197.715185][   T43] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1197.848105][   T43] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1197.848130][   T43] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1200.655431][   T36] audit: type=1326 audit(2000000815.456:2288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17717 comm="syz.5.3592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1215e6c819 code=0x7ffc0000
[ 1200.655494][   T36] audit: type=1326 audit(2000000815.456:2289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17717 comm="syz.5.3592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f1215e6c819 code=0x7ffc0000
[ 1200.655544][   T36] audit: type=1326 audit(2000000815.456:2290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17717 comm="syz.5.3592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1215e6c819 code=0x7ffc0000
[ 1200.657046][   T36] audit: type=1326 audit(2000000815.456:2291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17717 comm="syz.5.3592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f1215e6c819 code=0x7ffc0000
[ 1200.831716][T17713] netlink: 148 bytes leftover after parsing attributes in process `syz.7.3653'.
[ 1200.874538][   T36] audit: type=1326 audit(2000000815.676:2292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17717 comm="syz.5.3592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1215e6c819 code=0x7ffc0000
[ 1200.874919][   T36] audit: type=1326 audit(2000000815.676:2293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17717 comm="syz.5.3592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1215e6c819 code=0x7ffc0000
[ 1201.793671][T17730] ALSA: mixer_oss: invalid OSS volume ''
[ 1201.799651][ T5808] usb 6-1: new high-speed USB device number 80 using dummy_hcd
[ 1201.976774][ T5808] usb 6-1: Using ep0 maxpacket: 8
[ 1202.480446][ T5808] usb 6-1: New USB device found, idVendor=09e8, idProduct=0062, bcdDevice= 0.40
[ 1202.480480][ T5808] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1202.480504][ T5808] usb 6-1: Product:  
[ 1202.480519][ T5808] usb 6-1: Manufacturer: Ѝ
[ 1202.480536][ T5808] usb 6-1: SerialNumber: 눧篅둺␕鵊䏋繥厩좈ዷʭ礬⼔㨈ᚹ芔'쒫䡾⻔⡬膈풧ᥠ಴ꢦીꢽࢼ慔ᷪꖡ䈕ா飶릐씘⎦↍≇挡⡍䓸铀漸飼㊾堚䆊౤焿쭢幘䈎얟⭞硣馅䰻Ꞝ限⺉Š욇ﲠ쨌慳譵Ｃ睤㝝̃纶臘׈ጝ뒜顶甉䖝몚༇빹䑏⏍蘟끶蕪
[ 1202.782082][ T5808] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[ 1202.782438][ T5808] snd-usb-audio 6-1:1.0: probe with driver snd-usb-audio failed with error -2
[ 1202.813954][T17751] syzkaller0: entered promiscuous mode
[ 1202.813974][T17751] syzkaller0: entered allmulticast mode
[ 1202.889131][    T9] usb 4-1: new full-speed USB device number 102 using dummy_hcd
[ 1203.019096][    T9] usb 4-1: device descriptor read/64, error -71
[ 1203.261010][    T9] usb 4-1: new full-speed USB device number 103 using dummy_hcd
[ 1203.399211][    T9] usb 4-1: device descriptor read/64, error -71
[ 1203.413204][T17731] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1203.441653][T17080] usb 6-1: USB disconnect, device number 80
[ 1203.509566][    T9] usb usb4-port1: attempt power cycle
[ 1203.562499][T17759] netlink: 'syz.0.3669': attribute type 2 has an invalid length.
[ 1203.615219][   T36] audit: type=1326 audit(2000000818.416:2294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17760 comm="syz.0.3670" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6f787fc819 code=0x0
[ 1203.721213][T17762] netlink: 'syz.0.3670': attribute type 10 has an invalid length.
[ 1203.851346][T17762] team0: Failed to send options change via netlink (err -105)
[ 1203.851369][T17762] team0: Port device dummy0 added
[ 1203.874649][    T9] usb 4-1: new full-speed USB device number 104 using dummy_hcd
[ 1203.890583][    T9] usb 4-1: device descriptor read/8, error -71
[ 1204.174012][    T9] usb 4-1: new full-speed USB device number 105 using dummy_hcd
[ 1204.415658][    T9] usb 4-1: device descriptor read/8, error -71
[ 1204.533819][    T9] usb usb4-port1: unable to enumerate USB device
[ 1204.775367][T17773] FAULT_INJECTION: forcing a failure.
[ 1204.775367][T17773] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1204.775393][T17773] CPU: 1 UID: 0 PID: 17773 Comm: syz.0.3673 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1204.775411][T17773] Tainted: [L]=SOFTLOCKUP
[ 1204.775416][T17773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1204.775424][T17773] Call Trace:
[ 1204.775429][T17773]  <TASK>
[ 1204.775435][T17773]  dump_stack_lvl+0xe8/0x150
[ 1204.775462][T17773]  should_fail_ex+0x46b/0x600
[ 1204.775483][T17773]  _copy_to_user+0x31/0xb0
[ 1204.775497][T17773]  simple_read_from_buffer+0xe1/0x170
[ 1204.775516][T17773]  proc_fail_nth_read+0x1be/0x230
[ 1204.775534][T17773]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1204.775551][T17773]  ? rw_verify_area+0x2ac/0x4e0
[ 1204.775569][T17773]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1204.775586][T17773]  vfs_read+0x212/0xa80
[ 1204.775609][T17773]  ? __pfx_vfs_read+0x10/0x10
[ 1204.775629][T17773]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1204.775644][T17773]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1204.775657][T17773]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1204.775671][T17773]  ? mutex_lock_nested+0x152/0x1d0
[ 1204.775687][T17773]  ? fdget_pos+0x252/0x320
[ 1204.775709][T17773]  ksys_read+0x156/0x270
[ 1204.775729][T17773]  ? __pfx_ksys_read+0x10/0x10
[ 1204.775747][T17773]  ? __pfx_snd_ctl_ioctl+0x10/0x10
[ 1204.775769][T17773]  do_syscall_64+0x14d/0xf80
[ 1204.775782][T17773]  ? trace_irq_disable+0x3b/0x150
[ 1204.775797][T17773]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1204.775809][T17773]  ? clear_bhb_loop+0x40/0x90
[ 1204.775824][T17773]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1204.775836][T17773] RIP: 0033:0x7f6f787bd04e
[ 1204.775849][T17773] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1204.775860][T17773] RSP: 002b:00007f6f76a55fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1204.775874][T17773] RAX: ffffffffffffffda RBX: 00007f6f76a566c0 RCX: 00007f6f787bd04e
[ 1204.775884][T17773] RDX: 000000000000000f RSI: 00007f6f76a560a0 RDI: 0000000000000004
[ 1204.775892][T17773] RBP: 00007f6f76a56090 R08: 0000000000000000 R09: 0000000000000000
[ 1204.775900][T17773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1204.775907][T17773] R13: 00007f6f78a76038 R14: 00007f6f78a75fa0 R15: 00007fff5bd93388
[ 1204.775927][T17773]  </TASK>
[ 1207.729496][T17080] usb 6-1: new high-speed USB device number 81 using dummy_hcd
[ 1208.030453][ T5899] usb 1-1: new high-speed USB device number 105 using dummy_hcd
[ 1208.229107][T17080] usb 6-1: Using ep0 maxpacket: 8
[ 1208.233718][T17080] usb 6-1: New USB device found, idVendor=09e8, idProduct=0062, bcdDevice= 0.40
[ 1208.233745][T17080] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1208.233758][T17080] usb 6-1: Product:  
[ 1208.233767][T17080] usb 6-1: Manufacturer: Ѝ
[ 1208.233776][T17080] usb 6-1: SerialNumber: 눧篅둺␕鵊䏋繥厩좈ዷʭ礬⼔㨈ᚹ芔'쒫䡾⻔⡬膈풧ᥠ಴ꢦીꢽࢼ慔ᷪꖡ䈕ா飶릐씘⎦↍≇挡⡍䓸铀漸飼㊾堚䆊౤焿쭢幘䈎얟⭞硣馅䰻Ꞝ限⺉Š욇ﲠ쨌慳譵Ｃ睤㝝̃纶臘׈ጝ뒜顶甉䖝몚༇빹䑏⏍蘟끶蕪
[ 1208.579473][ T5899] usb 1-1: Using ep0 maxpacket: 16
[ 1208.630465][T17808] FAULT_INJECTION: forcing a failure.
[ 1208.630465][T17808] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1208.630506][T17808] CPU: 0 UID: 0 PID: 17808 Comm: syz.3.3685 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1208.630535][T17808] Tainted: [L]=SOFTLOCKUP
[ 1208.630543][T17808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1208.630556][T17808] Call Trace:
[ 1208.630565][T17808]  <TASK>
[ 1208.630575][T17808]  dump_stack_lvl+0xe8/0x150
[ 1208.630613][T17808]  should_fail_ex+0x46b/0x600
[ 1208.630646][T17808]  _copy_from_user+0x2d/0xb0
[ 1208.630665][T17808]  ___sys_sendmsg+0x1c6/0x360
[ 1208.630690][T17808]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1208.630748][T17808]  ? __fget_files+0x2a/0x420
[ 1208.630776][T17808]  ? __fget_files+0x3a6/0x420
[ 1208.630811][T17808]  __x64_sys_sendmsg+0x1c3/0x2a0
[ 1208.630836][T17808]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1208.630868][T17808]  ? __pfx_ksys_write+0x10/0x10
[ 1208.630906][T17808]  do_syscall_64+0x14d/0xf80
[ 1208.630931][T17808]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1208.630954][T17808]  ? clear_bhb_loop+0x40/0x90
[ 1208.630977][T17808]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1208.630997][T17808] RIP: 0033:0x7f44805dc819
[ 1208.631016][T17808] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1208.631032][T17808] RSP: 002b:00007f447e80d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1208.631053][T17808] RAX: ffffffffffffffda RBX: 00007f4480856090 RCX: 00007f44805dc819
[ 1208.631068][T17808] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[ 1208.631083][T17808] RBP: 00007f447e80d090 R08: 0000000000000000 R09: 0000000000000000
[ 1208.631097][T17808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1208.631111][T17808] R13: 00007f4480856128 R14: 00007f4480856090 R15: 00007ffd1ad35298
[ 1208.631142][T17808]  </TASK>
[ 1208.927809][ T5899] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 2.00
[ 1208.927844][ T5899] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1208.969062][ T5899] usb 1-1: config 0 descriptor??
[ 1209.027482][ T5899] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[ 1209.154021][T17080] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[ 1209.155241][T17080] snd-usb-audio 6-1:1.0: probe with driver snd-usb-audio failed with error -2
[ 1209.527361][ T5899] usb 1-1: Detected FT232A
[ 1209.900343][T17809] ALSA: mixer_oss: invalid OSS volume ''
[ 1209.907441][ T5899] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1209.922629][ T5899] usb 1-1: USB disconnect, device number 105
[ 1209.943590][ T5899] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1209.954824][T17820] FAULT_INJECTION: forcing a failure.
