last executing test programs:

37m27.955239185s ago: executing program 0 (id=1156):
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x24, 0x0, 0x8, 0x801, 0x0, 0x0, {0x3, 0x0, 0x2}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0xdada}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x3a}]}, 0x24}, 0x1, 0x0, 0x0, 0x24018100}, 0x4000000)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0xff80, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
syz_io_uring_setup(0x779b, &(0x7f0000000380)={0x0, 0xf5a5, 0x0, 0xffffffff, 0x2028a}, &(0x7f0000000280), &(0x7f0000000200))
r5 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000013c0)}, 0x0)

37m24.269187874s ago: executing program 0 (id=1166):
r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x0, 0xd, 0x2, 0x0, 0x4})
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x4000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00\x00\x00\x00\x00\x00\n\x00'/20, @ANYRES32=r1, @ANYBLOB="1400018fb43e2b0426fa3ba9252d8d522040e09d6d0b43cb72804d"], 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x80)

37m21.483670673s ago: executing program 0 (id=1177):
r0 = socket(0x2b, 0x80801, 0x1)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000fc0)=@raw={'raw\x00', 0x3c1, 0x3, 0x320, 0x140, 0x5c, 0x160, 0x140, 0x3e0, 0x250, 0x228, 0x25a, 0x250, 0x228, 0x4, 0x0, {[{{@ipv6={@remote, @dev, [], [], 'veth0_to_batadv\x00', 'wg1\x00', {}, {0x222cecdb0fb5a62a}, 0x3a}, 0x5002, 0xf8, 0x140, 0x52020000, {0x0, 0x6802000000000000}, [@common=@icmp6={{0x28}, {0x0, "d176"}}, @common=@unspec=@state={{0x28}, {0xfffffffd}}]}, @unspec=@CT0={0x48}}, {{@ipv6={@local, @private2, [], [0xff], 'veth1_to_hsr\x00', 'dummy0\x00', {}, {}, 0x88}, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x380)
sendmsg$nl_route(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x48014}, 0x20004000) (fail_nth: 3)

37m20.429735113s ago: executing program 0 (id=1179):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
r1 = syz_io_uring_setup(0x497, &(0x7f0000000180)={0x0, 0x4885, 0x100, 0x4, 0x1d}, &(0x7f0000000340)=<r2=>0x0, &(0x7f0000000600)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000040)={&(0x7f0000001000)={[{0x0, 0x0, 0x3, 0xf4}]}, 0x1, 0x1}, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x10, r4, 0x0, 0x0, 0x0, 0x12321, 0x1, {0x1}})
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)
connect$vsock_stream(r0, &(0x7f0000001500), 0x10)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r7 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r7, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$sock_SIOCETHTOOL(r8, 0x8946, &(0x7f0000000040)={'dummy0\x00', &(0x7f0000000100)=@ethtool_rxfh_indir={0x38}})
r9 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
bpf$LINK_DETACH(0x22, &(0x7f0000000000)=r9, 0x4)
move_mount(r9, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
move_mount(r9, 0x0, r7, 0x0, 0x46)
r10 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r11 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000240)={'lo\x00', <r12=>0x0})
sendmsg$nl_route_sched(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, r12, {0xe, 0x3}, {}, {0x9, 0xfff1}}}, 0x24}}, 0x40004)
ioctl$KVM_GET_NESTED_STATE(r10, 0xc080aebe, 0x0)
connect$vsock_stream(r0, &(0x7f0000000180)={0x28, 0x0, 0x0, @local}, 0x10)
r13 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r13)
ptrace$cont(0x18, r13, 0x8000000000000002, 0x8)

37m13.603101863s ago: executing program 0 (id=1206):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
prctl$PR_TASK_PERF_EVENTS_ENABLE(0x120)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_DATAGRAM_RECEIVE(r1, 0x7ac, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r2, &(0x7f0000003f80)={@val={0x8, 0x800}, @val={0x7, 0x0, 0x2, 0x0, 0x14}, @ipv4=@generic={{0x5, 0x4, 0x2, 0x2, 0xfbc, 0x66, 0x0, 0xb, 0x88, 0x0, @rand_addr=0x64010120, @dev={0xac, 0x14, 0x14, 0x14}}, "3297e3ba0fa8a2e71bd9fe1a399b5110420b70460c0dad392d66248a43540df968e7fcaab34569c0e36170578c0d3c546a98b26295e2592f360905866eb4720fed03a977a3df4224895629fd6ccec64f13a999f18f518e3ee28798381975e862f1db9dccdb2f1c1fb60f5ffc7a339d40a8bd1f24cede8a32f186f142e194d4fb48224759faf813ea80e6a853e79b4fe27fe3e1aec5897b314a7f0d515b07b1835986b4885e9826d902c40f16cd77c58b6433ab039955ce9db11f36f459e7114ace6c9989eecea80a81fd39f339356c7c3391af83da2486503a7973f6db4806cf3e5ca94cf7e1f79fd00decd76100c18251a59d1474caabf4d3ca6a9a9885df710e68c5b0dc11832dbb5eecb5c88c2f8f02bdbd88569ad4a740359cbca8c378118220d73bdd1e661c3a74f77aa931b11cd38119b0f084bb96e84803fca6566c33ee1e4e34ab0253fbf24f9f5974af5e1fc2a43a4ec9dd9928a8f38a128ea27c429300ae5a6bd7740471f973d8224b2b07879f4fbe7dcbed776a72ebdc713bcf1d7aa45b01c32a1003e6670d58510bd79ba2fde5cb2b82cef2cc315648f4e9d96d848ba327949b8926253cbdef6888a8982108b6ac7a1108533dd3fe125002e2e286362d1055082a9d73ec5ac3080f2a501ff27250b62c8965f371cf92b32d6422d79f66261eb08a2f8fe50049e102c69ce703d116d0834208cc957d0f1376457a90245816d7642412897fdd2f982fdfbc3af65aa0446b00c767b79aec40e460887ea02188e3a0960eea39b144859467b881978378c9fd593259e0f63148179fe2c2f6d40987b63a6e384e63027f03d8039d707522942d5dc88fd842524d006290b6a65e9cc86cc5b401a60ec4aedfb3bf4d0447bb681810a16b9684b72c2f4593ef834a0203e78cd1d9dbc978e9ae8f3ab62c07f1e41d59470decee7b0cc41ac49e4b75a9ab6da65849f62ec217bb39ed161e7d337822d96badbd74d66451ea9a74bed591dc9631bf639dcf7846ee428a9fa55bfceedf3b1c23642f3b58dd0a7273664c6c49c9160a4b9cc5b72d0210e305b94e2cb09ae1d4af9d365b5093851f229c8c30aef75d45ccdbab4b86d801a9ad3b27f26ba601d531c0743717aa7aae29d37f496fec7682c5a1abd321ad61941a2d23fcac6af1d1875e308c8d8c64a5152be47b59c09d293f46b857310a99f1885f0a49d432aa0d39a3e8fc885e75e66b63215133175a19267c8d0adf7d8f644e742ed5369d1405e99e63b78727f135e0243f24d9ce354a1562102ee8de4c191508343b86bf7e7519ddd770ce55e17e590561b2f437194c97ad46622a6ae3dd68d9993e6744954f4cd308bd6594fdccedc578e80aed274a65219697229059723ac37d535cca0e9c314e7941b4160bbd2ffba71f26ffe3228431bc81463078ad70583277ef18bce23ca2e5b9a00670956ea8e0e2c739c006106c8c9ee3f92ba728d8490742b74a9a18cbedfc4e69bb87e0da4c7dfb964374c28c837d4641fb99a19b233675f8526af395335e0185cf3934805442ac379980b687a7128e53284ba9e741b5fe9bc969bfbd55cbce76842915e076e2adf844338d16d3802c681bafdcc60465bd34dfc2d1c069ceee40060e0570fc1275ccabfe3f9be3e84ceedf72cd649c082232008e2b0c94594588c00e0fe911bbf1c12eb6c37ce05674a7597feecf27f5e051ffa824d9ff93638dfa9a84c77562aa2cf897f55a97b79c18544ad03480e1011b8f93e0ead9c2c6672448f585c5803ae99be777fbc662ef4450c1e936ed8b3c8047f00e72adc84561f417f8e5e1dde4967005d96a64fc75d9f486b3ebdb5904a0a56ec48542f0efce939f66fd69259e7376ad37e84434ea90f35b2d3bd63b5c36b267d8f2c7dc5a50b46e00ed086dff8b039e07b84c60611269d4f282ad04dc8e0b481eece2f8a614734be73617f0ad5be195446b09dca4cf1f32653dd3e188aece76f3014deb2ba61744835c0f735234b6a4637c948a7b4fd4203b286ca87d669e325d70277075b094f59eb1dff6c9c05c40d5e464c563df79486e1a32e6ed9bcf675aac7968b4e98dc4e210215b0d3b6a2525b2e3df11f3f1490eb39cabffbe32e23659121fde8e4e346e0f595aaf3666a5f6f118c1a1128039502ac04c40b85eb4c54e6c95b8d1c2aac74ae9e1c355ccde9d54d5d833293f5df09224482179e5bcd8e227c9eaacb5793498be490de32baba49172a6e14c2cd4e6462ceb0a905a1d64804840ce62e350c6efac10a7fcb029f84af64e2256d45afd3b3f59379895740e0cd2fd24c63264f785bb6e3f40ec72ed67d1a7d87dd264743d9c951cb5aa8bc6f1d1bc9b23303d5aa7f8f6f961326757456057000cb2bacf78cc229002777e932c2640b8dfa793846ca49fa93996db95104a8808a1906b19df17e754b90582b6c49efb3ddce067dd9292291cfd2bb0323ce8098f29e4fce0de31cf5c7e2e2da5d0d0996a8be776de8fecfd3ce68e80d21f1701f6b90ac51278abbd727d19411e0ebe001b990b177b8db0c592b18a4b5e4a6221902362e5b20e6e6f2131a5a5e03c1150b179ef40c933c2fef1b79de738652ec4c32565f5cf751a11db177099c4e2e5bd7616cd0dd501d5bfccf5691de3cca590365328648baf8a9487a3c212193c9bb837594460967e823067a9465eba7001eaf609a810488ef5c147aaa5e9e8c75b585ac3582b6915e20b5aa2f79b7a94857122988c56dbce1ea52de1a56652e839bb853be3ee16052b33fb83ca54d8e4e19440a5e81492107043a66286f63ca87a1f7b8a4e9547a7eb6005419cfd28cb37e9e374f4d0143973286e87070754025c1a6fccfdc6858eaca8c35ecb19584ce7141cc79a5bc813469161b87a19fc21f3373d1f25b3427916dd1be2a589b70ea3b39fcc7801e13beaf19b76164faf3dc4ab8faa5648d24eddd6caceaa0d5ac9cad633c19a4a4d059ee823a49b7cf82c5777d376c111f58ea8fd473429907852301a2c856f27bd0c687ab5be0e2bbef64ddee1601375a4440e3f59d60f57caebfe457f82432523ec4a61cdbb7f1e91e4b05fda892df131c274b19929d26f7a5a6d3ca487983f729601ed9bb4bf5c1cc3d453d406e9534688dec6a2dd0b9db149365c125a95e129565e62cc91f7d960abe1055b730ae0994e7eb08392d5745d0e4f529c4defc3d3e43d0815b0cc63effa88d20c13b14e780c2f6c89a1ee5e4db45a5c272186cc3e51b13dab3add5f467e8ca0f4c45a1fc76db2f0cbf794102946aafcd8cd8a3e935a606b9721645c4d550ae0907f345593736506efc626498c974753d474a73626041d3a54f8fb50de2a6335611a3779da3a02daceb2256d9b102d4d30dd3cd389a04b1a7a6076879f36534bb3379debb46ed1fa2c40096c752017dd024345c58313b43070ff7bef94dc3cafbe6ec20d59e5ea3c196ba3b783bfa87384407efc664cd350c80ac397516018e35371956e414755cde304d2a228c1540ba6fd6a7402d11c666964f024da4c016eb556ba2c5fab86c60c12efb1496295d80f0383526e8e0fc55a287bbd3cb966a916f57958d8b6ef97aa0c4b47f7746bab6b99698c1c96b25c4e2e084147866fe0970b109dd26984adc0758eb6442712cc46dcd8ed3038b0595252eed1b8a46525862662d1e67eba66ac341f8d27853eed54854f488f079bd48df6ce7a4be8b1b61fd23a2dc4d3ade0992011539cc63f80fcfc75008c20cb639348cb218f8f476a6d56917f4ca07e67fc20ea2e9642eaf2182b397e279f5f6c70438fb8aa39cba788588c181461ea7efe1a0dd5b95eb26f7158b91012f7ce0ee1b4e79ce4da377bea4551738a0f491a84f19b3be9827b4469c299527aa9c20b8bf12f919976a0356bba720fb97800763c79bcbb10d89280f0f97cdd19aa0d54828b308195fac170613cf4b515e340a9ef2c97f618a9f50b30ae34ebeed9a38b4c6969680accc740b154ecb014fb5d543a59ccb98a7de2823a2dec39f331cb503eb74fef61262c6d4050bc723caee834eb28c64ce007f6027375e936b62387cf1778970e88b0574a0106d4c855be7425767c551b2fa644d9d8a59f787e7610581b768057d229673344571c3d6e3f10975b2859f568398b1f38f89524d9ad0c1588617c3883a1227b714c81cdf28da54f33968c1c50f28da01c308eb31d319b3e77f96bec001c9300000000000000009cc0062283ac112868592619db14d629c47bfb793a723dcd2f7b07ae4ec14ca3ef4b955ea5b2b153a279b080f6236d418075b86850974c8850efb306d5c304e726bf2643b4403e6d46b0e0395b02e93308b4b2c3e957308d497dc51c753344a7878f1f0c91295fd76e3d1cc9ef813161c6b92b7ea6068ceb97d8f45a4ce57af7d7632d699951f7fe3c71c3a32b014c74425c67e5030546b10cf7edcec2eca5ba31dc62c08f83f35bc2e36b93f15f071bc2537ebe9ca19f86dce4e84272e10323d0ceaa2cc47fe4f6ad101d454c761f9863e94af91199ce5f12469bca7ba39314b84aa7efa4bdc18f7700c19511d48d6132450111d70401a8ac73565d5386ca12345e884d08b23f9c901000a95eb4167865e58c28b112f47c96beeaa6657c923e25e56529107c5c30e65bb485d5ed21b91332db4e09df7e59dcfa05c994570deb3f9b838e22ae4abbf9a9a8c319cc9112c8dba7c2278f78b9578b0254c46a4c04b8fa4fedad6bd275f70b1618971ef6503379bfb0a508c9944328af2c820091a89e3f75e68e7f980ddc9154d273f7f2ce7a6294aefe93136860786679b80e41f6636ff45efeacfb52e2ba2bd9bd9c9030079a46caca5c4b340c17d01ba8ecbc5c561b2038481a8321c009d12136a3ad5461881d998eeaac5236fdcd8f81fb5e53848bb096d9198fd0d38830d1809f2a632b31e2b67754140c907ed58aead048b2d8af9a1c407e48db815212cfdcca97222dabdfe01f311a73e1e82c3e189ec5add48d3f8190eb9e14b58e540f7f1388a7c687629eadb19fd8a133dc8177629270ecaabff79efb6c1f750d89b9e6c5f34c6238066f8e3e425e46a27b3c0d2e9e2ed3cffe2a6f39b8e0137ea5de689b94107fb4748a5feb3902f0feba64dae4c2e69bc8d86463575c6b0ef4a8a64fef41121e57a8c67eda07e9fc8f98299677de198ea0a649ef3c00591940b2c27ba1414aaa1633deb52e3a44cfa8d7a00d014317c026a7d7f42a34b97128e1bf9cda4d8315819ac73ed5061bf9b5631d07b09b85b78ff1b6eb86e9e8c4faa0f991cd6fa0b0eb71b39c20ca9bc7c156f3bd255a5b408df172396bafd7f0fb11c6eaf1eb0a06576d37bee00424bf699584b1dfed68f0d8d8a35f0427c783fe2d79b4373628971e87501a5e4bb05b5058d0b2132741f26e76065b6f4017d963c8ee5605c4c5b6eebb96fca0a41893cb6add3fb0d728abeb860f22cedbd36e464bdaf124a7041460f7af3d64b54e9ffd240b5afad9baf6e5dd8406bc1b205da5848f51fc9dd5197716e144e1b0386614bd3cfd5ddb80ada1e5ca74c8960093a553b1f6288aa7f53663cdd867f658e51b95772dc7a6fa45fa03e14988a33250e6c16fbf0351769080d64ddfbdbf77e1215563bf2e82ecc38a682846d7e2e2ac4e87d715f97f15e84c3df04affee49612a735907d3c4d310a54a6f60"}}, 0xfca)
ptrace$getregset(0x4212, r0, 0x202, &(0x7f00000000c0)={&(0x7f0000000280)=""/131, 0x83})

37m11.489847332s ago: executing program 0 (id=1213):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000940), 0x8900, 0x0)
ioctl$SNDCTL_MIDI_PRETIME(r1, 0xc0046d00, &(0x7f0000000980)=0x2)
r2 = syz_open_dev$sndpcmc(0x0, 0x1, 0x1)
ioctl$SNDRV_PCM_IOCTL_UNLINK(r2, 0x80184132, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00'})
socket$netlink(0x10, 0x3, 0x0)
syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x3)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000004e80)=ANY=[@ANYBLOB="6801000013000100feffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="062000000003000008000a00", @ANYRES32=0x0, @ANYBLOB="050027000000000008000500", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB], 0x168}}, 0x0)
r5 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqsrc(r5, 0x0, 0x26, &(0x7f0000000100)={@multicast2, @loopback, @empty}, 0xc)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet6(0xa, 0x800, 0x9)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x48e80, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x200)
ioctl$KVM_SET_MP_STATE(r8, 0x4004ae99, &(0x7f0000000000)=0x3)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r10 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r10, r9, &(0x7f0000002080)=0x64, 0x23b)

37m10.44261502s ago: executing program 32 (id=1213):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000940), 0x8900, 0x0)
ioctl$SNDCTL_MIDI_PRETIME(r1, 0xc0046d00, &(0x7f0000000980)=0x2)
r2 = syz_open_dev$sndpcmc(0x0, 0x1, 0x1)
ioctl$SNDRV_PCM_IOCTL_UNLINK(r2, 0x80184132, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00'})
socket$netlink(0x10, 0x3, 0x0)
syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x3)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000004e80)=ANY=[@ANYBLOB="6801000013000100feffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="062000000003000008000a00", @ANYRES32=0x0, @ANYBLOB="050027000000000008000500", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB], 0x168}}, 0x0)
r5 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqsrc(r5, 0x0, 0x26, &(0x7f0000000100)={@multicast2, @loopback, @empty}, 0xc)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet6(0xa, 0x800, 0x9)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x48e80, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x200)
ioctl$KVM_SET_MP_STATE(r8, 0x4004ae99, &(0x7f0000000000)=0x3)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r10 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r10, r9, &(0x7f0000002080)=0x64, 0x23b)

14m29.941443722s ago: executing program 4 (id=6393):
sendmsg$SOCK_DESTROY(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000600)={0xe0, 0x15, 0x800, 0x70bd29, 0x25dfdbfc, {0x6, 0xa}, [@INET_DIAG_REQ_BYTECODE={0x9d, 0x1, "5e8a642d1e6c06681e731a0399f4afe4612e3bcac1e172156a0dcd71c24dd15226dbcbfec7ebf6370d3f13dc22641812a4bbad8f5b3960a5cc6cdf9ef57302ac318a235274afdd93dfc1551746b3e6032abdd875950435186b2e508c1ba23a990cc2454db7c321a484715323c89e891f7020f9a8fd2d83589413bb135050120ec1278ec70045c92a205ad1b8112fcd5d4b2993010f9a49336e"}, @INET_DIAG_REQ_BYTECODE={0x21, 0x1, "06addfa55d5c12d9a8477891d13b33455969ecd9bad365d8d85d2adb55"}, @INET_DIAG_REQ_BYTECODE={0x5, 0x1, "fe"}]}, 0xe0}, 0x1, 0x0, 0x0, 0x20040000}, 0x4000084)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x7, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x2040000, &(0x7f0000003700)={0x77359400})

14m29.8069189s ago: executing program 4 (id=6394):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={0x0, 0x70}}, 0x0)
sendmmsg(r0, &(0x7f0000000180), 0x3ef, 0x0)

14m29.608462534s ago: executing program 4 (id=6396):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet6(0xa, 0x80002, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
r2 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x2, @mcast1, 0xc}, 0x1c)
sendmsg(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000003c0)="00005df6d8d3b67c01b10918035e2a90167e862e3b092c79084f68fabb0e5c2ba0fbef81f6dd37cdcf1e57f364d7273897cb1986659475ddb762958c49ea5829c75f5803984d7f677213412eac09a083d9cb0be53d1992024c147261a5bd1df72c05aa09880747422f3b7276370fc33b49145acabbff989cdcdb379be55c299e34e79d1696c65f1c06773aec498b951197000080b4d817f96e98dd7202c90b28af4526468fa8beb723a18043c70ab03fe60ffed7", 0xb4}], 0x1, 0x0, 0x0, 0x2c}, 0x44084)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)={0x4c, 0x2, 0x6, 0x801, 0xe4340000, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x54, 0x9, 0x6, 0x801, 0x0, 0x0, {0x5}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}, @IPSET_ATTR_PROTO={0x5, 0x7, 0xff}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xa010101}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)

14m28.616926273s ago: executing program 4 (id=6399):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
move_mount(r1, 0x0, r0, 0x0, 0x46)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x22042, 0x0)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, 0x0, 0x1000, 0x0)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xd7)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="38000000100001002bbd7000f4dbdf2500000000", @ANYRES32=r5, @ANYBLOB="0000000008000200"], 0x38}}, 0x40)
sendmmsg$inet_sctp(0xffffffffffffffff, 0x0, 0x0, 0x200000d0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, 0x0, &(0x7f0000001480))
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002380)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r6, &(0x7f0000002400)={0x2020, 0x0, <r7=>0x0}, 0xfffffeef)
write$FUSE_INIT(r6, &(0x7f0000002300)={0x50, 0x0, r7, {0x7, 0x9, 0x0, 0x8695c3813a9bd78d}}, 0x50)
utimensat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
syz_fuse_handle_req(r6, 0x0, 0x0, &(0x7f000000d8c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f000000d540)={0x78, 0x0, 0x0, {0x0, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x3fb, 0x0, 0xc000, 0xffb, 0x0, 0xee00, 0x0, 0x3}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

14m25.913976537s ago: executing program 4 (id=6406):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={0x0, 0x70}}, 0x0)
sendmmsg(r0, &(0x7f0000000180), 0x3ef, 0x0)

14m25.183409835s ago: executing program 4 (id=6407):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x7, @mcast2, 0x7}, 0x1c)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x11, r1, 0x0)
sendto$inet6(r0, &(0x7f0000000140)="1b", 0x1, 0x40800, 0x0, 0x0)

14m24.597072247s ago: executing program 33 (id=6407):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x7, @mcast2, 0x7}, 0x1c)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x11, r1, 0x0)
sendto$inet6(r0, &(0x7f0000000140)="1b", 0x1, 0x40800, 0x0, 0x0)

11.797110525s ago: executing program 6 (id=9108):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
getsockopt$inet_mptcp_buf(r0, 0x11c, 0x3, 0x0, &(0x7f0000000340)=0xa1)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = socket(0x10, 0x3, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r4=>0x0})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r6, 0x0, 0x0, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r6, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x3, 0x0, 0x2, 0x9, 0x100000000000008, 0xfffffffe, 0x3}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r7, &(0x7f0000000500)={0xa, 0xffff, 0x0, @mcast1, 0x9}, 0x1c)
write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000540)=ANY=[@ANYBLOB="7f454c4609035208070000000000000003003e00810000002701000038000000b00100c69280f2ea967f060007000000468320000100000400017f000000000000000070070000000000000058970000070000000b00000000040000000000805d5d93bd9aed8150be245eb57c20275df23dd4c0a790d184cb0fd06fc61360db201ff5e3b747d53373a968d5dff14ccac501f02fe320a27d63cbc8abbc8bee8130a4849dd5bf877e733c6917ea5757bda54eba462981a44f0e8100"/380], 0x1b2)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, &(0x7f00000002c0)={0x0, 0x9, 0x10001, 0x3}, 0x10)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r8, 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000000)='source', &(0x7f0000000180)='4..:\x00\x8e\xf7\xd4\t\xe1\xae\x19\xe5\xf7c\x84\x9c\x06\x00\x00\x00\x11\x01\xf2 \xec\xbe#\'S\xc4\xbd\xb5\x1e\x98MM\x06\x1a\x7f5U\x18\x90\x99\xb2\xfa\')Z\x9ew\xae\xe8\xdd\b\t\xf0\xc4\xbfj\xb6\x88/)~\x93E\x1d4\xa7\xcb\xeb\x0f\xd4(\xb6>\x87\xc3\t\xb0\x80\xf7\xe6\x8b?\xa4\xb3\b\x00\x81\xbe\xea\x1f\xfe\xed\x9d\x1a\x8aQ\xafQ\x06\x0fJ\xc0\xc0=}\x7f\xaeB\xb1\xed\xa4\xf3c#\xbe\b\x1f\xa4L[\xfa\x01Uu\xe0\x8b\x94E\xda\xd9j\x93\xc8~\xd9\x82\x8f\xcam\x17\xa2\xed\xf3\xc3_h\xfc6\t\x96@\xaf\xe6\xd0!)\xc3\xcfe\xe1g\xe7\xe5F\xbdC\xd9$\x9b@\xaf\xc2j1p\xa9\xb2d\x92\x8fo\xcbg\x9fZ\xd7\xef\xb2z\xf5\x0fq\x7f\b\xc2\xa7\x90\xc5\xf5Y\xbc\xf1s\x93X\xb6\xeb\x86&\xa7\x14%B', 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xffff}, {0xffff, 0xffff}, {0x0, 0x10}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x400, 0xffffffff, 0x1, 0x0, 0x10000}, 0x2, 0x0, 0x0, 0x0, 0x0, 0x13, 0x3, 0x14, 0x0, 0xffffca21}}}]}, 0x78}}, 0x14)
bind$alg(r1, &(0x7f0000000540)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)

