last executing test programs:

6.84731332s ago: executing program 0 (id=832):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000016c0)=ANY=[@ANYBLOB="900000001000370400000000fcdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="8b04040000000000700012800b00010067656e657665000060000280050004000100000014000700000000000000000000000800000000010800010002000000050009000100000005000c0001000000050008"], 0x90}}, 0x0)
r1 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x101201, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r4, 0x4020aeb2, &(0x7f0000000080)={0x0, 0x12c, @ioapic={0x100010000, 0x1, 0x0, 0x0, 0x0, [{0x6, 0x7, 0x8, '\x00', 0xab}, {0x2, 0x0, 0x2, '\x00', 0x5b}, {0x60, 0x4, 0x8, '\x00', 0x3}, {0x5, 0xe, 0x7, '\x00', 0xf1}, {0xc, 0xc, 0x9, '\x00', 0x43}, {0x4, 0x79, 0xc5, '\x00', 0x9}, {0x94, 0x5, 0x9, '\x00', 0xfe}, {0xf, 0x0, 0x6, '\x00', 0xfc}, {0x1, 0x4, 0x8, '\x00', 0x33}, {0x81, 0xf, 0x57, '\x00', 0x9}, {0x5, 0x4, 0x1, '\x00', 0x6}, {0x81, 0x6, 0x6, '\x00', 0x48}, {0x3, 0x1, 0x8, '\x00', 0xff}, {0x6, 0x3, 0x2, '\x00', 0x2}, {0x6, 0x5, 0x3, '\x00', 0x50}, {0xd, 0x2, 0xd, '\x00', 0x2}, {0x8, 0x80, 0x81, '\x00', 0xb}, {0x3, 0x89, 0x1, '\x00', 0xf}, {0x78, 0x7, 0x2, '\x00', 0x5}, {0x3, 0x3, 0xc1, '\x00', 0x7}, {0x5, 0x26, 0x5, '\x00', 0x9}, {0x7, 0x9, 0xe4, '\x00', 0x6}, {0xc1, 0xd, 0x81, '\x00', 0x10}, {0xfd, 0x3, 0x80, '\x00', 0x6}]}})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x9, 0x1}}}}]}, 0x44}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000840)=@newtfilter={0x50, 0x2c, 0xd27, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0x0, 0x9}, {}, {0x1c, 0xfff1}}, [@filter_kind_options=@f_flow={{0x9}, {0x27, 0x2, [@TCA_FLOW_EMATCHES={0x1c, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x10, 0x2, 0x0, 0x1, [@TCF_EM_META={0xc, 0x1, 0x0, 0x0, {{0x1d78, 0x4, 0x7}}}]}, @TCA_EMATCH_TREE_HDR={0x8}]}]}}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x8c000)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r5, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r6 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000240), 0x88002, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r6, 0xc004500a, &(0x7f0000000040)=0x12)
r7 = syz_io_uring_setup(0x22f, &(0x7f0000000080)={0x0, 0x5325, 0x10000, 0x1, 0x100002cf}, &(0x7f0000000000)=<r8=>0x0, &(0x7f0000000040)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xffffffffffffff31})
io_uring_enter(r7, 0x7a98, 0x0, 0x0, 0x0, 0x0)

6.395121654s ago: executing program 0 (id=835):
openat$vga_arbiter(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x6)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbffffffffffffffe, 0x0, 0xffffffff}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, 0x0, 0x0)
mmap(&(0x7f0000fd5000/0x4000)=nil, 0x4000, 0x1000000, 0x80010, 0xffffffffffffffff, 0x4f90b000)
r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
modify_ldt$write(0x1, &(0x7f0000000040), 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
sendmsg$nl_route(r0, 0x0, 0x40000)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000140)=0x1ffffe, 0x4, 0x2)
r4 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r5, 0x6, 0xd, 0x0, 0x0)
connect$inet6(r5, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_script(r5, &(0x7f0000000200), 0xfffffd9d)
setsockopt$inet6_tcp_int(r5, 0x6, 0x1b, &(0x7f0000000140)=0x9945, 0x4)
pwritev2(r4, &(0x7f0000000440)=[{&(0x7f00000001c0)="b2", 0x1}, {0x0}], 0x2, 0x5, 0x80, 0x1)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000080))
socket$nl_netfilter(0x10, 0x3, 0xc)

6.18657047s ago: executing program 1 (id=837):
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
socket(0x1d, 0x2, 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1b, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_io_uring_setup(0x24fa, &(0x7f0000000b80)={0x0, 0x0, 0x10100, 0x0, 0x33a}, &(0x7f0000000100), &(0x7f0000000140))
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000180)=ANY=[], 0x118)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$video4linux(&(0x7f0000002580), 0xc8d, 0x2001)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_INTERVAL(r3, 0xc040564b, &(0x7f00000026c0)={0x81, 0x0, 0x300c, 0x9, 0xc, {0x2400120, 0x9}, 0x1})
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
ioprio_set$pid(0x3, 0x0, 0x0)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
sendfile(r4, r4, 0x0, 0x40000f63c)
sendmmsg(0xffffffffffffffff, &(0x7f0000007fc0), 0x800001d, 0xf00)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'lc\x00', 0xa43531a02e0465ec, 0x56dc, 0x6f}, 0x2c)
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00')
getdents(r6, &(0x7f0000000ec0)=""/4096, 0x1000)
ioctl$KVM_CAP_VM_DISABLE_NX_HUGE_PAGES(r6, 0x4068aea3, &(0x7f0000000280))
r7 = socket$kcm(0x29, 0x5, 0x0)
write$cgroup_pressure(r7, 0x0, 0x0)

5.780765178s ago: executing program 2 (id=839):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYRES32=r0, @ANYRESDEC=0x0, @ANYRES64=r0, @ANYRESDEC=0x0])
write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000100)={0x30, 0x5, 0x0, {0x0, 0x1}}, 0x30)
read$FUSE(r0, &(0x7f0000004180)={0x2020, 0x0, <r1=>0x0}, 0x2020)
umount2(&(0x7f00000001c0)='./file0\x00', 0x0)
write$FUSE_OPEN(r0, &(0x7f0000000000)={0x20, 0x0, r1, {0x0, 0x11}}, 0x20)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000340), 0x100, 0x0)
dup3(r2, r0, 0x80000)
r3 = socket$inet(0x2, 0x1, 0x100)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, 0x0, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r4 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x80000)
r5 = dup(r4)
accept4(r5, 0x0, 0x0, 0x80800)
getsockopt$inet_mreqn(r3, 0x0, 0x20, &(0x7f0000000140)={@broadcast, @broadcast}, &(0x7f0000000180)=0xc)
getsockopt$inet_mreqn(r3, 0x0, 0x24, &(0x7f0000000200)={@rand_addr, @loopback, <r6=>0x0}, &(0x7f0000000240)=0xc)
sendmsg$nl_route(r5, &(0x7f0000000300)={&(0x7f00000000c0), 0xc, &(0x7f00000002c0)={&(0x7f0000000280)=@setlink={0x38, 0x13, 0x1, 0x70bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, r6, 0x4004, 0x4}, [@IFLA_LINKMODE={0x5, 0x11, 0x2}, @IFLA_NUM_RX_QUEUES={0x8, 0x20, 0x80}, @IFLA_OPERSTATE={0x5, 0x10, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x40040c4}, 0x24040004)
r7 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=@newqdisc={0x58, 0x24, 0x3fe3aa0262d8c583, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0xfffffff6, 0xfffffffc, 0x40, 0x3, 0x8f35, 0x8, 0x5, 0x7ff, 0x7}}}}]}, 0x58}}, 0x0)
utime(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x4, 0x7fffffffffffffff})

5.706547716s ago: executing program 2 (id=840):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000980)={<r1=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r0, 0xc0182101, &(0x7f0000000180)={r1})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000002780)={<r2=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, &(0x7f0000000080)={r2, 0x3, r0, 0x5})
r3 = dup(0xffffffffffffffff)
r4 = socket(0x10, 0x803, 0x0)
sendto(r4, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r3, 0x2000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
r5 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_disconnect(r5)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
ioctl$KIOCSOUND(0xffffffffffffffff, 0x4b2f, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
io_uring_setup(0x3eae, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x71})
syz_open_dev$vivid(&(0x7f0000000100), 0x1, 0x2)
r6 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r6, 0x10e, 0xc, &(0x7f0000000280)={0x4000, 0x2}, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000010c0)=ANY=[@ANYBLOB="200000001600010a00000000000000000a0000000c0000800800", @ANYRES16=r6], 0x20}, 0x1, 0x0, 0x0, 0x20040041}, 0x0)

5.554224487s ago: executing program 0 (id=841):
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f0002000000"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000001a80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0xc0145b0e, &(0x7f0000000040))

5.259405048s ago: executing program 1 (id=842):
socket$unix(0x1, 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
socket(0x15, 0x5, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e24, @multicast1}, 0x10)
sendmmsg(r0, &(0x7f0000000d40)=[{{&(0x7f00000000c0)=@in={0x2, 0x4e24, @loopback}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000140)='\x00', 0x1}], 0x1, 0x0, 0x0, 0x41020000}}], 0x1, 0x2c000011)

4.584084334s ago: executing program 4 (id=843):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000100)) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
mlock2(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0)
sendmmsg$unix(r0, &(0x7f00000bd000), 0x61, 0x4042090)
mbind(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2, &(0x7f0000000000)=0x99f, 0xa, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0) (async)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
mmap(&(0x7f0000380000/0x4000)=nil, 0x4000, 0x300000d, 0x1010, r1, 0x0) (async)
mmap(&(0x7f0000380000/0x4000)=nil, 0x4000, 0x300000d, 0x1010, r1, 0x0)
r2 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r2, 0x7a7, &(0x7f00000000c0)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, &(0x7f0000000040)={@host})
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r2, 0x7ab, &(0x7f0000000000)={0x0, 0xfe3d})
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x1, 0x2000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2) (async)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
syz_usb_connect(0x2, 0x0, 0x0, 0x0)
getpid()
openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) (async)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
read(r3, &(0x7f0000000040)=""/148, 0xffffff96)

4.385346483s ago: executing program 1 (id=844):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000001180)=ANY=[@ANYBLOB="12010000090003206d0414c34000ffff000109022400010400a000090400000103010100093700086ce82201000905815f"], 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="00020c0000000c0002", @ANYRESDEC=r0], 0x0, 0x0, 0x0}, 0x0)
syz_usb_connect$cdc_ecm(0x3, 0xbd, &(0x7f0000000200)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xab, 0x1, 0x1, 0xda, 0x10, 0x1, [{{0x9, 0x4, 0x0, 0x8, 0x2, 0x2, 0x6, 0x0, 0xf7, {{0xb, 0x24, 0x6, 0x0, 0x0, "6d70ea19c373"}, {0x5, 0x24, 0x0, 0x1}, {0xd, 0x24, 0xf, 0x1, 0x7fff, 0x6, 0x8, 0x8}, [@mbim_extended={0x8, 0x24, 0x1c, 0x422e, 0xc, 0xffff}, @ncm={0x6, 0x24, 0x1a, 0x8, 0x4}, @acm={0x4}, @dmm={0x7, 0x24, 0x14, 0x200, 0x8}, @mdlm_detail={0x51, 0x24, 0x13, 0x88, "1d36723b6d953471b1181d78ea0590bfc2856e1f48ebb3395444d6251be47f65ef852968c48b50e090fe9073d23ccfcae7440c0dc0ccad9b88059833fb1c612ef469e8d690d693c32ec92af3d6"}]}, {[], {{0x9, 0x5, 0x82, 0x2, 0x448, 0x0, 0x3, 0x5}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0x9, 0x7f, 0x1}}}}}]}}]}}, &(0x7f0000000440)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x310, 0x3, 0x7f, 0x7, 0x10, 0x3}, 0x1e, &(0x7f00000002c0)={0x5, 0xf, 0x1e, 0x3, [@ext_cap={0x7, 0x10, 0x2, 0x8, 0x4, 0x0, 0x6}, @ext_cap={0x7, 0x10, 0x2, 0x14, 0x8, 0x9, 0x7}, @wireless={0xb, 0x10, 0x1, 0x4, 0x61, 0xa7, 0x5, 0xbe4a, 0x4}]}, 0x2, [{0xdf, &(0x7f0000000300)=@string={0xdf, 0x3, "619d606d65b736013271ae1077f3404183f71ff5c632ba2ff3ef9a849a006c4b907ce324ae41becfe277be4e32ed9679211ac8f16292f26025d58ab64c60279f49103db7697c1202ef3130ff40d5c599b786ceed9de794e3d0584d63157a728d1e3a9affc0085712b18c86d5360ebcdf838e1130f616ced63ce0ccbc6738e702a6269f5b53cdf797898415ce46143cc679f2df2656f8dc7afd0968aebdf20ecb80f82d45e8dbd2a267cc4d5743957a3c66a06cf7e82b425a947853178559bedcb3344d6010f2e3bc1ab74015a6fe940e5775ffa36489e4155ee4fc8634"}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x400a}}]})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=@ipv4_newrule={0x64, 0x20, 0x800, 0x70bd2d, 0x25dfdbfd, {0x2, 0x14, 0x94, 0x4, 0x6, 0x0, 0x0, 0x6, 0x10000}, [@FRA_TUN_ID={0xc, 0xc, 0x1, 0x0, 0x1000}, @FRA_TUN_ID={0xc}, @FRA_FLOW={0x8, 0xb, 0x8}, @FRA_SRC={0x8, 0x2, @private=0xa010101}, @FRA_GENERIC_POLICY=@FRA_FWMARK={0x8, 0xa, 0x40}, @FRA_FLOW={0x8, 0xb, 0x5}, @FRA_SRC={0x8, 0x2, @multicast2}, @FRA_SRC={0x8, 0x2, @private=0xa010102}]}, 0x64}, 0x1, 0x0, 0x0, 0x80}, 0x40884)

3.660255587s ago: executing program 4 (id=847):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=ANY=[@ANYBLOB="180000005a00137b"], 0x18}}, 0x0)
r1 = socket$inet(0x2, 0x2, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f00000000c0), 0x63)
writev(r2, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a010100000004"], 0x57)
setsockopt$inet_mreqsrc(r1, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)
socket$inet6(0xa, 0x4, 0x7)

3.479977812s ago: executing program 4 (id=848):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
mkdirat(0xffffffffffffffff, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00')
fchdir(r1)
sendmmsg$unix(r0, &(0x7f0000000d40)=[{{&(0x7f0000000080)=@abs={0x1, 0x30, 0x30}, 0x6e, 0x0}}], 0x1, 0x200000000000000)

3.455670958s ago: executing program 4 (id=849):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x1, 0x0, &(0x7f0000001600)=""/78, 0x0, 0x3000})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, 0x0)
eventfd2(0x0, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f00000016c0)=""/175, 0x0})
bpf$MAP_DELETE_BATCH(0x1b, 0x0, 0x0)
write$binfmt_aout(0xffffffffffffffff, 0x0, 0xc8)
r1 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@my=0x1})
socket$vsock_stream(0x28, 0x1, 0x0)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r2, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r2, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r4 = socket$igmp(0x2, 0x3, 0x2)
mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000000)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$MRT_ADD_VIF(r4, 0x0, 0xca, &(0x7f00000000c0)={0x1, 0x0, 0x0, 0x0, @vifc_lcl_ifindex, @dev={0xac, 0x14, 0x14, 0x40}}, 0x10)
setsockopt$inet_mreq(r3, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
syz_emit_ethernet(0x2a, &(0x7f0000000240)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @echo_reply={0x0, 0x0, 0x0, 0x68, 0xd2}}}}}, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(r4, 0x0, 0xd2, &(0x7f0000000200)={@empty=0x21, @multicast2=0xe0000300, 0x0, "028a3f6c58b274e6d8451697efe42811ee1df06e9264f7d866b1970548fc3c7b", 0xb2, 0xfffffff7, 0x6, 0x6}, 0x3c)

3.336284303s ago: executing program 4 (id=850):
r0 = fsopen(&(0x7f0000000040)='afs\x00', 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x3, 0x2000)
close(r1)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001080)=[{&(0x7f0000000040)="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", 0xec1}], 0x1}, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x15)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0x5452, &(0x7f00000001c0))
mremap(&(0x7f0000392000/0x1000)=nil, 0x1000, 0x1000, 0x0, &(0x7f0000007000/0x1000)=nil)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000ffff1a40d8048200b7ce01028297090212000100000000090400000002"], 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x36, &(0x7f00000000c0)=ANY=[], 0x8)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @mcast2, 0x5}, 0x1c)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000140)='batadv0\x00', 0x10)
sendmmsg$inet6(r2, &(0x7f0000000240)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)="8252", 0x2}], 0x1}}], 0x1, 0x4000c000)
sendto$inet6(r2, &(0x7f0000000300), 0x16, 0x0, 0x0, 0xfffffffffffffdfd)
r3 = socket$kcm(0x2, 0x922000000001, 0x106)
setsockopt$sock_attach_bpf(r3, 0x1, 0x25, &(0x7f00000002c0), 0x8)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000240)='#mS\xb2jQ\x80\xb7\x94\x9c\xad=\xc8\xa0A4Z1\xcb\xa18:.)\xa5\xcb\xc5\xd8\x91\xa1\"\xd5\r\x89M;\x99\xd6\x8e?K\x82\xd2\xd7\xab\x10\xea\x14\n\xea\xe9\xcc\xdc\xf3\xc0\xf8\x89\xd0\x0ep\xb1I\x04T\x05\x00&\xf0z\xde\xc0\xf3\xcf\x9a\xae\xa8*v_(\x94]\xdf\xf1\x95!\xb3+\x1aD\xda\xa1G\x06M\xdaz2\xe9\xe6\xda\x92U\xaaN\xff\xca\xb37-<3\xb28\xb8:UQ_\x16\xecRo\xb2\f\x14Z7\xe5\xf4\x0ea\b\x8f\x1cI\xc6\xc4P\x965lWZ|\xde\x00\xd0\x8d\xfaG\xb0fDP\x83\xa1\xd4%\x93\x99P\xa4hG\x15D\xdf\xd8\x90\x02\xe3Y\x06}\"3\xa8\xb3m\xf3\xbeb?\xbd\xd87]]j)Mp\xb4\x98\xd4tu\x8f<\x04Ph!A\xd8\xc6\xc6V\x02\x15\xd5\x7fx\xbc\xc2\x9bb$\x9bJ\xd3\xe2t\x13\xc7]\xd0\xdb\xf3\x9e\xe3\x03\x91\xf3\x17\xfed[\xd9\b0\x9c\xfde^\x95b\xff\xda3\x90\xdb\xe7L\x0foR\n\xa9\xe4\xb4)hh\xcb\x93\x02\az\xa2d+z\xd2`\x84>eZ\x8a\xc6\xcd\xbb\xce=\xc9\r\x8b\xcf\x83[\xe3\xc8\xb7*\x1c\xa7\x98g\x1f\x8bu\x19\xd2\xbd\xc2\'\xcb}\x03}\xc1\xa8>\xd6K\x84\xf8\x90\x11=6\xe9\xa9\x1f\r\x95\x90\xcf,\x0f\xdbk\x04\x14\xd5I\x00\xc8p\x11\xc1#\xca\xf7\x1b\b&\x82\xea0N\xed:\xe5\x9e\xb3\x94\x87\x9d\xa6el\x8d\v\xd3\x17\xb7.6\xf6\xb1\x823\x88\xe1\x1a\xf6\xce\xebm \xda\x1d\xa3STVN& *\xe1hjC~\xb7\x1e;0,\xeb\xbc\x9e}3\xd7\xe8\x8a\x19\xa0\xdd\x15\xc9+\xd8\xb2\xab~(\xa4\xc6\x001\x89\x9eW\xe2\xc1\x92\xfc\xb82\xe9', 0x0)

2.836035221s ago: executing program 1 (id=851):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, 0x0, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0xc, &(0x7f0000000240)=@assoc_value={<r3=>0x0}, &(0x7f0000000080)=0x8)
setsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3, 0x2, 0xb, 0x1, 0x4, 0x148}, 0x14)

2.835736212s ago: executing program 1 (id=852):
syz_open_dev$midi(0x0, 0x1000, 0xc2880)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x141800, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETOFFLOAD(r2, 0x400454d0, 0x6)
bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e1f, 0x0, @loopback}, 0x1c)
shutdown(r1, 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
r5 = msgget$private(0x0, 0x0)
msgsnd(r5, &(0x7f0000000a80)=ANY=[@ANYRESOCT], 0x401, 0x0)
msgsnd(r5, 0x0, 0x401, 0x0)
msgrcv(r5, 0x0, 0x0, 0x1, 0x0)
execve(0x0, 0x0, 0x0)
msgctl$IPC_RMID(r5, 0x0)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = userfaultfd(0x1)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4)
r7 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDFONTOP_GET(r7, 0x4b72, &(0x7f0000000d80)={0x1, 0x1, 0x4, 0x20, 0x1d8, 0x0})
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r6, 0xc028aa05, &(0x7f0000000180)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00003ab000/0x2000)=nil, 0x400000, 0x2, 0x2})
r8 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r8, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'xcbc(twofish-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r8, 0x117, 0x1, &(0x7f0000000080)="05000f0051591364000001bd1903009c54", 0x11)

2.532449408s ago: executing program 2 (id=853):
syz_usb_connect(0x3, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0xa2, 0xab, 0x34, 0x10, 0x19d2, 0xff4d, 0x49fd, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x5d, 0x0, 0x0, 0xff, 0xff, 0xff}}]}}]}}, 0x0) (async, rerun: 64)
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x40400, 0x0) (rerun: 64)
ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000080)=0x3ff)
r1 = socket$netlink(0x10, 0x3, 0x4)
recvmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=""/41, 0x29}, 0x40000000)
openat$udambuf(0xffffffffffffff9c, &(0x7f00000001c0), 0x2) (async)
memfd_create(&(0x7f0000000200)='trusted.overlay.metacopy\x00', 0x2) (async)
r2 = fsopen(&(0x7f0000000580)='efivarfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) (async, rerun: 32)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (rerun: 32)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async)
read$FUSE(r3, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000004200)={0x50, 0x0, r4, {0x7, 0x29, 0x0, 0xffffffff85000014, 0x4, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x50)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x4b)
syz_fuse_handle_req(r3, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000057000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f5000000000000000000000000000000000000000000000200", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x8, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async, rerun: 64)
syz_fuse_handle_req(r3, &(0x7f00000067c0)="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001e0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="780000000000000002000000000000040000000000000000000000000000000004"], 0x0, 0x0, 0x0, 0x0}) (async, rerun: 64)
getdents(r5, 0x0, 0x0) (async)
r6 = fsmount(r2, 0x0, 0x20)
symlinkat(&(0x7f0000000000)='.\x00', r6, &(0x7f0000000140)='./file0\x00') (async)
openat(r6, &(0x7f00000000c0)='./file0\x00', 0x515a02, 0x52abe154ad664fa4)
r7 = syz_open_dev$vcsa(&(0x7f0000000240), 0x80, 0x2080) (async)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r8=>r0, {0xff}}, './file0\x00'})
ioctl$UDMABUF_CREATE_LIST(r8, 0x40087543, &(0x7f00000002c0)={0x1, 0x4, [{r7, 0x0, 0x1000000000000}, {r6, 0x0, 0x0, 0x1000}, {r7, 0x0, 0x1000, 0xfffffffffffff000}, {r8, 0x0, 0x0, 0x100000000}]}) (async, rerun: 32)
r9 = syz_open_dev$sg(&(0x7f00000004c0), 0x2, 0x509000) (async, rerun: 32)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async, rerun: 64)
r10 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) (rerun: 64)
writev(r10, &(0x7f00000000c0)=[{&(0x7f0000000080), 0xfffffebe}], 0x1)
ioctl$SG_GET_RESERVED_SIZE(r9, 0x2272, &(0x7f0000000500)) (async)
write(r1, &(0x7f0000000140)="2700000014660707030e0000120f0a002bdb0100f5fe009d2fb112ff0000f9ff89151f75080039", 0x27)

2.514796809s ago: executing program 0 (id=854):
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
io_setup(0x6, &(0x7f0000001380)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000080)=[&(0x7f0000000100)={0x1000000, 0x0, 0x0, 0x1, 0x0, r0, 0x0, 0x0, 0x5}])
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x90000, 0x0)

