last executing test programs:

4m14.259947855s ago: executing program 3 (id=1297):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
setxattr(0x0, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$SO_J1939_FILTER(0xffffffffffffffff, 0x6b, 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000140)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', r4, &(0x7f0000000000)='./file0\x00')
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000001540))
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
link(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='./bus\x00')
open(&(0x7f00000003c0)='./bus\x00', 0x2282, 0x80)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r5}, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000003c0), r6)

4m13.206708807s ago: executing program 3 (id=1300):
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180)) (async)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCGETS(r0, 0x560d, &(0x7f0000001000)) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
r1 = getpid() (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
timer_create(0x2, &(0x7f0000000000)={0x0, 0x29, 0x1, @thr={&(0x7f0000000300)="d97d558b8ba9e84ffba0e98de77a68864c0787ed520a217ccfb85fe46df9d1f9acc6aa3979705bcd885cbb2309209a9c2cc828c01c0139274a660b3fe7ba1c6c1fffcda18cddce17aa0e643a7871a2fee0f2ce8b04f3fa6e5ce385ddd2cfa50e38c11b825444fce4c2dd6a1474b97c2667e3ce2a3012290ba5342bfd8b1f58b086e89fe670b890e86d5205c8785b9a68f37fc0", &(0x7f0000000a40)="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"}}, &(0x7f0000000040)=<r2=>0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TCFLSH(r3, 0x80045438, 0x300000000000000)
timer_settime(r2, 0x0, &(0x7f00000000c0)={{0x77359400}, {0x0, 0x989680}}, 0x0) (async)
timer_create(0x3, &(0x7f0000000240)={0x0, 0x12, 0x4, @tid=r1}, &(0x7f00000004c0)) (async)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) (async)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002340)='./file0\x00', 0x0) (async)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000000)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x4000}}) (async)
read$FUSE(r5, &(0x7f00000021c0)={0x2020, 0x0, <r6=>0x0, <r7=>0x0, <r8=>0x0}, 0x2020)
syz_fuse_handle_req(r5, &(0x7f0000004300)="69c0b1af1fc191cf8a89bd1bc6bee9d0dd45f4fe6c15a6b0faa5fbd74dd228ab66508e5914d532739ce0bd48a366f61db86ffad902f42c9a33bfb1f78b8e568f0003c6b38aa54c358424d338e2de24c5ef2e5ca4f80c29fc33358a0a7dcc5697e10e636a032f6934e13d6fe5bef0f16d324e2a73eb76d95f68b3f6f771adcee8f245dd24cf1c3c1a448f280faeeb2e962cf5276acf5131002d3541b8751b68be1d20262c055277d1610835a941472e93db6f525a5184576bbf035362defc6d3a2a3041d72c0b20ad890fe59ac858a815e1f8fcbea0000908ad7d26dec63f067b0a11119131198604a72187c3579928259044dc49860613e46919fa1dc14cfbd53c950eb9b3fb6cc1e7ce82db1b1a534cb2fb0df49797a9161308107d7efa0226604be0a6519e1f37c3b1fc7b216147c1894f6de6e5d47d170d1f641ff39967e3a2dd2d043f77eccac9a4f66ff0452ca927fa2415434df44bab99d5b67afe6a62a9baf69a2fb85fa6a36d2423bdfc6661ff43fdfef86d5aef3e9a721a45d440ae5cfe9d09957e7c6eaa4373d1eb2f8e1ea84e853805486f5b3f002d5b8a5a5c6fc95474b545eff536ef1eb91beaa9bf2e0b843cad4ecd61c00d1e3a01617f98dc37961dc58c87c87c46bb9cd97d2ee7302b34cbeae9e922afdf8e3cdada43ca06828768067a824faee656e7edcb01337d6321a246fb47f99ac2e44f37850734b1807f93188f21fb2c778c764ba17e527c768e55ac97ad8e7633815f20b8cc19c76381a06b99c8a50af83d4953580eb033d26270c5a5fe7233d9f701e5763133f533a2e4d43be447d4293f0eb8acf25b41f78f7ce6f51b8699ab4cb133109e08966ad8aa44d7d51c7ed469b49c7464ce47a89eb962afd568594b9f4471f5e5a8ccb18e9c11d42be1f6d0fbe216813cf2f91e56d7a0fdc219af2d5c3aff5f42bf8f226e0210de527df47f13390f39af1f4b9e26f86cc26eeb296c7a2937e74140a13d6fee3fddb80142fd7d03f8f252eccb2b6109083c66e730303cb20d874c17d97508589b062503673e089debc509d9f6fcaaf13758ab827de3270f5c0934c0509d8a4ea79872195aa3f78e907eb39a1020d3dae59de68cbb30cbef54480fb87dacb76681b8b75a1885181c277960e1fbbf5f3f406ba2d053871e1c10925e89ba45e4f3a2df2c021a5560ba597e9f56c43a0fec6ada4ec8b1ed235dcf05a7c797d705492fe261dd6e682d28cd4d63ebba9178cd41dc81eb2f87e5e63296768b2f9389450a01cf0d2c0b481a66d33ca6311c1f7482e65242ee16341bd6afe81f95d64b5a1617ea8ce25423cb2b458cece6894684455dd29d298d55c9b30ea311c90694c0282421158f96919de6344ea240e43a6de6ad37a83fdd709848cd320049c9c96a9f87b8d49173a30e9e3c156abf28fb415ee3768143676c6328452278a34a705f37264de1729c9d42fa05c862cbd5d9379c74f9322779def9ef0f1790d1a63d98666d6663d376cca46d832f3fe3b178a24f6bda673aa6c1f2f76b436764822766b9c2bb51b6aa6f0ce712c6dbecdce72aeeead8c6c4ffa4984060b350d744ce287c8cd57b403e636fff4e58243d262cb2e0dd71d710f0c74ee199672a4e3b32e46609818be36dd1393f4046aa5e91044eea087402e6230c2d91980732dad401f3af662d266b2e25ecc7c80a2a1624523250329e84382f0657dcc94d2357be348a5c1b7a51729241f13e18dcebba67bff770fe8d7a612edb0393cbdc1a54cf814c42118e2e783bbf861985c02b1ea0a1696861a06801eeaea36ee1fba58c2d2a0c1fb0616a0157a17b9dd7646d16c943dc22a512774eecc5d42a3b4669a03ac3191554763c2fa57cd6ec41fce3bc33af46d4cc5496931028da2bb99a09b5ec0913a9756e42a54343acb800443a630e745fbe65453934deb9cc151bd21779772a8fc36103336abc8d3417f4fbc371ab1eb3c6621990ab0b2db8b80e06d5d0f58cae6a9837895d290defc8417b63eaae7b734f09dad5130289e1cb9dc900ef4284a62d170b8f5747de66ac31efcb6ceac06ccdfe2fdf138f8bf4f26f90a2011b6e8214b10f0dec6658d3a540b407b5cf8c7567dd06aad858787387b5a30c7f43accaf8400bba85a94941d6cf720d377343033294537d45ac56953501a455026afab88152ee83bc25bad9e8fbcde22fd3b27069f14e8af75620558941e82d73ab8a6b0144baa10edf8aab0879de874edba8aac74dfcb5199f3dc5a41e4246ad859d4fcd8ca0e60a371ec71741245932b12d67f71ff6b2aa11a76bf1da79e885d36eab860c47b7d5d220b3d2de7e9eec52afc704bd932bac48b67d442f84cd69af4385202cc6ed0678b09b3be74dea864998dc1a45ff72301e1c045a0ba9e0e5121534360b5a917f830e71f49279b6ddd76d739106ded08efbdf1ec65f81c70f3a133cf8a279701d77fe8a424a93cec82ecd4f5f868920fdb4b5396c0d6b0342e7b3f27ee869e918a991b7b3ce60019d849297d36c42f2dd92d6dbd9dd024de13866f36a60babfac6a991e5e402cba7a549c4aea1fd627b2c27d96a3351e24a0635e0e8be442c11c38485f6d662da29533a2fb698fbf1cd0e9e21d76e5943256d027eabb567b75f1d926564a654a61e64eef06b16ef4a2d4b8db8ca813e7b1875dbd4d175889f8094b8d4543564890b2c8b09151998395a49aa74bef18481ed8b06cc41b7afac3d0291fa2be4012400019f5185275c35afd2f52db54d6f102d7905c41528887a5b573cbd5059f460cef5a72d39a7b448f6f394f248cc6a9f22e076631d59539488d1c30f713c223f2722eeeda9f1233247c4b30b698491f64c454dd37e7960fe64a0ba47d7be87055b2bd5b03fb58be7ceca18b5c557dcf4f44222bbfafdefc9a39bcf9820cc8a96f38a2a534f19940ce4e375f8c8defe22dd5e8d7b1fcfa2cc38e0a9522d7583dd3f42cd9c5eb928e1b1995accf151172ade642fd9a3b754945c5192bb9ede9f2cba59ad35a7f0fd3c021476f5c58efba4ccbe00670599ff1b1c88f92c48775f517843acd273e66e3814e2aa017862b84bc3b3c34b2d50c3b92752e45afc4cda096fa815a3311183014630eefc3c10186bfc69e68c3a4f35bcd921cf66a1d793024b404f75460483b31b65cdfbdb07e87cbe05e06f9e0e1331a6190ed21020b649645ddce6aee69c0e59043997426978f8da1b5b30f076500399d2ce66c9ee634a6ad5c30f77ce6093f05670fff8924c85667c7f2910f56e93dfffa137fefcf34ac27b196bcc58dae8a9618dbbfe18d90b9a94bdf9ed76a095d454dc2a2d621bdaa5ca3373637861b2a7843440230425b80bba81f57ae547ba6c5aa4c609d7513103178dad0077e6727d89bf40597f036d4040c8d3dbb39cf7f2bbb66ce9c85a934a1672bf19030c7a473452635faa69a967ae248590b8127ffba96890d7db4ce19f0dd389e4195280b7b574cbc945800f767216c15898d8d21ed89653a280b626d0eb6a41931999530866da99e7d042ab78171520fadea41447c44a12213f90e3a9491ef57926376d7b408dcdc3a4a293d46b2a1eae5e92c910fafe557b538d88fa797ce0584cabffd69ef083b4290e90b360a9d8280038bbeb3d03d149ecf31b8b0da9a8c0c54e559764e1ea04699c262b38de26b51ffd53ca6c710ee81058002e898267eb00a8e86a875035bebf58681ff39da1ecd476c66351cc1bfeaa0970e3e17ac1bb06cd167485007a1de6cc557325c3889af0319a0e3d11d00ce405f6e77a9417ed7fb071db78a47f4bd7fb27f1d791928ecbcf355ae0968fd8d377a8ec253a734eb999c409566669f1ff061b55bed7873138adaed24a7103aa68724a5913a7ceb255d4eaf695ce5be29e3582d4d1426feb9234b5dbf18313014721baef14e999075906c8f6e1c5b284e97b54a76c843c563cdf6eb06fab8a0aadbe124bea0e5b30215fd909ffe73a6593cf89f2e105a72f8e09852195f5a26b472b49d102d5ffecbbb35421b938ded93269b1216b7d37a6d406e47e9637021abaa30074082f8d1d411e5667f3f3c3686119222b89ca72de4b0442bb28fe1a242209c34dd2f305705d68771cd451b4be4b3f7ffd531a8bb719aaad1625bd0f6711218ec08c819fd165e8eafb9be91ff8e5efa09ba564718e8e1584d6a7a2c1e167a2a0f2254af50ae07e76c99f30c983fe9b83637e2ab5689674062eae1c604143200932d35be80f17bb2b28818aca82adc5c29b21f783725f4dc796bcf2a8243d218fa957905b72e81c7bfa3e64e2bd7ae0896903aa8a4129d902626f82ad9dd1db1a528af66845a8cd8714353b74df9aad248452bb66f409036eb1a05389cb2bba90655d3298c0c8e101fbfc3fdd72ade2a350f623d0ce90cffb187bdb6a1e6a2602fa3060e65dee4182350c540ab6cd5e876bae26cddba01a3f4166497f16f5ea03ab986a22cf7a4aead1bbbca24322b2bd23f7bb2b05b91953b420a5aba1a166ca8d96fbeb51057f3202081fc168f3375cc7aeb346afdec9a3577c9ad12050e60e2a1e0d5f822776701c26ed618149cfc2948fd737d981a6e1c885bb2f639d7f7f64de3fd5cc25bcf88b2f183a471d98a33f065bf6e840a1b9583a6197be88a4bd3d2f39d50322c129403b3c4e802f6523573aea1f17322d676c80be3dc63513dcbea386f933eafdd258c8d974aca3fd30c93a1227a0f3579fd19548e5dd51e506483c216dccc8e3fa04700c3627f0ae9f71b7cd1e3b058ecd037f0f3114a468c1c84a8f3b29c559c6dcee3e504399cecd7f7e6cc7232d4cf1f1e0966ea864ef9a7179f956ef3b89243f2890bf02e67fdcf4a14f99a0c90f6c80c76e17e97e6c93cff9e797e6b90d4b0ced0f8ede0b528825fadea2cf57f9fdd8490a2a7c1bf3bb64e73bc097ce2521974b30033249831197e490eb9a967a31a90a4101838b0d0d959785578541f8c3c62a3a697aa30d6cd27f59f6ff66d2c31e483e8f4b78ac693fb0963d5cc13bad55414a6a7d9e39306291a0b86318b797c0f2fd1da622c05758923ff50f95a8e7069d4a322c61b8774ae968ff8fb7f11c8065391ab7ccad20042522114f5c1e70216c5fcb93a31470283fcfa3bd0a907aa707283073597057e712133ff6477178fb6861ccbc053dd1d562c4d05502c7bc366f9bdc322ea4115865e6b27fe0b461372d556609559963fd2ce0ed5fe2aa3ac482b26bdacd86e53a274a106291dafb58b0a4e0c5dc11bd89e3caa628b6a425b6d8471de8f40e5cb896d12c9100ea2efa2c43b0f7ca936f598ba50770a1fd6697e0ca56f92c5d2ea9f2076055e5714bfd55bc9424463820f550c29b10ae95acf47bc5dc0ad16d8b03de5aaafc6ea8d0d00e09978282d56417e307460c26648319f0127abb63ac635e7ff122efd998d3ceae547e5765e554d73fca1976b677716cb1ccbdcf9be11d457abf25253ca08c4b98af8028507fdc36601c0a61e11576ba92f40e54385041af6214c2d68e23d0b5d345a85fd87cd792d1312a6223beedf9a9a627f1cfd1fc756c6c08bb42d510850fd438702f5f7d5b6a9d87b5c77085f6701322b7ee5bd1a01e9aada643ecaebac0c8da6c895d089cf7357515e16eee6a67f1c9853e9dd9f8192ef46b828d8113e5389ab7b7c18dcb256df459de02dc0f808afc15d76504e952d29442f9c62c9f389fdd4d78f941cff98bb829554202135b7da60280da082adce8a9441de99299f3faa3e76d599385d2712a02e65c712dc56885b3763e3a4b43b39f0431580bde49f354b43e753457ef5b8bb95a1b31de1fbfe80964738afc6c875f5b7f7a3daba71b4750dd08b39caf71ae8bf80fcec47a17faf8c4c9af9cccad78db9d9e7ab804fd71ac8d78c2e3402a77eb8e25f4d3b2f0ebdb103fc569c2c630c01b0ab58b43ebd289ba371cd5de5bfbb0bc6f5585ce2a9c052d5f63927d8bdce3c447a1e2563ba6c5cc5e74117fb247b836ce83b5e2f13c33ece1441aa0273bcc975a5a56dc34adcec300734ccce973f7333eb3e0bfb16ac95bd919f3a1d7dde50e4f39f964f69441af4b5231da303286ed249abf51947a9ac45e23690a09ee5a0440aab2b83c3372144e63ebf583116ff843907ae111e3a7f5ba023a56ff122aed15569d7186505056e587b5f05b24410197effc98a0ec71015d2f266f4fb1713aa608879aa3d42e418568dbbef797fde11c6ea971832618ce680c81f75a6e1d24dccafcde119a7dce38d182a402b99f3010b86ada8fa8d548f0c732d4731a517451f4a328314851c07516f533dc4ce7479c77674801bb7e6ac78c9784f371285138aafe254e52fc74f995d3ae87edcdf93b0244d6648fef261e0de6264288d5ec177466fb9b5114a0b474155bda995f7b7554040cf4366d90bf85dfb8c5a4c6dc43c3c3c4e8319a28c9247481398da5659445ba1c87ae729d80eb70cc87e676639bef5b783c0103f7dcfb2aae8f1fdfb8f2bb12b481c1721ffe467d0ae9ee93ed796785a37bc99b69738537985b58f03db924e7286dac27b55bdeea98949e2e173e37188c75ee557a531d18b2277906c33cb9640530a6650849a045c4684bb5d783b662a4157a836251edeef3116d5479a5fa805563c510ac088415463316eae74bef025e3f43e75a7d48a69e603c746ca6300453103aacc55b71738c8337bc6175382e728f5288771e642c09338f6928100d2516203727b61496527127538b5c73f3173258011d57f9014e00ae2e170bd0fb2757e7667144762e46eb9c9ab46a210097efdf7de0a4bd95543ba476513631d981ee50fd5ef98c5ba2005e1d51fd07769be5b35d7ad111a25b3314302d34f741c25cb46fede53bf7ab41ea4bb72a1359875752408472834b13568ee121d2916a17470e4515648367370f7630673f77b289ddccbf5b63179da91acb1b7b52a1ed88bd0700a2b3adbc2722a0718d576dff719048a2cab36c3595d8d5c833f977fe977487bd604d748c44ee154c4a69c0336c16a5b42c0633be84706a841882c73887a34aa0553489a3a7f64fe1671a753ddaa8374e7c323e37207b148128d8d02ea9b198a820f083a05b867740b435f31ceb46b09e055097a73a653ab693ac04dedd96eb3d5a0e2f3be5b11b0fa278f0842368a03936e65b7b52133873d240d1985899ab4de8b831451a57acccd799d1200ed0314d72588f600a29ee1c169d0f4c5d0075a28398df07d8adcbea1c44b96e3d5dbdc910a259514375db49b73c7e17568b8dcfe143f862f3d90b45cd7596552f0f88a86dde8907f8609d2b95fb7521cf118c3f5cdc4e885a2101418f17320d65c4be0af88fbec86aa632703a701280a3f351bab2b909e9308fb769a5bd610d92134e1326e3c2ac24a037057a038ea76bd9b2cd6987d51e57190e989b46b9efc4fd81902aa851a255cf7f56a4a3d3d9330b4e9c46b5e283fb98b6da68ac8f42c2cf2c2c1a72de62937ce3cbba5a3083624f1bd14a0de4bced7d7c259ddf8b072d0ceac287d746d5ca55ed8f7c58b8f4d733935cfe9267def7e55ae4e55789000ae7fc23c5072c6d5e5de715f4f79706462f17590396eed1e1218d79788a90168ea51182fa7caa2d0876dbd2e5fd3fe0c614b42f1d86c0903cd0108fa3e83d160726097e74aed95c9e985f6c7bff4f28438ffcd791fa3a3b08468def18ad621107826ef7107e7ea9bb6e513e868658f45a2a24abf034775a0a44e1f99a4dc9a9e80643e62d46041d4fcf70e93c47277854a0585387aa5af9bb9ad09e34f1c6088528991e3071157e39123489eb3d34429ccc0e3453c86478c4f640fcae12a345797bae195fb2eb785cd150fad3e0ab16b75a7c9c799f0f1350a8c93e258a9dac9a17f337d78dcc692d57f194a8651812ba67bd3007117afecc0a3754a9f19683ad1e721f8f3cc9884a1c7673bdb58622b1a3801d1458a787e3c59e9b5bf804724d06bd1cb99b3e29471be811158d596dbd69d27b8119a88fee23867e5be6815349665dfb1568f212b37553f2d0857085bfa273e236b5f3f3b44b6536f65d2f4df874dd7f20115a4464f662947c27f9bf218d24f29fff76475777487d733ff4864207e3354e4985badfe58ea9261855202575d6352a25a8f7f64b153e5ed2ac5677dd48c63210a2436a48b67689ba13952a0167e5ea8f096faf4a63c3912d3aaa075ad706b40280cf1f07767b7cc0935748db2660c2599c2c08144b06a834fe4d2a057da3703c4b23b387be4331b43209765ce56cbfbcac13722be08cdb6254dd103c07d7e858b3d0be3b60dc087dcad99efbaab8d561b0c51100e6df203cf858e1dddfaa9ff2cb4af4d78158e58c7b76b158d8072a9e482b96c33185f0a094867a983c6a42d7ef72e5dbb2f2d704db5896ecc35c8d7d37ea080e5a395a59858b6dabd638f9531342419b616a2e8d63657d0fdde1060ef33b75e26fdb2f0c3e786443002f7f3a1c8ece235a3e7ab320baab063700bc0ee9c29ae0753291532e6c462ee44ae3f372479045a7912d9dfaefd674b4dab07c4bba99e837df23fbdb2b1788f888646938b4ce0078ea49ea1194c43bf6c73b2b6c9b1400f100b9466a7b5d9cb153a6c666dbeb78fd774dcfad42ed8258f55ddb35f6be9425e33507ccb7321f6b15ddc53ad535a6a5dbca1fb4e1a91e706ba05cd178d6ff381efeabc334554d050a7bc0ea1da671fbbabfcb53bfa36e6a4939af161bf3be05b6e38329059eb480bf84e6f775739857e9fb08b34efe37d8337bbdc6bb7d1d205ce46d988867090c4289570582067e8207fed08c373efdc8fa8190db0717e036bd52330fa07c3a2c878c44383a575df375688879fbe246be914917c9faa25491a614fc067a1109014c69be11ad37eee345c801d8de0eba112af0d7f72682f57c9dee5cebf364b3e3d4ec1ac0a0a0fc7ca3f71dbafca84c8b9877dab0803c167dfc2a3e7063acb7713510c0e63c70a2ba17191e669ff123d1eb795fce5d1700b74c59fa16152036489b16002e904f751aafad489ce6b89a055594d734da2f997a46f8f4b9cc4c8025346e212be0804d6aa4df81f31c0f8badd75407fcf221e17893efae087db51111ea8574c2d993a1f1377b158caf627411306c210a69916415335c4fe5d38b061fc08c3f8e84f6ddf938dabf37277411c1d1b44a1c1682ed5da244f7297e150e9868ed4cebdfde99492c49cda9b0f944314725d47fcefd98e3e425fd1ef4941ea0f179389aafc6654778baf054ad56d4558eb9a1a829bb92283daf4d9d4689e4f31a7e142a38c1e46fab2b51c259034294f9e3df46369300d7abb035961f3fb87bfac284698ea38654f8af4ae92b79d3b83d340a93711cf5e54b7a477abcced57eb5eeeba75ea2ce91e4ea54d9fc89d510f91751bab88877443eab7873b47fb11269becd9bf2da9873b4311a997df83347605fdacc3ff1715e23fb4a0d50b8c0df549dcad3e87b2f58c6638cf0f5f01e166fc5bb7b817db995363f37ccbececd99ef0597063010474fef4301318ef20b61b01d5db865842efcf7e4adf39c64792c3da2ae57b2987e980d6d98a6dcdc8f47c2080358df9dd4502caf72d3486589f3b63e1d49f3675582defce94c0d2c7c522cbf3fe407ccf6b23bd64378cba66326ded5bf23ae983daa171e2b84dc3442df84ab592b3228f8a1b1de2af23e832fca114e1c19ad94868630243a217855fe59b5128c8f0bd3452c79f4b5b50a247b1011eb55a7cb60004bad5d43158976eff07f9dd6123a542f5c8031c6484ea07daa0d03d8025bb5052b4b5c56752bf0fb498a447f5dc8195884adf2a18e46357968683146074ce2ab98774251da0e748aac58b46c27fae9227bb2b079a2213c38b92c6fe45bcb068869328edc2e8558c4133ec63a7125c98a8e48e3fcdd7e0f173fdfe1394e38a2eed3cc89d7ba0318124080459fa08994111287bb76166bedee79cd46dadcfc719f1bcb322c2235bc86ca6fd73886db577c88df1ed2bcc7034c3cde5c4dc4dae5c63f9cfb1d7afced7844eb28f1d5b68be5dfef1e3799a9daccbbccc18728f9db6224eb8f87ebfb72b476efe5bdeb1736787abc3d332eb59706efc2edad2c45712abdd76a59531bee79f9c9c3837f635d883deafaea999f7e69fa7e83c81ee41eb3ca87d1f42f5b8135679dec5a0e956c8ca0eb70f265b4d46cf61c1eadfdf14e6e5123e8ebdcf819eda6ac72c4c71432c7e702bebd1ea8d3e3408b445bcadab97b0756079a763bf64d31c08e1a9cd4424ac704aaf2809e467b2dd20c523d4bbe4d4ebf637d7ad5a156879faaad794fb9f112cf06873862c3f776ee4b19781bb8fcd77614bc7c168a045e3f88b26c4ab606c55b030eeae0f34675d006dd68a712a76bdbe04061aed274fc5a3c04a34909d2be143aeeb9ef7609a5e79980a46e3523f34d87c5147639229eb3d02a66b6de2b8ec46e52c04185766ab50d2fa1426cb947779579405b31e9339f02d1b4f94c3366942ae314f98f1558df88f732179107af4c068fb6cde24dfe95c7befa37ecc075a8a2c432b28b5b56a5a9f5f7a32bf2ccc515927acba32e2208989db9d1467ad845e9adf5f1633a0f82022a9027247e754455d4468588d462ee5156861efa15fb392c4fe916a9a04a3598907651d96d86235b101e81998ff562415a2a469442eb4160e1c3a04f19ceb8d5a1ea5bfb42685520e085acfd70402b4a7314613e24af97ffb6dda85f3320be13e48d62d32f394427219433a516753c0a77f33231a0e04fd8bdbe70c60244dd838a4d4637edaf37fbe4f1c201c689eb873a0a487f47abbec3ae20f264a2ffd58ead26e845e9e6c0f080988cd84fe641ed840b08cef588664a524053976ec78fdcc7bcaabf7bc051b1a5d00271c40071c15eadbe0d70e6bd83a029919a9e1ac02cf0a8c5aa01bc05208ecfb566f24b3c63850d3e1ba6aefa08445801c282e10fa5c4e32afbf452429f3cc9d47b6d03c315818dfdbf5269603eef73b4ff7352e6a6604aa4d2b4adcd3d4bab6a5c113e268fa735e2de8a590715c0d4f2fe8f9c14004f4b68b4e576d42d3dd9ed9de5b6317d9cc62d23d25527123f8969904dfb8487154ddddc357aa72265f2d3e58103bed8b0b8cfbdaa23e446a7cfdaaec2e8719e37c3b17f706043cd43836fd75d91ff8b0cc9f7474aacb5cf2457b5c978a4d5050f45c34556cdc07b3fb4ab06b2d27897faf7dcff1b34f9dfdb619bd34e1fed2f562b2da02ac178a6bc0112c883c8f3948000b68d6d8ffb406b95560c17ab9a0275cce2d200ce7e72982652b43951eafa93b786f138c61a67f0d0452bd1b7486c04d779e7631e4473489f99fb0621e3d15abe3f5e52988d25b43648f9d43c8cca47991ef55eae7feff5bd5602ee092a95a0a82765586d40916ffe26b5a2c6e82c874a61d5ab4f6e99809c7811109834b1ba1081e39d3b5082233f4d179d77c85c0db3ea9b9926bafb68b5024df32c5ceb0d2447f3c77ea6f70b8c9c742fc69c4f4f02922d43cd8f046529695aa43539dbc88e57f45ac1d12580f3c279a60677a16558b549afafdda654d155260993ff58296083e7f4eebd7748d803ee2760f65d155dcb0c3", 0x2000, &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)={0x78, 0x0, 0x9, {0x3, 0xffff, 0x0, {0x6, 0x8000000000000000, 0x7fffffffffffffff, 0x6, 0x1, 0x4, 0x3, 0x3, 0x61, 0xc000, 0x2, r7, r8, 0x6, 0xc}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r5, &(0x7f0000004200)={0x50, 0x0, r6, {0x7, 0x21, 0x0, 0x128200}}, 0x50) (async)
setxattr$incfs_id(&(0x7f0000000340)='./file0\x00', &(0x7f00000003c0), 0x0, 0x0, 0x2) (async)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8) (async)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002) (async)
gettid() (async)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
r9 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000010a00), 0x2, 0x0)
ioctl$VIDIOC_S_FMT(r9, 0xc0d05605, &(0x7f0000010a40)={0xa, @pix_mp={0x9, 0x800, 0x5c572b44, 0xf, 0xb, [{0x3, 0x7fff}, {0x5, 0xc4de}, {0x3, 0x8}, {0x6, 0x7f}, {0x8}, {0x48d8b57b}, {0x1, 0x5}, {0x80000001, 0x10000}], 0x3b, 0x5, 0x8, 0x1, 0x3}}) (async)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