9.414343207s ago: executing program 5 (id=9117):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_SETINTERFACE(r1, 0x80085504, &(0x7f0000000180))
socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001480)={&(0x7f0000000040)=ANY=[], 0x64}}, 0x0)
sendmsg(r3, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
r4 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', 0x0)
r5 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x41, 0x0)
write$nbd(r5, &(0x7f0000000240)={0x1000000, 0x0, 0x2, 0xffff, 0x3, "82b0cfc4337965941538be02000000000000000000007400"}, 0x28)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r6, &(0x7f0000000380)=[{&(0x7f0000033a80)=""/102385, 0x18ff1}], 0x1, 0x0, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r4, 0x7a7, &(0x7f0000000100)=0x80000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r6, 0x7a0, &(0x7f0000000140)={@my=0x1})
ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, &(0x7f00000000c0)=0xb0000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

8.815937786s ago: executing program 6 (id=9119):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = syz_open_dev$usbfs(&(0x7f0000000140), 0x77, 0x1501)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000040)=@urb_type_control={0x2, {}, 0xffffffff, 0x41, &(0x7f00000004c0)={0x4b5a9da54893e123, 0xf, 0x4, 0x4000, 0x3}, 0x26, 0x200, 0x8, 0x0, 0x0, 0x6, 0x0})
r1 = fanotify_init(0x200, 0x40000)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)
fanotify_mark(r1, 0x101, 0x48001051, r2, 0x0)
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000080)=@usbdevfs_disconnect={0x4})
syz_extract_tcp_res$synack(&(0x7f0000000000)={0x41424344, <r3=>0x41424344}, 0x1, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@local, @dev, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, r3, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)

8.642409407s ago: executing program 2 (id=9120):
openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
ptrace$getregset(0x4205, r0, 0x2, &(0x7f0000000080)={&(0x7f0000000000)=""/120, 0x78})
ptrace$getregset(0x4204, r0, 0x2, &(0x7f0000000740)={0x0})

8.321154346s ago: executing program 6 (id=9121):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f0000000340)={0x80, 0x40000094, 0x0, 0x0})
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e9"], 0x0)
write$binfmt_script(r4, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000003c0)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
prlimit64(0x0, 0x7, &(0x7f0000000180)={0x2, 0x3}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c0006000000000000000000000000000400"], 0x1c}}, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000ec0))
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r6)
syz_usb_connect(0x4, 0x4a1, &(0x7f0000000500)={{0x12, 0x1, 0x310, 0x22, 0x4d, 0xe8, 0x28, 0x2c7c, 0x12b, 0x53c7, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48f, 0x1, 0xb, 0x2a, 0x40, 0x9, [{{0x9, 0x4, 0x53, 0x7f, 0x7, 0xff, 0x0, 0x40, 0x2, [@generic={0xdf, 0x1, "460f23159c32f82d557f93b47c7c97b39d1ebf22a05293eb1315b43f47f18ad9f8d02e27b2f3a963f436904ca940be0f06fcf1fdb7b9594da946f97055f96032e504f6e49cc9d579d744d4ead2eb1628f5244bdc1b8858e6d90ba199a2756586bb594bad6aafcb84c1797bf56ac6afc9c400d42b24c0913dbd9ab5393062ff2bd476189daf5ae5e2d106e1860af47a568d375a9448252cbb86a7c137c8cc9f419119e3bdf352e711bc1daa398685227720a775187f64707710b4c64e7b992b83b8fcd1a590d447d712399215c0c26a28d23d613d0e80b516d57bfe01b6"}, @cdc_ncm={{0x6, 0x24, 0x6, 0x0, 0x1, "8c"}, {0x5, 0x24, 0x0, 0x1000}, {0xd, 0x24, 0xf, 0x1, 0x400, 0x8, 0x1, 0x2c}, {0x6, 0x24, 0x1a, 0xff}, [@mdlm={0x15}, @mdlm={0x15, 0x24, 0x12, 0x76}, @mdlm={0x15, 0x24, 0x12, 0x600}, @obex={0x5, 0x24, 0x15, 0x87a}, @mdlm={0x15, 0x24, 0x12, 0xc6}]}], [{{0x9, 0x5, 0xb, 0x3, 0x200, 0x8, 0x0, 0x3, [@generic={0x30, 0x4, "3e0fa76a979c672ce837a98240a91b45106b6130c105d9ad0fcd172ff758d09e70f662c1ae532468773b1308aeb5"}]}}, {{0x9, 0x5, 0xb, 0x10, 0x8, 0x4, 0x2, 0x2, [@generic={0x60, 0x21, "48388d4763b9d3b9e163aa156962cf0225d0fec4b0bda079de2751e267f18af78655ffd39fe54584abf72d9926e41ef249d57982017062cac92da530264bdbde74cb91de5e1a555cc5f320bd53705a9dd5efb795d312459cc4e6be2e7546"}]}}, {{0x9, 0x5, 0x5, 0x0, 0x40, 0x0, 0x10, 0x2}}, {{0x9, 0x5, 0x7, 0x4, 0x3ff, 0x2, 0xd, 0x26, [@generic={0xd6, 0x3, "fd3f4fb78e23b9285393280b97a2d4317fc6fd340561badac7f28270b76e705ec2654155b68dad389a24168c2916f42697ddc40980f0e4a62c40fae02de3379fc2294aef33f0d6061712db2f4999fb5f8218647590573c6a50b8ecdd5839b2a51fc76571411bea3ce4e4df7607d1b506035f60826bae96ee42394983210bfc72778b56ba1efc6a0a28aaac135be2e6f5be361ec3d4731169443c35ea33dc1e4f5548014ef9190d1124ae10763708d1e6d2ef221e16b8af9d81f2aea66515a8236a743048afb7cf38eeacf77b4c1f7f4c6df89157"}]}}, {{0x9, 0x5, 0x1, 0x4, 0x400, 0xf7, 0x0, 0x6, [@generic={0x81, 0xc, "1dbac5f68f827f69bd65d97326795202b01d7d0a3335d16bb44d25d81eeda2cc0658eee4bd8672de1f2034919736b136e9d6e4e38cf964a77add72623d6895ef5a2a51ca79e61ddf32c0a113922399267ec281dac56a95436902ab4a05cec5c3912c9266916a115e4a5fcb5e051c785efcc066a90842b28561e42f6ed009dd"}, @generic={0xf5, 0x5, "edfa176fc19044718843fd0f51787b79db9ae36eed18697120d38264bdb4c11124414a2dc98402880b6f09794f752c83028682e28626549a341c77c3710e416b201a1e603685d7e97291002c0718093517cef46939e1054f30ae5f408e5f6cd61706a26ccc313d9d694e6cb5b0d57e103cf3ad81948d182ad4adfecef642f7f679d07c2ace43d4fab97210da834900dd1d3eac1c6f4738bfefc696dcac807afbba41ce84d647a9e2c6743ce22a6718e3e1c4281000cad67606b42e70c5ebd2ea3c2c36c4d95dad76cfff3ae3594ce1ed4b823b7c8e49938a27bfa10bfa525c9d0f41a95263d82987ed1724559dfe343e43de11"}]}}, {{0x9, 0x5, 0xe, 0x0, 0x40, 0x5, 0xc6, 0xa, [@generic={0xc, 0x6, "812818b483f7f07e5cb2"}]}}, {{0x9, 0x5, 0xa, 0x2, 0x3ff, 0xd, 0x2, 0x2}}]}}]}}]}}, &(0x7f0000000c00)={0xa, &(0x7f00000002c0)={0xa, 0x6, 0x0, 0x6, 0x6, 0xb, 0x20, 0x5}, 0x1c, &(0x7f0000000380)={0x5, 0xf, 0x1c, 0x2, [@ssp_cap={0x14, 0x10, 0xa, 0x9, 0x2, 0x0, 0x780, 0xfffb, [0x7e3c5ab184c2c1be, 0xffc000]}, @ptm_cap={0x3}]}, 0x4, [{0x4, &(0x7f0000000480)=@lang_id={0x4, 0x3, 0x425}}, {0xd0, &(0x7f00000009c0)=@string={0xd0, 0x3, "80e95fa90187b3dd651eff08f7de728e57f8a0fa47273960db2d2b4c564e8ceb7c1bb0c2bae8d6b4b8c8d5ba47307a4a1de0862e9bd51b1a7d7eba599489c53173dbcb4aaab05cafa2079b963a443cab3e2f24c8525c668170507bf68d460508122471125e6312a3f535159dc1290ad2d0d0c51e2eeeba2963edba4c11406e06b58ed557de9826eb6d9cdba8a7da365ebd5b149f1c1b490f332ce6cbd1a4ca4ceefe19ad07d071b8b4bed23a3bb3c2d1fe9959343f0d52bcb85ca5c456fd3490b9f22acdf189933a0f2714bcb1d5"}}, {0x4, &(0x7f0000000ac0)=@lang_id={0x4, 0x3, 0x843}}, {0xff, &(0x7f0000000b00)=@string={0xff, 0x3, "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"}}]})

8.3203616s ago: executing program 2 (id=9122):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x4000000004882, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
ioctl$SNDRV_PCM_IOCTL_TTSTAMP(0xffffffffffffffff, 0x40044103, &(0x7f0000000080)=0x5)
mremap(&(0x7f00005a9000/0x4000)=nil, 0x4000, 0x4000, 0x7, &(0x7f0000292000/0x4000)=nil)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
unshare(0x22020400)
fallocate(0xffffffffffffffff, 0x28, 0x2, 0x5)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0xf, 0xfffffffffffffffe}, 0x0)
syz_usb_connect(0x0, 0x5f, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000b1f203401e0903003bd7010203010902"], 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fcntl$lock(r5, 0x24, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r3, 0x8933, &(0x7f00000000c0)={'wg1\x00', <r6=>0x0})
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r7 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r7, 0x10e, 0xc, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000000380)={{r3}, 0x0, 0x4, @unused=[0x2, 0x0, 0x3], @subvolid=0x9})
sendmsg$WG_CMD_SET_DEVICE(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001640)=ANY=[@ANYBLOB='D\n\x00\x00', @ANYRES16=r4, @ANYBLOB="05002abd7000fddbdf2501000000060006004e240000fc0908802804008024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0004098070000080060001000a00000014000200fe80000000000000000000000000000a0500030000000000060001000a00000014000200fe8000000000000000000000000000aa0500030001000000060001000a00000014000200fe8000000000000000000000000000aa0500030003000000a0000080060001000a0000001400020000000000000000000000ffff640101010500030000000000060001000a00000014000200fe8000000000000000000000000000bb0500030002000000060001000200000008000200ac1414aa0500030002000000060001000a00000014000200fc00000000000000000000000000000105000300020000000600010002000000080002000a0101020500030001000000d0000080060001000200000008000200ac1e01010500030000000000060001000a00000014000200000000000000000000000000000000000500030000000000060001000200000008000200ac1414bb0500030006000000060001000a00000014000200fe8000000000000000000000000000420500030001000000060001000a00000014000200fc02000000000000000000000000000105000300020000000600010002000000080002007f0000010500030002000000060001000200000008000200000000000500030002000000ac000080060001000200000008000200ac1414aa0500030001000000060001000a00000014000200fc00000000000000000000000000000005000300020000000600010002000000080002000a01010105000300000000000600010002000000080002007f0000010500030001000000060001000200000008000200e00000010500030001000000060001000a0000001400020020010000000000000000000000000001050003000200000064000080060001000a00000014000200fe8000000000000000000000000000bb0500030001000000060001000a00000014000200ff0100000000000000000000000000010500030002000000060001000200000008000200ac1414aa05000300000000000c010080060001000200000008000200000000000500030001000000060001000a00000014000200fe8000000000000000000000000000410500030003000000060001000a00000014000200ff0100000000000000000000000000010500030000000000060001000a00000014000200fc0100000000000000000000000000010500030000000000060001000a00000014000200fc0200000000000000000000000000000500030003000000060001000200000008000200ac1414aa0500030003000000060001000a00000014000200fc0200000000000000000000000000010500030001000000060001000a00000014000200fe80000000000000000000000000002b050003000200000040000080080003000000000008000a000100000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b392208000300030000008c00008024000100975c9d81c983c8209ee781254b899f8ed925ae9f0923c23c62f53c57cdbf691c24000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b392208000a000100000024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b1400040002004e22000000000000000000000000040500807002098094000080060001000a00000014000200000000000000000000000000000000000500030002000000060001000200000008000200ffffffff0500030000000000060001000200000008000200e000000105000300020000000600010002000000080002007f0000010500030002000000060001000a000000140002000000000000000000000000000000000105000300010000004c000080060001000200000008000200ac1414bb0500030002000000060001000200000008000200640100fe0500030001000000060001000200000008000200ac1414bb0500030002000000e8000080060001000a00000014000200200100000000000000000000000000010500030000000000060001000200000008000200e000000205000300020000000600010002000000080002006401010005000300020000000600010002000000080002007f00000105000300010000000600010002000000080002007f0000010500030001000000060001000a00000014000200fe8000000000000000000000000000bb0500030002000000060001000200000008000200e00000010500030003000000060001000a00000014000200200100000000000000000000000000020500030001000000880000800600010002000000080002000000000005000300000000000600010002000000080002006401010205000300000000000600010002000000080002007f0000010500030003000000060001000a00000014000200200100000000000000000000000000000500030001000000060001000200000008000200ac14142d05000300010000001c000080060001000200000008000200ffffffff0500030003000000080003000200000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b39221c02098058000080060001000200000008000200000000000500030003000000060001000200000008000200ac1414aa0500030001000000060001000a00000014000200fe880000000000000000000000000101050003000100000040000080060001000200000008000200ac1e00010500030001000000060001000a0000001400020000000000000000000000ffff0a010102050003000300000000010080060001000200000008000200ac1e00010500030000000000060001000a00000014000200fe8800000000000000000000000000010500030003000000060001000200000008000200000000000500030002000000060001000200000008000200ffffffff0500030000000000060001000a00000014000200ff0200000000000000000000000000010500030000000000060001000a00000014000200200100000000000000000000000000010500030003000000060001000200000008000200e000000105000300000000000600010002000000080002007f00000105000300020000000600010002000000080002000a010100050003000000000064000080060001000200000008000200ac1414aa0500030000000000060001000a00000014000200fe8000000000000000000000000000aa0500030000000000060001000a000000140002002001000000000000000000000000000205000300010000001c000080060001000200000008000200ac141416050003000100000024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b240002000f1b8b82264208ab1a2dce776c03b9f348f500ef8e7606466943f5ba2ae2881e08000100", @ANYRES32=r6, @ANYBLOB="240003"], 0xa44}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
syz_open_dev$sndctrl(&(0x7f0000000040), 0xddcd, 0xc4000)
io_setup(0x1, &(0x7f00000004c0)=<r8=>0x0)
io_submit(r8, 0xf3, &(0x7f00000000c0)=[&(0x7f0000000140)={0x3a0012fb, 0x2759, 0x7, 0x1, 0x0, r0, &(0x7f0000000000)="98", 0x3e8000072a, 0x1000000, 0x0, 0x10}])

6.563442626s ago: executing program 6 (id=9124):
sendmsg$SOCK_DESTROY(0xffffffffffffffff, 0x0, 0x4000084)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000ac0)=@delqdisc={0x144, 0x25, 0x100, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xa, 0x8}, {0xfff3, 0x8}, {0xffff, 0xd}}, [@TCA_STAB={0xf4, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x1c, 0xfc, 0xffe3, 0x7252, 0x0, 0x2, 0x5, 0x5}}, {0xe, 0x2, [0x32, 0x3, 0xfff7, 0x8, 0x3]}}, {{0x1c, 0x1, {0x3, 0xb1, 0x9, 0xedd, 0x0, 0xb1a8, 0x8, 0x3}}, {0xa, 0x2, [0x4, 0x4, 0x0]}}, {{0x1c, 0x1, {0xe, 0x5, 0x6, 0x81, 0x1, 0x4, 0x3, 0x3}}, {0xa, 0x2, [0xfff1, 0x1ff, 0x4]}}, {{0x1c, 0x1, {0x5, 0x7, 0x2, 0xecc7, 0x1, 0x149, 0x8d2, 0x1}}, {0x6, 0x2, [0x9]}}, {{0x1c, 0x1, {0x2, 0x18, 0x8, 0xe, 0x2, 0x8001, 0xff, 0x5}}, {0xe, 0x2, [0x47b, 0x7, 0x800, 0x0, 0x81]}}, {{0x1c, 0x1, {0x81, 0x5, 0x800, 0x6, 0x2, 0x3, 0x3ff, 0x1}}, {0x6, 0x2, [0x2]}}]}, @TCA_RATE={0x6, 0x5, {0x71, 0x1}}, @qdisc_kind_options=@q_choke={{0xa}, {0x18, 0x2, [@TCA_CHOKE_PARMS={0x14, 0x1, {0x9, 0x8de, 0x6, 0x1, 0xb, 0x5, 0x8}}]}}]}, 0x144}, 0x1, 0x0, 0x0, 0x81}, 0x20000080)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})

6.276854168s ago: executing program 6 (id=9125):
socket$inet6(0xa, 0x80002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000000740)=""/14, 0xfef9)
r1 = openat$binfmt_format(0xffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
munmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000)
mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x0, 0x24132, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
memfd_secret(0x0)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00"], 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0xc2882, 0x0)
r4 = fsopen(&(0x7f0000000040)='afs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000000)='source', &(0x7f0000000180)='%(,c\xbe\xfbL:', 0x0)
r5 = fsopen(&(0x7f0000000040)='afs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000000)='source', &(0x7f00000000c0)='%.,:', 0x0)
mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000003)
write$binfmt_format(r1, &(0x7f0000000100)='-1\x00', 0x2)

5.528546853s ago: executing program 3 (id=9126):
r0 = add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)="ae", 0x35, 0xffffffffffffffff)
keyctl$describe(0x6, r0, &(0x7f00000020c0)=""/4093, 0xffd)

5.355601693s ago: executing program 5 (id=9128):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r2, &(0x7f0000005140)=[{{&(0x7f0000000240)={0xa, 0x4e20, 0x8, @remote, 0x4}, 0x1c, &(0x7f0000000200)=[{&(0x7f00000004c0)="f3", 0x1}], 0x1}}, {{&(0x7f0000000040)={0xa, 0x4e24, 0x8, @private2={0xfc, 0x2, '\x00', 0x1}, 0x2}, 0x1c, &(0x7f0000000600)=[{&(0x7f0000000080)="fdd0", 0x2}], 0x1}}, {{&(0x7f0000000000)={0xa, 0x4e22, 0x8, @local, 0x5}, 0x1c, &(0x7f0000000740)=[{&(0x7f00000000c0)="2b923eeeac", 0x5}], 0x1}}], 0x3, 0x4000841)
listen(r2, 0x2000fff)
accept(r2, 0xfffffffffffffffd, &(0x7f0000000180))
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400ffeb", @ANYRES16=r3, @ANYBLOB="000425bd7000fedbdf254a0000000e00a80066697273746e616d6500000008000300030000000800030003000000"], 0x34}, 0x1, 0x0, 0x0, 0xc0c0}, 0x40080)
msync(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x5)
syz_io_uring_setup(0x10c7, &(0x7f0000000280)={0x0, 0xd36, 0x87cd692d52bd932e, 0x1, 0x32e, 0x0, r2}, &(0x7f0000000300), &(0x7f0000000340))
ioctl$VIDIOC_DV_TIMINGS_CAP(r0, 0xc0905664, &(0x7f0000000140)={0x0, 0x0, '\x00', @raw_data=[0x5c7, 0x5a, 0x800, 0x5, 0x4, 0x6, 0x6, 0xffff, 0x5, 0x7, 0x3, 0x5, 0x2, 0x80000000, 0x1, 0x9, 0x80000000, 0x8, 0xb, 0x456d, 0x0, 0x6, 0x4, 0x0, 0xf4, 0xfffffffd, 0x2, 0x5, 0x8, 0x7, 0x3, 0x5]})
syz_usb_connect$cdc_ncm(0xd, 0x163, &(0x7f0000000780)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0xff, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x151, 0x2, 0x1, 0x1, 0x20, 0x8, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x7, 0x24, 0x6, 0x0, 0x1, "4fe9"}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0x3, 0x0, 0x2, 0x3}, {0x6, 0x24, 0x1a, 0x9, 0x4}, [@mdlm_detail={0xb9, 0x24, 0x13, 0x8, "1c407a9ba0f5036bb4e5259e801ad56910e4d5fca5ffb3ebaa89308bfa19544d8069d130033436f9e5c002d5852b04050292ae5a78893d70823c6dc0437b771e647a5d67c0ea488760065bc3924e71ea92b29754bbce7683dae30ccbaac2ff693d72806c912db8493ba02a818c2542193c0ecc9269fe4b8bb673126dfec31f3827ff2d166af6dab811f328cd1fec33d5526982a6ea192201388ecd98d0f95c2007d2584064645b128bcb05789c631ec2d48115da1d"}, @acm={0x4, 0x24, 0x2, 0x9}, @call_mgmt={0x5, 0x24, 0x1, 0x1, 0x40}, @mdlm={0x15, 0x24, 0x12, 0x80}, @network_terminal={0x7, 0x24, 0xa, 0x0, 0xb, 0x5, 0x2}, @mdlm={0x15, 0x24, 0x12, 0xfffe}]}, {{0x9, 0x5, 0x81, 0x3, 0x40, 0x7, 0x9, 0x6}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x10, 0x6, 0x6, 0x1}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0x1, 0xca, 0x8}}}}}}}]}}, &(0x7f0000000480)={0xa, &(0x7f0000000380)={0xa, 0x6, 0x310, 0x5e, 0xc, 0x9, 0x40, 0x8}, 0x23, &(0x7f00000003c0)={0x5, 0xf, 0x23, 0x2, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x6, 0x7, 0x48, 0x5}, @ss_container_id={0x14, 0x10, 0x4, 0x9, "3fc4ce13bc2e0f92d7c17ab37a5d579a"}]}, 0x2, [{0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x412}}, {0x1d, &(0x7f0000000440)=@string={0x1d, 0x3, "82d0cb4cd157375d8304625ab1b22a245b20577d52edd41173530b"}}]})
prctl$PR_GET_CHILD_SUBREAPER(0x25)

5.302289818s ago: executing program 3 (id=9129):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x80, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x6, 0x4, 0x1, 0x1, r2, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
write$UHID_INPUT(r1, &(0x7f0000000400)={0x8, {"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", 0x1000}}, 0x1006)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x8, 0x0, 0x0, 0x0, 0xe, 0x1c, "fee8a2ab780e00001ea8ffffffff0000000000000004ddb49a000000000000000000f8ff000800000000000000000000000000001400", "2809e8dbe108598948f8ffd54a07c21d875397bdb22d0008b420a1819e01177d3d458dd4992861ac00000080ffffffffffffffff001700", "90be8bf4bd00000000000000000000000000001000"}})

5.141012757s ago: executing program 3 (id=9130):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$RTC_ALM_READ(0xffffffffffffffff, 0x80247008, &(0x7f0000000040))
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r1=>0x0})
set_mempolicy(0x4005, 0x0, 0x2)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
connect(r3, &(0x7f0000000080)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x3f}}, 0x4, 0x2, 0x1, 0x3}}, 0x80)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000001040)={'ip_vti0\x00', &(0x7f0000001000)={'syztnl2\x00', <r4=>0x0, 0x0, 0xa000, 0x0, 0x6c, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x78, 0x0, 0x0, 0x4, 0x0, @empty, @rand_addr=0x3}}}})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000000780)={'syztnl2\x00', &(0x7f0000000340)={'syztnl2\x00', r4, 0x7800, 0x1, 0x8, 0x6, {{0x5, 0x4, 0x1, 0x3b, 0x14, 0x65, 0x0, 0xea, 0x2f, 0x0, @private=0xa010100, @multicast2}}}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000001, 0x8031, 0xffffffffffffffff, 0x4000)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)={0x34, 0x0, 0x1, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x1, 0x7d}}}}, [@NL80211_ATTR_SCAN_FREQUENCIES={0xc, 0x2c, 0x0, 0x1, [{0x8, 0x0, 0x6}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x14001}, 0x9590f6cc3ea35512)

4.598013637s ago: executing program 2 (id=9131):
ioctl$IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, &(0x7f0000000000)={@local, 0x1})
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
timer_create(0x0, 0x0, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/58, 0x328000, 0xc00, 0xb, 0x1}, 0x20)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x2, 0x6, 0x801, 0x0, 0x0, {0xa, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x6}, @IPSET_ATTR_REVISION={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008850}, 0x40)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
r3 = syz_open_dev$evdev(&(0x7f0000000180), 0x0, 0x0)
ioctl$EVIOCSKEYCODE_V2(r3, 0x80104592, &(0x7f0000000200)={0x0, 0x2, 0x0, 0x1000101, "0020946fc67f0000201b14700c1e0ac74f000000001600000000000900"})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r5 = dup3(r4, r0, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f00005c9000/0x2000)=nil, 0x2000, 0x1, 0x11, r6, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, &(0x7f0000000140)={0x73622a85, 0x10a, 0x4})
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000440)={@flat=@weak_binder={0x77622a85, 0x1000, 0x2}, @flat=@binder={0x73622a85, 0xa, 0x1}, @flat=@weak_binder={0x77622a85, 0x100, 0x1}}, &(0x7f0000000240)={0x0, 0x18, 0x30}}, 0x1000}], 0x0, 0x0, 0x0})
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r8, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r9=>0x0}, &(0x7f0000000300)=0x8)
setsockopt$inet_sctp_SCTP_CONTEXT(r7, 0x84, 0x83, &(0x7f0000000140)={r9}, 0x8)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4-generic)\x00'}, 0x58)

4.471398515s ago: executing program 5 (id=9133):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
r1 = syz_open_dev$usbfs(0x0, 0x76, 0x101301)
ioctl$USBDEVFS_SETINTERFACE(r1, 0x80085504, &(0x7f0000000180))
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001480)={&(0x7f0000000040)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0], 0x64}}, 0x0)
sendmsg(r3, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', 0x0)
renameat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00')
write$nbd(0xffffffffffffffff, &(0x7f0000000240)={0x1000000, 0x0, 0x2, 0xffff, 0x3, "82b0cfc4337965941538be02000000000000000000007400a391793ba7f40000000000fdf700"/48}, 0x40)
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r4, &(0x7f0000000380)=[{&(0x7f0000033a80)=""/102385, 0x18ff1}], 0x1, 0x0, 0x0)