2.187828402s ago: executing program 0 (id=857):
rt_sigprocmask(0x0, &(0x7f0000000080)={[0xffffffff]}, 0x0, 0x8)
r0 = getpid()
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f00000001c0)=0x2)
openat$audio(0xffffff9c, 0x0, 0x402, 0x0)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet6(0x10, 0x80000, 0x3)
sendmsg(r3, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r4, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r4, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r4, &(0x7f00000011c0)=[{{0x0, 0x0, &(0x7f0000000740)=[{}, {&(0x7f00000002c0)="b6fdf6611bbabf38f01100474c3f08ccabf45e28d92ef029a42ad8d4", 0x1c}, {&(0x7f0000000380)="c89ae65e684cbb67bdc48e7b711c1896aa1c2d87ae", 0x15}, {&(0x7f00000003c0)="56c49590e7da66b00a51bca3db9a2d2f323eaa3de02fc06681614fbdcaaa8cb370b25b064f7057e7214caf7e96023b315e8ce73998bc62d382ae0ed3a1aafda058f0635ca4e48ed7502d9e192155b912582afe1625103b0b891dbb32167eb784361311acf92487db94d432ebe5fe162f292a22e93c3e95bc836d7b8142f10488f10d4daf7431fd1cb093327d2f8ada3d3fe38c3eb7e869f2a257e2ecce5d6e36368d3ccba5fffc82ac4feecaabe9", 0xae}, {&(0x7f0000000500)="879979f068776c08d2b94b6f0108bc98acc2caf833319ddaeb1bba56470930252b52b66664d8e88fbc2e47e0bbafde57ffeaba80c79e98a021352abc324169e8f4625afd520696bca50a715bfe58a263dcf432e33337d9a3a735915878047ed84c039d2aa7118d64cdb00ee5f0c4063d477577feb1a59e92538473b6036b3ea78e3ab9f8577ebf6fa1d56c25e883c8e914b6c7b71ee9fa88fe1296aa8a1e163b9a14af3575cf8be8faccd3ecf33e97a1f69cfa18710e37be85a13e7fc25b7fb4f71572a4bcdd5235f70350e08024912c5db83f1d124ba020f8e8ff81ee2185283e2a", 0xe2}, {&(0x7f0000000600)="1cae027b3ade565cfcdf1077274383a03ee17fea4621e7192bf8e762e2b8e4c4698d9111683efa49052f0179481f364c524c8405dd54c5ffe887c5d3f36f3d32ba32e357a993b84648a41b921896ff3fe76eebdc6427fc10910b7e18cb0b91f6540df12d5680a1f8390e9d201aa656018a13c3a462f6381d1508f8fb4a9659ebe9b86bf328733a499c837fc8aebd0021dd2e4461c411299faffdf64f48bdc33eb9724986b1ad4de4f494e2d2660fb72b6c", 0xb1}, {&(0x7f00000006c0)="003eb8e050408d779028e3d0b59416b686c0711b3875dad12afc8a9b25dadca59ea76e1a2371d54c347d2ad8d88f990e436be80b75cb310ffe65e3fba3ff9ee4759a521bb1831d139750fb7fe5cd4f2ecb89a97e8e7a", 0x56}], 0x7, &(0x7f0000000880)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @loopback, @rand_addr=0x64010101}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x80}}, @ip_ttl={{0x14}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xa}}], 0x68}}, {{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000900)="a387ae7eba447ac2aed27e1522d8096ceb73a9a5ccd87d07fce009c88562d659947eb16de08e4edc88442c6361bdc129ec64c85c3c1183b31d82aa745b1baa583b4b48de39769a11c2de6f54a39c2989a88cb38398332060b84bc3332ecf766be21d81f96f53491c596cc9f6bc61bb13a074509a83d5e49a98d4da4f6fe5796ecc62c57614c894ca148b3bd0439ffd7166a874814f72a7114ca608a6bf62f66a4da0799b1efa1e5359216bb298b9bdd4f46513decd61a2a58c11628096a96c29cea1ff07", 0xc4}], 0x1, &(0x7f0000000a40)=ANY=[@ANYBLOB="140000000000000000000000020000000d0a0000000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414bb0a010100000000001100000000000000000000000100000000000000000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="7f0000016401010000000000140000000000000000000000020000000100000000000000780000000000000000200000070000008913cbffffffffac1414bbac1414aa0a01010000070792ffffffff0144240a31ac14143d00000003ac1e0001000000806401010100000008e00000020000aac59404010083ed5ce0b2ae5dc6ac86a2c66d6f5e13bbac1e00017f000041ac1414aaac141416890fd3e0000002e0000001ac14143d0000110000000000000000000000010000000900000000000000000001000000080000000000000014000000000000000000"], 0x148}}, {{&(0x7f0000000bc0)={0x2, 0x4e20, @private=0xa010101}, 0x10, &(0x7f0000001100)=[{&(0x7f0000003a40)="3cb85cb96aff65f97fe5c0b823625e007c77bc589a2ba8859ce1c63db48dcdd9a129c4f17b5b293ca4717da38dfc3f141c8648ed90698f4fec126e2638574f34d4717ccd10125b03c39ee88cf863b49c5f37d2f21ee4167f5bbb5eb2040fcb3fc5ef8283f12638fa498a703f2697e8e687940dc312832010fc257db60438f62837dbcba87dec69b3ce36322297acfa50d27fb701bd21534253ffce3675a9e38ee709779dfae27ac7a398a8ec5886be487fedb6e194116ab5a14e2cf8b9c88ee94841d63ea301ab5d2c4070711b23dd3de452947931fdef1afe8733f3bc9c58d9ca7db4dc6c325bad2c5e004d0a932b6294f22166c989e815bcd39cc921b35203f502d4adf9897bb4f1b01fbc2c4f43b0694f59d10905833bdd1a7e949373d14479eb441e1d113f701a67f6517984d06dd612906d66fdaa9ce4b5bd23ac33bba10a86d3e8662c878a6e3f6b8f91eaf008f2a966e1e0eee0bca6692bfaee79f95e09890574f126f27ecf0cd41db06b28882916d582781e5b546dde891f2a7b08a73039081ab3c3d1d1722a4ff929cc6d6a4342ee90c66f36d94237cb117968035b69c5177bd272f4340bf2817561791f684b5425c4b861a77db03aed6f56d5dbc9907536077c39c6c89a9c6ef4e45387695810c8c13ef768c5fa183d135c9e88c90e6920e3d4327741347a369a0dc0fb9dade1ca189cef5a31a6473871e97a0aac2c02dd8e04a5ac2f45d4829cd2a8253a45b5f46879c967de9c1d9ee037ac716d587fb9fa83138056524f2da6905193f5bd0a0f974154a38cae880335d83ff039e7b02895bd48991d8061133e47dfb353939aff63f4c7d41b50bea2c315e0992cc14f62d1e046e860a266214f5c4c7976d5c6e1a09f9aac8f5f954988aa7e44cab1ee0851dda15b00c5ea81161c6a8f242d792699834213bde3e0508751790142dbbf0fffa32173fa782bc3c4742e0563923cb7365fe9f14fef69a585852db9e457cdd716eaf15bf107207913063ebc635d9e38498a9d49c2ed1853722cdb7cbf4424b946ada8aa37fb2d3bd4c056ee5b49c66bdd052774ca4002b0ab44f04ee3a7257fc4fa16b7fec94f3390f8a7c38a99e3e4719f6f5b4d7e72cc3c6561916d7c1cf4986a2526941e0d8eba0414ea56bfedf9eaf8722d7fdd8543e943e92b5e7372e67cc99c01d0ebaed50ec903a1852c0917f21ea55e56f01c2b34f29ae2a9566848f8ed707cc5cc707acf125990027b1a206cd66382c67a20fab5c22d91f3611ae4ffb1df0ac6f656e6c20d7beb1bdd415b6e4e883d3fb6820e2e4ad80b9aab00628cc60bcc81fc4e70e2724182f3eb42a1f0ee84de1964a425b23d6e8d0fec97b0a95d5167c15bc48655f1adb5e2fb2d4f50344645c9d09140a48f0ee5ec9d65b8ec0c5c6ebced3d117d3f9945c00132b57fb6e482ed6ec73fb53cc3b1582061413e4ff95b80bdc277122564599a38cce93726a2936738b7be8966d47053ffd0ea61ab6637f5eaec66b08fedcaea7d45dd338fd3ea21ac5b20eb588ddef9bfe0d0cd1d6fb362f9142050aa3e86d9403d8b826c24cea817231fbf88d3b0ce870a971b97cbd5a42a73b9fddc17d5275e4bd1c1c1554e18e36b50b27c84c6e9823415a37f57bad415a7c68b0655234efd71b12653556bb94ff98bbe01fdb5d3cc06d718b7e8a5bda1c9c1560dfe2c9f35aa6357549a271c409f1285c30b6d43424e138137d6e4807f85f381ffb6e563d5cd384f4409e0c756a54d31d4367867d1047e2df28f460ab452a75c0e1f331265c4ff3b2e1f19529d3dc563f640dc2180113259a129dffb19328cb3e442264394d898a02741484be96347fd3fdf49b0670fe3d42882949b88b2cac5c82237cef1381975fef429250d3d5e928b0cad0f0f368b8bdb3a0ae64fe830e04147e827bf2bbdd6f5923af464aac06440f9222efebf028699242397f74bb317664b5d49b16c7c368bf2195316f7af1f5f6e84514453e43be6e8e96d25722554c767da86d67b1f0d16add698595991097432b496c1e3ee7bc255255767250754c2a282e2dce3f8f6bd163e96daccfdb3f1efa782077ea351c7d060f38cbb6e25df530ee95d62bbe9e5b99d5ea07a3ab5af90a9467dbacce92e4ed0d71d3c675aacc05155a92c73ccb530cffc8dc380f2351ab9df13c751c547faa115a00d2037a47834c863210220dd8042439f3ee4c922715113db4481f5f28f02a40f6fb939abf5c244ddb760181a6e4c652cc95659d3ae0ed534a92425d16db016621ebb9e2cd1ccae42c5b6416f5d2879ae8e9d6da3f39f098901690dd05112f8b6dcbce6c99a935afae8f629292c8c5b4eb6d419ebd79f5c1a9bcd279dc2e7043f7da73f0c2a5902962286730fd10a96c9455d7ee1a5609a66a7493d7dca0fcfac79a93b48fb0bf4d44d665ba091fd3c7a86e4902772710aec73ff8fc292ba690a93cadacbc61706ced84065a616e8435fdd6deaa9a53c901e73063b419f8db2066705410bd2dfa6b82fe0203e9a081fd0a8fb695862931d5b80442ab55bee71c64f198df061baef8a761fa5606e17e1b5b393e34312bb761677a339f6c201c2c992c0e48007d426e01494c6ffd35659495da18d6f235d93495be452a8607800b7d426657807c1749933e55245eabf4e542881b1de08f24cc0741e586b4e5941ab3a4281afca3733e121a2914f199dfb5bfed9fcc5124afb6adebc1fabbec7140e197b9d3c23a690943311cc1bc6e8f5419e10334cb939693922ad62ae19b8597ef9269ec5cacd20c6247d3ecfb7bf747a6cdeea356b290ab3d6d3ff7fc328f5872e9e4bdc84bc227668aa8a82dbe6d160bab32a4950175b59b214274e90830eb585313551842b120c3d801de81738e70b97717a74bf69a08aa7aaa37563f16f45d8fdbd0cdb446f0153770240f4f2c83dc3020a7d98e4c16d2dc7e675c062a49c23d8723751fc19d9d26188f29320a23c04487074294e51e1adfdc214d0aa7395b1b74d4ec07806bfbc289982775d06c337c75b8032e6d43ceaf92d4de600605b745f262a12d1566ec294fcd8ae92f880900364f200dd12786317942052bdad6b143784f2885728b2caf6d68df723f4de65734e4c4bf9da3ab959e239ccdc4b14fd3c3d0419687c2eef641dc0d69266e81c67ca9265d3562130314d90e1af76503752a784c8c524f2aa00fc2c0b1f77ab5c488a237be1d6be448f474d6adf254f08fac054a352ad7de02623f859264d54120313dab21f92b9557bfde8f8e7e461b5d3ba767fb43eeef1024b3473a06cf6296824307de530e300e33995fb5dfc5c089eced1949eb39aad936efc5e04c2810a0e821774e21a8de00da228804626094245534253d00781c1ce3c5d1def7b1c901b10b0e1ded48704e6def570e82355ddc5b7bd3a22704b5b905a9c65c7b513ee58a239e689e7cd11fb8bbed9705b8a4174846cc727be270c29166777ab070a0ca2a6a84f1ca084961d9e3706f8dac804cbec560dbf920e1f0b9ecdf91b317396ae1b46f66628f04d48cf6c19183ea12a9d1694c999b577c4c180662ddd0a752a3318bacec33002aecaabbaf4202d9126fa84aec90b7609cf10ab0e355f21c45f3b46798e0c8bcf2b43d43db1b2a5477ab1c9dda8d3e5b637934ab5a76d6250409f08259f896715c1f1810e5d68289a957444a9eca05c998e8a66157bcdbeb70f32e81ee8f0f765aed4e2fe806cba47b33f60074386ee580dfdf5ba606752be7bbdb913acf45bae2c6544a04f8c3553194e28ebf451df28ff0627d2e73926e758e84250a1fc909e1342051bfe0964d9ec6190f4350062b92e99ee1fdf7bad5fd2b1e8aeba19096c24cf3ee611eb40b8c25af0672056db5cad309f16950cbb128f604c1f3ce2fc7d074c5984cd5976a6d2bcd82d174dd4ea8549217dfe1198cea58f901772dc12188f58e2d324da491fadaf26a011f776faf88558a3dee8fe92057546cfa7a3452f62b24a78eb80731e009c3f5fe20a3b7b334803abd0189bc1ae45432fb1fef515e884242c641ebe99a2e723d1eac47b1215be1d8d2dd51384e21f98c08bc25ea129d6d7d1f5a11cc6b1cf878b71966ed88cd2cd3b25cdc1cc4bc61a1326d64043d30be5eea144c90791353339c7eae24db07799b741bb825ebc3e7ea6d12435e00b389b2230e4952f8626b9d6ee54963d32813e641fc18b6fe86f7904d7508d43c7d1c26e660685efa526f43c7ec19acb3a612d5bd68c07d1d4d20ad245f5dee0428b2510ffb86298d7471d8741ad2e580d62e9be4c836d65fe75f6bfb7fe1ae5e61008faee599cda4329fb583f31031e42a5bf5a7e2be556c1535776bcb17b0d1797bc5f9bb8b1035df2cb548f3ab2653b017f43931cf30acd1be236c50bfb88c403b51cc40eb9c55fc5da0cc86676b9d769eb510a6f93e8cdbaa2f2951ac62addc07912ad5a673a7e67ce61cc01cc2eb1d4e40d3016657b02f8491598fc66991b610f7feeca143c7e15a4c2e60b8c78d71dc08d5b039509a6995ad3c32fffa43e3285f720695617d301e86b462ebdc36b724e17f0ef9ba5616e45a2c7e5ba45121480bed1d9083eae4976bc8bc6a89a41bc8b22d6b8c401ad5f39a030da6fc6307e027ce80ce0211ffcbdff24251ddde66a5d0d4926a0ba811997bf83d14c419a137de7c8b05d5ac68e6a2cbf1ab8497ed430e8769bb96f8b2bd7b571489d28ee808cd145bfe4a7b1b1bb78cd980d283db7ad516c56cb4063aa1107378bb7bab294854d9d0ac2c6c6a649f9839af680d2e581b32e5cdc5e55f0dc4ce9db7e0511b93c0f2c538f4097f35bb3e90b15bfaf356357faaced6cafc536750512312fe1fb4dcf8da435661842582c20d3789ae21f0cdf97898cc381c24455c1db2174fdfc4a25ac199d38f1ca6b45973f4114625cbfb3cd33ed39376bc1732da5cfe69a434343b80cb64c75e9f9b63835be4717e050a58c92a65305c85c9d92cc0a7ba627ab2d679fc05536e098008b1327203eca3643386b6a9c609ea28f2359052916828d8ef1de5526e13af085141a0f7fc3d8779ca9531f45c93f92427c4c5d7f1a414296eefc8b5e957f6856770c13d8891cdc635e4c90b879bc84016dab7850b363c7ad0aceefa288803153b565e3c41c9b53d2d10b6fc13cbd6500f89e7fdc91dae06f0dcb371f8750481b7eecfac1abd113ba3a11a95094ef6a176465182d566b94ff10abaf4b5e7a19c5afb7786c30613fe1ec81ae0382fa781e371b5b3c9e973cd0ed504fec885bce0dbb3794f8dde84d54953f026af393bd005f5d691fd5db6e6d0e346e6ca005cd8e75fad480bb7e50745a1e87b845bffe91b29fcedaa8265f3e70a1ce2468aa8b42a91f44e19966b40731fda967ef90b35c308bb76652c4c156ac8f823e9e4809e9bde11d709b65997d7d8c84b79426dcb76bce5f229343974876b192ce8e3ffc1e0825e79e3ca563184eb2fd38bece209930e7d343578c99c46f3f6eb0b537bba8268a895fba117110d3aa8870bc1f40b42501a77ed899831b832f65364fa6e9241ab1e7feb0c1c2560bc73ac24b5e06ba631b14e84238a3597a1fb95a024f6737b0728d56e404bd0055dbec12f57082515166712a01b6afddecae4775a9ccf4fcb82d9c2e211f4b6a2dcaaea4dd65a8b8e83a3da6b219f77aa724809a5e4e46a60c751c185439336819fca01d32d67bd2a0a72ab57c094edd199084a0fa9deb1e652b3ab1f9b505f6c8fd6450e6adff4c1eca9441dde48b6021ce359a315ad64b9b729f1ac212778f8a9ac8baa95fbc378f8cc8", 0x1000}, {&(0x7f0000000c00)="a8528933d9f9a08edc15ec2a167602e4e924db1c059797ebdd8fea12a18dc5e8d2cbb80f08331957cfabac5807110e8dcfd12fdadcce4e58c6de022cb4a0e2489f62ef28d069abaca554cf35806b574f362c6ea3742e76e2e866707830013ff358b1539726d041b4b47dc676f49e051e9c01a60bd732168651d4e228c240baacb1c8cf457e749326c437b6342b8dc6548980e85b6f83330fcdec9a37092d09018f593664ea36f5268026a4e2fce977c6d4328c51741489c866ab0b25a27384e9384314c947ff974b9c2a8918145b17bcea3a5ec793079a73bb233ac167d8", 0xde}, {&(0x7f0000000d00)="f34718eaedabb5babb84b2c271292b3821a02338282eee5b36a9049175f6308086c3f80669c076ed3231630d83360453037011eb1eb89e208fb5bb04be9d62235ac5aa416e41222d86af2ef43bf37aef03c86176f8c4ccb3ff3664be5ad5d0e37b61b2187a17574283c0209d4f057bc51cef73df6590886411232e5714afee98acde0171036e", 0x86}, {&(0x7f0000000dc0)="8b58166da6a30ba66450d0e49f624de56499ba4b2a9ee30c4114bb8d69d22f775f6b887d522cbc847257b63a94d3dbe9395eb303274a700caf4e92bf2a1c34e79d8135baefcc589b2070273695fbe0e441b9cb3e221a1f4f5145ac7764f0ff161d997c877741ea8e1f01dc3d701a9ded91fb431511c69ad6e8a63d3dd38e6f7351d7ef89f894a0b3bef6bdc752536da3f6c159758b21a6e04520bd9677759567abc61de6ae29999a82641538403b498ed95c198a8d84e26c93f5b1e6bca4bd85baef6cfd73a358eb572afa281c416f4b50436fd21f7fdb10d1fdfca7529b184e71d67e816c4d5f6e162a6dc2dad48ed10f", 0xf1}, {&(0x7f0000000ec0)="2eaece4f4fc96c7ff36c9d513b39a55af9981374c9e49808ee4b02eb032ce5dc55796ec4b66c84e93b6e0df93e6babc8d9fa7013e61de30ae52fb031a4130b6ac5f18fabac43c161e73a28aa1ebac90a53", 0x51}, {&(0x7f0000000f40)="af247c08a21382a560ce8274ad477dac32464069ea4a78a75b3658d05dbe1cc55a2977c3feb6c5e13fe0da3634280ab9d39d766f6434525322bd89096a9b4682325829704ca07b09aa5b04f88b87edd618a82cb2eed37a1286f2abd03b60543231ba35465fdd20a18c4e39a1d0e76dae63c963ad84dc66d2a6edb7304678be413427fd4c5977c8f84622c8b533f997a0034117a6ded6fdf3fe13b499fd57a17c330a262a96aed1c153034c74b1edd322661d932d38c806c0351d0c0e5681b13e603be7251e13fc530c3ff742bc1cf2d81e0a53da2b1cd2b119f767d957457c", 0xdf}, {&(0x7f0000001040)="6549b6ee6e445efcc68198bc76d1c6ff97fb6127b37051426311e68b0d7e1f8ba852e94b4b4bd975cf78f9ec", 0x2c}, {&(0x7f0000004a40)="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", 0x1000}, {&(0x7f0000001080)="a21b17541e712da59aefeccc9a26d2b027a437d03e23f79db2fd75a369194d5513012ebfcfff0788bd55d1a7224e814149d5da121a7970a65d9ee4f142c73a75f8f5fa5841121b5b55167eef442a589111c7c046251f564041d9ce7b64d05a660f555866063853b685f1d1e011bcc74af83c08228e53085bafdc0e79e9", 0x7d}], 0x9, &(0x7f0000001340)=ANY=[@ANYBLOB="2800003f5f9e780000000000070000008607bd2fd7b000440c3d41ac14142200000005009404c253fd9a000000000000000000000700000001862b000000030703c406047f5c0706d3e87ba001101b007c691cc6f47f525d400687bc01088f6df05f25000727d400000000ac1414bbac1414aaac1e0001ac1414bbac1414bbffffffffac1414aa6401010289020713e3ffffffffac1414bbac1e0001ac14141e071343e0000001ac1414aaac1414aa0a0101000000000000d4000000000000000000000007000000864f000000000710efe6aed407b67eec981f9b06bb14040f16a40dab9c89ae00ab180c9172001154625735b30019ca9f694802cf6c6d0606203c2ec5060df348349b4a1e659f50f4570106727b078a442cf173ffffffff000000faac1e000100000006ac1414aa0000ffffe00000010000a793e00000010000000044187a2000000000000000720000000100000000ffffffff831717e00000017f000001ac1414bb7f000001ac14141b440c1d01640101000000e9890b58ffffffffffffffef0000000000000011000000000000000000000001000000010000000000000058000000000000000000000007000000890fae00000000ac1414aae000000244147123ac14141c000000dee00000020000000600071f7e0a01010200000000ac1414aaffffffffe0000001ac14141ce00000010100000000140000000000000000000000020000000100008000000000140000000000000000000000010000000100000000000000"], 0x230}}], 0x3, 0xc0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kmem_cache_free\x00'}, 0x18)
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f0000000340)='.\x00', 0x0, r3)
sendto$inet(r4, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)
r5 = gettid()
rt_tgsigqueueinfo(r0, r5, 0xb, &(0x7f0000000480)={0x0, 0x0, 0x2})
signalfd4(0xffffffffffffffff, &(0x7f0000000300)={[0xffffffffffffffff]}, 0x8, 0x0)

2.116040882s ago: executing program 2 (id=858):
r0 = socket(0x10, 0x3, 0x4)
getsockopt$inet6_mreq(r0, 0x29, 0x15, &(0x7f0000000000)={@mcast2, <r1=>0x0}, &(0x7f0000000040)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@getchain={0x34, 0x66, 0x2, 0x2, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {0xc}, {0x4, 0xf}, {0xfff1, 0xfff3}}, [{0x8, 0xb, 0xc5c5}, {0x8, 0xb, 0x2}]}, 0x34}, 0x1, 0x0, 0x0, 0x24008059}, 0x4000060)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_ASSOCINFO(r2, 0x84, 0x1, 0x0, 0x0)
listen(r2, 0x4)

1.888542728s ago: executing program 2 (id=860):
add_key(&(0x7f0000000080)='big_key\x00', &(0x7f00000005c0)={'syz', 0x1}, &(0x7f0000000980)="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", 0x5c1, 0xfffffffffffffffb)
unshare(0x22020400)
r0 = mq_open(&(0x7f00000019c0)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb', 0x42, 0x0, 0x0)
mq_getsetattr(r0, 0x0, &(0x7f0000000180))
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2000007, 0x401d031, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x1)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x11c, &(0x7f0000000040)=0x6, 0x0, 0x4)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001100)='fdinfo/4\x00')
pread64(r4, &(0x7f0000002140)=""/17, 0x11, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000))
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r5)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r5, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c)
listen(r6, 0x0)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r7, &(0x7f0000000140)={0x2, 0x4e22, @loopback}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r8, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="01000000000000000000010000002800018014000400001fff00000000000000ffffac1414aa060001000a0080000800060003"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000840)
ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r0, 0x8010661b, &(0x7f0000000080))
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000001c0)={{0x108, 0x3, 0x7f, 0x83, 0x51, 0x3, 0x36e, 0x8888}, "01b51d70c9b75f56670df8878f3d43ae48f12715bf346de83c204baa9baf7bc0f3ad5686ba17bee1547f7ddaa75f93ff946ae95fa985a57a1699364385590080da8df636dfa02291ab52458d9aad3bd809a053e0f4a5c8477443f0f37b0ac57329123aa1a05a66b4cd0627cd7a685cfc8a5d4103e63d7b4671fc9caa4ed42ec61c0e306468732a218a69130e10ec77c55209639954d4813e2357e76193b33ca50aa2c19b8e0ba25f18c7f7d9b5bc101d6ab7d1486abb08145aef9bebb02e4d053c1328fd99be4cb3bd3341b745c8e30085dd2b8b7fd9e2521b0925", ['\x00']}, 0x1fb)

