last executing test programs:

5m18.976087455s ago: executing program 2 (id=595):
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x32}, "27ea5b687d952a9f3b12076a933043bf7d0d097e8ede1a68186b2142a008466790e78d83b69873d0f97db5606fbaa022e257"}, 0x36)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f00000023c0)=ANY=[@ANYBLOB="9feb010018ea0000000202000000000000000000000202000000000000000000000a030000000000000000000002000000000000dda17d6a9d911ce1679719cfea4d0977508b8e5ed2f8c471af03f1ac5b2e3e7fbe5e050afd2d9295c48da3df37f8f03faf78d7c83e909d450dc6c42e25682baeea68baa41685386c16045a972d9f21f9520b968a23e5ef6e4e5f4faa190f034a"], 0x0, 0x3e, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000140)=0x7)
getpid()
sched_setaffinity(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
write$smackfs_label(0xffffffffffffffff, &(0x7f00000000c0), 0x1)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b000000000000000000000000000400", @ANYRES32=0x0, @ANYRES32=0x0], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r4 = dup(r3)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="b0000000000000008d15c937040795e9ec68ba339b8fd15e58983b3da942"], 0xb0)
getresuid(&(0x7f0000000000), &(0x7f0000000480), &(0x7f00000004c0)=<r5=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB=',privport,access=', @ANYRESDEC=r5])
open(&(0x7f0000000140)='./file0\x00', 0x220000, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='i2c_result\x00', r1, 0x0, 0x3ff}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0x9, 0xc, 0x4, 0x7fc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

5m16.373911198s ago: executing program 2 (id=606):
r0 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
write$bt_hci(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
creat(0x0, 0x80)
ioctl$UI_DEV_SETUP(r2, 0x405c5503, 0x0)
ioctl$UI_DEV_CREATE(r2, 0x5501)
syz_open_dev$evdev(&(0x7f0000000080), 0x72, 0xc0280)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000900)=@raw={'raw\x00', 0x41, 0x3, 0x1f8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x160, 0x1f0, 0x1f0, 0x160, 0x1f0, 0x3, 0x0, {[{{@uncond, 0x0, 0x70, 0x90, 0x0, {0x0, 0xffffffffa0028000}}, @unspec=@NOTRACK={0x20}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x0, [0x0, 0x2, 0x0, 0x0, 0x0, 0x5]}, {0x0, [0x0, 0x0, 0x3]}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x2ad)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="ef00000000000000140012800b0001006970766c616e00000400028008000500", @ANYRES32], 0x4c}}, 0x0)
r4 = syz_open_dev$swradio(&(0x7f00000000c0), 0x0, 0x2)
ioctl$VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f0000000000)={0xfffffff6, 0xa, 0x4})
socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2c, 0x0, 0x0)
unshare(0x8000480)
syncfs(0xffffffffffffffff)
unshare(0x880)

5m15.405638887s ago: executing program 2 (id=613):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x800448f0, 0x0)
r1 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x9998d9bd6595cb89)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r2 = open(&(0x7f0000000140)='./file1\x00', 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b800000019000100000000000000000000000000000000000000000000000000fe8000000000000000833449155bf3c2640000000000000002000010"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x10, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="6501000014"], 0x188}}, 0x0)
mknodat$loop(r2, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000280)='./file0\x00')
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
add_key$user(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x2}, &(0x7f00000000c0)="7ea92c7096b2ebe28312914e59e1c3803621607b14557521a7", 0x19, r1)

5m15.196473889s ago: executing program 2 (id=616):
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
pivot_root(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)='./file0/../file0\x00')
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
prlimit64(0x0, 0xe, 0x0, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000080)=ANY=[], 0x15)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x8, 0x3, 0x448, 0x340, 0x11, 0x148, 0x340, 0x0, 0x440, 0x2a8, 0x2a8, 0x440, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2a0, 0x2e8, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0\x00'}}]}, @unspec=@CT0={0x48}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00'}, 0x0, 0x98, 0xc8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4a8)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x4, @multicast1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000000c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000180)={@private1={0xfc, 0x1, '\x00', 0x1}, 0x8000000, 0x0, 0x2, 0x1, 0xfffc, 0x2000}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000180)={@loopback={0xfec0ffff00000000}, 0x8000000, 0x0, 0xff, 0x0, 0x0, 0x600}, 0x20)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x30, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x6}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setscheduler(0x0, 0x1, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r4, 0x84, 0x13, &(0x7f0000000080)={<r6=>0x0, 0x2}, &(0x7f0000000240)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r5, 0x84, 0x22, &(0x7f0000000300)={0x8, 0x4001, 0xfffffffc, 0xdbc, r6}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)