[ 1209.954824][T17820] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1209.954864][T17820] CPU: 1 UID: 0 PID: 17820 Comm: syz.3.3687 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1209.954895][T17820] Tainted: [L]=SOFTLOCKUP
[ 1209.954903][T17820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1209.954917][T17820] Call Trace:
[ 1209.954926][T17820]  <TASK>
[ 1209.954936][T17820]  dump_stack_lvl+0xe8/0x150
[ 1209.954976][T17820]  should_fail_ex+0x46b/0x600
[ 1209.955013][T17820]  _copy_to_user+0x31/0xb0
[ 1209.955038][T17820]  simple_read_from_buffer+0xe1/0x170
[ 1209.955073][T17820]  proc_fail_nth_read+0x1be/0x230
[ 1209.955107][T17820]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1209.955138][T17820]  ? rw_verify_area+0x2ac/0x4e0
[ 1209.955171][T17820]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1209.955210][T17820]  vfs_read+0x212/0xa80
[ 1209.955252][T17820]  ? __pfx_vfs_read+0x10/0x10
[ 1209.955286][T17820]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1209.955312][T17820]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1209.955336][T17820]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1209.955361][T17820]  ? mutex_lock_nested+0x152/0x1d0
[ 1209.955391][T17820]  ? fdget_pos+0x252/0x320
[ 1209.955431][T17820]  ksys_read+0x156/0x270
[ 1209.955465][T17820]  ? __pfx_ksys_read+0x10/0x10
[ 1209.955495][T17820]  ? __pfx_snd_pcm_ioctl+0x10/0x10
[ 1209.955532][T17820]  do_syscall_64+0x14d/0xf80
[ 1209.955556][T17820]  ? trace_irq_disable+0x3b/0x150
[ 1209.955581][T17820]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1209.955602][T17820]  ? clear_bhb_loop+0x40/0x90
[ 1209.955627][T17820]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1209.955649][T17820] RIP: 0033:0x7f448059d04e
[ 1209.955670][T17820] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1209.955688][T17820] RSP: 002b:00007f447e80cfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1209.955708][T17820] RAX: ffffffffffffffda RBX: 00007f447e80d6c0 RCX: 00007f448059d04e
[ 1209.955720][T17820] RDX: 000000000000000f RSI: 00007f447e80d0a0 RDI: 0000000000000006
[ 1209.955733][T17820] RBP: 00007f447e80d090 R08: 0000000000000000 R09: 0000000000000000
[ 1209.955744][T17820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1209.955756][T17820] R13: 00007f4480856128 R14: 00007f4480856090 R15: 00007ffd1ad35298
[ 1209.955788][T17820]  </TASK>
[ 1209.962041][T17817] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1210.009193][ T5899] ftdi_sio 1-1:0.0: device disconnected
[ 1210.292464][    T9] usb 6-1: USB disconnect, device number 81
[ 1211.526590][T17838] netlink: 'syz.5.3693': attribute type 5 has an invalid length.
[ 1211.649150][    T9] usb 1-1: new high-speed USB device number 106 using dummy_hcd
[ 1211.822500][    T9] usb 1-1: config 1 interface 0 has no altsetting 0
[ 1211.828711][    T9] usb 1-1: New USB device found, idVendor=056a, idProduct=0061, bcdDevice= 0.40
[ 1211.828733][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1211.828746][    T9] usb 1-1: Product: מּ껿ᖨ逍찷倾瑫ե譮盪㖹쥩鑖袝昶簋⯯⤞呺蒩蜉办Ꮭ붢끨퇀⟌﹦〦࣑跅拆轰苗嶶
⎸鿾㴘⟸誜꽉ᚔ땺锻籒ﳼ篭殽荟剮妜样해뫯䍒値鯾䤩톟証앐봢㑷櫦ﶃ匩搹弁暴⸒锪덦멓㞕ဋ뺋ಷ띯掠蠯眀벉秘슸励ö。ꬥ⠹뭱䒕䬈ꪝᨁ캘㕹면広枑忦鍈飢༥䊼䖈銍㪻隩ᴄ芛툆蒫
[ 1211.828766][    T9] usb 1-1: Manufacturer: ᘭ䋔蚧㮧贂ー䮕૕ട᪙ꓦꏑ蟇璑㝲沆檥ࣄ㽠쟦ඌ쏂ꝟ튰Ⱊ읨ꄚ㹇먘ח첻꾟奿ᕏ奈⾩껌㢣猠낱间廑
[ 1212.080534][    T9] usbhid 1-1:1.0: can't add hid device: -71
[ 1212.080615][    T9] usbhid 1-1:1.0: probe with driver usbhid failed with error -71
[ 1212.110918][    T9] usb 1-1: USB disconnect, device number 106
[ 1213.439448][T17850] ALSA: mixer_oss: invalid OSS volume ''
[ 1218.924894][T17909] ALSA: mixer_oss: invalid OSS volume ''
[ 1219.324232][T17921] netlink: 'syz.6.3716': attribute type 5 has an invalid length.
[ 1221.339185][T17933] FAULT_INJECTION: forcing a failure.
[ 1221.339185][T17933] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1221.339261][T17933] CPU: 1 UID: 0 PID: 17933 Comm: syz.6.3718 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1221.339293][T17933] Tainted: [L]=SOFTLOCKUP
[ 1221.339301][T17933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1221.339316][T17933] Call Trace:
[ 1221.339326][T17933]  <TASK>
[ 1221.339337][T17933]  dump_stack_lvl+0xe8/0x150
[ 1221.339378][T17933]  should_fail_ex+0x46b/0x600
[ 1221.339416][T17933]  _copy_to_user+0x31/0xb0
[ 1221.339441][T17933]  simple_read_from_buffer+0xe1/0x170
[ 1221.339476][T17933]  proc_fail_nth_read+0x1be/0x230
[ 1221.339507][T17933]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1221.339540][T17933]  ? rw_verify_area+0x2ac/0x4e0
[ 1221.339574][T17933]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1221.339605][T17933]  vfs_read+0x212/0xa80
[ 1221.339649][T17933]  ? __pfx_vfs_read+0x10/0x10
[ 1221.339686][T17933]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1221.339713][T17933]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1221.339739][T17933]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1221.339764][T17933]  ? mutex_lock_nested+0x152/0x1d0
[ 1221.339794][T17933]  ? fdget_pos+0x252/0x320
[ 1221.339834][T17933]  ksys_read+0x156/0x270
[ 1221.339872][T17933]  ? __pfx_ksys_read+0x10/0x10
[ 1221.339919][T17933]  do_syscall_64+0x14d/0xf80
[ 1221.339944][T17933]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1221.339967][T17933]  ? clear_bhb_loop+0x40/0x90
[ 1221.339995][T17933]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1221.340013][T17933] RIP: 0033:0x7fc328b8d04e
[ 1221.340032][T17933] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1221.340052][T17933] RSP: 002b:00007fc326ddbfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1221.340077][T17933] RAX: ffffffffffffffda RBX: 00007fc326ddc6c0 RCX: 00007fc328b8d04e
[ 1221.340095][T17933] RDX: 000000000000000f RSI: 00007fc326ddc0a0 RDI: 0000000000000007
[ 1221.340110][T17933] RBP: 00007fc326ddc090 R08: 0000000000000000 R09: 0000000000000000
[ 1221.340124][T17933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1221.340139][T17933] R13: 00007fc328e46218 R14: 00007fc328e46180 R15: 00007ffc1c4ec178
[ 1221.340177][T17933]  </TASK>
[ 1222.440653][T17942] FAULT_INJECTION: forcing a failure.
[ 1222.440653][T17942] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1222.440690][T17942] CPU: 0 UID: 0 PID: 17942 Comm: syz.6.3721 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1222.440719][T17942] Tainted: [L]=SOFTLOCKUP
[ 1222.440727][T17942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1222.440740][T17942] Call Trace:
[ 1222.440750][T17942]  <TASK>
[ 1222.440760][T17942]  dump_stack_lvl+0xe8/0x150
[ 1222.440795][T17942]  should_fail_ex+0x46b/0x600
[ 1222.440831][T17942]  _copy_from_user+0x2d/0xb0
[ 1222.440853][T17942]  core_sys_select+0x57a/0xc30
[ 1222.440894][T17942]  ? __pfx_core_sys_select+0x10/0x10
[ 1222.440945][T17942]  ? __pfx_set_user_sigmask+0x10/0x10
[ 1222.440973][T17942]  ? kmem_cache_free+0x185/0x6b0
[ 1222.441003][T17942]  __se_sys_pselect6+0x267/0x320
[ 1222.441034][T17942]  ? __pfx___se_sys_pselect6+0x10/0x10
[ 1222.441060][T17942]  ? __pfx_ksys_write+0x10/0x10
[ 1222.441097][T17942]  ? __x64_sys_pselect6+0x21/0xf0
[ 1222.441127][T17942]  do_syscall_64+0x14d/0xf80
[ 1222.441151][T17942]  ? trace_irq_disable+0x3b/0x150
[ 1222.441176][T17942]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1222.441197][T17942]  ? clear_bhb_loop+0x40/0x90
[ 1222.441224][T17942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1222.441246][T17942] RIP: 0033:0x7fc328bcc819
[ 1222.441267][T17942] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1222.441298][T17942] RSP: 002b:00007fc326e1e028 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[ 1222.441323][T17942] RAX: ffffffffffffffda RBX: 00007fc328e45fa0 RCX: 00007fc328bcc819
[ 1222.441340][T17942] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000040
[ 1222.441355][T17942] RBP: 00007fc326e1e090 R08: 0000200000000280 R09: 0000000000000000
[ 1222.441371][T17942] R10: 0000200000000240 R11: 0000000000000246 R12: 0000000000000001
[ 1222.441386][T17942] R13: 00007fc328e46038 R14: 00007fc328e45fa0 R15: 00007ffc1c4ec178
[ 1222.441421][T17942]  </TASK>
[ 1222.572178][T17944] FAULT_INJECTION: forcing a failure.