1.584042119s ago: executing program 3 (id=861):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r1 = creat(0x0, 0xe5)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
setsockopt$ARPT_SO_SET_REPLACE(r1, 0x0, 0x60, 0x0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000240)={0x2, 0x4e20, @multicast1}, 0x10)
connect$inet(r2, &(0x7f0000ccb000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x23}}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001a00)=ANY=[@ANYBLOB="18000000030000000000000026d0000095002b000000000093adff012255f674412d02000000880b5f04596a5e99fce658be2f200c699223886d8be4b50000005ab527ee3697f98125f30e6326996a3cfee33025a30b45bdcf2c69d105e5e55a1d273683623f1a5dc6e3c7e20eb7a98ecf3bd2cf898e924abe26ac296f660e69ba982fd76e00dcff7f0000ca6b78ad833488cfe4109eaf009eddcf21f5c63cde2f00150200000001000000520a0000151d010000000100bf00000000cc587424363da52001a3cdf2000000db74596fd72c002a60c1bc7dc8c38b7d2e13c50424b9dd1145d03ff45f70685c6bd9ff41c69b7de406e89dcbb7677e65a88a8407a9e7f9c0e91028b0856eb1ed9474480737a55ebb0bd701f7fb21135c6172eba7eb8a341f07e5a2d1e88b3cfc22df01e4bac9d97328fa2a82b5e8741e02056d93a433f50479387467824262852c7939db5672d07cdbe8e14abf56497e5d56dbe37551b870b2851c3f0a1a9ebfcba105a6ccdd01b0f04edb256c0200000073f6db43661bd7f0e2536ffbfe5ca31b4083145531458b7d1e341c6b351ebc5223f54d6bec93f4ef088e5d1be2515226988d664709ff03f1aa3dc7f1580ace9bf2afd28d0700000000000000d6eb372713255012e028cb2654d493a0b43bf21375709f348f5eda2967199cc936859a538100070000000000dc10e13ef227f627a40000ad1fa253d33fa74f172d3407ae4e1e347c0c6ef9dd2b6bb700000000000000000c586272c3f4d79bc36315745cb149f3cb385e6add14652003c7cdd3324f07d134d3a6c718bbd1aafe1140cff0be4c6f8df084c5e9734ae30aa9af030025f01ab03a9b1074407136bc506031f0916a39d3057d55183612b39e73ae8e6dc30356886a831836469e2051d937eb85f3f2d5ae2c1dca476b97419a3b76ed62409d004d7fbe362145d19605d760df4c5124ca325d374b371867a79b35c6617fc3327191fbf514573f0e30d1d60be2168fffc2f3dccd599a2cb77f124e22f87673675805494db821f39b50d938d5fd8c6b2a3a324c257bc9110971b749ccd74089ed6b86f81ca3ba47d8f71d290ed1b1a11f7a67125170c88c3b6a50692cc0064fc6bbd312536ac15016c85c6332226401b110da9c786eeca22debc99335587b54c13c3107008fa069af8223b38ced735c2d906551004d8dc10d88738488da01ffa4add56474573c964a270000f2f16625c0c10200000000c7a5ca60fdad159f2e44171f39638410020000004825d081f2d987f05c534187738655d7dc958f2046fa0c1619a6554b82d9c162eb61ca74f1ffdaccf0ea5f06e0fca8b27ff3983ab74fd3d560700a1fab44e77e312b3b129e000302d613916c9bcf9f0000fac73a5b6bfb27f88dba816020be760f7b45e001efada8000000000000fdaf4660402f7b3b79a433e08074ea2462974a00040000eb01352638f56dae0249d15ba8767259658878b7492cfbacde9b57cf4de00788adce638190f3570e0b4c80ef682df22201270955afb6008846557ee3bc09fda6dbb6550d597300eb82a184c96ffde5a30e5433e866665b98ca2002c804c22ff2634b7bfbf5c0d586cda5b45fd00dede1e88a4d41dee7cc76d7a23d06acb1d2d4c58faea84158bb440df2a694f4cdcaa4f65c22efffffffffffdd00000000d503d79986958115ae07b70f991430b7fb475d77b869ee02000000000000000000001ffff0ef89b2a68d2b05c995445d8a7700bcdfbec74fb2dd163e863315e84498dfb52bb93f6c9084659ce777ddac563c8596c2b1d8180289a61faa95a82bf1cfb7f2fd7252e9322abe282c33445d443a67467893b9bf0d1c8130ae6b226900000635376413c29f7c6f7b7e29b9a0c64e68328661f0c06e21f7d7dc22174ea4447a6f60edef3a4168d40200fbc71104512efe8e5d7d934aa289b4bd2b870000000000000000000007000000002000000000009b777883a02f0593dfc4cb4114b9f9cf4ad155110cc6ace2b322ac31bfa27847c799c8009a1ea5b98e525e6383ad7fd9795170e7b11e247603c2ff49a11459c7f606d729d3979676bffb3049166bb84a0f061991bd57c2566c10c282352aba05b6164ef876915a3f2491e4793e590dcc71de10da96366c1e992c0068c940dd4422c9882d3aa0f8a797b8fea6efcfb5276b7679f15559edaa977504cc0b2f777acb907ebf5fc14add71d0bca37405ded69b77ab4a3d7487fd04000000de17e1e13b93669b79556abb722d9c085b189b5fd1f30e8dc813f608830b110001732135e8e7262f290000923bfb6b41ff3792cee2fc37eee739c3e36a4bc80112968ec0d8902eced1fe552018014a463abbbf7ccd6a92a5734e3ebfca9b6e88e031f31de2183652e77c164c646a1cfd3710aa4205d8d4d4f974133ccb1e49feb42664eccd809c0ba8917eda87489e8946d5c8156197bcb66fd5606c63e3389ee9e8552381646365066ef9a36a449c96485c22ad1aa423b7b89efbc6cd54000bb0ea5f4f1e8773144fb6ac9a44d43593d77e66aa7ed7f3d4e7b211590c738888d02b2dbb0b2ba73ec72e1d8d7360a128499dd19e1e7b9b0671f4f58515b45ecb9964f3c4ddb8234391d514f8d996d8d6dd7f8fadfee2d7a0035638ce27c2936cb04b30a0eb0cde0000000000000040000000ec3c12ecee8fc3a40000000000000000e215b00ce2570b930723cbadb4033d1b8aaa2cfb3fb89e4a6e89737fd6232218a9e0c099d1eb59d60b3cca089785642f327139bc4394fb6d547a9b3c22599e780c1da7433fb47615d372e3fffe9703e37d5c87d513165278650738efcc04d27b766cf7f60066edd292f6c8a2174f391ed164bb1816819ceb3e378e776d422bc946cd9501accebeac3a5b31d8abc68ae537cd44a04e6bc21c35a7beab2610c51e593676bf635a20f597f4631b91454d182f826071f5210bd6d93173589929b23801e63c2266fde13b5a04b8d48be057c752bc415a756ea9b4d34156c4f73dd5e5924ef101a5fcdaf37c7ba2c4a9de9b000000000000000000000000000000a73b862e4b63c245616b522345587d0ee65a6902bdd0abd941e8aba37510b222ae544f395edd1b92ad53fc68f08ea00edc5e10d768836169dd296d56b306e8b75778c37571792a6c3d8b02ef378ebd59422cdd008bef6f80a80a68641ea5ed4f1126bb676098c10bf663eb3fb8c839364d28fd046dc64b35f9c3397ce6f4ad357b0000000000090000000088c7a8e2638f650a6f04a6f33a090f59414d6ebcbc687e66d600000000bd0a58ea6d36fc2cf9b9a71c137a2a22adb1006f371d4faf47285fd66fe0389afb96854bb360edcdf11b4ff6dd578bba93e949d240cde9b5836cb46032484dc19c93db7b6e5afa10547c78e76a3111557346e52566df196fd630561bb908fff4d2e19562aabd43742a26a43799f8636fa04ceb40c9e4ca1cfbbc7b949cd245a3ee118fd0d4f639444539af8766028d4ac4d4c548e290199e0dacbb4f6796b39bf32934d941ba2f88e3ebd0cf8e24f99eca86e4ca9b2cd2b54044a7fc4631572a6378a32df288785f146275c1f548e2a0c1016744e05f9de5044373d7650125027547eefe7b2d8c8871bb65395fae99d8456883705bfdfb00001854b2e5efa8aaf25827d659f592b1575281ec125de7fb91cd81d91dcb19f5cdf1e1e2b4a8a1389753a09110538689e38e07fb2dc72bd4fd11d7bc16aac5d85c6101bb722895248e463a5fb45ce0e564e90cb19d5993b471687ae4165e29cf2f58082115f5f8569896eedfd798733223e6d6584997510c374912ab798bd4af4654c01bb2c411bc36468ddd62b4eba5cfc8953526e0e5b1359797956152d0098ce47c62c3fe5a23219389622b7f65bf03527d25c3941b9cf1ffeedf6d99082bb57ea871c12213cc40900f83033bc18c529171fae324c315bc6ce358831d0230412212acfd5fc8d5cb0d028cf568e8bb40e27befe2ff01f7c6674a4d86d900633ea36641e0a781ea0ea7f2d928b8b22e2f97dd13348927375baea6863bef4acf4299096ada5cdd2a0eaafaa760a79d102d1e0c0000000000000000007926653b8d79ce16a432f124786a0bc3c5b7d196822492ae1ccf91aeac16406ad6f9cd3d96d57fceba8360ae49f73351814c9c2972f11064aaf3739d9100f9c0e4d0cb17d50c82e305ba7d62cf1cc6da26e34982a8c74dd8122cf5b5e7c34fd2712a0cef05e4d8ec7dd363219676bd9b19943185b132eb35a695e208dfa5cecdb1d6425c8879063c0f11bd64291a4209ee6dc1d9e9010013f6148c603e6a335e298efd6ab5cccc47a2c568c6afec54f8251bd840752addf200371361c9eedf05ed98585cf6d99e9e56055064bda2d373369761238c278147cd0eb7799f6b9c9fcaa3fd282154994f5b25420c86db9b6401e885de1c615a719a1c83e8fbbb181282dbaf3313a4e4a4877e9f37607e2cd6da0cf6371ec06a75f5a4206b2418ad8897ae149085d63f01f22eca44033234b3930b4d5da756669a1d59d69e7de54abf439988ed7ec33c2d0a901bb0985a24878984d8a4340fa9a356d100926fb5f2ef9976366a61b8cc2bcb1c072b0e9c564852388e1edff10d75b3832792e471cc15b40380f94d834243080158603fbc9134d6983c540525447478984611c0d9666941bfc0a30db47a8828b6e5c51aee2094599b4ce52795750e1764f1657ca8c5633c71287239dddf5c651496f7bbd148c937f083d2e4e0197dbc6ff0649c749707b17399b1d7efad23abb8b40b38704737e15662ae4913a4a001cd3b71c7af75b5ffad9780650c800a40ca80ddc41987919142fd28dbf22db5f4c435415a03455e1d55d1783ccef97d7e4655cf839d06f06e137bbe462a03b3100231914b19739dd57b4f12d026ad0c7fd3"], 0x0, 0x4, 0xb7, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r4, 0x89e0, &(0x7f0000000180)={r2, r3})
ioctl$sock_kcm_SIOCKCMCLONE(r4, 0x89e2, &(0x7f0000001380)={<r5=>0xffffffffffffffff})
read$FUSE(r5, &(0x7f00000027c0)={0x2020, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}, 0x2020)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.idle_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r7, &(0x7f00000003c0)=ANY=[@ANYBLOB="d8d45dfb1122ed29052b47b8a6f7417c01b2452712675cc00dba3f22aaebb9304cb08d5fdaff579ffbbedcd287109f3b0d3a1518e4a5", @ANYRESDEC=r2, @ANYRES16=r3, @ANYRES16=r6], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r7, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000280), r5)
close_range(r0, 0xffffffffffffffff, 0x0)

1.349065978s ago: executing program 4 (id=862):
r0 = openat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x400000, 0x100, 0x1e}, 0x18)
ioctl$VHOST_VDPA_GET_CONFIG_SIZE(r0, 0x8004af79, &(0x7f00000000c0))
r1 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe8f, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x3, 0x40, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x0, 0x0, 0x2}}}}}]}}]}}, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
ioctl$VHOST_VDPA_SET_STATUS(r0, 0x4001af72, &(0x7f0000000100)=0xb8)
syz_usb_control_io$hid(r1, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="002205000000a688d287"], 0x0}, 0x0)

910.189116ms ago: executing program 1 (id=863):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000980)={<r1=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r0, 0xc0182101, &(0x7f0000000180)={r1})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000002780)={<r2=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, &(0x7f0000000080)={r2, 0x3, r0, 0x5})
r3 = dup(0xffffffffffffffff)
r4 = socket(0x10, 0x803, 0x0)
sendto(r4, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r3, 0x2000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
r5 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_disconnect(r5)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
ioctl$KIOCSOUND(0xffffffffffffffff, 0x4b2f, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
io_uring_setup(0x3eae, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x71})
syz_open_dev$vivid(&(0x7f0000000100), 0x1, 0x2)
r6 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r6, 0x10e, 0xc, &(0x7f0000000280)={0x4000, 0x2}, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000010c0)=ANY=[@ANYBLOB="200000001600010a00000000000000000a0000000c0000800800", @ANYRES16=r6], 0x20}, 0x1, 0x0, 0x0, 0x20040041}, 0x0)

804.332457ms ago: executing program 2 (id=864):
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000001a80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0xc0145b0e, &(0x7f0000000040))

695.24317ms ago: executing program 3 (id=865):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
pipe(&(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
vmsplice(r2, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
close(r2)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bond_slave_0\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="4400000010000100"/20, @ANYRES32=r4, @ANYBLOB="000024000000000024001200140001006272696467655f736c617665800000000c000500080005"], 0x3}}, 0xc5c73625624e60ec)
splice(r1, 0x0, r3, 0x0, 0x10d00, 0x0)
fallocate(r0, 0x0, 0x2000000, 0x10fff9)
lseek(r0, 0x1, 0x4)

633.896463ms ago: executing program 0 (id=866):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x10, 0x0, 0x0)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000002c0), 0x0, 0x2, 0x0)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, &(0x7f0000000a00)='wsync', 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_S_FMT(0xffffffffffffffff, 0xc0405626, &(0x7f0000000000)={0x0, 0x0, {0x9, 0x2000005, 0x100e, 0x3, 0x9, 0x6, 0x1, 0x5}})
r2 = msgget$private(0x0, 0x214)
msgctl$MSG_STAT_ANY(r2, 0xd, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
sched_setattr(0x0, 0x0, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x5)
creat(0x0, 0x0)
r4 = syz_usb_connect(0x0, 0x1cb, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000122f0d4071040403dfe4000000010902b901010000003f0904"], 0x0)
syz_usb_control_io$cdc_ncm(r4, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r4, 0x0, 0x0)
syz_usb_control_io(r4, 0x0, &(0x7f00000007c0)={0x84, &(0x7f0000000340)={0x20, 0x15, 0x1, "f1"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r4, 0x0, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r5 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r5, 0xc1205531, &(0x7f0000000080)={0x0, 0x83b, 0x0, 0x0, '\x00', '\x00', '\x00', 0x3, 0x4000, 0x0, 0x40000, "f900"})
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f0000000200)={'ip6tnl0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0x4, 0x0, 0x7, 0xfffffffa, 0x2c, @empty, @loopback={0xfec0ffff00000000, 0xffff8881114a4aa8}, 0x8000, 0x8000, 0x1}})
r7 = semget(0x2, 0x0, 0x70)
clock_gettime(0x0, &(0x7f0000000240)={<r8=>0x0, <r9=>0x0})
semtimedop(r7, &(0x7f00000001c0)=[{0x0, 0x6, 0x1000}, {0x1, 0x0, 0x800}, {0x0, 0xc6b7, 0x1000}, {0x0, 0x101, 0x800}, {0x2, 0xe4, 0x1800}, {0x3, 0x1}], 0x6, &(0x7f0000000280)={r8, r9+60000000})

471.874518ms ago: executing program 3 (id=867):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x4008032, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$video(&(0x7f00000004c0), 0x81, 0xa082)
ioctl$VIDIOC_G_FMT(r0, 0xc0d05605, &(0x7f0000000380)={0xd, @sliced={0x1800, [0x3, 0x95, 0x3, 0x2, 0xf8a, 0x7, 0xff, 0xd83, 0x0, 0x1ff, 0x3, 0x2e9, 0x46, 0x5, 0x0, 0x5, 0x4, 0xd, 0x9, 0x5, 0xd, 0xd, 0xd, 0x0, 0x5, 0x100, 0x0, 0xf7dd, 0x2, 0x1, 0x3, 0x5154, 0x4, 0x2794, 0x2, 0x200, 0x7, 0x9, 0x3a, 0xd, 0x0, 0xfffd, 0x8000, 0x9, 0x5, 0xad, 0x3, 0x5], 0x1}})
r1 = syz_open_dev$dri(0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, 0x0)
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r1, 0x100000000)
mremap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f00003eb000/0x1000)=nil)
syz_open_dev$sndmidi(&(0x7f0000000000), 0x5, 0x121880)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x84, 0x0, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x10500, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x2000)
write$cgroup_devices(0xffffffffffffffff, 0x0, 0xffdd)
pipe2(&(0x7f0000000040), 0x80)

201.139261ms ago: executing program 3 (id=868):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(r0, 0x89f9, &(0x7f0000000300)={'sit0\x00', &(0x7f00000001c0)={@rand_addr=' \x01\x00', @multicast1, 0x1a, 0x1f}})
getsockopt$IP_VS_SO_GET_SERVICES(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000001640)=""/139, &(0x7f0000000100)=0x8) (async)
r1 = add_key$user(&(0x7f0000000200), &(0x7f0000000440), &(0x7f00000000c0), 0x14b, 0xfffffffffffffffd) (async, rerun: 64)
r2 = add_key(&(0x7f0000000200)='user\x00', &(0x7f0000000240)={'syz', 0x0}, &(0x7f00000002c0)='4', 0xba, 0xfffffffffffffffe) (async, rerun: 64)
r3 = add_key$user(&(0x7f0000000540), &(0x7f0000000380)={'syz', 0x2}, &(0x7f0000000580)="ed", 0x1, 0xffffffffffffffff)
writev(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000000)="4d6bde9aecc7955e497ac0d6834d6a35f38c20dd9d1b6fc9bf16ca130b", 0x1d}], 0x1) (async)
r4 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0xb, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r4, 0xc2604110, &(0x7f0000000040)={0x0, [[0x9ef8, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x7fffffff], [0x10000, 0x0, 0x0, 0x0, 0x8001], [0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff]], '\x00', [{}, {0xfffffffd}, {}, {0x0, 0x0, 0x0, 0x1, 0x1}, {0x80000001, 0x0, 0x0, 0x1, 0x1}, {0x7fff, 0xfffffffa}, {}, {0x8000000, 0x8f96}], '\x00', 0x1000}) (async)
syz_usb_connect(0x0, 0x48, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000022546940fa0ae803d099010203010902360001"], 0x0)
r5 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r5, 0x7a7, &(0x7f0000000000)=0x10000)
r6 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r6, &(0x7f0000000380)=[{{&(0x7f0000000440)={0xa, 0x4e22, 0x4, @remote, 0x200000e}, 0x1c, &(0x7f00000005c0)}}], 0x1, 0x40) (async)
setsockopt$inet6_int(r6, 0x29, 0x4, &(0x7f0000000100)=0xfffffff2, 0x4) (async)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r5, 0x7a0, &(0x7f0000000100)={@local}) (async)
ioctl$IOCTL_VMCI_DATAGRAM_RECEIVE(r5, 0x7ac, &(0x7f0000000600)={0x0, 0x0, 0x9}) (async)
r7 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r7, 0x4008af30, &(0x7f0000000300)) (async)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r3, r1, r2}, 0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={'blake2b-256\x00'}}) (async, rerun: 32)
r8 = socket(0x10, 0x803, 0x0) (rerun: 32)
sendmsg$nl_route(r8, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000056000100000000f70000000007020000", @ANYRES32, @ANYBLOB="200001"], 0x38}}, 0x0) (async)
syz_usb_connect(0x0, 0x34, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000094ba78084e080110aeed010203010902220001000000000904000001437b6a00090501", @ANYRES32], 0x0) (async)
r9 = add_key$keyring(&(0x7f0000000400), &(0x7f0000000480)={'syz', 0x1}, 0x0, 0x0, r2)
r10 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r10, 0xc4c85512, &(0x7f0000000a40)={{0x0, 0x0, 0xfffffffe, 0x5, 'syz0\x00'}, 0x0, [0x0, 0xfffffffffffffffe, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffc, 0xffffffffffffff4e, 0xfffffffffffffffc, 0xffffffffffffffff, 0x0, 0x9, 0xfffffffffffffffe, 0x4000000000000, 0x0, 0xfffffffffffffff7, 0x0, 0x4, 0xe, 0x0, 0x0, 0x0, 0x2, 0xc5a, 0x2, 0x1, 0x0, 0x85, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0xfffffffffffffff0, 0x1, 0x6, 0x0, 0x0, 0x400, 0x5e, 0x1, 0x100000000000000, 0x0, 0x4, 0xc, 0x0, 0x200000000000, 0x3, 0xffffffffffffffff, 0xfffffffffffffffe, 0x0, 0x4000000000000001, 0x0, 0xfffffffffffffffc, 0x2, 0x0, 0x7, 0x0, 0xcb, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x2, 0xffffffffffffffff, 0x0, 0x7, 0x0, 0x0, 0x10001, 0xebf, 0x6, 0xfffffffffffffffb, 0x1, 0x0, 0x0, 0x6b, 0x7, 0xfffffffffffffffd, 0x101, 0xfffffffffffffffe, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x10008001, 0x3, 0x8001, 0x9, 0x0, 0x0, 0xf32, 0x11, 0x2, 0x0, 0x0, 0x8, 0x3, 0x0, 0x4, 0x0, 0x0, 0x4, 0x8, 0x0, 0x3, 0x2, 0xfffffffffffffffe, 0xae1, 0xfffffffffffffffc, 0xfffffffffffffffc, 0x0, 0x0, 0x2c80000000000000, 0x0, 0x20000000, 0x1, 0x1553, 0x6]})
add_key$keyring(&(0x7f0000000340), &(0x7f00000003c0)={'syz', 0x0}, 0x0, 0x0, r9)

146.013865ms ago: executing program 3 (id=869):
syz_open_dev$usbmon(&(0x7f0000004400), 0x187, 0x800)
r0 = syz_io_uring_setup(0x4169, &(0x7f0000000200)={0x0, 0x0, 0x10100, 0x0, 0x200000}, &(0x7f0000000480), &(0x7f0000000000)=<r1=>0x0)
syz_io_uring_setup(0xa94, &(0x7f0000000280)={0x0, 0x95b0, 0x400}, &(0x7f0000000340)=<r2=>0x0, &(0x7f00000005c0))
syz_io_uring_submit(r2, r1, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
r3 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VIDIOC_STREAMOFF(r3, 0x40045613, &(0x7f0000000000)=0xa)
io_uring_enter(r0, 0x48e9, 0x0, 0x0, 0x0, 0x0)
r4 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_SIOCETHTOOL(r4, 0x8993, &(0x7f0000001440)={'bond0\x00', &(0x7f0000001400)=@ethtool_link_settings={0x4c, 0x0, 0x0, 0x0, 0x0, 0x3}})

0s ago: executing program 3 (id=870):
r0 = socket$inet6(0xa, 0x1, 0x100)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'virt_wifi0\x00', <r1=>0x0})
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, &(0x7f0000000000)={@remote, r1}, 0x14)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x5, 0x12, r2, 0x4b553000)
r3 = socket$inet6(0xa, 0x80002, 0x0)
r4 = socket$kcm(0x21, 0x2, 0x2)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
sendmsg$kcm(r4, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e20, @remote}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001"], 0x18}, 0x0)
sendmsg$kcm(r4, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @dev}}, 0x80, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="1800000000000000100100000100000051d833483cc75dd6900000000000000004000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319e2e66d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001a00)=ANY=[], 0x10b8}, 0xff4c)
fsopen(&(0x7f0000000180)='nfsd\x00', 0x0)
close(0x3)
setsockopt$inet6_int(r3, 0x29, 0x1000000000021, &(0x7f0000000180)=0x1, 0x4)

kernel console output (not intermixed with test programs):