4.209366627s ago: executing program 1 (id=9134):
r0 = socket$inet(0xa, 0x801, 0x84)
listen(r0, 0xfffffffd)
r1 = socket$netlink(0x10, 0x3, 0x4)
r2 = syz_open_dev$vbi(&(0x7f0000000000), 0x2, 0x2)
ioctl$VIDIOC_DQBUF(r2, 0xc0585611, &(0x7f0000000080)=@overlay={0x8adc, 0x8, 0x4, 0x10000, 0x3, {}, {0x0, 0x8, 0xf, 0x45, 0x7, 0x0, "e77722dd"}, 0x3, 0x3, {}, 0x80000000})
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84476080ffe00600000001590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x40b}], 0x1)
r3 = syz_open_dev$sg(&(0x7f0000000040), 0x9, 0x38801)
ioctl$SG_BLKTRACETEARDOWN(r3, 0x1276, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x40001, 0x0)

3.915926395s ago: executing program 1 (id=9135):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, 0x0)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000080), 0xfffffebe}], 0x1)

3.667577971s ago: executing program 1 (id=9136):
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) (async)
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f00000001c0)=0x2001)
fcntl$dupfd(r0, 0x0, r0) (async)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$sndseq(r1, &(0x7f0000000180)=[{0xff, 0x0, 0x0, 0x0, @tick=0x4, {}, {}, @result={0x1, 0x2}}, {0x0, 0x0, 0xff, 0x3, @tick=0xf27, {0x1}, {}, @addr={0x2a, 0x5}}], 0x38)
readv(r1, &(0x7f0000000000)=[{&(0x7f0000001140)=""/136, 0x88}], 0x1)
setsockopt$inet_mreq(r1, 0x0, 0x23, &(0x7f0000000000)={@private=0xa010101, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x8)
syz_emit_ethernet(0xfdef, &(0x7f0000000240)=ANY=[@ANYBLOB="ffffffffffffbbbbbbbbbbbb86dd603cf72f4496880020010000000000000000000000000002fe8000000000000000000000000000aa000000", @ANYRES32=0x41424344], 0x0)

3.568993538s ago: executing program 3 (id=9137):
r0 = syz_open_dev$sndctrl(&(0x7f0000000180), 0x2, 0x0)
r1 = syz_io_uring_setup(0x18d7, &(0x7f0000000040)={0x0, 0x0, 0x2, 0x0, 0x25b}, &(0x7f0000ffe000), &(0x7f0000ffe000))
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r1, 0x2, &(0x7f0000000180), 0x100000)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11}, &(0x7f0000000000))
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r3, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r4, &(0x7f0000000500)={0xa, 0xffff, 0x0, @ipv4={'\x00', '\xff\xff', @local}, 0x9}, 0x1c)
r5 = socket$netlink(0x10, 0x3, 0x6)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt(r6, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
sendto$inet6(r6, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r6, 0x84, 0x17, &(0x7f0000000180)=ANY=[], 0x9)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r6, 0x84, 0x18, &(0x7f0000000300), 0x8)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r0, 0xc0045543, &(0x7f0000000d40)=0xb)

3.531941088s ago: executing program 1 (id=9138):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_SETINTERFACE(r1, 0x80085504, &(0x7f0000000180))
socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001480)={&(0x7f0000000040)=ANY=[], 0x64}}, 0x0)
sendmsg(r3, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
r4 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', 0x0)
r5 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x41, 0x0)
write$nbd(r5, &(0x7f0000000240)={0x1000000, 0x0, 0x2, 0xffff, 0x3, "82b0cfc4337965941538be02000000000000000000007400a391793ba7f40000000000fd"}, 0x34)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r6, &(0x7f0000000380)=[{&(0x7f0000033a80)=""/102385, 0x18ff1}], 0x1, 0x0, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r4, 0x7a7, &(0x7f0000000100)=0x80000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r6, 0x7a0, &(0x7f0000000140)={@my=0x1})
ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, &(0x7f00000000c0)=0xb0000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

3.414197183s ago: executing program 5 (id=9139):
r0 = add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)="ae", 0x35, 0xffffffffffffffff)
keyctl$describe(0x6, r0, &(0x7f00000020c0)=""/4093, 0xffd)

3.387026114s ago: executing program 2 (id=9140):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x400, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_CAP_X2APIC_API(r3, 0x4068aea3, &(0x7f0000000000)={0x81, 0x0, 0x3})
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
ioctl$KVM_SIGNAL_MSI(r3, 0x4020aea5, &(0x7f0000000640)={0x81aa001, 0x3000, 0x40, 0x1, 0x3})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x1fd, 0x1, 0x8080000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
unshare(0x22020600)
r4 = timerfd_create(0x0, 0x800)
timerfd_settime(r4, 0x3, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000fa2000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x0, 0x1000, 0x2000, &(0x7f0000fa2000/0x2000)=nil})

3.144191604s ago: executing program 5 (id=9141):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x400000000, &(0x7f0000000300)={<r1=>0xffffffffffffffff}, 0x13f, 0x9}}, 0x20)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r2, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x2)
r10 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r10, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r11=>0x0})
bind$can_j1939(r10, &(0x7f0000000100)={0x1d, r11, 0x1}, 0x18)
sendmsg$kcm(r10, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)='$-', 0x2}, {0x0, 0x2}], 0x2}, 0x40014)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000003, 0x13, r9, 0x0)
ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, 0x0)
ioctl$KVM_SET_REGS(r9, 0x4090ae82, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$KVM_CAP_HYPERV_ENLIGHTENED_VMCS(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000280)={0xa3, 0x0, 0x0})
r12 = fanotify_init(0x200, 0x101000)
readv(r12, &(0x7f00000001c0)=[{&(0x7f0000000080)=""/136, 0x88}], 0x1)
write$RDMA_USER_CM_CMD_NOTIFY(r0, &(0x7f0000000080)={0xf, 0x8, 0xfa00, {r1, 0x9}}, 0x10)

2.643464491s ago: executing program 2 (id=9142):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4-generic)\x00'}, 0x58)
r1 = syz_open_dev$video4linux(&(0x7f0000000ac0), 0x6, 0x0)
r2 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_ENUM_FRAMESIZES(r2, 0xc02c564a, &(0x7f0000000040)={0x5, 0x20363059, 0x3, @stepwise={0x280, 0xa, 0x3, 0x9, 0xe194, 0x6}})
fcntl$getownex(r1, 0x10, &(0x7f0000000080)={0x0, <r3=>0x0})
fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f00000000c0)={0x0, 0x4, 0x888, 0x7, r3})
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='net\x00')
getdents64(r4, &(0x7f00000010c0)=""/4067, 0xfe3)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42400)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fcntl$setstatus(r5, 0x4, 0x2400)
r6 = open$dir(&(0x7f0000000180)='./file0\x00', 0x20007e, 0x0)
fcntl$setstatus(r6, 0x4, 0x42400)
close(0x3)

1.96089064s ago: executing program 6 (id=9143):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x4000000004882, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
ioctl$SNDRV_PCM_IOCTL_TTSTAMP(0xffffffffffffffff, 0x40044103, &(0x7f0000000080)=0x5)
mremap(&(0x7f00005a9000/0x4000)=nil, 0x4000, 0x4000, 0x7, &(0x7f0000292000/0x4000)=nil)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
unshare(0x22020400)
fallocate(0xffffffffffffffff, 0x28, 0x2, 0x5)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0xf, 0xfffffffffffffffe}, 0x0)
syz_usb_connect(0x0, 0x5f, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000b1f203401e0903003bd7010203010902"], 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fcntl$lock(r5, 0x24, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r3, 0x8933, &(0x7f00000000c0)={'wg1\x00', <r6=>0x0})
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r7 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r7, 0x10e, 0xc, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000000380)={{r3}, 0x0, 0x4, @unused=[0x2, 0x0, 0x3], @subvolid=0x9})
sendmsg$WG_CMD_SET_DEVICE(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001640)=ANY=[@ANYBLOB='D\n\x00\x00', @ANYRES16=r4, @ANYBLOB="05002abd7000fddbdf2501000000060006004e240000fc0908802804008024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0004098070000080060001000a00000014000200fe80000000000000000000000000000a0500030000000000060001000a00000014000200fe8000000000000000000000000000aa0500030001000000060001000a00000014000200fe8000000000000000000000000000aa0500030003000000a0000080060001000a0000001400020000000000000000000000ffff640101010500030000000000060001000a00000014000200fe8000000000000000000000000000bb0500030002000000060001000200000008000200ac1414aa0500030002000000060001000a00000014000200fc00000000000000000000000000000105000300020000000600010002000000080002000a0101020500030001000000d0000080060001000200000008000200ac1e01010500030000000000060001000a00000014000200000000000000000000000000000000000500030000000000060001000200000008000200ac1414bb0500030006000000060001000a00000014000200fe8000000000000000000000000000420500030001000000060001000a00000014000200fc02000000000000000000000000000105000300020000000600010002000000080002007f0000010500030002000000060001000200000008000200000000000500030002000000ac000080060001000200000008000200ac1414aa0500030001000000060001000a00000014000200fc00000000000000000000000000000005000300020000000600010002000000080002000a01010105000300000000000600010002000000080002007f0000010500030001000000060001000200000008000200e00000010500030001000000060001000a0000001400020020010000000000000000000000000001050003000200000064000080060001000a00000014000200fe8000000000000000000000000000bb0500030001000000060001000a00000014000200ff0100000000000000000000000000010500030002000000060001000200000008000200ac1414aa05000300000000000c010080060001000200000008000200000000000500030001000000060001000a00000014000200fe8000000000000000000000000000410500030003000000060001000a00000014000200ff0100000000000000000000000000010500030000000000060001000a00000014000200fc0100000000000000000000000000010500030000000000060001000a00000014000200fc0200000000000000000000000000000500030003000000060001000200000008000200ac1414aa0500030003000000060001000a00000014000200fc0200000000000000000000000000010500030001000000060001000a00000014000200fe80000000000000000000000000002b050003000200000040000080080003000000000008000a000100000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b392208000300030000008c00008024000100975c9d81c983c8209ee781254b899f8ed925ae9f0923c23c62f53c57cdbf691c24000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b392208000a000100000024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b1400040002004e22000000000000000000000000040500807002098094000080060001000a00000014000200000000000000000000000000000000000500030002000000060001000200000008000200ffffffff0500030000000000060001000200000008000200e000000105000300020000000600010002000000080002007f0000010500030002000000060001000a000000140002000000000000000000000000000000000105000300010000004c000080060001000200000008000200ac1414bb0500030002000000060001000200000008000200640100fe0500030001000000060001000200000008000200ac1414bb0500030002000000e8000080060001000a00000014000200200100000000000000000000000000010500030000000000060001000200000008000200e000000205000300020000000600010002000000080002006401010005000300020000000600010002000000080002007f00000105000300010000000600010002000000080002007f0000010500030001000000060001000a00000014000200fe8000000000000000000000000000bb0500030002000000060001000200000008000200e00000010500030003000000060001000a00000014000200200100000000000000000000000000020500030001000000880000800600010002000000080002000000000005000300000000000600010002000000080002006401010205000300000000000600010002000000080002007f0000010500030003000000060001000a00000014000200200100000000000000000000000000000500030001000000060001000200000008000200ac14142d05000300010000001c000080060001000200000008000200ffffffff0500030003000000080003000200000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b39221c02098058000080060001000200000008000200000000000500030003000000060001000200000008000200ac1414aa0500030001000000060001000a00000014000200fe880000000000000000000000000101050003000100000040000080060001000200000008000200ac1e00010500030001000000060001000a0000001400020000000000000000000000ffff0a010102050003000300000000010080060001000200000008000200ac1e00010500030000000000060001000a00000014000200fe8800000000000000000000000000010500030003000000060001000200000008000200000000000500030002000000060001000200000008000200ffffffff0500030000000000060001000a00000014000200ff0200000000000000000000000000010500030000000000060001000a00000014000200200100000000000000000000000000010500030003000000060001000200000008000200e000000105000300000000000600010002000000080002007f00000105000300020000000600010002000000080002000a010100050003000000000064000080060001000200000008000200ac1414aa0500030000000000060001000a00000014000200fe8000000000000000000000000000aa0500030000000000060001000a000000140002002001000000000000000000000000000205000300010000001c000080060001000200000008000200ac141416050003000100000024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b240002000f1b8b82264208ab1a2dce776c03b9f348f500ef8e7606466943f5ba2ae2881e08000100", @ANYRES32=r6, @ANYBLOB="240003"], 0xa44}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
syz_open_dev$sndctrl(&(0x7f0000000040), 0xddcd, 0xc4000)
io_setup(0x1, &(0x7f00000004c0)=<r8=>0x0)
io_submit(r8, 0xf3, &(0x7f00000000c0)=[&(0x7f0000000140)={0x3a0012fb, 0x2759, 0x7, 0x1, 0x0, r0, &(0x7f0000000000)="98", 0x3e8000072a, 0x1000000, 0x0, 0x10}])

1.782048853s ago: executing program 5 (id=9144):
syz_open_procfs$pagemap(0x0, &(0x7f0000000140))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0xfbc6, 0x10100, 0x8000003}, &(0x7f0000000080)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x230}})
add_key$keyring(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0xffffffffffffffff)
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000400)=@newsa={0x1c4, 0x10, 0x633, 0x0, 0x0, {{@in=@dev={0xac, 0x14, 0x14, 0x25}, @in=@initdev={0xac, 0x1e, 0x0, 0x0}}, {@in6=@empty, 0x0, 0x32}, @in6=@empty, {0xfffffffffffffffd, 0x0, 0x0, 0x2dcd}, {}, {}, 0x0, 0x0, 0x2}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @algo_auth={0x89, 0x1, {{'md5\x00'}, 0x208, "fd2f480f2e2ebb04183ebcaed78f40b20e8473b935f6cf6f3d2c402e34b339e1b0cd2b29cd33e8f258cf85e6c1348f664a094fe82198b2247fe438734b6b8a3542"}}]}, 0x1c4}}, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r6)
r7 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r6, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r7, 0x0)
r8 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r8, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r9 = accept(r6, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0xfffffdef}}, 0x1)
recvfrom(r8, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)
sendmsg(r8, &(0x7f00000014c0)={&(0x7f0000001040)=@pppol2tpv3in6={0x18, 0x1, {0x0, r9, 0x1, 0x1, 0x4, 0x4, {0xa, 0x4e23, 0x9f22, @remote, 0x5}}}, 0x80, &(0x7f0000001440)=[{&(0x7f0000001b80)="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", 0x1000}, {&(0x7f00000010c0)="4b561ee26e1ff16618c49f8a0155c8cbc14b821a1110d2", 0x17}, {&(0x7f0000001100)="bc9341b9f8ea2fa79d9ba29a048a0faaa520d20326a2a4954b967f7b56baaedc9fe5653d6c9adeda3825bbbe0273fca141fc2018e1b4a8bd1c437c7f869976f145b8c1fbdba7f5d643b0687c59654353cf39c960360386344a75bc436cc3b4294bd69ba03b39bf59a1eea02013f05204e6bec26831fe172cab531fc632f7f9c235", 0x81}, {&(0x7f00000011c0)="5f02eac11a1585981a2e5fa6ed9becfe91325c6692f72c14da23804864107706f18961b9032ad2d7ee589c5f55aca0ab51b15094be0d47b459cbf718287daca101adbf1feee5b5625fd45fa6139075004567ebbbc71883a16db68efa340a96d4ab25b8c40be6ea2c46da9e2b35a53454", 0x70}, {&(0x7f0000001240)="d7301b1e", 0x4}, {&(0x7f0000001280)="1337c070ecef5a", 0x7}, {&(0x7f00000012c0)="79c23b68e7339a841c47c628574ee9aae21fa9c7b1cf71e406e8d47e22c6acd928a67ad450a9b6dc010d5737fdadfb70a774f043d8ef9cc54933a14b7de7fe2a67a6523c17930998a4b9b0661144aafacc1841d014d27b1895d1f2e9918e11d19201a9234e0f975e27377e1af5d714b6efaa224a926121d058c8f106edae22", 0x7f}, {&(0x7f0000001340)="d68bd8fcd2f9d41bd55f76744cd7b142b39b975699a9344ee889cc3582fea863b87b2f3db6c4ae3668ff0f81480ab236b67a9e60f149ba9cbd51ce8b476999a98538c7a5a158c2f6f6c794fcb039dccf745f15918b916e9d2fdae09ef5395fa44b1087db1ba6ff257d788f78abe8018b3204934f0e746884524b1350fb122e09655f630d17dcba91c366fcbca1b07396209f6ebe74462fd9915ab3db8cf224ae5878fdd8ead934f190ea13a5f82d26baa8b37a68f50cfbe47b", 0xb9}], 0x8}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
sched_setattr(0xffffffffffffffff, &(0x7f00000001c0)={0x38, 0x5, 0x10000071, 0xfffffff7, 0x0, 0x84c7, 0x8222, 0xf00, 0x100, 0x3}, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(0xffffffffffffffff, &(0x7f000000c3c0)={0x2020, 0x0, <r10=>0x0}, 0xfd4b)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, r10, {0x7, 0x1f, 0x0, 0x10400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x20, 0x0, 0x88, {0x0, 0x10}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

1.277445227s ago: executing program 2 (id=9145):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000280), 0xab43)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x40505330, &(0x7f00000001c0)={0x8000fc, 0xfffffff9, 0x2, 0x5, 0x8, 0x81})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REQ_SET_REG(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000426bd7000fedbdf251b00000005009200010000000600210062000000070021006161000005007600000000000500920000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x20044040}, 0x4008014)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_usb_connect$cdc_ecm(0x2, 0x56, &(0x7f0000000040)=ANY=[@ANYBLOB="12011003020000082505a1a440000102030109024400010104d0be0904000702020200040524060000052400681d0d240f010100000007000e00030902070604090503022000010180"], &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x0, 0x0}, {0x0, 0x0}, {0x0, 0x0}]})

911.368109ms ago: executing program 3 (id=9146):
socket$nl_route(0x10, 0x3, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(des3_ede)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ed5696c5820fae0000000000000080beef911d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x80000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x5, 0x3, 0x9fd, 0x84, 0x91, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000000)={r2, 0x0, 0x0, 0x4}, 0x20)
getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000001500)={{{@in=@private, @in6=@private1}}, {{@in6=@ipv4={""/10, ""/2, @loopback}}, 0x0, @in=@empty}}, &(0x7f0000001600)=0xe8)
r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000100)={0x24d, 0x10, 0x0, 0x0, 0x3e, 0x180, 0x8, 0x0, {}, {}, {}, {}, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8})
lstat(&(0x7f0000001640)='./file0\x00', &(0x7f0000001680))
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r6=>0x0})
bind$packet(r4, &(0x7f0000000300)={0x11, 0x63dcbf62d8600606, r6, 0x1, 0x8, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x32}}, 0x14)
bind$packet(r5, &(0x7f0000000100)={0x11, 0x4, r6}, 0x14)
syz_emit_ethernet(0x46, &(0x7f0000000080)=ANY=[], 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000340)={'syz_tun\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r8, {}, {0x7}, {0xfff3}}}, 0x24}}, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000001700), 0x2, 0x800000)
lstat(&(0x7f0000001740)='./file0\x00', &(0x7f0000001780))
getgroups(0x6, &(0x7f0000001800)=[0xffffffffffffffff, 0x0, 0xee00, 0xee01, 0xee01, 0x0])
syz_clone(0x4140900, &(0x7f00000019c0)="ce9a955c94171b5104822014bfb4f026390b46dd668162fe5c18a631b70bc8642d78346782d3255e96144889a779d26c6690fa928126e9f9ea23d09f261570c7011f68aeba0d97c2e9f3fbf9285e96b1c67045173ab6f9292aeba4fcd77f2e290e603ad2f8938780180c4afd197e4713db6bd6c7794fe0a4c875a0401aeeac132348007dbab7040bdea1daeeee39905479edaecd6cc3cefe0ee4456ca3cac2d2388c8fef123037decb8f415e967261cd71d38d", 0xb3, &(0x7f0000001a80), &(0x7f0000001ac0), &(0x7f0000000300)="3eab7ba308ecc729124115fd9375e9a6ec0c275367441cbe2a7ce5588da62c41ddac9df4363745468b8f523979d5c353942a38909c0d522d0ca8ffe4df2b52a295e3dfb1fa756dfec212728b9b4ce7f94cc5826c66908b038dcf4e4abf1ac0d467ce734b2799491c9025ffe2aebf873d5b9362ab844a28801269e4b41cb4e86ec59e8f91ae3a7b7fbd2b4a2eddae5db5cd4e54b0f279595b2a32deb680972e35bf62e5acf1ef1c5f6e488dfbf375584f68ebe47a7dd34e50919b288c4a650db083cd583583ea94160ea82845facc4e16b05d5b015ad945f008ff7cb4ea8fef9136330ba8c656125ef0f8c25671299007e06480c79e0bf8e9a7190cab54860b151d6e7b946d339e4ee17854ae00000000000000")
sendmmsg$unix(r1, &(0x7f0000001940)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x884}}], 0x1, 0x80cc)
socket$nl_route(0x10, 0x3, 0x0)
syz_pidfd_open(0x0, 0x0)

667.025146ms ago: executing program 1 (id=9147):
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f0000000340))
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000480)={0x6, {{0x2, 0x400, @multicast2}}, {{0x2, 0x0, @empty}}}, 0x108)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0xc010)
getsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x30, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_INITMSG(0xffffffffffffffff, 0x84, 0x2, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f00000000c0)={0x3, 0x1000}, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r1, &(0x7f0000007fc0), 0x2d, 0x0)
syz_emit_ethernet(0x2a, &(0x7f00000004c0)={@broadcast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x65, 0x0, 0x0, 0x33, 0x0, @private, @broadcast}, {0x4e20, 0x0, 0x8}}}}}, 0x0)

406.24114ms ago: executing program 1 (id=9148):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0) (async)
r1 = syz_open_dev$loop(&(0x7f0000000140), 0x760, 0xa382) (async)
r2 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5', 0x1)
pwritev(r2, &(0x7f00000000c0)=[{&(0x7f0000000180)='P', 0x1}], 0x1, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2) (async)
sendfile(r1, r1, 0x0, 0x24002de8)
ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f00000001c0)={0x0, {}, 0x0, {}, 0x7fff, 0x4, 0xffffffff, 0x18, "28f5c9ea1f1ae4be4111ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba7663c435aff94793ddd7aae07ef35f17bf01933bdb6fd7ecdd91b59ca8d541", "07a9310978042a8bfe1406584a128d7469166f4f07b84819e7df4af14e1df82d", [0x6, 0x1]}) (async, rerun: 64)
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0) (async, rerun: 64)
socket$nl_audit(0x10, 0x3, 0x9)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) (async)
r3 = socket$rds(0x15, 0x5, 0x0)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, 0x0) (async, rerun: 64)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (rerun: 64)
r4 = dup(0xffffffffffffffff)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c) (async)
r5 = syz_open_dev$video4linux(&(0x7f00000002c0), 0xffffffff, 0xc6803)
ioctl$VIDIOC_TRY_EXT_CTRLS(r5, 0xc0205647, &(0x7f0000000040)={0x980000, 0xfffffffd, 0x7f, 0xffffffffffffffff, 0x0, 0x0}) (async)
syz_io_uring_submit(0x0, 0x0, 0x0) (async, rerun: 64)
syz_open_dev$tty20(0xc, 0x4, 0x0) (async, rerun: 64)
ioctl$DRM_IOCTL_MODE_ADDFB2(0xffffffffffffffff, 0xc06864b8, 0x0) (async)
socket$packet(0x11, 0x2, 0x300) (async)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r6, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r6, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10) (async)
writev(r6, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1) (async)
ioctl$sock_TIOCINQ(r6, 0x541b, &(0x7f00000003c0)) (async)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x4000) (async)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x4040880)