4m11.383935498s ago: executing program 3 (id=1304):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write$binfmt_elf64(r0, &(0x7f0000001300)=ANY=[@ANYBLOB="7f454c4607280800050000000000000000003e000f0000000b020000000000004100000000000000430300000000000002f225da50d20000000200380001000100080002000000000017000000ffffffffffffffff090000000000000001000000000000008696320d00000000faffffffffffffff080000"], 0x78)
sysinfo(&(0x7f0000000280)=""/178)
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=r0, @ANYBLOB="000000000000ff0300000000000072e6eba41af7c31d42c994bce80b15a3eaa556481f8dd5841669770a23ce5cb2049debf67c1745db3dada387e539e4953d1e9274ee5d3a784c6fd23e687c2f73854bf026512a14", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000080)={{r1, <r2=>0xffffffffffffffff}, 0x0, &(0x7f0000000040)='%-010d \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0)={0x0, r2}, 0x8)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000000), 0x206, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000380)={0x24, 0x2, 0x2, "b43d70dde5dbbbe40f80f4010900c9000000c67f0900000008b76c2f6100", 0x32315241})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(0xffffffffffffffff, 0xc02c564a, &(0x7f0000000040)={0x0, 0x47524247, 0x2, @discrete={0x7, 0x6}})
openat$ptmx(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000002700)=""/102392, 0x18ff8)
clock_getres(0xfffffffffffffff1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

4m2.235438511s ago: executing program 3 (id=1330):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='lp\x00', 0x3)
write$binfmt_script(r0, &(0x7f0000000200), 0xfffffd9d)

4m1.119987513s ago: executing program 3 (id=1334):
syz_usb_connect$cdc_ncm(0x5, 0x76, &(0x7f0000000080)=ANY=[], 0x0)
socket(0x10, 0x3, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000380)='loginuid\x00')
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
setsockopt$inet6_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000000)=@gcm_256={{0x304}, "4850e2175a1b35d5", "5cccc850abb9d68106013714fa60d619faddc7ac8603bbdc47aea1122a44df5c", "22c749a9", "423f37fe0b7a5d89"}, 0x38)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000400)=0x1, 0x4)
sendmsg$NFNL_MSG_CTHELPER_NEW(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20008004}, 0x20004000)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f00000000c0)=@gcm_256={{0x303, 0x36}, "b1d65ab71f5ef2fe", "9e8ecc7bb5352776725e1047711330ff2bb17b550800", "dc5d3f00", "46b0dc72b7b1d30e"}, 0x38)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
setsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000180)={0xf, 0x7, 0x5, 0x7}, 0x8)
connect$can_bcm(r2, &(0x7f00000000c0), 0x10)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYRES16=r2], 0x448}}, 0x0)
sendmmsg$inet(r2, &(0x7f0000001b00)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="050000007402b8f4191db62b", 0xc}, {&(0x7f0000000440)="9f336d70bf41f19e47e98b4015e3b0384d86a1ceb4e530554ebc8154bf392bcf9ce0b09f879bd7aaf9d086e3", 0x2c}], 0x2}}, {{0x0, 0x0, &(0x7f0000000100), 0x2}}], 0x40000000000003a, 0x0)

3m57.09582943s ago: executing program 3 (id=1342):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000011000000000000000000000000a20000000000a010100000000000000000100000034000000090a010400000000000000000100000008000a40000000000900020073797a320000000039fc010073"], 0x7c}, 0x1, 0x0, 0x0, 0x8080}, 0x40000c0)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00"}})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0x4, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000002700)=""/102392, 0x18ff8)
r3 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r3, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x28019)
connect$inet6(r1, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xffffffffffffff94)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x8914, &(0x7f0000000040)={'macsec0\x00', 0x100})
ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x8914, &(0x7f0000000240)={'macsec0\x00', 0x1})
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="3c000000000018fcfffff4ad6f082945", @ANYRESDEC=r5, @ANYBLOB="01d90000000000001c0012000c000100626f6e6400"], 0x3c}}, 0x4000)
unshare(0x14040500)
fanotify_init(0x200, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000640)={@fallback, 0x24, 0x0, 0x0, &(0x7f0000000440), 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
tee(0xffffffffffffffff, 0xffffffffffffffff, 0x8, 0x4)

3m38.116754026s ago: executing program 32 (id=1342):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000011000000000000000000000000a20000000000a010100000000000000000100000034000000090a010400000000000000000100000008000a40000000000900020073797a320000000039fc010073"], 0x7c}, 0x1, 0x0, 0x0, 0x8080}, 0x40000c0)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00"}})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0x4, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000002700)=""/102392, 0x18ff8)
r3 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r3, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x28019)
connect$inet6(r1, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xffffffffffffff94)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x8914, &(0x7f0000000040)={'macsec0\x00', 0x100})
ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x8914, &(0x7f0000000240)={'macsec0\x00', 0x1})
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="3c000000000018fcfffff4ad6f082945", @ANYRESDEC=r5, @ANYBLOB="01d90000000000001c0012000c000100626f6e6400"], 0x3c}}, 0x4000)
unshare(0x14040500)
fanotify_init(0x200, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000640)={@fallback, 0x24, 0x0, 0x0, &(0x7f0000000440), 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
tee(0xffffffffffffffff, 0xffffffffffffffff, 0x8, 0x4)

9.501024923s ago: executing program 0 (id=2088):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10)
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@ipv6_getroute={0x24, 0x1a, 0x115, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x7f}, [@RTA_MARK={0x8}]}, 0x24}}, 0x20040004)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r1}, 0x10)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x3)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xe, 0x4, 0x8, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10)
r5 = memfd_secret(0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000280)={r6, r5, 0x2e, 0x4608, @void}, 0x10)
syz_emit_ethernet(0x9a, &(0x7f0000000040)=ANY=[], 0x0)
sendmsg$NFT_MSG_GETFLOWTABLE(r5, &(0x7f0000000380)={&(0x7f0000000300), 0xc, &(0x7f0000000340)={&(0x7f0000000b80)={0xe8, 0x17, 0xa, 0x401, 0x0, 0x0, {0x86510df9fddb0032, 0x0, 0x8}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_HOOK={0xb0, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0xa4, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth1_vlan\x00'}, {0x14, 0x1, 'veth0\x00'}, {0x14, 0x1, 'batadv_slave_0\x00'}, {0x14, 0x1, 'veth0_to_bridge\x00'}, {0x14, 0x1, 'pim6reg\x00'}, {0x14, 0x1, 'gre0\x00'}, {0x14, 0x1, 'pim6reg1\x00'}, {0x14, 0x1, 'dvmrp0\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x6}]}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}]}, 0xe8}, 0x1, 0x0, 0x0, 0x20000004}, 0x10)
r7 = syz_open_dev$sndctrl(&(0x7f0000000600), 0x0, 0x149182)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x3, 0x0, 0x0, {0x1, 0x0, 0x2}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x4}, @NFTA_RULE_EXPRESSIONS={0x4}]}], {0x14}}, 0x80}, 0x1, 0x0, 0x0, 0x2000c045}, 0x24000004)
ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r7, 0xc008551c, &(0x7f0000001400)=ANY=[@ANYBLOB="0100"])
setregid(0xffffffffffffffff, 0x0)
r9 = socket(0xa, 0x2, 0x0)
getsockopt$sock_cred(r9, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r10=>0x0}, &(0x7f0000cab000)=0xc)
setreuid(0x0, r10)
r11 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$sock_cred(r11, 0x1, 0x11, &(0x7f00000000c0)={0x0, 0x0, <r12=>0x0}, &(0x7f0000000000)=0xc)
mount$bpf(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000280), 0x8, &(0x7f0000000500)={[{@gid={'gid', 0x3d, r12}}]})
syz_fuse_handle_req(r2, &(0x7f00000015c0)="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", 0x2000, &(0x7f0000003a00)={&(0x7f00000004c0)={0x50, 0x0, 0x5, {0x7, 0x29, 0xff, 0x302100, 0x930, 0x4, 0x9, 0x10, 0x0, 0x0, 0x8, 0xb0}}, &(0x7f0000000400)={0x18, 0xfffffffffffffff5, 0x7e, {0x40}}, &(0x7f0000000580)={0x18, 0x0, 0x2cb}, &(0x7f00000005c0)={0x18, 0x0, 0x9, {0x7}}, &(0x7f00000006c0)={0x18, 0x0, 0xfffffffffffff40f, {0x8}}, &(0x7f0000000700)={0x28, 0x0, 0x2, {{0x0, 0x8211}}}, &(0x7f0000000c80)={0x60, 0x0, 0x3ff, {{0x9, 0x7fff, 0xfffffffffffffffe, 0x2de, 0x4, 0xa4, 0xfff, 0x1000}}}, &(0x7f0000000d00)={0x18, 0x0, 0x5, {0x9}}, &(0x7f0000000d40)={0x15, 0x0, 0xa, {'syz0\x00'}}, &(0x7f0000000d80)={0x20, 0x0, 0x8, {0x0, 0x1a}}, &(0x7f0000000fc0)={0x78, 0x215ba01abf39e25e, 0xe1aa, {0x0, 0x5, 0x0, {0x2, 0xc, 0xffff, 0xbb, 0x2, 0x7fffffffffffffff, 0x4, 0x2, 0x98f, 0xa000, 0x7, 0x0, 0x0, 0x401, 0x7fffffff}}}, &(0x7f0000001140)={0x90, 0x0, 0x8, {0x1, 0x3, 0x2, 0x3, 0x47, 0xfffffffa, {0x6, 0x2, 0x23b, 0x2309, 0xffffffffffffffff, 0x5, 0x735, 0x3, 0x7eab, 0xa000, 0xffffffff, 0x0, 0x0, 0x8, 0x3}}}, &(0x7f0000001200)={0x70, 0x0, 0x3989, [{0x3, 0x4, 0x2, 0x7, '+@'}, {0x2, 0x3f0, 0x5, 0x2, 'syz0\x00'}, {0x4, 0x5eb, 0x6, 0xc13332d, 'veth0\x00'}]}, &(0x7f00000035c0)={0x2a0, 0x0, 0x80000001, [{{0x2, 0x1, 0x0, 0x44c, 0xdf8a, 0xa, {0x0, 0x5, 0x61, 0x2, 0x40008000000000, 0x800, 0xd1, 0x6, 0x1, 0x6000, 0x81, 0x0, 0x0, 0xfff, 0x7}}, {0x0, 0x1000, 0x1, 0xd5c, '%'}}, {{0x6, 0x1, 0x4, 0xd457, 0xfffffff9, 0x8, {0x2, 0x6, 0x7, 0x8d1e, 0x6, 0xffffffffffffff81, 0x10001, 0x4, 0x7, 0x4000, 0x3c5, 0x0, 0x0, 0x5, 0x7}}, {0x1, 0xf4c7, 0x3, 0x7f, ',{+'}}, {{0x6, 0x0, 0x0, 0x9, 0x10001, 0xb889, {0x6, 0x7, 0x4, 0x7fffffffffffffff, 0x9, 0x5, 0x7f, 0x2, 0x9, 0x8000, 0xdb8, 0xffffffffffffffff, 0x0, 0x939b, 0x10001}}, {0x6, 0x8, 0x10, 0x2, 'kmem_cache_free\x00'}}, {{0x4, 0x2, 0xffffffffffffffff, 0x6, 0x5, 0x0, {0x1, 0x8, 0x5, 0x8000000000000001, 0x2, 0x4000000000000, 0x889, 0x8, 0x200, 0xc000, 0xfffffffc, 0x0, 0x0, 0x1f, 0x3}}, {0x0, 0x3, 0x10, 0xb72, 'veth0_to_bridge\x00'}}]}, &(0x7f00000014c0)={0xa0, 0x0, 0x8, {{0x6, 0x2, 0x4, 0xd, 0x8, 0xdbc, {0x0, 0xffffffffffffffff, 0x6adb8cbe, 0x8000000000000000, 0x1, 0x4, 0x3, 0x8001, 0x5467, 0x6000, 0x5, 0x0, 0x0, 0xe1, 0x8}}, {0x0, 0x3}}}, &(0x7f0000003880)={0x20, 0xfffffffffffffff5, 0x80000001, {0x2, 0x4, 0x69acd474, 0xf}}, &(0x7f00000038c0)={0x130, 0x0, 0x2fc4, {0x5, 0x42a, 0x0, '\x00', {0x1000, 0x3, 0x5, 0x0, r10, r12, 0xa000, '\x00', 0xf, 0x5, 0x1000, 0x100000000000, {0x1, 0x2}, {0x8000000000000000, 0x6}, {0x657, 0x4}, {0xa3}, 0x0, 0x1, 0x1ff, 0xffffe980}}}})

9.362162225s ago: executing program 0 (id=2090):
openat$thread_pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r3, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)

8.64802756s ago: executing program 2 (id=2092):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe2$9p(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x80080)
write$P9_ROPEN(r3, &(0x7f00000001c0)={0x18, 0x71, 0x2, {{0x40, 0x4, 0x2}, 0xe}}, 0x18)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
pipe2$9p(&(0x7f0000000140)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r7, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r8 = dup(r7)
write$P9_RLERRORu(r8, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r8, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
ioctl$BTRFS_IOC_GET_DEV_STATS(r2, 0xc4089434, &(0x7f0000000a40)={<r9=>0x0, 0x7b3b, 0x1, [0x7ff, 0x3863, 0x9, 0x6], [0x7ff, 0x2, 0x2, 0x8001, 0xffffffffffffff1b, 0x5, 0x80000001, 0x9, 0x5, 0x9, 0xf, 0x7, 0x7, 0x80, 0x97, 0x6, 0x401, 0xfffffffffffff657, 0x3, 0x8, 0xffffffffffffffff, 0x8, 0x9, 0x6, 0x10000, 0xd9, 0x3, 0x4, 0x0, 0x0, 0x3, 0xfffffffffffffff0, 0x4, 0x10001, 0xfffffffffffffffb, 0x4, 0xffffffffffffff47, 0x3, 0x2, 0x200, 0x8, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x101, 0x2, 0x1, 0x0, 0xfffffffffffffff7, 0x96, 0xdfdaa69, 0x2, 0x6, 0xa, 0x7, 0x2f8, 0x9, 0x401, 0x7, 0x5, 0x2, 0x101, 0x1, 0xffffffffffffffb4, 0xdd64, 0x0, 0x9, 0x1, 0x9, 0x4, 0x1, 0x4, 0x1, 0x80000000, 0xffffffff80000001, 0x600000000000000, 0x9, 0x7, 0x10000, 0x6, 0x4, 0x3, 0x7, 0x2, 0x200, 0x8, 0x8, 0x8, 0xfffffffffffffff9, 0x8e85, 0xd, 0xa0, 0x7fffffff, 0x6, 0xfffffffffffffffa, 0xe8, 0x8, 0x0, 0x2, 0x8001, 0x4, 0xfe7b, 0x5, 0x6, 0xc692, 0x0, 0x0, 0xffffffffffffffff, 0x1, 0xbb05, 0x5, 0xa, 0x1, 0x8000000000000001, 0x800, 0xc1c4, 0x7, 0x0, 0xfffffffffffffff9]})
ioctl$BTRFS_IOC_DEV_REPLACE(r1, 0xca289435, &(0x7f0000000e80)={0x3, 0x4, @start={r9, 0x302e975a3c02416, "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", "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"}, [0xfffffffffffff2f0, 0x100, 0x563c, 0x1e9, 0x7a8, 0x100, 0x7ff, 0xc528, 0x3, 0x0, 0x10001, 0xfffffffffffff13e, 0x0, 0x0, 0x69b, 0x7f, 0x7fffffffffffffff, 0xb, 0x7, 0xffffffff, 0xffffffff, 0x8000000000000001, 0x200, 0x4, 0x445, 0x0, 0x6, 0x4, 0xb, 0x800, 0x6, 0x9, 0x1, 0x581, 0x6, 0x4, 0x9, 0x1000, 0x80000000, 0x1, 0x5, 0x200, 0x7, 0xffffffffffffffff, 0x401, 0x800, 0xd5, 0x4ba5, 0x3, 0x7fffffff, 0x4, 0xe, 0x7ff, 0x4, 0xffffffffffff778d, 0x3ff, 0x9, 0x5, 0x3, 0x1ff, 0x3, 0x3ff, 0x1f40, 0xd8]})
write$binfmt_elf64(r8, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r6, @ANYBLOB=',wfdno=', @ANYRESHEX=r8])
ioctl$KVM_PPC_ALLOCATE_HTAB(r8, 0xc004aea7, &(0x7f0000000200)=0x5920)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r10=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000940)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000000000009500"], &(0x7f0000000780)='GPL\x00', 0x9, 0xf7, &(0x7f00000007c0)=""/247, 0x0, 0x0, '\x00', r10, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_usb_connect(0x0, 0x36, &(0x7f0000000180)={{0x12, 0x1, 0x0, 0x6b, 0x7b, 0xfb, 0x10, 0x1608, 0x303, 0xa1cb, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x41, 0xb9, 0x6, 0x0, [], [{{0x9, 0x5, 0x6, 0x2}}, {{0x9, 0x5, 0x82, 0x2}}]}}]}}]}}, 0x0)

8.506593002s ago: executing program 1 (id=2094):
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x16, 0x0, 0xfffffa4f, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="3800000003147df800000000fedbdf250900020073797b3000000000080041007369770014003300"], 0x38}}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES16=r3], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$cgroup_type(0xffffffffffffffff, 0x0, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000180)=@nat={'nat\x00', 0x19, 0x2, 0x0, [0x20000a00, 0x0, 0x0, 0x20000a30, 0x20000b76], 0x0, &(0x7f0000000040), 0x0}, 0x6bc)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r5}, 0x18)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r7 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000000)={r6, r7}, 0xc)

7.488082335s ago: executing program 0 (id=2095):
r0 = syz_open_procfs(0x0, 0x0)
semget$private(0x0, 0x5, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000780)={<r1=>0x0, @loopback, @empty}, &(0x7f00000007c0)=0xc)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000800)={r0, r1, 0x25, 0x11, @void}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newlink={0x20, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x15a11}}, 0x20}}, 0x44)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "2af01c3d0040fbffffffffffffff00"})
r4 = syz_open_pts(r3, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000000)=0x13)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f00000000c0))
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000240)=0x11)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f00000003c0)=@ringbuf={{}, {}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x2d)
bpf$PROG_LOAD(0x5, 0x0, 0x54)
ioctl$AUTOFS_IOC_FAIL(r5, 0x4c80, 0xffffffffffffffb6)
socket$inet6(0xa, 0x2, 0x3a)
socket$nl_netfilter(0x10, 0x3, 0xc)

6.745577707s ago: executing program 1 (id=2098):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCGPGRP(r0, 0x540f, 0x0)

6.658341146s ago: executing program 1 (id=2099):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r0, 0xb6f68000)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f00000005c0)=ANY=[@ANYBLOB="0100000000f0ffff9d000040"])
write$RDMA_USER_CM_CMD_RESOLVE_IP(r5, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)

6.657500513s ago: executing program 4 (id=2100):
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$can_j1939(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000340)="f2a26795c591569cf8ec230b514c7757ab9f8b54c159abf4b47c015d7bce1c4217ac417c7d741b8de850dc6e389ec94a117bf0f1ff6175ead6ed", 0x3a}, 0x1, 0x0, 0x0, 0x20000000}, 0x4011)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xc, {"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", 0x7c4}}, 0x1006)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)
r2 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@RTM_NEWMDB={0x38, 0x54, 0x1e5, 0x0, 0x0, {0x7, r3}, [@MDBA_SET_ENTRY={0x20, 0x1, {r3, 0x0, 0x0, 0x1, {@ip4=@broadcast, 0x86dd}}}]}, 0x38}}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
openat$vsock(0xffffff9c, &(0x7f00000001c0), 0x40101, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r6, 0xae9a)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x10000000, 0xfffffffffffffffe, 0x1, 0x0, 0x0, 0x5]})
sendmsg$NL80211_CMD_SET_KEY(r6, &(0x7f0000000480)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4004841}, 0x4810)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

6.17597588s ago: executing program 1 (id=2101):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
lchown(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$getflags(r1, 0x401)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, &(0x7f0000000040)=0x2, 0x8)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0) (async)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0) (async)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) (async)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) (async)
chdir(&(0x7f0000000140)='./bus\x00') (async)
lchown(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) (async)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
fcntl$getflags(r1, 0x401) (async)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, &(0x7f0000000040)=0x2, 0x8) (async)

6.145867141s ago: executing program 4 (id=2103):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0xc, &(0x7f00000006c0)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$key(0xf, 0x3, 0x2)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x0, 0x0}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
socket$nl_crypto(0x10, 0x3, 0x15)
sendmmsg$inet(r0, &(0x7f0000004bc0)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000f00)="f5e022a4d2ed0cf5f8b2e9857cb9af98da7aa60f7a1582aadeaef336f9139f6768452f868624c7e6ce0948f33f1a63e0fcf0f2df28a3f1f4de26a8b575ccb465985e48f65b9a7fcc93c0a5be8b16774f7c7ca9848a182d6ee7c0f2b9c0e7030ed93ee34214c25cb51279b18c8e5bfbc52152be37f5e2b783e2149be25180430ac63ee1bbe01fbb6125e65839ae5b02d542a97d1bfb1ca420b5405baaaf5ec6ad96af2814dbbea5a064f2ab6fc0904c07f02cbfadfb96866d962e6e21d3a0a0276a36e01b6eda", 0xc6}], 0x1}}, {{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000700)="acc841985992b79554acfc02163bb0fb2bb293e68702bb40b6b870bde5700d368744361ae9fce3a4", 0x28}, {0x0}], 0x2}}, {{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000b80)="1ee88f78de7d57006d8ffa3f1d92c228a43f6c86558705d98691e6344fa3745cc92c1f80fc01a77c28bb77872fc4f9be9660bb62708d0f52f4958fb4cc5144775062cc7225", 0x45}], 0x1}}], 0x3, 0x0)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)
fcntl$setsig(0xffffffffffffffff, 0xa, 0x1e)

6.049404336s ago: executing program 1 (id=2104):
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000000)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0xfff, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x5, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xa8c01)
write$sndseq(r1, &(0x7f0000000080), 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(0xffffffffffffffff, 0x0, 0x40)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000002700)=""/102392, 0x18ff8)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000014c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
lsetxattr$security_capability(&(0x7f0000000100)='./file0\x00', &(0x7f0000000200), 0x0, 0x0, 0x1)
read$FUSE(r4, &(0x7f0000002140)={0x2020}, 0x2020)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x12)

5.131536741s ago: executing program 1 (id=2106):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x17, 0x0, 0x1b, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_usb_connect(0x0, 0x51, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x3b, 0x24, 0x27, 0x20, 0x763, 0x1002, 0xae89, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x5, 0xff, 0x85, 0xbf, 0x0, [], [{{0x9, 0x5, 0x1}}, {{0x9, 0x5, 0xe}}, {{0x9, 0x5, 0x7}}, {{0x9, 0x5, 0x9}}, {{0x9, 0x5, 0x2}}]}}]}}]}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000001200)={r0, &(0x7f0000001100), 0x0}, 0x20)

5.131028565s ago: executing program 2 (id=2107):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000a0000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x8, 0x10002, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xc, 0x4, 0x4, 0x9, 0x0, r3, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008d}, 0x0)
dup(0xffffffffffffffff)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$kcm(0x29, 0x5, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='net/kcm\x00')
preadv(r6, &(0x7f0000000080)=[{&(0x7f0000000100)=""/68, 0x44}], 0x1, 0x92, 0x0)

5.130491621s ago: executing program 0 (id=2108):
r0 = socket$inet6(0xa, 0x3, 0x87)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_GET_STATS(r4, 0x80f86406, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0)
eventfd2(0x0, 0x0)
r6 = syz_io_uring_setup(0xd1, &(0x7f0000000480)={0x0, 0x0, 0x100, 0x0, 0x335}, &(0x7f0000000080)=<r7=>0x0, &(0x7f00000001c0)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000240)=[{&(0x7f0000001800)=""/224, 0xe0}], 0x1})
io_uring_enter(r6, 0x47ba, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000a40)=ANY=[@ANYBLOB="2c0000001e00431b0000000000000000070000", @ANYRES32=0x0], 0x2c}}, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000280)={{{@in=@loopback, @in=@broadcast, 0x4e23, 0x2, 0x4e22, 0x0, 0x2}, {0x0, 0x4, 0x10000000000, 0x0, 0x0, 0x9, 0x1}, {0x0, 0x1000000000, 0x53e5, 0x70}, 0xfffffffe, 0x800001, 0x1, 0x0, 0x0, 0x1}, {{@in=@empty, 0x0, 0x32}, 0x2, @in6=@empty, 0x3502, 0x1, 0x0, 0x0, 0x0, 0xfffffffd, 0x4}}, 0xe8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)