5m14.436002869s ago: executing program 2 (id=619):
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000000000000000000000b00000008000300000000000c00018008000700db50467c9baf6e5ace46112e8993287f60aecd86b05124bc0ae090d46ee7521fff10b75a25fb4a5907afda64"], 0x28}}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x31, &(0x7f00000001c0)=0x3, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

5m14.044982683s ago: executing program 2 (id=624):
socket$nl_route(0x10, 0x3, 0x0)
openat$ttynull(0xffffffffffffff9c, 0x0, 0x800, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0xb, &(0x7f0000000100)=0x3, 0x4)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000000080)={'wg2\x00', <r4=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)={0x20, r3, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PEERS={0x4}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r4}]}, 0x20}}, 0x0) (fail_nth: 1)

5m13.056547684s ago: executing program 32 (id=624):
socket$nl_route(0x10, 0x3, 0x0)
openat$ttynull(0xffffffffffffff9c, 0x0, 0x800, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0xb, &(0x7f0000000100)=0x3, 0x4)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000000080)={'wg2\x00', <r4=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)={0x20, r3, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PEERS={0x4}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r4}]}, 0x20}}, 0x0) (fail_nth: 1)

36.996461034s ago: executing program 4 (id=1648):
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB], 0x28}}, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0)=[{0x0, 0x114}], 0x1}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={0xffffffffffffffff, 0x0, 0x6, 0x0, &(0x7f0000000000)="40f0538ef047", 0x0, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x44}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

36.702173385s ago: executing program 4 (id=1650):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00'}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000000)={'syztnl2\x00', &(0x7f0000000240)={'syztnl0\x00', 0x0, 0x29, 0x3, 0x2, 0x4, 0x47b01dfbb9992d4d, @dev={0xfe, 0x80, '\x00', 0x3c}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x700, 0x7, 0x0, 0x3}})
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0xfffffdca, &(0x7f0000000200)=0x400000bce)
mprotect(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0xa)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(0xffffffffffffffff, 0x84, 0x23, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x4)
acct(0x0)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000001000000850000000e000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

35.879895716s ago: executing program 4 (id=1651):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_usb_connect(0x0, 0x24, &(0x7f0000000600)=ANY=[@ANYBLOB="12010000a3b370086d04ae08581101020301090212000d000000000904"], 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001e80)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x57, 0x10, &(0x7f0000000000), 0xffffffffffffffc9, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000000040)=r2, 0x4)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r4, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
syz_open_dev$cec(0x0, 0x0, 0x100)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x5, 0x10001, 0x7ffd, 0x27b6, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x20004, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
syz_usb_disconnect(r1)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
socket$inet6(0xa, 0x5, 0x802)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r6 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x0, 0x3, 0x3}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r7, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40804}, 0x0)
r8 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r8, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
r9 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r9, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)={0x114, 0x1d, 0x1, 0x0, 0x0, "", [@nested={0x101, 0x0, 0x0, 0x1, [@typed={0xc, 0x1, 0x0, 0x0, @u64}, @typed={0x14, 0x6, 0x0, 0x0, @ipv6=@mcast2}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe8101000000010000008b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd"]}]}, 0x114}], 0x1}, 0x0)

32.706545937s ago: executing program 4 (id=1661):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x8}]}, @NFT_MSG_NEWSETELEM={0x58, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x2c, 0x3, 0x0, 0x1, [{0x28, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_DATA={0x4}, @NFTA_SET_ELEM_EXPR={0x18, 0x7, 0x0, 0x1, @connlimit={{0xe}, @val={0x4}}}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xec}}, 0x0)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000040)="baf80c66b88c3d3e8e66efbafc0c66b800a0000066ef3e0f00967d4cb800008ec8660f3807829700660f388250360f2054673ef20f201566b99908000066b8fcffffff66baff7f00000f3080a6a5006166b9800000c00f326635000100000f30", 0x60}], 0x1, 0x8, &(0x7f0000000140)=[@efer={0x2, 0x9000}, @efer={0x2, 0x4800}], 0x2)