0s ago: executing program 3 (id=9149):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
modify_ldt$write2(0x11, &(0x7f0000000040), 0x10)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
sendfile(r0, r0, &(0x7f0000000040)=0x20000000004, 0x3)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
preadv(r2, &(0x7f0000000000)=[{&(0x7f0000000280)=""/139, 0x8b}, {&(0x7f0000000340)=""/190, 0xbe}], 0x2, 0x8, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffff}, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000480), 0xd21, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000440)={&(0x7f0000000040), 0x0, 0x0, 0x0, 0xb44}, 0x38)
setsockopt(r4, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
sendto$inet6(r4, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r4, 0x84, 0x17, &(0x7f0000000440)=ANY=[], 0x9)
close_range(r3, r4, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r6 = socket(0x1, 0x2, 0x0)
r7 = socket(0x10, 0x803, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f0000000000)={'syztnl1\x00', <r9=>r8, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @dev}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r7, 0x89f3, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000180)={'ip6tnl0\x00', r9, 0x0, 0xff, 0x0, 0x7, 0x0, @dev, @private1={0xfc, 0x1, '\x00', 0x1}, 0x0, 0x1, 0xfffffffe}})
sendmsg$unix(r2, &(0x7f0000000600)={&(0x7f0000000140)=@abs={0x0, 0x0, 0x4e23}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x4004}, 0x480a0)
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={0x14, r10, 0x705, 0x400000, 0x25dfdbff}, 0x14}}, 0x0)

kernel console output (not intermixed with test programs):