T7424] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  171.589074][ T7424] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  171.602913][   T48] plantronics 0003:047F:FFFF.0007: hiddev1,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  171.838737][   T48] usb 5-1: USB disconnect, device number 22
[  172.001987][ T1209] usb 1-1: reset high-speed USB device number 13 using dummy_hcd
[  172.331611][  T975] usb 3-1: USB disconnect, device number 15
[  172.971987][ T5891] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  173.051951][ T1209] usb 1-1: device descriptor read/64, error -71
[  173.088118][ T7457] fuse: Bad value for 'fd'
[  173.139800][ T5891] usb 2-1: config 0 has no interfaces?
[  173.157709][ T5891] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  173.166988][ T5891] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  173.176192][ T5891] usb 2-1: Product: syz
[  173.180682][ T5891] usb 2-1: Manufacturer: syz
[  173.185470][ T5891] usb 2-1: SerialNumber: syz
[  173.200991][ T5891] usb 2-1: config 0 descriptor??
[  173.312063][ T1209] usb 1-1: reset high-speed USB device number 13 using dummy_hcd
[  173.409384][   T30] audit: type=1326 audit(1743799722.800:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7460 comm="syz.3.476" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb55ff8d169 code=0x0
[  173.489828][ T7464] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  173.969311][ T1209] usb 1-1: device firmware changed
[  173.979079][ T5895] usb 1-1: USB disconnect, device number 13
[  174.059612][ T7472] fuse: Unknown parameter '0x0000000000000003'
[  174.142044][ T5895] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  174.328150][ T5895] usb 1-1: Using ep0 maxpacket: 32
[  174.346577][ T5895] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  174.380799][ T5895] usb 1-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  174.453601][ T5895] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  174.484470][ T5895] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  174.550968][ T5895] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  174.575355][ T5895] usb 1-1: Product: syz
[  174.581313][ T5895] usb 1-1: Manufacturer: syz
[  174.586981][ T5895] usb 1-1: SerialNumber: syz
[  174.702458][ T7494] fuse: Bad value for 'fd'
[  174.712842][ T5856] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  174.887615][ T7499] netlink: 4 bytes leftover after parsing attributes in process `syz.4.486'.
[  174.946989][ T5856] usb 4-1: Using ep0 maxpacket: 32
[  174.975116][ T5856] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  175.095496][ T5895] usb 1-1: 2:1 : no or invalid class specific endpoint descriptor
[  175.125792][ T5856] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  175.205939][ T5856] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  175.312063][ T5856] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  175.371757][ T5891] usb 2-1: USB disconnect, device number 15
[  175.437716][ T5895] usb 1-1: USB disconnect, device number 14
[  175.455806][ T5856] usb 4-1: config 0 descriptor??
[  175.463204][ T7506] loop6: detected capacity change from 0 to 524287999
[  175.512001][ T7506] Invalid logical block size (-9)
[  175.855234][ T7514] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  175.895538][ T7022] udevd[7022]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  175.961947][  T975] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  176.022281][ T5856] savu 0003:1E7D:2D5A.0008: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.3-1/input0
[  176.172528][ T7526] fuse: Bad value for 'fd'
[  176.188617][  T975] usb 2-1: config 0 has no interfaces?
[  176.214796][  T975] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  176.236589][  T975] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  176.325048][  T975] usb 2-1: Product: syz
[  176.336755][  T975] usb 2-1: Manufacturer: syz
[  176.345415][  T975] usb 2-1: SerialNumber: syz
[  176.371034][  T975] usb 2-1: config 0 descriptor??
[  176.497582][ T7533] netlink: 4 bytes leftover after parsing attributes in process `syz.2.498'.
[  176.605027][ T5856] usb 2-1: USB disconnect, device number 16
[  176.896915][ T5838] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  176.941167][ T7543] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  177.061944][ T5838] usb 1-1: Using ep0 maxpacket: 8
[  177.074523][ T7545] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  177.083596][ T7545] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  177.102296][ T5838] usb 1-1: unable to get BOS descriptor or descriptor too short
[  177.148609][ T5838] usb 1-1: unable to read config index 0 descriptor/start: -71
[  177.170098][ T5838] usb 1-1: can't read configurations, error -71
[  177.342199][ T5856] usb 4-1: reset high-speed USB device number 26 using dummy_hcd
[  177.963692][ T7566] netlink: 4 bytes leftover after parsing attributes in process `syz.2.511'.
[  178.219221][ T5856] usb 4-1: device descriptor read/64, error -71
[  178.462291][ T5856] usb 4-1: reset high-speed USB device number 26 using dummy_hcd
[  178.543813][ T7574] netlink: 24 bytes leftover after parsing attributes in process `syz.4.515'.
[  178.555075][ T5856] usb 4-1: device reset changed ep0 maxpacket size!
[  178.586431][ T5895] usb 4-1: USB disconnect, device number 26
[  178.621950][ T5891] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  178.812418][ T5895] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  178.817108][ T5891] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  178.857825][ T5891] usb 3-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d
[  178.871175][ T5891] usb 3-1: New USB device strings: Mfr=32, Product=0, SerialNumber=9
[  178.910676][ T5891] usb 3-1: Manufacturer: syz
[  178.922840][ T5891] usb 3-1: SerialNumber: syz
[  178.949686][ T5891] usb 3-1: config 0 descriptor??
[  178.967595][ T5891] usb 3-1: Found UVC 0.00 device <unnamed> (046d:08c1)
[  178.975251][ T5891] usb 3-1: No valid video chain found.
[  179.087159][ T5895] usb 4-1: config 0 has no interfaces?
[  179.107880][ T5895] usb 4-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  179.192184][ T5891] usb 3-1: USB disconnect, device number 16
[  179.225656][ T5895] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.283077][ T5895] usb 4-1: Product: syz
[  179.287363][ T5895] usb 4-1: Manufacturer: syz
[  179.292142][ T5895] usb 4-1: SerialNumber: syz
[  179.306082][ T5895] usb 4-1: config 0 descriptor??
[  179.554769][ T7558] macvlan0: entered promiscuous mode
[  179.566406][ T7558] batadv0: entered promiscuous mode
[  179.575562][ T7558] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[  179.583564][ T7558] Cannot create hsr debugfs directory
[  179.684854][ T5891] usb 2-1: new full-speed USB device number 17 using dummy_hcd
[  179.888427][ T5891] usb 2-1: config 4 has 0 interfaces, different from the descriptor's value: 1
[  179.901356][ T5891] usb 2-1: New USB device found, idVendor=0fe9, idProduct=db71, bcdDevice=53.3e
[  179.910687][ T5891] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.923049][ T5891] usb 2-1: Product: syz
[  179.927218][ T5891] usb 2-1: Manufacturer: syz
[  179.943490][ T5891] usb 2-1: SerialNumber: syz
[  179.980500][ T7606] netlink: 4 bytes leftover after parsing attributes in process `syz.2.523'.
[  180.187928][ T7595] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  180.215392][ T7595] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  180.411935][ T5856] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  180.563765][ T5856] usb 1-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  180.585782][ T5856] usb 1-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[  180.595672][ T5856] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.636936][ T5856] gspca_main: stv0680-2.14.0 probing 041e:4007
[  180.841248][ T7622] fuse: Bad value for 'group_id'
[  180.846489][ T7622] fuse: Bad value for 'group_id'
[  180.863772][ T7622] xt_hashlimit: size too large, truncated to 1048576
[  180.994696][ T1209] usb 4-1: USB disconnect, device number 27
[  181.320553][ T7635] netlink: 64 bytes leftover after parsing attributes in process `syz.2.533'.
[  181.547480][ T7638] netlink: 4 bytes leftover after parsing attributes in process `syz.2.534'.
[  182.105330][ T1209] usb 4-1: new full-speed USB device number 28 using dummy_hcd
[  182.182282][ T5856] gspca_stv0680: usb_control_msg error 0, request = 0x88, error = -110
[  182.192751][ T5856] stv0680 1-1:4.0: STV(e): camera ping failed!!
[  182.200354][ T5856] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -32
[  182.215061][ T5856] stv0680 1-1:4.0: last error: 0,  command = 0x0
[  182.291920][ T1209] usb 4-1: device descriptor read/64, error -71
[  182.360831][ T5856] usb 2-1: USB disconnect, device number 17
[  182.403492][ T5895] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  182.543525][ T1209] usb 4-1: new full-speed USB device number 29 using dummy_hcd
[  182.582527][ T5895] usb 5-1: Using ep0 maxpacket: 8
[  182.590216][ T5895] usb 5-1: unable to get BOS descriptor or descriptor too short
[  182.599696][ T5895] usb 5-1: config 9 has an invalid interface number: 121 but max is 1
[  182.608562][ T5895] usb 5-1: config 9 has an invalid interface number: 93 but max is 1
[  182.617350][ T5895] usb 5-1: config 9 has no interface number 0
[  182.634633][ T5895] usb 5-1: config 9 has no interface number 1
[  182.659939][ T5895] usb 5-1: config 9 interface 121 has no altsetting 0
[  182.681972][ T1209] usb 4-1: device descriptor read/64, error -71
[  182.709807][ T5895] usb 5-1: config 9 interface 93 has no altsetting 0
[  182.719777][ T5895] usb 5-1: New USB device found, idVendor=0499, idProduct=1018, bcdDevice=35.13
[  182.731263][ T5895] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  182.739601][ T5895] usb 5-1: Product: syz
[  182.744266][ T5895] usb 5-1: Manufacturer: syz
[  182.748940][ T5895] usb 5-1: SerialNumber: syz
[  182.792545][ T1209] usb usb4-port1: attempt power cycle
[  182.867669][ T5838] usb 1-1: USB disconnect, device number 17
[  182.985204][ T5895] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  183.012200][ T5895] snd-usb-audio 5-1:9.121: probe with driver snd-usb-audio failed with error -2
[  183.082414][ T5895] usb 5-1: Found UVC 0.00 device syz (0499:1018)
[  183.099105][ T5895] usb 5-1: No valid video chain found.
[  183.113729][ T5895] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  183.134061][ T1209] usb 4-1: new full-speed USB device number 30 using dummy_hcd
[  183.163776][ T1209] usb 4-1: device descriptor read/8, error -71
[  183.174444][ T5895] snd-usb-audio 5-1:9.93: probe with driver snd-usb-audio failed with error -2
[  183.193948][ T5895] usb 5-1: USB disconnect, device number 23
[  183.332177][ T5838] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  183.421949][ T1209] usb 4-1: new full-speed USB device number 31 using dummy_hcd
[  183.433689][ T6401] udevd[6401]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:9.93/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  183.451463][ T1209] usb 4-1: device descriptor read/8, error -71
[  183.505962][ T5838] usb 1-1: Using ep0 maxpacket: 8
[  183.521366][ T5838] usb 1-1: config 1 interface 0 has no altsetting 0
[  183.548521][ T5838] usb 1-1: New USB device found, idVendor=0d8c, idProduct=0014, bcdDevice= 0.40
[  183.563771][ T1209] usb usb4-port1: unable to enumerate USB device
[  183.568052][ T5838] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.579808][ T7672] netlink: 'syz.4.546': attribute type 11 has an invalid length.
[  183.588566][ T5838] usb 1-1: Product: 옪㱎Ꟛ䜥
[  183.598717][ T5838] usb 1-1: Manufacturer: ⇡㕹ե⋝쏢杪ﬓ셌म╢陑噏ツ⼌⛲ⱏ墺⊑ꏫ㰟蛉ᯛ영디鏝곛랶ꉠꐊ፱ߝ큕龌牨㵸⎑깅簾꼕ȓ褻⿩睄혺Ùꞣꦾ᭷យ蓋鑡ᯛ釻ඁ菊窄괛它탙鑪窛⪀搦줠甜䋖ȼ㧹퀘᭔虇崌遼⿷ꊹ∑턥Ὼ孈ﰆ擞ꃶꏏ礚쵝
[  183.628030][ T5838] usb 1-1: SerialNumber: 墋흎堮㇍骔땽๭獰㡵ϋắኲ䎘䯰茡剻耘牻ꔦ蠖軐孋䵪췊⓵세삲啒⊣朼ف哒썂㍯쒏毡특템ꓤꓺꖉ唲
[  183.886023][ T7661] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  183.895569][ T7661] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  183.924083][ T5838] usbhid 1-1:1.0: can't add hid device: -71
[  183.933538][ T5838] usbhid 1-1:1.0: probe with driver usbhid failed with error -71
[  183.950053][ T5838] usb 1-1: USB disconnect, device number 18
[  184.801909][   T48] usb 2-1: new full-speed USB device number 18 using dummy_hcd
[  184.825260][   T30] audit: type=1326 audit(1743799734.205:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.4.555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afc18d169 code=0x7ffc0000
[  184.862419][   T30] audit: type=1326 audit(1743799734.205:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.4.555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afc18d169 code=0x7ffc0000
[  184.906918][   T30] audit: type=1326 audit(1743799734.215:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.4.555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5afc18bad0 code=0x7ffc0000
[  184.944349][   T30] audit: type=1326 audit(1743799734.215:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.4.555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5afc18bad0 code=0x7ffc0000
[  184.976441][   T30] audit: type=1326 audit(1743799734.215:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.4.555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afc18d169 code=0x7ffc0000
[  185.000697][   T30] audit: type=1326 audit(1743799734.215:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.4.555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afc18d169 code=0x7ffc0000
[  185.025606][   T48] usb 2-1: config 4 has 0 interfaces, different from the descriptor's value: 1
[  185.047318][ T7710] FAULT_INJECTION: forcing a failure.
[  185.047318][ T7710] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  185.054162][   T48] usb 2-1: New USB device found, idVendor=0fe9, idProduct=db71, bcdDevice=53.3e
[  185.067447][ T7710] CPU: 0 UID: 0 PID: 7710 Comm: syz.3.558 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  185.067470][ T7710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  185.067480][ T7710] Call Trace:
[  185.067487][ T7710]  <TASK>
[  185.067493][ T7710]  dump_stack_lvl+0x241/0x360
[  185.067524][ T7710]  ? __pfx_dump_stack_lvl+0x10/0x10
[  185.067547][ T7710]  ? __pfx__printk+0x10/0x10
[  185.067579][ T7710]  should_fail_ex+0x424/0x570
[  185.067601][ T7710]  prepare_alloc_pages+0x220/0x610
[  185.067628][ T7710]  __alloc_frozen_pages_noprof+0x162/0x5b0
[  185.067651][ T7710]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  185.067670][ T7710]  ? _copy_from_iter+0x161/0x1c70
[  185.067692][ T7710]  ? rep_movs_alternative+0x4a/0x70
[  185.067726][ T7710]  alloc_pages_mpol+0x339/0x690
[  185.067752][ T7710]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  185.067784][ T7710]  alloc_pages_noprof+0x121/0x190
[  185.067808][ T7710]  af_alg_sendmsg+0x142b/0x24d0
[  185.067828][ T7710]  ? __pfx___might_resched+0x10/0x10
[  185.067869][ T7710]  ? __pfx_af_alg_sendmsg+0x10/0x10
[  185.067891][ T7710]  ? __pfx_aa_sk_perm+0x10/0x10
[  185.067915][ T7710]  ? aa_sock_msg_perm+0x91/0x160
[  185.067937][ T7710]  ? skcipher_sendmsg+0x28/0xf0
[  185.067959][ T7710]  ? __pfx_skcipher_sendmsg+0x10/0x10
[  185.067977][ T7710]  __sock_sendmsg+0x221/0x270
[  185.068001][ T7710]  ____sys_sendmsg+0x523/0x860
[  185.068028][ T7710]  ? __pfx_____sys_sendmsg+0x10/0x10
[  185.068042][ T7710]  ? __fget_files+0x2a/0x420
[  185.068060][ T7710]  ? __fget_files+0x2a/0x420
[  185.068083][ T7710]  __sys_sendmmsg+0x3a0/0x7b0
[  185.068112][ T7710]  ? __pfx___sys_sendmmsg+0x10/0x10
[  185.068163][ T7710]  ? rcu_read_lock_any_held+0xbb/0x160
[  185.068184][ T7710]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  185.068208][ T7710]  ? vfs_write+0xb29/0xd10
[  185.068236][ T7710]  ? ksys_write+0x24e/0x2d0
[  185.068257][ T7710]  ? __mutex_unlock_slowpath+0x229/0x800
[  185.068304][ T7710]  ? ksys_write+0x275/0x2d0
[  185.068333][ T7710]  __x64_sys_sendmmsg+0xa0/0xb0
[  185.068353][ T7710]  do_syscall_64+0xf3/0x230
[  185.068377][ T7710]  ? clear_bhb_loop+0x45/0xa0
[  185.068400][ T7710]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.068415][ T7710] RIP: 0033:0x7fb55ff8d169
[  185.068430][ T7710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.068444][ T7710] RSP: 002b:00007fb560e45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  185.068463][ T7710] RAX: ffffffffffffffda RBX: 00007fb5601a5fa0 RCX: 00007fb55ff8d169
[  185.068475][ T7710] RDX: 04924924924924b9 RSI: 0000200000000400 RDI: 0000000000000004
[  185.068486][ T7710] RBP: 00007fb560e45090 R08: 0000000000000000 R09: 0000000000000000
[  185.068496][ T7710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  185.068507][ T7710] R13: 0000000000000000 R14: 00007fb5601a5fa0 R15: 00007fb5602cfa28
[  185.068534][ T7710]  </TASK>
[  185.068628][   T30] audit: type=1326 audit(1743799734.215:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.4.555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f5afc18d169 code=0x7ffc0000
[  185.072380][   T48] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  185.108474][   T30] audit: type=1326 audit(1743799734.215:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.4.555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afc18d169 code=0x7ffc0000
[  185.109507][ T1209] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  185.120667][   T30] audit: type=1326 audit(1743799734.215:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.4.555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5afc18d169 code=0x7ffc0000
[  185.129598][   T48] usb 2-1: Product: syz
[  185.166083][   T30] audit: type=1326 audit(1743799734.215:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.4.555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5afc18d169 code=0x7ffc0000
[  185.186340][   T48] usb 2-1: Manufacturer: syz
[  185.476016][   T48] usb 2-1: SerialNumber: syz
[  185.553961][ T1209] usb 5-1: Using ep0 maxpacket: 16
[  185.565840][ T1209] usb 5-1: config 0 has an invalid interface number: 107 but max is 0
[  185.574913][ T1209] usb 5-1: config 0 has no interface number 0
[  185.581033][ T1209] usb 5-1: config 0 interface 107 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[  185.634173][ T1209] usb 5-1: config 0 interface 107 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  185.671912][ T1209] usb 5-1: New USB device found, idVendor=06cd, idProduct=0131, bcdDevice=16.60
[  185.680976][ T1209] usb 5-1: New USB device strings: Mfr=175, Product=2, SerialNumber=3
[  185.720341][ T1209] usb 5-1: Product: syz
[  185.745275][ T1209] usb 5-1: Manufacturer: syz
[  185.749900][ T1209] usb 5-1: SerialNumber: syz
[  185.755353][ T7679] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  185.767299][ T1209] usb 5-1: config 0 descriptor??
[  185.777225][ T1209] keyspan 5-1:0.107: Keyspan 4 port adapter converter detected
[  185.792667][ T7679] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  185.796828][ T1209] keyspan 5-1:0.107: found no endpoint descriptor for endpoint 81
[  185.839323][ T1209] keyspan 5-1:0.107: found no endpoint descriptor for endpoint 1
[  185.880525][ T1209] usb 5-1: Keyspan 4 port adapter converter now attached to ttyUSB0
[  185.913612][ T1209] keyspan 5-1:0.107: found no endpoint descriptor for endpoint 2
[  185.927761][ T1209] usb 5-1: Keyspan 4 port adapter converter now attached to ttyUSB1
[  185.939183][ T1209] keyspan 5-1:0.107: found no endpoint descriptor for endpoint 4
[  185.951632][ T1209] usb 5-1: Keyspan 4 port adapter converter now attached to ttyUSB2
[  185.962265][ T1209] keyspan 5-1:0.107: found no endpoint descriptor for endpoint 6
[  185.972089][ T1209] usb 5-1: Keyspan 4 port adapter converter now attached to ttyUSB3
[  186.492001][ T1209] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  186.526305][ T5891] usb 5-1: USB disconnect, device number 24
[  186.541981][ T5895] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  186.572527][ T5891] keyspan_4 ttyUSB0: Keyspan 4 port adapter converter now disconnected from ttyUSB0
[  186.597635][ T5891] keyspan_4 ttyUSB1: Keyspan 4 port adapter converter now disconnected from ttyUSB1
[  186.626259][ T5891] keyspan_4 ttyUSB2: Keyspan 4 port adapter converter now disconnected from ttyUSB2
[  186.653481][ T5891] keyspan_4 ttyUSB3: Keyspan 4 port adapter converter now disconnected from ttyUSB3
[  186.678571][ T1209] usb 1-1: config 0 has no interfaces?
[  186.682824][ T5891] keyspan 5-1:0.107: device disconnected
[  186.692393][ T5895] usb 3-1: Using ep0 maxpacket: 8
[  186.704337][ T1209] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  186.731192][ T1209] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  186.811062][ T5895] usb 3-1: unable to get BOS descriptor or descriptor too short
[  186.880352][ T1209] usb 1-1: Product: syz
[  186.907273][ T5895] usb 3-1: unable to read config index 0 descriptor/start: -71
[  186.932117][ T1209] usb 1-1: Manufacturer: syz
[  186.961466][ T1209] usb 1-1: SerialNumber: syz
[  186.967876][ T5895] usb 3-1: can't read configurations, error -71
[  187.006838][ T1209] usb 1-1: config 0 descriptor??
[  187.543323][ T7761] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[  187.752643][ T5838] usb 2-1: USB disconnect, device number 18
[  188.193441][ T7772] netlink: 'syz.4.577': attribute type 10 has an invalid length.
[  188.282396][ T7772] bridge0: port 2(bridge_slave_1) entered blocking state
[  188.289612][ T7772] bridge0: port 2(bridge_slave_1) entered forwarding state
[  188.297358][ T7772] bridge0: port 1(bridge_slave_0) entered blocking state
[  188.304525][ T7772] bridge0: port 1(bridge_slave_0) entered forwarding state
[  188.404634][ T7772] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  188.469721][ T7777] FAULT_INJECTION: forcing a failure.
[  188.469721][ T7777] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  188.483362][ T7777] CPU: 0 UID: 0 PID: 7777 Comm: syz.2.579 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  188.483376][ T7777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  188.483382][ T7777] Call Trace:
[  188.483386][ T7777]  <TASK>
[  188.483391][ T7777]  dump_stack_lvl+0x241/0x360
[  188.483410][ T7777]  ? __pfx_dump_stack_lvl+0x10/0x10
[  188.483424][ T7777]  ? __pfx__printk+0x10/0x10
[  188.483443][ T7777]  should_fail_ex+0x424/0x570
[  188.483456][ T7777]  _copy_from_iter+0x211/0x1c70
[  188.483471][ T7777]  ? __build_skb_around+0x247/0x3d0
[  188.483487][ T7777]  ? __alloc_skb+0x298/0x480
[  188.483500][ T7777]  ? __pfx__copy_from_iter+0x10/0x10
[  188.483513][ T7777]  ? __pfx___alloc_skb+0x10/0x10
[  188.483527][ T7777]  ? skb_put+0x114/0x1f0
[  188.483538][ T7777]  netlink_sendmsg+0x73c/0xcd0
[  188.483557][ T7777]  ? __pfx_netlink_sendmsg+0x10/0x10
[  188.483572][ T7777]  ? aa_sock_msg_perm+0x91/0x160
[  188.483588][ T7777]  ? __pfx_netlink_sendmsg+0x10/0x10
[  188.483599][ T7777]  __sock_sendmsg+0x221/0x270
[  188.483612][ T7777]  ____sys_sendmsg+0x523/0x860
[  188.483627][ T7777]  ? __pfx_____sys_sendmsg+0x10/0x10
[  188.483635][ T7777]  ? __fget_files+0x2a/0x420
[  188.483646][ T7777]  ? __fget_files+0x2a/0x420
[  188.483658][ T7777]  __sys_sendmsg+0x271/0x360
[  188.483670][ T7777]  ? __pfx___sys_sendmsg+0x10/0x10
[  188.483706][ T7777]  ? do_syscall_64+0xb6/0x230
[  188.483719][ T7777]  do_syscall_64+0xf3/0x230
[  188.483730][ T7777]  ? clear_bhb_loop+0x45/0xa0
[  188.483741][ T7777]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.483749][ T7777] RIP: 0033:0x7f253a78d169
[  188.483759][ T7777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.483767][ T7777] RSP: 002b:00007f253b5e4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  188.483778][ T7777] RAX: ffffffffffffffda RBX: 00007f253a9a5fa0 RCX: 00007f253a78d169
[  188.483785][ T7777] RDX: 0000000024040084 RSI: 0000200000006040 RDI: 0000000000000008
[  188.483791][ T7777] RBP: 00007f253b5e4090 R08: 0000000000000000 R09: 0000000000000000
[  188.483797][ T7777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  188.483802][ T7777] R13: 0000000000000000 R14: 00007f253a9a5fa0 R15: 00007f253aacfa28
[  188.483817][ T7777]  </TASK>
[  188.880559][ T7785] tun0: tun_chr_ioctl cmd 1074025675
[  188.885924][ T7785] tun0: persist disabled
[  188.891254][ T7785] tun0: tun_chr_ioctl cmd 1074025672
[  188.896607][ T7785] tun0: ignored: set checksum disabled
[  189.166527][ T7787] netlink: 36 bytes leftover after parsing attributes in process `syz.1.581'.
[  189.241941][ T5838] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  189.396530][ T5838] usb 5-1: config index 0 descriptor too short (expected 14385, got 441)
[  189.405266][ T5838] usb 5-1: config 52 has too many interfaces: 52, using maximum allowed: 32
[  189.423304][ T5838] usb 5-1: config 52 has an invalid descriptor of length 0, skipping remainder of the config
[  189.441801][ T5838] usb 5-1: config 52 has 0 interfaces, different from the descriptor's value: 52
[  189.469196][ T5838] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  189.554151][ T5838] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  189.721940][ T5895] usb 3-1: new full-speed USB device number 19 using dummy_hcd
[  189.787091][ T5838] usb 5-1: language id specifier not provided by device, defaulting to English
[  189.840056][ T5930] usb 1-1: USB disconnect, device number 19
[  189.883976][ T5895] usb 3-1: config 4 has 0 interfaces, different from the descriptor's value: 1
[  189.920556][ T5895] usb 3-1: New USB device found, idVendor=0fe9, idProduct=db71, bcdDevice=53.3e