[ 1222.572178][T17944] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1222.572217][T17944] CPU: 0 UID: 0 PID: 17944 Comm: syz.7.3722 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1222.572246][T17944] Tainted: [L]=SOFTLOCKUP
[ 1222.572262][T17944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1222.572274][T17944] Call Trace:
[ 1222.572282][T17944]  <TASK>
[ 1222.572291][T17944]  dump_stack_lvl+0xe8/0x150
[ 1222.572325][T17944]  should_fail_ex+0x46b/0x600
[ 1222.572358][T17944]  prepare_alloc_pages+0x22a/0x6b0
[ 1222.572388][T17944]  __alloc_frozen_pages_noprof+0x12f/0x380
[ 1222.572415][T17944]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1222.572442][T17944]  ? __pfx_policy_nodemask+0x10/0x10
[ 1222.572474][T17944]  alloc_pages_mpol+0xd1/0x380
[ 1222.572498][T17944]  alloc_pages_noprof+0xce/0x1e0
[ 1222.572522][T17944]  anon_pipe_write+0xc0c/0x1480
[ 1222.572543][T17944]  ? kstrtouint+0x6e/0xe0
[ 1222.572590][T17944]  ? __pfx_anon_pipe_write+0x10/0x10
[ 1222.572628][T17944]  vfs_write+0x629/0xba0
[ 1222.572665][T17944]  ? __pfx_vfs_write+0x10/0x10
[ 1222.572704][T17944]  ? __fget_files+0x2a/0x420
[ 1222.572739][T17944]  ksys_write+0x156/0x270
[ 1222.572770][T17944]  ? __pfx_ksys_write+0x10/0x10
[ 1222.572810][T17944]  do_syscall_64+0x14d/0xf80
[ 1222.572831][T17944]  ? trace_irq_disable+0x3b/0x150
[ 1222.572852][T17944]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1222.572872][T17944]  ? clear_bhb_loop+0x40/0x90
[ 1222.572896][T17944]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1222.572915][T17944] RIP: 0033:0x7f9c0c42c819
[ 1222.572934][T17944] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1222.572950][T17944] RSP: 002b:00007f9c0a686028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1222.572973][T17944] RAX: ffffffffffffffda RBX: 00007f9c0c6a5fa0 RCX: 00007f9c0c42c819
[ 1222.572987][T17944] RDX: 00000000ffffff0c RSI: 0000200000000000 RDI: 0000000000000006
[ 1222.573000][T17944] RBP: 00007f9c0a686090 R08: 0000000000000000 R09: 0000000000000000
[ 1222.573013][T17944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1222.573025][T17944] R13: 00007f9c0c6a6038 R14: 00007f9c0c6a5fa0 R15: 00007ffe2d810e08
[ 1222.573057][T17944]  </TASK>
[ 1222.914273][T17947] FAULT_INJECTION: forcing a failure.
[ 1222.914273][T17947] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1222.914310][T17947] CPU: 0 UID: 0 PID: 17947 Comm: syz.5.3724 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1222.914337][T17947] Tainted: [L]=SOFTLOCKUP
[ 1222.914344][T17947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1222.914355][T17947] Call Trace:
[ 1222.914364][T17947]  <TASK>
[ 1222.914372][T17947]  dump_stack_lvl+0xe8/0x150
[ 1222.914406][T17947]  should_fail_ex+0x46b/0x600
[ 1222.914438][T17947]  _copy_to_user+0x31/0xb0
[ 1222.914460][T17947]  simple_read_from_buffer+0xe1/0x170
[ 1222.914489][T17947]  proc_fail_nth_read+0x1be/0x230
[ 1222.914517][T17947]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1222.914544][T17947]  ? rw_verify_area+0x2ac/0x4e0
[ 1222.914572][T17947]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1222.914597][T17947]  vfs_read+0x212/0xa80
[ 1222.914634][T17947]  ? __pfx_vfs_read+0x10/0x10
[ 1222.914664][T17947]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1222.914687][T17947]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1222.914708][T17947]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1222.914729][T17947]  ? mutex_lock_nested+0x152/0x1d0
[ 1222.914755][T17947]  ? fdget_pos+0x252/0x320
[ 1222.914789][T17947]  ksys_read+0x156/0x270
[ 1222.914820][T17947]  ? __pfx_ksys_read+0x10/0x10
[ 1222.914846][T17947]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1222.914876][T17947]  do_syscall_64+0x14d/0xf80
[ 1222.914897][T17947]  ? trace_irq_disable+0x3b/0x150
[ 1222.914919][T17947]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1222.914939][T17947]  ? clear_bhb_loop+0x40/0x90
[ 1222.914963][T17947]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1222.914982][T17947] RIP: 0033:0x7f1215e2d04e
[ 1222.915002][T17947] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1222.915019][T17947] RSP: 002b:00007f12140c5fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1222.915041][T17947] RAX: ffffffffffffffda RBX: 00007f12140c66c0 RCX: 00007f1215e2d04e
[ 1222.915056][T17947] RDX: 000000000000000f RSI: 00007f12140c60a0 RDI: 0000000000000004
[ 1222.915069][T17947] RBP: 00007f12140c6090 R08: 0000000000000000 R09: 0000000000000000
[ 1222.915082][T17947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1222.915094][T17947] R13: 00007f12160e6038 R14: 00007f12160e5fa0 R15: 00007ffc730ac408
[ 1222.915127][T17947]  </TASK>
[ 1222.915731][T17948] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1223.392402][T17948] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1223.983453][T17950] ALSA: mixer_oss: invalid OSS volume ''
[ 1224.409334][T17961] ip6gretap0: entered promiscuous mode
[ 1224.409489][T17961] vlan2: entered promiscuous mode
[ 1224.709144][ T5882] usb 6-1: new high-speed USB device number 82 using dummy_hcd
[ 1224.838569][ T5816] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1224.861261][ T5816] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1224.863123][ T5816] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1224.868100][ T5816] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1224.871344][ T5816] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1224.912674][ T5882] usb 6-1: config 1 interface 0 has no altsetting 0
[ 1224.948218][ T5882] usb 6-1: New USB device found, idVendor=056a, idProduct=0061, bcdDevice= 0.40
[ 1224.948254][ T5882] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1224.948275][ T5882] usb 6-1: Product: מּ껿ᖨ逍찷倾瑫ե譮盪㖹쥩鑖袝昶簋⯯⤞呺蒩蜉办Ꮭ붢끨퇀⟌﹦〦࣑跅拆轰苗嶶
⎸鿾㴘⟸誜꽉ᚔ땺锻籒ﳼ篭殽荟剮妜样해뫯䍒値鯾䤩톟証앐봢㑷櫦ﶃ匩搹弁暴⸒锪덦멓㞕ဋ뺋ಷ띯掠蠯眀벉秘슸励ö。ꬥ⠹뭱䒕䬈ꪝᨁ캘㕹면広枑忦鍈飢༥䊼䖈銍㪻隩ᴄ芛툆蒫
[ 1224.948307][ T5882] usb 6-1: Manufacturer: ᘭ䋔蚧㮧贂ー䮕૕ട᪙ꓦꏑ蟇璑㝲沆檥ࣄ㽠쟦ඌ쏂ꝟ튰Ⱊ읨ꄚ㹇먘ח첻꾟奿ᕏ奈⾩껌㢣猠낱间廑
[ 1225.269695][ T5882] usbhid 6-1:1.0: can't add hid device: -71
[ 1225.269835][ T5882] usbhid 6-1:1.0: probe with driver usbhid failed with error -71
[ 1225.284524][ T5882] usb 6-1: USB disconnect, device number 82
[ 1227.189409][T13472] Bluetooth: hci5: command tx timeout
[ 1227.368085][T17996] ALSA: mixer_oss: invalid OSS volume ''
[ 1227.659085][ T5808] usb 4-1: new high-speed USB device number 106 using dummy_hcd
[ 1227.791864][T18008] FAULT_INJECTION: forcing a failure.
[ 1227.791864][T18008] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1227.791909][T18008] CPU: 0 UID: 0 PID: 18008 Comm: syz.0.3744 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1227.791942][T18008] Tainted: [L]=SOFTLOCKUP
[ 1227.791951][T18008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1227.791965][T18008] Call Trace:
[ 1227.791975][T18008]  <TASK>
[ 1227.791985][T18008]  dump_stack_lvl+0xe8/0x150
[ 1227.792026][T18008]  should_fail_ex+0x46b/0x600
[ 1227.792065][T18008]  _copy_to_user+0x31/0xb0
[ 1227.792091][T18008]  simple_read_from_buffer+0xe1/0x170
[ 1227.792127][T18008]  proc_fail_nth_read+0x1be/0x230
[ 1227.792159][T18008]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1227.792192][T18008]  ? rw_verify_area+0x2ac/0x4e0
[ 1227.792226][T18008]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1227.792256][T18008]  vfs_read+0x212/0xa80
[ 1227.792310][T18008]  ? __pfx_vfs_read+0x10/0x10
[ 1227.792347][T18008]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1227.792374][T18008]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1227.792399][T18008]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1227.792424][T18008]  ? mutex_lock_nested+0x152/0x1d0
[ 1227.792454][T18008]  ? fdget_pos+0x252/0x320
[ 1227.792494][T18008]  ksys_read+0x156/0x270
[ 1227.792531][T18008]  ? __pfx_ksys_read+0x10/0x10
[ 1227.792579][T18008]  do_syscall_64+0x14d/0xf80
[ 1227.792604][T18008]  ? trace_irq_disable+0x3b/0x150
[ 1227.792631][T18008]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1227.792654][T18008]  ? clear_bhb_loop+0x40/0x90
[ 1227.792683][T18008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1227.792705][T18008] RIP: 0033:0x7f6f787bd04e
[ 1227.792727][T18008] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1227.792746][T18008] RSP: 002b:00007f6f76a55fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1227.792772][T18008] RAX: ffffffffffffffda RBX: 00007f6f76a566c0 RCX: 00007f6f787bd04e
[ 1227.792789][T18008] RDX: 000000000000000f RSI: 00007f6f76a560a0 RDI: 0000000000000004
[ 1227.792803][T18008] RBP: 00007f6f76a56090 R08: 0000000000000000 R09: 0000000000000000
[ 1227.792818][T18008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1227.792832][T18008] R13: 00007f6f78a76038 R14: 00007f6f78a75fa0 R15: 00007fff5bd93388
[ 1227.792875][T18008]  </TASK>
[ 1228.799044][ T5808] usb 4-1: Using ep0 maxpacket: 16
[ 1228.804005][ T5808] usb 4-1: too many configurations: 123, using maximum allowed: 8
[ 1228.805221][ T5808] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1228.805248][ T5808] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1228.806446][ T5808] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1228.806470][ T5808] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1228.807602][ T5808] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1228.807627][ T5808] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1228.808773][ T5808] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1228.808796][ T5808] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1228.813481][ T5808] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1228.813506][ T5808] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1228.814663][ T5808] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1228.814687][ T5808] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1228.815823][ T5808] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1228.815847][ T5808] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1228.816992][ T5808] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1228.817016][ T5808] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1228.818244][ T5808] usb 4-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[ 1228.818272][ T5808] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=45
[ 1228.818295][ T5808] usb 4-1: SerialNumber: syz
[ 1229.149526][ T5808] usb 4-1: config 0 descriptor??
[ 1229.229116][T13472] Bluetooth: hci5: command tx timeout
[ 1229.360116][T18002] FAULT_INJECTION: forcing a failure.