4.896670084s ago: executing program 33 (id=2106):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x17, 0x0, 0x1b, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_usb_connect(0x0, 0x51, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x3b, 0x24, 0x27, 0x20, 0x763, 0x1002, 0xae89, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x5, 0xff, 0x85, 0xbf, 0x0, [], [{{0x9, 0x5, 0x1}}, {{0x9, 0x5, 0xe}}, {{0x9, 0x5, 0x7}}, {{0x9, 0x5, 0x9}}, {{0x9, 0x5, 0x2}}]}}]}}]}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000001200)={r0, &(0x7f0000001100), 0x0}, 0x20)

4.831352285s ago: executing program 5 (id=2110):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r0}, 0x10)
symlink(&(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='./file0\x00')
readlink(0x0, &(0x7f0000000180)=""/139, 0x8b)

4.643874065s ago: executing program 4 (id=2111):
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f0000000280)='\x00\x00\x00\x00\x00o-\xeem&\xa6\x90y\x7f$o\x8b\xd0\x88d\xc5x\xd7\x99\xac\xfc\x1b%\xe6Y[\xc8A#)\x05EZ\xb0\xe4\x17\xaa\xbd\x9e\x82c\xab8\xf3LJ\n\xd85\x98\xb7-\xf8GU\x02\xd9\xf9n\xa2\x82\xb0\xfd\xa2\xd9\x8d5\x11~\x10d\t\xa0\x18\x82\x1a\x1f+.(I \xfe\x87\xf4\xc0\xc4\xac\x01\x9a\x12/c4\xd2 \xd4\xdcr\xe9/\x87\x80f,*-\xb0h\x11\xd0;\xc9\xfb\x99\xef\x02\xb5\xffg\xb8\x80\x94\xf36\xa6\xe8\xe9\xbd_\x97\x00\xe1\xd9\xa2\xbd(\xf7n\xef\xc8\x9e(O\xa3\x18\x9d.\x1fx(k\r\xa5\x15\xf7\x8dN\x81\xc7\x80\x06/\x86\xcb\xb5:\xec\xb3\xd2\xb8\xbfA\xd0\x1b\x8f/x\x1f\t\xe6g_\x02\xe9n\xb7S}\xfcD\x19\xe1\x9bPU\x05v\xbfV\x9c4\x92\xf6')
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2000007, 0x32, 0xffffffffffffffff, 0x10000000)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000400)=0x200002)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$packet(0x11, 0x2, 0x300)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r3 = io_uring_setup(0x6578, &(0x7f0000000080)={0x0, 0x2, 0x20, 0x1})
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x1000000000000160)
io_uring_setup(0xbf0, &(0x7f0000000140)={0x0, 0x0, 0x800, 0xfffffffd})
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000400)={{0x3}})
close_range(r2, 0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2f328000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r5, 0x0, 0x0, 0x2, 0x0)

4.586670713s ago: executing program 5 (id=2112):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="b700000081140000bfa30000000000000703000000feffff720af0fff8ffffff71a4f0ff0000000071108d00000000001d300500000000004704000001ed00000f030000000000001d44020000000000620a00fe040400007203000000000000b500f7ff000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a8641aa05a1336b3b4c4becea710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fe51bef7af9aa0d7d600c095199fe3380d28e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e654400e2438ec649dc74a28610643a98d9ec21ead2ed51bf900000000000000d8a7925c3109b151b8b9f75dd08d123deda88c658d42ecbf28bf7076c15b463bebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff616236fd9aa58f2477184b6a89adaf17b0a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d6438e959532e0617d419c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a22048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06faffc3a15d96c2ea3e2e04cfe031b2875353193f82ade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343cccc953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93020000000000000080e69db384ac7eeedcf2ba3a9508f9d6aba582a896a9f1e096df6ecea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a8346962a350845ffa0d829e4f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00e10000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f6f096753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e9673560000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d490cba8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e16e1461173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a003d2fbdc1f9be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b583cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd84990453f006694d461b76a58d88cf0f520310a1e80dc18cde98d662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6032399f87a7a14245bbd796a09313b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e27a3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef9a2abae1cf01ce68abff28861aac8302d268569dd42e194e330c7aaa54ebbcefd23f21ce8153b9926e12e925cb56119df72c7533a48d028ad0c74e2a9478fa3be18a1a2b65079cc1c00000000000000f59dd19e8d525206c0a728cfd42193abe8130bc01a2d69841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e38534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb58aa364b55e73f053450665e7b94ed1012fd7a8139166fd5e59c84f4ab279b1b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336d205c5913ef67cf0216e2d81e6127bd9d7fab28800eaab2355992f8ce4cd38add4b272c0bee4076ca4847ffa691cf78fb7ec212bad3bef29f577ea7159b7f3025b3d977ff7c9102"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r0 = socket$tipc(0x1e, 0x2, 0x0)
getsockopt$TIPC_SRC_DROPPABLE(r0, 0x10f, 0x80, &(0x7f0000000040), &(0x7f0000000080)=0x4)

3.857805147s ago: executing program 0 (id=2113):
socket$unix(0x1, 0x1, 0x0)
r0 = syz_open_dev$hidraw(&(0x7f0000000000), 0x7, 0x101801)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newtaction={0x60, 0x30, 0xffff, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x5, 0x3, 0x10000300, 0x3a, 0x7}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
ioctl$HIDIOCSFEATURE(r0, 0xc0404806, &(0x7f0000000500)="75832465429d3716abdbb5f1d4a3c6b3821800e3cda389852d618b9681cc3aeab00f7d8c4c79f8bad035c836a8e0a11f5b3317df93e72248265396f1c808701f7ce3a85c0787b7e722e478c18463233b0d98cdf124722e96b4a220ebda905b2c5b03cddb0c117deb62fc023d1f5bb7775ee1ac0a4e34558117a1ea1d64316ac9d7a4d84525763a6802bd1023d91eb06eee70585f30110079b21ef7db5425443092c0ca9ede0ae453dad643e75f9a2c67e4cadae12b3e080c3ae6045e6ae1ff2f601e7b293cd2605985f5b310621aba15ced802bdb7cfab53f87200f44092")
r2 = socket$tipc(0x1e, 0x5, 0x0)
connect$tipc(r2, 0x0, 0x0)
r3 = syz_usb_connect(0x3, 0x10b, &(0x7f0000000000)=ANY=[@ANYBLOB="05010900b24b6a10e6040300770100000001090224000b010000000904000302ccd4280009050b02000000040009058a02"], 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001080)=[{0x0}], 0x1}, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000600), 0x40082, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r4, &(0x7f0000000280)={@val={0x1c, 0x800}, @val={0x1, 0x0, 0x0, 0x0, 0x3d}, @mpls={[], @ipv4=@tcp={{0x6, 0x4, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffffff, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x2, 0xb, 0x0, 0x600, 0x0, 0x18, {[@window={0xa, 0x3}, @timestamp={0x5, 0x2}, @generic={0x0, 0x2, "d58838068b91"}]}}}}}}, 0x4e)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r8, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r9 = dup(r8)
write$FUSE_BMAP(r9, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r9, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r9, &(0x7f00000000c0)={0x18}, 0x18)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r9}})
fstat(0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b7000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

3.855833349s ago: executing program 2 (id=2114):
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$can_j1939(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000340)="f2a26795c591569cf8ec230b514c7757ab9f8b54c159abf4b47c015d7bce1c4217ac417c7d741b8de850dc6e389ec94a117bf0f1ff6175ead6ed", 0x3a}, 0x1, 0x0, 0x0, 0x20000000}, 0x4011)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xc, {"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", 0x7c4}}, 0x1006)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)
r2 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
openat$vsock(0xffffff9c, &(0x7f00000001c0), 0x40101, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r5, 0xae9a)
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x10000000, 0xfffffffffffffffe, 0x1, 0x0, 0x0, 0x5]})
sendmsg$NL80211_CMD_SET_KEY(r5, &(0x7f0000000480)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4004841}, 0x4810)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

3.854496792s ago: executing program 4 (id=2115):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000280), r0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x5ac, 0x237, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x2, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x596}}}}]}}]}}, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301)
ioctl$USBDEVFS_CONNECTINFO(r2, 0x80045515, &(0x7f0000001600))
r3 = fanotify_init(0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000380)='contention_end\x00', r4}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r5 = userfaultfd(0x801)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_ZEROPAGE(r5, 0xc020aa04, &(0x7f0000000100)={{&(0x7f0000642000/0x2000)=nil, 0x2000}})
fanotify_mark(r3, 0x80, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r0, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001680)={&(0x7f00000016c0)={0x2c, r1, 0x300, 0x70bd28, 0x25dfdbff, {}, [@IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24008004}, 0x40890)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000000)={@cgroup=r6, r6, 0x2f, 0x15a, 0x0, @void, @value}, 0x20)
socket$kcm(0x2, 0x3, 0x106)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
time(&(0x7f00000001c0))

3.749706915s ago: executing program 5 (id=2116):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000080)=0x654a, 0x4)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.current\x00', 0x26e1, 0x0)
close(r1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x0, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="61aa000000b4eb8a990002031e7d9800000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'ipvlan1\x00', 0x3101})
ioctl$TUNSETNOCSUM(r1, 0x8923, 0x20000000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
fsetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x61)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffef5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x3, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="7a0a00fffaffffff711080000000000095", @ANYRES32=r3, @ANYRES8=r2], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="400000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002000128008000100677470001400028008000100", @ANYRES32=r5, @ANYBLOB="08000200", @ANYRES32=r6], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x1)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
sched_setscheduler(0x0, 0x3, &(0x7f00000000c0)=0x6a2)
munlock(&(0x7f000025f000/0x1000)=nil, 0x1000)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)

3.421868386s ago: executing program 2 (id=2117):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x4, 0x4, 0x5, 0x8, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x749})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
r2 = socket$inet(0x2, 0x6000000000000001, 0x0)
mmap(&(0x7f0000001000/0x200000)=nil, 0x200000, 0x2000001, 0x2011, r2, 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x14}, 0x14}}, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r4 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
writev(r3, &(0x7f00000002c0)=[{&(0x7f0000000a40)="2e9b3d0007e03dd65193dfb6c575963f86ddf06712e900232b8db0049d90491ceaebfd26d4eef23248000000f858dbb8a19052343f", 0x35}, {&(0x7f0000000200)="c67f0d7df9", 0x28}], 0x2)
read(r1, &(0x7f0000000040)=""/53, 0x35)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r5}, 0x10)

2.787725234s ago: executing program 5 (id=2118):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000040)=@name={0x1e, 0x2, 0x2, {{0x42, 0x3}, 0x3}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1}, 0x10)
bind$tipc(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x8b}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0xe)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknodat$null(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0xc001, 0x103)
r5 = socket$xdp(0x2c, 0x3, 0x0)
r6 = socket$pppoe(0x18, 0x1, 0x0)
setsockopt$sock_int(r6, 0x1, 0x2d, 0x0, 0x0)
setsockopt$XDP_UMEM_REG(r5, 0x11b, 0x4, &(0x7f00000001c0)={&(0x7f0000000000)=""/74, 0x32a000, 0x800}, 0x20)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

2.671769158s ago: executing program 2 (id=2119):
r0 = socket(0x11, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r2, &(0x7f0000000600)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r3, @ANYBLOB="00001000252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x786c4}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bond={{0x9}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x2)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x5, [@struct={0x4, 0x0, 0x0, 0xf, 0x1, 0x6}]}, {0x0, [0x0, 0x0, 0x0]}}, 0x0, 0x29, 0x0, 0xa, 0x0, 0x0, @void, @value}, 0x20)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r5)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r6], 0x3c}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000005c0)={'gre0\x00'})
bind$packet(r0, 0x0, 0x0)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="020114008cdc18000e3580009f000114600000060600ac141414e0000003808a8972bd0b72e41082b1a3d2061fd7fdfe4b88942a31f48597e36e039b1c599db6e466749c2d4c8303a0f7fbda34fb8825f80200e3c0ab42e32a097dbd4be5ffca88faca"], 0xdd12}, {&(0x7f0000000440)=ANY=[], 0x10}], 0x2}, 0x20040051)
timerfd_settime(0xffffffffffffffff, 0x1, &(0x7f0000007000)={{0x77359400}, {0x0, 0x989680}}, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x1c, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000007000000000000000010000018110000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000b7080000000000007b8af8ff00000000b7080000020000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000040007040000f0ffffffb70200000800000018230000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b70500000800000085000000a5000000bf91000000000000b7020000000000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x7, 0xea, &(0x7f0000000200)=""/234, 0x41000, 0x1c, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000340)={0x1, 0x4, 0x6, 0x401}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000380)=[0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff], 0x0, 0x10, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='svcrdma_wc_read\x00', r8, 0x0, 0x5}, 0x18)
r9 = socket(0x10, 0x803, 0x0)
setsockopt$sock_int(r9, 0x1, 0x22, &(0x7f0000000000)=0x6, 0x4)
sendto(r9, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
r10 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockopt$inet6_int(r10, 0x29, 0x1a, 0x0, &(0x7f0000000040))
recvmmsg(r9, &(0x7f00000014c0), 0x3ffffffffffff42, 0x162, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000700)={@ifindex=r3, 0x1e, 0x0, 0xfff, &(0x7f00000004c0)=[0x0, 0x0], 0x2, 0x0, &(0x7f0000000500)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000680)=[0x0, 0x0], &(0x7f00000006c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x7, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x80, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r11}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

1.792570105s ago: executing program 4 (id=2120):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000140)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', r3, &(0x7f0000000000)='./file0\x00')
socket(0x1000000010, 0x80002, 0x0)
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000001540))
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
link(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='./bus\x00')
open(&(0x7f00000003c0)='./bus\x00', 0x2282, 0x80)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r4}, 0x10)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000003c0), r5)
sendmsg$NLBL_CIPSOV4_C_LISTALL(r5, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x14}}, 0x0)

1.701386325s ago: executing program 5 (id=2121):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r0}, 0x10)
symlink(&(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='./file0\x00')
readlink(0x0, &(0x7f0000000180)=""/139, 0x8b)

839.601205ms ago: executing program 5 (id=2122):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
getrlimit(0x4, &(0x7f0000000040))
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r3 = mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb', 0x42, 0x0, 0x0)
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r3, 0x0, 0x0, 0x6, 0x0)
mq_unlink(&(0x7f0000000000)='eth0\x00')
close(r3)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000680)='./bus\x00', 0x0)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x184c, 0x0, 0x0, 0x0, 0x0)
write$uinput_user_dev(r4, &(0x7f0000000100)={'syz0\x00', {}, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x88], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x86, 0x0, 0x0, 0x0, 0x0, 0x1966cd75, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x641, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff122]}, 0x45c)
ioctl$UI_DEV_SETUP(r4, 0x5501, 0x0)
r5 = memfd_create(&(0x7f0000000180)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xaaSc\xf3]WhI\xf4\x89\x85!mPl\x90\xa5\x93\x19\f\x9a\xae\xd5a\x9bU5\x1a\x86\x9d)5y\xef\x90\xea5\x81\xfeO;\xd4zh?\xbdW\xe0\x84\xe6\x9d\xcb\xcd\xb6\xad3\x7fWY\x02\xa2\x8baG\x00\x0e\x8e/\xc1\xaf\xd0\xbcH9\x04\x00\x00\x00z\x16\xdf\xf3hLpLaA\x89n]>,^M\x82\x8e\xe40\x97_\x809y)Z\xeb\x9d\xbawv\xe9\xc0\x16\xdc\xf5\xcb\xdb\x96\xd6\xba@\xa7\x1bl\xca\xe0\x1e3\x81\xc6S\x86\xf7\xf0\xba\x1b\x14N\xa2\x04\xdb\xb5X\xe4y\xef\xe8\xdb\xd5r\x11\xfb\xe4v\xbcV\xbb\x00\x96CR\xe0~5\x16=:A2\x9c\b\xd9\xa0CB\r\xe9\xb8$\xfe\x8d\xb1Gg\xa9\xac<\xbf\x10]\b9\xd9\x89\xaf\xa6\xd1\x10\x1fq\xba\x06_NW\xdb67Xv(\xa8\xce\x1b\xe6\xbd\x947\x8f)8\xe5\xb3\xac;\x7f+\xf67\xea\x1ei\x92w-)\xa1B/M\x0e7:9\xdb~V\xb7\xd5\x13^v\x14\xe6O\xea\x00\x87\x8dkG\xdf%\xebe\x83\xb97\x01| \xb3\xd8W\xe8o\x17\x97\xd9\x14o\x92\xb9\x9a\x8c\xd7\xcf\xa2\x11\xc3\xa5\xb3\xd2\xdeQ\xa7\x05\x7f\x99Lq(\xcd\\\xa2y\x14or\x1efn\xf2\x97\x96c\xda7\t,', 0x5)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000002, 0x4010012, r5, 0x0)
ftruncate(r5, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000006c0)=ANY=[@ANYBLOB="540100001800010000000000000000001d0100001500030000000000000000000000000000000000020000001e0106000102fe000071ec6d721744cd5200080000f8cfcad4c4ec6511ec028c5028564abce83afe14c93e15e556c2baed7f897fe841c155a2b2a4b9f3052995cdf66a9c7922ff0300005b6c2d3ca5e6973cfd59cfe367281f1519cd7c32c2bf7563b9452575505da99ea128d37616896be8764a2c78edbad5bde7a5e405bdc893770338925f824bd24689c0d11a5568fc3aaa9ad0d7766d8ea8d3bf1006e3df494e2f373148ecb4adafdd39874e9808b118301f1e76054a64c6d243523f5de7b347f3b740e105d0ed18fae7289635301ebd8949268090b3bcd4cbed5f1cfe93cff41a9630802f96defe9e8ea850529827c5e301953a8abaafa1f121e590f74e28233f4129d4587eee87ec5d42c3ef0619022c005c8d586b2a88d81866930fca15c8a95d29e5b2ea00000800050080000800"], 0x154}, 0x1, 0x0, 0x0, 0x20008084}, 0x0)

733.321368ms ago: executing program 4 (id=2123):
r0 = socket$inet6(0xa, 0x3, 0x87)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_GET_STATS(r4, 0x80f86406, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0)
eventfd2(0x0, 0x0)
r6 = syz_io_uring_setup(0xd1, &(0x7f0000000480)={0x0, 0x0, 0x100, 0x0, 0x335}, &(0x7f0000000080)=<r7=>0x0, &(0x7f00000001c0)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000240)=[{&(0x7f0000001800)=""/224, 0xe0}], 0x1})
io_uring_enter(r6, 0x47ba, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000a40)=ANY=[@ANYBLOB="2c0000001e00431b000000000000000007000000", @ANYRES32=0x0], 0x2c}}, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)

721.132639ms ago: executing program 2 (id=2124):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000a0000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, 0x0, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x8, 0x10002, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xc, 0x4, 0x4, 0x9, 0x0, r2, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008d}, 0x0)
dup(0xffffffffffffffff)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$kcm(0x29, 0x5, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='net/kcm\x00')
preadv(r5, &(0x7f0000000080)=[{&(0x7f0000000100)=""/68, 0x44}], 0x1, 0x92, 0x0)

0s ago: executing program 0 (id=2125):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000600)={0x26, 'aead\x00', 0x0, 0x0, 'gcm(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@assoc={0x18, 0x117, 0x4, 0xe1}], 0x18, 0x20000080}, 0x4000)
sendmsg$TIPC_NL_MEDIA_SET(r1, &(0x7f0000001800)={0x0, 0x23, &(0x7f00000001c0)={&(0x7f00000001c0)=ANY=[], 0x12f4}}, 0x240000c4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000080)=0x80)
close(0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
recvmmsg(r1, &(0x7f0000007680)=[{{0x0, 0x0, &(0x7f0000007a40)=[{&(0x7f0000000300)=""/173, 0xad}, {&(0x7f0000000000)=""/11, 0x3}, {&(0x7f0000000080)=""/79, 0x4f}], 0x3, 0x0, 0x46}, 0x9}], 0x1, 0x12100, 0x0)

kernel console output (not intermixed with test programs):