[  189.929945][ T5895] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  189.950527][ T5895] usb 3-1: Product: syz
[  189.961940][ T5895] usb 3-1: Manufacturer: syz
[  189.967336][ T5895] usb 3-1: SerialNumber: syz
[  190.026284][ T5838] usb 5-1: USB disconnect, device number 25
[  190.238396][ T7798] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  190.272659][ T7798] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  190.348034][ T7824] FAULT_INJECTION: forcing a failure.
[  190.348034][ T7824] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  190.366534][ T7824] CPU: 1 UID: 0 PID: 7824 Comm: syz.0.592 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  190.366557][ T7824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  190.366567][ T7824] Call Trace:
[  190.366574][ T7824]  <TASK>
[  190.366581][ T7824]  dump_stack_lvl+0x241/0x360
[  190.366611][ T7824]  ? __pfx_dump_stack_lvl+0x10/0x10
[  190.366633][ T7824]  ? __pfx__printk+0x10/0x10
[  190.366666][ T7824]  should_fail_ex+0x424/0x570
[  190.366688][ T7824]  _copy_to_user+0x31/0xb0
[  190.366713][ T7824]  simple_read_from_buffer+0xc4/0x170
[  190.366741][ T7824]  proc_fail_nth_read+0x1ef/0x260
[  190.366761][ T7824]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  190.366781][ T7824]  ? rw_verify_area+0x246/0x630
[  190.366798][ T7824]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  190.366817][ T7824]  vfs_read+0x21f/0xb90
[  190.366840][ T7824]  ? __pfx___mutex_lock+0x10/0x10
[  190.366860][ T7824]  ? __pfx_vfs_read+0x10/0x10
[  190.366889][ T7824]  ? __fget_files+0x2a/0x420
[  190.366906][ T7824]  ? __fget_files+0x39d/0x420
[  190.366920][ T7824]  ? __fget_files+0x2a/0x420
[  190.366944][ T7824]  ksys_read+0x19d/0x2d0
[  190.366965][ T7824]  ? __pfx_ksys_read+0x10/0x10
[  190.366990][ T7824]  ? do_syscall_64+0xb6/0x230
[  190.367012][ T7824]  do_syscall_64+0xf3/0x230
[  190.367031][ T7824]  ? clear_bhb_loop+0x45/0xa0
[  190.367051][ T7824]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.367067][ T7824] RIP: 0033:0x7ff3a8d8bb7c
[  190.367082][ T7824] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  190.367096][ T7824] RSP: 002b:00007ff3a9c5e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  190.367114][ T7824] RAX: ffffffffffffffda RBX: 00007ff3a8fa5fa0 RCX: 00007ff3a8d8bb7c
[  190.367127][ T7824] RDX: 000000000000000f RSI: 00007ff3a9c5e0a0 RDI: 0000000000000004
[  190.367137][ T7824] RBP: 00007ff3a9c5e090 R08: 0000000000000000 R09: 0000000000000000
[  190.367148][ T7824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  190.367158][ T7824] R13: 0000000000000000 R14: 00007ff3a8fa5fa0 R15: 00007ff3a90cfa28
[  190.367186][ T7824]  </TASK>
[  190.388805][ T7826] FAULT_INJECTION: forcing a failure.
[  190.388805][ T7826] name failslab, interval 1, probability 0, space 0, times 0
[  190.393477][    C1] vkms_vblank_simulate: vblank timer overrun
[  190.401469][ T7826] CPU: 0 UID: 0 PID: 7826 Comm: syz.3.594 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  190.401491][ T7826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  190.401501][ T7826] Call Trace:
[  190.401507][ T7826]  <TASK>
[  190.401514][ T7826]  dump_stack_lvl+0x241/0x360
[  190.401544][ T7826]  ? __pfx_dump_stack_lvl+0x10/0x10
[  190.401566][ T7826]  ? __pfx__printk+0x10/0x10
[  190.401592][ T7826]  ? __pfx___might_resched+0x10/0x10
[  190.401616][ T7826]  should_fail_ex+0x424/0x570
[  190.401647][ T7826]  should_failslab+0xac/0x100
[  190.401671][ T7826]  kmem_cache_alloc_noprof+0x78/0x390
[  190.401691][ T7826]  ? __kernfs_new_node+0xdf/0x890
[  190.401713][ T7826]  __kernfs_new_node+0xdf/0x890
[  190.401730][ T7826]  ? __lock_acquire+0xad5/0xd80
[  190.401753][ T7826]  ? __pfx___kernfs_new_node+0x10/0x10
[  190.401780][ T7826]  ? kernfs_root+0x1c/0x230
[  190.401796][ T7826]  ? kernfs_root+0x1c/0x230
[  190.401815][ T7826]  kernfs_new_node+0x114/0x220
[  190.401841][ T7826]  __kernfs_create_file+0x49/0x2e0
[  190.401865][ T7826]  sysfs_add_file_mode_ns+0x24a/0x310
[  190.401894][ T7826]  internal_create_group+0x7ea/0x1320
[  190.401911][ T7826]  ? kernfs_add_one+0xf8/0x530
[  190.401940][ T7826]  ? __pfx_internal_create_group+0x10/0x10
[  190.401969][ T7826]  sysfs_create_groups+0x56/0x120
[  190.401987][ T7826]  device_add_attrs+0xef/0x670
[  190.402010][ T7826]  ? __pfx_device_add_attrs+0x10/0x10
[  190.402038][ T7826]  device_add+0x576/0xbf0
[  190.402057][ T7826]  ? device_initialize+0x266/0x460
[  190.402077][ T7826]  netdev_register_kobject+0x157/0x2f0
[  190.402099][ T7826]  register_netdevice+0x12b0/0x1b80
[  190.402133][ T7826]  ? __pfx_register_netdevice+0x10/0x10
[  190.402155][ T7826]  ? __kasan_kmalloc+0x9d/0xb0
[  190.402180][ T7826]  ? register_vlan_dev+0x345/0x820
[  190.402207][ T7826]  register_vlan_dev+0x38f/0x820
[  190.402238][ T7826]  vlan_newlink+0x4a7/0x5f0
[  190.402257][ T7826]  ? __pfx_vlan_newlink+0x10/0x10
[  190.402276][ T7826]  rtnl_newlink_create+0x39b/0xcb0
[  190.402300][ T7826]  ? __mutex_lock+0x380/0x10c0
[  190.402321][ T7826]  ? __pfx_aa_get_newest_label+0x10/0x10
[  190.402346][ T7826]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  190.402372][ T7826]  ? __pfx___mutex_lock+0x10/0x10
[  190.402399][ T7826]  ? ns_capable+0x8a/0xf0
[  190.402420][ T7826]  rtnl_newlink+0x18b0/0x1fe0
[  190.402442][ T7826]  ? stack_depot_save_flags+0x44/0x940
[  190.402474][ T7826]  ? __pfx_rtnl_newlink+0x10/0x10
[  190.402491][ T7826]  ? __netlink_deliver_tap+0x561/0x7f0
[  190.402510][ T7826]  ? netlink_deliver_tap+0x19d/0x1b0
[  190.402528][ T7826]  ? netlink_unicast+0x7c6/0x9a0
[  190.402543][ T7826]  ? netlink_sendmsg+0x8c3/0xcd0
[  190.402561][ T7826]  ? __sock_sendmsg+0x221/0x270
[  190.402579][ T7826]  ? ____sys_sendmsg+0x523/0x860
[  190.402592][ T7826]  ? __sys_sendmsg+0x271/0x360
[  190.402606][ T7826]  ? do_syscall_64+0xf3/0x230
[  190.402621][ T7826]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.402678][ T7826]  ? kasan_quarantine_put+0xdc/0x230
[  190.402693][ T7826]  ? lockdep_hardirqs_on+0x9d/0x150
[  190.402713][ T7826]  ? nlmon_xmit+0xaf/0x100
[  190.402743][ T7826]  ? __local_bh_enable_ip+0x168/0x200
[  190.402757][ T7826]  ? lockdep_hardirqs_on+0x9d/0x150
[  190.402782][ T7826]  ? aa_get_newest_label+0x101/0x6f0
[  190.402809][ T7826]  ? __lock_acquire+0xad5/0xd80
[  190.402846][ T7826]  ? __pfx_rtnl_newlink+0x10/0x10
[  190.402868][ T7826]  rtnetlink_rcv_msg+0x80f/0xd70
[  190.402886][ T7826]  ? rtnetlink_rcv_msg+0x1ba/0xd70
[  190.402911][ T7826]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  190.402938][ T7826]  ? ref_tracker_free+0x63e/0x7e0
[  190.402963][ T7826]  netlink_rcv_skb+0x208/0x480
[  190.402984][ T7826]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  190.403006][ T7826]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  190.403044][ T7826]  ? netlink_deliver_tap+0x2e/0x1b0
[  190.403066][ T7826]  ? netlink_deliver_tap+0x2e/0x1b0
[  190.403088][ T7826]  netlink_unicast+0x7f8/0x9a0
[  190.403116][ T7826]  ? __pfx_netlink_unicast+0x10/0x10
[  190.403137][ T7826]  ? skb_put+0x114/0x1f0
[  190.403156][ T7826]  netlink_sendmsg+0x8c3/0xcd0
[  190.403188][ T7826]  ? __pfx_netlink_sendmsg+0x10/0x10
[  190.403213][ T7826]  ? aa_sock_msg_perm+0x91/0x160
[  190.403239][ T7826]  ? __pfx_netlink_sendmsg+0x10/0x10
[  190.403257][ T7826]  __sock_sendmsg+0x221/0x270
[  190.403280][ T7826]  ____sys_sendmsg+0x523/0x860
[  190.403305][ T7826]  ? __pfx_____sys_sendmsg+0x10/0x10
[  190.403319][ T7826]  ? __fget_files+0x2a/0x420
[  190.403337][ T7826]  ? __fget_files+0x2a/0x420
[  190.403361][ T7826]  __sys_sendmsg+0x271/0x360
[  190.403383][ T7826]  ? __pfx___sys_sendmsg+0x10/0x10
[  190.403452][ T7826]  ? do_syscall_64+0xb6/0x230
[  190.403472][ T7826]  do_syscall_64+0xf3/0x230
[  190.403490][ T7826]  ? clear_bhb_loop+0x45/0xa0
[  190.403509][ T7826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.403524][ T7826] RIP: 0033:0x7fb55ff8d169
[  190.403538][ T7826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.403551][ T7826] RSP: 002b:00007fb560e45038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  190.403568][ T7826] RAX: ffffffffffffffda RBX: 00007fb5601a5fa0 RCX: 00007fb55ff8d169
[  190.403580][ T7826] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[  190.403590][ T7826] RBP: 00007fb560e45090 R08: 0000000000000000 R09: 0000000000000000
[  190.403600][ T7826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  190.403609][ T7826] R13: 0000000000000000 R14: 00007fb5601a5fa0 R15: 00007fb5602cfa28
[  190.403641][ T7826]  </TASK>
[  190.432076][ T5930] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  190.433620][    C1] vkms_vblank_simulate: vblank timer overrun
[  191.139924][    C1] hrtimer: interrupt took 768082729 ns
[  191.218622][   T30] kauditd_printk_skb: 83 callbacks suppressed
[  191.218640][   T30] audit: type=1326 audit(1743799740.575:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7831 comm="syz.0.597" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff3a8d8d169 code=0x0
[  191.240007][    C1] vkms_vblank_simulate: vblank timer overrun
[  191.286897][ T5930] usb 2-1: Using ep0 maxpacket: 8
[  191.310293][ T5930] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 129, changing to 11
[  191.328083][ T5930] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 16
[  191.339122][ T5930] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32
[  192.439655][ T5913] usb 3-1: USB disconnect, device number 19
[  192.591952][ T5895] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  192.763518][ T5895] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  192.774419][ T5895] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  192.789438][ T5895] usb 5-1: config 0 descriptor??
[  192.801225][ T5895] cp210x 5-1:0.0: cp210x converter detected
[  192.833828][ T7853] netlink: 12 bytes leftover after parsing attributes in process `syz.2.601'.
[  193.002810][ T5895] cp210x 5-1:0.0: failed to get vendor val 0x370b size 1: -121
[  193.024724][ T5895] cp210x 5-1:0.0: querying part number failed
[  193.046424][ T5895] usb 5-1: cp210x converter now attached to ttyUSB0
[  193.448728][ T5930] usb 2-1: string descriptor 0 read error: -71
[  193.473241][ T5930] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  193.529531][ T5930] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  193.558568][ T5930] usb 2-1: rejected 1 configuration due to insufficient available bus power
[  193.578840][ T5930] usb 2-1: no configuration chosen from 1 choice
[  193.592753][ T5930] usb 2-1: USB disconnect, device number 19
[  193.614004][ T7856] netlink: 'syz.1.602': attribute type 26 has an invalid length.
[  193.697693][ T7859] process 'syz.1.604' launched './file0' with NULL argv: empty string added
[  193.707130][ T7859] ERROR: Out of memory at tomoyo_memory_ok.
[  193.715291][ T7859] ERROR: Domain '<kernel> /sbin/init /etc/init.d/rcS /etc/init.d/S50sshd /usr/sbin/sshd /usr/sbin/sshd /bin/sh /root/syz-executor /root/syz-executor /newroot/102/file0' not defined.
[  193.908624][ T7867] netlink: 48 bytes leftover after parsing attributes in process `syz.1.607'.
[  193.919407][ T7868] netlink: 48 bytes leftover after parsing attributes in process `syz.1.607'.
[  194.068640][ T7869] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  194.100638][ T7869] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  194.248737][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  194.256445][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  194.302584][ T5895] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  194.415075][ T7883] bridge0: port 2(bridge_slave_1) entered disabled state
[  194.422454][ T7883] bridge0: port 1(bridge_slave_0) entered disabled state
[  194.435600][   T30] audit: type=1326 audit(1743799743.825:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7884 comm="syz.2.612" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f253a78d169 code=0x0
[  194.436175][ T7885] (unnamed net_device) (uninitialized): peer notification delay (1164) is not a multiple of miimon (100), value rounded to 1100 ms
[  194.492445][ T5895] usb 2-1: Using ep0 maxpacket: 16
[  194.501509][ T7885] bond1: entered promiscuous mode
[  194.509537][ T7885] bond1: entered allmulticast mode
[  194.515323][ T7885] 8021q: adding VLAN 0 to HW filter on device bond1
[  194.517476][ T5895] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  194.558722][ T5895] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  194.581444][ T5895] usb 2-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[  194.607060][ T5895] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.641233][ T5895] usb 2-1: config 0 descriptor??
[  195.048724][ T7895] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[  195.192056][ T5930] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  195.352391][ T5930] usb 3-1: Using ep0 maxpacket: 8
[  195.378641][ T5930] usb 3-1: config index 0 descriptor too short (expected 1307, got 27)
[  195.392207][ T5930] usb 3-1: config 0 has an invalid interface number: 0 but max is -1
[  195.401972][ T5930] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  195.412492][ T5930] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 0
[  195.414365][ T5895] usb 5-1: USB disconnect, device number 26
[  195.455935][ T5895] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  195.465507][ T5930] usb 3-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  195.488540][ T5930] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  195.514071][ T5895] cp210x 5-1:0.0: device disconnected
[  195.530573][ T5930] usb 3-1: Product: syz
[  195.539738][ T5930] usb 3-1: Manufacturer: syz
[  195.545612][ T5930] usb 3-1: SerialNumber: syz
[  195.560839][ T5930] usb 3-1: config 0 descriptor??
[  195.569389][ T5930] hub 3-1:0.0: bad descriptor, ignoring hub
[  195.576817][ T5930] hub 3-1:0.0: probe with driver hub failed with error -5
[  195.787934][ T7893] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  195.795459][ T7893] IPv6: NLM_F_CREATE should be set when creating new route
[  195.802743][ T7893] IPv6: NLM_F_CREATE should be set when creating new route
[  195.992348][   T48] usb 3-1: USB disconnect, device number 20
[  196.595960][ T7923] tipc: Started in network mode
[  196.601029][ T7923] tipc: Node identity 4, cluster identity 4711
[  196.607695][ T7923] tipc: Node number set to 4
[  196.879356][ T5930] usb 2-1: USB disconnect, device number 20
[  196.927158][ T7936] netlink: 36 bytes leftover after parsing attributes in process `syz.4.625'.
[  197.372118][ T5838] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  197.552123][ T5930] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  197.565701][ T5838] usb 1-1: Using ep0 maxpacket: 32
[  197.585609][ T5838] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  197.611319][ T5838] usb 1-1: New USB device found, idVendor=2040, idProduct=4901, bcdDevice=47.77
[  197.640639][ T5838] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  197.661008][ T5838] usb 1-1: Product: syz
[  197.668765][ T5838] usb 1-1: Manufacturer: syz
[  197.680122][ T5838] usb 1-1: SerialNumber: syz
[  197.695978][ T5838] usb 1-1: config 0 descriptor??
[  197.737869][ T5838] hdpvr 1-1:0.0: Could not find bulk-in endpoint
[  197.744436][ T5930] usb 2-1: Using ep0 maxpacket: 8
[  197.762310][ T5838] hdpvr 1-1:0.0: probe with driver hdpvr failed with error -12
[  197.779739][ T5930] usb 2-1: unable to get BOS descriptor or descriptor too short
[  197.810186][ T5930] usb 2-1: config 8 has an invalid interface number: 137 but max is 0
[  197.823852][ T5930] usb 2-1: config 8 has no interface number 0
[  197.830114][ T5930] usb 2-1: config 8 interface 137 altsetting 5 bulk endpoint 0xF has invalid maxpacket 84
[  197.843552][ T5930] usb 2-1: config 8 interface 137 has no altsetting 0
[  197.860000][ T5930] usb 2-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=e5.0d
[  197.947431][ T5930] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  197.973599][ T5930] usb 2-1: Product: syz
[  197.978768][ T5930] usb 2-1: Manufacturer: syz
[  197.993820][ T5930] usb 2-1: SerialNumber: syz
[  198.022251][ T7940] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  198.291754][ T5930] cyberjack 2-1:8.137: Reiner SCT Cyberjack USB card reader converter detected
[  198.306773][ T5930] cyberjack ttyUSB0: usb_submit_urb(read int) failed
[  198.327074][ T5930] usb 2-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0
[  198.368646][ T5930] usb 2-1: USB disconnect, device number 21
[  198.393557][ T5930] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0
[  198.410635][ T5930] cyberjack 2-1:8.137: device disconnected
[  198.703156][ T7958] FAULT_INJECTION: forcing a failure.
[  198.703156][ T7958] name failslab, interval 1, probability 0, space 0, times 0
[  198.719257][ T7958] CPU: 1 UID: 0 PID: 7958 Comm: syz.2.634 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  198.719281][ T7958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  198.719291][ T7958] Call Trace:
[  198.719299][ T7958]  <TASK>
[  198.719306][ T7958]  dump_stack_lvl+0x241/0x360
[  198.719337][ T7958]  ? __pfx_dump_stack_lvl+0x10/0x10
[  198.719360][ T7958]  ? __pfx__printk+0x10/0x10
[  198.719387][ T7958]  ? __pfx___might_resched+0x10/0x10
[  198.719413][ T7958]  should_fail_ex+0x424/0x570
[  198.719436][ T7958]  should_failslab+0xac/0x100
[  198.719460][ T7958]  __kmalloc_cache_noprof+0x73/0x370
[  198.719480][ T7958]  ? fuse_dev_alloc+0x52/0x260
[  198.719503][ T7958]  fuse_dev_alloc+0x52/0x260
[  198.719524][ T7958]  fuse_fill_super_common+0x508/0x1210
[  198.719553][ T7958]  ? __pfx_fuse_fill_super_common+0x10/0x10
[  198.719573][ T7958]  ? __init_swait_queue_head+0xae/0x150
[  198.719598][ T7958]  ? shrinker_register+0x160/0x230
[  198.719621][ T7958]  ? sget_fc+0x960/0xa50
[  198.719642][ T7958]  fuse_fill_super+0x173/0x1e0
[  198.719662][ T7958]  ? __pfx_fuse_fill_super+0x10/0x10
[  198.719684][ T7958]  get_tree_nodev+0xb7/0x140
[  198.719705][ T7958]  fuse_get_tree+0x347/0x4b0
[  198.719732][ T7958]  vfs_get_tree+0x90/0x2b0
[  198.719754][ T7958]  do_new_mount+0x2cf/0xb70
[  198.719783][ T7958]  ? __pfx_do_new_mount+0x10/0x10
[  198.719817][ T7958]  __se_sys_mount+0x38c/0x400
[  198.719846][ T7958]  ? __pfx___se_sys_mount+0x10/0x10
[  198.719876][ T7958]  ? __x64_sys_mount+0x20/0xc0
[  198.719910][ T7958]  do_syscall_64+0xf3/0x230
[  198.719929][ T7958]  ? clear_bhb_loop+0x45/0xa0
[  198.719948][ T7958]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.719964][ T7958] RIP: 0033:0x7f253a78d169
[  198.719980][ T7958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.719993][ T7958] RSP: 002b:00007f253b5e4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  198.720011][ T7958] RAX: ffffffffffffffda RBX: 00007f253a9a5fa0 RCX: 00007f253a78d169
[  198.720024][ T7958] RDX: 0000200000002100 RSI: 00002000000020c0 RDI: 0000000000000000
[  198.720035][ T7958] RBP: 00007f253b5e4090 R08: 00002000000003c0 R09: 0000000000000000
[  198.720046][ T7958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  198.720056][ T7958] R13: 0000000000000000 R14: 00007f253a9a5fa0 R15: 00007f253aacfa28
[  198.720084][ T7958]  </TASK>
[  198.956864][    C1] vkms_vblank_simulate: vblank timer overrun
[  199.371952][ T5838] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  199.471757][ T7971] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[  199.521919][ T5838] usb 5-1: Using ep0 maxpacket: 8
[  199.536267][ T7964] netlink: 'syz.4.637': attribute type 58 has an invalid length.
[  199.545274][ T7964] netlink: 20 bytes leftover after parsing attributes in process `syz.4.637'.
[  199.556833][ T5838] usb 5-1: unable to get BOS descriptor or descriptor too short
[  199.568462][ T5838] usb 5-1: unable to read config index 0 descriptor/start: -71
[  199.576784][ T5838] usb 5-1: can't read configurations, error -71
[  200.275076][ T5913] usb 1-1: USB disconnect, device number 20
[  200.591388][ T7997] FAULT_INJECTION: forcing a failure.
[  200.591388][ T7997] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  200.607237][ T7997] CPU: 1 UID: 0 PID: 7997 Comm: syz.4.649 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  200.607261][ T7997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  200.607271][ T7997] Call Trace:
[  200.607278][ T7997]  <TASK>
[  200.607285][ T7997]  dump_stack_lvl+0x241/0x360
[  200.607315][ T7997]  ? __pfx_dump_stack_lvl+0x10/0x10
[  200.607338][ T7997]  ? __pfx__printk+0x10/0x10
[  200.607371][ T7997]  should_fail_ex+0x424/0x570
[  200.607393][ T7997]  _copy_from_user+0x2d/0xb0
[  200.607416][ T7997]  copy_msghdr_from_user+0xb3/0x580
[  200.607444][ T7997]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  200.607480][ T7997]  do_recvmmsg+0x3bf/0xab0
[  200.607509][ T7997]  ? __pfx_do_recvmmsg+0x10/0x10
[  200.607543][ T7997]  ? rcu_read_lock_any_held+0xbb/0x160
[  200.607565][ T7997]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  200.607589][ T7997]  ? vfs_write+0xb29/0xd10
[  200.607616][ T7997]  ? ksys_write+0x24e/0x2d0
[  200.607638][ T7997]  ? __mutex_unlock_slowpath+0x229/0x800
[  200.607668][ T7997]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  200.607685][ T7997]  ? __fget_files+0x2a/0x420
[  200.607715][ T7997]  __x64_sys_recvmmsg+0x1ab/0x260
[  200.607736][ T7997]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  200.607759][ T7997]  ? do_syscall_64+0xb6/0x230
[  200.607780][ T7997]  do_syscall_64+0xf3/0x230
[  200.607798][ T7997]  ? clear_bhb_loop+0x45/0xa0
[  200.607817][ T7997]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.607833][ T7997] RIP: 0033:0x7f5afc18d169
[  200.607848][ T7997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.607862][ T7997] RSP: 002b:00007f5afd0a5038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  200.607879][ T7997] RAX: ffffffffffffffda RBX: 00007f5afc3a5fa0 RCX: 00007f5afc18d169
[  200.607891][ T7997] RDX: 000000000000004b RSI: 0000200000000500 RDI: 0000000000000003
[  200.607901][ T7997] RBP: 00007f5afd0a5090 R08: 0000000000000000 R09: 0000000000000000
[  200.607911][ T7997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  200.607920][ T7997] R13: 0000000000000000 R14: 00007f5afc3a5fa0 R15: 00007f5afc4cfa28
[  200.607947][ T7997]  </TASK>
[  200.824844][    C1] vkms_vblank_simulate: vblank timer overrun
[  200.831728][ T5930] usb 3-1: new full-speed USB device number 21 using dummy_hcd
[  200.921379][ T7995] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  200.945194][ T7995] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  201.003756][ T8002] team_slave_0: entered promiscuous mode
[  201.009856][ T8002] team_slave_1: entered promiscuous mode
[  201.022489][ T8002] vlan2: entered promiscuous mode
[  201.028198][ T8002] team0: entered promiscuous mode
[  201.065345][ T5930] usb 3-1: config 8 has an invalid interface number: 177 but max is 0
[  201.083576][ T5930] usb 3-1: config 8 has no interface number 0
[  201.108958][ T5930] usb 3-1: config 8 interface 177 altsetting 9 has an endpoint descriptor with address 0xE8, changing to 0x88
[  201.155470][ T5838] usb 4-1: new full-speed USB device number 32 using dummy_hcd
[  201.167539][ T5930] usb 3-1: config 8 interface 177 altsetting 9 endpoint 0x88 has invalid maxpacket 1023, setting to 64
[  201.181639][ T5930] usb 3-1: config 8 interface 177 altsetting 9 endpoint 0x87 has invalid wMaxPacketSize 0
[  201.196439][ T5930] usb 3-1: config 8 interface 177 has no altsetting 0
[  201.203427][ T5930] usb 3-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=59.b1
[  201.215986][ T5930] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  201.231348][ T7988] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  201.354337][ T5838] usb 4-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  201.362431][ T5895] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  201.371462][ T5838] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  201.385169][ T5838] usb 4-1: config 0 descriptor??
[  201.393995][ T5838] ums-realtek 4-1:0.0: USB Mass Storage device detected
[  201.454550][ T5930] usb 3-1: string descriptor 0 read error: -71
[  201.496873][ T5930] ir_toy 3-1:8.177: required endpoints not found
[  201.509474][ T8015] netlink: 4 bytes leftover after parsing attributes in process `syz.4.655'.
[  201.524862][ T5895] usb 1-1: Using ep0 maxpacket: 32
[  201.550489][ T5895] usb 1-1: config 1 interface 0 altsetting 4 bulk endpoint 0x82 has invalid maxpacket 8
[  201.552922][ T5930] usb 3-1: USB disconnect, device number 21
[  201.578543][ T8018] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.578566][ T5895] usb 1-1: config 1 interface 0 altsetting 4 bulk endpoint 0x3 has invalid maxpacket 1023
[  201.585880][ T8018] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.596106][   T10] usb 4-1: USB disconnect, device number 32
[  201.642466][ T5895] usb 1-1: config 1 interface 0 altsetting 4 has 2 endpoint descriptors, different from the interface descriptor's value: 6
[  201.694271][ T8019] tipc: New replicast peer: 10.1.1.2
[  201.699919][ T8019] tipc: Enabled bearer <udp:syz0>, priority 10
[  201.724438][ T5895] usb 1-1: config 1 interface 0 has no altsetting 0
[  201.743362][ T5895] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  201.754485][ T5895] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.762806][ T5895] usb 1-1: Product: ࠖ
[  201.770694][ T5895] usb 1-1: Manufacturer: È뛦⾕⮔눚钽鏘威꡺ᣞФ뮗
[  201.797259][ T5895] usb 1-1: SerialNumber: х
[  201.826585][ T8007] raw-gadget.3 gadget.0: fail, usb_ep_enable returned -22
[  201.834124][ T8007] raw-gadget.3 gadget.0: fail, usb_ep_enable returned -22