[ 1229.360116][T18002] name failslab, interval 1, probability 0, space 0, times 0
[ 1229.360157][T18002] CPU: 0 UID: 0 PID: 18002 Comm: syz.3.3742 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1229.360188][T18002] Tainted: [L]=SOFTLOCKUP
[ 1229.360195][T18002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1229.360208][T18002] Call Trace:
[ 1229.360218][T18002]  <TASK>
[ 1229.360228][T18002]  dump_stack_lvl+0xe8/0x150
[ 1229.360267][T18002]  should_fail_ex+0x46b/0x600
[ 1229.360304][T18002]  should_failslab+0xa8/0x100
[ 1229.360330][T18002]  __kmalloc_cache_noprof+0x84/0x690
[ 1229.360353][T18002]  ? device_add+0xbe/0xb80
[ 1229.360385][T18002]  device_add+0xbe/0xb80
[ 1229.360418][T18002]  input_register_device+0x9d3/0x1160
[ 1229.360455][T18002]  ? input_ff_create+0x235/0x300
[ 1229.360486][T18002]  uinput_create_device+0x422/0x670
[ 1229.360523][T18002]  uinput_ioctl_handler+0x41a/0x14a0
[ 1229.360558][T18002]  ? __pfx_uinput_ioctl_handler+0x10/0x10
[ 1229.360597][T18002]  ? __fget_files+0x2a/0x420
[ 1229.360625][T18002]  ? __fget_files+0x3a6/0x420
[ 1229.360661][T18002]  ? bpf_lsm_file_ioctl+0x9/0x20
[ 1229.360685][T18002]  ? __pfx_uinput_ioctl+0x10/0x10
[ 1229.360712][T18002]  __se_sys_ioctl+0xff/0x170
[ 1229.360738][T18002]  do_syscall_64+0x14d/0xf80
[ 1229.360763][T18002]  ? trace_irq_disable+0x3b/0x150
[ 1229.360789][T18002]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1229.360811][T18002]  ? clear_bhb_loop+0x40/0x90
[ 1229.360840][T18002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1229.360862][T18002] RIP: 0033:0x7f44805dc819
[ 1229.360893][T18002] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1229.360913][T18002] RSP: 002b:00007f447e82e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1229.360938][T18002] RAX: ffffffffffffffda RBX: 00007f4480855fa0 RCX: 00007f44805dc819
[ 1229.360964][T18002] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000004
[ 1229.360978][T18002] RBP: 00007f447e82e090 R08: 0000000000000000 R09: 0000000000000000
[ 1229.360992][T18002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1229.361006][T18002] R13: 00007f4480856038 R14: 00007f4480855fa0 R15: 00007ffd1ad35298
[ 1229.361044][T18002]  </TASK>
[ 1229.362747][ T5814] usb 4-1: USB disconnect, device number 106
[ 1229.620837][  T267] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1229.637546][T18023] loop5: detected capacity change from 0 to 7
[ 1229.639811][T18023] Dev loop5: unable to read RDB block 7
[ 1229.639854][T18023]  loop5: unable to read partition table
[ 1229.640080][T18023] loop5: partition table beyond EOD, truncated
[ 1229.640097][T18023] loop_reread_partitions: partition scan of loop5 (�被x������ ) failed (rc=-5)
[ 1230.447541][  T267] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1231.309678][T13472] Bluetooth: hci5: command tx timeout
[ 1231.818236][T18036] ALSA: mixer_oss: invalid OSS volume ''
[ 1231.867392][T18042] FAULT_INJECTION: forcing a failure.
[ 1231.867392][T18042] name failslab, interval 1, probability 0, space 0, times 0
[ 1231.867435][T18042] CPU: 1 UID: 0 PID: 18042 Comm: syz.3.3756 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1231.867465][T18042] Tainted: [L]=SOFTLOCKUP
[ 1231.867473][T18042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1231.867486][T18042] Call Trace:
[ 1231.867495][T18042]  <TASK>
[ 1231.867505][T18042]  dump_stack_lvl+0xe8/0x150
[ 1231.867546][T18042]  should_fail_ex+0x46b/0x600
[ 1231.867583][T18042]  should_failslab+0xa8/0x100
[ 1231.867609][T18042]  __kmalloc_cache_noprof+0x84/0x690
[ 1231.867632][T18042]  ? nf_tables_newtable+0x435/0x1910
[ 1231.867664][T18042]  nf_tables_newtable+0x435/0x1910
[ 1231.867686][T18042]  ? nfnl_pernet+0x12/0x240
[ 1231.867734][T18042]  nfnetlink_rcv+0x1247/0x27b0
[ 1231.867804][T18042]  ? __pfx_nfnetlink_rcv+0x10/0x10
[ 1231.867846][T18042]  ? __lock_acquire+0x6b5/0x2cf0
[ 1231.867910][T18042]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1231.867972][T18042]  netlink_unicast+0x831/0x9f0
[ 1231.868012][T18042]  ? __pfx_netlink_unicast+0x10/0x10
[ 1231.868045][T18042]  ? netlink_sendmsg+0x650/0xb40
[ 1231.868076][T18042]  ? skb_put+0x11b/0x210
[ 1231.868104][T18042]  netlink_sendmsg+0x813/0xb40
[ 1231.868149][T18042]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1231.868184][T18042]  ? unwind_get_return_address+0x4d/0x90
[ 1231.868212][T18042]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1231.868250][T18042]  ____sys_sendmsg+0x94c/0x9c0
[ 1231.868282][T18042]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1231.868320][T18042]  ? import_iovec+0x73/0xa0
[ 1231.868348][T18042]  ___sys_sendmsg+0x2a5/0x360
[ 1231.868380][T18042]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1231.868448][T18042]  ? __fget_files+0x2a/0x420
[ 1231.868475][T18042]  ? __fget_files+0x3a6/0x420
[ 1231.868516][T18042]  __x64_sys_sendmsg+0x1c3/0x2a0
[ 1231.868545][T18042]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1231.868582][T18042]  ? __pfx_ksys_write+0x10/0x10
[ 1231.868630][T18042]  do_syscall_64+0x14d/0xf80
[ 1231.868654][T18042]  ? trace_irq_disable+0x3b/0x150
[ 1231.868680][T18042]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1231.868703][T18042]  ? clear_bhb_loop+0x40/0x90
[ 1231.868731][T18042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1231.868754][T18042] RIP: 0033:0x7f44805dc819
[ 1231.868775][T18042] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1231.868795][T18042] RSP: 002b:00007f447e82e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1231.868820][T18042] RAX: ffffffffffffffda RBX: 00007f4480855fa0 RCX: 00007f44805dc819
[ 1231.868836][T18042] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[ 1231.868851][T18042] RBP: 00007f447e82e090 R08: 0000000000000000 R09: 0000000000000000
[ 1231.868865][T18042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1231.868879][T18042] R13: 00007f4480856038 R14: 00007f4480855fa0 R15: 00007ffd1ad35298
[ 1231.868915][T18042]  </TASK>
[ 1232.949814][T17080] usb 1-1: new high-speed USB device number 107 using dummy_hcd
[ 1233.065354][ T5899] usb 6-1: new high-speed USB device number 83 using dummy_hcd
[ 1233.329193][ T5899] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023
[ 1233.329282][ T5899] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[ 1233.329336][ T5899] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 121
[ 1233.389271][T13472] Bluetooth: hci5: command tx timeout
[ 1233.395403][ T5899] usb 6-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[ 1233.395460][ T5899] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1233.396526][ T5899] usb 6-1: Product: syz
[ 1233.396570][ T5899] usb 6-1: Manufacturer: syz
[ 1233.396611][ T5899] usb 6-1: SerialNumber: syz
[ 1233.563556][ T5899] usb 6-1: config 0 descriptor??
[ 1233.564334][T18055] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[ 1233.564475][T18055] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[ 1233.572416][T17080] usb 1-1: Using ep0 maxpacket: 16
[ 1233.588554][T17080] usb 1-1: New USB device found, idVendor=0d8c, idProduct=0102, bcdDevice= 0.40
[ 1233.588580][T17080] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1233.588593][T17080] usb 1-1: Product: syz
[ 1233.588602][T17080] usb 1-1: Manufacturer: syz
[ 1233.588611][T17080] usb 1-1: SerialNumber: syz
[ 1233.631161][  T267] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1233.657191][ T5899] usb 6-1: ucan: probing device on interface #0
[ 1233.805256][ T5899] usb 6-1: ucan: could not read protocol version, ret=-32
[ 1233.805284][ T5899] usb 6-1: ucan: probe failed; try to update the device firmware
[ 1234.171949][T18064] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3761'.
[ 1234.219826][  T267] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1234.361057][T17973] chnl_net:caif_netlink_parms(): no params data found
[ 1234.782686][T18052] netlink: 132 bytes leftover after parsing attributes in process `syz.0.3761'.
[ 1234.818835][T17973] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1234.826653][T17973] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1234.827348][T17973] bridge_slave_0: entered allmulticast mode
[ 1234.854569][T17973] bridge_slave_0: entered promiscuous mode
[ 1234.877658][T17973] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1234.877765][T17973] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1234.878021][T17973] bridge_slave_1: entered allmulticast mode
[ 1234.887947][T17973] bridge_slave_1: entered promiscuous mode
[ 1234.971153][T18064] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[ 1235.268015][T17973] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1235.428287][ T5882] usb 6-1: USB disconnect, device number 83
[ 1235.698575][T17973] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1236.477643][T17973] team0: Port device team_slave_0 added
[ 1236.504013][T17973] team0: Port device team_slave_1 added
[ 1236.602449][ T5814] usb 6-1: new high-speed USB device number 84 using dummy_hcd
[ 1236.649820][T17080] snd-usb-audio 1-1:1.0: probe with driver snd-usb-audio failed with error -71
[ 1236.679220][T17080] usb 1-1: USB disconnect, device number 107
[ 1236.756880][ T5814] usb 6-1: Using ep0 maxpacket: 16
[ 1236.777426][ T5814] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 142, changing to 7
[ 1236.798289][ T5814] usb 6-1: New USB device found, idVendor=041e, idProduct=323b, bcdDevice= 0.40
[ 1236.798316][ T5814] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1236.798328][ T5814] usb 6-1: Product: syz
[ 1236.798337][ T5814] usb 6-1: Manufacturer: syz
[ 1236.798346][ T5814] usb 6-1: SerialNumber: syz
[ 1237.023678][  T267] bridge_slave_1: left allmulticast mode
[ 1237.023714][  T267] bridge_slave_1: left promiscuous mode
[ 1237.048779][  T267] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1237.135902][  T267] bridge_slave_0: left allmulticast mode
[ 1237.135926][  T267] bridge_slave_0: left promiscuous mode
[ 1237.136253][  T267] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1237.329742][T18081] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1237.331673][T18081] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1237.391748][ T5814] usb 6-1: 1:1 : incorrect wMaxPacketSize for BADD profile
[ 1237.392134][ T5814] usb 6-1: incorrect wMaxPacketSize 0x20 for BADD profile
[ 1237.469273][ T5808] usb 1-1: new high-speed USB device number 108 using dummy_hcd
[ 1237.477690][ T5814] snd-usb-audio 6-1:1.0: probe with driver snd-usb-audio failed with error -22
[ 1237.507948][ T5814] usb 6-1: USB disconnect, device number 84
[ 1237.569371][T17172] udevd[17172]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1237.641868][ T5808] usb 1-1: Using ep0 maxpacket: 16
[ 1237.647284][ T5808] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1237.647321][ T5808] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1237.647345][ T5808] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[ 1237.647392][ T5808] usb 1-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[ 1237.647416][ T5808] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1237.699201][ T5808] usb 1-1: config 0 descriptor??