[T15990] usb 6-1: USB disconnect, device number 4
[  605.121031][T17592] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1625'.
[  605.135077][T17592] veth1_macvtap: left promiscuous mode
[  605.146138][T17592] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1625'.
[  605.157812][T17592] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  605.166768][T17592] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  605.177269][ T3179] usb 2-1: USB disconnect, device number 33
[  606.484314][T15990] usb 3-1: USB disconnect, device number 50
[  606.528522][T17674] netlink: 'syz.4.1631': attribute type 12 has an invalid length.
[  606.558987][T17674] netlink: 68 bytes leftover after parsing attributes in process `syz.4.1631'.
[  606.660636][ T5873] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[  606.824309][ T5873] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  606.835712][ T5873] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  606.847383][ T5873] usb 2-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  606.856690][ T5873] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  606.868032][ T5873] usb 2-1: config 0 descriptor??
[  606.982454][T15990] usb 3-1: new high-speed USB device number 51 using dummy_hcd
[  607.120741][T15990] usb 3-1: device descriptor read/64, error -71
[  607.181693][ T5873] usbhid 2-1:0.0: can't add hid device: -71
[  607.190510][ T5873] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  607.199912][ T5873] usb 2-1: USB disconnect, device number 34
[  607.239925][ T3179] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  607.388745][T15990] usb 3-1: new high-speed USB device number 52 using dummy_hcd
[  607.482800][ T3179] usb 6-1: config 0 has no interfaces?
[  607.523379][ T3179] usb 6-1: New USB device found, idVendor=0582, idProduct=b9d5, bcdDevice=73.f7
[  607.581846][ T3179] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  607.617556][ T3179] usb 6-1: config 0 descriptor??
[  607.634468][T15990] usb 3-1: device descriptor read/64, error -71
[  607.773895][T15990] usb usb3-port1: attempt power cycle
[  608.118663][ T5873] usb 6-1: USB disconnect, device number 5
[  608.200214][T15990] usb 3-1: new high-speed USB device number 53 using dummy_hcd
[  608.421155][T15990] usb 3-1: device descriptor read/8, error -71
[  608.788533][T15990] usb 3-1: new high-speed USB device number 54 using dummy_hcd
[  608.863692][T15990] usb 3-1: device descriptor read/8, error -71
[  609.027644][T15990] usb usb3-port1: unable to enumerate USB device
[  609.910628][ T3179] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  610.071326][ T5870] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[  610.355601][ T5870] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  610.462793][ T5870] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  610.556816][ T5870] usb 1-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  610.569234][ T5870] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  610.585106][T17799] netlink: 'syz.2.1652': attribute type 1 has an invalid length.
[  610.594867][ T5870] usb 1-1: config 0 descriptor??
[  610.640047][ T3179] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  610.651322][ T3179] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  610.675957][ T3179] usb 2-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  610.689736][ T3179] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  610.705807][ T3179] usb 2-1: config 0 descriptor??
[  610.818336][T17839] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1652'.
[  611.041525][T17799] bond9: entered allmulticast mode
[  612.715998][T17799] 8021q: adding VLAN 0 to HW filter on device bond9
[  613.270821][T17799] bond8: (slave bond9): making interface the new active one
[  613.298403][T17799] bond8: (slave bond9): Enslaving as an active interface with an up link
[  613.330331][ T3179] usbhid 2-1:0.0: can't add hid device: -71
[  613.333529][ T5870] usbhid 1-1:0.0: can't add hid device: -71
[  613.345899][ T3179] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  613.348051][ T5870] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  613.372769][ T5870] usb 1-1: USB disconnect, device number 35
[  613.439272][T17895] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1657'.
[  613.493224][ T3179] usb 2-1: USB disconnect, device number 35
[  613.571798][T17909] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1660'.
[  613.641206][   T29] audit: type=1326 audit(1733555576.826:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17914 comm="syz.1.1661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36457fed9 code=0x7ffc0000
[  613.666950][   T29] audit: type=1326 audit(1733555576.864:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17914 comm="syz.1.1661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36457fed9 code=0x7ffc0000
[  613.745136][   T29] audit: type=1326 audit(1733555576.892:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17914 comm="syz.1.1661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7fc36457fed9 code=0x7ffc0000
[  613.836566][   T29] audit: type=1326 audit(1733555576.892:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17914 comm="syz.1.1661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36457fed9 code=0x7ffc0000
[  613.886971][T17924] FAULT_INJECTION: forcing a failure.
[  613.886971][T17924] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  613.898705][T17922] netlink: 'syz.2.1663': attribute type 10 has an invalid length.
[  613.900221][T17924] CPU: 1 UID: 0 PID: 17924 Comm: syz.1.1664 Not tainted 6.13.0-rc1-syzkaller-00239-g9a6e8c7c3a02 #0
[  613.915131][   T29] audit: type=1326 audit(1733555576.892:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17914 comm="syz.1.1661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36457fed9 code=0x7ffc0000
[  613.918546][T17924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  613.918561][T17924] Call Trace:
[  613.953455][T17924]  <TASK>
[  613.956417][T17924]  dump_stack_lvl+0x241/0x360
[  613.961135][T17924]  ? __pfx_dump_stack_lvl+0x10/0x10
[  613.966369][T17924]  ? __pfx__printk+0x10/0x10
[  613.971006][T17924]  ? __pfx_lock_release+0x10/0x10
[  613.976069][T17924]  should_fail_ex+0x3b0/0x4e0
[  613.980781][T17924]  _copy_from_iter+0x21f/0x1e70
[  613.985664][T17924]  ? __virt_addr_valid+0x183/0x530
[  613.990800][T17924]  ? __pfx_lock_release+0x10/0x10
[  613.995861][T17924]  ? __alloc_skb+0x28f/0x440
[  613.997184][T17922] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1663'.
[  614.000457][T17924]  ? __pfx__copy_from_iter+0x10/0x10
[  614.000490][T17924]  ? __virt_addr_valid+0x183/0x530
[  614.019916][T17924]  ? __virt_addr_valid+0x183/0x530
[  614.021862][   T29] audit: type=1326 audit(1733555576.901:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17914 comm="syz.1.1661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc36457fed9 code=0x7ffc0000
[  614.025036][T17924]  ? __virt_addr_valid+0x45f/0x530
[  614.051597][T17924]  ? __check_object_size+0x48e/0x900
[  614.056919][T17924]  netlink_sendmsg+0x73d/0xcb0
[  614.061730][T17924]  ? __pfx_netlink_sendmsg+0x10/0x10
[  614.067058][T17924]  ? __pfx_netlink_sendmsg+0x10/0x10
[  614.072368][T17924]  __sock_sendmsg+0x221/0x270
[  614.077072][T17924]  ____sys_sendmsg+0x52a/0x7e0
[  614.081859][T17924]  ? __pfx_____sys_sendmsg+0x10/0x10
[  614.087158][T17924]  ? __fget_files+0x2a/0x410
[  614.091765][T17924]  ? __fget_files+0x2a/0x410
[  614.096360][T17924]  __sys_sendmsg+0x269/0x350
[  614.100950][T17924]  ? __pfx_lock_release+0x10/0x10
[  614.105978][T17924]  ? __pfx___sys_sendmsg+0x10/0x10
[  614.111095][T17924]  ? __pfx_vfs_write+0x10/0x10
[  614.115878][T17924]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  614.122211][T17924]  ? do_syscall_64+0x100/0x230
[  614.126982][T17924]  ? do_syscall_64+0xb6/0x230
[  614.131751][T17924]  do_syscall_64+0xf3/0x230
[  614.136272][T17924]  ? clear_bhb_loop+0x35/0x90
[  614.140946][T17924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  614.146840][T17924] RIP: 0033:0x7fc36457fed9
[  614.151255][T17924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  614.170859][T17924] RSP: 002b:00007fc3653dc058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  614.179282][T17924] RAX: ffffffffffffffda RBX: 00007fc364745fa0 RCX: 00007fc36457fed9
[  614.187256][T17924] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000005
[  614.195222][T17924] RBP: 00007fc3653dc0a0 R08: 0000000000000000 R09: 0000000000000000
[  614.203188][T17924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  614.211155][T17924] R13: 0000000000000000 R14: 00007fc364745fa0 R15: 00007ffcbab87048
[  614.219140][T17924]  </TASK>
[  614.240914][T17922] bridge0: port 4(macvlan1) entered blocking state
[  614.251490][T17922] bridge0: port 4(macvlan1) entered disabled state
[  614.258221][T17922] macvlan1: entered allmulticast mode
[  614.261805][   T29] audit: type=1326 audit(1733555576.901:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17914 comm="syz.1.1661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36457fed9 code=0x7ffc0000
[  614.282995][T17922] veth1_vlan: entered allmulticast mode
[  614.292732][T17922] macvlan1: entered promiscuous mode
[  614.311357][   T29] audit: type=1326 audit(1733555576.901:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17914 comm="syz.1.1661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36457fed9 code=0x7ffc0000
[  614.327075][T17922] bridge0: port 4(macvlan1) entered blocking state
[  614.339829][T17922] bridge0: port 4(macvlan1) entered forwarding state
[  614.416861][   T29] audit: type=1326 audit(1733555576.901:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17914 comm="syz.1.1661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=234 compat=0 ip=0x7fc36457fed9 code=0x7ffc0000
[  614.509489][   T29] audit: type=1326 audit(1733555576.901:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17914 comm="syz.1.1661" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36457fed9 code=0x7ffc0000
[  614.819696][T17926] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1663'.
[  615.179606][T17926] netlink: 22 bytes leftover after parsing attributes in process `syz.2.1663'.
[  615.336137][ T5873] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[  615.481861][T17926] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1663'.
[  615.501063][T17926] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1663'.
[  615.598424][ T5873] usb 1-1: Using ep0 maxpacket: 32
[  615.610764][ T5873] usb 1-1: config 0 has an invalid interface number: 37 but max is 1
[  615.625005][ T5873] usb 1-1: config 0 has an invalid descriptor of length 38, skipping remainder of the config
[  615.657454][ T5873] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[  615.683603][ T5873] usb 1-1: config 0 has no interface number 0
[  615.691600][ T5873] usb 1-1: New USB device found, idVendor=03f0, idProduct=582e, bcdDevice=20.a3
[  615.715575][ T5873] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  615.724383][ T5873] usb 1-1: Product: syz
[  615.736971][ T5871] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  615.745021][ T5873] usb 1-1: Manufacturer: syz
[  615.758577][ T5873] usb 1-1: SerialNumber: syz
[  615.780569][ T5873] usb 1-1: config 0 descriptor??
[  615.902277][T17953] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  615.946064][ T5871] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  615.958044][ T5871] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  615.968698][ T5871] usb 2-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  615.979432][ T5871] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  615.992735][ T5871] usb 2-1: config 0 descriptor??
[  616.070341][ T5873] usb 1-1: USB disconnect, device number 36
[  616.237585][ T5871] usbhid 2-1:0.0: can't add hid device: -71
[  616.264735][ T5871] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  616.275133][ T5871] usb 2-1: USB disconnect, device number 36
[  616.469501][T18001] netlink: 220 bytes leftover after parsing attributes in process `syz.2.1674'.
[  616.908201][ T5874] usb 6-1: new full-speed USB device number 6 using dummy_hcd
[  617.304286][ T5874] usb 6-1: config 0 has an invalid interface number: 9 but max is 0
[  617.312769][ T5874] usb 6-1: config 0 has no interface number 0
[  617.318920][ T5874] usb 6-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  617.330045][ T5874] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  617.342320][ T5874] usb 6-1: config 0 descriptor??
[  617.352305][ T5874] ums-realtek 6-1:0.9: USB Mass Storage device detected
[  617.612910][ T5874] usb 6-1: USB disconnect, device number 6
[  618.379322][T18038] xt_CT: You must specify a L4 protocol and not use inversions on it
[  618.623544][T18053] netlink: 1788 bytes leftover after parsing attributes in process `syz.0.1684'.
[  620.904245][T18064] 9pnet_fd: Insufficient options for proto=fd
[  620.923873][T18064] xt_socket: unknown flags 0x58
[  620.943326][ T5873] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  622.044516][T18093] 9pnet_fd: Insufficient options for proto=fd
[  622.334656][ T5873] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  622.356737][ T5873] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  622.366992][ T5873] usb 2-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  622.376693][ T5873] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  622.495541][ T5873] usb 2-1: config 0 descriptor??
[  622.735145][ T5873] usbhid 2-1:0.0: can't add hid device: -71
[  622.741753][ T5873] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  622.755063][ T5873] usb 2-1: USB disconnect, device number 37
[  630.430334][ T5873] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[  630.877554][ T5873] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  630.890235][ T5873] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  630.901170][ T5873] usb 2-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  630.911955][ T5873] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  630.925152][ T5873] usb 2-1: config 0 descriptor??
[  631.301054][ T5873] usbhid 2-1:0.0: can't add hid device: -71
[  631.307756][ T5873] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  631.322470][ T5873] usb 2-1: USB disconnect, device number 38
[  633.179453][T18277] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1737'.
[  633.934254][T18284] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1739'.
[  635.061343][T18312] FAULT_INJECTION: forcing a failure.
[  635.061343][T18312] name failslab, interval 1, probability 0, space 0, times 0
[  635.090000][T18312] CPU: 1 UID: 0 PID: 18312 Comm: syz.0.1745 Not tainted 6.13.0-rc1-syzkaller-00239-g9a6e8c7c3a02 #0
[  635.100815][T18312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  635.110910][T18312] Call Trace:
[  635.114189][T18312]  <TASK>
[  635.117122][T18312]  dump_stack_lvl+0x241/0x360
[  635.121830][T18312]  ? __pfx_dump_stack_lvl+0x10/0x10
[  635.127058][T18312]  ? __pfx__printk+0x10/0x10
[  635.131643][T18312]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  635.137630][T18312]  ? __pfx___might_resched+0x10/0x10
[  635.142922][T18312]  should_fail_ex+0x3b0/0x4e0
[  635.147594][T18312]  should_failslab+0xac/0x100
[  635.152267][T18312]  kmem_cache_alloc_node_noprof+0x77/0x380
[  635.158063][T18312]  ? __alloc_skb+0x1c3/0x440
[  635.162678][T18312]  __alloc_skb+0x1c3/0x440
[  635.167090][T18312]  ? __pfx___alloc_skb+0x10/0x10
[  635.172017][T18312]  ? netlink_autobind+0xd6/0x2f0
[  635.176944][T18312]  ? netlink_autobind+0x2b0/0x2f0
[  635.181957][T18312]  netlink_sendmsg+0x638/0xcb0
[  635.186718][T18312]  ? __pfx_netlink_sendmsg+0x10/0x10
[  635.191994][T18312]  ? __pfx_netlink_sendmsg+0x10/0x10
[  635.197285][T18312]  __sock_sendmsg+0x221/0x270
[  635.201970][T18312]  ____sys_sendmsg+0x52a/0x7e0
[  635.206729][T18312]  ? __pfx_____sys_sendmsg+0x10/0x10
[  635.211998][T18312]  ? __fget_files+0x2a/0x410
[  635.216578][T18312]  ? __fget_files+0x2a/0x410
[  635.221158][T18312]  __sys_sendmsg+0x269/0x350
[  635.225733][T18312]  ? __pfx_lock_release+0x10/0x10
[  635.230748][T18312]  ? __pfx___sys_sendmsg+0x10/0x10
[  635.235890][T18312]  ? __pfx_vfs_write+0x10/0x10
[  635.240667][T18312]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  635.246994][T18312]  ? do_syscall_64+0x100/0x230
[  635.251759][T18312]  ? do_syscall_64+0xb6/0x230
[  635.256452][T18312]  do_syscall_64+0xf3/0x230
[  635.260951][T18312]  ? clear_bhb_loop+0x35/0x90
[  635.265617][T18312]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  635.271530][T18312] RIP: 0033:0x7fc65e97fed9
[  635.275936][T18312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  635.295885][T18312] RSP: 002b:00007fc65c7f6058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  635.304297][T18312] RAX: ffffffffffffffda RBX: 00007fc65eb45fa0 RCX: 00007fc65e97fed9
[  635.312264][T18312] RDX: 0000000000000000 RSI: 0000000020000580 RDI: 0000000000000004
[  635.320228][T18312] RBP: 00007fc65c7f60a0 R08: 0000000000000000 R09: 0000000000000000
[  635.328190][T18312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  635.336158][T18312] R13: 0000000000000000 R14: 00007fc65eb45fa0 R15: 00007fff1ccd6a98
[  635.344132][T18312]  </TASK>
[  635.347233][    C1] vkms_vblank_simulate: vblank timer overrun
[  635.516790][T15990] usb 3-1: new high-speed USB device number 55 using dummy_hcd
[  636.904617][T18337] rdma_op ffff88807fcd19f0 conn xmit_rdma 0000000000000000
[  637.600317][T18345] FAULT_INJECTION: forcing a failure.
[  637.600317][T18345] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  637.617014][T18345] CPU: 0 UID: 0 PID: 18345 Comm: syz.5.1753 Not tainted 6.13.0-rc1-syzkaller-00239-g9a6e8c7c3a02 #0
[  637.627807][T18345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  637.637857][T18345] Call Trace:
[  637.641125][T18345]  <TASK>
[  637.644047][T18345]  dump_stack_lvl+0x241/0x360
[  637.648717][T18345]  ? __pfx_dump_stack_lvl+0x10/0x10
[  637.653902][T18345]  ? __pfx__printk+0x10/0x10
[  637.658506][T18345]  ? __pfx_lock_release+0x10/0x10
[  637.663528][T18345]  should_fail_ex+0x3b0/0x4e0
[  637.668198][T18345]  _copy_from_user+0x2f/0xc0
[  637.672779][T18345]  copy_msghdr_from_user+0xae/0x680
[  637.677974][T18345]  ? __pfx___might_resched+0x10/0x10
[  637.683251][T18345]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  637.689049][T18345]  ? __sys_sendmmsg+0x392/0x720
[  637.693887][T18345]  ? __might_fault+0xaa/0x120
[  637.698555][T18345]  __sys_sendmmsg+0x32b/0x720
[  637.703244][T18345]  ? __pfx___sys_sendmmsg+0x10/0x10
[  637.708435][T18345]  ? __pfx_lock_release+0x10/0x10
[  637.713452][T18345]  ? kstrtouint_from_user+0x128/0x190
[  637.718829][T18345]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  637.724713][T18345]  ? ksys_write+0x22a/0x2b0
[  637.729209][T18345]  ? __pfx_lock_release+0x10/0x10
[  637.734254][T18345]  ? vfs_write+0x730/0xd30
[  637.738681][T18345]  ? __mutex_unlock_slowpath+0x21e/0x790
[  637.744332][T18345]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  637.750314][T18345]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  637.756651][T18345]  ? do_syscall_64+0x100/0x230
[  637.761415][T18345]  __x64_sys_sendmmsg+0xa0/0xb0
[  637.766272][T18345]  do_syscall_64+0xf3/0x230
[  637.770768][T18345]  ? clear_bhb_loop+0x35/0x90
[  637.775432][T18345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  637.781322][T18345] RIP: 0033:0x7fa26f77fed9
[  637.785788][T18345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  637.805394][T18345] RSP: 002b:00007fa2704db058 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  637.813798][T18345] RAX: ffffffffffffffda RBX: 00007fa26f945fa0 RCX: 00007fa26f77fed9
[  637.821761][T18345] RDX: 0000000000000318 RSI: 00000000200bd000 RDI: 0000000000000004
[  637.829731][T18345] RBP: 00007fa2704db0a0 R08: 0000000000000000 R09: 0000000000000000
[  637.837696][T18345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  637.845656][T18345] R13: 0000000000000000 R14: 00007fa26f945fa0 R15: 00007ffe4c4e18b8
[  637.853626][T18345]  </TASK>
[  637.984545][T15990] usb 3-1: Using ep0 maxpacket: 16
[  637.991968][T15990] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  638.004812][T15990] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  638.006104][ T5871] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[  638.026292][T15990] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  638.040811][T15990] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  638.050035][T15990] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  638.058050][T15990] usb 3-1: Product: syz
[  638.062395][T15990] usb 3-1: Manufacturer: syz
[  638.067128][T15990] usb 3-1: SerialNumber: syz
[  638.179930][ T5871] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  638.201617][ T5871] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  638.214328][ T5871] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  638.236326][ T5871] usb 2-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  638.248098][ T5871] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  638.253856][T15990] usb 3-1: 2:1 : format type 0 is detected, processed as PCM
[  638.279612][T15990] usb 3-1: 2:1: cannot set freq 9338507 to ep 0x82
[  638.280299][ T5871] usb 2-1: config 0 descriptor??
[  638.344841][T15990] usb 3-1: USB disconnect, device number 55
[  639.666214][T18340] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  639.682781][T18340] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  639.762945][T18340] Cannot find map_set index 0 as target
[  639.856690][ T5871] usbhid 2-1:0.0: can't add hid device: -71
[  639.862829][ T5871] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  639.872658][ T5871] usb 2-1: USB disconnect, device number 39
[  644.645642][T18477] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  644.653490][T18477] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  644.747774][T18479] sg_write: data in/out 11/10 bytes for SCSI command 0xfd-- guessing data in;
[  644.747774][T18479]    program syz.2.1773 not setting count and/or reply_len properly
[  646.162621][ T3179] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  646.393142][ T3179] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  646.513018][ T3179] usb 6-1: config 1 interface 0 has no altsetting 1
[  646.594361][ T3179] usb 6-1: New USB device found, idVendor=0536, idProduct=a4a8, bcdDevice= 0.40
[  646.613863][ T3179] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  646.622366][ T3179] usb 6-1: Product: syz
[  646.626636][ T3179] usb 6-1: Manufacturer: syz
[  646.631668][ T3179] usb 6-1: SerialNumber: syz
[  646.722584][ T5873] usb 1-1: new high-speed USB device number 37 using dummy_hcd
[  646.782566][T18524] sg_write: data in/out 11/10 bytes for SCSI command 0xfd-- guessing data in;
[  646.782566][T18524]    program syz.2.1784 not setting count and/or reply_len properly
[  646.800210][T18524] FAULT_INJECTION: forcing a failure.
[  646.800210][T18524] name failslab, interval 1, probability 0, space 0, times 0
[  646.813181][T18524] CPU: 1 UID: 0 PID: 18524 Comm: syz.2.1784 Not tainted 6.13.0-rc1-syzkaller-00239-g9a6e8c7c3a02 #0
[  646.819787][T18526] batadv1: entered promiscuous mode
[  646.823973][T18524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  646.823991][T18524] Call Trace:
[  646.823998][T18524]  <TASK>
[  646.824007][T18524]  dump_stack_lvl+0x241/0x360
[  646.824036][T18524]  ? __pfx_dump_stack_lvl+0x10/0x10
[  646.824058][T18524]  ? __pfx__printk+0x10/0x10
[  646.824085][T18524]  should_fail_ex+0x3b0/0x4e0
[  646.824106][T18524]  should_failslab+0xac/0x100
[  646.824124][T18524]  __kmalloc_noprof+0xdd/0x4c0
[  646.824141][T18524]  ? blk_rq_map_user_iov+0xe09/0x2470
[  646.824160][T18524]  ? blk_rq_map_user_iov+0xf83/0x2470
[  646.824181][T18524]  blk_rq_map_user_iov+0xf83/0x2470
[  646.824266][T18524]  ? mark_lock+0x9a/0x360
[  646.824293][T18524]  ? __pfx_blk_rq_map_user_iov+0x10/0x10
[  646.824310][T18524]  ? __lock_acquire+0x1397/0x2100
[  646.824352][T18524]  ? import_ubuf+0x97/0x1d0
[  646.830799][T18526] 8021q: adding VLAN 0 to HW filter on device batadv1
[  646.839612][T18524]  blk_rq_map_user_io+0x288/0x420
[  646.839647][T18524]  ? sg_common_write+0xb5f/0x14c0
[  646.839669][T18524]  ? __pfx_blk_rq_map_user_io+0x10/0x10
[  646.839686][T18524]  ? rcu_is_watching+0x15/0xb0
[  646.839708][T18524]  ? __mutex_lock+0x37f/0xee0
[  646.839738][T18524]  ? __mutex_unlock_slowpath+0x21e/0x790
[  646.839763][T18524]  ? __pfx___mutex_lock+0x10/0x10
[  646.839786][T18524]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  646.839811][T18524]  ? __pfx_vprintk_emit+0x10/0x10
[  646.839832][T18524]  ? sg_link_reserve+0x28a/0x530
[  646.839857][T18524]  sg_common_write+0xd68/0x14c0
[  646.894007][ T5873] usb 1-1: New USB device found, idVendor=2c42, idProduct=1602, bcdDevice=da.64
[  646.894891][T18524]  ? __pfx_sg_common_write+0x10/0x10
[  646.900934][ T5873] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  646.905535][T18524]  ? __might_fault+0xc6/0x120
[  646.905571][T18524]  sg_write+0xa5d/0xf10
[  646.912108][ T5873] usb 1-1: Product: syz
[  646.916808][T18524]  ? __pfx_sg_write+0x10/0x10
[  646.916844][T18524]  ? mark_lock+0x9a/0x360
[  646.923000][ T5873] usb 1-1: Manufacturer: syz
[  646.926965][T18524]  ? bpf_lsm_file_permission+0x9/0x10
[  646.933870][ T5873] usb 1-1: SerialNumber: syz
[  646.937250][T18524]  ? security_file_permission+0x74/0x280
[  646.937278][T18524]  ? rw_verify_area+0x1c3/0x6f0
[  646.937301][T18524]  ? __pfx_sg_write+0x10/0x10
[  646.944939][ T5873] usb 1-1: config 0 descriptor??
[  646.947565][T18524]  vfs_write+0x2a3/0xd30
[  646.947605][T18524]  ? __pfx_vfs_write+0x10/0x10
[  646.956411][ T5873] hub 1-1:0.0: bad descriptor, ignoring hub
[  646.958585][T18524]  ? __fget_files+0x2a/0x410
[  646.958618][T18524]  ? __fget_files+0x395/0x410
[  646.958638][T18524]  ? __fget_files+0x2a/0x410
[  646.963776][ T5873] hub 1-1:0.0: probe with driver hub failed with error -5
[  646.968584][T18524]  ksys_write+0x18f/0x2b0
[  646.968621][T18524]  ? __pfx_ksys_write+0x10/0x10
[  646.968644][T18524]  ? do_syscall_64+0x100/0x230
[  646.968669][T18524]  ? do_syscall_64+0xb6/0x230
[  646.968693][T18524]  do_syscall_64+0xf3/0x230
[  646.968716][T18524]  ? clear_bhb_loop+0x35/0x90
[  646.968734][T18524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  646.968757][T18524] RIP: 0033:0x7fd133f7fed9
[  646.974548][ T5873] f81232 1-1:0.0: f81534a converter detected