ing remainder of the config
[ 2466.619550][ T5925] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 202
[ 2466.643672][ T5925] usb 7-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99
[ 2466.662039][ T5925] usb 7-1: New USB device strings: Mfr=33, Product=2, SerialNumber=3
[ 2466.699551][ T5925] usb 7-1: Product: syz
[ 2466.703929][ T5925] usb 7-1: Manufacturer: syz
[ 2466.708791][ T5925] usb 7-1: SerialNumber: syz
[ 2466.756797][ T5925] usb 7-1: config 0 descriptor??
[ 2466.808263][ T5925] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[ 2467.994174][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 2468.001139][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 2468.025839][ T5925] snd-usb-audio 7-1:0.0: probe with driver snd-usb-audio failed with error -2
[ 2468.091589][ T5925] usb 7-1: USB disconnect, device number 28
[ 2468.166224][T30262] udevd[30262]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 2468.259514][   T43] usb 6-1: new high-speed USB device number 91 using dummy_hcd
[ 2468.494408][   T43] usb 6-1: config 0 has no interfaces?
[ 2468.521465][   T43] usb 6-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2468.555042][   T43] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2468.604590][   T43] usb 6-1: Product: syz
[ 2468.639355][   T43] usb 6-1: Manufacturer: syz
[ 2468.657796][ T5208] Dev loop6: unable to read RDB block 7
[ 2468.674368][   T43] usb 6-1: SerialNumber: syz
[ 2468.682097][ T5208]  loop6: unable to read partition table
[ 2468.715970][   T43] usb 6-1: config 0 descriptor??
[ 2468.770569][ T5208] loop6: partition table beyond EOD, truncated
[ 2469.303360][ T4778] openvswitch: netlink: Message has 4 unknown bytes.
[ 2470.126419][ T4794] netlink: 156 bytes leftover after parsing attributes in process `syz.3.8618'.
[ 2470.568619][ T4798] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8619'.
[ 2470.600741][ T4798] bridge_slave_1: left allmulticast mode
[ 2470.629578][ T4798] bridge_slave_1: left promiscuous mode
[ 2470.636027][ T4798] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2470.669906][ T4798] bridge_slave_0: left allmulticast mode
[ 2470.684307][ T4798] bridge_slave_0: left promiscuous mode
[ 2470.691349][ T4798] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2470.827060][ T4801] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=822649864 (1645299728 ns) > initial count (643085688 ns). Using initial count to start timer.
[ 2470.912398][   T43] usb 6-1: USB disconnect, device number 91
[ 2470.915440][ T4809] netlink: 52 bytes leftover after parsing attributes in process `syz.2.8622'.
[ 2471.478273][ T4818] openvswitch: netlink: Message has 4 unknown bytes.
[ 2471.519820][ T4818] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[ 2471.984376][ T4822] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8628'.
[ 2472.179001][ T5208] Dev loop6: unable to read RDB block 7
[ 2472.203448][ T5208]  loop6: unable to read partition table
[ 2472.238674][ T5208] loop6: partition table beyond EOD, truncated
[ 2472.436761][ T4831] netlink: 156 bytes leftover after parsing attributes in process `syz.3.8631'.
[ 2472.496087][ T5208] Dev loop6: unable to read RDB block 7
[ 2472.525512][ T5208]  loop6: unable to read partition table
[ 2472.544747][ T5208] loop6: partition table beyond EOD, truncated
[ 2472.781627][   T30] kauditd_printk_skb: 1300 callbacks suppressed
[ 2472.781649][   T30] audit: type=1326 audit(1749924917.110:9792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4842 comm="syz.3.8635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bce98e929 code=0x7ffc0000
[ 2472.817036][   T30] audit: type=1326 audit(1749924917.140:9793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4842 comm="syz.3.8635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1bce990847 code=0x7ffc0000
[ 2472.820228][   T43] usb 7-1: new high-speed USB device number 29 using dummy_hcd
[ 2472.847523][ T5899] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[ 2472.880997][   T30] audit: type=1326 audit(1749924917.140:9794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4842 comm="syz.3.8635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f1bce9907bc code=0x7ffc0000
[ 2472.919218][   T30] audit: type=1326 audit(1749924917.140:9795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4842 comm="syz.3.8635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f1bce9906f4 code=0x7ffc0000
[ 2472.963256][   T30] audit: type=1326 audit(1749924917.140:9796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4842 comm="syz.3.8635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f1bce9906f4 code=0x7ffc0000
[ 2473.005091][   T30] audit: type=1326 audit(1749924917.140:9797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4842 comm="syz.3.8635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f1bce98d58a code=0x7ffc0000
[ 2473.042040][ T5899] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2473.057077][ T5899] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 2473.066593][   T43] usb 7-1: Using ep0 maxpacket: 16
[ 2473.071961][   T30] audit: type=1326 audit(1749924917.140:9798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4842 comm="syz.3.8635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bce98e929 code=0x7ffc0000
[ 2473.081171][   T43] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2473.116609][ T5899] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2473.122110][   T43] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2473.134263][ T5899] usb 3-1: config 0 descriptor??
[ 2473.140370][   T30] audit: type=1326 audit(1749924917.140:9799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4842 comm="syz.3.8635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bce98e929 code=0x7ffc0000
[ 2473.140397][   T43] usb 7-1: New USB device found, idVendor=056e, idProduct=00fe, bcdDevice= 0.00
[ 2473.167262][ T5899] pwc: Askey VC010 type 2 USB webcam detected.
[ 2473.221286][   T43] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2473.241427][   T43] usb 7-1: config 0 descriptor??
[ 2473.376968][ T4847] openvswitch: netlink: Message has 4 unknown bytes.
[ 2473.649915][ T5899] pwc: recv_control_msg error -32 req 02 val 2b00
[ 2473.672564][ T5899] pwc: recv_control_msg error -32 req 02 val 2700
[ 2473.694531][ T5899] pwc: recv_control_msg error -32 req 02 val 2c00
[ 2473.702592][ T5899] pwc: recv_control_msg error -32 req 04 val 1000
[ 2473.710376][ T5899] pwc: recv_control_msg error -32 req 04 val 1300
[ 2473.718090][ T5899] pwc: recv_control_msg error -32 req 04 val 1400
[ 2473.728659][ T5899] pwc: recv_control_msg error -32 req 02 val 2000
[ 2473.739613][ T5899] pwc: recv_control_msg error -32 req 02 val 2100
[ 2473.748927][ T5899] pwc: recv_control_msg error -32 req 04 val 1500
[ 2473.757556][ T5899] pwc: recv_control_msg error -32 req 02 val 2500
[ 2473.981042][ T5899] pwc: recv_control_msg error -71 req 02 val 2600
[ 2473.998268][ T5899] pwc: recv_control_msg error -71 req 02 val 2900
[ 2474.066819][ T5899] pwc: recv_control_msg error -71 req 02 val 2800
[ 2474.116981][ T5899] pwc: recv_control_msg error -71 req 04 val 1100
[ 2474.158755][ T5899] pwc: recv_control_msg error -71 req 04 val 1200
[ 2474.192628][ T5925] usb 6-1: new high-speed USB device number 92 using dummy_hcd
[ 2474.198839][ T5899] pwc: Registered as video103.
[ 2474.231366][ T5899] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input102
[ 2474.310927][ T5899] usb 3-1: USB disconnect, device number 19
[ 2474.359715][ T5925] usb 6-1: device descriptor read/64, error -71
[ 2474.599849][   T43] usbhid 7-1:0.0: can't add hid device: -71
[ 2474.608740][   T43] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[ 2474.680405][ T5925] usb 6-1: new high-speed USB device number 93 using dummy_hcd
[ 2474.751239][   T43] usb 7-1: USB disconnect, device number 29
[ 2474.900588][ T5208] Dev loop6: unable to read RDB block 7
[ 2474.907282][ T5208]  loop6: unable to read partition table
[ 2474.936890][ T5925] usb 6-1: device descriptor read/64, error -71
[ 2474.987210][ T5208] loop6: partition table beyond EOD, truncated
[ 2475.070078][ T5925] usb usb6-port1: attempt power cycle
[ 2475.170573][   T30] audit: type=1800 audit(1749924919.460:9800): pid=4878 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.8643" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[ 2475.243567][ T4882] netlink: 156 bytes leftover after parsing attributes in process `syz.1.8645'.
[ 2475.420186][ T5925] usb 6-1: new high-speed USB device number 94 using dummy_hcd
[ 2475.454027][ T5925] usb 6-1: device descriptor read/8, error -71
[ 2475.699616][ T5925] usb 6-1: new high-speed USB device number 95 using dummy_hcd
[ 2475.772311][ T5925] usb 6-1: device descriptor read/8, error -71
[ 2475.864275][ T5208] Dev loop6: unable to read RDB block 7
[ 2475.871124][ T4893] openvswitch: netlink: Message has 4 unknown bytes.
[ 2475.880844][ T5925] usb usb6-port1: unable to enumerate USB device
[ 2475.893061][ T5208]  loop6: unable to read partition table
[ 2475.912779][ T5208] loop6: partition table beyond EOD, truncated
[ 2476.155946][ T5208] Dev loop6: unable to read RDB block 7
[ 2476.184036][ T4897] random: crng reseeded on system resumption
[ 2476.355876][ T5208]  loop6: unable to read partition table
[ 2476.416349][ T5208] loop6: partition table beyond EOD, truncated
[ 2476.520630][ T5208] Dev loop6: unable to read RDB block 7
[ 2476.526420][ T5208]  loop6: unable to read partition table
[ 2476.569184][ T5208] loop6: partition table beyond EOD, truncated
[ 2476.882747][ T5208] Dev loop6: unable to read RDB block 7
[ 2476.905468][ T5208]  loop6: unable to read partition table
[ 2476.928724][ T5208] loop6: partition table beyond EOD, truncated
[ 2477.293166][ T4920] fuse: Bad value for 'fd'
[ 2477.658987][ T4930] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8662'.
[ 2477.779588][ T5925] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[ 2477.943785][ T5925] usb 3-1: device descriptor read/64, error -71
[ 2478.099550][   T43] usb 6-1: new high-speed USB device number 96 using dummy_hcd
[ 2478.211048][ T5925] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[ 2478.355047][   T43] usb 6-1: Using ep0 maxpacket: 32
[ 2478.412293][   T43] usb 6-1: config 0 has an invalid interface number: 12 but max is 0
[ 2478.428014][   T43] usb 6-1: config 0 has no interface number 0
[ 2478.434483][ T5925] usb 3-1: device descriptor read/64, error -71
[ 2478.441203][   T43] usb 6-1: config 0 interface 12 has no altsetting 0
[ 2478.443127][ T5208] Dev loop6: unable to read RDB block 7
[ 2478.464655][   T43] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[ 2478.475251][   T43] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2478.483880][   T43] usb 6-1: Product: syz
[ 2478.488156][   T43] usb 6-1: Manufacturer: syz
[ 2478.492975][   T43] usb 6-1: SerialNumber: syz
[ 2478.499908][   T43] usb 6-1: config 0 descriptor??
[ 2478.507667][   T43] f81534 6-1:0.12: required endpoints missing
[ 2478.705370][ T5925] usb usb3-port1: attempt power cycle
[ 2478.705594][ T5208]  loop6: unable to read partition table
[ 2478.728154][ T4932] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8663'.
[ 2478.753236][ T5208] loop6: partition table beyond EOD, truncated
[ 2478.760293][T25801] usb 4-1: new high-speed USB device number 101 using dummy_hcd
[ 2478.851462][ T5208] Dev loop6: unable to read RDB block 7
[ 2478.861266][T18542] usb 6-1: USB disconnect, device number 96
[ 2478.873992][ T5208]  loop6: unable to read partition table
[ 2478.881321][ T5208] loop6: partition table beyond EOD, truncated
[ 2478.919827][T25801] usb 4-1: Using ep0 maxpacket: 32
[ 2478.932415][T25801] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2478.964739][T25801] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2478.984214][T25801] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 2479.001443][T25801] usb 4-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[ 2479.011780][T25801] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2479.039345][T25801] usb 4-1: config 0 descriptor??
[ 2479.059638][ T5925] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[ 2479.147246][ T5925] usb 3-1: device descriptor read/8, error -71
[ 2479.459931][ T5925] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[ 2479.562714][ T4949] netlink: 48 bytes leftover after parsing attributes in process `syz.5.8667'.
[ 2479.577021][ T5925] usb 3-1: device descriptor read/8, error -71
[ 2479.706794][ T5925] usb usb3-port1: unable to enumerate USB device
[ 2480.215554][ T4954] binder: 4953:4954 ioctl c0306201 200000000c00 returned -14
[ 2480.321326][ T5208] Dev loop6: unable to read RDB block 7
[ 2480.359148][ T5208]  loop6: unable to read partition table
[ 2480.494703][ T5208] loop6: partition table beyond EOD, truncated
[ 2480.748405][ T4959] IPVS: set_ctl: invalid protocol: 2 100.1.1.0:20002
[ 2481.122131][ T4971] x_tables: unsorted entry at hook 1
[ 2481.378583][ T5208] Dev loop6: unable to read RDB block 7
[ 2481.388590][T25801] usbhid 4-1:0.0: can't add hid device: -71
[ 2481.403290][T25801] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[ 2481.422898][ T5208]  loop6: unable to read partition table
[ 2481.443225][ T5208] loop6: partition table beyond EOD, truncated
[ 2481.453067][T25801] usb 4-1: USB disconnect, device number 101
[ 2481.853995][ T4979] kvm: kvm [4976]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000
[ 2481.889280][ T4979] kvm: kvm [4976]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[ 2481.911631][ T4979] kvm: kvm [4976]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[ 2481.933305][ T4979] kvm: kvm [4976]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[ 2481.949193][ T4979] kvm: kvm [4976]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000
[ 2481.965590][ T5925] usb 4-1: new high-speed USB device number 102 using dummy_hcd
[ 2482.047555][ T4991] openvswitch: netlink: Message has 4 unknown bytes.
[ 2482.078313][ T4991] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[ 2482.130034][ T5925] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 2482.181381][ T5925] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 2482.203412][ T5925] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2482.234895][ T5925] usb 4-1: Product: syz
[ 2482.269899][ T5925] usb 4-1: Manufacturer: syz
[ 2482.387786][ T5925] usb 4-1: SerialNumber: syz
[ 2482.633302][ T5925] usblp 4-1:1.0: usblp0: USB Unidirectional printer dev 102 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[ 2482.679609][ T5925] usb 4-1: USB disconnect, device number 102
[ 2482.737872][ T5925] usblp0: removed
[ 2482.831522][ T4983] syz.3.8675: attempt to access beyond end of device
[ 2482.831522][ T4983] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 2483.035659][ T5208] Dev loop6: unable to read RDB block 7
[ 2483.041443][ T5208]  loop6: unable to read partition table
[ 2483.047259][ T5208] loop6: partition table beyond EOD, truncated
[ 2483.170782][ T5014] ptrace attach of "./syz-executor exec"[2260] was attempted by "./syz-executor exec"[5014]
[ 2483.685596][ T5208] Dev loop6: unable to read RDB block 7
[ 2483.703466][ T5208]  loop6: unable to read partition table
[ 2483.741103][ T5208] loop6: partition table beyond EOD, truncated
[ 2484.031273][ T5014] netlink: 'syz.1.8684': attribute type 24 has an invalid length.
[ 2485.057457][ T5208] Dev loop6: unable to read RDB block 7
[ 2485.089595][ T5208]  loop6: unable to read partition table
[ 2485.139847][ T5208] loop6: partition table beyond EOD, truncated
[ 2485.629536][ T5899] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[ 2485.831398][ T5899] usb 7-1: device descriptor read/64, error -71
[ 2486.311166][T18542] usb 6-1: new high-speed USB device number 97 using dummy_hcd
[ 2486.499953][ T5899] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[ 2486.678383][T18542] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 2486.691912][ T5899] usb 7-1: device descriptor read/64, error -71
[ 2486.728064][T18542] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 2486.750823][T18542] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2486.859005][ T5899] usb usb7-port1: attempt power cycle
[ 2486.955940][T18542] usb 6-1: Product: syz
[ 2487.006431][T18542] usb 6-1: Manufacturer: syz
[ 2487.132140][T18542] usb 6-1: SerialNumber: syz
[ 2487.431483][ T5899] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[ 2487.527676][ T5899] usb 7-1: device descriptor read/8, error -71
[ 2487.568353][T18542] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 97 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[ 2488.012230][T18542] usb 6-1: USB disconnect, device number 97
[ 2488.029831][ T5899] usb 7-1: new high-speed USB device number 33 using dummy_hcd
[ 2488.075535][T18542] usblp0: removed
[ 2488.081367][ T5899] usb 7-1: device descriptor read/8, error -71
[ 2488.198529][ T5051] syz.5.8692: attempt to access beyond end of device
[ 2488.198529][ T5051] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 2488.212368][ T5899] usb usb7-port1: unable to enumerate USB device
[ 2488.482330][ T5208] Dev loop6: unable to read RDB block 7
[ 2488.488135][ T5208]  loop6: unable to read partition table
[ 2488.503447][ T5208] loop6: partition table beyond EOD, truncated
[ 2488.959914][ T5925] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[ 2489.985214][ T5925] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 2490.006210][ T5925] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 2490.017380][ T5925] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2490.028180][ T5925] usb 7-1: Product: syz
[ 2490.045239][ T5925] usb 7-1: Manufacturer: syz
[ 2490.054643][ T5925] usb 7-1: SerialNumber: syz
[ 2490.303954][ T5925] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 34 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[ 2490.355767][ T5925] usb 7-1: USB disconnect, device number 34
[ 2490.391028][ T5925] usblp0: removed
[ 2490.514771][ T5068] syz.6.8698: attempt to access beyond end of device
[ 2490.514771][ T5068] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 2490.560384][ T5899] usb 6-1: new high-speed USB device number 98 using dummy_hcd
[ 2490.869720][ T5899] usb 6-1: Using ep0 maxpacket: 32
[ 2490.884053][ T5899] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 2490.893900][ T5899] usb 6-1: config 5 has an invalid interface number: 61 but max is 0
[ 2490.909546][ T5899] usb 6-1: config 5 has no interface number 0
[ 2490.950538][ T5899] usb 6-1: config 5 interface 61 altsetting 6 bulk endpoint 0x3 has invalid maxpacket 64
[ 2490.980033][ T5899] usb 6-1: config 5 interface 61 has no altsetting 0
[ 2491.118921][ T5899] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice= 0.0a
[ 2491.129028][ T5899] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2491.141154][ T5899] usb 6-1: Product: syz
[ 2491.145838][ T5899] usb 6-1: Manufacturer: syz
[ 2491.159188][ T5899] usb 6-1: SerialNumber: syz
[ 2491.198243][ T5075] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 2491.316887][T18542] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[ 2491.435933][ T5899] ath6kl: Failed to submit usb control message: -71
[ 2491.445089][ T5899] ath6kl: unable to send the bmi data to the device: -71
[ 2491.454557][ T5899] ath6kl: Unable to send get target info: -71
[ 2491.477514][T18542] usb 3-1: Using ep0 maxpacket: 16
[ 2491.483194][ T5899] ath6kl: Failed to init ath6kl core: -71
[ 2491.495916][ T5899] ath6kl_usb 6-1:5.61: probe with driver ath6kl_usb failed with error -71
[ 2491.523684][T18542] usb 3-1: New USB device found, idVendor=09c0, idProduct=0201, bcdDevice= a.a4
[ 2491.650229][T18542] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2491.671110][ T5899] usb 6-1: USB disconnect, device number 98
[ 2491.703647][T18542] usb 3-1: Product: syz
[ 2491.707904][T18542] usb 3-1: Manufacturer: syz
[ 2491.759290][T18542] usb 3-1: SerialNumber: syz
[ 2491.784304][ T5208] Dev loop6: unable to read RDB block 7
[ 2491.790903][T18542] usb 3-1: config 0 descriptor??
[ 2491.805151][T18542] dvb-usb: found a 'Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver' in warm state.
[ 2491.815720][ T5208]  loop6: unable to read partition table
[ 2491.830802][ T5208] loop6: partition table beyond EOD, truncated
[ 2492.585164][T18542] gp8psk: usb in 128 operation failed.
[ 2492.703912][T18542] gp8psk: usb in 137 operation failed.
[ 2492.709311][ T5103] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2492.720000][ T5103] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2492.727912][T18542] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 2492.758496][T18542] dvbdev: DVB: registering new adapter (Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver)
[ 2492.823800][T18542] usb 3-1: media controller created
[ 2492.929767][ T3236] usb 4-1: new high-speed USB device number 103 using dummy_hcd
[ 2492.967511][T18542] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 2493.034268][T18542] gp8psk_fe: Frontend revision 1 attached
[ 2493.143050][T18542] usb 3-1: DVB: registering adapter 2 frontend 0 (Genpix DVB-S)...
[ 2493.143639][ T3236] usb 4-1: config 0 has no interfaces?
[ 2493.184090][ T3236] usb 4-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2493.203104][T18542] dvbdev: dvb_create_media_entity: media entity 'Genpix DVB-S' registered.
[ 2493.212547][ T3236] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2493.222696][ T3236] usb 4-1: Product: syz
[ 2493.230198][ T3236] usb 4-1: Manufacturer: syz
[ 2493.252956][ T3236] usb 4-1: SerialNumber: syz
[ 2493.275400][ T3236] usb 4-1: config 0 descriptor??
[ 2493.282683][ T5208] Dev loop6: unable to read RDB block 7
[ 2493.288338][ T5208]  loop6: unable to read partition table
[ 2493.329985][ T5208] loop6: partition table beyond EOD, truncated
[ 2493.382521][   T30] audit: type=1326 audit(1749924937.710:9801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5115 comm="syz.1.8710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4f3f8e929 code=0x7ffc0000
[ 2493.716616][   T30] audit: type=1326 audit(1749924937.710:9802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5115 comm="syz.1.8710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4f3f8e929 code=0x7ffc0000
[ 2493.784945][   T30] audit: type=1326 audit(1749924937.710:9803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5115 comm="syz.1.8710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=459 compat=0 ip=0x7ff4f3f8e929 code=0x7ffc0000
[ 2493.920510][ T5208] Dev loop6: unable to read RDB block 7
[ 2493.933351][ T5208]  loop6: unable to read partition table
[ 2493.944286][   T30] audit: type=1326 audit(1749924937.710:9804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5115 comm="syz.1.8710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4f3f8e929 code=0x7ffc0000
[ 2493.954438][ T5208] loop6: partition table beyond EOD, truncated
[ 2494.015929][   T30] audit: type=1326 audit(1749924937.710:9805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5115 comm="syz.1.8710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4f3f8e929 code=0x7ffc0000
[ 2494.995805][T18542] gp8psk: usb in 138 operation failed.
[ 2495.012261][T18542] dvb-usb: Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver successfully initialized and connected.
[ 2495.064256][T18542] gp8psk: found Genpix USB device pID = 201 (hex)
[ 2495.113080][T18542] usb 3-1: USB disconnect, device number 24
[ 2495.186280][ T5163] syz_tun: entered allmulticast mode
[ 2495.240480][ T5208] Dev loop6: unable to read RDB block 7
[ 2495.278892][ T5208]  loop6: unable to read partition table
[ 2495.319742][ T5208] loop6: partition table beyond EOD, truncated
[ 2495.472563][ T5208] Dev loop6: unable to read RDB block 7
[ 2495.507139][ T5208]  loop6: unable to read partition table
[ 2495.546432][ T5208] loop6: partition table beyond EOD, truncated
[ 2495.558204][T18542] dvb-usb: Genpix 8PSK-to-USB2 Rev.1 DVB-S receive successfully deinitialized and disconnected.
[ 2495.677635][ T5208] Dev loop6: unable to read RDB block 7
[ 2495.713433][ T5208]  loop6: unable to read partition table
[ 2495.724583][ T5172] netlink: 'syz.2.8720': attribute type 10 has an invalid length.
[ 2495.734847][ T5169] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2495.753087][ T5208] loop6: partition table beyond EOD, truncated
[ 2495.772805][ T5158] syz_tun: left allmulticast mode
[ 2495.887477][T18542] usb 4-1: USB disconnect, device number 103
[ 2496.531813][ T5195] openvswitch: netlink: Missing key (keys=40, expected=2000)
[ 2498.759794][ T5187] netlink: 32 bytes leftover after parsing attributes in process `syz.5.8724'.
[ 2498.904732][ T5220] netlink: 212376 bytes leftover after parsing attributes in process `syz.5.8730'.
[ 2498.936796][ T3236] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[ 2499.110414][ T3236] usb 3-1: Using ep0 maxpacket: 16
[ 2499.112650][ T5229] usb usb8: usbfs: process 5229 (syz.3.8733) did not claim interface 0 before use
[ 2499.556420][ T5233] netlink: 'syz.1.8735': attribute type 10 has an invalid length.
[ 2499.592799][ T5208] Dev loop6: unable to read RDB block 7
[ 2499.782355][ T5208]  loop6: unable to read partition table
[ 2499.822614][ T5208] loop6: partition table beyond EOD, truncated
[ 2499.896472][ T5243] fuse: Bad value for 'fd'
[ 2499.976199][ T5233] bond0: (slave wlan1): Enslaving as an active interface with an up link
[ 2500.173440][ T5232] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2501.320252][ T5259] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 2501.326839][ T5259] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 2501.888616][ T3236] usb 3-1: unable to get BOS descriptor or descriptor too short
[ 2501.920671][ T3236] usb 3-1: unable to read config index 0 descriptor/start: -71
[ 2501.948777][ T3236] usb 3-1: can't read configurations, error -71
[ 2502.015345][ T5208] Dev loop6: unable to read RDB block 7
[ 2502.059181][ T5208]  loop6: unable to read partition table
[ 2502.141611][ T5208] loop6: partition table beyond EOD, truncated
[ 2502.367410][ T5208] Dev loop6: unable to read RDB block 7
[ 2502.398409][ T5208]  loop6: unable to read partition table
[ 2502.418208][ T5208] loop6: partition table beyond EOD, truncated
[ 2502.608586][ T5208] Dev loop6: unable to read RDB block 7
[ 2502.639536][ T5208]  loop6: unable to read partition table
[ 2502.704412][ T5208] loop6: partition table beyond EOD, truncated
[ 2505.320943][ T5208] Dev loop6: unable to read RDB block 7
[ 2505.447124][ T5208]  loop6: unable to read partition table
[ 2505.460063][ T5208] loop6: partition table beyond EOD, truncated
[ 2505.789218][ T5208] Dev loop6: unable to read RDB block 7
[ 2505.801592][ T5208]  loop6: unable to read partition table
[ 2505.814613][ T5208] loop6: partition table beyond EOD, truncated
[ 2506.062778][ T5309] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8752'.
[ 2506.079626][ T5899] usb 7-1: new high-speed USB device number 35 using dummy_hcd
[ 2506.240235][ T5899] usb 7-1: Using ep0 maxpacket: 16
[ 2506.303130][ T5311] snd_dummy snd_dummy.0: control 3:5:3:syz1:9 is already present
[ 2506.455095][ T5298] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8749'.
[ 2506.467767][ T5298] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8749'.
[ 2506.516864][ T5299] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8749'.
[ 2506.527929][ T5299] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8749'.
[ 2506.569531][   T43] usb 4-1: new full-speed USB device number 104 using dummy_hcd
[ 2506.569673][T18542] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[ 2506.742041][T18542] usb 3-1: New USB device found, idVendor=0545, idProduct=808b, bcdDevice=31.ad
[ 2506.758426][T18542] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2506.771736][   T43] usb 4-1: config 0 has an invalid interface number: 128 but max is 0
[ 2506.782695][   T43] usb 4-1: config 0 has no interface number 0
[ 2506.783813][T18542] usb 3-1: config 0 descriptor??
[ 2506.814132][T18542] gspca_main: tv8532-2.14.0 probing 0545:808b
[ 2506.838313][   T43] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 2506.848170][   T43] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2506.884886][   T43] usb 4-1: Product: syz
[ 2506.889236][   T43] usb 4-1: Manufacturer: syz
[ 2506.895830][   T43] usb 4-1: SerialNumber: syz
[ 2506.913416][   T43] usb 4-1: config 0 descriptor??
[ 2507.221724][   T43] usb 4-1: Firmware version (0.0) predates our first public release.
[ 2507.240267][   T43] usb 4-1: Please update to version 0.2 or newer
[ 2507.347909][   T43] usb 4-1: USB disconnect, device number 104
[ 2507.589493][T18542] usb 3-1: USB disconnect, device number 27
[ 2508.315862][ T5347] FAULT_INJECTION: forcing a failure.
[ 2508.315862][ T5347] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2508.335753][ T5347] CPU: 1 UID: 0 PID: 5347 Comm: syz.5.8761 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) 
[ 2508.335785][ T5347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2508.335798][ T5347] Call Trace:
[ 2508.335806][ T5347]  <TASK>
[ 2508.335815][ T5347]  dump_stack_lvl+0x189/0x250
[ 2508.335851][ T5347]  ? __pfx____ratelimit+0x10/0x10
[ 2508.335883][ T5347]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2508.335911][ T5347]  ? __pfx__printk+0x10/0x10
[ 2508.335934][ T5347]  ? __might_fault+0xb0/0x130
[ 2508.335966][ T5347]  should_fail_ex+0x414/0x560
[ 2508.335998][ T5347]  _copy_from_user+0x2d/0xb0
[ 2508.336020][ T5347]  __se_sys_mount+0x18a/0x410
[ 2508.336049][ T5347]  ? __pfx___se_sys_mount+0x10/0x10
[ 2508.336070][ T5347]  ? do_user_addr_fault+0xc8a/0x1390
[ 2508.336102][ T5347]  ? do_syscall_64+0xbe/0x3b0
[ 2508.336119][ T5347]  ? __x64_sys_mount+0x20/0xc0
[ 2508.336143][ T5347]  do_syscall_64+0xfa/0x3b0
[ 2508.336159][ T5347]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2508.336184][ T5347]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2508.336203][ T5347]  ? clear_bhb_loop+0x60/0xb0
[ 2508.336228][ T5347]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2508.336248][ T5347] RIP: 0033:0x7f35653900ca
[ 2508.336268][ T5347] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2508.336287][ T5347] RSP: 002b:00007f356612de68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2508.336311][ T5347] RAX: ffffffffffffffda RBX: 00007f356612def0 RCX: 00007f35653900ca
[ 2508.336326][ T5347] RDX: 0000200000000080 RSI: 0000200000000140 RDI: 0000000000000000
[ 2508.336338][ T5347] RBP: 0000200000000080 R08: 00007f356612def0 R09: 0000000002900000
[ 2508.336351][ T5347] R10: 0000000002900000 R11: 0000000000000246 R12: 0000200000000140
[ 2508.336365][ T5347] R13: 00007f356612deb0 R14: 0000000000000000 R15: 0000200000000180
[ 2508.336398][ T5347]  </TASK>
[ 2508.530337][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2508.782280][ T5899] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 2508.803065][ T5899] usb 7-1: unable to read config index 0 descriptor/start: -71
[ 2508.824109][ T5899] usb 7-1: can't read configurations, error -71
[ 2508.837882][ T5208] Dev loop6: unable to read RDB block 7
[ 2508.852898][ T5208]  loop6: unable to read partition table
[ 2508.863474][ T5208] loop6: partition table beyond EOD, truncated
[ 2509.444549][ T3236] usb 6-1: new high-speed USB device number 99 using dummy_hcd
[ 2509.554718][ T5369] FAULT_INJECTION: forcing a failure.
[ 2509.554718][ T5369] name failslab, interval 1, probability 0, space 0, times 0
[ 2509.579947][ T5369] CPU: 1 UID: 0 PID: 5369 Comm: syz.2.8767 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) 
[ 2509.579970][ T5369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2509.579978][ T5369] Call Trace:
[ 2509.579984][ T5369]  <TASK>
[ 2509.579989][ T5369]  dump_stack_lvl+0x189/0x250
[ 2509.580015][ T5369]  ? __pfx____ratelimit+0x10/0x10
[ 2509.580035][ T5369]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2509.580054][ T5369]  ? __pfx__printk+0x10/0x10
[ 2509.580072][ T5369]  ? __pfx___might_resched+0x10/0x10
[ 2509.580091][ T5369]  ? fs_reclaim_acquire+0x7d/0x100
[ 2509.580109][ T5369]  should_fail_ex+0x414/0x560
[ 2509.580128][ T5369]  should_failslab+0xa8/0x100
[ 2509.580142][ T5369]  __kmalloc_cache_noprof+0x70/0x3d0
[ 2509.580171][ T5369]  ? fw_change+0x56b/0xeb0
[ 2509.580186][ T5369]  fw_change+0x56b/0xeb0
[ 2509.580203][ T5369]  ? __pfx_fw_change+0x10/0x10
[ 2509.580225][ T5369]  tc_new_tfilter+0xdc7/0x15b0
[ 2509.580259][ T5369]  ? __pfx_tc_new_tfilter+0x10/0x10
[ 2509.580296][ T5369]  ? __pfx_tc_new_tfilter+0x10/0x10
[ 2509.580312][ T5369]  rtnetlink_rcv_msg+0x7cf/0xb70