[ 1238.118849][T18094] binder: 18093:18094 ioctl c0306201 0 returned -14
[ 1238.369505][ T5808] appleir 0003:05AC:8241.0028: hiddev0,hidraw0: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.0-1/input0
[ 1238.531258][ T5808] usb 1-1: USB disconnect, device number 108
[ 1238.539192][ T5814] usb 4-1: new high-speed USB device number 107 using dummy_hcd
[ 1238.607856][T18103] fido_id[18103]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[ 1238.711591][ T5814] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1238.711652][ T5814] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1238.711680][ T5814] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1238.711704][ T5814] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 1238.713191][ T5814] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1238.713210][ T5814] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1238.713223][ T5814] usb 4-1: Manufacturer: syz
[ 1238.722197][ T5814] usb 4-1: config 0 descriptor??
[ 1238.918451][  T267] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1238.980094][  T267] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1239.024238][  T267] bond0 (unregistering): Released all slaves
[ 1239.075224][ T1326] ieee802154 phy0 wpan0: encryption failed: -22
[ 1239.103984][  T267] bond1 (unregistering): (slave vcan1): Releasing backup interface
[ 1239.104017][  T267] vcan1: left promiscuous mode
[ 1239.138783][ T5814] usbhid 4-1:0.0: can't add hid device: -71
[ 1239.145087][ T5814] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[ 1239.176174][ T5814] usb 4-1: USB disconnect, device number 107
[ 1239.177065][  T267] bond1 (unregistering): Released all slaves
[ 1239.281382][T17973] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1239.281396][T17973] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1239.281412][T17973] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1239.337046][T18114] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3780'.
[ 1239.337092][T18114] openvswitch: netlink: Missing key (keys=200040, expected=100)
[ 1239.381600][T17973] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1239.381620][T17973] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1239.381652][T17973] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1239.641474][T18116] FAULT_INJECTION: forcing a failure.
[ 1239.641474][T18116] name failslab, interval 1, probability 0, space 0, times 0
[ 1239.641501][T18116] CPU: 0 UID: 0 PID: 18116 Comm: syz.0.3781 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1239.641521][T18116] Tainted: [L]=SOFTLOCKUP
[ 1239.641525][T18116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1239.641533][T18116] Call Trace:
[ 1239.641538][T18116]  <TASK>
[ 1239.641544][T18116]  dump_stack_lvl+0xe8/0x150
[ 1239.641568][T18116]  should_fail_ex+0x46b/0x600
[ 1239.641589][T18116]  should_failslab+0xa8/0x100
[ 1239.641604][T18116]  kmem_cache_alloc_noprof+0x87/0x680
[ 1239.641624][T18116]  ? skb_clone+0x212/0x3a0
[ 1239.641642][T18116]  skb_clone+0x212/0x3a0
[ 1239.641658][T18116]  __netlink_deliver_tap+0x404/0x850
[ 1239.641684][T18116]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1239.641704][T18116]  netlink_deliver_tap+0x19c/0x1b0
[ 1239.641722][T18116]  netlink_unicast+0x805/0x9f0
[ 1239.641744][T18116]  ? __pfx_netlink_unicast+0x10/0x10
[ 1239.641762][T18116]  ? netlink_sendmsg+0x650/0xb40
[ 1239.641778][T18116]  ? skb_put+0x11b/0x210
[ 1239.641793][T18116]  netlink_sendmsg+0x813/0xb40
[ 1239.641817][T18116]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1239.641845][T18116]  ? unwind_get_return_address+0x4d/0x90
[ 1239.641861][T18116]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1239.641882][T18116]  ____sys_sendmsg+0x94c/0x9c0
[ 1239.641900][T18116]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1239.641920][T18116]  ? import_iovec+0x73/0xa0
[ 1239.641934][T18116]  ___sys_sendmsg+0x2a5/0x360
[ 1239.641952][T18116]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1239.641987][T18116]  ? __fget_files+0x2a/0x420
[ 1239.642003][T18116]  ? __fget_files+0x3a6/0x420
[ 1239.642025][T18116]  __x64_sys_sendmsg+0x1c3/0x2a0
[ 1239.642041][T18116]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1239.642061][T18116]  ? __pfx_ksys_write+0x10/0x10
[ 1239.642087][T18116]  do_syscall_64+0x14d/0xf80
[ 1239.642101][T18116]  ? trace_irq_disable+0x3b/0x150
[ 1239.642115][T18116]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1239.642128][T18116]  ? clear_bhb_loop+0x40/0x90
[ 1239.642144][T18116]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1239.642156][T18116] RIP: 0033:0x7f6f787fc819
[ 1239.642169][T18116] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1239.642180][T18116] RSP: 002b:00007f6f76a56028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1239.642195][T18116] RAX: ffffffffffffffda RBX: 00007f6f78a75fa0 RCX: 00007f6f787fc819
[ 1239.642204][T18116] RDX: 0000000000008020 RSI: 00002000000000c0 RDI: 0000000000000003
[ 1239.642213][T18116] RBP: 00007f6f76a56090 R08: 0000000000000000 R09: 0000000000000000
[ 1239.642221][T18116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1239.642228][T18116] R13: 00007f6f78a76038 R14: 00007f6f78a75fa0 R15: 00007fff5bd93388
[ 1239.642247][T18116]  </TASK>
[ 1239.902913][T17973] hsr_slave_0: entered promiscuous mode
[ 1239.923883][T17973] hsr_slave_1: entered promiscuous mode
[ 1239.973143][T17973] debugfs: 'hsr0' already exists in 'hsr'
[ 1239.973172][T17973] Cannot create hsr debugfs directory
[ 1240.215644][T18122] FAULT_INJECTION: forcing a failure.
[ 1240.215644][T18122] name failslab, interval 1, probability 0, space 0, times 0
[ 1240.215685][T18122] CPU: 1 UID: 0 PID: 18122 Comm: syz.0.3783 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1240.215714][T18122] Tainted: [L]=SOFTLOCKUP
[ 1240.215722][T18122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1240.215735][T18122] Call Trace:
[ 1240.215744][T18122]  <TASK>
[ 1240.215754][T18122]  dump_stack_lvl+0xe8/0x150
[ 1240.215791][T18122]  should_fail_ex+0x46b/0x600
[ 1240.215829][T18122]  should_failslab+0xa8/0x100
[ 1240.215854][T18122]  __kmalloc_noprof+0xdf/0x7b0
[ 1240.215875][T18122]  ? mutex_rt_init_lockdep+0x66/0x80
[ 1240.215902][T18122]  ? security_task_alloc+0x4d/0x330
[ 1240.215933][T18122]  security_task_alloc+0x4d/0x330
[ 1240.215962][T18122]  copy_process+0x16e7/0x3cd0
[ 1240.216008][T18122]  ? copy_process+0x921/0x3cd0
[ 1240.216063][T18122]  ? __pfx_copy_process+0x10/0x10
[ 1240.216109][T18122]  vhost_task_create+0x1f9/0x380
[ 1240.216134][T18122]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[ 1240.216159][T18122]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[ 1240.216184][T18122]  ? __pfx_vhost_task_create+0x10/0x10
[ 1240.216218][T18122]  ? __pfx_vhost_task_fn+0x10/0x10
[ 1240.216246][T18122]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1240.216273][T18122]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1240.216297][T18122]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1240.216322][T18122]  ? mutex_lock_nested+0x152/0x1d0
[ 1240.216351][T18122]  ? kvm_mmu_post_init_vm+0x91/0x300
[ 1240.216383][T18122]  kvm_mmu_post_init_vm+0x14c/0x300
[ 1240.216415][T18122]  kvm_arch_vcpu_ioctl_run+0x106/0x20d0
[ 1240.216444][T18122]  ? __lock_acquire+0x6b5/0x2cf0
[ 1240.216484][T18122]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[ 1240.216518][T18122]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1240.216562][T18122]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1240.216587][T18122]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1240.216611][T18122]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1240.216637][T18122]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1240.216676][T18122]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1240.216709][T18122]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1240.216732][T18122]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1240.216756][T18122]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1240.216779][T18122]  ? rt_write_unlock+0x190/0x230
[ 1240.216816][T18122]  kvm_vcpu_ioctl+0xa65/0xfe0
[ 1240.216849][T18122]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 1240.216879][T18122]  ? __asan_memset+0x22/0x50
[ 1240.216909][T18122]  ? smack_file_ioctl+0x331/0x360
[ 1240.216947][T18122]  ? __pfx_smack_file_ioctl+0x10/0x10
[ 1240.216994][T18122]  ? __fget_files+0x2a/0x420
[ 1240.217032][T18122]  ? __fget_files+0x3a6/0x420
[ 1240.217059][T18122]  ? __fget_files+0x2a/0x420
[ 1240.217093][T18122]  ? bpf_lsm_file_ioctl+0x9/0x20
[ 1240.217117][T18122]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 1240.217143][T18122]  __se_sys_ioctl+0xff/0x170
[ 1240.217169][T18122]  do_syscall_64+0x14d/0xf80
[ 1240.217193][T18122]  ? trace_irq_disable+0x3b/0x150
[ 1240.217220][T18122]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1240.217243][T18122]  ? clear_bhb_loop+0x40/0x90
[ 1240.217270][T18122]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1240.217293][T18122] RIP: 0033:0x7f6f787fc819
[ 1240.217312][T18122] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1240.217332][T18122] RSP: 002b:00007f6f76a56028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1240.217357][T18122] RAX: ffffffffffffffda RBX: 00007f6f78a75fa0 RCX: 00007f6f787fc819
[ 1240.217374][T18122] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[ 1240.217388][T18122] RBP: 00007f6f76a56090 R08: 0000000000000000 R09: 0000000000000000
[ 1240.217403][T18122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1240.217416][T18122] R13: 00007f6f78a76038 R14: 00007f6f78a75fa0 R15: 00007fff5bd93388
[ 1240.217454][T18122]  </TASK>
[ 1242.252553][T18162] kAFS: unable to lookup cell ''
[ 1242.381005][T18158] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1242.482101][T18152] tipc: Resetting bearer <eth:syzkaller0>
[ 1242.488681][T18159] syzkaller0: entered promiscuous mode
[ 1242.488711][T18159] syzkaller0: entered allmulticast mode
[ 1242.509278][ T5882] usb 1-1: new high-speed USB device number 109 using dummy_hcd
[ 1242.659098][ T5882] usb 1-1: Using ep0 maxpacket: 8