[  646.982596][T18524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  646.982620][T18524] RSP: 002b:00007fd134dcb058 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  646.982642][T18524] RAX: ffffffffffffffda RBX: 00007fd134145fa0 RCX: 00007fd133f7fed9
[  646.982657][T18524] RDX: 0000000000000038 RSI: 0000000020000200 RDI: 0000000000000004
[  646.982668][T18524] RBP: 00007fd134dcb0a0 R08: 0000000000000000 R09: 0000000000000000
[  646.982680][T18524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  646.982690][T18524] R13: 0000000000000000 R14: 00007fd134145fa0 R15: 00007ffc11366088
[  646.982716][T18524]  </TASK>
[  646.984124][T15990] usb 5-1: new full-speed USB device number 44 using dummy_hcd
[  647.078563][ T5871] usb 6-1: USB disconnect, device number 7
[  647.316331][ T5873] usb 1-1: f81534a converter now attached to ttyUSB0
[  647.416338][T15990] usb 5-1: config 7 has an invalid interface number: 192 but max is 0
[  647.425028][T15990] usb 5-1: config 7 has no interface number 0
[  647.431316][T15990] usb 5-1: config 7 interface 192 has no altsetting 0
[  647.440364][T15990] usb 5-1: New USB device found, idVendor=09fb, idProduct=ebbe, bcdDevice=d4.8d
[  647.449798][T15990] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  647.461164][T15990] usb 5-1: Product: syz
[  647.465453][T15990] usb 5-1: Manufacturer: syz
[  647.470283][T15990] usb 5-1: SerialNumber: syz
[  648.365249][T15990] usb 5-1: USB disconnect, device number 44
[  648.476659][ T5873] usb 1-1: USB disconnect, device number 37
[  648.489115][ T5873] f81534a ttyUSB0: f81534a converter now disconnected from ttyUSB0
[  648.498656][ T5873] f81232 1-1:0.0: device disconnected
[  649.902265][T15990] usb 5-1: new full-speed USB device number 45 using dummy_hcd
[  649.910348][ T3179] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  650.735367][T15990] usb 5-1: device descriptor read/64, error -71
[  651.572016][ T3179] usb 2-1: Using ep0 maxpacket: 8
[  651.578883][ T3179] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  651.590330][ T3179] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  651.903286][ T3179] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  651.926731][ T3179] usb 2-1: New USB device found, idVendor=05ac, idProduct=0237, bcdDevice= 0.40
[  652.232825][T15990] usb 5-1: new full-speed USB device number 46 using dummy_hcd
[  652.684684][ T3179] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  652.692733][ T3179] usb 2-1: Product: syz
[  652.696993][ T3179] usb 2-1: Manufacturer: syz
[  652.701632][ T3179] usb 2-1: SerialNumber: syz
[  652.712884][ T3179] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/input/input39
[  652.769618][T15990] usb 5-1: device descriptor read/64, error -71
[  652.783309][T18630] FAULT_INJECTION: forcing a failure.
[  652.783309][T18630] name failslab, interval 1, probability 0, space 0, times 0
[  652.806922][T18630] CPU: 1 UID: 0 PID: 18630 Comm: syz.5.1800 Not tainted 6.13.0-rc1-syzkaller-00239-g9a6e8c7c3a02 #0
[  652.817747][T18630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  652.827843][T18630] Call Trace:
[  652.831138][T18630]  <TASK>
[  652.834087][T18630]  dump_stack_lvl+0x241/0x360
[  652.838793][T18630]  ? __pfx_dump_stack_lvl+0x10/0x10
[  652.844016][T18630]  ? __pfx__printk+0x10/0x10
[  652.848647][T18630]  should_fail_ex+0x3b0/0x4e0
[  652.853436][T18630]  should_failslab+0xac/0x100
[  652.858137][T18630]  ? vm_area_dup+0x27/0x290
[  652.862674][T18630]  kmem_cache_alloc_noprof+0x70/0x380
[  652.868081][T18630]  vm_area_dup+0x27/0x290
[  652.872437][T18630]  __split_vma+0x1cb/0xc50
[  652.876892][T18630]  ? __pfx___split_vma+0x10/0x10
[  652.881860][T18630]  ? mas_find+0x950/0xbb0
[  652.886216][T18630]  vms_gather_munmap_vmas+0x4c1/0x1600
[  652.891713][T18630]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  652.897635][T18630]  ? mas_find+0x8c0/0xbb0
[  652.901996][T18630]  __mmap_region+0x7de/0x2cd0
[  652.906703][T18630]  ? __pfx_lock_release+0x10/0x10
[  652.911738][T18630]  ? __pfx___mmap_region+0x10/0x10
[  652.916853][T18630]  ? __lock_acquire+0x1397/0x2100
[  652.921910][T18630]  ? arch_get_unmapped_area_topdown+0x28e/0xc50
[  652.928150][T18630]  ? mark_lock+0x9a/0x360
[  652.932495][T18630]  ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10
[  652.939091][T18630]  ? mm_get_unmapped_area_vmflags+0xb9/0xf0
[  652.944990][T18630]  ? thp_get_unmapped_area_vmflags+0x1bf/0x380
[  652.951142][T18630]  ? thp_get_unmapped_area_vmflags+0x341/0x380
[  652.957296][T18630]  ? cap_mmap_addr+0x163/0x2c0
[  652.962063][T18630]  mmap_region+0x226/0x2c0
[  652.966495][T18630]  do_mmap+0x8f0/0x1000
[  652.970695][T18630]  ? __pfx_do_mmap+0x10/0x10
[  652.975383][T18630]  ? __pfx_down_write_killable+0x10/0x10
[  652.981013][T18630]  ? __pfx_lock_acquire+0x10/0x10
[  652.986038][T18630]  vm_mmap_pgoff+0x1dd/0x3d0
[  652.990639][T18630]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  652.995753][T18630]  ? __fget_files+0x2a/0x410
[  653.000427][T18630]  ? __fget_files+0x395/0x410
[  653.005102][T18630]  ? __fget_files+0x2a/0x410
[  653.009691][T18630]  ksys_mmap_pgoff+0x4eb/0x720
[  653.014460][T18630]  ? __x64_sys_mmap+0x7f/0x140
[  653.019313][T18630]  do_syscall_64+0xf3/0x230
[  653.023837][T18630]  ? clear_bhb_loop+0x35/0x90
[  653.028603][T18630]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  653.034500][T18630] RIP: 0033:0x7fa26f77fed9
[  653.038912][T18630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  653.058576][T18630] RSP: 002b:00007fa2704db058 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  653.066996][T18630] RAX: ffffffffffffffda RBX: 00007fa26f945fa0 RCX: 00007fa26f77fed9
[  653.074967][T18630] RDX: 0000000000000001 RSI: 0000000000c00000 RDI: 0000000020001000
[  653.082934][T18630] RBP: 00007fa2704db0a0 R08: 0000000000000005 R09: 00000000ffffc000
[  653.090901][T18630] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001
[  653.098874][T18630] R13: 0000000000000000 R14: 00007fa26f945fa0 R15: 00007ffe4c4e18b8
[  653.106853][T18630]  </TASK>
[  653.109892][    C1] vkms_vblank_simulate: vblank timer overrun
[  653.154544][T15990] usb usb5-port1: attempt power cycle
[  653.624535][T15990] usb 5-1: new full-speed USB device number 47 using dummy_hcd
[  654.144413][T15990] usb 5-1: device descriptor read/8, error -71
[  654.234546][ T5180] bcm5974 2-1:1.0: could not read from device
[  654.272193][ T5871] usb 2-1: USB disconnect, device number 40
[  654.361721][T18659] vlan0: entered allmulticast mode
[  655.185400][ T5871] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  655.422404][ T5871] usb 2-1: config 0 has no interfaces?
[  655.431416][ T5871] usb 2-1: New USB device found, idVendor=0582, idProduct=b9d5, bcdDevice=73.f7
[  655.441393][ T5871] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  655.454890][ T5871] usb 2-1: config 0 descriptor??
[  656.399981][T18696] FAULT_INJECTION: forcing a failure.
[  656.399981][T18696] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  656.425362][T18696] CPU: 1 UID: 0 PID: 18696 Comm: syz.5.1812 Not tainted 6.13.0-rc1-syzkaller-00239-g9a6e8c7c3a02 #0
[  656.436179][T18696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  656.446250][T18696] Call Trace:
[  656.449537][T18696]  <TASK>
[  656.452465][T18696]  dump_stack_lvl+0x241/0x360
[  656.457151][T18696]  ? __pfx_dump_stack_lvl+0x10/0x10
[  656.462358][T18696]  ? __pfx__printk+0x10/0x10
[  656.466959][T18696]  ? __pfx_lock_release+0x10/0x10
[  656.471986][T18696]  should_fail_ex+0x3b0/0x4e0
[  656.476663][T18696]  _copy_from_user+0x2f/0xc0
[  656.481265][T18696]  copy_msghdr_from_user+0xae/0x680
[  656.486464][T18696]  ? __pfx___might_resched+0x10/0x10
[  656.491756][T18696]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  656.497569][T18696]  ? __fget_files+0x2a/0x410
[  656.502165][T18696]  ? __sys_sendmmsg+0x392/0x720
[  656.507034][T18696]  ? __might_fault+0xaa/0x120
[  656.511730][T18696]  __sys_sendmmsg+0x32b/0x720
[  656.516435][T18696]  ? __pfx___sys_sendmmsg+0x10/0x10
[  656.521648][T18696]  ? __pfx_lock_release+0x10/0x10
[  656.526674][T18696]  ? kstrtouint_from_user+0x128/0x190
[  656.532059][T18696]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  656.537955][T18696]  ? ksys_write+0x22a/0x2b0
[  656.542478][T18696]  ? __pfx_lock_release+0x10/0x10
[  656.547510][T18696]  ? vfs_write+0x730/0xd30
[  656.551936][T18696]  ? __mutex_unlock_slowpath+0x21e/0x790
[  656.557617][T18696]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  656.563615][T18696]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  656.569950][T18696]  ? do_syscall_64+0x100/0x230
[  656.574719][T18696]  __x64_sys_sendmmsg+0xa0/0xb0
[  656.579576][T18696]  do_syscall_64+0xf3/0x230
[  656.584089][T18696]  ? clear_bhb_loop+0x35/0x90
[  656.588762][T18696]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  656.594659][T18696] RIP: 0033:0x7fa26f77fed9
[  656.599070][T18696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  656.618676][T18696] RSP: 002b:00007fa2704db058 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  656.627088][T18696] RAX: ffffffffffffffda RBX: 00007fa26f945fa0 RCX: 00007fa26f77fed9
[  656.635056][T18696] RDX: 04924924924925c6 RSI: 0000000020000680 RDI: 0000000000000004
[  656.643025][T18696] RBP: 00007fa2704db0a0 R08: 0000000000000000 R09: 0000000000000000
[  656.650999][T18696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  656.658964][T18696] R13: 0000000000000000 R14: 00007fa26f945fa0 R15: 00007ffe4c4e18b8
[  656.666947][T18696]  </TASK>
[  656.810864][T18705] netlink: 112 bytes leftover after parsing attributes in process `syz.1.1808'.
[  656.877928][T18720] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  656.877928][T18720] The task syz.2.1813 (18720) triggered the difference, watch for misbehavior.
[  656.931432][ T5871] usb 5-1: new high-speed USB device number 49 using dummy_hcd
[  656.962808][T18720] blktrace: Concurrent blktraces are not allowed on sg0
[  657.052207][ T5873] usb 2-1: USB disconnect, device number 41
[  657.108279][ T5871] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  657.123836][ T5871] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  657.133772][ T5871] usb 5-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  657.142993][ T5871] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  657.152883][ T5871] usb 5-1: config 0 descriptor??
[  657.382038][ T5871] usbhid 5-1:0.0: can't add hid device: -71
[  657.391994][ T5871] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  657.402577][ T5871] usb 5-1: USB disconnect, device number 49
[  658.732726][T18755] FAULT_INJECTION: forcing a failure.
[  658.732726][T18755] name failslab, interval 1, probability 0, space 0, times 0
[  658.778198][T18755] CPU: 0 UID: 0 PID: 18755 Comm: syz.0.1819 Not tainted 6.13.0-rc1-syzkaller-00239-g9a6e8c7c3a02 #0
[  658.789125][T18755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  658.799193][T18755] Call Trace:
[  658.802482][T18755]  <TASK>
[  658.805431][T18755]  dump_stack_lvl+0x241/0x360
[  658.810143][T18755]  ? __pfx_dump_stack_lvl+0x10/0x10
[  658.815354][T18755]  ? __pfx__printk+0x10/0x10
[  658.819969][T18755]  ? kmem_cache_alloc_noprof+0x48/0x380
[  658.825525][T18755]  ? __pfx___might_resched+0x10/0x10
[  658.830838][T18755]  should_fail_ex+0x3b0/0x4e0
[  658.835539][T18755]  should_failslab+0xac/0x100
[  658.840242][T18755]  ? ovs_flow_alloc+0x24/0x1e0
[  658.845023][T18755]  kmem_cache_alloc_noprof+0x70/0x380
[  658.850419][T18755]  ovs_flow_alloc+0x24/0x1e0
[  658.855028][T18755]  ovs_flow_cmd_new+0x225/0xe00
[  658.859916][T18755]  ? __pfx_ovs_flow_cmd_new+0x10/0x10
[  658.865380][T18755]  ? __nla_parse+0x40/0x60
[  658.869823][T18755]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  658.876181][T18755]  genl_rcv_msg+0xb14/0xec0
[  658.880713][T18755]  ? __pfx_genl_rcv_msg+0x10/0x10
[  658.885790][T18755]  ? __pfx_lock_acquire+0x10/0x10
[  658.890828][T18755]  ? __pfx_ovs_flow_cmd_new+0x10/0x10
[  658.896224][T18755]  ? __pfx___might_resched+0x10/0x10
[  658.901541][T18755]  netlink_rcv_skb+0x1e3/0x430
[  658.906322][T18755]  ? __pfx_genl_rcv_msg+0x10/0x10
[  658.911367][T18755]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  658.916676][T18755]  ? __netlink_deliver_tap+0x7aa/0x7f0
[  658.922176][T18755]  genl_rcv+0x28/0x40
[  658.926177][T18755]  netlink_unicast+0x7f6/0x990
[  658.930972][T18755]  ? __pfx_netlink_unicast+0x10/0x10
[  658.936278][T18755]  ? __virt_addr_valid+0x183/0x530
[  658.941411][T18755]  ? __check_object_size+0x48e/0x900
[  658.946720][T18755]  netlink_sendmsg+0x8e4/0xcb0
[  658.951518][T18755]  ? __pfx_netlink_sendmsg+0x10/0x10
[  658.956836][T18755]  ? __pfx_netlink_sendmsg+0x10/0x10
[  658.962153][T18755]  __sock_sendmsg+0x221/0x270
[  658.966852][T18755]  ____sys_sendmsg+0x52a/0x7e0
[  658.971649][T18755]  ? __pfx_____sys_sendmsg+0x10/0x10
[  658.976959][T18755]  ? __fget_files+0x2a/0x410
[  658.981578][T18755]  ? __fget_files+0x2a/0x410
[  658.986192][T18755]  __sys_sendmsg+0x269/0x350
[  658.990886][T18755]  ? __pfx_lock_release+0x10/0x10
[  658.995929][T18755]  ? __pfx___sys_sendmsg+0x10/0x10
[  659.001076][T18755]  ? __pfx_vfs_write+0x10/0x10
[  659.005890][T18755]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  659.012235][T18755]  ? do_syscall_64+0x100/0x230
[  659.017024][T18755]  ? do_syscall_64+0xb6/0x230
[  659.021742][T18755]  do_syscall_64+0xf3/0x230
[  659.026264][T18755]  ? clear_bhb_loop+0x35/0x90
[  659.030926][T18755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  659.036816][T18755] RIP: 0033:0x7fc65e97fed9
[  659.041218][T18755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  659.060828][T18755] RSP: 002b:00007fc65c7f6058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  659.069623][T18755] RAX: ffffffffffffffda RBX: 00007fc65eb45fa0 RCX: 00007fc65e97fed9
[  659.077623][T18755] RDX: 000000000000c000 RSI: 0000000020000000 RDI: 0000000000000003
[  659.085688][T18755] RBP: 00007fc65c7f60a0 R08: 0000000000000000 R09: 0000000000000000
[  659.093654][T18755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  659.101620][T18755] R13: 0000000000000000 R14: 00007fc65eb45fa0 R15: 00007fff1ccd6a98
[  659.109599][T18755]  </TASK>
[  659.216504][ T5871] usb 3-1: new high-speed USB device number 56 using dummy_hcd
[  659.709487][ T5871] usb 3-1: Using ep0 maxpacket: 8
[  659.794535][ T5871] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  659.893906][ T5871] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  659.909459][ T5871] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  659.924696][T18771] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1824'.
[  659.930660][ T5871] usb 3-1: New USB device found, idVendor=05ac, idProduct=0237, bcdDevice= 0.40
[  659.950691][ T5871] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  659.959029][ T5871] usb 3-1: Product: syz
[  659.963409][ T5871] usb 3-1: Manufacturer: syz
[  659.976516][ T5871] usb 3-1: SerialNumber: syz
[  659.989252][ T5871] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/input/input42
[  660.239575][ T3179] usb 3-1: USB disconnect, device number 56
[  660.255236][ T5180] bcm5974 3-1:1.0: could not read from device
[  660.413197][ T5871] usb 5-1: new high-speed USB device number 50 using dummy_hcd
[  660.413237][T15990] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[  660.637939][T15990] usb 1-1: config 0 has no interfaces?
[  660.671475][T15990] usb 1-1: New USB device found, idVendor=0582, idProduct=b9d5, bcdDevice=73.f7
[  660.768756][T15990] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  660.953416][T15990] usb 1-1: config 0 descriptor??
[  661.236538][ T5871] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  661.268313][ T5871] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  661.634168][T18823] overlay: Bad value for 'nfs_export'
[  661.734251][T18786] netlink: 112 bytes leftover after parsing attributes in process `syz.0.1826'.
[  661.821392][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  661.828307][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  661.887702][ T5871] usb 5-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[  661.896875][ T5871] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  661.907467][ T5871] usb 5-1: config 0 descriptor??
[  662.092911][T15990] usb 1-1: USB disconnect, device number 38
[  662.631355][T18844] netlink: 512 bytes leftover after parsing attributes in process `syz.5.1833'.
[  662.814653][ T5871] lg-g15 0003:046D:C222.0009: hidraw0: USB HID v0.00 Device [HID 046d:c222] on usb-dummy_hcd.4-1/input0
[  663.007949][   T29] kauditd_printk_skb: 133 callbacks suppressed
[  663.007967][   T29] audit: type=1326 audit(1733555623.007:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18842 comm="syz.5.1833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa26f77fed9 code=0x7fc00000
[  663.041578][ T5871] usb 5-1: USB disconnect, device number 50
[  663.179048][   T29] audit: type=1326 audit(1733555623.166:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18842 comm="syz.5.1833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7fa26f77fed9 code=0x7fc00000
[  663.226524][T18866] FAULT_INJECTION: forcing a failure.
[  663.226524][T18866] name failslab, interval 1, probability 0, space 0, times 0
[  663.270832][   T29] audit: type=1326 audit(1733555623.166:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18842 comm="syz.5.1833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa26f77fed9 code=0x7fc00000
[  663.296594][T18866] CPU: 0 UID: 0 PID: 18866 Comm: syz.0.1834 Not tainted 6.13.0-rc1-syzkaller-00239-g9a6e8c7c3a02 #0
[  663.307409][T18866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  663.317483][T18866] Call Trace:
[  663.320766][T18866]  <TASK>
[  663.323723][T18866]  dump_stack_lvl+0x241/0x360
[  663.328429][T18866]  ? __pfx_dump_stack_lvl+0x10/0x10
[  663.333647][T18866]  ? __pfx__printk+0x10/0x10
[  663.338258][T18866]  ? __kmalloc_noprof+0xb5/0x4c0
[  663.343208][T18866]  ? __pfx___might_resched+0x10/0x10
[  663.348524][T18866]  should_fail_ex+0x3b0/0x4e0
[  663.353222][T18866]  should_failslab+0xac/0x100
[  663.357914][T18866]  __kmalloc_noprof+0xdd/0x4c0
[  663.362687][T18866]  ? sock_kmalloc+0xd7/0x160
[  663.367294][T18866]  sock_kmalloc+0xd7/0x160
[  663.371723][T18866]  skcipher_recvmsg+0x5ff/0x1230
[  663.376695][T18866]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  663.382078][T18866]  ? get_pid_task+0x23/0x1f0
[  663.386686][T18866]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  663.391984][T18866]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  663.397373][T18866]  sock_recvmsg+0x22f/0x280
[  663.401900][T18866]  sock_read_iter+0x2c4/0x3d0
[  663.406604][T18866]  ? __pfx_sock_read_iter+0x10/0x10
[  663.411835][T18866]  ? bpf_lsm_file_permission+0x9/0x10
[  663.417223][T18866]  ? security_file_permission+0x74/0x280
[  663.422875][T18866]  vfs_read+0x991/0xb70
[  663.427055][T18866]  ? __pfx_vfs_read+0x10/0x10
[  663.431753][T18866]  ? __fget_files+0x2a/0x410
[  663.436356][T18866]  ? __fget_files+0x2a/0x410
[  663.440972][T18866]  ksys_read+0x18f/0x2b0
[  663.445245][T18866]  ? __pfx_ksys_read+0x10/0x10
[  663.450024][T18866]  ? do_syscall_64+0x100/0x230
[  663.454806][T18866]  ? do_syscall_64+0xb6/0x230
[  663.459513][T18866]  do_syscall_64+0xf3/0x230
[  663.464041][T18866]  ? clear_bhb_loop+0x35/0x90
[  663.468737][T18866]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  663.474654][T18866] RIP: 0033:0x7fc65e97fed9
[  663.479085][T18866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  663.498705][T18866] RSP: 002b:00007fc65c7f6058 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  663.507134][T18866] RAX: ffffffffffffffda RBX: 00007fc65eb45fa0 RCX: 00007fc65e97fed9
[  663.515128][T18866] RDX: 0000000000001023 RSI: 0000000020001540 RDI: 0000000000000004
[  663.523115][T18866] RBP: 00007fc65c7f60a0 R08: 0000000000000000 R09: 0000000000000000
[  663.531092][T18866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  663.539089][T18866] R13: 0000000000000000 R14: 00007fc65eb45fa0 R15: 00007fff1ccd6a98
[  663.547104][T18866]  </TASK>
[  663.601758][   T29] audit: type=1326 audit(1733555623.166:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18842 comm="syz.5.1833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa26f77fed9 code=0x7fc00000
[  663.632134][   T29] audit: type=1326 audit(1733555623.166:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18842 comm="syz.5.1833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa26f77fed9 code=0x7fc00000
[  663.655114][   T29] audit: type=1326 audit(1733555623.166:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18842 comm="syz.5.1833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa26f77fed9 code=0x7fc00000
[  663.677766][   T29] audit: type=1326 audit(1733555623.166:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18842 comm="syz.5.1833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa26f77fed9 code=0x7fc00000
[  663.715453][   T29] audit: type=1326 audit(1733555623.166:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18842 comm="syz.5.1833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa26f77fed9 code=0x7fc00000
[  663.745562][   T29] audit: type=1326 audit(1733555623.166:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18842 comm="syz.5.1833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa26f77fed9 code=0x7fc00000
[  663.780381][   T29] audit: type=1326 audit(1733555623.166:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18842 comm="syz.5.1833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa26f77fed9 code=0x7fc00000
[  664.038250][ T5873] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  664.942087][ T5873] usb 6-1: Using ep0 maxpacket: 32
[  664.949970][T18884] netlink: 1260 bytes leftover after parsing attributes in process `syz.1.1839'.
[  665.223340][T18884] FAULT_INJECTION: forcing a failure.
[  665.223340][T18884] name failslab, interval 1, probability 0, space 0, times 0
[  665.236843][T18884] CPU: 1 UID: 0 PID: 18884 Comm: syz.1.1839 Not tainted 6.13.0-rc1-syzkaller-00239-g9a6e8c7c3a02 #0
[  665.247649][T18884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  665.257738][T18884] Call Trace:
[  665.261037][T18884]  <TASK>
[  665.263985][T18884]  dump_stack_lvl+0x241/0x360
[  665.268690][T18884]  ? __pfx_dump_stack_lvl+0x10/0x10
[  665.273918][T18884]  ? __pfx__printk+0x10/0x10
[  665.278538][T18884]  should_fail_ex+0x3b0/0x4e0
[  665.283242][T18884]  should_failslab+0xac/0x100
[  665.287940][T18884]  ? ovs_flow_alloc+0x24/0x1e0
[  665.292721][T18884]  kmem_cache_alloc_noprof+0x70/0x380
[  665.298120][T18884]  ovs_flow_alloc+0x24/0x1e0
[  665.302741][T18884]  ovs_flow_cmd_new+0x225/0xe00
[  665.307621][T18884]  ? __pfx__printk+0x10/0x10
[  665.312238][T18884]  ? __pfx_ovs_flow_cmd_new+0x10/0x10
[  665.317674][T18884]  ? irqentry_exit+0x63/0x90
[  665.322278][T18884]  ? lockdep_hardirqs_on+0x99/0x150
[  665.327493][T18884]  genl_rcv_msg+0xb14/0xec0
[  665.332008][T18884]  ? __pfx_genl_rcv_msg+0x10/0x10
[  665.337051][T18884]  ? __pfx_lock_acquire+0x10/0x10
[  665.342074][T18884]  ? __pfx_ovs_flow_cmd_new+0x10/0x10
[  665.347448][T18884]  ? __pfx___might_resched+0x10/0x10
[  665.352743][T18884]  netlink_rcv_skb+0x1e3/0x430
[  665.357508][T18884]  ? __pfx_genl_rcv_msg+0x10/0x10
[  665.362535][T18884]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  665.367837][T18884]  ? __netlink_deliver_tap+0x7aa/0x7f0
[  665.373477][T18884]  genl_rcv+0x28/0x40
[  665.377468][T18884]  netlink_unicast+0x7f6/0x990
[  665.382245][T18884]  ? __pfx_netlink_unicast+0x10/0x10
[  665.387537][T18884]  ? __virt_addr_valid+0x183/0x530
[  665.392658][T18884]  ? __check_object_size+0x48e/0x900
[  665.397948][T18884]  netlink_sendmsg+0x8e4/0xcb0
[  665.402724][T18884]  ? __pfx_netlink_sendmsg+0x10/0x10
[  665.408015][T18884]  ? __pfx_netlink_sendmsg+0x10/0x10
[  665.413292][T18884]  __sock_sendmsg+0x221/0x270
[  665.417976][T18884]  ____sys_sendmsg+0x52a/0x7e0
[  665.422749][T18884]  ? __pfx_____sys_sendmsg+0x10/0x10
[  665.428032][T18884]  ? __fget_files+0x2a/0x410
[  665.432625][T18884]  ? __fget_files+0x2a/0x410
[  665.437225][T18884]  __sys_sendmsg+0x269/0x350
[  665.441833][T18884]  ? __pfx_lock_release+0x10/0x10
[  665.446874][T18884]  ? __pfx___sys_sendmsg+0x10/0x10
[  665.451994][T18884]  ? __pfx_vfs_write+0x10/0x10
[  665.456779][T18884]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  665.463116][T18884]  ? do_syscall_64+0x100/0x230
[  665.467883][T18884]  ? do_syscall_64+0xb6/0x230
[  665.472575][T18884]  do_syscall_64+0xf3/0x230
[  665.477080][T18884]  ? clear_bhb_loop+0x35/0x90
[  665.481756][T18884]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  665.487657][T18884] RIP: 0033:0x7fc36457fed9
[  665.492082][T18884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  665.511696][T18884] RSP: 002b:00007fc3653dc058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  665.520120][T18884] RAX: ffffffffffffffda RBX: 00007fc364745fa0 RCX: 00007fc36457fed9
[  665.528125][T18884] RDX: 000000000000c000 RSI: 0000000020000000 RDI: 0000000000000003
[  665.536097][T18884] RBP: 00007fc3653dc0a0 R08: 0000000000000000 R09: 0000000000000000
[  665.544069][T18884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  665.552046][T18884] R13: 0000000000000000 R14: 00007fc364745fa0 R15: 00007ffcbab87048
[  665.560054][T18884]  </TASK>
[  665.563126][    C1] vkms_vblank_simulate: vblank timer overrun
[  665.762929][ T5873] usb 6-1: config 0 has an invalid interface number: 64 but max is 0
[  665.771153][ T5873] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  665.781825][ T5873] usb 6-1: config 0 has no interface number 0
[  665.787972][ T5873] usb 6-1: config 0 interface 64 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 7
[  665.799093][ T5873] usb 6-1: config 0 interface 64 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  665.814463][ T5873] usb 6-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16
[  665.823820][ T5873] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=75
[  665.831933][ T5873] usb 6-1: Product: syz
[  665.836802][ T5873] usb 6-1: Manufacturer: syz
[  665.841578][ T5873] usb 6-1: SerialNumber: syz
[  665.854275][ T5873] usb 6-1: config 0 descriptor??
[  666.032679][ T5873] usb 6-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  666.806773][ T3179] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[  667.084018][ T3179] usb 2-1: Using ep0 maxpacket: 8