[  201.952072][ T5838] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  201.985874][ T8021] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[  202.112554][ T5895] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -71
[  202.115705][ T5838] usb 5-1: Using ep0 maxpacket: 8
[  202.161176][ T5838] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  202.218075][ T5838] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  202.232928][ T5895] usb 1-1: USB disconnect, device number 21
[  202.244818][ T5838] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  202.261276][ T5838] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  202.274007][ T5838] usb 5-1: Product: syz
[  202.291458][ T5838] usb 5-1: Manufacturer: syz
[  202.303404][ T5838] usb 5-1: SerialNumber: syz
[  202.639328][ T8036] FAULT_INJECTION: forcing a failure.
[  202.639328][ T8036] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  202.691487][ T8036] CPU: 1 UID: 0 PID: 8036 Comm: syz.1.661 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  202.691512][ T8036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  202.691522][ T8036] Call Trace:
[  202.691529][ T8036]  <TASK>
[  202.691536][ T8036]  dump_stack_lvl+0x241/0x360
[  202.691565][ T8036]  ? __pfx_dump_stack_lvl+0x10/0x10
[  202.691587][ T8036]  ? __pfx__printk+0x10/0x10
[  202.691619][ T8036]  should_fail_ex+0x424/0x570
[  202.691642][ T8036]  _copy_from_user+0x2d/0xb0
[  202.691666][ T8036]  do_mcast_group_source+0x1bd/0x8e0
[  202.691689][ T8036]  ? __pfx_do_mcast_group_source+0x10/0x10
[  202.691718][ T8036]  ? __lock_acquire+0xad5/0xd80
[  202.691738][ T8036]  ? __mutex_trylock_common+0x184/0x2e0
[  202.691766][ T8036]  ? __pfx___mutex_trylock_common+0x10/0x10
[  202.691820][ T8036]  ? __local_bh_enable_ip+0x168/0x200
[  202.691850][ T8036]  ? do_ip_setsockopt+0x17e9/0x39c0
[  202.691867][ T8036]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  202.691895][ T8036]  do_ip_setsockopt+0x1c94/0x39c0
[  202.691922][ T8036]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  202.691944][ T8036]  ? aa_sk_perm+0x96f/0xac0
[  202.691969][ T8036]  ? ksys_write+0x24e/0x2d0
[  202.691987][ T8036]  ? __pfx_aa_sk_perm+0x10/0x10
[  202.692015][ T8036]  ip_setsockopt+0x63/0x100
[  202.692034][ T8036]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  202.692056][ T8036]  do_sock_setsockopt+0x3b1/0x710
[  202.692079][ T8036]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  202.692092][ T8036]  ? __fget_files+0x2a/0x420
[  202.692113][ T8036]  ? __fget_files+0x39d/0x420
[  202.692126][ T8036]  ? __fget_files+0x2a/0x420
[  202.692149][ T8036]  __x64_sys_setsockopt+0x1ee/0x280
[  202.692172][ T8036]  do_syscall_64+0xf3/0x230
[  202.692191][ T8036]  ? clear_bhb_loop+0x45/0xa0
[  202.692210][ T8036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.692226][ T8036] RIP: 0033:0x7f633398d169
[  202.692241][ T8036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.692255][ T8036] RSP: 002b:00007f63317f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  202.692279][ T8036] RAX: ffffffffffffffda RBX: 00007f6333ba5fa0 RCX: 00007f633398d169
[  202.692292][ T8036] RDX: 000000000000002b RSI: 0000000000000000 RDI: 0000000000000003
[  202.692302][ T8036] RBP: 00007f63317f6090 R08: 0000000000000108 R09: 0000000000000000
[  202.692311][ T8036] R10: 0000200000000600 R11: 0000000000000246 R12: 0000000000000001
[  202.692322][ T8036] R13: 0000000000000000 R14: 00007f6333ba5fa0 R15: 00007f6333ccfa28
[  202.692350][ T8036]  </TASK>
[  202.702851][   T10] tipc: Node number set to 2130771966
[  203.022340][ T5930] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  203.182016][ T5930] usb 4-1: Using ep0 maxpacket: 32
[  203.189780][ T5930] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  203.208191][ T5930] usb 4-1: New USB device found, idVendor=2040, idProduct=4901, bcdDevice=47.77
[  203.217390][ T5930] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  203.226801][ T5930] usb 4-1: Product: syz
[  203.256915][ T5930] usb 4-1: Manufacturer: syz
[  203.260063][ T8050] syz_tun: entered allmulticast mode
[  203.276200][ T8053] capability: warning: `syz.2.668' uses 32-bit capabilities (legacy support in use)
[  203.286503][ T8050] dvmrp1: entered allmulticast mode
[  203.293483][ T5930] usb 4-1: SerialNumber: syz
[  203.349216][ T5930] usb 4-1: config 0 descriptor??
[  203.364107][ T5930] hdpvr 4-1:0.0: Could not find bulk-in endpoint
[  203.376823][ T5930] hdpvr 4-1:0.0: probe with driver hdpvr failed with error -12
[  203.491109][ T8055] netlink: 'syz.0.669': attribute type 10 has an invalid length.
[  203.535551][ T8055] netlink: 40 bytes leftover after parsing attributes in process `syz.0.669'.
[  203.537253][ T8055] team0: Device geneve0 is up. Set it down before adding it as a team port
[  203.537572][ T8055] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  203.682003][ T5930] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  203.864409][ T5930] usb 3-1: config index 0 descriptor too short (expected 3133, got 61)
[  203.885445][ T5930] usb 3-1: config 0 has an invalid interface number: 156 but max is 1
[  203.907274][ T5930] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  203.945939][ T5930] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 2
[  203.969528][ T5930] usb 3-1: config 0 has no interface number 0
[  203.976784][ T5930] usb 3-1: config 0 interface 156 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  203.990980][ T5930] usb 3-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  204.006688][ T5930] usb 3-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  204.018593][ T5930] usb 3-1: config 0 interface 156 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  204.034139][ T5930] usb 3-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  204.043361][ T5930] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.055571][ T5930] usb 3-1: config 0 descriptor??
[  204.063893][ T5930] gspca_main: spca561-2.14.0 probing abcd:cdee
[  204.161958][   T48] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  204.229010][ T8065] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[  204.311521][ T5930] spca561 3-1:0.156: probe with driver spca561 failed with error -22
[  204.312161][   T48] usb 2-1: Using ep0 maxpacket: 8
[  204.337184][   T48] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  204.350082][   T48] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.367350][   T48] usb 2-1: config 0 descriptor??
[  204.576090][   T48] asix 2-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  205.080270][ T5838] usb 5-1: 0:2 : does not exist
[  205.178180][ T5930] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  205.199972][ T5838] usb 5-1: USB disconnect, device number 29
[  205.229346][ T5895] usb 4-1: USB disconnect, device number 33
[  205.296054][ T5930] usb 3-1: MIDIStreaming interface descriptor not found
[  205.574710][ T5930] usb 3-1: USB disconnect, device number 22
[  205.982040][ T5838] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  206.036700][ T5930] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  206.146215][ T5838] usb 5-1: Using ep0 maxpacket: 8
[  206.156833][ T5838] usb 5-1: config 162 has an invalid interface number: 209 but max is 2
[  206.169335][ T5838] usb 5-1: config 162 has an invalid interface number: 118 but max is 2
[  206.188076][ T5838] usb 5-1: config 162 has an invalid interface number: 55 but max is 2
[  206.197283][ T5838] usb 5-1: config 162 has no interface number 0
[  206.212449][ T5838] usb 5-1: config 162 has no interface number 1
[  206.218812][ T5838] usb 5-1: config 162 has no interface number 2
[  206.251679][ T5930] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  206.275878][ T5838] usb 5-1: config 162 interface 209 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  206.304795][ T5930] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  206.355924][ T5838] usb 5-1: config 162 interface 209 has no altsetting 0
[  206.383772][ T5930] usb 3-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice=d6.af
[  206.403534][ T5838] usb 5-1: config 162 interface 118 has no altsetting 0
[  206.415480][ T5930] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.424492][ T5838] usb 5-1: config 162 interface 55 has no altsetting 0
[  206.437490][ T5930] usb 3-1: config 0 descriptor??
[  206.445682][ T5838] usb 5-1: New USB device found, idVendor=04bb, idProduct=0944, bcdDevice=3d.38
[  206.462865][ T5838] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  206.471008][ T5838] usb 5-1: Product: syz
[  206.483230][ T5838] usb 5-1: Manufacturer: syz
[  206.491275][ T5838] usb 5-1: SerialNumber: syz
[  206.601805][   T48] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0012: -71
[  206.612931][   T48] asix 2-1:0.0: probe with driver asix failed with error -71
[  206.629537][   T48] usb 2-1: USB disconnect, device number 22
[  207.009723][ T6401] udevd[6401]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  207.012589][ T5838] usb 5-1: USB disconnect, device number 30
[  207.046732][ T5930] playstation 0003:054C:0DF2.0009: unknown main item tag 0x0
[  207.061532][ T5930] playstation 0003:054C:0DF2.0009: unknown main item tag 0x0
[  207.076439][ T5930] playstation 0003:054C:0DF2.0009: unknown main item tag 0x0
[  207.099441][ T5930] playstation 0003:054C:0DF2.0009: unknown main item tag 0x0
[  207.109282][ T5930] playstation 0003:054C:0DF2.0009: unknown main item tag 0x0
[  207.126588][ T5930] playstation 0003:054C:0DF2.0009: hidraw0: USB HID v1.01 Device [HID 054c:0df2] on usb-dummy_hcd.2-1/input0
[  207.254486][ T5930] playstation 0003:054C:0DF2.0009: Invalid reportID received, expected 9 got 32
[  207.265995][ T8100] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[  207.280179][ T5930] playstation 0003:054C:0DF2.0009: Failed to retrieve DualSense pairing info: -22
[  207.302071][ T5930] playstation 0003:054C:0DF2.0009: Failed to get MAC address from DualSense
[  207.323048][ T5930] playstation 0003:054C:0DF2.0009: Failed to create dualsense.
[  207.333082][ T5930] playstation 0003:054C:0DF2.0009: probe with driver playstation failed with error -22
[  207.350463][ T7020] udevd[7020]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.156/sound/card4/controlC4/../uevent} for writing: No such file or directory
[  207.458819][ T8079] syz.2.678 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  207.471314][ T5913] usb 3-1: USB disconnect, device number 23
[  207.705563][ T8110] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  207.753034][   T48] usb 2-1: new low-speed USB device number 23 using dummy_hcd
[  207.933835][   T48] usb 2-1: config 0 has no interfaces?
[  207.945513][   T48] usb 2-1: string descriptor 0 read error: -22
[  207.956987][   T48] usb 2-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  207.971319][   T48] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  207.990192][   T48] usb 2-1: config 0 descriptor??
[  208.103979][ T8125] AppArmor: change_hat: Invalid input '0x0'
[  208.106345][ T8125] AppArmor: change_hat: Invalid input '0x0'
[  208.143657][ T8107] netlink: 4 bytes leftover after parsing attributes in process `syz.3.687'.
[  208.615645][   T48] usb 2-1: USB disconnect, device number 23
[  208.764557][ T8145] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[  208.949934][   T30] audit: type=1326 audit(1743799758.335:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8143 comm="syz.2.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f253a78d169 code=0x7fc00000
[  208.990050][   T30] audit: type=1326 audit(1743799758.335:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8143 comm="syz.2.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f253a78d169 code=0x7fc00000
[  209.030432][   T30] audit: type=1326 audit(1743799758.335:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8143 comm="syz.2.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f253a78d169 code=0x7fc00000
[  209.052662][    C0] vkms_vblank_simulate: vblank timer overrun
[  209.098249][   T30] audit: type=1326 audit(1743799758.335:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8143 comm="syz.2.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f253a78d169 code=0x7fc00000
[  209.120400][    C0] vkms_vblank_simulate: vblank timer overrun
[  209.175956][   T30] audit: type=1326 audit(1743799758.335:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8143 comm="syz.2.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f253a78d169 code=0x7fc00000
[  209.268157][   T30] audit: type=1326 audit(1743799758.335:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8143 comm="syz.2.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f253a78d169 code=0x7fc00000
[  209.341945][   T30] audit: type=1326 audit(1743799758.365:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8143 comm="syz.2.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f253a78d169 code=0x7fc00000
[  209.399186][   T30] audit: type=1326 audit(1743799758.365:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8143 comm="syz.2.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f253a78d169 code=0x7fc00000
[  209.482699][   T30] audit: type=1326 audit(1743799758.365:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8143 comm="syz.2.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f253a78d169 code=0x7fc00000
[  209.510763][ T8161] xt_hashlimit: size too large, truncated to 1048576
[  209.579463][   T30] audit: type=1326 audit(1743799758.365:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8143 comm="syz.2.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f253a78d169 code=0x7fc00000
[  209.648560][ T8172] netlink: 4 bytes leftover after parsing attributes in process `syz.1.704'.
[  210.128437][ T8189] program syz.0.712 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  210.191960][ T5838] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  210.330747][ T8195] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  210.338069][ T8195] IPv6: NLM_F_CREATE should be set when creating new route
[  210.353021][ T5838] usb 5-1: device descriptor read/64, error -71
[  210.582024][   T10] usb 3-1: new full-speed USB device number 24 using dummy_hcd
[  210.622651][ T5838] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  210.775857][   T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  210.820568][   T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  210.837952][ T5838] usb 5-1: device descriptor read/64, error -71
[  210.872584][   T10] usb 3-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[  210.910000][   T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  210.970210][   T10] usb 3-1: config 0 descriptor??
[  210.982361][ T5838] usb usb5-port1: attempt power cycle
[  211.274855][ T8208] netlink: 'syz.3.720': attribute type 6 has an invalid length.
[  211.321477][ T8208] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.720'.
[  211.392420][ T5838] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  211.417951][ T8193] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  211.429968][ T8193] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  211.485990][ T5838] usb 5-1: device descriptor read/8, error -71
[  211.657557][ T8213] Invalid logical block size (115)
[  211.737316][ T5838] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  211.761037][ T8211] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[  211.815324][ T5838] usb 5-1: device descriptor read/8, error -71
[  211.831677][   T10] isku 0003:1E7D:319C.000A: item fetching failed at offset 5/7
[  211.867544][   T10] isku 0003:1E7D:319C.000A: parse failed
[  211.891267][   T10] isku 0003:1E7D:319C.000A: probe with driver isku failed with error -22
[  211.944825][ T8221] vlan3: entered promiscuous mode
[  211.955648][ T5838] usb usb5-port1: unable to enumerate USB device
[  211.986476][ T8221] hsr0: entered promiscuous mode
[  212.015322][   T48] usb 3-1: USB disconnect, device number 24
[  212.031974][ T5895] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  212.274791][ T5895] usb 1-1: config 0 has no interfaces?
[  212.283386][ T5895] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  212.292514][ T5895] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  212.300663][ T5895] usb 1-1: Product: syz
[  212.307422][ T5895] usb 1-1: Manufacturer: syz
[  212.314756][ T5895] usb 1-1: SerialNumber: syz
[  212.342505][ T5895] usb 1-1: config 0 descriptor??
[  213.092334][ T5895] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  213.207674][ T8231] FAULT_INJECTION: forcing a failure.
[  213.207674][ T8231] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  213.240081][ T8231] CPU: 1 UID: 0 PID: 8231 Comm: syz.4.726 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  213.240106][ T8231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  213.240117][ T8231] Call Trace:
[  213.240124][ T8231]  <TASK>
[  213.240131][ T8231]  dump_stack_lvl+0x241/0x360
[  213.240161][ T8231]  ? __pfx_dump_stack_lvl+0x10/0x10
[  213.240182][ T8231]  ? __pfx__printk+0x10/0x10
[  213.240216][ T8231]  should_fail_ex+0x424/0x570
[  213.240239][ T8231]  _copy_to_user+0x31/0xb0
[  213.240264][ T8231]  rng_dev_read+0x3dc/0x720
[  213.240291][ T8231]  ? __pfx_rng_dev_read+0x10/0x10
[  213.240318][ T8231]  ? bpf_lsm_file_permission+0x9/0x10
[  213.240338][ T8231]  ? rw_verify_area+0x246/0x630
[  213.240355][ T8231]  ? __pfx_rng_dev_read+0x10/0x10
[  213.240378][ T8231]  vfs_read+0x21f/0xb90
[  213.240404][ T8231]  ? __pfx_vfs_read+0x10/0x10
[  213.240423][ T8231]  ? __fget_files+0x2a/0x420
[  213.240438][ T8231]  ? __fget_files+0x2a/0x420
[  213.240455][ T8231]  ? __fget_files+0x39d/0x420
[  213.240468][ T8231]  ? __fget_files+0x2a/0x420
[  213.240492][ T8231]  ksys_read+0x19d/0x2d0
[  213.240513][ T8231]  ? __pfx_ksys_read+0x10/0x10
[  213.240537][ T8231]  ? do_syscall_64+0xb6/0x230
[  213.240559][ T8231]  do_syscall_64+0xf3/0x230
[  213.240578][ T8231]  ? clear_bhb_loop+0x45/0xa0
[  213.240596][ T8231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.240612][ T8231] RIP: 0033:0x7f5afc18d169
[  213.240627][ T8231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.240640][ T8231] RSP: 002b:00007f5afd0a5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  213.240659][ T8231] RAX: ffffffffffffffda RBX: 00007f5afc3a5fa0 RCX: 00007f5afc18d169
[  213.240672][ T8231] RDX: 000000000000fd92 RSI: 0000200000001300 RDI: 0000000000000004
[  213.240682][ T8231] RBP: 00007f5afd0a5090 R08: 0000000000000000 R09: 0000000000000000
[  213.240693][ T8231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  213.240703][ T8231] R13: 0000000000000000 R14: 00007f5afc3a5fa0 R15: 00007f5afc4cfa28
[  213.240731][ T8231]  </TASK>
[  213.546765][ T5895] usb 4-1: config 0 has no interfaces?
[  213.556038][ T5895] usb 4-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  213.565138][ T5895] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  213.573198][ T5895] usb 4-1: Product: syz
[  213.577336][ T5895] usb 4-1: Manufacturer: syz
[  213.582112][ T5895] usb 4-1: SerialNumber: syz
[  213.686057][ T5895] usb 4-1: config 0 descriptor??
[  214.178054][ T8249] netlink: 20 bytes leftover after parsing attributes in process `syz.3.724'.
[  214.786745][ T5913] usb 1-1: USB disconnect, device number 22
[  214.917895][ T8251] syz_tun: entered allmulticast mode
[  214.927995][ T8251] dvmrp1: entered allmulticast mode
[  214.937899][ T8251] netlink: 'syz.0.731': attribute type 39 has an invalid length.
[  214.983744][ T8251] syz_tun (unregistering): left allmulticast mode
[  215.030808][ T8255] FAULT_INJECTION: forcing a failure.
[  215.030808][ T8255] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  215.061204][ T8255] CPU: 0 UID: 0 PID: 8255 Comm: syz.4.733 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  215.061227][ T8255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  215.061233][ T8255] Call Trace:
[  215.061238][ T8255]  <TASK>
[  215.061242][ T8255]  dump_stack_lvl+0x241/0x360
[  215.061262][ T8255]  ? __pfx_dump_stack_lvl+0x10/0x10
[  215.061275][ T8255]  ? __pfx__printk+0x10/0x10
[  215.061294][ T8255]  should_fail_ex+0x424/0x570
[  215.061307][ T8255]  _copy_from_user+0x2d/0xb0
[  215.061321][ T8255]  copy_msghdr_from_user+0xb3/0x580
[  215.061337][ T8255]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  215.061357][ T8255]  do_recvmmsg+0x3bf/0xab0
[  215.061373][ T8255]  ? __pfx_do_recvmmsg+0x10/0x10
[  215.061391][ T8255]  ? rcu_read_lock_any_held+0xbb/0x160
[  215.061404][ T8255]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  215.061417][ T8255]  ? vfs_write+0xb29/0xd10
[  215.061433][ T8255]  ? ksys_write+0x24e/0x2d0
[  215.061452][ T8255]  ? __mutex_unlock_slowpath+0x229/0x800
[  215.061469][ T8255]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  215.061478][ T8255]  ? __fget_files+0x2a/0x420
[  215.061494][ T8255]  __x64_sys_recvmmsg+0x1ab/0x260
[  215.061506][ T8255]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  215.061520][ T8255]  ? do_syscall_64+0xb6/0x230
[  215.061531][ T8255]  do_syscall_64+0xf3/0x230
[  215.061542][ T8255]  ? clear_bhb_loop+0x45/0xa0
[  215.061553][ T8255]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.061562][ T8255] RIP: 0033:0x7f5afc18d169
[  215.061571][ T8255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.061579][ T8255] RSP: 002b:00007f5afd0a5038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  215.061590][ T8255] RAX: ffffffffffffffda RBX: 00007f5afc3a5fa0 RCX: 00007f5afc18d169
[  215.061597][ T8255] RDX: 03ffffffffffff67 RSI: 0000200000002440 RDI: 0000000000000004
[  215.061604][ T8255] RBP: 00007f5afd0a5090 R08: 0000000000000000 R09: 0000000000000000
[  215.061609][ T8255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  215.061615][ T8255] R13: 0000000000000000 R14: 00007f5afc3a5fa0 R15: 00007f5afc4cfa28
[  215.061629][ T8255]  </TASK>
[  215.274941][    C0] vkms_vblank_simulate: vblank timer overrun
[  215.638376][ T5838] usb 4-1: USB disconnect, device number 34
[  216.248904][ T8272] batadv_slave_1: entered promiscuous mode
[  216.283681][ T8272] batadv_slave_1: left promiscuous mode
[  216.742119][ T5838] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  216.912057][ T5838] usb 1-1: Using ep0 maxpacket: 32
[  216.919091][ T5838] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11
[  216.942716][ T5838] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  216.969619][ T5838] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[  216.987865][ T8284] FAULT_INJECTION: forcing a failure.
[  216.987865][ T8284] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  217.024293][ T5838] usb 1-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[  217.042109][ T8284] CPU: 0 UID: 0 PID: 8284 Comm: syz.4.741 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  217.042125][ T8284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  217.042132][ T8284] Call Trace:
[  217.042137][ T8284]  <TASK>
[  217.042141][ T8284]  dump_stack_lvl+0x241/0x360
[  217.042166][ T8284]  ? __pfx_dump_stack_lvl+0x10/0x10
[  217.042180][ T8284]  ? __pfx__printk+0x10/0x10
[  217.042200][ T8284]  should_fail_ex+0x424/0x570
[  217.042214][ T8284]  _copy_to_iter+0x1f6/0x1c90
[  217.042228][ T8284]  ? __pfx_n_tty_read+0x10/0x10
[  217.042246][ T8284]  ? __pfx___ldsem_down_read_nested+0x10/0x10
[  217.042281][ T8284]  ? __pfx__copy_to_iter+0x10/0x10
[  217.042293][ T8284]  ? __pfx_woken_wake_function+0x10/0x10
[  217.042304][ T8284]  ? aa_file_perm+0x139/0xf60
[  217.042323][ T8284]  tty_read+0x2ba/0x6b0
[  217.042339][ T8284]  ? __pfx_tty_read+0x10/0x10
[  217.042352][ T8284]  ? __pfx_aa_file_perm+0x10/0x10
[  217.042363][ T8284]  ? kstrtouint+0xfc/0x190
[  217.042378][ T8284]  ? __lock_acquire+0xad5/0xd80
[  217.042391][ T8284]  do_iter_readv_writev+0x71f/0x9d0
[  217.042407][ T8284]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  217.042421][ T8284]  ? bpf_lsm_file_permission+0x9/0x10
[  217.042433][ T8284]  ? rw_verify_area+0x246/0x630
[  217.042445][ T8284]  vfs_readv+0x2b5/0xa80
[  217.042465][ T8284]  ? __pfx_vfs_readv+0x10/0x10
[  217.042488][ T8284]  ? __fget_files+0x2a/0x420
[  217.042497][ T8284]  ? __fget_files+0x39d/0x420
[  217.042505][ T8284]  ? __fget_files+0x2a/0x420
[  217.042518][ T8284]  do_readv+0x1b8/0x360
[  217.042534][ T8284]  ? __pfx_do_readv+0x10/0x10
[  217.042551][ T8284]  ? do_syscall_64+0xb6/0x230
[  217.042564][ T8284]  do_syscall_64+0xf3/0x230
[  217.042574][ T8284]  ? clear_bhb_loop+0x45/0xa0
[  217.042586][ T8284]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.042595][ T8284] RIP: 0033:0x7f5afc18d169
[  217.042605][ T8284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  217.042612][ T8284] RSP: 002b:00007f5afd063038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  217.042624][ T8284] RAX: ffffffffffffffda RBX: 00007f5afc3a6160 RCX: 00007f5afc18d169
[  217.042630][ T8284] RDX: 0000000000000001 RSI: 00002000000003c0 RDI: 0000000000000003
[  217.042636][ T8284] RBP: 00007f5afd063090 R08: 0000000000000000 R09: 0000000000000000
[  217.042642][ T8284] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  217.042648][ T8284] R13: 0000000000000001 R14: 00007f5afc3a6160 R15: 00007f5afc4cfa28
[  217.042663][ T8284]  </TASK>
[  217.044557][ T5838] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  217.372296][ T5838] usb 1-1: Product: syz
[  217.382007][ T5838] usb 1-1: Manufacturer: syz
[  217.391192][ T5838] usb 1-1: SerialNumber: syz
[  217.411198][ T5838] usb 1-1: config 0 descriptor??