[ 1242.661879][ T5882] usb 1-1: config index 0 descriptor too short (expected 4075, got 18)
[ 1242.661910][ T5882] usb 1-1: config 102 has too many interfaces: 242, using maximum allowed: 32
[ 1242.661933][ T5882] usb 1-1: config 102 has an invalid descriptor of length 20, skipping remainder of the config
[ 1242.661956][ T5882] usb 1-1: config 102 has 0 interfaces, different from the descriptor's value: 242
[ 1242.662776][T18151] tipc: Resetting bearer <eth:syzkaller0>
[ 1242.663408][ T5882] usb 1-1: config index 1 descriptor too short (expected 4075, got 18)
[ 1242.663436][ T5882] usb 1-1: config 102 has too many interfaces: 242, using maximum allowed: 32
[ 1242.663457][ T5882] usb 1-1: config 102 has an invalid descriptor of length 20, skipping remainder of the config
[ 1242.663478][ T5882] usb 1-1: config 102 has 0 interfaces, different from the descriptor's value: 242
[ 1242.665022][ T5882] usb 1-1: config index 2 descriptor too short (expected 4075, got 18)
[ 1242.665049][ T5882] usb 1-1: config 102 has too many interfaces: 242, using maximum allowed: 32
[ 1242.665071][ T5882] usb 1-1: config 102 has an invalid descriptor of length 20, skipping remainder of the config
[ 1242.665090][ T5882] usb 1-1: config 102 has 0 interfaces, different from the descriptor's value: 242
[ 1242.666517][ T5882] usb 1-1: config index 3 descriptor too short (expected 4075, got 18)
[ 1242.666544][ T5882] usb 1-1: config 102 has too many interfaces: 242, using maximum allowed: 32
[ 1242.666566][ T5882] usb 1-1: config 102 has an invalid descriptor of length 20, skipping remainder of the config
[ 1242.666587][ T5882] usb 1-1: config 102 has 0 interfaces, different from the descriptor's value: 242
[ 1242.666630][ T5882] usb 1-1: New USB device found, idVendor=046d, idProduct=08b3, bcdDevice=6d.2a
[ 1242.666655][ T5882] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1242.908105][ T5882] usb 1-1: string descriptor 0 read error: -71
[ 1242.914339][ T5882] usb 1-1: USB disconnect, device number 109
[ 1242.980864][T18151] tipc: Disabling bearer <eth:syzkaller0>
[ 1243.369226][  T267] hsr_slave_0: left promiscuous mode
[ 1243.409169][  T267] hsr_slave_1: left promiscuous mode
[ 1243.409924][  T267] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1243.409943][  T267] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1243.473011][  T267] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1243.473033][  T267] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1243.569153][  T267] veth1_macvtap: left promiscuous mode
[ 1243.569279][  T267] veth0_macvtap: left promiscuous mode
[ 1243.569558][  T267] veth1_vlan: left promiscuous mode
[ 1243.569786][  T267] veth0_vlan: left promiscuous mode
[ 1244.226743][T18184] binder: 18183:18184 ioctl c0306201 2000000003c0 returned -22
[ 1244.923350][T18186] ALSA: mixer_oss: invalid OSS volume ''
[ 1245.299225][ T5882] usb 1-1: new high-speed USB device number 110 using dummy_hcd
[ 1245.480265][ T5882] usb 1-1: New USB device found, idVendor=2c42, idProduct=1602, bcdDevice=da.64
[ 1245.480298][ T5882] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1245.480330][ T5882] usb 1-1: Product: syz
[ 1245.480346][ T5882] usb 1-1: Manufacturer: syz
[ 1245.480362][ T5882] usb 1-1: SerialNumber: syz
[ 1245.524442][ T5882] usb 1-1: config 0 descriptor??
[ 1245.533271][ T5882] hub 1-1:0.0: bad descriptor, ignoring hub
[ 1245.533311][ T5882] hub 1-1:0.0: probe with driver hub failed with error -5
[ 1245.534521][ T5882] f81232 1-1:0.0: f81534a converter detected
[ 1245.569154][ T5814] usb 6-1: new high-speed USB device number 85 using dummy_hcd
[ 1245.861561][ T5814] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1245.861587][ T5814] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1245.861661][ T5814] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1245.861677][ T5814] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1245.974695][T18195] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[ 1246.045164][ T5814] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[ 1246.174786][  T267] team0 (unregistering): Port device team_slave_1 removed
[ 1246.432314][T18195] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1246.432893][  T267] team0 (unregistering): Port device team_slave_0 removed
[ 1246.520739][T18195] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1248.247460][ T5814] usb 6-1: USB disconnect, device number 85
[ 1248.747468][ T5882] f81534a ttyUSB0: f81232_set_register failed status: -71
[ 1248.747498][ T5882] f81534a ttyUSB0: probe with driver f81534a failed with error -5
[ 1248.794071][ T5882] usb 1-1: USB disconnect, device number 110
[ 1248.889465][ T5882] f81232 1-1:0.0: device disconnected
[ 1248.934598][T18203] FAULT_INJECTION: forcing a failure.
[ 1248.934598][T18203] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1248.934623][T18203] CPU: 0 UID: 0 PID: 18203 Comm: syz.0.3801 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1248.934641][T18203] Tainted: [L]=SOFTLOCKUP
[ 1248.934646][T18203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1248.934654][T18203] Call Trace:
[ 1248.934660][T18203]  <TASK>
[ 1248.934665][T18203]  dump_stack_lvl+0xe8/0x150
[ 1248.934688][T18203]  should_fail_ex+0x46b/0x600
[ 1248.934709][T18203]  _copy_to_user+0x31/0xb0
[ 1248.934724][T18203]  simple_read_from_buffer+0xe1/0x170
[ 1248.934743][T18203]  proc_fail_nth_read+0x1be/0x230
[ 1248.934761][T18203]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1248.934779][T18203]  ? rw_verify_area+0x2ac/0x4e0
[ 1248.934797][T18203]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1248.934814][T18203]  vfs_read+0x212/0xa80
[ 1248.934839][T18203]  ? __pfx_vfs_read+0x10/0x10
[ 1248.934858][T18203]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1248.934873][T18203]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1248.934887][T18203]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1248.934900][T18203]  ? mutex_lock_nested+0x152/0x1d0
[ 1248.934917][T18203]  ? fdget_pos+0x252/0x320
[ 1248.934949][T18203]  ksys_read+0x156/0x270
[ 1248.934969][T18203]  ? __pfx_ksys_read+0x10/0x10
[ 1248.934989][T18203]  ? __pfx_v4l2_ioctl+0x10/0x10
[ 1248.935012][T18203]  do_syscall_64+0x14d/0xf80
[ 1248.935025][T18203]  ? trace_irq_disable+0x3b/0x150
[ 1248.935040][T18203]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1248.935053][T18203]  ? clear_bhb_loop+0x40/0x90
[ 1248.935068][T18203]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1248.935080][T18203] RIP: 0033:0x7f6f787bd04e
[ 1248.935093][T18203] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1248.935106][T18203] RSP: 002b:00007f6f76a55fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1248.935120][T18203] RAX: ffffffffffffffda RBX: 00007f6f76a566c0 RCX: 00007f6f787bd04e
[ 1248.935130][T18203] RDX: 000000000000000f RSI: 00007f6f76a560a0 RDI: 0000000000000004
[ 1248.935138][T18203] RBP: 00007f6f76a56090 R08: 0000000000000000 R09: 0000000000000000
[ 1248.935146][T18203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1248.935154][T18203] R13: 00007f6f78a76038 R14: 00007f6f78a75fa0 R15: 00007fff5bd93388
[ 1248.935173][T18203]  </TASK>
[ 1249.260183][ T5814] usb 6-1: new high-speed USB device number 86 using dummy_hcd
[ 1249.260473][T18211] kAFS: unable to lookup cell ''
[ 1249.389154][ T5882] usb 1-1: new full-speed USB device number 111 using dummy_hcd
[ 1249.411012][ T5814] usb 6-1: Using ep0 maxpacket: 16
[ 1249.418077][ T5814] usb 6-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1249.418115][ T5814] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1249.418154][ T5814] usb 6-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[ 1249.418180][ T5814] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1249.439094][ T5814] usb 6-1: config 0 descriptor??
[ 1249.696936][ T5882] usb 1-1: config 2 has an invalid interface number: 174 but max is 0
[ 1249.697045][ T5882] usb 1-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[ 1249.697069][ T5882] usb 1-1: config 2 has no interface number 0
[ 1249.697120][ T5882] usb 1-1: config 2 interface 174 altsetting 0 has an endpoint descriptor with address 0x9E, changing to 0x8E
[ 1249.697217][ T5882] usb 1-1: config 2 interface 174 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[ 1249.697243][ T5882] usb 1-1: config 2 interface 174 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1249.712791][ T5882] usb 1-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=22.7e
[ 1249.712876][ T5882] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1249.712897][ T5882] usb 1-1: Product: syz
[ 1249.712911][ T5882] usb 1-1: Manufacturer: syz
[ 1249.712925][ T5882] usb 1-1: SerialNumber: syz
[ 1250.766675][ T5814] nzxt-smart2 0003:1E71:2009.0029: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.5-1/input0
[ 1251.029183][T18209] syzkaller0: entered promiscuous mode
[ 1251.029211][T18209] syzkaller0: entered allmulticast mode
[ 1251.048616][T18220] ALSA: mixer_oss: invalid OSS volume ''
[ 1251.101713][ T5904] usb 6-1: USB disconnect, device number 86
[ 1251.411954][T18226] fido_id[18226]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[ 1251.609205][ T5904] usb 6-1: new high-speed USB device number 87 using dummy_hcd
[ 1251.759070][ T5904] usb 6-1: Using ep0 maxpacket: 16
[ 1251.781767][ T5904] usb 6-1: New USB device found, idVendor=06b9, idProduct=4061, bcdDevice= 1.88
[ 1251.781804][ T5904] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1251.781826][ T5904] usb 6-1: Product: syz
[ 1251.781843][ T5904] usb 6-1: Manufacturer: syz
[ 1251.781858][ T5904] usb 6-1: SerialNumber: syz
[ 1251.855215][ T5904] usb 6-1: config 0 descriptor??
[ 1251.877410][ T5882] usb 1-1: probing VID:PID(0424:012C)   
[ 1251.881197][ T5882] usb 1-1: vub300 testing BULK IN EndPoint(0) 8E
[ 1251.881227][ T5882] usb 1-1: Could not find two sets of bulk-in/out endpoint pairs
[ 1251.881332][ T5882] vub300 1-1:2.174: probe with driver vub300 failed with error -22
[ 1251.997045][ T5882] usb 1-1: USB disconnect, device number 111
[ 1252.126451][ T5904] speedtch 6-1:0.0: speedtch_bind: data interface not found!