[  667.094453][ T3179] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  667.111662][ T3179] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  667.126249][ T3179] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  667.147914][ T3179] usb 2-1: New USB device found, idVendor=05ac, idProduct=0237, bcdDevice= 0.40
[  667.165345][ T3179] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  667.193283][T18298] usb 6-1: Failed to submit usb control message: -110
[  667.211722][ T3179] usb 2-1: Product: syz
[  667.220785][T18298] usb 6-1: unable to send the bmi data to the device: -110
[  667.229682][ T3179] usb 2-1: Manufacturer: syz
[  667.250095][T18298] usb 6-1: unable to get target info from device
[  667.252585][ T3179] usb 2-1: SerialNumber: syz
[  667.269871][T18298] usb 6-1: could not get target info (-110)
[  667.291644][ T3179] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/input/input44
[  667.301391][T18939] FAULT_INJECTION: forcing a failure.
[  667.301391][T18939] name failslab, interval 1, probability 0, space 0, times 0
[  667.316176][T18298] usb 6-1: could not probe fw (-110)
[  667.437229][T18939] CPU: 0 UID: 0 PID: 18939 Comm: syz.0.1849 Not tainted 6.13.0-rc1-syzkaller-00239-g9a6e8c7c3a02 #0
[  667.448058][T18939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  667.458149][T18939] Call Trace:
[  667.461451][T18939]  <TASK>
[  667.464402][T18939]  dump_stack_lvl+0x241/0x360
[  667.469105][T18939]  ? __pfx_dump_stack_lvl+0x10/0x10
[  667.474334][T18939]  ? __pfx__printk+0x10/0x10
[  667.478960][T18939]  ? __kmalloc_cache_noprof+0x48/0x390
[  667.484454][T18939]  ? __pfx___might_resched+0x10/0x10
[  667.489781][T18939]  should_fail_ex+0x3b0/0x4e0
[  667.490749][   T25] usb 5-1: new high-speed USB device number 51 using dummy_hcd
[  667.494471][T18939]  should_failslab+0xac/0x100
[  667.506924][T18939]  __kmalloc_cache_noprof+0x70/0x390
[  667.512241][T18939]  ? genl_start+0x1cb/0x6d0
[  667.516772][T18939]  genl_start+0x1cb/0x6d0
[  667.521124][T18939]  __netlink_dump_start+0x45c/0x790
[  667.526350][T18939]  genl_rcv_msg+0x88c/0xec0
[  667.530868][T18939]  ? __pfx_genl_rcv_msg+0x10/0x10
[  667.535903][T18939]  ? __pfx_genl_start+0x10/0x10
[  667.540759][T18939]  ? __pfx_genl_dumpit+0x10/0x10
[  667.545700][T18939]  ? __pfx_genl_done+0x10/0x10
[  667.550475][T18939]  ? __pfx_lock_acquire+0x10/0x10
[  667.555511][T18939]  ? __pfx_batadv_bla_claim_dump+0x10/0x10
[  667.561317][T18939]  ? __pfx___might_resched+0x10/0x10
[  667.566647][T18939]  netlink_rcv_skb+0x1e3/0x430
[  667.571438][T18939]  ? __pfx_genl_rcv_msg+0x10/0x10
[  667.576488][T18939]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  667.581793][T18939]  ? __netlink_deliver_tap+0x7aa/0x7f0
[  667.587268][T18939]  genl_rcv+0x28/0x40
[  667.591257][T18939]  netlink_unicast+0x7f6/0x990
[  667.596030][T18939]  ? __pfx_netlink_unicast+0x10/0x10
[  667.601327][T18939]  ? __virt_addr_valid+0x183/0x530
[  667.606442][T18939]  ? __check_object_size+0x48e/0x900
[  667.611740][T18939]  netlink_sendmsg+0x8e4/0xcb0
[  667.616518][T18939]  ? __pfx_netlink_sendmsg+0x10/0x10
[  667.621814][T18939]  ? __pfx_netlink_sendmsg+0x10/0x10
[  667.627096][T18939]  __sock_sendmsg+0x221/0x270
[  667.631777][T18939]  ____sys_sendmsg+0x52a/0x7e0
[  667.636555][T18939]  ? __pfx_____sys_sendmsg+0x10/0x10
[  667.641836][T18939]  ? __fget_files+0x2a/0x410
[  667.646437][T18939]  ? __fget_files+0x2a/0x410
[  667.651049][T18939]  __sys_sendmsg+0x269/0x350
[  667.655634][T18939]  ? __pfx_lock_release+0x10/0x10
[  667.660658][T18939]  ? __pfx___sys_sendmsg+0x10/0x10
[  667.665785][T18939]  ? __pfx_vfs_write+0x10/0x10
[  667.670571][T18939]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  667.676897][T18939]  ? do_syscall_64+0x100/0x230
[  667.681665][T18939]  ? do_syscall_64+0xb6/0x230
[  667.686349][T18939]  do_syscall_64+0xf3/0x230
[  667.690856][T18939]  ? clear_bhb_loop+0x35/0x90
[  667.695534][T18939]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  667.701428][T18939] RIP: 0033:0x7fc65e97fed9
[  667.705856][T18939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  667.725477][T18939] RSP: 002b:00007fc65c7f6058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  667.733908][T18939] RAX: ffffffffffffffda RBX: 00007fc65eb45fa0 RCX: 00007fc65e97fed9
[  667.741876][T18939] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  667.749845][T18939] RBP: 00007fc65c7f60a0 R08: 0000000000000000 R09: 0000000000000000
[  667.757846][T18939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  667.765874][T18939] R13: 0000000000000000 R14: 00007fc65eb45fa0 R15: 00007fff1ccd6a98
[  667.773870][T18939]  </TASK>
[  667.878894][ T5180] bcm5974 2-1:1.0: could not read from device
[  667.910084][T18945] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1850'.
[  667.934997][ T3179] usb 2-1: USB disconnect, device number 42
[  667.949915][   T25] usb 5-1: Using ep0 maxpacket: 16
[  667.955722][ T5180] bcm5974 2-1:1.0: could not read from device
[  667.964021][   T25] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  667.988788][   T25] usb 5-1: New USB device found, idVendor=04dd, idProduct=9031, bcdDevice=c9.be
[  668.031589][   T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  668.054278][   T25] usb 5-1: Product: syz
[  668.079256][   T25] usb 5-1: Manufacturer: syz
[  668.089783][   T25] usb 5-1: SerialNumber: syz
[  668.101972][   T25] usb 5-1: config 0 descriptor??
[  668.120484][   T25] cdc_ether 5-1:0.0: skipping garbage
[  668.130391][   T25] usb 5-1: bad CDC descriptors
[  668.147542][   T25] usb 5-1: unsupported MDLM descriptors
[  668.275323][T18980] overlay: ./file0 is not a directory
[  668.365887][ T3179] usb 5-1: USB disconnect, device number 51
[  668.432319][T18992] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  668.482172][T18992] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  668.537714][T18992] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  668.589930][T18992] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  669.929592][T19012] FAULT_INJECTION: forcing a failure.
[  669.929592][T19012] name failslab, interval 1, probability 0, space 0, times 0
[  669.942487][T19012] CPU: 1 UID: 0 PID: 19012 Comm: syz.0.1858 Not tainted 6.13.0-rc1-syzkaller-00239-g9a6e8c7c3a02 #0
[  669.953278][T19012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  669.963349][T19012] Call Trace:
[  669.966639][T19012]  <TASK>
[  669.969576][T19012]  dump_stack_lvl+0x241/0x360
[  669.974286][T19012]  ? __pfx_dump_stack_lvl+0x10/0x10
[  669.979496][T19012]  ? __pfx__printk+0x10/0x10
[  669.984106][T19012]  ? __kmalloc_noprof+0xb5/0x4c0
[  669.989057][T19012]  ? __pfx___might_resched+0x10/0x10
[  669.994360][T19012]  ? rcu_is_watching+0x15/0xb0
[  669.999141][T19012]  should_fail_ex+0x3b0/0x4e0
[  670.003837][T19012]  should_failslab+0xac/0x100
[  670.008532][T19012]  __kmalloc_noprof+0xdd/0x4c0
[  670.013311][T19012]  ? __netlink_dump_start+0x119/0x790
[  670.018701][T19012]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  670.024967][T19012]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  670.031057][T19012]  genl_start+0x182/0x6d0
[  670.035414][T19012]  __netlink_dump_start+0x45c/0x790
[  670.040635][T19012]  genl_rcv_msg+0x88c/0xec0
[  670.045156][T19012]  ? __pfx_genl_rcv_msg+0x10/0x10
[  670.050207][T19012]  ? __pfx_genl_start+0x10/0x10
[  670.055093][T19012]  ? __pfx_genl_dumpit+0x10/0x10
[  670.060046][T19012]  ? __pfx_genl_done+0x10/0x10
[  670.064846][T19012]  ? __pfx_lock_acquire+0x10/0x10
[  670.069887][T19012]  ? __pfx_ctrl_dumppolicy_start+0x10/0x10
[  670.075709][T19012]  ? __pfx_ctrl_dumppolicy+0x10/0x10
[  670.081009][T19012]  ? __pfx_ctrl_dumppolicy_done+0x10/0x10
[  670.086748][T19012]  ? __pfx___might_resched+0x10/0x10
[  670.092069][T19012]  netlink_rcv_skb+0x1e3/0x430
[  670.096851][T19012]  ? __pfx_genl_rcv_msg+0x10/0x10
[  670.101897][T19012]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  670.107212][T19012]  ? __netlink_deliver_tap+0x7aa/0x7f0
[  670.112725][T19012]  genl_rcv+0x28/0x40
[  670.116732][T19012]  netlink_unicast+0x7f6/0x990
[  670.121532][T19012]  ? __pfx_netlink_unicast+0x10/0x10
[  670.126836][T19012]  ? __virt_addr_valid+0x183/0x530
[  670.131968][T19012]  ? __check_object_size+0x48e/0x900
[  670.137278][T19012]  netlink_sendmsg+0x8e4/0xcb0
[  670.142080][T19012]  ? __pfx_netlink_sendmsg+0x10/0x10
[  670.147391][T19012]  ? __pfx_netlink_sendmsg+0x10/0x10
[  670.152691][T19012]  __sock_sendmsg+0x221/0x270
[  670.157392][T19012]  ____sys_sendmsg+0x52a/0x7e0
[  670.162180][T19012]  ? __pfx_____sys_sendmsg+0x10/0x10
[  670.167473][T19012]  ? __fget_files+0x2a/0x410
[  670.172080][T19012]  ? __fget_files+0x2a/0x410
[  670.176692][T19012]  __sys_sendmsg+0x269/0x350
[  670.181300][T19012]  ? __pfx_lock_release+0x10/0x10
[  670.186433][T19012]  ? __pfx___sys_sendmsg+0x10/0x10
[  670.191570][T19012]  ? __pfx_vfs_write+0x10/0x10
[  670.196382][T19012]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  670.202730][T19012]  ? do_syscall_64+0x100/0x230
[  670.207514][T19012]  ? do_syscall_64+0xb6/0x230
[  670.212301][T19012]  do_syscall_64+0xf3/0x230
[  670.216821][T19012]  ? clear_bhb_loop+0x35/0x90
[  670.221507][T19012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  670.227419][T19012] RIP: 0033:0x7fc65e97fed9
[  670.231849][T19012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  670.251473][T19012] RSP: 002b:00007fc65c7b4058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  670.259911][T19012] RAX: ffffffffffffffda RBX: 00007fc65eb46160 RCX: 00007fc65e97fed9
[  670.267900][T19012] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005
[  670.275895][T19012] RBP: 00007fc65c7b40a0 R08: 0000000000000000 R09: 0000000000000000
[  670.283882][T19012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  670.291868][T19012] R13: 0000000000000000 R14: 00007fc65eb46160 R15: 00007fff1ccd6a98
[  670.299869][T19012]  </TASK>
[  670.302916][    C1] vkms_vblank_simulate: vblank timer overrun
[  673.395546][ T3179] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[  673.618831][ T3179] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 28, changing to 8
[  673.646350][T19046] FAULT_INJECTION: forcing a failure.
[  673.646350][T19046] name failslab, interval 1, probability 0, space 0, times 0
[  673.678057][ T3179] usb 2-1: New USB device found, idVendor=172f, idProduct=0038, bcdDevice= 0.00
[  673.733673][ T3179] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  673.744242][T19046] CPU: 1 UID: 0 PID: 19046 Comm: syz.4.1868 Not tainted 6.13.0-rc1-syzkaller-00239-g9a6e8c7c3a02 #0
[  673.755046][T19046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  673.765122][T19046] Call Trace:
[  673.768417][T19046]  <TASK>
[  673.771362][T19046]  dump_stack_lvl+0x241/0x360
[  673.776068][T19046]  ? __pfx_dump_stack_lvl+0x10/0x10
[  673.781288][T19046]  ? __pfx__printk+0x10/0x10
[  673.785917][T19046]  ? ref_tracker_alloc+0x332/0x490
[  673.791056][T19046]  should_fail_ex+0x3b0/0x4e0
[  673.795765][T19046]  should_failslab+0xac/0x100
[  673.800487][T19046]  ? skb_clone+0x20c/0x390
[  673.804897][T19046]  kmem_cache_alloc_noprof+0x70/0x380
[  673.810270][T19046]  skb_clone+0x20c/0x390
[  673.814502][T19046]  __netlink_deliver_tap+0x3cc/0x7f0
[  673.819778][T19046]  ? netlink_deliver_tap+0x2e/0x1b0
[  673.824969][T19046]  netlink_deliver_tap+0x19d/0x1b0
[  673.830083][T19046]  netlink_sendskb+0x68/0x140
[  673.834782][T19046]  netlink_unicast+0x39d/0x990
[  673.839586][T19046]  ? __pfx_netlink_unicast+0x10/0x10
[  673.844916][T19046]  nfnetlink_rcv+0x26bd/0x2ab0
[  673.849756][T19046]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  673.854946][T19046]  ? netlink_deliver_tap+0x2e/0x1b0
[  673.860169][T19046]  ? skb_clone+0x240/0x390
[  673.864614][T19046]  ? __pfx_lock_release+0x10/0x10
[  673.869689][T19046]  ? netlink_deliver_tap+0x2e/0x1b0
[  673.875012][T19046]  netlink_unicast+0x7f6/0x990
[  673.879819][T19046]  ? __pfx_netlink_unicast+0x10/0x10
[  673.885135][T19046]  ? __virt_addr_valid+0x183/0x530
[  673.890270][T19046]  ? __check_object_size+0x48e/0x900
[  673.895581][T19046]  netlink_sendmsg+0x8e4/0xcb0
[  673.900382][T19046]  ? __pfx_netlink_sendmsg+0x10/0x10
[  673.905704][T19046]  ? __pfx_netlink_sendmsg+0x10/0x10
[  673.911021][T19046]  __sock_sendmsg+0x221/0x270
[  673.915738][T19046]  ____sys_sendmsg+0x52a/0x7e0
[  673.920532][T19046]  ? __pfx_____sys_sendmsg+0x10/0x10
[  673.925820][T19046]  ? __fget_files+0x2a/0x410
[  673.930423][T19046]  ? __fget_files+0x2a/0x410
[  673.935018][T19046]  __sys_sendmsg+0x269/0x350
[  673.939608][T19046]  ? __pfx_lock_release+0x10/0x10
[  673.944635][T19046]  ? __pfx___sys_sendmsg+0x10/0x10
[  673.949756][T19046]  ? __pfx_vfs_write+0x10/0x10
[  673.954547][T19046]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  673.960873][T19046]  ? do_syscall_64+0x100/0x230
[  673.965737][T19046]  ? do_syscall_64+0xb6/0x230
[  673.970421][T19046]  do_syscall_64+0xf3/0x230
[  673.974926][T19046]  ? clear_bhb_loop+0x35/0x90
[  673.979602][T19046]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  673.985498][T19046] RIP: 0033:0x7f48c1f7fed9
[  673.989912][T19046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  674.009518][T19046] RSP: 002b:00007f48c2d28058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  674.017937][T19046] RAX: ffffffffffffffda RBX: 00007f48c2145fa0 RCX: 00007f48c1f7fed9
[  674.025909][T19046] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[  674.033904][T19046] RBP: 00007f48c2d280a0 R08: 0000000000000000 R09: 0000000000000000
[  674.041960][T19046] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  674.049927][T19046] R13: 0000000000000000 R14: 00007f48c2145fa0 R15: 00007ffc4afaffe8
[  674.057913][T19046]  </TASK>
[  674.081897][ T3179] usb 2-1: config 0 descriptor??
[  675.241973][T15990] usb 3-1: new high-speed USB device number 57 using dummy_hcd
[  675.251261][ T3179] usbhid 2-1:0.0: can't add hid device: -71
[  675.257344][ T3179] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  675.267692][ T3179] usb 2-1: USB disconnect, device number 43
[  675.819062][T15990] usb 3-1: Using ep0 maxpacket: 8
[  675.831396][T15990] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  675.847617][T15990] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  675.906063][T15990] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  676.049918][T15990] usb 3-1: New USB device found, idVendor=05ac, idProduct=0237, bcdDevice= 0.40
[  676.060107][ T3179] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[  676.154279][T15990] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  676.236915][ T3179] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  676.248252][ T3179] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  676.260966][T15990] usb 3-1: Product: syz
[  676.266371][T15990] usb 3-1: Manufacturer: syz
[  676.267190][ T5873] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[  676.273452][ T3179] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[  676.287692][T15990] usb 3-1: SerialNumber: syz
[  676.303639][T15990] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/input/input45
[  676.317913][ T3179] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  676.336391][ T3179] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  676.357431][ T3179] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  676.366013][ T3179] usb 2-1: Product: syz
[  676.370600][ T3179] usb 2-1: Manufacturer: syz
[  676.417049][ T3179] cdc_wdm 2-1:1.0: probe with driver cdc_wdm failed with error -22
[  676.450629][ T5873] usb 1-1: config index 0 descriptor too short (expected 45, got 36)
[  676.479015][ T5873] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  676.534306][ T5873] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  676.551494][ T5873] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  676.564194][ T5873] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  676.577881][ T5873] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  676.585965][ T5180] bcm5974 3-1:1.0: could not read from device
[  676.586935][ T5873] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  676.604038][ T5873] usb 1-1: config 0 descriptor??
[  676.610208][T19082] raw-gadget.3 gadget.0: fail, usb_ep_enable returned -22
[  676.626001][T15990] usb 3-1: USB disconnect, device number 57
[  676.647752][ T5180] bcm5974 3-1:1.0: could not read from device
[  677.075009][ T5873] plantronics 0003:047F:FFFF.000A: unknown main item tag 0xd
[  677.088169][ T5873] plantronics 0003:047F:FFFF.000A: No inputs registered, leaving
[  677.259177][ T5873] plantronics 0003:047F:FFFF.000A: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  677.281453][T19074] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1873'.
[  677.333028][T15990] usb 2-1: USB disconnect, device number 44
[  677.386179][ T5874] usb 1-1: USB disconnect, device number 39
[  677.631490][ T5873] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[  677.849436][ T5873] usb 3-1: Invalid ep0 maxpacket: 9
[  677.994191][ T5873] usb 3-1: new high-speed USB device number 59 using dummy_hcd
[  678.180808][ T5873] usb 3-1: Invalid ep0 maxpacket: 9
[  678.206009][ T5873] usb usb3-port1: attempt power cycle
[  678.597892][ T5873] usb 3-1: new high-speed USB device number 60 using dummy_hcd
[  678.643245][ T5873] usb 3-1: Invalid ep0 maxpacket: 9
[  679.885445][ T5873] usb 3-1: new high-speed USB device number 61 using dummy_hcd
[  679.926998][ T5873] usb 3-1: Invalid ep0 maxpacket: 9
[  679.932591][ T5873] usb usb3-port1: unable to enumerate USB device
[  680.029725][ T3179] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[  680.220567][ T3179] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  680.311880][ T3179] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  680.426078][ T3179] usb 2-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  680.536260][ T3179] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  680.694483][ T3179] usb 2-1: config 0 descriptor??
[  680.822645][T19215] FAULT_INJECTION: forcing a failure.
[  680.822645][T19215] name failslab, interval 1, probability 0, space 0, times 0
[  680.890258][T19215] CPU: 1 UID: 0 PID: 19215 Comm: syz.5.1893 Not tainted 6.13.0-rc1-syzkaller-00239-g9a6e8c7c3a02 #0
[  680.901171][T19215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  680.911435][T19215] Call Trace:
[  680.914733][T19215]  <TASK>
[  680.917675][T19215]  dump_stack_lvl+0x241/0x360
[  680.922382][T19215]  ? __pfx_dump_stack_lvl+0x10/0x10
[  680.927602][T19215]  ? __pfx__printk+0x10/0x10
[  680.932222][T19215]  ? __kmalloc_noprof+0xb5/0x4c0
[  680.937176][T19215]  ? __pfx___might_resched+0x10/0x10
[  680.942496][T19215]  should_fail_ex+0x3b0/0x4e0
[  680.947203][T19215]  should_failslab+0xac/0x100
[  680.951906][T19215]  __kmalloc_noprof+0xdd/0x4c0
[  680.956688][T19215]  ? cap_capable+0x1b4/0x250
[  680.961305][T19215]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  680.967576][T19215]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  680.973671][T19215]  genl_rcv_msg+0x802/0xec0
[  680.978208][T19215]  ? __pfx_genl_rcv_msg+0x10/0x10
[  680.983278][T19215]  ? __pfx_lock_acquire+0x10/0x10
[  680.988316][T19215]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  680.993703][T19215]  ? __pfx_nl80211_probe_mesh_link+0x10/0x10
[  680.999700][T19215]  ? __pfx_nl80211_post_doit+0x10/0x10
[  681.005187][T19215]  ? __pfx___might_resched+0x10/0x10
[  681.010509][T19215]  netlink_rcv_skb+0x1e3/0x430
[  681.015300][T19215]  ? __pfx_genl_rcv_msg+0x10/0x10
[  681.020351][T19215]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  681.025667][T19215]  ? __netlink_deliver_tap+0x7aa/0x7f0
[  681.031158][T19215]  genl_rcv+0x28/0x40
[  681.035188][T19215]  netlink_unicast+0x7f6/0x990
[  681.039986][T19215]  ? __pfx_netlink_unicast+0x10/0x10
[  681.045301][T19215]  ? __virt_addr_valid+0x183/0x530
[  681.050436][T19215]  ? __check_object_size+0x48e/0x900
[  681.055743][T19215]  netlink_sendmsg+0x8e4/0xcb0
[  681.060543][T19215]  ? __pfx_netlink_sendmsg+0x10/0x10
[  681.065866][T19215]  ? __pfx_netlink_sendmsg+0x10/0x10
[  681.071176][T19215]  __sock_sendmsg+0x221/0x270
[  681.075883][T19215]  ____sys_sendmsg+0x52a/0x7e0
[  681.080677][T19215]  ? __pfx_____sys_sendmsg+0x10/0x10
[  681.085979][T19215]  ? __fget_files+0x2a/0x410
[  681.090595][T19215]  ? __fget_files+0x2a/0x410
[  681.095216][T19215]  __sys_sendmsg+0x269/0x350
[  681.099827][T19215]  ? __pfx_lock_release+0x10/0x10
[  681.104879][T19215]  ? __pfx___sys_sendmsg+0x10/0x10
[  681.110112][T19215]  ? __pfx_vfs_write+0x10/0x10
[  681.114932][T19215]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  681.121283][T19215]  ? do_syscall_64+0x100/0x230
[  681.126074][T19215]  ? do_syscall_64+0xb6/0x230
[  681.130779][T19215]  do_syscall_64+0xf3/0x230
[  681.135304][T19215]  ? clear_bhb_loop+0x35/0x90
[  681.140001][T19215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  681.145911][T19215] RIP: 0033:0x7fa26f77fed9
[  681.150346][T19215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  681.169982][T19215] RSP: 002b:00007fa2704db058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  681.178432][T19215] RAX: ffffffffffffffda RBX: 00007fa26f945fa0 RCX: 00007fa26f77fed9
[  681.186427][T19215] RDX: 0000000000000000 RSI: 0000000020000c80 RDI: 0000000000000003
[  681.194422][T19215] RBP: 00007fa2704db0a0 R08: 0000000000000000 R09: 0000000000000000
[  681.202413][T19215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  681.210403][T19215] R13: 0000000000000000 R14: 00007fa26f945fa0 R15: 00007ffe4c4e18b8
[  681.218418][T19215]  </TASK>
[  681.362364][ T3179] usbhid 2-1:0.0: can't add hid device: -71
[  681.379743][ T3179] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  681.389710][ T3179] usb 2-1: USB disconnect, device number 45
[  681.604734][T19238] netlink: 168864 bytes leftover after parsing attributes in process `syz.5.1899'.
[  681.624425][T19238] openvswitch: netlink: Message has 44053 unknown bytes.
[  681.774922][T19245] netlink: 'syz.0.1901': attribute type 1 has an invalid length.
[  681.826128][T19245] bond6: entered allmulticast mode
[  681.843215][T19245] 8021q: adding VLAN 0 to HW filter on device bond6
[  681.856111][T19245] bond5: (slave bond6): making interface the new active one
[  681.865962][T19245] bond5: (slave bond6): Enslaving as an active interface with an up link
[  681.875633][T19312] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1901'.
[  681.922585][ T5871] usb 3-1: new full-speed USB device number 62 using dummy_hcd
[  682.084970][ T5871] usb 3-1: config 0 has an invalid interface number: 50 but max is 0
[  682.093309][ T5871] usb 3-1: config 0 has no interface number 0
[  682.099607][ T5871] usb 3-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  682.110834][ T5871] usb 3-1: config 0 interface 50 altsetting 0 endpoint 0x82 has invalid maxpacket 1023, setting to 64
[  682.123851][ T5871] usb 3-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  682.133188][ T5871] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  682.141260][ T5871] usb 3-1: Product: syz
[  682.145416][ T5871] usb 3-1: Manufacturer: syz
[  682.150862][ T5871] usb 3-1: SerialNumber: syz
[  682.160377][ T5871] usb 3-1: config 0 descriptor??
[  682.165946][T19240] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  682.177192][ T5871] yurex 3-1:0.50: USB YUREX device now attached to Yurex #0
[  682.286142][ T5873] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[  682.307581][ T3179] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[  682.402469][T19240] syzkaller1: entered promiscuous mode
[  682.408241][T19240] syzkaller1: entered allmulticast mode
[  682.421623][T19240] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  682.446993][T19240] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  682.457199][ T5873] usb 2-1: Using ep0 maxpacket: 8
[  682.470477][ T5873] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  682.492702][ T5873] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  682.500748][ T3179] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  682.505422][ T5873] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  682.535236][ T3179] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  682.567844][ T5873] usb 2-1: New USB device found, idVendor=05ac, idProduct=0237, bcdDevice= 0.40
[  682.568249][ T3179] usb 1-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  682.581413][ T5873] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  682.599376][T19346] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  682.602170][ T5873] usb 2-1: Product: syz
[  682.626306][ T3179] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  682.655656][T19346] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  682.687903][ T3179] usb 1-1: config 0 descriptor??
[  683.262255][ T5873] usb 2-1: Manufacturer: syz
[  683.266905][ T5873] usb 2-1: SerialNumber: syz
[  683.279963][ T5873] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/input/input47
[  683.303658][ T3179] usbhid 1-1:0.0: can't add hid device: -71
[  683.322266][ T3179] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  683.339916][ T3179] usb 1-1: USB disconnect, device number 40
[  683.522256][ T5873] usb 2-1: USB disconnect, device number 46
[  683.522383][ T5180] bcm5974 2-1:1.0: could not read from device
[  683.548234][ T5180] bcm5974 2-1:1.0: could not read from device
[  684.004082][T19386] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1911'.
[  684.273358][T19394] netlink: 'syz.1.1913': attribute type 12 has an invalid length.
[  684.304839][T19394] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1913'.
[  684.409482][T19429] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  684.430420][T19429] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  685.109821][T15990] usb 3-1: USB disconnect, device number 62
[  685.349730][T15990] yurex 3-1:0.50: USB YUREX #0 now disconnected
[  685.783216][T19456] overlayfs: failed to resolve './file0/file0': -2
[  685.961908][T19468] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1920'.
[  687.000584][ T3179] usb 1-1: new high-speed USB device number 41 using dummy_hcd
[  687.008462][T15990] usb 3-1: new high-speed USB device number 63 using dummy_hcd
[  687.135022][T19495] FAULT_INJECTION: forcing a failure.
[  687.135022][T19495] name failslab, interval 1, probability 0, space 0, times 0
[  687.154060][T19495] CPU: 0 UID: 0 PID: 19495 Comm: syz.4.1925 Not tainted 6.13.0-rc1-syzkaller-00239-g9a6e8c7c3a02 #0