[  217.572600][ T8290] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[  217.651877][   T10] usb 1-1: USB disconnect, device number 23
[  217.683116][ T5838] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  217.841974][ T5838] usb 3-1: Using ep0 maxpacket: 32
[  217.850946][ T5838] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  218.175274][ T8296] vivid-007: =================  START STATUS  =================
[  218.185266][ T8296] vivid-007: Enable Output Cropping: true
[  218.197311][ T8296] vivid-007: Enable Output Composing: true
[  218.204237][ T8296] vivid-007: Enable Output Scaler: true
[  218.210031][ T5838] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  218.210120][ T8296] vivid-007: Tx RGB Quantization Range: Automatic
[  218.230906][ T8296] vivid-007: Transmit Mode: HDMI
[  218.243222][ T8296] vivid-007: Hotplug Present: 0x00000000
[  218.250340][ T8296] vivid-007: RxSense Present: 0x00000000
[  218.257288][ T5838] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  218.263254][ T8296] vivid-007: EDID Present: 0x00000000
[  218.291623][ T5838] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  218.346462][ T8296] vivid-007: ==================  END STATUS  ==================
[  218.360992][ T5838] usb 3-1: config 0 descriptor??
[  218.399488][ T5838] hub 3-1:0.0: USB hub found
[  218.979802][ T5838] hub 3-1:0.0: config failed, can't read hub descriptor (err -22)
[  219.015912][ T5838] usbhid 3-1:0.0: can't add hid device: -71
[  219.032029][ T5838] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  219.084912][ T5838] usb 3-1: USB disconnect, device number 25
[  219.241001][ T8316] netlink: 'syz.0.752': attribute type 4 has an invalid length.
[  219.725596][ T8338] netlink: 36 bytes leftover after parsing attributes in process `syz.4.755'.
[  219.826908][ T5838] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  219.989629][ T8343] vivid-007: =================  START STATUS  =================
[  220.003686][ T5838] usb 2-1: New USB device found, idVendor=1b80, idProduct=e396, bcdDevice=a7.b1
[  220.016560][ T5838] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.102815][ T8343] vivid-007: Enable Output Cropping: true
[  220.108602][ T8343] vivid-007: Enable Output Composing: true
[  220.121990][ T8343] vivid-007: Enable Output Scaler: true
[  220.131614][ T8343] vivid-007: Tx RGB Quantization Range: Automatic
[  220.158731][ T8343] vivid-007: Transmit Mode: HDMI
[  220.191568][ T5838] usb 2-1: config 0 descriptor??
[  220.362147][ T8343] vivid-007: Hotplug Present: 0x00000000
[  220.367932][ T8343] vivid-007: RxSense Present: 0x00000000
[  220.373813][ T8343] vivid-007: EDID Present: 0x00000000
[  220.379282][ T8343] vivid-007: ==================  END STATUS  ==================
[  220.436283][ T5838] usb 2-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  220.488280][ T5838] dvb_usb_af9015 2-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[  221.061971][   T10] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  221.222728][   T10] usb 3-1: no configurations
[  221.228721][   T10] usb 3-1: can't read configurations, error -22
[  221.393235][   T10] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  221.446319][ T8357] netlink: 20 bytes leftover after parsing attributes in process `syz.4.761'.
[  221.572617][   T10] usb 3-1: no configurations
[  221.577445][   T10] usb 3-1: can't read configurations, error -22
[  221.589352][   T10] usb usb3-port1: attempt power cycle
[  221.600945][ T8360] netlink: 'syz.4.761': attribute type 9 has an invalid length.
[  221.613458][ T8360] netlink: 8 bytes leftover after parsing attributes in process `syz.4.761'.
[  221.708453][ T8360] bond_slave_0: entered promiscuous mode
[  221.714772][ T8360] bond_slave_1: entered promiscuous mode
[  221.720465][ T8360] bridge0: entered promiscuous mode
[  221.726936][ T8360] macvlan2: entered promiscuous mode
[  221.735910][ T8360] bond0: entered promiscuous mode
[  221.750317][ T8362] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[  221.760623][ T8360] macvlan2: entered allmulticast mode
[  221.768683][ T8360] bond0: entered allmulticast mode
[  221.777962][ T8360] bond_slave_0: entered allmulticast mode
[  221.785341][ T8360] bond_slave_1: entered allmulticast mode
[  221.795125][ T8360] bridge0: entered allmulticast mode
[  221.803291][ T8360] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  221.961957][   T10] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  221.983000][   T10] usb 3-1: no configurations
[  221.987628][   T10] usb 3-1: can't read configurations, error -22
[  222.122170][   T10] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  222.204116][   T10] usb 3-1: no configurations
[  222.208744][   T10] usb 3-1: can't read configurations, error -22
[  222.219549][   T10] usb usb3-port1: unable to enumerate USB device
[  222.445140][   T48] usb 2-1: USB disconnect, device number 24
[  222.949116][ T8380] netlink: 4 bytes leftover after parsing attributes in process `syz.3.769'.
[  223.243925][   T48] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  223.244564][ T8389] netlink: 28 bytes leftover after parsing attributes in process `syz.3.772'.
[  223.303436][ T5913] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  223.403964][   T48] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  223.415237][   T48] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  223.440440][   T48] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  223.449875][   T48] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  223.459739][ T5913] usb 5-1: Using ep0 maxpacket: 8
[  223.488504][   T48] usb 3-1: Product: syz
[  223.494253][ T5913] usb 5-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  223.503589][ T5913] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.519335][   T48] usb 3-1: Manufacturer: syz
[  223.533146][   T48] usb 3-1: SerialNumber: syz
[  223.539615][ T5913] usb 5-1: config 0 descriptor??
[  223.750213][ T8376] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  223.771620][ T5913] asix 5-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  224.069501][ T8403] warning: `syz.1.778' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  224.270247][ T8402] FAULT_INJECTION: forcing a failure.
[  224.270247][ T8402] name failslab, interval 1, probability 0, space 0, times 0
[  224.324797][ T8402] CPU: 1 UID: 0 PID: 8402 Comm: syz.0.777 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  224.324827][ T8402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  224.324837][ T8402] Call Trace:
[  224.324844][ T8402]  <TASK>
[  224.324852][ T8402]  dump_stack_lvl+0x241/0x360
[  224.324888][ T8402]  ? __pfx_dump_stack_lvl+0x10/0x10
[  224.324910][ T8402]  ? __pfx__printk+0x10/0x10
[  224.324937][ T8402]  ? __pfx___might_resched+0x10/0x10
[  224.324962][ T8402]  should_fail_ex+0x424/0x570
[  224.324985][ T8402]  should_failslab+0xac/0x100
[  224.325009][ T8402]  kmem_cache_alloc_node_noprof+0x7d/0x3b0
[  224.325032][ T8402]  ? __alloc_skb+0x1c2/0x480
[  224.325059][ T8402]  __alloc_skb+0x1c2/0x480
[  224.325088][ T8402]  ? __pfx___alloc_skb+0x10/0x10
[  224.325121][ T8402]  netlink_sendmsg+0x638/0xcd0
[  224.325156][ T8402]  ? __pfx_netlink_sendmsg+0x10/0x10
[  224.325182][ T8402]  ? aa_sock_msg_perm+0x91/0x160
[  224.325210][ T8402]  ? __pfx_netlink_sendmsg+0x10/0x10
[  224.325230][ T8402]  __sock_sendmsg+0x221/0x270
[  224.325255][ T8402]  ____sys_sendmsg+0x523/0x860
[  224.325281][ T8402]  ? __pfx_____sys_sendmsg+0x10/0x10
[  224.325296][ T8402]  ? __fget_files+0x2a/0x420
[  224.325314][ T8402]  ? __fget_files+0x2a/0x420
[  224.325338][ T8402]  __sys_sendmsg+0x271/0x360
[  224.325361][ T8402]  ? __pfx___sys_sendmsg+0x10/0x10
[  224.325431][ T8402]  ? do_syscall_64+0xb6/0x230
[  224.325454][ T8402]  do_syscall_64+0xf3/0x230
[  224.325472][ T8402]  ? clear_bhb_loop+0x45/0xa0
[  224.325492][ T8402]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  224.325508][ T8402] RIP: 0033:0x7ff3a8d8d169
[  224.325522][ T8402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  224.325536][ T8402] RSP: 002b:00007ff3a9c5e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  224.325555][ T8402] RAX: ffffffffffffffda RBX: 00007ff3a8fa5fa0 RCX: 00007ff3a8d8d169
[  224.325567][ T8402] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000004
[  224.325577][ T8402] RBP: 00007ff3a9c5e090 R08: 0000000000000000 R09: 0000000000000000
[  224.325588][ T8402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  224.325598][ T8402] R13: 0000000000000000 R14: 00007ff3a8fa5fa0 R15: 00007ff3a90cfa28
[  224.325624][ T8402]  </TASK>
[  224.333847][ T8410] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[  224.369012][ T8376] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  224.740710][ T8413] netlink: 88 bytes leftover after parsing attributes in process `syz.1.780'.
[  224.882378][   T48] cdc_mbim 3-1:1.0: MAC-Address: 42:42:42:42:42:42
[  224.889112][   T48] cdc_mbim 3-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048
[  224.928218][   T48] cdc_mbim 3-1:1.0: setting rx_max = 2048
[  225.041190][ T5913] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  225.051971][ T5913] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9
[  225.072094][ T5913] asix 5-1:0.0: probe with driver asix failed with error -71
[  225.098899][   T48] cdc_mbim 3-1:1.0: setting tx_max = 184
[  225.130856][ T5913] usb 5-1: USB disconnect, device number 35
[  225.154214][   T48] cdc_mbim 3-1:1.0: cdc-wdm0: USB WDM device
[  225.191330][   T48] wwan wwan0: port wwan0mbim0 attached
[  225.222445][   T48] cdc_mbim 3-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.2-1, CDC MBIM, 42:42:42:42:42:42
[  225.303902][ T8376] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  225.327494][ T8376] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  225.351520][    C0] cdc_mbim 3-1:1.0: nonzero urb status received: -71
[  225.358397][    C0] cdc_mbim 3-1:1.0: wdm_int_callback - 0 bytes
[  225.365176][    C0] cdc_mbim 3-1:1.0: nonzero urb status received: -71
[  225.371860][    C0] cdc_mbim 3-1:1.0: wdm_int_callback - 0 bytes
[  225.378617][    C0] cdc_mbim 3-1:1.0: nonzero urb status received: -71
[  225.385287][    C0] cdc_mbim 3-1:1.0: wdm_int_callback - 0 bytes
[  225.391592][    C0] cdc_mbim 3-1:1.0: nonzero urb status received: -71
[  225.398257][    C0] cdc_mbim 3-1:1.0: wdm_int_callback - 0 bytes
[  225.404574][    C0] cdc_mbim 3-1:1.0: nonzero urb status received: -71
[  225.411239][    C0] cdc_mbim 3-1:1.0: wdm_int_callback - 0 bytes
[  225.417563][    C0] cdc_mbim 3-1:1.0: nonzero urb status received: -71
[  225.424238][    C0] cdc_mbim 3-1:1.0: wdm_int_callback - 0 bytes
[  225.430458][    C0] cdc_mbim 3-1:1.0: wdm_int_callback - usb_submit_urb failed with result -1
[  225.454385][ T5913] usb 3-1: USB disconnect, device number 30
[  225.479510][ T5913] cdc_mbim 3-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.2-1, CDC MBIM
[  225.502000][   T10] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  225.599372][ T5913] wwan wwan0: port wwan0mbim0 disconnected
[  225.656280][   T10] usb 1-1: Using ep0 maxpacket: 8
[  225.679050][   T10] usb 1-1: config 162 has an invalid interface number: 161 but max is 1
[  225.712716][   T10] usb 1-1: config 162 has an invalid descriptor of length 0, skipping remainder of the config
[  225.741520][ T8425] netlink: 144 bytes leftover after parsing attributes in process `syz.1.784'.
[  225.756504][   T10] usb 1-1: config 162 has 1 interface, different from the descriptor's value: 2
[  225.776976][   T10] usb 1-1: config 162 has no interface number 0
[  225.797452][   T10] usb 1-1: config 162 interface 161 altsetting 4 has a duplicate endpoint with address 0x9, skipping
[  225.847278][   T10] usb 1-1: config 162 interface 161 altsetting 4 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  225.926355][   T10] usb 1-1: config 162 interface 161 altsetting 4 endpoint 0x3 has invalid wMaxPacketSize 0
[  225.950453][   T10] usb 1-1: config 162 interface 161 altsetting 4 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  226.056365][   T10] usb 1-1: config 162 interface 161 has no altsetting 0
[  226.087918][   T10] usb 1-1: New USB device found, idVendor=13d3, idProduct=3346, bcdDevice=62.b7
[  226.098813][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.108348][   T10] usb 1-1: Product: syz
[  226.126731][   T10] usb 1-1: Manufacturer: syz
[  226.137832][   T10] usb 1-1: SerialNumber: syz
[  226.851952][ T5838] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  226.897545][   T10] usb 1-1: ath9k_htc: Device endpoint numbers are not the expected ones
[  226.927744][ T8461] kvm: kvm [8460]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x40000015) = 0x0
[  226.930191][   T10] usb 1-1: USB disconnect, device number 24
[  227.007729][ T5838] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  227.034942][ T5838] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  227.047830][ T5838] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  227.084753][ T5838] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.100218][ T8456] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  227.134373][ T5838] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  227.327778][   T48] usb 3-1: USB disconnect, device number 31
[  227.472749][ T5856] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  227.558462][ T8477] netlink: 'syz.4.795': attribute type 29 has an invalid length.
[  227.569263][ T8476] FAULT_INJECTION: forcing a failure.
[  227.569263][ T8476] name failslab, interval 1, probability 0, space 0, times 0
[  227.611943][ T8476] CPU: 1 UID: 0 PID: 8476 Comm: syz.0.796 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  227.611966][ T8476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  227.611976][ T8476] Call Trace:
[  227.611983][ T8476]  <TASK>
[  227.611990][ T8476]  dump_stack_lvl+0x241/0x360
[  227.612019][ T8476]  ? __pfx_dump_stack_lvl+0x10/0x10
[  227.612041][ T8476]  ? __pfx__printk+0x10/0x10
[  227.612074][ T8476]  should_fail_ex+0x424/0x570
[  227.612097][ T8476]  should_failslab+0xac/0x100
[  227.612120][ T8476]  __kmalloc_cache_noprof+0x73/0x370
[  227.612140][ T8476]  ? sctp_add_bind_addr+0x89/0x3a0
[  227.612170][ T8476]  sctp_add_bind_addr+0x89/0x3a0
[  227.612192][ T8476]  sctp_copy_local_addr_list+0x313/0x500
[  227.612215][ T8476]  ? sctp_copy_local_addr_list+0xad/0x500
[  227.612235][ T8476]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  227.612259][ T8476]  ? sctp_v4_is_any+0x35/0x60
[  227.612276][ T8476]  ? sctp_copy_one_addr+0x94/0x360
[  227.612299][ T8476]  sctp_bind_addr_copy+0xad/0x3b0
[  227.612327][ T8476]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  227.612348][ T8476]  sctp_connect_new_asoc+0x337/0x700
[  227.612373][ T8476]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  227.612396][ T8476]  ? sctp_endpoint_lookup_assoc+0x7c/0x250
[  227.612422][ T8476]  ? sctp_endpoint_lookup_assoc+0x7c/0x250
[  227.612443][ T8476]  ? sctp_endpoint_lookup_assoc+0x217/0x250
[  227.612464][ T8476]  ? sctp_endpoint_lookup_assoc+0x7c/0x250
[  227.612489][ T8476]  __sctp_connect+0x6ab/0xe60
[  227.612525][ T8476]  ? __pfx___sctp_connect+0x10/0x10
[  227.612555][ T8476]  ? _copy_from_user+0x95/0xb0
[  227.612574][ T8476]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  227.612596][ T8476]  sctp_getsockopt_connectx3+0x46e/0x730
[  227.612615][ T8476]  ? __local_bh_enable_ip+0x168/0x200
[  227.612634][ T8476]  ? __pfx_sctp_getsockopt_connectx3+0x10/0x10
[  227.612652][ T8476]  ? __local_bh_enable_ip+0x168/0x200
[  227.612668][ T8476]  ? sctp_getsockopt+0x13a/0xbb0
[  227.612690][ T8476]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  227.612716][ T8476]  sctp_getsockopt+0x8de/0xbb0
[  227.612737][ T8476]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  227.612762][ T8476]  do_sock_getsockopt+0x391/0x740
[  227.612785][ T8476]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  227.612796][ T8476]  ? __fget_files+0x2a/0x420
[  227.612809][ T8476]  ? __fget_files+0x39d/0x420
[  227.612819][ T8476]  ? __fget_files+0x2a/0x420
[  227.612836][ T8476]  __x64_sys_getsockopt+0x2a3/0x370
[  227.612854][ T8476]  ? __pfx___x64_sys_getsockopt+0x10/0x10
[  227.612872][ T8476]  ? do_syscall_64+0xb6/0x230
[  227.612889][ T8476]  do_syscall_64+0xf3/0x230
[  227.612903][ T8476]  ? clear_bhb_loop+0x45/0xa0
[  227.612918][ T8476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.612929][ T8476] RIP: 0033:0x7ff3a8d8d169
[  227.612942][ T8476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.612952][ T8476] RSP: 002b:00007ff3a9c5e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  227.612967][ T8476] RAX: ffffffffffffffda RBX: 00007ff3a8fa5fa0 RCX: 00007ff3a8d8d169
[  227.612977][ T8476] RDX: 000000000000006f RSI: 0000000000000084 RDI: 0000000000000003
[  227.612985][ T8476] RBP: 00007ff3a9c5e090 R08: 0000200000000100 R09: 0000000000000000
[  227.612993][ T8476] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000002
[  227.613001][ T8476] R13: 0000000000000000 R14: 00007ff3a8fa5fa0 R15: 00007ff3a90cfa28
[  227.613022][ T8476]  </TASK>
[  228.082134][ T5856] usb 2-1: Using ep0 maxpacket: 16
[  228.090423][ T5856] usb 2-1: config 0 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  228.101407][ T5856] usb 2-1: config 0 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0
[  228.112013][ T5856] usb 2-1: config 0 interface 0 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  228.128879][ T5856] usb 2-1: config 0 interface 0 has no altsetting 0
[  228.135590][ T5856] usb 2-1: New USB device found, idVendor=0458, idProduct=5010, bcdDevice= 0.00
[  228.144702][ T5856] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  228.156199][ T5856] usb 2-1: config 0 descriptor??
[  228.232496][ T8487] FAULT_INJECTION: forcing a failure.
[  228.232496][ T8487] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  228.272441][ T8487] CPU: 1 UID: 0 PID: 8487 Comm: syz.2.797 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  228.272469][ T8487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  228.272479][ T8487] Call Trace:
[  228.272486][ T8487]  <TASK>
[  228.272493][ T8487]  dump_stack_lvl+0x241/0x360
[  228.272523][ T8487]  ? __pfx_dump_stack_lvl+0x10/0x10
[  228.272549][ T8487]  ? __pfx__printk+0x10/0x10
[  228.272583][ T8487]  should_fail_ex+0x424/0x570
[  228.272606][ T8487]  _copy_from_user+0x2d/0xb0
[  228.272629][ T8487]  copy_msghdr_from_user+0xb3/0x580
[  228.272656][ T8487]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  228.272692][ T8487]  __sys_sendmmsg+0x361/0x7b0
[  228.272721][ T8487]  ? __pfx___sys_sendmmsg+0x10/0x10
[  228.272772][ T8487]  ? rcu_read_lock_any_held+0xbb/0x160
[  228.272794][ T8487]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  228.272818][ T8487]  ? vfs_write+0xb29/0xd10
[  228.272847][ T8487]  ? ksys_write+0x24e/0x2d0
[  228.272869][ T8487]  ? __mutex_unlock_slowpath+0x229/0x800
[  228.272917][ T8487]  ? ksys_write+0x275/0x2d0
[  228.272947][ T8487]  __x64_sys_sendmmsg+0xa0/0xb0
[  228.272966][ T8487]  do_syscall_64+0xf3/0x230
[  228.272985][ T8487]  ? clear_bhb_loop+0x45/0xa0
[  228.273004][ T8487]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.273020][ T8487] RIP: 0033:0x7f253a78d169
[  228.273035][ T8487] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.273049][ T8487] RSP: 002b:00007f253b5e4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  228.273068][ T8487] RAX: ffffffffffffffda RBX: 00007f253a9a5fa0 RCX: 00007f253a78d169
[  228.273080][ T8487] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000005
[  228.273091][ T8487] RBP: 00007f253b5e4090 R08: 0000000000000000 R09: 0000000000000000
[  228.273101][ T8487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  228.273111][ T8487] R13: 0000000000000000 R14: 00007f253a9a5fa0 R15: 00007f253aacfa28
[  228.273138][ T8487]  </TASK>
[  228.496780][ T8466] FAULT_INJECTION: forcing a failure.
[  228.496780][ T8466] name failslab, interval 1, probability 0, space 0, times 0
[  228.510036][ T8466] CPU: 1 UID: 0 PID: 8466 Comm: syz.1.794 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  228.510058][ T8466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  228.510069][ T8466] Call Trace:
[  228.510077][ T8466]  <TASK>
[  228.510084][ T8466]  dump_stack_lvl+0x241/0x360
[  228.510115][ T8466]  ? __pfx_dump_stack_lvl+0x10/0x10
[  228.510141][ T8466]  ? __pfx__printk+0x10/0x10
[  228.510176][ T8466]  should_fail_ex+0x424/0x570
[  228.510200][ T8466]  should_failslab+0xac/0x100
[  228.510224][ T8466]  __kmalloc_cache_noprof+0x73/0x370
[  228.510252][ T8466]  ? tipc_group_create+0xa5/0x500
[  228.510277][ T8466]  tipc_group_create+0xa5/0x500
[  228.510304][ T8466]  tipc_sk_join+0x215/0x8a0
[  228.510320][ T8466]  ? __local_bh_enable_ip+0x168/0x200
[  228.510336][ T8466]  ? lockdep_hardirqs_on+0x9d/0x150
[  228.510361][ T8466]  ? __pfx_tipc_sk_join+0x10/0x10
[  228.510389][ T8466]  tipc_setsockopt+0x914/0xc40
[  228.510412][ T8466]  ? __pfx_tipc_setsockopt+0x10/0x10
[  228.510433][ T8466]  ? aa_sock_opt_perm+0x79/0x120
[  228.510461][ T8466]  ? __pfx_tipc_setsockopt+0x10/0x10
[  228.510476][ T8466]  do_sock_setsockopt+0x3b1/0x710
[  228.510500][ T8466]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  228.510514][ T8466]  ? __fget_files+0x2a/0x420
[  228.510533][ T8466]  ? __fget_files+0x39d/0x420
[  228.510546][ T8466]  ? __fget_files+0x2a/0x420
[  228.510570][ T8466]  __x64_sys_setsockopt+0x1ee/0x280
[  228.510594][ T8466]  do_syscall_64+0xf3/0x230
[  228.510614][ T8466]  ? clear_bhb_loop+0x45/0xa0
[  228.510633][ T8466]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.510649][ T8466] RIP: 0033:0x7f633398d169
[  228.510664][ T8466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.510677][ T8466] RSP: 002b:00007f63317f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  228.510696][ T8466] RAX: ffffffffffffffda RBX: 00007f6333ba5fa0 RCX: 00007f633398d169
[  228.510708][ T8466] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000005
[  228.510718][ T8466] RBP: 00007f63317f6090 R08: 0000000000000010 R09: 0000000000000000
[  228.510728][ T8466] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001
[  228.510739][ T8466] R13: 0000000000000000 R14: 00007f6333ba5fa0 R15: 00007f6333ccfa28
[  228.510767][ T8466]  </TASK>
[  228.769857][ T5856] usbhid 2-1:0.0: can't add hid device: -71
[  228.775931][ T5856] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  228.793492][ T5856] usb 2-1: USB disconnect, device number 25
[  228.812096][ T5838] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  228.992115][ T5838] usb 1-1: Using ep0 maxpacket: 16
[  229.011345][ T5838] usb 1-1: unable to get BOS descriptor or descriptor too short
[  229.031685][ T5838] usb 1-1: unable to read config index 0 descriptor/start: -71
[  229.049153][ T8495] netlink: 'syz.4.801': attribute type 13 has an invalid length.
[  229.072229][ T5838] usb 1-1: can't read configurations, error -71
[  229.099337][ T8495] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  229.117975][ T8495] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  229.126008][ T8495] gretap1: entered promiscuous mode
[  229.131412][ T8495] gretap1: entered allmulticast mode
[  229.525895][ T8511] FAULT_INJECTION: forcing a failure.
[  229.525895][ T8511] name failslab, interval 1, probability 0, space 0, times 0
[  229.547066][ T8511] CPU: 0 UID: 0 PID: 8511 Comm: syz.1.807 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  229.547084][ T8511] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  229.547090][ T8511] Call Trace:
[  229.547094][ T8511]  <TASK>
[  229.547099][ T8511]  dump_stack_lvl+0x241/0x360
[  229.547118][ T8511]  ? __pfx_dump_stack_lvl+0x10/0x10
[  229.547131][ T8511]  ? __pfx__printk+0x10/0x10
[  229.547154][ T8511]  ? __pfx___might_resched+0x10/0x10
[  229.547169][ T8511]  should_fail_ex+0x424/0x570
[  229.547183][ T8511]  should_failslab+0xac/0x100
[  229.547197][ T8511]  __kmalloc_cache_noprof+0x73/0x370
[  229.547210][ T8511]  ? nf_tables_newtable+0x551/0x1e80
[  229.547226][ T8511]  nf_tables_newtable+0x551/0x1e80
[  229.547239][ T8511]  ? __lock_acquire+0xad5/0xd80
[  229.547255][ T8511]  ? __pfx_nf_tables_newtable+0x10/0x10
[  229.547272][ T8511]  ? __nla_parse+0x40/0x60
[  229.547286][ T8511]  nfnetlink_rcv+0x12eb/0x28f0
[  229.547314][ T8511]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  229.547349][ T8511]  ? skb_clone+0x240/0x390
[  229.547366][ T8511]  ? netlink_deliver_tap+0x2e/0x1b0
[  229.547380][ T8511]  ? netlink_deliver_tap+0x2e/0x1b0
[  229.547393][ T8511]  netlink_unicast+0x7f8/0x9a0
[  229.547409][ T8511]  ? __pfx_netlink_unicast+0x10/0x10
[  229.547421][ T8511]  ? skb_put+0x114/0x1f0
[  229.547432][ T8511]  netlink_sendmsg+0x8c3/0xcd0
[  229.547451][ T8511]  ? __pfx_netlink_sendmsg+0x10/0x10
[  229.547465][ T8511]  ? aa_sock_msg_perm+0x91/0x160
[  229.547481][ T8511]  ? __pfx_netlink_sendmsg+0x10/0x10
[  229.547492][ T8511]  __sock_sendmsg+0x221/0x270
[  229.547505][ T8511]  ____sys_sendmsg+0x523/0x860
[  229.547520][ T8511]  ? __pfx_____sys_sendmsg+0x10/0x10
[  229.547528][ T8511]  ? __fget_files+0x2a/0x420
[  229.547539][ T8511]  ? __fget_files+0x2a/0x420
[  229.547552][ T8511]  __sys_sendmsg+0x271/0x360
[  229.547564][ T8511]  ? __pfx___sys_sendmsg+0x10/0x10
[  229.547602][ T8511]  ? do_syscall_64+0xb6/0x230
[  229.547615][ T8511]  do_syscall_64+0xf3/0x230
[  229.547625][ T8511]  ? clear_bhb_loop+0x45/0xa0