[ 1252.126476][ T5904] speedtch 6-1:0.0: usbatm_usb_probe: bind failed: -19!
[ 1252.139178][T18245] syzkaller1: entered promiscuous mode
[ 1252.139205][T18245] syzkaller1: entered allmulticast mode
[ 1252.331632][ T5904] usb 6-1: USB disconnect, device number 87
[ 1252.723139][T18252] FAULT_INJECTION: forcing a failure.
[ 1252.723139][T18252] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1252.723181][T18252] CPU: 0 UID: 0 PID: 18252 Comm: syz.7.3812 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1252.723212][T18252] Tainted: [L]=SOFTLOCKUP
[ 1252.723220][T18252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1252.723234][T18252] Call Trace:
[ 1252.723243][T18252]  <TASK>
[ 1252.723253][T18252]  dump_stack_lvl+0xe8/0x150
[ 1252.723293][T18252]  should_fail_ex+0x46b/0x600
[ 1252.723332][T18252]  futex_lock_pi_atomic+0xd2/0x9c0
[ 1252.723370][T18252]  futex_lock_pi+0x301/0xb10
[ 1252.723397][T18252]  ? __lock_acquire+0x6b5/0x2cf0
[ 1252.723433][T18252]  ? __pfx_futex_lock_pi+0x10/0x10
[ 1252.723483][T18252]  ? __lock_acquire+0x6b5/0x2cf0
[ 1252.723512][T18252]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1252.723571][T18252]  do_futex+0x292/0x420
[ 1252.723593][T18252]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1252.723624][T18252]  ? __pfx_do_futex+0x10/0x10
[ 1252.723644][T18252]  ? rt_mutex_slowunlock+0x1cb/0x300
[ 1252.723677][T18252]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1252.723712][T18252]  __se_sys_futex+0x3a8/0x450
[ 1252.723739][T18252]  ? ksys_write+0x248/0x270
[ 1252.723774][T18252]  ? __pfx___se_sys_futex+0x10/0x10
[ 1252.723797][T18252]  ? __pfx_ksys_write+0x10/0x10
[ 1252.723837][T18252]  ? __x64_sys_futex+0x21/0xf0
[ 1252.723863][T18252]  do_syscall_64+0x14d/0xf80
[ 1252.723885][T18252]  ? trace_irq_disable+0x3b/0x150
[ 1252.723910][T18252]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1252.723942][T18252]  ? clear_bhb_loop+0x40/0x90
[ 1252.723970][T18252]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1252.723991][T18252] RIP: 0033:0x7f9c0c42c819
[ 1252.724012][T18252] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1252.724032][T18252] RSP: 002b:00007f9c0a686028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1252.724056][T18252] RAX: ffffffffffffffda RBX: 00007f9c0c6a5fa0 RCX: 00007f9c0c42c819
[ 1252.724073][T18252] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 000020000000cffc
[ 1252.724093][T18252] RBP: 00007f9c0a686090 R08: 0000000000000000 R09: 0000000000000000
[ 1252.724108][T18252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1252.724122][T18252] R13: 00007f9c0c6a6038 R14: 00007f9c0c6a5fa0 R15: 00007ffe2d810e08
[ 1252.724160][T18252]  </TASK>
[ 1255.697452][T18271] ALSA: mixer_oss: invalid OSS volume ''
[ 1255.699946][  T267] IPVS: stop unused estimator thread 0...
[ 1257.086143][T18298] FAULT_INJECTION: forcing a failure.
[ 1257.086143][T18298] name failslab, interval 1, probability 0, space 0, times 0
[ 1257.086185][T18298] CPU: 0 UID: 0 PID: 18298 Comm: syz.3.3825 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1257.086216][T18298] Tainted: [L]=SOFTLOCKUP
[ 1257.086224][T18298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1257.086238][T18298] Call Trace:
[ 1257.086246][T18298]  <TASK>
[ 1257.086256][T18298]  dump_stack_lvl+0xe8/0x150
[ 1257.086294][T18298]  should_fail_ex+0x46b/0x600
[ 1257.086329][T18298]  should_failslab+0xa8/0x100
[ 1257.086355][T18298]  __kmalloc_cache_noprof+0x84/0x690
[ 1257.086379][T18298]  ? rtnl_newlink+0x136/0x1be0
[ 1257.086417][T18298]  rtnl_newlink+0x136/0x1be0
[ 1257.086464][T18298]  ? __pfx_rtnl_newlink+0x10/0x10
[ 1257.086502][T18298]  ? __lock_acquire+0x6b5/0x2cf0
[ 1257.086531][T18298]  ? __lock_acquire+0x6b5/0x2cf0
[ 1257.086570][T18298]  ? __lock_acquire+0x6b5/0x2cf0
[ 1257.086594][T18298]  ? __lock_acquire+0x6b5/0x2cf0
[ 1257.086628][T18298]  ? unwind_next_frame+0xa5/0x23c0
[ 1257.086672][T18298]  ? __lock_acquire+0x6b5/0x2cf0
[ 1257.086700][T18298]  ? is_bpf_text_address+0x292/0x2b0
[ 1257.086732][T18298]  ? is_bpf_text_address+0x26/0x2b0
[ 1257.086767][T18298]  ? kernel_text_address+0xa5/0xe0
[ 1257.086794][T18298]  ? rcu_is_watching+0x15/0xb0
[ 1257.086842][T18298]  ? __pfx_rtnl_newlink+0x10/0x10
[ 1257.086874][T18298]  rtnetlink_rcv_msg+0x7d5/0xbe0
[ 1257.086912][T18298]  ? rtnetlink_rcv_msg+0x1b9/0xbe0
[ 1257.086945][T18298]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1257.086982][T18298]  ? __lock_acquire+0x6b5/0x2cf0
[ 1257.087016][T18298]  netlink_rcv_skb+0x232/0x4b0
[ 1257.087051][T18298]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1257.087087][T18298]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1257.087132][T18298]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1257.087174][T18298]  netlink_unicast+0x831/0x9f0
[ 1257.087214][T18298]  ? __pfx_netlink_unicast+0x10/0x10
[ 1257.087246][T18298]  ? netlink_sendmsg+0x650/0xb40
[ 1257.087278][T18298]  ? skb_put+0x11b/0x210
[ 1257.087305][T18298]  netlink_sendmsg+0x813/0xb40
[ 1257.087349][T18298]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1257.087384][T18298]  ? unwind_get_return_address+0x4d/0x90
[ 1257.087412][T18298]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1257.087450][T18298]  ____sys_sendmsg+0x94c/0x9c0
[ 1257.087483][T18298]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1257.087519][T18298]  ? import_iovec+0x73/0xa0
[ 1257.087553][T18298]  ___sys_sendmsg+0x2a5/0x360
[ 1257.087586][T18298]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1257.087651][T18298]  ? __fget_files+0x2a/0x420
[ 1257.087680][T18298]  ? __fget_files+0x3a6/0x420
[ 1257.087720][T18298]  __x64_sys_sendmsg+0x1c3/0x2a0
[ 1257.087749][T18298]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1257.087786][T18298]  ? __pfx_ksys_write+0x10/0x10
[ 1257.087831][T18298]  do_syscall_64+0x14d/0xf80
[ 1257.087855][T18298]  ? trace_irq_disable+0x3b/0x150
[ 1257.087882][T18298]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1257.087905][T18298]  ? clear_bhb_loop+0x40/0x90
[ 1257.087934][T18298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1257.087956][T18298] RIP: 0033:0x7f44805dc819
[ 1257.087976][T18298] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1257.087995][T18298] RSP: 002b:00007f447e82e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1257.088020][T18298] RAX: ffffffffffffffda RBX: 00007f4480855fa0 RCX: 00007f44805dc819
[ 1257.088036][T18298] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000004
[ 1257.088051][T18298] RBP: 00007f447e82e090 R08: 0000000000000000 R09: 0000000000000000
[ 1257.088065][T18298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1257.088079][T18298] R13: 00007f4480856038 R14: 00007f4480855fa0 R15: 00007ffd1ad35298
[ 1257.088114][T18298]  </TASK>
[ 1257.434717][T17973] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1257.553695][T17973] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1258.781867][T17973] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1258.819740][T17973] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1259.059144][ T5814] usb 4-1: new high-speed USB device number 108 using dummy_hcd
[ 1259.221347][ T5814] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023
[ 1259.221382][ T5814] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[ 1259.221407][ T5814] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 121
[ 1259.228119][ T5814] usb 4-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[ 1259.228153][ T5814] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1259.228175][ T5814] usb 4-1: Product: syz
[ 1259.228191][ T5814] usb 4-1: Manufacturer: syz
[ 1259.228207][ T5814] usb 4-1: SerialNumber: syz
[ 1259.254463][ T5814] usb 4-1: config 0 descriptor??
[ 1259.255300][T18305] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[ 1259.255435][T18305] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[ 1259.279123][ T5814] usb 4-1: ucan: probing device on interface #0
[ 1259.846085][ T5814] usb 4-1: ucan: could not read protocol version, ret=-32
[ 1259.846112][ T5814] usb 4-1: ucan: probe failed; try to update the device firmware
[ 1260.526467][T18323] ALSA: mixer_oss: invalid OSS volume ''
[ 1260.735100][ T5882] usb 4-1: USB disconnect, device number 108
[ 1260.857080][T17973] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1260.878353][T17973] 8021q: adding VLAN 0 to HW filter on device team0
[ 1261.512439][   T67] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1261.536138][   T67] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1261.769556][ T8559] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1261.769705][ T8559] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1262.012166][T18346] FAULT_INJECTION: forcing a failure.