[ 2509.580328][ T5369]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[ 2509.580341][ T5369]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2509.580352][ T5369]  ? ref_tracker_free+0x63a/0x7d0
[ 2509.580368][ T5369]  ? __copy_skb_header+0xa7/0x550
[ 2509.580386][ T5369]  ? __pfx_ref_tracker_free+0x10/0x10
[ 2509.580409][ T5369]  netlink_rcv_skb+0x205/0x470
[ 2509.580425][ T5369]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 2509.580439][ T5369]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2509.580461][ T5369]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2509.580476][ T5369]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2509.580496][ T5369]  netlink_unicast+0x758/0x8d0
[ 2509.580516][ T5369]  netlink_sendmsg+0x805/0xb30
[ 2509.580536][ T5369]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2509.580553][ T5369]  ? aa_sock_msg_perm+0x94/0x160
[ 2509.580572][ T5369]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 2509.580588][ T5369]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2509.580604][ T5369]  __sock_sendmsg+0x21c/0x270
[ 2509.580626][ T5369]  ____sys_sendmsg+0x505/0x830
[ 2509.580646][ T5369]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2509.580667][ T5369]  ? import_iovec+0x74/0xa0
[ 2509.580682][ T5369]  ___sys_sendmsg+0x21f/0x2a0
[ 2509.580700][ T5369]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2509.580744][ T5369]  ? __fget_files+0x2a/0x420
[ 2509.580758][ T5369]  ? __fget_files+0x3a0/0x420
[ 2509.580778][ T5369]  __x64_sys_sendmsg+0x19b/0x260
[ 2509.580796][ T5369]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 2509.580818][ T5369]  ? __pfx_ksys_write+0x10/0x10
[ 2509.580828][ T5369]  ? rcu_is_watching+0x15/0xb0
[ 2509.580850][ T5369]  ? do_syscall_64+0xbe/0x3b0
[ 2509.580864][ T5369]  do_syscall_64+0xfa/0x3b0
[ 2509.580874][ T5369]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2509.580892][ T5369]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2509.580905][ T5369]  ? clear_bhb_loop+0x60/0xb0
[ 2509.580920][ T5369]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2509.580932][ T5369] RIP: 0033:0x7fc29398e929
[ 2509.580944][ T5369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2509.580955][ T5369] RSP: 002b:00007fc29486f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2509.580970][ T5369] RAX: ffffffffffffffda RBX: 00007fc293bb5fa0 RCX: 00007fc29398e929
[ 2509.580979][ T5369] RDX: 0000000000000800 RSI: 00002000000001c0 RDI: 0000000000000004
[ 2509.580988][ T5369] RBP: 00007fc29486f090 R08: 0000000000000000 R09: 0000000000000000
[ 2509.580996][ T5369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2509.581003][ T5369] R13: 0000000000000000 R14: 00007fc293bb5fa0 R15: 00007fc293cdfa28
[ 2509.581021][ T5369]  </TASK>
[ 2509.946400][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2510.029714][ T5899] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[ 2510.355985][ T3236] usb 6-1: Using ep0 maxpacket: 32
[ 2510.374483][ T3236] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2510.385669][ T3236] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2510.395822][ T3236] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[ 2510.405573][ T3236] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2510.420842][ T3236] usb 6-1: config 0 descriptor??
[ 2510.489570][ T5899] usb 7-1: Using ep0 maxpacket: 32
[ 2510.526876][ T5899] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2510.541575][ T5899] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2510.579231][ T5899] usb 7-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[ 2510.600803][ T5899] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2510.653218][ T5899] usb 7-1: config 0 descriptor??
[ 2511.149611][ T5925] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[ 2511.220202][ T5351] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2511.319937][ T5364] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2511.419972][ T5925] usb 3-1: config 0 has no interfaces?
[ 2511.436433][ T5925] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2511.464353][ T5925] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2511.568263][ T5925] usb 3-1: Product: syz
[ 2511.644203][ T5925] usb 3-1: Manufacturer: syz
[ 2511.671429][ T5925] usb 3-1: SerialNumber: syz
[ 2511.719060][ T5925] usb 3-1: config 0 descriptor??
[ 2512.329310][ T3236] usbhid 6-1:0.0: can't add hid device: -71
[ 2512.335955][ T3236] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[ 2512.356303][ T3236] usb 6-1: USB disconnect, device number 99
[ 2512.729456][ T3236] usb 6-1: new high-speed USB device number 100 using dummy_hcd
[ 2512.829472][   T43] usb 4-1: new high-speed USB device number 105 using dummy_hcd
[ 2512.879691][ T3236] usb 6-1: Using ep0 maxpacket: 16
[ 2512.907775][ T3236] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2512.927149][ T3236] usb 6-1: config 0 has no interfaces?
[ 2512.935637][ T3236] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2512.952709][ T3236] usb 6-1: config 0 has no interfaces?
[ 2512.964553][ T3236] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2512.979786][   T43] usb 4-1: Using ep0 maxpacket: 16
[ 2512.988258][ T3236] usb 6-1: config 0 has no interfaces?
[ 2513.012903][ T3236] usb 6-1: New USB device found, idVendor=046d, idProduct=08b5, bcdDevice=d7.01
[ 2513.022352][ T3236] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=0
[ 2513.037969][ T3236] usb 6-1: Product: syz
[ 2513.042544][ T3236] usb 6-1: Manufacturer: syz
[ 2513.059791][ T3236] usb 6-1: config 0 descriptor??
[ 2513.156775][ T5899] usbhid 7-1:0.0: can't add hid device: -71
[ 2513.166992][ T5899] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[ 2513.182135][ T5899] usb 7-1: USB disconnect, device number 36
[ 2513.206386][ T5208] Dev loop6: unable to read RDB block 7
[ 2513.213466][ T5208]  loop6: unable to read partition table
[ 2513.225294][ T5208] loop6: partition table beyond EOD, truncated
[ 2513.285935][T32596] usb 6-1: USB disconnect, device number 100
[ 2513.358981][ T5397] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 2513.369072][ T5397] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 2514.038166][ T3236] usb 3-1: USB disconnect, device number 28
[ 2514.339557][ T5925] usb 6-1: new high-speed USB device number 101 using dummy_hcd
[ 2514.505858][ T5925] usb 6-1: config 0 has no interfaces?
[ 2514.518037][ T5925] usb 6-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2514.538889][ T5925] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2514.568370][ T5925] usb 6-1: Product: syz
[ 2514.578498][ T5925] usb 6-1: Manufacturer: syz
[ 2514.583553][ T5925] usb 6-1: SerialNumber: syz
[ 2514.593042][ T5925] usb 6-1: config 0 descriptor??
[ 2515.048718][ T5208] Dev loop6: unable to read RDB block 7
[ 2515.062731][ T5208]  loop6: unable to read partition table
[ 2515.068979][ T5208] loop6: partition table beyond EOD, truncated
[ 2515.624485][   T43] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 2515.654584][   T43] usb 4-1: unable to read config index 0 descriptor/start: -71
[ 2515.684970][   T43] usb 4-1: can't read configurations, error -71
[ 2516.396767][ T5433] sctp: [Deprecated]: syz.3.8784 (pid 5433) Use of int in maxseg socket option.
[ 2516.396767][ T5433] Use struct sctp_assoc_value instead
[ 2516.531330][ T5208] Dev loop6: unable to read RDB block 7
[ 2516.545158][ T5208]  loop6: unable to read partition table
[ 2516.556110][ T5208] loop6: partition table beyond EOD, truncated
[ 2516.829102][ T5208] Dev loop6: unable to read RDB block 7
[ 2516.969208][ T3236] usb 6-1: USB disconnect, device number 101
[ 2517.079525][ T5208]  loop6: unable to read partition table
[ 2517.216433][ T5208] loop6: partition table beyond EOD, truncated
[ 2517.818825][ T5469] syz_tun: entered allmulticast mode
[ 2517.836737][ T5469] binder: BINDER_SET_CONTEXT_MGR already set
[ 2517.843032][ T5469] binder: 5467:5469 ioctl 4018620d 200000000040 returned -16
[ 2517.849483][T18542] usb 6-1: new high-speed USB device number 102 using dummy_hcd
[ 2517.851790][ T5469] binder: 5467:5469 ioctl c018620c 200000000100 returned -1
[ 2517.870634][ T5467] syz_tun: left allmulticast mode
[ 2518.021092][T18542] usb 6-1: config 0 has an invalid interface number: 117 but max is 0
[ 2518.055394][T18542] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2518.114210][T18542] usb 6-1: config 0 has no interface number 0
[ 2518.158838][T18542] usb 6-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[ 2518.255694][T18542] usb 6-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 2518.341534][ T5450] fuse: Bad value for 'fd'
[ 2518.373140][T18542] usb 6-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[ 2518.383188][T18542] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2518.509578][T18542] usb 6-1: Product: syz
[ 2518.514138][T18542] usb 6-1: Manufacturer: syz
[ 2518.522900][T18542] usb 6-1: SerialNumber: syz
[ 2518.552208][T18542] usb 6-1: config 0 descriptor??
[ 2518.866983][ T5486] netlink: 24 bytes leftover after parsing attributes in process `syz.1.8797'.
[ 2518.962591][T18542] usb 6-1: USB disconnect, device number 102
[ 2519.289533][ T5208] Dev loop6: unable to read RDB block 7
[ 2519.295223][ T5208]  loop6: unable to read partition table
[ 2519.332205][ T5208] loop6: partition table beyond EOD, truncated
[ 2519.650808][ T5515] netlink: 'syz.3.8805': attribute type 10 has an invalid length.
[ 2519.700039][ T5515] team0: Port device wlan1 added
[ 2519.710721][ T5520] netlink: 'syz.5.8807': attribute type 10 has an invalid length.
[ 2519.748482][ T5520] team0: Port device syz_tun added
[ 2520.400448][ T5208] Dev loop6: unable to read RDB block 7
[ 2520.464890][ T5208]  loop6: unable to read partition table
[ 2520.560192][ T5208] loop6: partition table beyond EOD, truncated
[ 2520.608476][ T5546] netlink: 380 bytes leftover after parsing attributes in process `syz.6.8812'.
[ 2520.619951][ T5545] netlink: 380 bytes leftover after parsing attributes in process `syz.6.8812'.
[ 2520.639156][ T5535] fuse: Bad value for 'fd'
[ 2521.843146][ T5208] Dev loop6: unable to read RDB block 7
[ 2521.848777][ T5208]  loop6: unable to read partition table
[ 2521.942208][ T5208] loop6: partition table beyond EOD, truncated
[ 2522.046430][ T5567] netlink: 40 bytes leftover after parsing attributes in process `syz.3.8818'.
[ 2522.266410][ T5208] Dev loop6: unable to read RDB block 7
[ 2522.281795][ T5208]  loop6: unable to read partition table
[ 2522.308858][ T5208] loop6: partition table beyond EOD, truncated
[ 2522.373638][   T30] audit: type=1326 audit(1749924966.700:9806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5578 comm="syz.2.8823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc29398e929 code=0x7ffc0000
[ 2522.414502][   T30] audit: type=1326 audit(1749924966.700:9807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5578 comm="syz.2.8823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc29398e929 code=0x7ffc0000
[ 2522.437590][   T30] audit: type=1326 audit(1749924966.700:9808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5578 comm="syz.2.8823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc29398e929 code=0x7ffc0000
[ 2522.481363][   T30] audit: type=1326 audit(1749924966.720:9809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5578 comm="syz.2.8823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc29398e929 code=0x7ffc0000
[ 2522.545104][   T30] audit: type=1326 audit(1749924966.720:9810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5578 comm="syz.2.8823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fc29398e929 code=0x7ffc0000
[ 2522.684371][   T30] audit: type=1326 audit(1749924966.720:9811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5578 comm="syz.2.8823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc29398e929 code=0x7ffc0000
[ 2522.715791][ T5590] netlink: 36 bytes leftover after parsing attributes in process `syz.5.8821'.
[ 2522.761756][ T5590] vlan2: entered promiscuous mode
[ 2522.983896][ T5590] bridge0: entered promiscuous mode
[ 2523.015890][   T30] audit: type=1326 audit(1749924966.720:9812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5578 comm="syz.2.8823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fc29398e929 code=0x7ffc0000
[ 2523.209488][   T30] audit: type=1326 audit(1749924967.520:9813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5578 comm="syz.2.8823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc29398e929 code=0x7ffc0000
[ 2523.342707][ T5208] Dev loop6: unable to read RDB block 7
[ 2523.356768][   T30] audit: type=1326 audit(1749924967.520:9814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5578 comm="syz.2.8823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc29398e929 code=0x7ffc0000
[ 2523.399458][ T5208]  loop6: unable to read partition table
[ 2523.412334][ T5208] loop6: partition table beyond EOD, truncated
[ 2523.714015][ T5601] batadv0: entered promiscuous mode
[ 2523.731713][ T5601] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[ 2524.079757][T18542] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[ 2524.265264][T18542] usb 3-1: Using ep0 maxpacket: 32
[ 2524.285774][T18542] usb 3-1: config 0 has an invalid interface number: 85 but max is 0
[ 2524.306120][T18542] usb 3-1: config 0 has no interface number 0
[ 2524.323455][T18542] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x8 has invalid maxpacket 512, setting to 64
[ 2524.399576][T18542] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2524.429269][T18542] usb 3-1: config 0 interface 85 has no altsetting 0
[ 2524.486148][T18542] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[ 2524.505285][T18542] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2524.516352][ T5208] Dev loop6: unable to read RDB block 7
[ 2524.539605][ T5208]  loop6: unable to read partition table
[ 2524.631024][ T5208] loop6: partition table beyond EOD, truncated
[ 2524.669442][T18542] usb 3-1: Product: syz
[ 2524.675793][T18542] usb 3-1: Manufacturer: syz
[ 2524.682184][T18542] usb 3-1: SerialNumber: syz
[ 2524.944019][T18542] usb 3-1: config 0 descriptor??
[ 2525.181543][T18542] appletouch 3-1:0.85: Failed to read mode from device.
[ 2525.219794][ T5208] Dev loop6: unable to read RDB block 7
[ 2525.239698][T18542] appletouch 3-1:0.85: probe with driver appletouch failed with error -5
[ 2525.249636][ T5208]  loop6: unable to read partition table
[ 2525.293066][ T5208] loop6: partition table beyond EOD, truncated
[ 2525.322968][T18542] usb 3-1: USB disconnect, device number 29
[ 2526.018425][ T5629] ptrace attach of "./syz-executor exec"[2260] was attempted by "./syz-executor exec"[5629]
[ 2526.040155][ T5625] fuse: Unknown parameter '0x0000000000000005'
[ 2526.112397][ T5631] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8833'.
[ 2526.533605][ T5634] FAULT_INJECTION: forcing a failure.
[ 2526.533605][ T5634] name failslab, interval 1, probability 0, space 0, times 0
[ 2526.549926][ T5208] Dev loop6: unable to read RDB block 7
[ 2526.567238][ T5208]  loop6: unable to read partition table
[ 2526.583355][ T5208] loop6: partition table beyond EOD, truncated
[ 2526.643207][ T5634] CPU: 0 UID: 0 PID: 5634 Comm: syz.3.8834 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) 
[ 2526.643239][ T5634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2526.643252][ T5634] Call Trace:
[ 2526.643260][ T5634]  <TASK>
[ 2526.643269][ T5634]  dump_stack_lvl+0x189/0x250
[ 2526.643307][ T5634]  ? __pfx____ratelimit+0x10/0x10
[ 2526.643336][ T5634]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2526.643366][ T5634]  ? __pfx__printk+0x10/0x10
[ 2526.643404][ T5634]  ? __pfx___might_resched+0x10/0x10
[ 2526.643433][ T5634]  ? fs_reclaim_acquire+0x7d/0x100
[ 2526.643462][ T5634]  should_fail_ex+0x414/0x560
[ 2526.643492][ T5634]  should_failslab+0xa8/0x100
[ 2526.643517][ T5634]  __kmalloc_cache_noprof+0x70/0x3d0
[ 2526.643537][ T5634]  ? __rdma_create_id+0x66/0x640
[ 2526.643561][ T5634]  ? __pfx_ucma_event_handler+0x10/0x10
[ 2526.643585][ T5634]  ? __pfx_ucma_event_handler+0x10/0x10
[ 2526.643606][ T5634]  __rdma_create_id+0x66/0x640
[ 2526.643630][ T5634]  ? do_raw_spin_unlock+0x122/0x240
[ 2526.643655][ T5634]  ? __pfx_ucma_event_handler+0x10/0x10
[ 2526.643677][ T5634]  rdma_create_user_id+0x82/0xc0
[ 2526.643710][ T5634]  ucma_create_id+0x206/0x360
[ 2526.643733][ T5634]  ? __pfx_ucma_create_id+0x10/0x10
[ 2526.643773][ T5634]  ucma_write+0x246/0x2e0
[ 2526.643792][ T5634]  ? common_file_perm+0x199/0x200
[ 2526.643820][ T5634]  ? __pfx_ucma_write+0x10/0x10
[ 2526.643838][ T5634]  ? security_file_permission+0x75/0x290
[ 2526.643863][ T5634]  ? rw_verify_area+0x258/0x650
[ 2526.643899][ T5634]  vfs_writev+0x4b6/0x960
[ 2526.643927][ T5634]  ? __pfx_ucma_write+0x10/0x10
[ 2526.643950][ T5634]  ? __pfx_vfs_writev+0x10/0x10
[ 2526.643992][ T5634]  ? __fget_files+0x2a/0x420
[ 2526.644020][ T5634]  ? __fget_files+0x3a0/0x420
[ 2526.644040][ T5634]  ? __fget_files+0x2a/0x420
[ 2526.644110][ T5634]  do_writev+0x14d/0x2d0
[ 2526.644137][ T5634]  ? __pfx_do_writev+0x10/0x10
[ 2526.644159][ T5634]  ? rcu_is_watching+0x15/0xb0
[ 2526.644195][ T5634]  ? do_syscall_64+0xbe/0x3b0
[ 2526.644220][ T5634]  do_syscall_64+0xfa/0x3b0
[ 2526.644245][ T5634]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2526.644271][ T5634]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2526.644288][ T5634]  ? clear_bhb_loop+0x60/0xb0
[ 2526.644310][ T5634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2526.644328][ T5634] RIP: 0033:0x7f1bce98e929
[ 2526.644345][ T5634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2526.644361][ T5634] RSP: 002b:00007f1bcf875038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 2526.644383][ T5634] RAX: ffffffffffffffda RBX: 00007f1bcebb5fa0 RCX: 00007f1bce98e929
[ 2526.644405][ T5634] RDX: 0000000000000003 RSI: 0000200000000000 RDI: 0000000000000004
[ 2526.644416][ T5634] RBP: 00007f1bcf875090 R08: 0000000000000000 R09: 0000000000000000
[ 2526.644428][ T5634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2526.644438][ T5634] R13: 0000000000000000 R14: 00007f1bcebb5fa0 R15: 00007f1bcecdfa28
[ 2526.644467][ T5634]  </TASK>
[ 2529.439147][ T5208] Dev loop6: unable to read RDB block 7
[ 2529.449877][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 2529.456270][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 2529.483338][ T5208]  loop6: unable to read partition table
[ 2529.519501][ T5208] loop6: partition table beyond EOD, truncated
[ 2529.769565][ T3236] usb 7-1: new high-speed USB device number 37 using dummy_hcd
[ 2529.938530][ T3236] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2529.966385][ T3236] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2530.004747][ T3236] usb 7-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice=d6.af
[ 2530.047235][ T3236] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2530.074763][ T3236] usb 7-1: config 0 descriptor??
[ 2530.142658][ T5687] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8849'.
[ 2530.162638][ T5687] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8849'.
[ 2530.514177][ T3236] playstation 0003:054C:0DF2.003F: unknown main item tag 0x0
[ 2530.528890][ T3236] playstation 0003:054C:0DF2.003F: unknown main item tag 0x0
[ 2530.569744][ T3236] playstation 0003:054C:0DF2.003F: unknown main item tag 0x0
[ 2530.594332][ T3236] playstation 0003:054C:0DF2.003F: unknown main item tag 0x0
[ 2530.616461][ T3236] playstation 0003:054C:0DF2.003F: unknown main item tag 0x0
[ 2530.650854][ T3236] playstation 0003:054C:0DF2.003F: hidraw0: USB HID v1.01 Device [HID 054c:0df2] on usb-dummy_hcd.6-1/input0
[ 2530.733441][ T3236] playstation 0003:054C:0DF2.003F: Invalid byte count transferred, expected 20 got 0
[ 2530.755282][ T3236] playstation 0003:054C:0DF2.003F: Failed to retrieve DualSense pairing info: -22
[ 2530.765345][ T3236] playstation 0003:054C:0DF2.003F: Failed to get MAC address from DualSense
[ 2530.777065][ T3236] playstation 0003:054C:0DF2.003F: Failed to create dualsense.
[ 2530.788479][ T3236] playstation 0003:054C:0DF2.003F: probe with driver playstation failed with error -22
[ 2530.836531][ T5694] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8852'.
[ 2530.962703][T32596] usb 7-1: USB disconnect, device number 37
[ 2530.969804][ T5925] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[ 2531.153288][ T5925] usb 3-1: Using ep0 maxpacket: 8
[ 2531.164370][ T5925] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 2531.181473][ T5925] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 2531.232339][ T5925] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 2531.252568][ T5925] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 2531.283029][ T5925] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 2531.327786][ T5925] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2531.522383][ T5208] Dev loop6: unable to read RDB block 7
[ 2531.542873][ T5208]  loop6: unable to read partition table
[ 2531.568887][ T5208] loop6: partition table beyond EOD, truncated
[ 2531.806990][ T5208] Dev loop6: unable to read RDB block 7
[ 2531.823023][ T5208]  loop6: unable to read partition table
[ 2531.847029][ T5208] loop6: partition table beyond EOD, truncated
[ 2532.172590][ T5699] fuse: Bad value for 'fd'
[ 2532.218469][ T5208] Dev loop6: unable to read RDB block 7
[ 2532.228686][ T5208]  loop6: unable to read partition table
[ 2532.370915][ T5208] loop6: partition table beyond EOD, truncated
[ 2532.565706][ T5925] usb 3-1: usb_control_msg returned -71
[ 2532.571825][ T5925] usbtmc 3-1:16.0: can't read capabilities
[ 2532.614184][ T5925] usb 3-1: USB disconnect, device number 30
[ 2532.736996][ T5208] Dev loop6: unable to read RDB block 7
[ 2532.769717][ T5208]  loop6: unable to read partition table
[ 2532.775663][ T5208] loop6: partition table beyond EOD, truncated
[ 2533.155717][ T5208] Dev loop6: unable to read RDB block 7
[ 2533.172582][ T5208]  loop6: unable to read partition table
[ 2533.178756][ T5208] loop6: partition table beyond EOD, truncated
[ 2533.806883][T32596] usb 4-1: new high-speed USB device number 107 using dummy_hcd
[ 2533.960525][T32596] usb 4-1: device descriptor read/64, error -71
[ 2534.393402][T32596] usb 4-1: new high-speed USB device number 108 using dummy_hcd
[ 2534.630799][ T5743] FAULT_INJECTION: forcing a failure.
[ 2534.630799][ T5743] name failslab, interval 1, probability 0, space 0, times 0
[ 2534.723791][T32596] usb 4-1: device descriptor read/64, error -71
[ 2534.772365][ T5743] CPU: 0 UID: 0 PID: 5743 Comm: syz.2.8865 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) 
[ 2534.772399][ T5743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2534.772411][ T5743] Call Trace:
[ 2534.772432][ T5743]  <TASK>
[ 2534.772439][ T5743]  dump_stack_lvl+0x189/0x250
[ 2534.772466][ T5743]  ? __pfx____ratelimit+0x10/0x10
[ 2534.772486][ T5743]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2534.772505][ T5743]  ? __pfx__printk+0x10/0x10
[ 2534.772523][ T5743]  ? ref_tracker_alloc+0x318/0x460
[ 2534.772543][ T5743]  should_fail_ex+0x414/0x560
[ 2534.772562][ T5743]  should_failslab+0xa8/0x100
[ 2534.772577][ T5743]  kmem_cache_alloc_noprof+0x73/0x3c0
[ 2534.772600][ T5743]  ? skb_clone+0x212/0x3a0
[ 2534.772621][ T5743]  skb_clone+0x212/0x3a0
[ 2534.772640][ T5743]  __netlink_deliver_tap+0x404/0x850
[ 2534.772663][ T5743]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2534.772681][ T5743]  netlink_deliver_tap+0x19c/0x1b0
[ 2534.772697][ T5743]  netlink_unicast+0x72f/0x8d0
[ 2534.772716][ T5743]  netlink_sendmsg+0x805/0xb30
[ 2534.772737][ T5743]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2534.772754][ T5743]  ? aa_sock_msg_perm+0x94/0x160
[ 2534.772772][ T5743]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 2534.772788][ T5743]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2534.772803][ T5743]  __sock_sendmsg+0x21c/0x270
[ 2534.772825][ T5743]  ____sys_sendmsg+0x505/0x830
[ 2534.772844][ T5743]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2534.772866][ T5743]  ? import_iovec+0x74/0xa0
[ 2534.772881][ T5743]  ___sys_sendmsg+0x21f/0x2a0
[ 2534.772899][ T5743]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2534.772936][ T5743]  ? __fget_files+0x2a/0x420
[ 2534.772950][ T5743]  ? __fget_files+0x3a0/0x420
[ 2534.772970][ T5743]  __x64_sys_sendmsg+0x19b/0x260
[ 2534.772987][ T5743]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 2534.773009][ T5743]  ? __pfx_ksys_write+0x10/0x10
[ 2534.773019][ T5743]  ? rcu_is_watching+0x15/0xb0
[ 2534.773043][ T5743]  ? do_syscall_64+0xbe/0x3b0
[ 2534.773056][ T5743]  do_syscall_64+0xfa/0x3b0
[ 2534.773067][ T5743]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2534.773085][ T5743]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2534.773097][ T5743]  ? clear_bhb_loop+0x60/0xb0
[ 2534.773112][ T5743]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2534.773125][ T5743] RIP: 0033:0x7fc29398e929
[ 2534.773137][ T5743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2534.773148][ T5743] RSP: 002b:00007fc29486f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2534.773163][ T5743] RAX: ffffffffffffffda RBX: 00007fc293bb5fa0 RCX: 00007fc29398e929
[ 2534.773173][ T5743] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000005
[ 2534.773181][ T5743] RBP: 00007fc29486f090 R08: 0000000000000000 R09: 0000000000000000
[ 2534.773188][ T5743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2534.773216][ T5743] R13: 0000000000000000 R14: 00007fc293bb5fa0 R15: 00007fc293cdfa28
[ 2534.773235][ T5743]  </TASK>
[ 2534.773355][ T5743] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8865'.
[ 2535.086632][T32596] usb usb4-port1: attempt power cycle
[ 2535.509540][T32596] usb 4-1: new high-speed USB device number 109 using dummy_hcd
[ 2535.530657][T32596] usb 4-1: device descriptor read/8, error -71
[ 2535.718045][ T5899] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[ 2535.789508][T32596] usb 4-1: new high-speed USB device number 110 using dummy_hcd
[ 2535.978921][ T5208] Dev loop6: unable to read RDB block 7
[ 2535.995083][ T5208]  loop6: unable to read partition table
[ 2536.009771][T32596] usb 4-1: device descriptor read/8, error -71
[ 2536.031715][ T5208] loop6: partition table beyond EOD, truncated
[ 2536.109559][ T5899] usb 3-1: Using ep0 maxpacket: 32
[ 2536.121295][T32596] usb usb4-port1: unable to enumerate USB device
[ 2536.131801][ T5899] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2536.172099][ T5899] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2536.306532][ T5899] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00
[ 2536.348248][ T5899] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2536.560072][ T5899] usb 3-1: config 0 descriptor??
[ 2536.754489][ T5761] netlink: 'syz.3.8870': attribute type 10 has an invalid length.
[ 2536.848532][ T5761] team0: Port device wlan1 removed
[ 2536.906890][ T5761] bond0: (slave wlan1): Enslaving as an active interface with an up link
[ 2536.936693][ T5760] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2538.580276][ T5208] Dev loop6: unable to read RDB block 7
[ 2538.605844][ T5208]  loop6: unable to read partition table
[ 2538.651923][ T5899] usbhid 3-1:0.0: can't add hid device: -71
[ 2538.663568][ T5899] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[ 2538.672468][ T5208] loop6: partition table beyond EOD, truncated
[ 2538.703025][ T5899] usb 3-1: USB disconnect, device number 31
[ 2539.504683][ T5768] fuse: Bad value for 'fd'
[ 2540.444538][ T5208] Dev loop6: unable to read RDB block 7
[ 2540.488122][ T5208]  loop6: unable to read partition table
[ 2540.498547][ T5208] loop6: partition table beyond EOD, truncated
[ 2541.059673][ T3236] usb 7-1: new high-speed USB device number 38 using dummy_hcd
[ 2541.329579][ T3236] usb 7-1: Using ep0 maxpacket: 32
[ 2541.341937][ T3236] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2541.353838][ T3236] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2541.381163][ T5925] usb 6-1: new high-speed USB device number 103 using dummy_hcd
[ 2541.398871][ T3236] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 2541.427034][ T3236] usb 7-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[ 2541.439723][ T3236] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2541.516465][ T3236] usb 7-1: config 0 descriptor??
[ 2541.544147][ T5925] usb 6-1: Using ep0 maxpacket: 32
[ 2541.562685][ T5925] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 2541.590506][ T5925] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 2541.605745][ T5925] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 2541.631852][ T5925] usb 6-1: Product: syz
[ 2541.684514][ T5925] usb 6-1: Manufacturer: syz
[ 2541.697342][ T5925] usb 6-1: SerialNumber: syz
[ 2541.727740][ T5925] usb 6-1: config 0 descriptor??
[ 2541.737844][ T5833] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[ 2541.776502][ T5925] hub 6-1:0.0: bad descriptor, ignoring hub
[ 2541.793812][ T5925] hub 6-1:0.0: probe with driver hub failed with error -5
[ 2542.122503][ T5925] usb 6-1: USB disconnect, device number 103
[ 2542.510423][ T5899] usb 6-1: new high-speed USB device number 104 using dummy_hcd
[ 2542.669551][ T5899] usb 6-1: Using ep0 maxpacket: 32
[ 2542.678038][ T5899] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 2542.750975][ T5899] usb 6-1: string descriptor 0 read error: -22
[ 2542.757820][ T5899] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 2542.777297][ T5899] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 2542.814622][ T5899] usb 6-1: config 0 descriptor??
[ 2542.844928][ T5833] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[ 2542.855482][ T5899] hub 6-1:0.0: bad descriptor, ignoring hub
[ 2542.861793][ T5899] hub 6-1:0.0: probe with driver hub failed with error -5
[ 2543.549845][ T5899] usb 6-1: USB disconnect, device number 104
[ 2543.571309][ T3236] usbhid 7-1:0.0: can't add hid device: -71
[ 2543.577567][ T3236] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[ 2543.623398][ T5208] Dev loop6: unable to read RDB block 7
[ 2543.651011][ T5208]  loop6: unable to read partition table
[ 2543.686616][ T3236] usb 7-1: USB disconnect, device number 38
[ 2543.795314][ T5208] loop6: partition table beyond EOD, truncated
[ 2543.956518][ T5858] fuse: Bad value for 'fd'
[ 2544.095959][ T5869] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8896'.
[ 2544.247843][ T5864] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8896'.
[ 2544.555374][ T5208] Dev loop6: unable to read RDB block 7
[ 2544.637412][ T5208]  loop6: unable to read partition table
[ 2544.649724][ T5208] loop6: partition table beyond EOD, truncated
[ 2544.740223][ T5875] netlink: 'syz.5.8899': attribute type 4 has an invalid length.
[ 2544.748094][ T5875] netlink: 20 bytes leftover after parsing attributes in process `syz.5.8899'.
[ 2545.019104][ T5882] FAULT_INJECTION: forcing a failure.
[ 2545.019104][ T5882] name failslab, interval 1, probability 0, space 0, times 0
[ 2545.080610][ T5882] CPU: 0 UID: 0 PID: 5882 Comm: syz.3.8902 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) 
[ 2545.080634][ T5882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2545.080642][ T5882] Call Trace:
[ 2545.080649][ T5882]  <TASK>
[ 2545.080661][ T5882]  dump_stack_lvl+0x189/0x250
[ 2545.080686][ T5882]  ? __pfx____ratelimit+0x10/0x10
[ 2545.080706][ T5882]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2545.080726][ T5882]  ? __pfx__printk+0x10/0x10
[ 2545.080742][ T5882]  ? __pfx___might_resched+0x10/0x10
[ 2545.080762][ T5882]  ? fs_reclaim_acquire+0x7d/0x100
[ 2545.080780][ T5882]  should_fail_ex+0x414/0x560
[ 2545.080800][ T5882]  should_failslab+0xa8/0x100
[ 2545.080815][ T5882]  __kmalloc_noprof+0xcb/0x4f0
[ 2545.080827][ T5882]  ? tomoyo_encode+0x28b/0x550
[ 2545.080848][ T5882]  tomoyo_encode+0x28b/0x550
[ 2545.080869][ T5882]  tomoyo_realpath_from_path+0x58d/0x5d0
[ 2545.080894][ T5882]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 2545.080909][ T5882]  tomoyo_path_number_perm+0x1e8/0x5a0
[ 2545.080926][ T5882]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2545.080951][ T5882]  ? __lock_acquire+0xab9/0xd20
[ 2545.080981][ T5882]  ? __fget_files+0x2a/0x420
[ 2545.080997][ T5882]  ? __fget_files+0x2a/0x420
[ 2545.081009][ T5882]  ? __fget_files+0x3a0/0x420
[ 2545.081022][ T5882]  ? __fget_files+0x2a/0x420
[ 2545.081038][ T5882]  security_file_ioctl+0xcb/0x2d0
[ 2545.081058][ T5882]  __se_sys_ioctl+0x47/0x170
[ 2545.081087][ T5882]  do_syscall_64+0xfa/0x3b0
[ 2545.081105][ T5882]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2545.081129][ T5882]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2545.081142][ T5882]  ? clear_bhb_loop+0x60/0xb0