[  229.547636][ T8511]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.547646][ T8511] RIP: 0033:0x7f633398d169
[  229.547655][ T8511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  229.547667][ T8511] RSP: 002b:00007f63317f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  229.547678][ T8511] RAX: ffffffffffffffda RBX: 00007f6333ba5fa0 RCX: 00007f633398d169
[  229.547684][ T8511] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  229.547690][ T8511] RBP: 00007f63317f6090 R08: 0000000000000000 R09: 0000000000000000
[  229.547696][ T8511] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  229.547701][ T8511] R13: 0000000000000000 R14: 00007f6333ba5fa0 R15: 00007f6333ccfa28
[  229.547716][ T8511]  </TASK>
[  229.961803][ T8518] netlink: 76 bytes leftover after parsing attributes in process `syz.0.809'.
[  229.972262][ T8518] netlink: 56 bytes leftover after parsing attributes in process `syz.0.809'.
[  230.191957][ T5856] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[  230.341919][ T5856] usb 4-1: Using ep0 maxpacket: 8
[  230.348305][ T5856] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  230.359181][ T5856] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  230.368147][   T48] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  230.378986][ T5856] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  230.388471][ T5856] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  230.396588][ T5856] usb 4-1: Product: syz
[  230.400821][ T5856] usb 4-1: Manufacturer: syz
[  230.405498][ T5856] usb 4-1: SerialNumber: syz
[  230.524262][   T48] usb 5-1: config 0 has no interfaces?
[  230.533611][   T48] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  230.546822][   T48] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  230.557589][   T48] usb 5-1: Product: syz
[  230.561764][   T48] usb 5-1: Manufacturer: syz
[  230.568849][   T48] usb 5-1: SerialNumber: syz
[  230.576496][   T48] usb 5-1: config 0 descriptor??
[  230.690057][ T5856] usb 4-1: 0:2 : does not exist
[  230.714893][ T5856] usb 4-1: USB disconnect, device number 35
[  230.780319][ T8533] netlink: 136 bytes leftover after parsing attributes in process `syz.0.815'.
[  230.790778][ T8533] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  230.857934][ T5838] usb 5-1: USB disconnect, device number 36
[  230.907503][ T6401] udevd[6401]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  230.981292][ T8537] netlink: 20 bytes leftover after parsing attributes in process `syz.0.817'.
[  230.991793][ T8537] netlink: 'syz.0.817': attribute type 3 has an invalid length.
[  231.485184][ T8551] netlink: 4 bytes leftover after parsing attributes in process `syz.3.822'.
[  231.900877][ T8565] FAULT_INJECTION: forcing a failure.
[  231.900877][ T8565] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  231.914333][ T8565] CPU: 1 UID: 0 PID: 8565 Comm: syz.0.827 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  231.914355][ T8565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  231.914365][ T8565] Call Trace:
[  231.914371][ T8565]  <TASK>
[  231.914379][ T8565]  dump_stack_lvl+0x241/0x360
[  231.914409][ T8565]  ? __pfx_dump_stack_lvl+0x10/0x10
[  231.914430][ T8565]  ? __pfx__printk+0x10/0x10
[  231.914455][ T8565]  should_fail_ex+0x424/0x570
[  231.914469][ T8565]  _copy_to_user+0x31/0xb0
[  231.914484][ T8565]  simple_read_from_buffer+0xc4/0x170
[  231.914500][ T8565]  proc_fail_nth_read+0x1ef/0x260
[  231.914512][ T8565]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  231.914523][ T8565]  ? rw_verify_area+0x246/0x630
[  231.914533][ T8565]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  231.914543][ T8565]  vfs_read+0x21f/0xb90
[  231.914556][ T8565]  ? __pfx___mutex_lock+0x10/0x10
[  231.914569][ T8565]  ? __pfx_vfs_read+0x10/0x10
[  231.914581][ T8565]  ? __fget_files+0x2a/0x420
[  231.914590][ T8565]  ? __fget_files+0x39d/0x420
[  231.914598][ T8565]  ? __fget_files+0x2a/0x420
[  231.914611][ T8565]  ksys_read+0x19d/0x2d0
[  231.914623][ T8565]  ? __pfx_ksys_read+0x10/0x10
[  231.914636][ T8565]  ? do_syscall_64+0xb6/0x230
[  231.914648][ T8565]  do_syscall_64+0xf3/0x230
[  231.914658][ T8565]  ? clear_bhb_loop+0x45/0xa0
[  231.914669][ T8565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.914679][ T8565] RIP: 0033:0x7ff3a8d8bb7c
[  231.914688][ T8565] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  231.914695][ T8565] RSP: 002b:00007ff3a9c5e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  231.914707][ T8565] RAX: ffffffffffffffda RBX: 00007ff3a8fa5fa0 RCX: 00007ff3a8d8bb7c
[  231.914713][ T8565] RDX: 000000000000000f RSI: 00007ff3a9c5e0a0 RDI: 0000000000000004
[  231.914719][ T8565] RBP: 00007ff3a9c5e090 R08: 0000000000000000 R09: 0000000000000000
[  231.914725][ T8565] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  231.914730][ T8565] R13: 0000000000000000 R14: 00007ff3a8fa5fa0 R15: 00007ff3a90cfa28
[  231.914745][ T8565]  </TASK>
[  232.246594][ T8570] FAULT_INJECTION: forcing a failure.
[  232.246594][ T8570] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  232.259785][ T8570] CPU: 1 UID: 0 PID: 8570 Comm: syz.0.829 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  232.259808][ T8570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  232.259818][ T8570] Call Trace:
[  232.259825][ T8570]  <TASK>
[  232.259832][ T8570]  dump_stack_lvl+0x241/0x360
[  232.259862][ T8570]  ? __pfx_dump_stack_lvl+0x10/0x10
[  232.259885][ T8570]  ? __pfx__printk+0x10/0x10
[  232.259918][ T8570]  should_fail_ex+0x424/0x570
[  232.259941][ T8570]  _copy_to_user+0x31/0xb0
[  232.259966][ T8570]  simple_read_from_buffer+0xc4/0x170
[  232.259993][ T8570]  proc_fail_nth_read+0x1ef/0x260
[  232.260014][ T8570]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  232.260034][ T8570]  ? rw_verify_area+0x246/0x630
[  232.260051][ T8570]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  232.260071][ T8570]  vfs_read+0x21f/0xb90
[  232.260094][ T8570]  ? __pfx___mutex_lock+0x10/0x10
[  232.260114][ T8570]  ? __pfx_vfs_read+0x10/0x10
[  232.260136][ T8570]  ? __fget_files+0x2a/0x420
[  232.260152][ T8570]  ? __fget_files+0x39d/0x420
[  232.260166][ T8570]  ? __fget_files+0x2a/0x420
[  232.260196][ T8570]  ksys_read+0x19d/0x2d0
[  232.260217][ T8570]  ? __pfx_ksys_read+0x10/0x10
[  232.260241][ T8570]  ? do_syscall_64+0xb6/0x230
[  232.260263][ T8570]  do_syscall_64+0xf3/0x230
[  232.260282][ T8570]  ? clear_bhb_loop+0x45/0xa0
[  232.260301][ T8570]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.260316][ T8570] RIP: 0033:0x7ff3a8d8bb7c
[  232.260331][ T8570] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  232.260345][ T8570] RSP: 002b:00007ff3a9c5e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  232.260363][ T8570] RAX: ffffffffffffffda RBX: 00007ff3a8fa5fa0 RCX: 00007ff3a8d8bb7c
[  232.260375][ T8570] RDX: 000000000000000f RSI: 00007ff3a9c5e0a0 RDI: 0000000000000004
[  232.260386][ T8570] RBP: 00007ff3a9c5e090 R08: 0000000000000000 R09: 0000000000000000
[  232.260396][ T8570] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  232.260406][ T8570] R13: 0000000000000000 R14: 00007ff3a8fa5fa0 R15: 00007ff3a90cfa28
[  232.260434][ T8570]  </TASK>
[  232.493387][ T5856] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  232.564742][ T5895] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  232.578182][ T8574] netlink: 32 bytes leftover after parsing attributes in process `syz.0.832'.
[  232.608565][ T8576] FAULT_INJECTION: forcing a failure.
[  232.608565][ T8576] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  232.621752][ T8576] CPU: 1 UID: 0 PID: 8576 Comm: syz.1.833 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  232.621773][ T8576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  232.621783][ T8576] Call Trace:
[  232.621790][ T8576]  <TASK>
[  232.621797][ T8576]  dump_stack_lvl+0x241/0x360
[  232.621825][ T8576]  ? __pfx_dump_stack_lvl+0x10/0x10
[  232.621850][ T8576]  ? __pfx__printk+0x10/0x10
[  232.621881][ T8576]  should_fail_ex+0x424/0x570
[  232.621902][ T8576]  _copy_from_user+0x2d/0xb0
[  232.621924][ T8576]  get_user_ifreq+0xc3/0x200
[  232.621946][ T8576]  sock_do_ioctl+0x1a7/0x490
[  232.621969][ T8576]  ? __pfx_sock_do_ioctl+0x10/0x10
[  232.621992][ T8576]  ? __lock_acquire+0xad5/0xd80
[  232.622019][ T8576]  sock_ioctl+0x644/0x900
[  232.622039][ T8576]  ? __pfx_sock_ioctl+0x10/0x10
[  232.622056][ T8576]  ? __fget_files+0x2a/0x420
[  232.622069][ T8576]  ? __fget_files+0x2a/0x420
[  232.622086][ T8576]  ? __fget_files+0x2a/0x420
[  232.622103][ T8576]  ? __pfx_sock_ioctl+0x10/0x10
[  232.622122][ T8576]  __se_sys_ioctl+0xf1/0x160
[  232.622150][ T8576]  do_syscall_64+0xf3/0x230
[  232.622168][ T8576]  ? clear_bhb_loop+0x45/0xa0
[  232.622188][ T8576]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.622203][ T8576] RIP: 0033:0x7f633398d169
[  232.622218][ T8576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  232.622232][ T8576] RSP: 002b:00007f63317f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  232.622250][ T8576] RAX: ffffffffffffffda RBX: 00007f6333ba5fa0 RCX: 00007f633398d169
[  232.622262][ T8576] RDX: 0000200000000040 RSI: 0000000000008914 RDI: 0000000000000003
[  232.622273][ T8576] RBP: 00007f63317f6090 R08: 0000000000000000 R09: 0000000000000000
[  232.622283][ T8576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  232.622293][ T8576] R13: 0000000000000000 R14: 00007f6333ba5fa0 R15: 00007f6333ccfa28
[  232.622321][ T8576]  </TASK>
[  232.821389][ T8574] netlink: 32 bytes leftover after parsing attributes in process `syz.0.832'.
[  232.827937][ T5856] usb 5-1: device descriptor read/64, error -71
[  232.952501][ T5895] usb 4-1: Using ep0 maxpacket: 16
[  232.961403][ T5895] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  232.972008][ T5895] usb 4-1: config 0 has no interfaces?
[  232.982197][ T5895] usb 4-1: New USB device found, idVendor=1d6b, idProduct=1301, bcdDevice= 1.40
[  232.991259][ T5895] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  232.999349][ T5895] usb 4-1: Product: syz
[  233.004903][ T5895] usb 4-1: Manufacturer: syz
[  233.009511][ T5895] usb 4-1: SerialNumber: syz
[  233.025791][ T5895] usb 4-1: config 0 descriptor??
[  233.071966][ T5856] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  233.084901][ T8582] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  233.108156][ T8582] syz.0.835 (8582): drop_caches: 0
[  233.122021][ T8584] netlink: 4 bytes leftover after parsing attributes in process `syz.1.836'.
[  233.203862][ T5856] usb 5-1: device descriptor read/64, error -71
[  233.322289][ T5856] usb usb5-port1: attempt power cycle
[  233.344443][ T5891] IPVS: starting estimator thread 0...
[  233.452039][ T8593] IPVS: using max 51 ests per chain, 122400 per kthread
[  233.542594][ T8595] fuse: Bad value for 'fd'
[  233.621796][ T8597] fuse: Bad value for 'fd'
[  233.681945][ T5856] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[  233.716605][ T5856] usb 5-1: device descriptor read/8, error -71
[  233.788359][   T30] kauditd_printk_skb: 27 callbacks suppressed
[  233.788377][   T30] audit: type=1326 audit(1743799783.172:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.0.841" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff3a8d8d169 code=0x0
[  233.971940][ T5856] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  233.992617][ T5856] usb 5-1: device descriptor read/8, error -71
[  234.072342][ T5891] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  234.103498][ T5856] usb usb5-port1: unable to enumerate USB device
[  234.251971][ T5891] usb 1-1: Using ep0 maxpacket: 8
[  234.258482][ T5891] usb 1-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  234.269086][ T5891] usb 1-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  234.282291][ T5891] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  234.291327][ T5891] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.307808][ T5891] usbtmc 1-1:16.0: bulk endpoints not found
[  234.933030][ T5891] usb 4-1: USB disconnect, device number 36
[  235.301964][ T5838] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  235.461992][ T5891] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  235.469683][ T5838] usb 2-1: Using ep0 maxpacket: 32
[  235.477240][ T5838] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  235.488281][ T5838] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  235.499626][ T5838] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  235.508757][ T5838] usb 2-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  235.517155][ T5838] usb 2-1: Product: syz
[  235.521300][ T5838] usb 2-1: Manufacturer: syz
[  235.531109][ T5838] hub 2-1:4.0: USB hub found
[  235.632066][ T5891] usb 4-1: Using ep0 maxpacket: 16
[  235.648137][ T5891] usb 4-1: config 0 interface 0 altsetting 8 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  235.661983][ T5891] usb 4-1: config 0 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  235.676184][ T5891] usb 4-1: config 0 interface 0 has no altsetting 0
[  235.682959][ T5891] usb 4-1: New USB device found, idVendor=04d8, idProduct=00df, bcdDevice= 0.00
[  235.692373][ T5891] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  235.703388][ T5891] usb 4-1: config 0 descriptor??
[  235.735454][ T5838] hub 2-1:4.0: 2 ports detected
[  235.750748][ T8621] netlink: 4 bytes leftover after parsing attributes in process `syz.4.847'.
[  235.772284][ T8621] netlink: 'syz.4.847': attribute type 4 has an invalid length.
[  235.936701][ T8615] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  235.957794][ T8615] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  235.975342][ T5838] hub 2-1:4.0: hub_hub_status failed (err = -71)
[  235.985537][ T5838] hub 2-1:4.0: config failed, can't get hub status (err -71)
[  235.995840][ T8627] syz_tun: entered allmulticast mode
[  236.007297][ T8626] syz_tun: left allmulticast mode
[  236.025264][ T5838] usb 2-1: USB disconnect, device number 26
[  236.122536][ T5891] mcp2200 0003:04D8:00DF.000B: USB HID v0.00 Device [HID 04d8:00df] on usb-dummy_hcd.3-1/input0
[  236.327715][ T5838] usb 4-1: USB disconnect, device number 37
[  236.681991][ T1209] usb 5-1: new high-speed USB device number 41 using dummy_hcd
[  236.807641][ T5895] usb 1-1: USB disconnect, device number 27
[  236.868609][ T1209] usb 5-1: too many configurations: 151, using maximum allowed: 8
[  236.977030][ T1209] usb 5-1: New USB device found, idVendor=04d8, idProduct=0082, bcdDevice=ce.b7
[  236.994009][ T1209] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=130
[  237.030740][ T1209] usb 5-1: Product: syz
[  237.140321][ T1209] usb 5-1: Manufacturer: syz
[  237.161334][ T1209] usb 5-1: SerialNumber: syz
[  237.171981][  T975] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  237.229368][ T1209] usb 5-1: config 0 descriptor??
[  237.517555][ T1209] usb 5-1: USB disconnect, device number 41
[  238.422000][ T1209] usb 5-1: new full-speed USB device number 42 using dummy_hcd
[  238.547191][   T30] audit: type=1326 audit(1743799787.932:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8677 comm="syz.2.864" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f253a78d169 code=0x0
[  238.603527][ T1209] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  238.617472][ T1209] usb 5-1: New USB device found, idVendor=0e8f, idProduct=0003, bcdDevice= 0.00
[  238.651929][ T1209] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  238.672895][ T1209] usb 5-1: config 0 descriptor??
[  238.781964][ T8682] netlink: 'syz.3.865': attribute type 5 has an invalid length.
[  238.832072][ T5856] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  238.992028][ T5856] usb 3-1: Using ep0 maxpacket: 8
[  239.002709][ T5856] usb 3-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  239.017281][ T5856] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  239.027195][ T5856] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  239.044557][ T5856] usb 3-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  239.063780][ T5856] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  239.073419][ T5856] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  239.090242][ T1209] pantherlord 0003:0E8F:0003.000C: item fetching failed at offset 3/5
[  239.100203][ T5856] usbtmc 3-1:16.0: bulk endpoints not found
[  239.109663][ T1209] pantherlord 0003:0E8F:0003.000C: parse failed
[  239.118563][ T1209] pantherlord 0003:0E8F:0003.000C: probe with driver pantherlord failed with error -22
[  239.122031][ T5838] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  239.296067][ T5891] usb 5-1: USB disconnect, device number 42
[  239.315666][ T5838] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  239.329767][ T5838] usb 1-1: config 0 interface 0 has no altsetting 0
[  239.338131][ T5838] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  239.354776][ T5838] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  239.376571][ T5838] usb 1-1: config 0 descriptor??
[  239.378658][ T8701] 
[  239.383849][ T8701] ======================================================
[  239.390856][ T8701] WARNING: possible circular locking dependency detected
[  239.396202][ T5838] pwc: Askey VC010 type 2 USB webcam detected.
[  239.397854][ T8701] 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 Not tainted
[  239.410730][ T8701] ------------------------------------------------------
[  239.417737][ T8701] syz.3.870/8701 is trying to acquire lock:
[  239.423614][ T8701] ffffffff900fc808 (rtnl_mutex){+.+.}-{4:4}, at: do_ipv6_setsockopt+0xa9a/0x3680
[  239.432778][ T8701] 
[  239.432778][ T8701] but task is already holding lock:
[  239.440132][ T8701] ffff88802f990aa0 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x1b2/0xd50
[  239.450236][ T8701] 
[  239.450236][ T8701] which lock already depends on the new lock.
[  239.450236][ T8701] 
[  239.460628][ T8701] 
[  239.460628][ T8701] the existing dependency chain (in reverse order) is:
[  239.469626][ T8701] 
[  239.469626][ T8701] -> #2 (&smc->clcsock_release_lock){+.+.}-{4:4}:
[  239.478221][ T8701]        lock_acquire+0x116/0x2f0
[  239.483235][ T8701]        __mutex_lock+0x1a5/0x10c0
[  239.488333][ T8701]        smc_switch_to_fallback+0x35/0xda0
[  239.494125][ T8701]        smc_sendmsg+0x11f/0x530
[  239.499050][ T8701]        __sock_sendmsg+0x221/0x270
[  239.504233][ T8701]        __sys_sendto+0x365/0x4c0
[  239.509244][ T8701]        __x64_sys_sendto+0xde/0x100
[  239.514526][ T8701]        do_syscall_64+0xf3/0x230
[  239.519537][ T8701]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.525937][ T8701] 
[  239.525937][ T8701] -> #1 (sk_lock-AF_INET){+.+.}-{0:0}:
[  239.533572][ T8701]        lock_acquire+0x116/0x2f0
[  239.538579][ T8701]        lock_sock_nested+0x48/0x100
[  239.543850][ T8701]        do_ip_setsockopt+0x17e9/0x39c0
[  239.549384][ T8701]        ip_setsockopt+0x63/0x100
[  239.554391][ T8701]        do_sock_setsockopt+0x3b1/0x710
[  239.559919][ T8701]        __x64_sys_setsockopt+0x1ee/0x280
[  239.565626][ T8701]        do_syscall_64+0xf3/0x230
[  239.570637][ T8701]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.577036][ T8701] 
[  239.577036][ T8701] -> #0 (rtnl_mutex){+.+.}-{4:4}:
[  239.584238][ T8701]        validate_chain+0xa69/0x24e0
[  239.589523][ T8701]        __lock_acquire+0xad5/0xd80
[  239.594705][ T8701]        lock_acquire+0x116/0x2f0
[  239.599709][ T8701]        __mutex_lock+0x1a5/0x10c0
[  239.604807][ T8701]        do_ipv6_setsockopt+0xa9a/0x3680
[  239.610431][ T8701]        ipv6_setsockopt+0x5d/0x170
[  239.615618][ T8701]        smc_setsockopt+0x25c/0xd50
[  239.620800][ T8701]        do_sock_setsockopt+0x3b1/0x710
[  239.626326][ T8701]        __x64_sys_setsockopt+0x1ee/0x280
[  239.632030][ T8701]        do_syscall_64+0xf3/0x230
[  239.637038][ T8701]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.643435][ T8701] 
[  239.643435][ T8701] other info that might help us debug this:
[  239.643435][ T8701] 
[  239.653641][ T8701] Chain exists of:
[  239.653641][ T8701]   rtnl_mutex --> sk_lock-AF_INET --> &smc->clcsock_release_lock
[  239.653641][ T8701] 
[  239.667187][ T8701]  Possible unsafe locking scenario:
[  239.667187][ T8701] 
[  239.674620][ T8701]        CPU0                    CPU1
[  239.679964][ T8701]        ----                    ----
[  239.685309][ T8701]   lock(&smc->clcsock_release_lock);
[  239.690668][ T8701]                                lock(sk_lock-AF_INET);
[  239.697592][ T8701]                                lock(&smc->clcsock_release_lock);
[  239.705467][ T8701]   lock(rtnl_mutex);
[  239.709440][ T8701] 
[  239.709440][ T8701]  *** DEADLOCK ***
[  239.709440][ T8701] 
[  239.717563][ T8701] 1 lock held by syz.3.870/8701:
[  239.722479][ T8701]  #0: ffff88802f990aa0 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x1b2/0xd50
[  239.733004][ T8701] 
[  239.733004][ T8701] stack backtrace:
[  239.738878][ T8701] CPU: 1 UID: 0 PID: 8701 Comm: syz.3.870 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  239.738896][ T8701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  239.738904][ T8701] Call Trace:
[  239.738911][ T8701]  <TASK>
[  239.738917][ T8701]  dump_stack_lvl+0x241/0x360
[  239.738938][ T8701]  ? __pfx_dump_stack_lvl+0x10/0x10
[  239.738956][ T8701]  ? __pfx__printk+0x10/0x10
[  239.738973][ T8701]  ? print_lock+0x171/0x1a0
[  239.738992][ T8701]  print_circular_bug+0x2e1/0x300
[  239.739010][ T8701]  check_noncircular+0x142/0x160
[  239.739029][ T8701]  validate_chain+0xa69/0x24e0
[  239.739047][ T8701]  ? __pfx___switch_to+0x10/0x10
[  239.739070][ T8701]  __lock_acquire+0xad5/0xd80
[  239.739085][ T8701]  lock_acquire+0x116/0x2f0
[  239.739097][ T8701]  ? do_ipv6_setsockopt+0xa9a/0x3680
[  239.739119][ T8701]  __mutex_lock+0x1a5/0x10c0
[  239.739136][ T8701]  ? do_ipv6_setsockopt+0xa9a/0x3680
[  239.739153][ T8701]  ? __lock_acquire+0xad5/0xd80
[  239.739167][ T8701]  ? do_ipv6_setsockopt+0xa9a/0x3680
[  239.739183][ T8701]  ? __pfx___mutex_lock+0x10/0x10
[  239.739203][ T8701]  do_ipv6_setsockopt+0xa9a/0x3680
[  239.739221][ T8701]  ? register_lock_class+0x54/0x330
[  239.739234][ T8701]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[  239.739254][ T8701]  ? __lock_acquire+0xad5/0xd80
[  239.739269][ T8701]  ? __mutex_trylock_common+0x184/0x2e0
[  239.739287][ T8701]  ? __pfx___mutex_trylock_common+0x10/0x10
[  239.739304][ T8701]  ? rcu_is_watching+0x15/0xb0
[  239.739320][ T8701]  ? trace_contention_end+0x3c/0x120
[  239.739335][ T8701]  ? __mutex_lock+0x380/0x10c0
[  239.739352][ T8701]  ? smc_setsockopt+0x1b2/0xd50
[  239.739365][ T8701]  ? __pfx___mutex_lock+0x10/0x10
[  239.739384][ T8701]  ipv6_setsockopt+0x5d/0x170
[  239.739404][ T8701]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  239.739422][ T8701]  smc_setsockopt+0x25c/0xd50
[  239.739436][ T8701]  ? __pfx_aa_sk_perm+0x10/0x10
[  239.739452][ T8701]  ? __pfx_smc_setsockopt+0x10/0x10
[  239.739465][ T8701]  ? aa_sock_opt_perm+0x79/0x120
[  239.739484][ T8701]  ? __pfx_smc_setsockopt+0x10/0x10
[  239.739501][ T8701]  do_sock_setsockopt+0x3b1/0x710
[  239.739515][ T8701]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  239.739530][ T8701]  ? __fget_files+0x2a/0x420
[  239.739543][ T8701]  ? __fget_files+0x39d/0x420
[  239.739554][ T8701]  ? __fget_files+0x2a/0x420
[  239.739567][ T8701]  __x64_sys_setsockopt+0x1ee/0x280
[  239.739581][ T8701]  do_syscall_64+0xf3/0x230
[  239.739596][ T8701]  ? clear_bhb_loop+0x45/0xa0
[  239.739610][ T8701]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.739623][ T8701] RIP: 0033:0x7fb55ff8d169
[  239.739636][ T8701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.739647][ T8701] RSP: 002b:00007fb560e45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  239.739664][ T8701] RAX: ffffffffffffffda RBX: 00007fb5601a5fa0 RCX: 00007fb55ff8d169
[  239.739675][ T8701] RDX: 000000000000001b RSI: 0000000000000029 RDI: 0000000000000003
[  239.739683][ T8701] RBP: 00007fb56000e2a0 R08: 0000000000000014 R09: 0000000000000000
[  239.739692][ T8701] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000000
[  239.739700][ T8701] R13: 0000000000000000 R14: 00007fb5601a5fa0 R15: 00007fb5602cfa28
[  239.739714][ T8701]  </TASK>
[  240.282693][ T5838] pwc: recv_control_msg error -32 req 02 val 2b00
[  240.492058][ T5838] pwc: recv_control_msg error -32 req 02 val 2c00
[  241.553161][ T5856] usb 3-1: USB disconnect, device number 33
[  241.814569][ T5838] pwc: recv_control_msg error -71 req 04 val 1000
[  241.827992][ T5838] pwc: recv_control_msg error -71 req 04 val 1300
[  241.836403][ T5838] pwc: recv_control_msg error -71 req 04 val 1400
[  241.843933][ T5838] pwc: recv_control_msg error -71 req 02 val 2000
[  241.850591][ T5838] pwc: recv_control_msg error -71 req 02 val 2100
[  241.857334][ T5838] pwc: recv_control_msg error -71 req 04 val 1500
[  241.864842][ T5838] pwc: recv_control_msg error -71 req 02 val 2500
[  241.871486][ T5838] pwc: recv_control_msg error -71 req 02 val 2400
[  241.878238][ T5838] pwc: recv_control_msg error -71 req 02 val 2600
[  241.884885][ T5838] pwc: recv_control_msg error -71 req 02 val 2900
[  241.891505][ T5838] pwc: recv_control_msg error -71 req 02 val 2800
[  241.898292][ T5838] pwc: recv_control_msg error -71 req 04 val 1100
[  241.904941][ T5838] pwc: recv_control_msg error -71 req 04 val 1200
[  241.913420][ T5838] pwc: Registered as video103.
[  241.919066][ T5838] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb1/1-1/input/input14
[  241.932653][ T5838] usb 1-1: USB disconnect, device number 28