[  687.164881][T19495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  687.174964][T19495] Call Trace:
[  687.178267][T19495]  <TASK>
[  687.181213][T19495]  dump_stack_lvl+0x241/0x360
[  687.185919][T19495]  ? __pfx_dump_stack_lvl+0x10/0x10
[  687.191163][T19495]  ? __pfx__printk+0x10/0x10
[  687.195792][T19495]  ? __kmalloc_cache_noprof+0x48/0x390
[  687.201260][T19495]  ? __pfx___might_resched+0x10/0x10
[  687.206564][T19495]  ? arch_stack_walk+0xfd/0x150
[  687.211419][T19495]  should_fail_ex+0x3b0/0x4e0
[  687.214820][ T3179] usb 1-1: Using ep0 maxpacket: 8
[  687.216091][T19495]  should_failslab+0xac/0x100
[  687.216121][T19495]  __kmalloc_cache_noprof+0x70/0x390
[  687.231076][T19495]  ? rtnl_newlink+0x133/0x20e0
[  687.235849][T19495]  rtnl_newlink+0x133/0x20e0
[  687.240447][T19495]  ? kasan_save_track+0x51/0x80
[  687.245302][T19495]  ? __kasan_slab_free+0x59/0x70
[  687.250243][T19495]  ? kmem_cache_free+0x195/0x410
[  687.255189][T19495]  ? __pfx_rtnl_newlink+0x10/0x10
[  687.260219][T19495]  ? __netlink_deliver_tap+0x56b/0x7f0
[  687.265678][T19495]  ? __pfx_validate_chain+0x10/0x10
[  687.270881][T19495]  ? __sock_sendmsg+0x221/0x270
[  687.275762][T19495]  ? ____sys_sendmsg+0x52a/0x7e0
[  687.280749][T19495]  ? __sys_sendmsg+0x269/0x350
[  687.285535][T19495]  ? do_syscall_64+0xf3/0x230
[  687.290312][T19495]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  687.296411][T19495]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  687.302404][T19495]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  687.308744][T19495]  ? mark_lock+0x9a/0x360
[  687.313085][T19495]  ? __lock_acquire+0x1397/0x2100
[  687.318129][T19495]  ? rcu_read_unlock+0x87/0xa0
[  687.322894][T19495]  ? __dev_queue_xmit+0x1775/0x3f50
[  687.328097][T19495]  ? __pfx_lock_release+0x10/0x10
[  687.333124][T19495]  ? cap_capable+0x1b4/0x250
[  687.337724][T19495]  ? safesetid_security_capable+0xb2/0x1d0
[  687.343536][T19495]  ? __pfx_rtnl_newlink+0x10/0x10
[  687.348562][T19495]  rtnetlink_rcv_msg+0x791/0xcf0
[  687.353502][T19495]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  687.358704][T19495]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  687.364174][T19495]  ? ref_tracker_free+0x643/0x7e0
[  687.369208][T19495]  netlink_rcv_skb+0x1e3/0x430
[  687.373993][T19495]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  687.379552][T19495]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  687.386161][T19495]  ? netlink_deliver_tap+0x2e/0x1b0
[  687.391967][T19495]  netlink_unicast+0x7f6/0x990
[  687.396742][T19495]  ? __pfx_netlink_unicast+0x10/0x10
[  687.402041][T19495]  ? __virt_addr_valid+0x183/0x530
[  687.407159][T19495]  ? __check_object_size+0x48e/0x900
[  687.412455][T19495]  netlink_sendmsg+0x8e4/0xcb0
[  687.417251][T19495]  ? __pfx_netlink_sendmsg+0x10/0x10
[  687.423337][T19495]  ? __pfx_netlink_sendmsg+0x10/0x10
[  687.428632][T19495]  __sock_sendmsg+0x221/0x270
[  687.433321][T19495]  ____sys_sendmsg+0x52a/0x7e0
[  687.438123][T19495]  ? __pfx_____sys_sendmsg+0x10/0x10
[  687.443440][T19495]  ? __fget_files+0x2a/0x410
[  687.448045][T19495]  ? __fget_files+0x2a/0x410
[  687.452644][T19495]  __sys_sendmsg+0x269/0x350
[  687.457236][T19495]  ? __pfx_lock_release+0x10/0x10
[  687.462266][T19495]  ? __pfx___sys_sendmsg+0x10/0x10
[  687.467394][T19495]  ? __pfx_vfs_write+0x10/0x10
[  687.472187][T19495]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  687.478533][T19495]  ? do_syscall_64+0x100/0x230
[  687.483344][T19495]  ? do_syscall_64+0xb6/0x230
[  687.488047][T19495]  do_syscall_64+0xf3/0x230
[  687.492563][T19495]  ? clear_bhb_loop+0x35/0x90
[  687.497422][T19495]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  687.503343][T19495] RIP: 0033:0x7f48c1f7fed9
[  687.507762][T19495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  687.527385][T19495] RSP: 002b:00007f48c2d28058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  687.535810][T19495] RAX: ffffffffffffffda RBX: 00007f48c2145fa0 RCX: 00007f48c1f7fed9
[  687.543786][T19495] RDX: 0000000004000040 RSI: 0000000020000380 RDI: 0000000000000003
[  687.551768][T19495] RBP: 00007f48c2d280a0 R08: 0000000000000000 R09: 0000000000000000
[  687.559745][T19495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  687.567723][T19495] R13: 0000000000000000 R14: 00007f48c2145fa0 R15: 00007ffc4afaffe8
[  687.575710][T19495]  </TASK>
[  687.578749][    C0] vkms_vblank_simulate: vblank timer overrun
[  687.581575][ T3179] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  687.596552][T15990] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  687.611130][T15990] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  687.621010][T15990] usb 3-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  687.630084][T15990] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  687.638610][ T3179] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  687.650030][ T3179] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  687.664711][T15990] usb 3-1: config 0 descriptor??
[  687.673744][ T3179] usb 1-1: New USB device found, idVendor=05ac, idProduct=0237, bcdDevice= 0.40
[  687.685207][ T3179] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  687.693241][ T3179] usb 1-1: Product: syz
[  687.697755][ T3179] usb 1-1: Manufacturer: syz
[  687.702394][ T3179] usb 1-1: SerialNumber: syz
[  687.714580][ T3179] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input48
[  687.955317][T15990] usbhid 3-1:0.0: can't add hid device: -71
[  687.962399][T15990] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  687.972516][T15990] usb 3-1: USB disconnect, device number 63
[  688.010320][ T5180] bcm5974 1-1:1.0: could not read from device
[  688.020575][ T3179] usb 1-1: USB disconnect, device number 41
[  688.091189][   T25] usb 5-1: new high-speed USB device number 52 using dummy_hcd
[  688.356726][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  688.405493][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  688.467846][   T25] usb 5-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  688.559322][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  688.840503][   T25] usb 5-1: config 0 descriptor??
[  688.963059][T19537] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  688.972248][T19537] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  689.725201][   T25] usbhid 5-1:0.0: can't add hid device: -71
[  689.754228][   T25] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  689.773441][   T25] usb 5-1: USB disconnect, device number 52
[  689.917933][T19564] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  689.940300][ T5874] IPVS: starting estimator thread 0...
[  690.036388][T15990] usb 1-1: new high-speed USB device number 42 using dummy_hcd
[  690.197341][T19567] IPVS: using max 25 ests per chain, 60000 per kthread
[  690.240371][T15990] usb 1-1: Using ep0 maxpacket: 32
[  690.299443][T15990] usb 1-1: config 0 has an invalid interface number: 37 but max is 1
[  690.331636][   T25] usb 5-1: new high-speed USB device number 53 using dummy_hcd
[  690.440981][T15990] usb 1-1: config 0 has an invalid descriptor of length 38, skipping remainder of the config
[  690.562121][T15990] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[  690.616837][T15990] usb 1-1: config 0 has no interface number 0
[  690.628380][T15990] usb 1-1: New USB device found, idVendor=03f0, idProduct=582e, bcdDevice=20.a3
[  690.642221][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  690.653775][T15990] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  690.662414][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  690.672486][T15990] usb 1-1: Product: syz
[  690.676766][T15990] usb 1-1: Manufacturer: syz
[  690.683007][   T25] usb 5-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  690.693743][T15990] usb 1-1: SerialNumber: syz
[  690.703124][T15990] usb 1-1: config 0 descriptor??
[  690.708450][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  690.719703][   T25] usb 5-1: config 0 descriptor??
[  690.964897][ T5874] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[  691.497386][   T25] cm6533_jd 0003:0D8C:0022.000B: unknown main item tag 0x0
[  691.516252][   T25] cm6533_jd 0003:0D8C:0022.000B: unknown main item tag 0x0
[  691.527633][   T25] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:0D8C:0022.000B/input/input49
[  691.549800][   T25] cm6533_jd 0003:0D8C:0022.000B: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.4-1/input0
[  691.588570][ T5874] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  691.603840][ T5874] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  691.613817][ T5874] usb 2-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  691.627643][ T5874] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  691.637918][ T5874] usb 2-1: config 0 descriptor??
[  691.643179][   T29] audit: type=1326 audit(1733555649.797:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19563 comm="syz.4.1933" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f48c1f7fed9 code=0x0
[  691.673634][   T29] audit: type=1326 audit(1733555649.797:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19563 comm="syz.4.1933" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f48c1f7fed9 code=0x0
[  691.762689][ T5873] usb 5-1: USB disconnect, device number 53
[  691.920568][ T5874] usbhid 2-1:0.0: can't add hid device: -71
[  691.926612][ T5874] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  691.938580][ T5874] usb 2-1: USB disconnect, device number 47
[  692.058826][T15990] usb 1-1: USB disconnect, device number 42
[  692.128219][   T25] usb 3-1: new high-speed USB device number 64 using dummy_hcd
[  692.174050][T19637] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  692.183074][T19637] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  692.314513][   T25] usb 3-1: Using ep0 maxpacket: 16
[  692.342788][   T25] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=10.00
[  692.352619][   T25] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  692.361001][   T25] usb 3-1: Product: syz
[  692.365299][   T25] usb 3-1: Manufacturer: syz
[  692.371672][   T25] usb 3-1: SerialNumber: syz
[  692.397116][   T25] usb 3-1: config 0 descriptor??
[  692.419027][   T25] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected
[  692.432601][   T25] usb 3-1: Detected FT-X
[  692.624141][   T25] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  692.663870][   T25] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  692.722860][   T25] ftdi_sio 3-1:0.0: GPIO initialisation failed: -71
[  692.748929][   T25] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  692.792782][   T25] usb 3-1: USB disconnect, device number 64
[  692.821837][   T25] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  692.833041][   T25] ftdi_sio 3-1:0.0: device disconnected
[  693.038107][T15990] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[  693.058409][T19672] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  693.067999][T19672] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  693.211851][T15990] usb 2-1: Using ep0 maxpacket: 32
[  693.252581][T15990] usb 2-1: unable to get BOS descriptor or descriptor too short
[  693.317476][T15990] usb 2-1: config 3 has an invalid interface number: 3 but max is 1
[  693.333860][T15990] usb 2-1: config 3 has an invalid interface number: 66 but max is 1
[  693.342686][T15990] usb 2-1: config 3 has no interface number 0
[  693.349391][T15990] usb 2-1: config 3 has no interface number 1
[  693.356164][T15990] usb 2-1: config 3 interface 3 has no altsetting 0
[  693.364631][T15990] usb 2-1: config 3 interface 66 has no altsetting 0
[  693.432105][T15990] usb 2-1: New USB device found, idVendor=0c45, idProduct=8003, bcdDevice=b8.82
[  693.517421][T15990] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  693.594678][T15990] usb 2-1: Product: syz
[  693.634117][T15990] usb 2-1: Manufacturer: syz
[  693.684097][T15990] usb 2-1: SerialNumber: syz
[  695.049938][T15990] hub 2-1:3.3: bad descriptor, ignoring hub
[  695.056736][T15990] hub 2-1:3.3: probe with driver hub failed with error -5
[  695.080121][T15990] hub 2-1:3.66: bad descriptor, ignoring hub
[  695.091201][T15990] hub 2-1:3.66: probe with driver hub failed with error -5
[  695.151533][T15990] usb 2-1: USB disconnect, device number 48
[  695.172396][T19721] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  695.181934][T19721] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  695.360722][ T5918] usb 5-1: new high-speed USB device number 54 using dummy_hcd
[  696.112743][T15990] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[  696.220478][ T5918] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  696.233086][ T5918] usb 5-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  696.245977][ T5918] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  696.273961][ T5918] usb 5-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  696.298274][T19743] overlayfs: conflicting lowerdir path
[  696.305691][ T5918] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  696.330105][T15990] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  696.352379][T15990] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  696.364013][ T5918] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  696.380467][T15990] usb 2-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  696.390969][T15990] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  696.400576][ T5918] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  696.409875][ T5918] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  696.417910][ T5918] usb 5-1: Product: syz
[  696.423119][ T5918] usb 5-1: Manufacturer: syz
[  696.428610][T15990] usb 2-1: config 0 descriptor??
[  696.443444][T19709] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  696.458979][ T5918] cdc_wdm 5-1:1.0: skipping garbage
[  696.466469][ T5918] cdc_wdm 5-1:1.0: skipping garbage
[  696.473599][ T5918] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  696.479658][ T5918] cdc_wdm 5-1:1.0: Unknown control protocol
[  696.674329][T15990] usbhid 2-1:0.0: can't add hid device: -71
[  696.683989][ T5918] usb 5-1: USB disconnect, device number 54
[  696.692996][T15990] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  696.706420][T15990] usb 2-1: USB disconnect, device number 49
[  696.718434][ T5874] usb 1-1: new high-speed USB device number 43 using dummy_hcd
[  696.878676][ T5874] usb 1-1: Using ep0 maxpacket: 16
[  696.887116][ T5874] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=10.00
[  696.896878][ T5874] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  696.905122][ T5874] usb 1-1: Product: syz
[  696.909549][ T5874] usb 1-1: Manufacturer: syz
[  696.914332][ T5874] usb 1-1: SerialNumber: syz
[  696.920659][ T5874] usb 1-1: config 0 descriptor??
[  696.928798][ T5874] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  696.937605][ T5874] usb 1-1: Detected FT-X
[  697.143593][ T5874] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  697.295863][ T5824] Bluetooth: hci3: command 0x1003 tx timeout
[  697.295904][ T5837] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  697.674645][ T5874] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  697.759413][T19795] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1961'.
[  697.862019][ T5874] usb 1-1: USB disconnect, device number 43
[  697.891012][ T5874] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  697.932923][ T5874] ftdi_sio 1-1:0.0: device disconnected
[  698.109688][T19831] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  698.119721][T19831] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  698.193829][ T5871] usb 3-1: new high-speed USB device number 65 using dummy_hcd
[  698.300718][ T5873] usb 5-1: new high-speed USB device number 55 using dummy_hcd
[  698.355624][ T5871] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  698.367349][ T5871] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  698.377427][ T5871] usb 3-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  698.386905][ T5871] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  698.396918][ T5871] usb 3-1: config 0 descriptor??
[  698.471645][ T5873] usb 5-1: Using ep0 maxpacket: 16
[  698.476180][ T5873] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 1024, setting to 64
[  698.476217][ T5873] usb 5-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  698.476267][ T5873] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid maxpacket 2256, setting to 1024
[  698.476294][ T5873] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 1024
[  698.476320][ T5873] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 224
[  698.478657][ T5873] usb 5-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47
[  698.478688][ T5873] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  698.478708][ T5873] usb 5-1: Product: syz
[  698.478725][ T5873] usb 5-1: Manufacturer: syz
[  698.478742][ T5873] usb 5-1: SerialNumber: syz
[  698.481983][ T5873] usb 5-1: config 0 descriptor??
[  698.487533][T19826] raw-gadget.2 gadget.4: fail, usb_ep_enable returned -22
[  698.640073][ T5871] usbhid 3-1:0.0: can't add hid device: -71
[  698.640213][ T5871] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  698.655343][T19826] raw-gadget.2 gadget.4: fail, usb_ep_enable returned -22
[  698.663298][ T5871] usb 3-1: USB disconnect, device number 65
[  698.807250][T19831] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  698.884932][T19850] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  698.910369][T19850] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  699.205136][ T5873] mcba_usb 5-1:0.0: Microchip CAN BUS Analyzer connected
[  699.212424][    C0] mcba_usb 5-1:0.0 can0: Tx URB aborted (-71)
[  699.212502][    C0] mcba_usb 5-1:0.0 can0: Tx URB aborted (-71)
[  699.259279][ T5873] usb 5-1: USB disconnect, device number 55
[  699.271867][ T5873] mcba_usb 5-1:0.0 can0: device disconnected
[  700.317914][T19885] IPv6: addrconf: prefix option has invalid lifetime
[  701.513173][T19918] loop2: detected capacity change from 0 to 7
[  701.524415][T19918] Dev loop2: unable to read RDB block 7
[  701.530090][T19918]  loop2: unable to read partition table
[  701.536262][T19918] loop2: partition table beyond EOD, truncated
[  701.542477][T19918] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  701.554704][T19907] ICMPv6: NA: fd:f9:a6:84:a5:1b advertised our address fe80::aa on syz_tun!
[  701.932765][T19929] netlink: 'syz.0.1986': attribute type 12 has an invalid length.
[  702.656877][T19946] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  702.665532][T19946] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  702.784995][ T5871] usb 3-1: new high-speed USB device number 66 using dummy_hcd
[  702.956062][ T5871] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  702.998513][ T5871] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  703.006998][ T5871] usb 3-1: Product: syz
[  703.011870][ T5871] usb 3-1: Manufacturer: syz
[  703.017590][ T5871] usb 3-1: SerialNumber: syz
[  703.032459][ T5871] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  703.073185][ T5873] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  703.645652][T19939] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  704.110605][T19939] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  704.121208][T19939] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  704.130701][T19939] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  704.201334][T19972] netlink: 700 bytes leftover after parsing attributes in process `syz.0.1996'.
[  704.223966][ T5873] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[  704.237386][ T5873] ath9k_htc: Failed to initialize the device
[  704.245448][T19972] veth3: entered promiscuous mode
[  704.313947][ T5873] usb 3-1: ath9k_htc: USB layer deinitialized
[  704.382164][T15990] usb 3-1: USB disconnect, device number 66
[  704.558569][T20001] /dev/nullb0: Can't open blockdev
[  704.574653][T20007] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1997'.
[  704.585650][T20001] /dev/nullb0: Can't open blockdev
[  704.597800][T20001] /dev/nullb0: Can't open blockdev
[  704.619253][T20001] /dev/nullb0: Can't open blockdev
[  704.629129][T20001] /dev/nullb0: Can't open blockdev
[  704.637516][T20001] /dev/nullb0: Can't open blockdev
[  704.646261][T20001] /dev/nullb0: Can't open blockdev
[  704.653039][T20001] /dev/nullb0: Can't open blockdev
[  704.658752][T20001] /dev/nullb0: Can't open blockdev
[  704.666997][T20001] /dev/nullb0: Can't open blockdev
[  704.672987][T20001] /dev/nullb0: Can't open blockdev
[  704.678852][T20001] /dev/nullb0: Can't open blockdev
[  704.685152][T20001] /dev/nullb0: Can't open blockdev
[  704.691076][T20001] /dev/nullb0: Can't open blockdev
[  704.697168][T20001] /dev/nullb0: Can't open blockdev
[  704.703065][T20001] /dev/nullb0: Can't open blockdev
[  704.711746][T20001] /dev/nullb0: Can't open blockdev
[  704.722249][T20001] /dev/nullb0: Can't open blockdev
[  704.732336][T20001] /dev/nullb0: Can't open blockdev
[  704.744691][T20001] /dev/nullb0: Can't open blockdev
[  704.752676][T20001] /dev/nullb0: Can't open blockdev
[  704.760872][T20001] /dev/nullb0: Can't open blockdev
[  704.766862][T20001] /dev/nullb0: Can't open blockdev
[  704.773042][T20001] /dev/nullb0: Can't open blockdev
[  704.781747][T20001] /dev/nullb0: Can't open blockdev
[  704.788796][T20001] /dev/nullb0: Can't open blockdev
[  704.794659][ T5918] usb 1-1: new high-speed USB device number 44 using dummy_hcd
[  704.804587][T20001] /dev/nullb0: Can't open blockdev
[  704.810626][T20001] /dev/nullb0: Can't open blockdev
[  704.816998][T20001] /dev/nullb0: Can't open blockdev
[  704.833575][T20001] /dev/nullb0: Can't open blockdev
[  704.839575][T20001] /dev/nullb0: Can't open blockdev
[  704.845746][T20001] /dev/nullb0: Can't open blockdev
[  704.851776][T20001] /dev/nullb0: Can't open blockdev
[  704.858147][T20001] /dev/nullb0: Can't open blockdev
[  704.864105][T20001] /dev/nullb0: Can't open blockdev
[  704.870240][T20001] /dev/nullb0: Can't open blockdev
[  704.879485][T20001] /dev/nullb0: Can't open blockdev
[  704.886659][T20001] /dev/nullb0: Can't open blockdev
[  704.892657][T20001] /dev/nullb0: Can't open blockdev
[  704.904810][T20001] /dev/nullb0: Can't open blockdev
[  704.912216][T20001] /dev/nullb0: Can't open blockdev
[  704.921286][T20001] /dev/nullb0: Can't open blockdev
[  704.930604][T20001] /dev/nullb0: Can't open blockdev
[  704.936580][T20001] /dev/nullb0: Can't open blockdev
[  704.948444][T20001] /dev/nullb0: Can't open blockdev
[  704.956008][T20001] /dev/nullb0: Can't open blockdev
[  704.967423][ T5918] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  704.986187][T20001] /dev/nullb0: Can't open blockdev
[  704.991633][ T5918] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  705.007470][T20001] /dev/nullb0: Can't open blockdev
[  705.012841][ T5918] usb 1-1: New USB device found, idVendor=28bd, idProduct=0071, bcdDevice= 0.00
[  705.030868][T20001] /dev/nullb0: Can't open blockdev
[  705.038964][ T5918] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  705.053164][T20001] /dev/nullb0: Can't open blockdev
[  705.062506][ T5918] usb 1-1: config 0 descriptor??
[  705.073266][T20001] /dev/nullb0: Can't open blockdev
[  705.085111][T20001] /dev/nullb0: Can't open blockdev
[  705.097776][T20001] /dev/nullb0: Can't open blockdev
[  705.105766][T20001] /dev/nullb0: Can't open blockdev
[  705.118447][T20001] /dev/nullb0: Can't open blockdev
[  705.131026][T20001] /dev/nullb0: Can't open blockdev
[  705.149058][T20001] /dev/nullb0: Can't open blockdev
[  705.158806][T20001] /dev/nullb0: Can't open blockdev
[  705.165148][T20001] /dev/nullb0: Can't open blockdev
[  705.171301][T20001] /dev/nullb0: Can't open blockdev
[  705.177840][T20001] /dev/nullb0: Can't open blockdev
[  705.184068][T20001] /dev/nullb0: Can't open blockdev
[  705.193053][T20001] /dev/nullb0: Can't open blockdev
[  705.202605][T20001] /dev/nullb0: Can't open blockdev
[  705.214266][T20001] /dev/nullb0: Can't open blockdev
[  705.416755][T20017] netlink: 'syz.2.2002': attribute type 12 has an invalid length.
[  705.469512][ T5918] usbhid 1-1:0.0: can't add hid device: -71
[  705.480781][ T5918] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  705.493263][ T5918] usb 1-1: USB disconnect, device number 44
[  706.724742][ T3179] usb 5-1: new high-speed USB device number 56 using dummy_hcd
[  707.015563][ T3179] usb 5-1: Using ep0 maxpacket: 32
[  707.061180][ T3179] usb 5-1: config 0 has an invalid interface number: 37 but max is 1
[  707.395067][ T3179] usb 5-1: config 0 has an invalid descriptor of length 38, skipping remainder of the config
[  707.413550][ T3179] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  707.426924][ T3179] usb 5-1: config 0 has no interface number 0
[  707.443724][ T3179] usb 5-1: New USB device found, idVendor=03f0, idProduct=582e, bcdDevice=20.a3
[  707.453371][ T3179] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  707.461869][ T3179] usb 5-1: Product: syz
[  707.466174][ T3179] usb 5-1: Manufacturer: syz
[  707.470898][ T3179] usb 5-1: SerialNumber: syz
[  708.115414][ T3179] usb 5-1: config 0 descriptor??
[  708.417426][T20073] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  708.427945][T20073] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  709.202056][T20078] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  709.208709][T20078] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  709.216555][T20078] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  709.222694][T20078] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  709.228769][T20078] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  709.323461][T20078] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  709.522908][T20096] netlink: 'syz.5.2017': attribute type 12 has an invalid length.
[  709.887485][T20098] block device autoloading is deprecated and will be removed.
[  710.333098][ T3179] usb 5-1: USB disconnect, device number 56
[  711.407379][ T5837] Bluetooth: hci5: command 0x0c1a tx timeout
[  711.413496][ T5837] Bluetooth: hci4: command 0x0c1a tx timeout
[  711.419716][ T5824] Bluetooth: hci2: command 0x0c1a tx timeout
[  713.123154][T20151] netlink: 'syz.0.2029': attribute type 12 has an invalid length.
[  713.135360][T20151] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2029'.