[ 2545.081156][ T5882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2545.081168][ T5882] RIP: 0033:0x7f1bce98e929
[ 2545.081180][ T5882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2545.081191][ T5882] RSP: 002b:00007f1bcf875038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2545.081206][ T5882] RAX: ffffffffffffffda RBX: 00007f1bcebb5fa0 RCX: 00007f1bce98e929
[ 2545.081216][ T5882] RDX: 0000200000000f00 RSI: 00000000c0505350 RDI: 0000000000000003
[ 2545.081224][ T5882] RBP: 00007f1bcf875090 R08: 0000000000000000 R09: 0000000000000000
[ 2545.081232][ T5882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2545.081239][ T5882] R13: 0000000000000000 R14: 00007f1bcebb5fa0 R15: 00007f1bcecdfa28
[ 2545.081258][ T5882]  </TASK>
[ 2545.081274][ T5882] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2545.370360][ T5887] netdevsim netdevsim5: Direct firmware load for .
[ 2545.370360][ T5887]  failed with error -2
[ 2545.521488][ T5887] netdevsim netdevsim5: Falling back to sysfs fallback for: .
[ 2545.521488][ T5887] 
[ 2545.564584][ T5208] Dev loop6: unable to read RDB block 7
[ 2545.659517][ T5208]  loop6: unable to read partition table
[ 2545.665648][ T5208] loop6: partition table beyond EOD, truncated
[ 2547.189480][T25801] usb 6-1: new high-speed USB device number 105 using dummy_hcd
[ 2547.330450][T25801] usb 6-1: device descriptor read/64, error -71
[ 2547.759607][T25801] usb 6-1: new high-speed USB device number 106 using dummy_hcd
[ 2547.878775][ T5208] Dev loop6: unable to read RDB block 7
[ 2547.886753][ T5208]  loop6: unable to read partition table
[ 2547.897215][ T5208] loop6: partition table beyond EOD, truncated
[ 2547.913019][T25801] usb 6-1: device descriptor read/64, error -71
[ 2548.031397][T25801] usb usb6-port1: attempt power cycle
[ 2548.369684][T25801] usb 6-1: new high-speed USB device number 107 using dummy_hcd
[ 2548.390382][T25801] usb 6-1: device descriptor read/8, error -71
[ 2548.639584][T25801] usb 6-1: new high-speed USB device number 108 using dummy_hcd
[ 2548.671960][T25801] usb 6-1: device descriptor read/8, error -71
[ 2548.790613][T25801] usb usb6-port1: unable to enumerate USB device
[ 2548.923022][ T5208] Dev loop6: unable to read RDB block 7
[ 2548.933090][ T5208]  loop6: unable to read partition table
[ 2548.953131][ T5208] loop6: partition table beyond EOD, truncated
[ 2549.153098][ T5208] Dev loop6: unable to read RDB block 7
[ 2549.167061][ T5208]  loop6: unable to read partition table
[ 2549.193851][ T5208] loop6: partition table beyond EOD, truncated
[ 2549.476883][ T5923] "syz.1.8912" (5923) uses obsolete ecb(arc4) skcipher
[ 2550.244959][ T5925] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[ 2550.431149][ T5925] usb 3-1: config 0 has no interfaces?
[ 2550.480831][ T5925] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2550.538766][ T5925] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2550.643381][ T5925] usb 3-1: Product: syz
[ 2550.647668][ T5925] usb 3-1: Manufacturer: syz
[ 2550.759265][ T5925] usb 3-1: SerialNumber: syz
[ 2550.933441][ T5925] usb 3-1: config 0 descriptor??
[ 2551.053476][ T5951] ptrace attach of "./syz-executor exec"[32326] was attempted by "./syz-executor exec"[5951]
[ 2551.898322][ T5208] Dev loop6: unable to read RDB block 7
[ 2551.908098][ T5208]  loop6: unable to read partition table
[ 2551.917769][ T5208] loop6: partition table beyond EOD, truncated
[ 2552.289984][T25801] usb 7-1: new full-speed USB device number 39 using dummy_hcd
[ 2552.451983][T25801] usb 7-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[ 2552.468476][T25801] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2552.526906][T25801] usb 7-1: config 0 descriptor??
[ 2552.549981][T25801] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[ 2553.087692][T25801] gp8psk: usb in 128 operation failed.
[ 2553.669812][ T5899] usb 4-1: new full-speed USB device number 111 using dummy_hcd
[ 2553.688116][ T5972] fuse: root generation should be zero
[ 2553.851774][ T5899] usb 4-1: config 0 has an invalid interface number: 230 but max is 0
[ 2553.869684][ T5899] usb 4-1: config 0 has no interface number 0
[ 2553.900699][ T5899] usb 4-1: config 0 interface 230 altsetting 2 endpoint 0x2 has invalid maxpacket 512, setting to 64
[ 2553.981839][ T5899] usb 4-1: config 0 interface 230 altsetting 2 endpoint 0x82 has invalid maxpacket 512, setting to 64
[ 2554.026624][ T5899] usb 4-1: config 0 interface 230 has no altsetting 0
[ 2554.042196][ T5899] usb 4-1: New USB device found, idVendor=0781, idProduct=0005, bcdDevice= 0.05
[ 2554.052075][ T5899] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2554.061399][ T5899] usb 4-1: Product: syz
[ 2554.068634][ T5899] usb 4-1: Manufacturer: syz
[ 2554.077556][ T5899] usb 4-1: SerialNumber: syz
[ 2554.092598][T32596] usb 3-1: USB disconnect, device number 32
[ 2554.158281][ T5899] usb 4-1: config 0 descriptor??
[ 2554.180401][ T5970] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[ 2554.189884][ T5970] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[ 2554.234557][ T5899] ums-usbat 4-1:0.230: USB Mass Storage device detected
[ 2554.288695][ T5899] ums-usbat 4-1:0.230: Quirks match for vid 0781 pid 0005: 1
[ 2554.838553][T25801] gp8psk: FW Version = 253.27.122 (0xfd1b7a)  Build 2075/66/112
[ 2554.967778][ T5994] "syz.2.8928" (5994) uses obsolete ecb(arc4) skcipher
[ 2555.321267][ T5998] fuse: Bad value for 'fd'
[ 2555.471599][ T5999] create_pit_timer: 14 callbacks suppressed
[ 2555.471621][ T5999] kvm: requested 5028 ns i8254 timer period limited to 200000 ns
[ 2555.774285][ T6004] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2555.852672][ T6004] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2556.150235][ T6008] netlink: 'syz.2.8931': attribute type 10 has an invalid length.
[ 2556.168747][ T6007] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2556.225061][T25801] gp8psk: usb in 149 operation failed.
[ 2556.260394][T25801] gp8psk: failed to get FPGA version
[ 2556.295229][T25801] gp8psk: usb in 138 operation failed.
[ 2556.324732][T25801] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[ 2556.393555][T25801] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[ 2556.578285][ T5208] Dev loop6: unable to read RDB block 7
[ 2556.591977][T25801] usb 7-1: USB disconnect, device number 39
[ 2556.649785][ T5208]  loop6: unable to read partition table
[ 2556.650004][ T5899] ums-usbat 4-1:0.230: probe with driver ums-usbat failed with error -5
[ 2556.671591][ T5208] loop6: partition table beyond EOD, truncated
[ 2556.878365][ T6016] netlink: 'syz.1.8934': attribute type 4 has an invalid length.
[ 2556.928380][ T6018] netlink: 'syz.6.8933': attribute type 2 has an invalid length.
[ 2557.057496][ T5208] Dev loop6: unable to read RDB block 7
[ 2557.078319][ T5208]  loop6: unable to read partition table
[ 2557.093247][ T5208] loop6: partition table beyond EOD, truncated
[ 2557.208830][ T6025] netlink: 'syz.2.8938': attribute type 10 has an invalid length.
[ 2557.218070][ T6024] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2557.361029][ T5208] Dev loop6: unable to read RDB block 7
[ 2557.393233][ T5208]  loop6: unable to read partition table
[ 2557.413783][ T5208] loop6: partition table beyond EOD, truncated
[ 2557.477092][ T6035] "syz.1.8941" (6035) uses obsolete ecb(arc4) skcipher
[ 2557.544116][ T5208] Dev loop6: unable to read RDB block 7
[ 2557.551361][ T5208]  loop6: unable to read partition table
[ 2557.562720][ T5208] loop6: partition table beyond EOD, truncated
[ 2557.802950][T25801] usb 4-1: USB disconnect, device number 111
[ 2557.889860][ T3236] usb 7-1: new high-speed USB device number 40 using dummy_hcd
[ 2558.047370][ T3236] usb 7-1: Using ep0 maxpacket: 8
[ 2558.070410][ T3236] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2558.210010][ T3236] usb 7-1: config 0 has no interfaces?
[ 2558.258738][ T3236] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2558.270870][ T3236] usb 7-1: config 0 has no interfaces?
[ 2558.278412][ T3236] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2558.359073][ T3236] usb 7-1: config 0 has no interfaces?
[ 2558.387798][ T3236] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2558.414479][ T3236] usb 7-1: config 0 has no interfaces?
[ 2558.445718][ T3236] usb 7-1: New USB device found, idVendor=046d, idProduct=08b1, bcdDevice=6d.2a
[ 2558.465706][ T3236] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2558.481689][ T3236] usb 7-1: config 0 descriptor??
[ 2559.479498][T25801] usb 4-1: new high-speed USB device number 112 using dummy_hcd
[ 2559.872470][T25801] usb 4-1: Using ep0 maxpacket: 8
[ 2559.943516][T25801] usb 4-1: config 5 has an invalid interface number: 162 but max is 0
[ 2559.962710][T25801] usb 4-1: config 5 has no interface number 0
[ 2559.996909][T25801] usb 4-1: config 5 interface 162 has no altsetting 0
[ 2560.045093][T25801] usb 4-1: New USB device found, idVendor=04e6, idProduct=0009, bcdDevice= 2.00
[ 2560.074548][T25801] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2560.120951][T25801] usb 4-1: Product: syz
[ 2560.188494][T25801] usb 4-1: Manufacturer: syz
[ 2560.217912][T25801] usb 4-1: SerialNumber: syz
[ 2563.668103][ T6085] binder: 6081:6085 ioctl c0046209 0 returned -22
[ 2563.893643][T18542] usb 7-1: USB disconnect, device number 40
[ 2563.965299][ T5208] Dev loop6: unable to read RDB block 7
[ 2564.004873][ T5208]  loop6: unable to read partition table
[ 2564.025375][ T5208] loop6: partition table beyond EOD, truncated
[ 2564.264828][T25801] usb-storage 4-1:5.162: USB Mass Storage device detected
[ 2564.354735][T25801] usb-storage 4-1:5.162: This device (04e6,0009,0200 S 4b P 01) has an unneeded Protocol entry in unusual_devs.h (kernel 6.16.0-rc1-syzkaller-00203-g4774cfe3543a)
[ 2564.354735][T25801]    Please send a copy of this message to <linux-usb@vger.kernel.org> and <usb-storage@lists.one-eyed-alien.net>
[ 2564.563428][T25801] usb 4-1: USB disconnect, device number 112
[ 2564.887177][ T6110] input: syz0 as /devices/virtual/input/input109
[ 2565.143098][   T30] audit: type=1326 audit(1749925009.470:9815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6111 comm="syz.1.8960" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff4f3f8e929 code=0x0
[ 2566.568631][ T3942] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 2566.580888][ T3942] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 2566.591964][ T3942] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 2566.661034][ T3942] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 2566.689267][ T3942] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 2567.155868][   T49] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2567.188995][ T6124] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8962'.
[ 2567.397119][ T5208] Dev loop6: unable to read RDB block 7
[ 2567.416388][ T5208]  loop6: unable to read partition table
[ 2567.424758][   T49] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2567.426812][ T6131] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8962'.
[ 2567.443185][ T5208] loop6: partition table beyond EOD, truncated
[ 2567.697226][ T6143] netlink: 84 bytes leftover after parsing attributes in process `syz.6.8969'.
[ 2567.722700][   T49] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2567.893008][   T49] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2568.188059][ T6155] fuse: Bad value for 'fd'
[ 2568.329500][T25801] usb 6-1: new high-speed USB device number 109 using dummy_hcd
[ 2568.337912][ T5208] Dev loop6: unable to read RDB block 7
[ 2568.433199][ T5208]  loop6: unable to read partition table
[ 2568.455696][ T5208] loop6: partition table beyond EOD, truncated
[ 2568.770139][ T3942] Bluetooth: hci1: command tx timeout
[ 2568.935657][T25801] usb 6-1: config 0 has no interfaces?
[ 2568.985602][T25801] usb 6-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2569.016761][T25801] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2569.030016][T25801] usb 6-1: Product: syz
[ 2569.034316][T25801] usb 6-1: Manufacturer: syz
[ 2569.039154][T25801] usb 6-1: SerialNumber: syz
[ 2569.058173][T25801] usb 6-1: config 0 descriptor??
[ 2569.521004][ T6120] chnl_net:caif_netlink_parms(): no params data found
[ 2569.962728][   T49] bridge_slave_1: left allmulticast mode
[ 2569.987550][   T49] bridge_slave_1: left promiscuous mode
[ 2570.029952][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2570.107496][   T49] bridge_slave_0: left allmulticast mode
[ 2570.130139][   T49] bridge_slave_0: left promiscuous mode
[ 2570.136952][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2570.150952][ T6180] vivid-000: disconnect
[ 2570.285033][ T6165] fuse: Bad value for 'fd'
[ 2570.881825][ T3942] Bluetooth: hci1: command tx timeout
[ 2571.646206][ T5208] Dev loop6: unable to read RDB block 7
[ 2571.652364][ T5208]  loop6: unable to read partition table
[ 2571.664198][ T5208] loop6: partition table beyond EOD, truncated
[ 2571.674157][ T6173] vivid-000: reconnect
[ 2571.743208][T18542] usb 6-1: USB disconnect, device number 109
[ 2572.080086][   T24] usb 7-1: new high-speed USB device number 41 using dummy_hcd
[ 2572.239834][   T24] usb 7-1: Using ep0 maxpacket: 8
[ 2572.259560][   T24] usb 7-1: config index 0 descriptor too short (expected 5924, got 36)
[ 2572.267946][   T24] usb 7-1: config 250 has an invalid interface number: 228 but max is -1
[ 2572.310125][T18542] usb 6-1: new high-speed USB device number 110 using dummy_hcd
[ 2572.314423][   T24] usb 7-1: config 250 has 1 interface, different from the descriptor's value: 0
[ 2572.339519][   T24] usb 7-1: config 250 has no interface number 0
[ 2572.345905][   T24] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[ 2572.418467][   T24] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[ 2572.448080][   T24] usb 7-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[ 2572.502280][   T24] usb 7-1: config 250 interface 228 has no altsetting 0
[ 2572.524774][   T24] usb 7-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[ 2572.559494][   T24] usb 7-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[ 2572.579448][   T24] usb 7-1: Product: syz
[ 2572.592744][   T24] usb 7-1: SerialNumber: syz
[ 2572.614004][   T24] hub 7-1:250.228: bad descriptor, ignoring hub
[ 2572.622509][   T24] hub 7-1:250.228: probe with driver hub failed with error -5
[ 2572.623020][T18542] usb 6-1: config 0 has no interfaces?
[ 2572.835604][   T24] usblp 7-1:250.228: usblp0: USB Bidirectional printer dev 41 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[ 2572.949727][ T3942] Bluetooth: hci1: command tx timeout
[ 2573.000003][T18542] usb 6-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2573.026849][T18542] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2573.103752][T18542] usb 6-1: Product: syz
[ 2573.123428][ T6211] fuse: Unknown parameter 'euid>00000000000000004480'
[ 2573.151699][T18542] usb 6-1: Manufacturer: syz
[ 2573.157660][T18542] usb 6-1: SerialNumber: syz
[ 2573.180267][   T24] usb 7-1: USB disconnect, device number 41
[ 2573.182867][T18542] usb 6-1: config 0 descriptor??
[ 2573.217780][   T24] usblp0: removed
[ 2573.651445][ T5208] Dev loop6: unable to read RDB block 7
[ 2573.665131][ T5208]  loop6: unable to read partition table
[ 2573.686906][ T5208] loop6: partition table beyond EOD, truncated
[ 2574.099487][T18542] usb 7-1: new high-speed USB device number 42 using dummy_hcd
[ 2574.262452][T18542] usb 7-1: config 0 has no interfaces?
[ 2574.271522][T18542] usb 7-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2574.285531][T18542] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2574.299041][T18542] usb 7-1: Product: syz
[ 2574.308132][T18542] usb 7-1: Manufacturer: syz
[ 2574.316980][T18542] usb 7-1: SerialNumber: syz
[ 2574.336118][T18542] usb 7-1: config 0 descriptor??
[ 2574.378647][   T49] bond0 (unregistering): Released all slaves
[ 2574.513535][ T6224] bridge4: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[ 2574.524017][ T6224] bridge4: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[ 2575.008257][ T6120] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2575.013709][ T3942] Bluetooth: hci1: command tx timeout
[ 2575.051444][   T30] audit: type=1326 audit(1749925019.380:9816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6232 comm="syz.1.8985" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff4f3f8e929 code=0x0
[ 2575.077013][ T6120] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2575.113393][ T6120] bridge_slave_0: entered allmulticast mode
[ 2575.147700][ T6120] bridge_slave_0: entered promiscuous mode
[ 2575.168698][ T6120] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2575.198667][ T6120] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2575.213572][ T6120] bridge_slave_1: entered allmulticast mode
[ 2575.238270][ T6120] bridge_slave_1: entered promiscuous mode
[ 2575.447819][ T6120] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2575.523985][ T6120] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2575.832610][ T6120] team0: Port device team_slave_0 added
[ 2575.972966][ T6120] team0: Port device team_slave_1 added
[ 2576.090615][ T5899] usb 6-1: USB disconnect, device number 110
[ 2576.136160][   T49] hsr_slave_0: left promiscuous mode
[ 2576.167876][   T49] hsr_slave_1: left promiscuous mode
[ 2576.191860][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2576.228294][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2576.281879][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2576.310781][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2576.400722][   T49] veth1_macvtap: left allmulticast mode
[ 2576.422102][   T49] veth1_macvtap: left promiscuous mode
[ 2576.439630][   T49] veth0_macvtap: left promiscuous mode
[ 2576.729295][ T5899] usb 7-1: USB disconnect, device number 42
[ 2576.797830][ T5208] Dev loop6: unable to read RDB block 7
[ 2576.803871][ T5208]  loop6: unable to read partition table
[ 2576.809932][ T5208] loop6: partition table beyond EOD, truncated
[ 2576.961283][   T49] pimreg (unregistering): left allmulticast mode
[ 2577.046046][ T5208] Dev loop6: unable to read RDB block 7
[ 2577.072757][ T5208]  loop6: unable to read partition table
[ 2577.121862][ T5208] loop6: partition table beyond EOD, truncated
[ 2577.424099][ T5208] Dev loop6: unable to read RDB block 7
[ 2577.498482][ T5208]  loop6: unable to read partition table
[ 2577.518596][ T5208] loop6: partition table beyond EOD, truncated
[ 2578.963445][   T49] team0 (unregistering): Port device team_slave_1 removed
[ 2579.097513][   T49] team0 (unregistering): Port device C removed
[ 2579.355306][ T6291] binder: 6286:6291 ioctl ae01 0 returned -22
[ 2580.294494][ T5208] Dev loop6: unable to read RDB block 7
[ 2580.331600][ T5208]  loop6: unable to read partition table
[ 2580.337855][ T5208] loop6: partition table beyond EOD, truncated
[ 2580.389665][ T6120] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2580.413088][ T6120] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2580.499874][ T6120] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2580.513177][ T6300] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8997'.
[ 2580.549606][ T6300] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 2580.559587][ T6300] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 2580.568409][ T6300] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 2580.577406][ T6300] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 2580.642657][ T6300] vxlan0: entered promiscuous mode
[ 2580.654833][ T6120] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2580.672241][ T6120] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2580.711277][ T6300] kvm: Disabled LAPIC found during irq injection
[ 2580.743328][ T6120] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2581.082645][ T6120] hsr_slave_0: entered promiscuous mode
[ 2581.147268][ T6120] hsr_slave_1: entered promiscuous mode
[ 2581.618636][ T5208] Dev loop6: unable to read RDB block 7
[ 2581.665284][ T5208]  loop6: unable to read partition table
[ 2581.753957][ T5208] loop6: partition table beyond EOD, truncated
[ 2582.173636][ T5208] Dev loop6: unable to read RDB block 7
[ 2582.219494][ T5208]  loop6: unable to read partition table
[ 2582.225539][ T5208] loop6: partition table beyond EOD, truncated
[ 2582.589072][ T5208] Dev loop6: unable to read RDB block 7
[ 2582.648185][ T5208]  loop6: unable to read partition table
[ 2582.692846][ T5208] loop6: partition table beyond EOD, truncated
[ 2583.559664][ T3236] usb 4-1: new high-speed USB device number 113 using dummy_hcd
[ 2583.674260][ T6120] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 2583.712407][ T6120] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 2583.724805][ T3236] usb 4-1: config 0 has no interfaces?
[ 2583.738775][ T3236] usb 4-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2583.749011][ T3236] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2583.758314][ T3236] usb 4-1: Product: syz
[ 2583.763313][ T3236] usb 4-1: Manufacturer: syz
[ 2583.822200][ T6120] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 2583.843859][ T3236] usb 4-1: SerialNumber: syz
[ 2583.880281][ T3236] usb 4-1: config 0 descriptor??
[ 2583.900838][ T6120] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 2584.095651][ T6345] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 2584.119913][ T6345] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 2584.138508][ T6345] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2584.160150][ T6345] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 2584.281836][ T6345] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 2584.297764][ T6345] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 2584.364360][ T6345] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2584.566329][ T6345] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 2584.653779][ T6345] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2584.661888][ T6345] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 2584.761027][ T6345] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 2584.910509][ T6120] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2585.014715][ T6120] 8021q: adding VLAN 0 to HW filter on device team0
[ 2585.138857][ T3527] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2585.146203][ T3527] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2585.337770][T21958] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2585.345135][T21958] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2585.373840][ T5208] Dev loop6: unable to read RDB block 7
[ 2585.386959][ T5208]  loop6: unable to read partition table
[ 2585.404673][ T5208] loop6: partition table beyond EOD, truncated
[ 2585.490161][ T3942] Bluetooth: hci2: command 0x0406 tx timeout
[ 2585.642568][ T5208] Dev loop6: unable to read RDB block 7
[ 2585.662927][ T5208]  loop6: unable to read partition table
[ 2585.697286][ T5208] loop6: partition table beyond EOD, truncated
[ 2585.801699][ T6120] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2585.976156][ T6388] netlink: 'syz.6.9014': attribute type 21 has an invalid length.
[ 2586.017142][ T6388] netlink: 132 bytes leftover after parsing attributes in process `syz.6.9014'.
[ 2586.079953][ T6120] veth0_vlan: entered promiscuous mode
[ 2586.134486][ T6120] veth1_vlan: entered promiscuous mode
[ 2586.147361][T18542] usb 4-1: USB disconnect, device number 113
[ 2586.209739][ T3942] Bluetooth: hci4: command 0x0406 tx timeout
[ 2586.285670][ T6120] veth0_macvtap: entered promiscuous mode
[ 2586.305637][ T3942] Bluetooth: hci5: command 0x0406 tx timeout
[ 2586.337861][ T6120] veth1_macvtap: entered promiscuous mode
[ 2586.370508][ T3942] Bluetooth: hci0: command 0x0406 tx timeout
[ 2586.403527][ T6120] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2586.597259][ T6120] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2586.640189][ T6120] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2586.649193][ T6120] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2586.689991][ T3942] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2586.721399][ T6120] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2586.760842][ T6120] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2587.058079][ T5208] Dev loop6: unable to read RDB block 7
[ 2587.064432][ T5208]  loop6: unable to read partition table
[ 2587.073906][ T5208] loop6: partition table beyond EOD, truncated
[ 2587.598939][ T3942] Bluetooth: hci2: command 0x0406 tx timeout
[ 2587.645082][ T5208] Dev loop6: unable to read RDB block 7
[ 2587.657305][ T5208]  loop6: unable to read partition table
[ 2587.669967][ T5208] loop6: partition table beyond EOD, truncated
[ 2587.967377][T21958] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2588.029606][T21958] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2588.119575][   T24] usb 7-1: new high-speed USB device number 43 using dummy_hcd
[ 2588.290761][ T3942] Bluetooth: hci4: command 0x0406 tx timeout
[ 2588.366502][   T24] usb 7-1: too many configurations: 9, using maximum allowed: 8
[ 2588.369798][ T3942] Bluetooth: hci5: command 0x0406 tx timeout
[ 2588.396880][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 2588.449505][ T3942] Bluetooth: hci0: command 0x0406 tx timeout
[ 2588.599765][   T24] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 2588.620679][T21958] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2588.632853][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[ 2588.648252][T21958] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2588.682782][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 2588.726643][   T24] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 2588.749910][ T5925] usb 4-1: new high-speed USB device number 114 using dummy_hcd
[ 2588.769801][ T3942] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2588.787561][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[ 2588.820525][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 2588.869066][   T24] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 2588.916933][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[ 2588.930036][ T5925] usb 4-1: Using ep0 maxpacket: 8
[ 2588.966304][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 2588.976207][ T5925] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 2589.000891][   T24] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 2589.023449][ T5925] usb 4-1: config 8 interface 0 altsetting 7 bulk endpoint 0x3 has invalid maxpacket 8
[ 2589.064211][ T5925] usb 4-1: config 8 interface 0 has no altsetting 0
[ 2589.072370][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[ 2589.098413][ T6433] netlink: 'syz.5.9021': attribute type 1 has an invalid length.
[ 2589.114955][ T5925] usb 4-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=6a.e5
[ 2589.126716][ T6434] netlink: 'syz.5.9021': attribute type 1 has an invalid length.
[ 2589.170080][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 2589.199705][ T5925] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2589.208016][   T24] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 2589.219202][ T5925] usb 4-1: Product: syz
[ 2589.224113][ T5925] usb 4-1: Manufacturer: syz
[ 2589.228768][ T5925] usb 4-1: SerialNumber: syz
[ 2589.233639][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[ 2589.260688][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 2589.283402][ T6424] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[ 2589.300344][   T24] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 2589.311772][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[ 2589.322386][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 2589.357158][   T24] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 2589.377640][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[ 2589.464654][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 2589.634032][   T24] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 2589.825757][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[ 2589.862114][   T24] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[ 2589.904716][   T24] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[ 2589.933953][   T24] usb 7-1: Product: syz
[ 2589.938262][   T24] usb 7-1: Manufacturer: syz
[ 2589.977432][   T24] usb 7-1: SerialNumber: syz
[ 2590.010450][   T24] usb 7-1: config 0 descriptor??
[ 2590.052744][ T5925] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[ 2590.086244][   T24] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0
[ 2590.099038][ T5925] usb 4-1: selecting invalid altsetting 0
[ 2590.280005][T18542] usb 6-1: new high-speed USB device number 111 using dummy_hcd
[ 2590.331751][ T5925] usb 4-1: USB disconnect, device number 114
[ 2590.414649][T18542] usb 6-1: device descriptor read/64, error -71
[ 2590.501064][T30856] udevd[30856]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:8.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 2590.624006][    C1] usb 7-1: yurex_control_callback - control failed: -71
[ 2590.639993][ T6467] netlink: 48 bytes leftover after parsing attributes in process `syz.2.9028'.
[ 2590.702841][T18542] usb 6-1: new high-speed USB device number 112 using dummy_hcd
[ 2590.772741][T32596] usb 7-1: USB disconnect, device number 43
[ 2590.818306][T32596] yurex 7-1:0.0: USB YUREX #0 now disconnected
[ 2590.857815][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 2590.864343][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 2590.871029][ T3942] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2590.912077][T18542] usb 6-1: device descriptor read/64, error -71
[ 2591.031356][T18542] usb usb6-port1: attempt power cycle
[ 2591.529523][T18542] usb 6-1: new high-speed USB device number 113 using dummy_hcd
[ 2591.595117][ T5208] Dev loop6: unable to read RDB block 7
[ 2591.617754][T18542] usb 6-1: device descriptor read/8, error -71
[ 2591.642736][ T5208]  loop6: unable to read partition table
[ 2591.648744][ T5208] loop6: partition table beyond EOD, truncated
[ 2592.101805][ T6470] fuse: Bad value for 'fd'
[ 2592.140667][   T24] usb 7-1: new high-speed USB device number 44 using dummy_hcd
[ 2592.310029][T18542] usb 6-1: new high-speed USB device number 114 using dummy_hcd
[ 2592.397803][T18542] usb 6-1: device descriptor read/8, error -71
[ 2592.525686][T32324] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 2592.535621][T18542] usb usb6-port1: unable to enumerate USB device
[ 2592.545946][   T24] usb 7-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 2592.547109][T32324] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 2592.569135][T32324] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 2592.619886][T32324] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 2592.647895][T32324] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 2592.676854][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2592.773673][   T24] usb 7-1: config 0 descriptor??
[ 2592.808928][T31534] syz_tun (unregistering): left allmulticast mode
[ 2592.885523][   T24] cp210x 7-1:0.0: cp210x converter detected
[ 2593.236501][T21958] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2593.309616][   T24] cp210x 7-1:0.0: failed to get vendor val 0x0010 size 3: -32
[ 2593.351806][   T24] usb 7-1: cp210x converter now attached to ttyUSB0
[ 2593.370359][ T6503] binder: BINDER_SET_CONTEXT_MGR already set
[ 2593.376616][ T6503] binder: 6501:6503 ioctl 4018620d 200000000040 returned -16
[ 2593.564082][ T6486] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2593.610043][ T6486] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2593.658851][ T6486] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2593.735136][ T6486] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2593.846399][T21958] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2594.067055][ T6522] FAULT_INJECTION: forcing a failure.
[ 2594.067055][ T6522] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2594.081177][ T6522] CPU: 1 UID: 0 PID: 6522 Comm: syz.1.9036 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) 
[ 2594.081211][ T6522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2594.081224][ T6522] Call Trace:
[ 2594.081234][ T6522]  <TASK>
[ 2594.081243][ T6522]  dump_stack_lvl+0x189/0x250
[ 2594.081278][ T6522]  ? __pfx____ratelimit+0x10/0x10
[ 2594.081297][ T6522]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2594.081317][ T6522]  ? __pfx__printk+0x10/0x10
[ 2594.081331][ T6522]  ? __might_fault+0xb0/0x130
[ 2594.081350][ T6522]  should_fail_ex+0x414/0x560
[ 2594.081370][ T6522]  _copy_from_user+0x2d/0xb0
[ 2594.081384][ T6522]  kstrtouint_from_user+0xc4/0x170