[ 1262.012166][T18346] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1262.012206][T18346] CPU: 1 UID: 0 PID: 18346 Comm: syz.3.3836 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1262.012237][T18346] Tainted: [L]=SOFTLOCKUP
[ 1262.012246][T18346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1262.012259][T18346] Call Trace:
[ 1262.012268][T18346]  <TASK>
[ 1262.012279][T18346]  dump_stack_lvl+0xe8/0x150
[ 1262.012317][T18346]  should_fail_ex+0x46b/0x600
[ 1262.012356][T18346]  _copy_to_user+0x31/0xb0
[ 1262.012380][T18346]  simple_read_from_buffer+0xe1/0x170
[ 1262.012414][T18346]  proc_fail_nth_read+0x1be/0x230
[ 1262.012441][T18346]  ? __lock_acquire+0x6b5/0x2cf0
[ 1262.012466][T18346]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1262.012497][T18346]  ? rw_verify_area+0x2ac/0x4e0
[ 1262.012529][T18346]  ? __lock_acquire+0x6b5/0x2cf0
[ 1262.012548][T18346]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1262.012591][T18346]  vfs_read+0x212/0xa80
[ 1262.012628][T18346]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1262.012662][T18346]  ? __pfx_vfs_read+0x10/0x10
[ 1262.012701][T18346]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1262.012728][T18346]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1262.012753][T18346]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1262.012788][T18346]  ksys_read+0x156/0x270
[ 1262.012823][T18346]  ? __pfx_ksys_read+0x10/0x10
[ 1262.012856][T18346]  ? __pfx_odev_ioctl+0x10/0x10
[ 1262.012897][T18346]  do_syscall_64+0x14d/0xf80
[ 1262.012921][T18346]  ? trace_irq_disable+0x3b/0x150
[ 1262.012948][T18346]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1262.012970][T18346]  ? clear_bhb_loop+0x40/0x90
[ 1262.012998][T18346]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1262.013020][T18346] RIP: 0033:0x7f448059d04e
[ 1262.013041][T18346] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1262.013061][T18346] RSP: 002b:00007f447e82dfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1262.013092][T18346] RAX: ffffffffffffffda RBX: 00007f447e82e6c0 RCX: 00007f448059d04e
[ 1262.013109][T18346] RDX: 000000000000000f RSI: 00007f447e82e0a0 RDI: 0000000000000004
[ 1262.013124][T18346] RBP: 00007f447e82e090 R08: 0000000000000000 R09: 0000000000000000
[ 1262.013138][T18346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1262.013152][T18346] R13: 00007f4480856038 R14: 00007f4480855fa0 R15: 00007ffd1ad35298
[ 1262.013188][T18346]  </TASK>
[ 1263.293731][T17973] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1264.230771][T18372] binder: BINDER_SET_CONTEXT_MGR already set
[ 1264.230784][T18372] binder: 18365:18372 ioctl 4018620d 200000004a80 returned -16
[ 1264.267749][T18368] ALSA: mixer_oss: invalid OSS volume ''
[ 1264.341695][T18375] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3843'.
[ 1264.389582][T18375] bridge0: port 3(vlan2) entered blocking state
[ 1264.398665][T18375] bridge0: port 3(vlan2) entered disabled state
[ 1264.398868][T18375] vlan2: entered allmulticast mode
[ 1264.398881][T18375] ip6gretap0: entered allmulticast mode
[ 1264.436169][T18375] vlan2: entered promiscuous mode
[ 1265.989196][T17080] usb 6-1: new high-speed USB device number 88 using dummy_hcd
[ 1266.034239][T17973] veth0_vlan: entered promiscuous mode
[ 1266.066587][T17973] veth1_vlan: entered promiscuous mode
[ 1266.127908][T17973] veth0_macvtap: entered promiscuous mode
[ 1266.142578][ T5904] usb 1-1: new high-speed USB device number 112 using dummy_hcd
[ 1266.157648][T17973] veth1_macvtap: entered promiscuous mode
[ 1266.167441][T17080] usb 6-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1266.167474][T17080] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1266.167496][T17080] usb 6-1: Product: syz
[ 1266.167512][T17080] usb 6-1: Manufacturer: syz
[ 1266.167528][T17080] usb 6-1: SerialNumber: syz
[ 1266.194939][T17973] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1266.223267][T17973] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1266.270421][ T5882] usb 4-1: new high-speed USB device number 109 using dummy_hcd
[ 1266.294402][ T1256] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1266.294903][ T1256] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1266.295395][ T1256] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1266.300309][ T1256] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1266.300527][ T5904] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1266.300558][ T5904] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1266.300580][ T5904] usb 1-1: Product: syz
[ 1266.300596][ T5904] usb 1-1: Manufacturer: syz
[ 1266.300613][ T5904] usb 1-1: SerialNumber: syz
[ 1266.400630][ T5904] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1266.450236][ T5882] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1266.450272][ T5882] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1266.450295][ T5882] usb 4-1: Product: syz
[ 1266.450310][ T5882] usb 4-1: Manufacturer: syz
[ 1266.450325][ T5882] usb 4-1: SerialNumber: syz
[ 1266.494618][ T5944] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1266.643223][T17080] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPIPE
[ 1266.643360][T17080] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Failed to sync IRQ enable register: -EPIPE
[ 1267.819398][T17080] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPIPE
[ 1267.819475][T17080] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1267.829022][ T5944] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[ 1267.829180][ T5944] ath9k_htc: Failed to initialize the device
[ 1267.845397][T17080] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1267.849844][ T5882] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1267.951875][T16988] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1269.298574][T16988] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[ 1269.298798][T16988] ath9k_htc: Failed to initialize the device
[ 1269.831418][T17080] lan78xx 6-1:1.0: probe with driver lan78xx failed with error -32
[ 1270.337379][ T1300] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1270.337406][ T1300] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1271.359033][ T5808] usb 4-1: USB disconnect, device number 109
[ 1271.403819][ T5808] usb 4-1: ath9k_htc: USB layer deinitialized
[ 1272.328644][ T5904] usb 1-1: USB disconnect, device number 112
[ 1272.374935][T17080] ==================================================================
[ 1272.374953][T17080] BUG: KASAN: vmalloc-out-of-bounds in __list_add_valid_or_report+0x4e/0x130
[ 1272.374992][T17080] Read of size 8 at addr ffffc90006911008 by task kworker/1:1/17080
[ 1272.375011][T17080] 
[ 1272.375028][T17080] CPU: 1 UID: 0 PID: 17080 Comm: kworker/1:1 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1272.375059][T17080] Tainted: [L]=SOFTLOCKUP
[ 1272.375068][T17080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1272.375084][T17080] Workqueue: usb_hub_wq hub_event
[ 1272.375114][T17080] Call Trace:
[ 1272.375124][T17080]  <TASK>
[ 1272.375134][T17080]  dump_stack_lvl+0xe8/0x150
[ 1272.375168][T17080]  print_report+0xba/0x230
[ 1272.375197][T17080]  ? __list_add_valid_or_report+0x4e/0x130
[ 1272.375225][T17080]  kasan_report+0x117/0x150
[ 1272.375248][T17080]  ? __list_add_valid_or_report+0x4e/0x130
[ 1272.375279][T17080]  __list_add_valid_or_report+0x4e/0x130
[ 1272.375309][T17080]  kcov_remote_stop+0x457/0x680
[ 1272.375339][T17080]  hub_event+0x49d8/0x4f60
[ 1272.375389][T17080]  ? __pfx_hub_event+0x10/0x10
[ 1272.375433][T17080]  ? process_scheduled_works+0xa8d/0x18c0
[ 1272.375465][T17080]  ? process_scheduled_works+0xa8d/0x18c0
[ 1272.375496][T17080]  process_scheduled_works+0xb6e/0x18c0
[ 1272.375541][T17080]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1272.375574][T17080]  ? assign_work+0x3d5/0x5e0
[ 1272.375605][T17080]  worker_thread+0xa53/0xfc0
[ 1272.375649][T17080]  kthread+0x388/0x470
[ 1272.375670][T17080]  ? __pfx_worker_thread+0x10/0x10
[ 1272.375700][T17080]  ? __pfx_kthread+0x10/0x10
[ 1272.375723][T17080]  ret_from_fork+0x51e/0xb90
[ 1272.375756][T17080]  ? __pfx_ret_from_fork+0x10/0x10
[ 1272.375786][T17080]  ? __switch_to+0xc7d/0x1450
[ 1272.375814][T17080]  ? __pfx_kthread+0x10/0x10
[ 1272.375838][T17080]  ret_from_fork_asm+0x1a/0x30
[ 1272.375866][T17080]  </TASK>
[ 1272.375874][T17080] 
[ 1272.375880][T17080] The buggy address belongs to a vmalloc virtual mapping
[ 1272.375899][T17080] Memory state around the buggy address:
[ 1272.375911][T17080]  ffffc90006910f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1272.375926][T17080]  ffffc90006910f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1272.375941][T17080] >ffffc90006911000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1272.375952][T17080]                       ^
[ 1272.375964][T17080]  ffffc90006911080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1272.375979][T17080]  ffffc90006911100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1272.375990][T17080] ==================================================================
[ 1272.376004][T17080] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1272.376022][T17080] CPU: 1 UID: 0 PID: 17080 Comm: kworker/1:1 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1272.376051][T17080] Tainted: [L]=SOFTLOCKUP
[ 1272.376060][T17080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1272.376074][T17080] Workqueue: usb_hub_wq hub_event
[ 1272.376099][T17080] Call Trace:
[ 1272.376107][T17080]  <TASK>
[ 1272.376116][T17080]  vpanic+0x56c/0xa60
[ 1272.376151][T17080]  ? __pfx_vpanic+0x10/0x10
[ 1272.376187][T17080]  panic+0xc5/0xd0
[ 1272.376218][T17080]  ? __pfx_panic+0x10/0x10
[ 1272.376251][T17080]  ? __list_add_valid_or_report+0x4e/0x130
[ 1272.376277][T17080]  ? rcu_is_watching+0x15/0xb0
[ 1272.376303][T17080]  ? __list_add_valid_or_report+0x4e/0x130
[ 1272.376328][T17080]  check_panic_on_warn+0x89/0xb0
[ 1272.376351][T17080]  ? __list_add_valid_or_report+0x4e/0x130
[ 1272.376376][T17080]  end_report+0x73/0x180
[ 1272.376397][T17080]  ? __list_add_valid_or_report+0x4e/0x130
[ 1272.376431][T17080]  kasan_report+0x128/0x150
[ 1272.376453][T17080]  ? __list_add_valid_or_report+0x4e/0x130
[ 1272.376484][T17080]  __list_add_valid_or_report+0x4e/0x130
[ 1272.376512][T17080]  kcov_remote_stop+0x457/0x680
[ 1272.376540][T17080]  hub_event+0x49d8/0x4f60
[ 1272.376587][T17080]  ? __pfx_hub_event+0x10/0x10
[ 1272.376616][T17080]  ? process_scheduled_works+0xa8d/0x18c0
[ 1272.376646][T17080]  ? process_scheduled_works+0xa8d/0x18c0
[ 1272.376676][T17080]  process_scheduled_works+0xb6e/0x18c0
[ 1272.376721][T17080]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1272.376754][T17080]  ? assign_work+0x3d5/0x5e0
[ 1272.376786][T17080]  worker_thread+0xa53/0xfc0
[ 1272.376829][T17080]  kthread+0x388/0x470
[ 1272.376851][T17080]  ? __pfx_worker_thread+0x10/0x10
[ 1272.376881][T17080]  ? __pfx_kthread+0x10/0x10
[ 1272.376904][T17080]  ret_from_fork+0x51e/0xb90
[ 1272.376936][T17080]  ? __pfx_ret_from_fork+0x10/0x10
[ 1272.376965][T17080]  ? __switch_to+0xc7d/0x1450
[ 1272.376992][T17080]  ? __pfx_kthread+0x10/0x10
[ 1272.377015][T17080]  ret_from_fork_asm+0x1a/0x30
[ 1272.377044][T17080]  </TASK>
[ 1272.377208][T17080] Kernel Offset: disabled