[  713.449760][ T5873] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[  713.631208][ T5837] Bluetooth: hci5: command 0x0c1a tx timeout
[  713.642044][ T5873] usb 2-1: Using ep0 maxpacket: 16
[  713.734290][ T5873] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  713.792096][T20150] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  713.875052][ T5873] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  714.014892][T20150] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  714.033767][ T5873] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  714.183400][ T5873] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  714.193625][ T5873] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  714.207681][ T5873] usb 2-1: Product: syz
[  714.215775][ T5873] usb 2-1: Manufacturer: syz
[  714.234220][ T5873] usb 2-1: SerialNumber: syz
[  714.475708][ T5871] usb 5-1: new high-speed USB device number 57 using dummy_hcd
[  714.721336][ T5871] usb 5-1: Using ep0 maxpacket: 8
[  714.728463][ T5871] usb 5-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  714.739741][ T5871] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A
[  714.752092][ T5871] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  714.763367][ T5871] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  714.773350][ T5871] usb 5-1: config 0 interface 0 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  714.841349][T20154] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  714.853504][ T5873] usb 2-1: 2:1 : format type 0 is detected, processed as PCM
[  714.866131][ T5871] usb 5-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  714.877631][ T5871] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  715.540019][ T5871] usb 5-1: Product: syz
[  715.545163][ T5871] usb 5-1: Manufacturer: syz
[  715.550323][ T5871] usb 5-1: SerialNumber: syz
[  715.557301][ T5871] usb 5-1: config 0 descriptor??
[  715.562649][ T5873] usb 2-1: 2:1: cannot set freq 9338507 to ep 0x82
[  715.585305][ T5873] usb 2-1: USB disconnect, device number 50
[  715.855044][ T5837] Bluetooth: hci5: command 0x0c1a tx timeout
[  715.993708][ T3179] usb 3-1: new high-speed USB device number 67 using dummy_hcd
[  716.105447][ T5871] iowarrior 5-1:0.0: IOWarrior product=0x1505, serial=42424242 interface=0 now attached to iowarrior0
[  716.122581][ T5871] usb 5-1: USB disconnect, device number 57
[  716.164841][ T3179] usb 3-1: Using ep0 maxpacket: 8
[  716.176969][ T3179] usb 3-1: config 0 has an invalid interface number: 151 but max is 0
[  716.185190][ T3179] usb 3-1: config 0 has no interface number 0
[  716.197311][ T3179] usb 3-1: config 0 interface 151 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  716.214374][ T3179] usb 3-1: New USB device found, idVendor=0499, idProduct=500a, bcdDevice=e7.b7
[  716.224010][ T3179] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  716.232188][ T3179] usb 3-1: Product: syz
[  716.236558][ T3179] usb 3-1: Manufacturer: syz
[  716.241356][ T3179] usb 3-1: SerialNumber: syz
[  716.252757][ T3179] usb 3-1: config 0 descriptor??
[  716.260881][ T5873] usb 2-1: new high-speed USB device number 51 using dummy_hcd
[  716.262523][ T3179] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  716.295428][ T3179] snd-usb-audio 3-1:0.151: probe with driver snd-usb-audio failed with error -2
[  716.763521][ T5873] usb 2-1: Using ep0 maxpacket: 16
[  716.920940][ T5873] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  716.932866][ T5873] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  717.477184][T20344] netlink: 'syz.5.2046': attribute type 29 has an invalid length.
[  717.673431][ T5873] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  717.682824][ T5873] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  717.690907][ T5873] usb 2-1: Product: syz
[  717.695361][ T5873] usb 2-1: Manufacturer: syz
[  717.700010][ T5873] usb 2-1: SerialNumber: syz
[  717.723311][ T5873] usb 2-1: config 0 descriptor??
[  717.751274][ T5873] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  717.776177][ T5873] em28xx 2-1:0.0: Audio interface 0 found (Vendor Class)
[  717.860255][T20360] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2050'.
[  718.206831][ T5871] usb 1-1: new high-speed USB device number 45 using dummy_hcd
[  718.449867][ T5873] em28xx 2-1:0.0: unknown em28xx chip ID (0)
[  719.090231][ T5873] em28xx 2-1:0.0: Config register raw data: 0x28
[  719.102360][ T5871] usb 1-1: config 0 has an invalid interface number: 51 but max is 0
[  719.110942][ T5873] em28xx 2-1:0.0: I2S Audio (1 sample rate(s))
[  719.125982][ T5871] usb 1-1: config 0 has no interface number 0
[  719.132440][ T5873] em28xx 2-1:0.0: No AC97 audio processor
[  719.139007][ T5871] usb 1-1: config 0 interface 51 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  719.153463][ T5871] usb 1-1: New USB device found, idVendor=12d1, idProduct=8869, bcdDevice=3b.15
[  719.165577][ T5871] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  719.174054][ T5871] usb 1-1: Product: syz
[  719.178590][ T5871] usb 1-1: Manufacturer: syz
[  719.183447][ T5871] usb 1-1: SerialNumber: syz
[  719.193697][ T5871] usb 1-1: config 0 descriptor??
[  719.204751][ T5871] huawei_cdc_ncm 1-1:0.51: CDC Union missing and no IAD found
[  719.213645][ T5871] huawei_cdc_ncm 1-1:0.51: bind() failure
[  719.290434][ T5918] usb 3-1: USB disconnect, device number 67
[  719.387507][T20389] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  719.404741][T20389] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  719.424783][T20360] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2050'.
[  719.446429][T20394] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  719.476101][T20394] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  719.516607][ T3179] usb 1-1: USB disconnect, device number 45
[  719.552797][ T5873] usb 2-1: USB disconnect, device number 51
[  721.056024][T20434] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[  722.854861][ T5873] kernel write not supported for file /1485/timerslack_ns (pid: 5873 comm: kworker/0:6)
[  722.901426][T20455] netlink: 'syz.4.2069': attribute type 12 has an invalid length.
[  722.928510][T20455] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2069'.
[  723.095670][T20500] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2072'.
[  723.933751][T20523] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2078'.
[  724.583533][T20530] 9pnet_fd: Insufficient options for proto=fd
[  724.591310][T20533] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  724.640628][T20533] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  724.882453][T20552] netlink: 'syz.4.2084': attribute type 9 has an invalid length.
[  725.742437][T20569] syz.2.2092[20569] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  725.742542][T20569] syz.2.2092[20569] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  725.758008][T20569] syz.2.2092[20569] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  726.791738][T20578] tty tty1: ldisc open failed (-12), clearing slot 0
[  727.047890][ T5873] usb 3-1: new high-speed USB device number 68 using dummy_hcd
[  727.479307][ T5873] usb 3-1: Using ep0 maxpacket: 16
[  727.497246][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  727.503590][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  727.516064][ T5873] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0
[  727.560852][ T5873] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 0
[  727.616935][ T5873] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  727.642175][ T5873] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  727.693430][ T5873] usb 3-1: New USB device found, idVendor=1608, idProduct=0303, bcdDevice=a1.cb
[  727.710515][ T5873] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  727.718750][ T5873] usb 3-1: Product: syz
[  727.737796][ T5873] usb 3-1: Manufacturer: syz
[  727.746156][ T5873] usb 3-1: SerialNumber: syz
[  727.753876][ T5873] usb 3-1: config 0 descriptor??
[  727.969073][ T5873] io_ti 3-1:0.0: required endpoints missing
[  728.179638][ T5918] usb 3-1: USB disconnect, device number 68
[  729.636777][T20640] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2108'.
[  730.494224][T15036] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  730.509188][T15036] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  730.581605][T15036] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  730.592684][T15036] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  730.601604][T15036] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  730.611981][T15036] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  730.634429][T20667] 
: renamed from ipvlan1
[  730.789714][ T5871] usb 5-1: new high-speed USB device number 58 using dummy_hcd
[  730.885676][ T5918] usb 1-1: new high-speed USB device number 46 using dummy_hcd
[  730.949788][ T5871] usb 5-1: Using ep0 maxpacket: 8
[  730.956614][ T5871] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  730.970162][ T5871] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  730.998295][ T5871] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  731.039447][ T5871] usb 5-1: New USB device found, idVendor=05ac, idProduct=0237, bcdDevice= 0.40
[  731.049423][ T5871] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  731.065939][ T5871] usb 5-1: Product: syz
[  731.072515][ T5871] usb 5-1: Manufacturer: syz
[  731.077251][ T5871] usb 5-1: SerialNumber: syz
[  731.089021][ T5918] usb 1-1: Using ep0 maxpacket: 16
[  731.098937][ T5871] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/input/input53
[  731.100773][ T5918] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 11
[  731.117247][ T5918] usb 1-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[  731.126985][ T5918] usb 1-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[  731.136758][ T5918] usb 1-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[  731.146615][ T5918] usb 1-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[  731.156443][ T5918] usb 1-1: config 1 interface 0 has no altsetting 0
[  731.163103][ T5918] usb 1-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  731.172540][ T5918] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  731.188982][ T5918] ums-sddr09 1-1:1.0: USB Mass Storage device detected
[  731.323433][ T5180] bcm5974 5-1:1.0: could not read from device
[  731.337322][ T5871] usb 5-1: USB disconnect, device number 58
[  731.343653][ T5180] bcm5974 5-1:1.0: could not read from device
[  731.362984][ T5180] bcm5974 5-1:1.0: could not read from device
[  731.404854][ T5918] scsi host1: usb-storage 1-1:1.0
[  731.458782][T20653] chnl_net:caif_netlink_parms(): no params data found
[  731.737871][T20653] bridge0: port 1(bridge_slave_0) entered blocking state
[  731.778389][T20653] bridge0: port 1(bridge_slave_0) entered disabled state
[  731.798674][T20874] netlink: 'syz.2.2119': attribute type 1 has an invalid length.
[  731.820492][T20653] bridge_slave_0: entered allmulticast mode
[  731.833593][T20653] bridge_slave_0: entered promiscuous mode
[  731.844990][T20653] bridge0: port 2(bridge_slave_1) entered blocking state
[  731.852747][T20653] bridge0: port 2(bridge_slave_1) entered disabled state
[  731.860662][T20653] bridge_slave_1: entered allmulticast mode
[  731.867729][T20653] bridge_slave_1: entered promiscuous mode
[  732.632594][T20874] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2119'.
[  732.660841][   T35] scsi 1:0:0:0: Direct-Access     Sandisk  ImageMate SDDR09 0177 PQ: 0 ANSI: 0
[  732.827436][ T5837] Bluetooth: hci2: command tx timeout
[  733.319739][   T35] sd 1:0:0:0: Attached scsi generic sg1 type 0
[  733.461492][T20879] bond11: entered allmulticast mode
[  733.473836][T20879] 8021q: adding VLAN 0 to HW filter on device bond11
[  733.482306][T20879] bond10: (slave bond11): making interface the new active one
[  733.494731][T20879] bond10: (slave bond11): Enslaving as an active interface with an up link
[  733.526190][T20874] 8021q: adding VLAN 0 to HW filter on device bond10
[  733.553579][T20653] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  733.577126][T20653] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  734.160080][T21010] input: syz0 as /devices/virtual/input/input54
[  734.268588][ T5918] usb 1-1: USB disconnect, device number 46
[  734.361026][T18298] sd 1:0:0:0: [sdb] Read Capacity(10) failed: Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK
[  734.371753][T18298] sd 1:0:0:0: [sdb] Sense not available.
[  734.381959][T18298] sd 1:0:0:0: [sdb] 0 512-byte logical blocks: (0 B/0 B)
[  734.389318][T18298] sd 1:0:0:0: [sdb] 0-byte physical blocks
[  734.411429][T18298] sd 1:0:0:0: [sdb] Write Protect is off
[  734.443642][T18298] sd 1:0:0:0: [sdb] Asking for cache data failed
[  734.463814][T18298] sd 1:0:0:0: [sdb] Assuming drive cache: write through
[  734.504645][T20990] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2123'.
[  734.513060][T18298] 
[  734.515954][T18298] ======================================================
[  734.522972][T18298] WARNING: possible circular locking dependency detected
[  734.529992][T18298] 6.13.0-rc1-syzkaller-00239-g9a6e8c7c3a02 #0 Not tainted
[  734.537104][T18298] ------------------------------------------------------
[  734.544132][T18298] kworker/u8:12/18298 is trying to acquire lock:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  734.550470][T18298] ffff8880289ef4b0 (&q->debugfs_mutex){+.+.}-{4:4}, at: blk_mq_init_sched+0x3fa/0x830
[  734.560077][T18298] 
[  734.560077][T18298] but task is already holding lock:
[  734.567455][T18298] ffff8880289eec78 (&q->q_usage_counter(queue)#87){++++}-{0:0}, at: add_disk_fwnode+0x10d/0xf80
[  734.577937][T18298] 
[  734.577937][T18298] which lock already depends on the new lock.
[  734.577937][T18298] 
[  734.588363][T18298] 
[  734.588363][T18298] the existing dependency chain (in reverse order) is:
[  734.597402][T18298] 
[  734.597402][T18298] -> #5 (&q->q_usage_counter(queue)#87){++++}-{0:0}:
[  734.606304][T18298]        lock_acquire+0x1ed/0x550
[  734.611350][T18298]        blk_queue_enter+0xe1/0x600
[  734.616562][T18298]        blk_mq_alloc_request+0x4fa/0xaa0
[  734.617710][T21026] trusted_key: syz.0.2125 sent an empty control message without MSG_MORE.
[  734.622286][T18298]        scsi_execute_cmd+0x177/0x1090
[  734.636416][T18298]        read_capacity_10+0x256/0x9c0
[  734.641810][T18298]        sd_revalidate_disk+0x1066/0xbce0
[  734.647543][T18298]        sd_probe+0x9fa/0x1100
[  734.652327][T18298]        really_probe+0x2b8/0xad0
[  734.657378][T18298]        __driver_probe_device+0x1a2/0x390
[  734.663207][T18298]        driver_probe_device+0x50/0x430
[  734.668772][T18298]        __device_attach_driver+0x2d6/0x530
[  734.674698][T18298]        bus_for_each_drv+0x24e/0x2e0
[  734.680082][T18298]        __device_attach_async_helper+0x22d/0x300
[  734.686509][T18298]        async_run_entry_fn+0xa8/0x420
[  734.691975][T18298]        process_scheduled_works+0xa66/0x1840
[  734.698058][T18298]        worker_thread+0x870/0xd30
[  734.703166][T18298]        kthread+0x2f0/0x390
[  734.707772][T18298]        ret_from_fork+0x4b/0x80
[  734.712724][T18298]        ret_from_fork_asm+0x1a/0x30
[  734.718035][T18298] 
[  734.718035][T18298] -> #4 (&q->limits_lock){+.+.}-{4:4}:
[  734.725701][T18298]        lock_acquire+0x1ed/0x550
[  734.730741][T18298]        __mutex_lock+0x1ac/0xee0
[  734.735785][T18298]        nbd_set_size+0x2e0/0x8f0
[  734.740829][T18298]        nbd_ioctl+0x5dc/0xf40
[  734.745609][T18298]        blkdev_ioctl+0x57d/0x6a0
[  734.750647][T18298]        __se_sys_ioctl+0xf5/0x170
[  734.755778][T18298]        do_syscall_64+0xf3/0x230
[  734.760828][T18298]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.767244][T18298] 
[  734.767244][T18298] -> #3 (&q->q_usage_counter(io)#50){++++}-{0:0}:
[  734.775864][T18298]        lock_acquire+0x1ed/0x550
[  734.780890][T18298]        blk_mq_submit_bio+0x1536/0x2390
[  734.786519][T18298]        __submit_bio+0x2c6/0x560
[  734.791536][T18298]        submit_bio_noacct_nocheck+0x4d3/0xe30
[  734.797675][T18298]        mpage_readahead+0x7da/0x930
[  734.802995][T18298]        read_pages+0x176/0x830
[  734.807847][T18298]        page_cache_ra_unbounded+0x797/0x8c0
[  734.813824][T18298]        page_cache_sync_ra+0x3c5/0xad0
[  734.819369][T18298]        filemap_get_pages+0x621/0x2540
[  734.824993][T18298]        filemap_read+0x45c/0xf50
[  734.830008][T18298]        blkdev_read_iter+0x2d8/0x430
[  734.835369][T18298]        vfs_read+0x991/0xb70
[  734.840036][T18298]        ksys_read+0x18f/0x2b0
[  734.844787][T18298]        do_syscall_64+0xf3/0x230
[  734.849799][T18298]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.856209][T18298] 
[  734.856209][T18298] -> #2 (mapping.invalidate_lock#2){++++}-{4:4}:
[  734.864724][T18298]        lock_acquire+0x1ed/0x550
[  734.869735][T18298]        down_read+0xb1/0xa40
[  734.874413][T18298]        filemap_fault+0x6e8/0x1950
[  734.879863][T18298]        __do_fault+0x135/0x460
[  734.884703][T18298]        handle_pte_fault+0xdd4/0x68a0
[  734.890148][T18298]        handle_mm_fault+0x1053/0x1ad0
[  734.895589][T18298]        __get_user_pages+0x1c82/0x49e0
[  734.901121][T18298]        __gup_longterm_locked+0x49a/0x17f0
[  734.907005][T18298]        pin_user_pages+0x137/0x1f0
[  734.912192][T18298]        xdp_umem_create+0x978/0xf30
[  734.917464][T18298]        xsk_setsockopt+0x732/0x950
[  734.922673][T18298]        do_sock_setsockopt+0x3af/0x720
[  734.928222][T18298]        __x64_sys_setsockopt+0x1ee/0x280
[  734.933930][T18298]        do_syscall_64+0xf3/0x230
[  734.938943][T18298]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.945346][T18298] 
[  734.945346][T18298] -> #1 (&mm->mmap_lock){++++}-{4:4}:
[  734.952890][T18298]        lock_acquire+0x1ed/0x550
[  734.957901][T18298]        __might_fault+0xc6/0x120
[  734.962914][T18298]        _copy_from_user+0x2a/0xc0
[  734.968017][T18298]        blk_trace_ioctl+0x1ad/0x9a0
[  734.973295][T18298]        blkdev_ioctl+0x40c/0x6a0
[  734.978305][T18298]        __se_sys_ioctl+0xf5/0x170
[  734.983409][T18298]        do_syscall_64+0xf3/0x230
[  734.988421][T18298]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.994831][T18298] 
[  734.994831][T18298] -> #0 (&q->debugfs_mutex){+.+.}-{4:4}:
[  735.002635][T18298]        validate_chain+0x18ef/0x5920
[  735.007988][T18298]        __lock_acquire+0x1397/0x2100
[  735.012275][ T5837] Bluetooth: hci2: command tx timeout
[  735.013332][T18298]        lock_acquire+0x1ed/0x550
[  735.023700][T18298]        __mutex_lock+0x1ac/0xee0
[  735.028714][T18298]        blk_mq_init_sched+0x3fa/0x830
[  735.034165][T18298]        elevator_init_mq+0x20e/0x320
[  735.039525][T18298]        add_disk_fwnode+0x10d/0xf80
[  735.044798][T18298]        sd_probe+0xba6/0x1100
[  735.049547][T18298]        really_probe+0x2b8/0xad0
[  735.054552][T18298]        __driver_probe_device+0x1a2/0x390
[  735.060342][T18298]        driver_probe_device+0x50/0x430
[  735.065884][T18298]        __device_attach_driver+0x2d6/0x530
[  735.071774][T18298]        bus_for_each_drv+0x24e/0x2e0
[  735.077139][T18298]        __device_attach_async_helper+0x22d/0x300
[  735.083538][T18298]        async_run_entry_fn+0xa8/0x420
[  735.089008][T18298]        process_scheduled_works+0xa66/0x1840
[  735.095061][T18298]        worker_thread+0x870/0xd30
[  735.100156][T18298]        kthread+0x2f0/0x390
[  735.104740][T18298]        ret_from_fork+0x4b/0x80
[  735.109658][T18298]        ret_from_fork_asm+0x1a/0x30
[  735.114934][T18298] 
[  735.114934][T18298] other info that might help us debug this:
[  735.114934][T18298] 
[  735.125144][T18298] Chain exists of:
[  735.125144][T18298]   &q->debugfs_mutex --> &q->limits_lock --> &q->q_usage_counter(queue)#87
[  735.125144][T18298] 
[  735.139560][T18298]  Possible unsafe locking scenario:
[  735.139560][T18298] 
[  735.147000][T18298]        CPU0                    CPU1
[  735.152351][T18298]        ----                    ----
[  735.157709][T18298]   lock(&q->q_usage_counter(queue)#87);
[  735.163337][T18298]                                lock(&q->limits_lock);
[  735.170253][T18298]                                lock(&q->q_usage_counter(queue)#87);
[  735.178390][T18298]   lock(&q->debugfs_mutex);
[  735.182963][T18298] 
[  735.182963][T18298]  *** DEADLOCK ***
[  735.182963][T18298] 
[  735.191090][T18298] 4 locks held by kworker/u8:12/18298:
[  735.196528][T18298]  #0: ffff88801baef148 ((wq_completion)async){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  735.207417][T18298]  #1: ffffc90003447d00 ((work_completion)(&entry->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  735.219232][T18298]  #2: ffff888058d98378 (&dev->mutex){....}-{4:4}, at: __device_attach_async_helper+0xfc/0x300
[  735.229572][T18298]  #3: ffff8880289eec78 (&q->q_usage_counter(queue)#87){++++}-{0:0}, at: add_disk_fwnode+0x10d/0xf80
[  735.240438][T18298] 
[  735.240438][T18298] stack backtrace:
[  735.246310][T18298] CPU: 1 UID: 0 PID: 18298 Comm: kworker/u8:12 Not tainted 6.13.0-rc1-syzkaller-00239-g9a6e8c7c3a02 #0
[  735.257319][T18298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  735.267387][T18298] Workqueue: async async_run_entry_fn
[  735.272764][T18298] Call Trace:
[  735.276035][T18298]  <TASK>
[  735.278951][T18298]  dump_stack_lvl+0x241/0x360
[  735.283624][T18298]  ? __pfx_dump_stack_lvl+0x10/0x10
[  735.288811][T18298]  ? __pfx__printk+0x10/0x10
[  735.293391][T18298]  print_circular_bug+0x13a/0x1b0
[  735.298491][T18298]  check_noncircular+0x36a/0x4a0
[  735.303418][T18298]  ? __pfx_check_noncircular+0x10/0x10
[  735.308868][T18298]  ? lockdep_lock+0x123/0x2b0
[  735.313530][T18298]  validate_chain+0x18ef/0x5920
[  735.318368][T18298]  ? validate_chain+0x11e/0x5920
[  735.323287][T18298]  ? preempt_count_add+0x93/0x190
[  735.328299][T18298]  ? __pfx_validate_chain+0x10/0x10
[  735.333489][T18298]  ? stack_trace_save+0x118/0x1d0
[  735.338514][T18298]  ? unwind_next_frame+0x18e6/0x22d0
[  735.343794][T18298]  ? deref_stack_reg+0x17c/0x210
[  735.348735][T18298]  ? preempt_count_add+0x93/0x190
[  735.353744][T18298]  ? unwind_next_frame+0x193b/0x22d0
[  735.359019][T18298]  ? ret_from_fork_asm+0x1a/0x30
[  735.363954][T18298]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  735.370098][T18298]  ? arch_stack_walk+0x11c/0x150
[  735.375021][T18298]  ? mark_lock+0x9a/0x360
[  735.379338][T18298]  __lock_acquire+0x1397/0x2100
[  735.384176][T18298]  lock_acquire+0x1ed/0x550
[  735.388667][T18298]  ? blk_mq_init_sched+0x3fa/0x830
[  735.393764][T18298]  ? __pfx_lock_acquire+0x10/0x10
[  735.398786][T18298]  ? __device_attach_driver+0x2d6/0x530
[  735.404313][T18298]  ? bus_for_each_drv+0x24e/0x2e0
[  735.409320][T18298]  ? __pfx___might_resched+0x10/0x10
[  735.414593][T18298]  ? kthread+0x2f0/0x390
[  735.418824][T18298]  ? ret_from_fork+0x4b/0x80
[  735.423408][T18298]  ? ret_from_fork_asm+0x1a/0x30
[  735.428334][T18298]  __mutex_lock+0x1ac/0xee0
[  735.432855][T18298]  ? blk_mq_init_sched+0x3fa/0x830
[  735.437949][T18298]  ? __asan_memset+0x23/0x50
[  735.442526][T18298]  ? lockdep_init_map_type+0xa1/0x910
[  735.447883][T18298]  ? blk_mq_init_sched+0x3fa/0x830
[  735.452977][T18298]  ? __pfx___mutex_lock+0x10/0x10
[  735.457993][T18298]  ? blk_queue_flag_set+0x24/0x40
[  735.463005][T18298]  blk_mq_init_sched+0x3fa/0x830
[  735.467923][T18298]  ? percpu_ref_is_zero+0xe9/0x100
[  735.473024][T18298]  ? __pfx_blk_mq_init_sched+0x10/0x10
[  735.478464][T18298]  ? blk_mq_cancel_work_sync+0xf3/0x140
[  735.483992][T18298]  ? __pfx_blk_mq_cancel_work_sync+0x10/0x10
[  735.489953][T18298]  ? percpu_ref_kill_and_confirm+0xa0/0x130
[  735.495832][T18298]  ? add_disk_fwnode+0x10d/0xf80
[  735.500756][T18298]  elevator_init_mq+0x20e/0x320
[  735.505595][T18298]  add_disk_fwnode+0x10d/0xf80
[  735.510340][T18298]  ? _raw_spin_unlock_irq+0x23/0x50
[  735.515520][T18298]  ? lockdep_hardirqs_on+0x99/0x150
[  735.520703][T18298]  sd_probe+0xba6/0x1100
[  735.524948][T18298]  ? __pfx_sd_probe+0x10/0x10
[  735.529621][T18298]  really_probe+0x2b8/0xad0
[  735.534129][T18298]  __driver_probe_device+0x1a2/0x390
[  735.539409][T18298]  driver_probe_device+0x50/0x430
[  735.544423][T18298]  __device_attach_driver+0x2d6/0x530
[  735.549783][T18298]  bus_for_each_drv+0x24e/0x2e0
[  735.554624][T18298]  ? __pfx___device_attach_driver+0x10/0x10
[  735.560509][T18298]  ? __pfx_bus_for_each_drv+0x10/0x10
[  735.565868][T18298]  __device_attach_async_helper+0x22d/0x300
[  735.571750][T18298]  ? __pfx___device_attach_async_helper+0x10/0x10
[  735.578153][T18298]  ? process_scheduled_works+0x976/0x1840
[  735.583866][T18298]  ? read_tsc+0x9/0x20
[  735.587943][T18298]  ? ktime_get+0x1c5/0x1f0
[  735.592369][T18298]  ? __pfx___device_attach_async_helper+0x10/0x10
[  735.598771][T18298]  async_run_entry_fn+0xa8/0x420
[  735.603714][T18298]  ? process_scheduled_works+0x976/0x1840
[  735.609438][T18298]  process_scheduled_works+0xa66/0x1840
[  735.614983][T18298]  ? __pfx_process_scheduled_works+0x10/0x10
[  735.620959][T18298]  ? assign_work+0x364/0x3d0
[  735.625544][T18298]  worker_thread+0x870/0xd30
[  735.630117][T18298]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  735.636000][T18298]  ? __kthread_parkme+0x169/0x1d0
[  735.641007][T18298]  ? __pfx_worker_thread+0x10/0x10
[  735.646103][T18298]  kthread+0x2f0/0x390
[  735.650154][T18298]  ? __pfx_worker_thread+0x10/0x10
[  735.655259][T18298]  ? __pfx_kthread+0x10/0x10
[  735.659859][T18298]  ret_from_fork+0x4b/0x80
[  735.664269][T18298]  ? __pfx_kthread+0x10/0x10
[  735.668859][T18298]  ret_from_fork_asm+0x1a/0x30
[  735.673608][T18298]  </TASK>
[  735.840573][T18298] sd 1:0:0:0: [sdb] Attached SCSI removable disk
[  735.849289][ T5871] usb 6-1: USB disconnect, device number 8
[  735.987095][T20653] team0: Port device team_slave_0 added
[  736.372749][   T35] bridge_slave_1: left allmulticast mode
[  736.378437][   T35] bridge_slave_1: left promiscuous mode
[  736.385447][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[  736.395658][   T35] bridge_slave_0: left allmulticast mode
[  736.401329][   T35] bridge_slave_0: left promiscuous mode
[  736.407464][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[  736.506667][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  736.516587][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  736.526203][   T35] bond0 (unregistering): Released all slaves
[  736.655417][   T35] team0 (unregistering): Port device team_slave_0 removed