[ 2594.081403][ T6522]  ? __pfx_kstrtouint_from_user+0x10/0x10
[ 2594.081432][ T6522]  proc_fail_nth_write+0x88/0x240
[ 2594.081448][ T6522]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 2594.081467][ T6522]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 2594.081483][ T6522]  vfs_write+0x27b/0xa90
[ 2594.081508][ T6522]  ? __pfx_vfs_write+0x10/0x10
[ 2594.081529][ T6522]  ? __fget_files+0x2a/0x420
[ 2594.081546][ T6522]  ? __fget_files+0x3a0/0x420
[ 2594.081559][ T6522]  ? __fget_files+0x2a/0x420
[ 2594.081578][ T6522]  ksys_write+0x145/0x250
[ 2594.081591][ T6522]  ? __pfx_ksys_write+0x10/0x10
[ 2594.081606][ T6522]  ? do_syscall_64+0xbe/0x3b0
[ 2594.081621][ T6522]  do_syscall_64+0xfa/0x3b0
[ 2594.081631][ T6522]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2594.081649][ T6522]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2594.081662][ T6522]  ? clear_bhb_loop+0x60/0xb0
[ 2594.081677][ T6522]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2594.081689][ T6522] RIP: 0033:0x7ff4f3f8d3df
[ 2594.081702][ T6522] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 2594.081716][ T6522] RSP: 002b:00007ff4f4d6b030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 2594.081732][ T6522] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff4f3f8d3df
[ 2594.081741][ T6522] RDX: 0000000000000001 RSI: 00007ff4f4d6b0a0 RDI: 0000000000000003
[ 2594.081749][ T6522] RBP: 00007ff4f4d6b090 R08: 0000000000000000 R09: 0000000000000000
[ 2594.081757][ T6522] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 2594.081764][ T6522] R13: 0000000000000001 R14: 00007ff4f41b6080 R15: 00007ff4f42dfa28
[ 2594.081783][ T6522]  </TASK>
[ 2594.346892][T21958] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2594.598581][T21958] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2594.770125][T32596] usb 7-1: USB disconnect, device number 44
[ 2594.776970][T32324] Bluetooth: hci2: command tx timeout
[ 2594.794918][T32596] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 2594.844800][T32596] cp210x 7-1:0.0: device disconnected
[ 2595.227977][ T6493] chnl_net:caif_netlink_parms(): no params data found
[ 2595.375852][T21958] veth3: left allmulticast mode
[ 2595.398324][T21958] bridge2: port 2(veth3) entered disabled state
[ 2595.446803][ T6553] usb usb8: usbfs: process 6553 (syz.6.9041) did not claim interface 0 before use
[ 2595.480828][T21958] ip6gretap1: left allmulticast mode
[ 2595.554428][T21958] ip6gretap1: left promiscuous mode
[ 2595.598304][T21958] bridge2: port 1(ip6gretap1) entered disabled state
[ 2596.320515][ T6557] fuse: Bad value for 'fd'
[ 2596.850566][T32324] Bluetooth: hci2: command tx timeout
[ 2597.820809][ T6596] FAULT_INJECTION: forcing a failure.
[ 2597.820809][ T6596] name failslab, interval 1, probability 0, space 0, times 0
[ 2597.833779][ T6596] CPU: 0 UID: 0 PID: 6596 Comm: syz.1.9046 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) 
[ 2597.833808][ T6596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2597.833820][ T6596] Call Trace:
[ 2597.833826][ T6596]  <TASK>
[ 2597.833832][ T6596]  dump_stack_lvl+0x189/0x250
[ 2597.833857][ T6596]  ? __pfx____ratelimit+0x10/0x10
[ 2597.833877][ T6596]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2597.833897][ T6596]  ? __pfx__printk+0x10/0x10
[ 2597.833913][ T6596]  ? __pfx___might_resched+0x10/0x10
[ 2597.833933][ T6596]  ? fs_reclaim_acquire+0x7d/0x100
[ 2597.833950][ T6596]  should_fail_ex+0x414/0x560
[ 2597.833969][ T6596]  should_failslab+0xa8/0x100
[ 2597.833983][ T6596]  __kmalloc_noprof+0xcb/0x4f0
[ 2597.833995][ T6596]  ? __se_sys_futex_waitv+0x17d/0x280
[ 2597.834012][ T6596]  __se_sys_futex_waitv+0x17d/0x280
[ 2597.834028][ T6596]  ? __pfx___se_sys_futex_waitv+0x10/0x10
[ 2597.834045][ T6596]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 2597.834058][ T6596]  ? __task_pid_nr_ns+0x28/0x470
[ 2597.834075][ T6596]  ? do_syscall_64+0xbe/0x3b0
[ 2597.834086][ T6596]  ? __x64_sys_futex_waitv+0x20/0xc0
[ 2597.834102][ T6596]  do_syscall_64+0xfa/0x3b0
[ 2597.834112][ T6596]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2597.834130][ T6596]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2597.834142][ T6596]  ? clear_bhb_loop+0x60/0xb0
[ 2597.834157][ T6596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2597.834169][ T6596] RIP: 0033:0x7ff4f3f8e929
[ 2597.834192][ T6596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2597.834209][ T6596] RSP: 002b:00007ff4f4d8c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c1
[ 2597.834231][ T6596] RAX: ffffffffffffffda RBX: 00007ff4f41b5fa0 RCX: 00007ff4f3f8e929
[ 2597.834246][ T6596] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000200000001080
[ 2597.834258][ T6596] RBP: 00007ff4f4d8c090 R08: 0000000000000001 R09: 0000000000000000
[ 2597.834270][ T6596] R10: 0000200000001100 R11: 0000000000000246 R12: 0000000000000002
[ 2597.834282][ T6596] R13: 0000000000000000 R14: 00007ff4f41b5fa0 R15: 00007ff4f42dfa28
[ 2597.834311][ T6596]  </TASK>
[ 2598.563193][T21958] bond0 (unregistering): (slave wlan1): Releasing backup interface
[ 2598.577602][T21958] bond0 (unregistering): Released all slaves
[ 2598.877159][T21958] bond1 (unregistering): Released all slaves
[ 2598.938157][T32324] Bluetooth: hci2: command tx timeout
[ 2599.152133][T21958] bond2 (unregistering): Released all slaves
[ 2599.362213][T21958] tipc: Disabling bearer <eth:macvlan1>
[ 2599.438782][T21958] tipc: Left network mode
[ 2599.476422][ T6621] netlink: 144 bytes leftover after parsing attributes in process `syz.1.9051'.
[ 2599.641687][ T6493] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2599.649234][ T6493] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2599.657754][ T6493] bridge_slave_0: entered allmulticast mode
[ 2599.667243][ T6493] bridge_slave_0: entered promiscuous mode
[ 2599.789763][ T6493] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2599.806106][ T6493] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2599.819034][ T6493] bridge_slave_1: entered allmulticast mode
[ 2599.828014][ T6493] bridge_slave_1: entered promiscuous mode
[ 2600.077383][ T6493] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2600.475812][ T6493] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2600.485425][ T6653] usb usb8: usbfs: process 6653 (syz.1.9057) did not claim interface 0 before use
[ 2601.013389][T32324] Bluetooth: hci2: command tx timeout
[ 2601.038466][ T6668] fuse: Bad value for 'fd'
[ 2601.057432][ T6493] team0: Port device team_slave_0 added
[ 2601.122528][ T6493] team0: Port device team_slave_1 added
[ 2601.156923][ T6629] fuse: Bad value for 'fd'
[ 2602.035928][T21958] hsr_slave_0: left promiscuous mode
[ 2602.081764][T21958] hsr_slave_1: left promiscuous mode
[ 2602.148090][T21958] veth1_macvtap: left promiscuous mode
[ 2602.219751][T21958] veth0_macvtap: left promiscuous mode
[ 2602.228454][T21958] veth1_vlan: left allmulticast mode
[ 2602.234688][T21958] veth1_vlan: left promiscuous mode
[ 2602.509944][T21958] pim6reg (unregistering): left allmulticast mode
[ 2602.514496][ T6687] FAULT_INJECTION: forcing a failure.
[ 2602.514496][ T6687] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2602.577590][ T6687] CPU: 1 UID: 0 PID: 6687 Comm: syz.5.9061 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) 
[ 2602.577624][ T6687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2602.577638][ T6687] Call Trace:
[ 2602.577646][ T6687]  <TASK>
[ 2602.577656][ T6687]  dump_stack_lvl+0x189/0x250
[ 2602.577694][ T6687]  ? __pfx____ratelimit+0x10/0x10
[ 2602.577725][ T6687]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2602.577755][ T6687]  ? __pfx__printk+0x10/0x10
[ 2602.577792][ T6687]  should_fail_ex+0x414/0x560
[ 2602.577825][ T6687]  _copy_to_user+0x31/0xb0
[ 2602.577849][ T6687]  simple_read_from_buffer+0xe1/0x170
[ 2602.577878][ T6687]  proc_fail_nth_read+0x1df/0x250
[ 2602.577908][ T6687]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2602.577936][ T6687]  ? rw_verify_area+0x258/0x650
[ 2602.577966][ T6687]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2602.577992][ T6687]  vfs_read+0x1fd/0x980
[ 2602.578029][ T6687]  ? __pfx___mutex_lock+0x10/0x10
[ 2602.578050][ T6687]  ? __pfx_vfs_read+0x10/0x10
[ 2602.578080][ T6687]  ? __fget_files+0x2a/0x420
[ 2602.578105][ T6687]  ? __fget_files+0x3a0/0x420
[ 2602.578124][ T6687]  ? __fget_files+0x2a/0x420
[ 2602.578154][ T6687]  ksys_read+0x145/0x250
[ 2602.578175][ T6687]  ? __pfx_ksys_read+0x10/0x10
[ 2602.578202][ T6687]  ? rcu_is_watching+0x15/0xb0
[ 2602.578238][ T6687]  ? do_syscall_64+0xbe/0x3b0
[ 2602.578260][ T6687]  do_syscall_64+0xfa/0x3b0
[ 2602.578276][ T6687]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2602.578302][ T6687]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2602.578320][ T6687]  ? clear_bhb_loop+0x60/0xb0
[ 2602.578344][ T6687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2602.578376][ T6687] RIP: 0033:0x7f356538d33c
[ 2602.578395][ T6687] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 2602.578413][ T6687] RSP: 002b:00007f35631f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2602.578435][ T6687] RAX: ffffffffffffffda RBX: 00007f35655b6080 RCX: 00007f356538d33c
[ 2602.578451][ T6687] RDX: 000000000000000f RSI: 00007f35631f60a0 RDI: 0000000000000006
[ 2602.578464][ T6687] RBP: 00007f35631f6090 R08: 0000000000000000 R09: 0000000000000000
[ 2602.578477][ T6687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2602.578490][ T6687] R13: 0000000000000000 R14: 00007f35655b6080 R15: 00007f35656dfa28
[ 2602.578524][ T6687]  </TASK>
[ 2602.830545][T21958] pimreg (unregistering): left allmulticast mode
[ 2604.249797][T21958] team0 (unregistering): Port device macvlan0 removed
[ 2606.006018][ T6719] fuse: Bad value for 'fd'
[ 2608.045896][ T6747] fuse: Bad value for 'fd'
[ 2608.419141][ T6753] usb usb8: usbfs: process 6753 (syz.6.9074) did not claim interface 0 before use
[ 2609.058605][ T6493] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2609.136456][ T6493] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2609.201407][ T6493] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2609.456116][ T6493] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2609.616854][ T6493] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2609.738934][ T6493] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2610.114045][ T6493] hsr_slave_0: entered promiscuous mode
[ 2610.228580][ T6493] hsr_slave_1: entered promiscuous mode
[ 2610.253048][ T6493] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2610.266834][ T6493] Cannot create hsr debugfs directory
[ 2610.428769][T21958] IPVS: stop unused estimator thread 0...
[ 2610.816535][ T6775] random: crng reseeded on system resumption
[ 2611.460763][ T6783] netlink: 368 bytes leftover after parsing attributes in process `syz.2.9079'.
[ 2612.676212][ T6810] fuse: Bad value for 'fd'
[ 2613.534022][ T6807] fuse: Bad value for 'fd'
[ 2615.253344][ T6493] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 2615.291843][ T6493] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 2615.304488][ T6493] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 2615.354974][ T6493] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 2615.675054][ T6866] usb usb8: usbfs: process 6866 (syz.2.9090) did not claim interface 0 before use
[ 2615.693530][ T6867] SET target dimension over the limit!
[ 2615.768316][ T6493] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2615.933331][ T6493] 8021q: adding VLAN 0 to HW filter on device team0
[ 2616.033618][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2616.040904][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2616.156497][T32421] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2616.163799][T32421] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2617.289595][T18542] usb 7-1: new high-speed USB device number 45 using dummy_hcd
[ 2617.313816][ T6493] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2617.518611][T18542] usb 7-1: no configurations
[ 2617.527834][T18542] usb 7-1: can't read configurations, error -22
[ 2617.725051][ T6493] veth0_vlan: entered promiscuous mode
[ 2617.742526][T18542] usb 7-1: new high-speed USB device number 46 using dummy_hcd
[ 2617.826759][ T6493] veth1_vlan: entered promiscuous mode
[ 2617.922814][ T6493] veth0_macvtap: entered promiscuous mode
[ 2617.951700][ T6493] veth1_macvtap: entered promiscuous mode
[ 2618.055006][T18542] usb 7-1: no configurations
[ 2618.072722][ T6493] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2618.099385][T18542] usb 7-1: can't read configurations, error -22
[ 2618.144778][ T6493] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2618.164353][T18542] usb usb7-port1: attempt power cycle
[ 2618.292505][ T6493] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2618.379577][ T6493] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2618.427671][ T6493] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2618.459752][ T6493] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2618.609716][T18542] usb 7-1: new high-speed USB device number 47 using dummy_hcd
[ 2618.703094][T18542] usb 7-1: no configurations
[ 2618.722355][T18542] usb 7-1: can't read configurations, error -22
[ 2618.939559][T18542] usb 7-1: new high-speed USB device number 48 using dummy_hcd
[ 2619.007409][T18542] usb 7-1: no configurations
[ 2619.023979][T18542] usb 7-1: can't read configurations, error -22
[ 2619.056045][T18542] usb usb7-port1: unable to enumerate USB device
[ 2619.242348][  T768] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2619.335511][  T768] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2619.487898][T21958] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2619.509416][T21958] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2620.347247][ T6931] "syz.6.9103" (6931) uses obsolete ecb(arc4) skcipher
[ 2621.483226][ T6947] usb usb8: usbfs: process 6947 (syz.6.9105) did not claim interface 0 before use
[ 2623.779675][T32596] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[ 2623.841386][   T30] audit: type=1326 audit(1749925068.140:9817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.5.9111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f356538e929 code=0x7ffc0000
[ 2623.923084][   T30] audit: type=1326 audit(1749925068.140:9818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.5.9111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f356538e929 code=0x7ffc0000
[ 2623.969606][T32596] usb 3-1: Using ep0 maxpacket: 32
[ 2624.001584][T32596] usb 3-1: config 0 has an invalid interface number: 132 but max is 0
[ 2624.019556][T32596] usb 3-1: config 0 has no interface number 0
[ 2624.057204][T32596] usb 3-1: config 0 interface 132 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 2624.096507][T32596] usb 3-1: New USB device found, idVendor=0413, idProduct=6023, bcdDevice=ec.e5
[ 2624.109957][   T30] audit: type=1326 audit(1749925068.140:9819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.5.9111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7f356538e929 code=0x7ffc0000
[ 2624.116172][T32596] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2624.231687][T32596] usb 3-1: Product: syz
[ 2624.231755][   T30] audit: type=1326 audit(1749925068.140:9820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.5.9111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f356538e929 code=0x7ffc0000
[ 2624.241264][T32596] usb 3-1: Manufacturer: syz
[ 2624.366082][   T30] audit: type=1326 audit(1749925068.140:9821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.5.9111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f356538e929 code=0x7ffc0000
[ 2624.375880][ T6992] "syz.5.9115" (6992) uses obsolete ecb(arc4) skcipher
[ 2624.400550][T32596] usb 3-1: SerialNumber: syz
[ 2624.430645][T32596] usb 3-1: config 0 descriptor??
[ 2624.456611][   T30] audit: type=1326 audit(1749925068.140:9822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.5.9111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f356538e929 code=0x7ffc0000
[ 2624.463298][T32596] em28xx 3-1:0.132: New device syz syz @ 480 Mbps (0413:6023, interface 132, class 132)
[ 2624.677497][ T6984] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9113'.
[ 2624.699035][   T30] audit: type=1326 audit(1749925068.140:9823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.5.9111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f356538e929 code=0x7ffc0000
[ 2624.746750][ T6984] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9113'.
[ 2624.773304][T32596] em28xx 3-1:0.132: Video interface 132 found:
[ 2624.869438][   T30] audit: type=1326 audit(1749925068.140:9824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.5.9111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f356538e929 code=0x7ffc0000
[ 2624.990425][T32596] em28xx 3-1:0.132: unknown em28xx chip ID (0)
[ 2625.010634][   T30] audit: type=1326 audit(1749925068.140:9825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.5.9111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f356538e929 code=0x7ffc0000
[ 2625.044789][   T30] audit: type=1326 audit(1749925068.140:9826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.5.9111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f356538e963 code=0x7ffc0000
[ 2625.266184][ T7002] usb usb8: usbfs: process 7002 (syz.5.9117) did not claim interface 0 before use
[ 2625.408071][T32596] em28xx 3-1:0.132: reading from i2c device at 0xa0 failed: couldn't get the received message from the bridge (error=-5)
[ 2625.489406][T32596] em28xx 3-1:0.132: board has no eeprom
[ 2625.609633][T32596] em28xx 3-1:0.132: Identified as Leadtek Winfast USB II (card=7)
[ 2625.675313][T32596] em28xx 3-1:0.132: analog set to bulk mode.
[ 2625.691096][T25801] em28xx 3-1:0.132: Registering V4L2 extension
[ 2625.723314][T32596] usb 3-1: USB disconnect, device number 33
[ 2625.758268][T32596] em28xx 3-1:0.132: Disconnecting em28xx
[ 2626.050666][ T7015] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 2626.068547][ T7015] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 2626.399479][T18542] usb 4-1: new high-speed USB device number 115 using dummy_hcd
[ 2626.472988][T25801] em28xx 3-1:0.132: Config register raw data: 0xffffffed
[ 2626.490195][T25801] em28xx 3-1:0.132: AC97 chip type couldn't be determined
[ 2626.502432][T25801] em28xx 3-1:0.132: No AC97 audio processor
[ 2626.528617][T25801] usb 3-1: Decoder not found
[ 2626.554188][T25801] em28xx 3-1:0.132: failed to create media graph
[ 2626.599760][T25801] em28xx 3-1:0.132: V4L2 device video103 deregistered
[ 2626.636874][T25801] em28xx 3-1:0.132: Remote control support is not available for this card.
[ 2626.663710][T32596] em28xx 3-1:0.132: Closing input extension
[ 2626.677353][T32596] em28xx 3-1:0.132: Freeing device
[ 2626.701073][T18542] usb 4-1: config 0 has no interfaces?
[ 2626.788352][T18542] usb 4-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2626.855404][T18542] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2626.907591][T18542] usb 4-1: Product: syz
[ 2626.915623][T18542] usb 4-1: Manufacturer: syz
[ 2626.958444][T18542] usb 4-1: SerialNumber: syz
[ 2626.982278][T18542] usb 4-1: config 0 descriptor??
[ 2627.089461][T32596] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[ 2628.036888][T32596] usb 3-1: config 0 has no interfaces?
[ 2628.116154][T32596] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2628.154185][T32596] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2628.186733][T32596] usb 3-1: Product: syz
[ 2628.194135][T32596] usb 3-1: Manufacturer: syz
[ 2628.204261][T32596] usb 3-1: SerialNumber: syz
[ 2628.229010][T32596] usb 3-1: config 0 descriptor??
[ 2628.964735][T32596] usb 7-1: new high-speed USB device number 49 using dummy_hcd
[ 2629.064413][ T5920] usb 4-1: USB disconnect, device number 115
[ 2629.153833][T32596] usb 7-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[ 2629.222087][T32596] usb 7-1: config 27 has 0 interfaces, different from the descriptor's value: 1
[ 2629.247121][T32596] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2629.278342][ T7050] "syz.1.9127" (7050) uses obsolete ecb(arc4) skcipher
[ 2629.298475][T32596] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2629.626132][T32596] usb 3-1: USB disconnect, device number 34
[ 2629.761945][ T7047] kAFS: unable to lookup cell '.,'
[ 2630.956013][ T7061] binder: 7060:7061 ioctl c0306201 2000000001c0 returned -14
[ 2631.168619][ T7079] usb usb8: usbfs: process 7079 (syz.1.9138) did not claim interface 0 before use
[ 2632.455582][ T7102] "syz.2.9142" (7102) uses obsolete ecb(arc4) skcipher
[ 2632.588454][   T43] usb 7-1: USB disconnect, device number 49
[ 2633.209798][   T43] usb 7-1: new high-speed USB device number 50 using dummy_hcd
[ 2633.450181][   T43] usb 7-1: config 0 has no interfaces?
[ 2633.522354][   T43] usb 7-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2633.653332][   T43] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2633.750159][   T43] usb 7-1: Product: syz
[ 2633.793429][   T43] usb 7-1: Manufacturer: syz
[ 2633.828397][   T43] usb 7-1: SerialNumber: syz
[ 2633.867120][   T43] usb 7-1: config 0 descriptor??
[ 2633.929419][ T5925] usb 3-1: new full-speed USB device number 35 using dummy_hcd
[ 2634.017505][ T7125] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9146'.
[ 2634.106512][ T5925] usb 3-1: unable to get BOS descriptor or descriptor too short
[ 2634.131622][ T5925] usb 3-1: not running at top speed; connect to a high speed hub
[ 2634.198838][ T5925] usb 3-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[ 2634.210701][ T5925] usb 3-1: config 1 has an invalid descriptor of length 32, skipping remainder of the config
[ 2634.396284][ T5925] usb 3-1: config 1 interface 0 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 2634.410009][ T5925] usb 3-1: config 1 interface 0 has no altsetting 0
[ 2634.459862][ T5925] usb 3-1: string descriptor 0 read error: -22
[ 2634.466160][ T5925] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2634.477292][ T5925] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2634.513608][ T5925] cdc_acm 3-1:1.0: skipping garbage
[ 2634.518916][ T5925] cdc_acm 3-1:1.0: Control and data interfaces are not separated!
[ 2634.527005][ T5925] cdc_acm 3-1:1.0: This needs exactly 3 endpoints
[ 2634.534138][ T5925] cdc_acm 3-1:1.0: probe with driver cdc_acm failed with error -22
[ 2634.775355][ T7110] fuse: Bad value for 'fd'
[ 2634.810904][ T7136] loop8: detected capacity change from 16384 to 16320
[ 2634.845831][ T7136] 
[ 2634.848254][ T7136] ======================================================
[ 2634.855306][ T7136] WARNING: possible circular locking dependency detected
[ 2634.862626][ T7136] 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 Not tainted
[ 2634.869782][ T7136] ------------------------------------------------------
[ 2634.876839][ T7136] syz.1.9148/7136 is trying to acquire lock:
[ 2634.882850][ T7136] ffffffff8f87a3e8 (uevent_sock_mutex){+.+.}-{4:4}, at: kobject_uevent_net_broadcast+0x27e/0x560
[ 2634.893552][ T7136] 
[ 2634.893552][ T7136] but task is already holding lock:
[ 2634.900945][ T7136] ffff888024d81438 (&q->q_usage_counter(io)#25){++++}-{0:0}, at: loop_set_status+0x227/0xaf0
[ 2634.911208][ T7136] 
[ 2634.911208][ T7136] which lock already depends on the new lock.
[ 2634.911208][ T7136] 
[ 2634.921732][ T7136] 
[ 2634.921732][ T7136] the existing dependency chain (in reverse order) is:
[ 2634.930943][ T7136] 
[ 2634.930943][ T7136] -> #2 (&q->q_usage_counter(io)#25){++++}-{0:0}:
[ 2634.939598][ T7136]        lock_acquire+0x120/0x360
[ 2634.944677][ T7136]        blk_alloc_queue+0x538/0x620
[ 2634.949974][ T7136]        __blk_mq_alloc_disk+0x162/0x340
[ 2634.955627][ T7136]        loop_add+0x41b/0xad0
[ 2634.960312][ T7136]        loop_init+0x173/0x230
[ 2634.965083][ T7136]        do_one_initcall+0x233/0x820
[ 2634.970373][ T7136]        do_initcall_level+0x137/0x1f0
[ 2634.975834][ T7136]        do_initcalls+0x69/0xd0
[ 2634.980689][ T7136]        kernel_init_freeable+0x3d9/0x570
[ 2634.986534][ T7136]        kernel_init+0x1d/0x1d0
[ 2634.991502][ T7136]        ret_from_fork+0x3fc/0x770
[ 2634.996990][ T7136]        ret_from_fork_asm+0x1a/0x30
[ 2635.002313][ T7136] 
[ 2635.002313][ T7136] -> #1 (fs_reclaim){+.+.}-{0:0}:
[ 2635.010079][ T7136]        lock_acquire+0x120/0x360
[ 2635.015156][ T7136]        fs_reclaim_acquire+0x72/0x100
[ 2635.020717][ T7136]        kmem_cache_alloc_node_noprof+0x47/0x3c0
[ 2635.027053][ T7136]        __alloc_skb+0x112/0x2d0
[ 2635.032008][ T7136]        alloc_uevent_skb+0x7d/0x230
[ 2635.037301][ T7136]        kobject_uevent_net_broadcast+0x2fa/0x560
[ 2635.043816][ T7136]        kobject_uevent_env+0x55b/0x8c0
[ 2635.049379][ T7136]        kobject_synth_uevent+0x527/0xb00
[ 2635.055292][ T7136]        bus_uevent_store+0x115/0x170
[ 2635.060678][ T7136]        kernfs_fop_write_iter+0x378/0x4f0
[ 2635.066586][ T7136]        vfs_write+0x548/0xa90
[ 2635.071405][ T7136]        ksys_write+0x145/0x250
[ 2635.076289][ T7136]        do_syscall_64+0xfa/0x3b0
[ 2635.081427][ T7136]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2635.087853][ T7136] 
[ 2635.087853][ T7136] -> #0 (uevent_sock_mutex){+.+.}-{4:4}:
[ 2635.096187][ T7136]        validate_chain+0xb9b/0x2140
[ 2635.101766][ T7136]        __lock_acquire+0xab9/0xd20
[ 2635.106980][ T7136]        lock_acquire+0x120/0x360
[ 2635.112101][ T7136]        __mutex_lock+0x182/0xe80
[ 2635.117140][ T7136]        kobject_uevent_net_broadcast+0x27e/0x560
[ 2635.123677][ T7136]        kobject_uevent_env+0x55b/0x8c0
[ 2635.129513][ T7136]        set_capacity_and_notify+0x26d/0x2d0
[ 2635.135524][ T7136]        loop_set_status+0x45b/0xaf0
[ 2635.140929][ T7136]        lo_ioctl+0xa5e/0x2410
[ 2635.145711][ T7136]        blkdev_ioctl+0x5a8/0x6d0
[ 2635.150751][ T7136]        __se_sys_ioctl+0xf9/0x170
[ 2635.156396][ T7136]        do_syscall_64+0xfa/0x3b0
[ 2635.161436][ T7136]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2635.167887][ T7136] 
[ 2635.167887][ T7136] other info that might help us debug this:
[ 2635.167887][ T7136] 
[ 2635.178295][ T7136] Chain exists of:
[ 2635.178295][ T7136]   uevent_sock_mutex --> fs_reclaim --> &q->q_usage_counter(io)#25
[ 2635.178295][ T7136] 
[ 2635.192249][ T7136]  Possible unsafe locking scenario:
[ 2635.192249][ T7136] 
[ 2635.199718][ T7136]        CPU0                    CPU1
[ 2635.205092][ T7136]        ----                    ----
[ 2635.210560][ T7136]   lock(&q->q_usage_counter(io)#25);
[ 2635.216041][ T7136]                                lock(fs_reclaim);
[ 2635.222561][ T7136]                                lock(&q->q_usage_counter(io)#25);
[ 2635.230562][ T7136]   lock(uevent_sock_mutex);
[ 2635.235254][ T7136] 
[ 2635.235254][ T7136]  *** DEADLOCK ***
[ 2635.235254][ T7136] 
[ 2635.243425][ T7136] 3 locks held by syz.1.9148/7136:
[ 2635.248580][ T7136]  #0: ffff888024d3e400 (&lo->lo_mutex){+.+.}-{4:4}, at: loop_set_status+0x2c/0xaf0
[ 2635.258043][ T7136]  #1: ffff888024d81438 (&q->q_usage_counter(io)#25){++++}-{0:0}, at: loop_set_status+0x227/0xaf0
[ 2635.268898][ T7136]  #2: ffff888024d81470 (&q->q_usage_counter(queue)#20){+.+.}-{0:0}, at: loop_set_status+0x227/0xaf0
[ 2635.279899][ T7136] 
[ 2635.279899][ T7136] stack backtrace:
[ 2635.285824][ T7136] CPU: 1 UID: 0 PID: 7136 Comm: syz.1.9148 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) 
[ 2635.285849][ T7136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2635.285859][ T7136] Call Trace:
[ 2635.285870][ T7136]  <TASK>
[ 2635.285878][ T7136]  dump_stack_lvl+0x189/0x250
[ 2635.285909][ T7136]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2635.285933][ T7136]  ? __pfx__printk+0x10/0x10
[ 2635.285949][ T7136]  ? print_lock_name+0xde/0x100
[ 2635.285973][ T7136]  print_circular_bug+0x2ee/0x310
[ 2635.285990][ T7136]  check_noncircular+0x134/0x160
[ 2635.286007][ T7136]  validate_chain+0xb9b/0x2140
[ 2635.286029][ T7136]  __lock_acquire+0xab9/0xd20
[ 2635.286053][ T7136]  ? kobject_uevent_net_broadcast+0x27e/0x560
[ 2635.286071][ T7136]  lock_acquire+0x120/0x360
[ 2635.286091][ T7136]  ? kobject_uevent_net_broadcast+0x27e/0x560
[ 2635.286113][ T7136]  __mutex_lock+0x182/0xe80
[ 2635.286127][ T7136]  ? kobject_uevent_net_broadcast+0x27e/0x560
[ 2635.286145][ T7136]  ? vsnprintf+0xe11/0xf00
[ 2635.286164][ T7136]  ? kobject_uevent_net_broadcast+0x27e/0x560
[ 2635.286182][ T7136]  ? __pfx___mutex_lock+0x10/0x10
[ 2635.286195][ T7136]  ? add_uevent_var+0x278/0x450
[ 2635.286212][ T7136]  ? kobject_uevent_env+0x50a/0x8c0
[ 2635.286230][ T7136]  ? __pfx_add_uevent_var+0x10/0x10
[ 2635.286248][ T7136]  kobject_uevent_net_broadcast+0x27e/0x560
[ 2635.286267][ T7136]  kobject_uevent_env+0x55b/0x8c0
[ 2635.286286][ T7136]  set_capacity_and_notify+0x26d/0x2d0
[ 2635.286312][ T7136]  ? __pfx_set_capacity_and_notify+0x10/0x10
[ 2635.286335][ T7136]  ? loop_set_status_from_info+0x185/0x250
[ 2635.286356][ T7136]  loop_set_status+0x45b/0xaf0
[ 2635.286380][ T7136]  lo_ioctl+0xa5e/0x2410
[ 2635.286401][ T7136]  ? stack_trace_save+0x9c/0xe0
[ 2635.286419][ T7136]  ? __pfx_lo_ioctl+0x10/0x10
[ 2635.286437][ T7136]  ? __lock_acquire+0xab9/0xd20
[ 2635.286466][ T7136]  ? __lock_acquire+0xab9/0xd20
[ 2635.286488][ T7136]  ? __lock_acquire+0xab9/0xd20
[ 2635.286512][ T7136]  ? __lock_acquire+0xab9/0xd20
[ 2635.286535][ T7136]  ? __lock_acquire+0xab9/0xd20
[ 2635.286561][ T7136]  ? is_bpf_text_address+0x26/0x2b0
[ 2635.286585][ T7136]  ? is_bpf_text_address+0x292/0x2b0
[ 2635.286607][ T7136]  ? is_bpf_text_address+0x26/0x2b0
[ 2635.286629][ T7136]  ? kernel_text_address+0xa5/0xe0
[ 2635.286650][ T7136]  ? __kernel_text_address+0xd/0x40
[ 2635.286668][ T7136]  ? unwind_get_return_address+0x4d/0x90
[ 2635.286692][ T7136]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2635.286708][ T7136]  ? arch_stack_walk+0xfc/0x150
[ 2635.286726][ T7136]  ? stack_trace_save+0x9c/0xe0
[ 2635.286745][ T7136]  ? kasan_save_track+0x4f/0x80
[ 2635.286768][ T7136]  ? kasan_save_track+0x3e/0x80
[ 2635.286789][ T7136]  ? kasan_save_free_info+0x46/0x50
[ 2635.286807][ T7136]  ? __kasan_slab_free+0x62/0x70
[ 2635.286820][ T7136]  ? kfree+0x18e/0x440
[ 2635.286842][ T7136]  ? tomoyo_path_number_perm+0x47a/0x5a0
[ 2635.286860][ T7136]  ? security_file_ioctl+0xcb/0x2d0
[ 2635.286876][ T7136]  ? __se_sys_ioctl+0x47/0x170
[ 2635.286896][ T7136]  ? do_syscall_64+0xfa/0x3b0
[ 2635.286917][ T7136]  ? do_vfs_ioctl+0xf37/0x1990
[ 2635.286939][ T7136]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 2635.286962][ T7136]  ? kasan_quarantine_put+0xdd/0x220
[ 2635.286993][ T7136]  ? blkdev_common_ioctl+0xfc3/0x2450
[ 2635.287015][ T7136]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 2635.287032][ T7136]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 2635.287049][ T7136]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[ 2635.287070][ T7136]  ? tomoyo_path_number_perm+0x4e2/0x5a0
[ 2635.287086][ T7136]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 2635.287104][ T7136]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2635.287126][ T7136]  ? __lock_acquire+0xab9/0xd20
[ 2635.287151][ T7136]  ? __pfx_lo_ioctl+0x10/0x10
[ 2635.287169][ T7136]  blkdev_ioctl+0x5a8/0x6d0
[ 2635.287191][ T7136]  ? __pfx_blkdev_ioctl+0x10/0x10
[ 2635.287211][ T7136]  ? __fget_files+0x2a/0x420
[ 2635.287229][ T7136]  ? bpf_lsm_file_ioctl+0x9/0x20
[ 2635.287251][ T7136]  ? __pfx_blkdev_ioctl+0x10/0x10
[ 2635.287271][ T7136]  __se_sys_ioctl+0xf9/0x170
[ 2635.287293][ T7136]  do_syscall_64+0xfa/0x3b0
[ 2635.287306][ T7136]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2635.287328][ T7136]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2635.287343][ T7136]  ? clear_bhb_loop+0x60/0xb0
[ 2635.287359][ T7136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2635.287375][ T7136] RIP: 0033:0x7ff4f3f8e929
[ 2635.287391][ T7136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2635.287405][ T7136] RSP: 002b:00007ff4f4d6b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2635.287424][ T7136] RAX: ffffffffffffffda RBX: 00007ff4f41b6080 RCX: 00007ff4f3f8e929
[ 2635.287436][ T7136] RDX: 00002000000001c0 RSI: 0000000000004c02 RDI: 0000000000000004
[ 2635.287446][ T7136] RBP: 00007ff4f4010b39 R08: 0000000000000000 R09: 0000000000000000
[ 2635.287456][ T7136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2635.287466][ T7136] R13: 0000000000000000 R14: 00007ff4f41b6080 R15: 00007ff4f42dfa28
[ 2635.287482][ T7136]  </TASK>
[ 2635.489994][T18542] usb 3-1: USB disconnect, device number 35
[ 2635.821336][ T7107] kthread_run failed with err -4
[ 2635.838908][ T5920] usb 7-1: USB disconnect, device number 50