32.049433913s ago: executing program 3 (id=1664):
mkdir(&(0x7f0000000340)='./file0\x00', 0x40)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000480), r1)
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)={0x28, r2, 0x513, 0x70bd26, 0x25dfdbfd, {}, [@IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x3}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x841}, 0x40004)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), r1)
r4 = syz_open_dev$sndmidi(&(0x7f0000000280), 0x0, 0x840)
ioctl(r4, 0x2, &(0x7f0000000ac0)="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")
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000400)={'wpan0\x00', <r7=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)={0x40, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_SEC_DEVKEY={0x24, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0x14, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_INDEX={0x5}]}]}]}, 0x40}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f00000001c0)={'wpan3\x00', <r8=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f00000006c0)={0x200, r3, 0x100, 0x70bd25, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r8}, @NL802154_ATTR_SEC_DEVKEY={0x2c, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_ID={0x1c, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x624}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0302}}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_SEC_DEVKEY={0x198, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_ID={0x50, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x9}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}]}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x78c}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0302}}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0202}}, @NL802154_DEVKEY_ATTR_ID={0x74, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x9}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x58, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x1}]}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0x300}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x40}, @NL802154_DEVKEY_ATTR_ID={0x8c, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x6}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x2}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x7}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x34, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xffff}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xfffe}]}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}]}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x80000001}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x3}]}]}, 0x200}, 0x1, 0x0, 0x0, 0x20000004}, 0x4)
r9 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r9, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
lsm_list_modules(0x0, 0x0, 0xf0ff1f)
acct(&(0x7f0000000080)='./file0/../file0/file0\x00')
read$FUSE(r9, &(0x7f000000e280)={0x2020, 0x0, <r10=>0x0, <r11=>0x0}, 0x2020)
mknod$loop(&(0x7f00000002c0)='./file0/../file0/file0\x00', 0x200, 0x0)
write$FUSE_INIT(r9, &(0x7f0000000380)={0x50, 0xffffffffffffffda, r10, {0x7, 0x28, 0x3, 0x40488060, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24522716a989086f, 0xfffffffc}}, 0x50)
syz_fuse_handle_req(r9, &(0x7f0000008280)="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", 0x2000, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)={0x90, 0x0, 0x0, {0x0, 0x0, 0x3, 0x0, 0x0, 0x2, {0x0, 0x0, 0x7, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r11, 0xee01, 0x3}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r12 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nbd(&(0x7f0000000100), r12)

31.072231647s ago: executing program 4 (id=1666):
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$media(&(0x7f00000012c0), 0x66, 0x180502)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000002c00010324bd7002f9dbdf2506"], 0x14}, 0x1, 0x0, 0x0, 0x4004004}, 0x40)
recvmmsg(r1, &(0x7f0000006580)=[{{0x0, 0x0, 0x0}, 0x7}], 0x1, 0x12020, 0x0)
syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x8541)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000180), 0xfea7)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r6, @ANYBLOB="ff830500000700ffffff", @ANYRES8=r2], 0x4}}, 0x0)
sendfile(r5, r4, 0x0, 0x100000002)

30.55216764s ago: executing program 3 (id=1668):
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000000000000000000000b00000008000300000000000c00018008000700db50467c9baf6e5ace46112e8993287f60aecd86b05124bc0ae090d46ee7521fff10b75a25fb4a5907afda64"], 0x28}}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x31, &(0x7f00000001c0)=0x3, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280), 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

30.464319959s ago: executing program 4 (id=1669):
symlink(&(0x7f0000006000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000e40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
pwrite64(r0, 0x0, 0x0, 0x5)
add_key$keyring(&(0x7f00000000c0), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r1 = syz_usb_connect(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201100153a42908f00a71729188010203010902240001060000000904020002ff"], 0x0)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_open_dev$vim2m(0x0, 0x2, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r5, 0xc0405668, &(0x7f00000000c0)={0x5322de72, 0x1, 0x1, "0000087aba10fdfffffb05000400", 0xa4435559})
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, 0x0)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002380)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="110129bd7000fddbdf250200000008000100", @ANYRES32], 0x1c}, 0x1, 0x0, 0x0, 0x4000080}, 0x4000002)
write$nci(r3, &(0x7f0000000180)=ANY=[@ANYBLOB="508403c102b306"], 0x7)
syz_open_dev$ttys(0xc, 0x2, 0x1)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000900), 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@loopback, 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@loopback={0xff00000000000000, 0x7ffffffff000}, 0x800, 0x0, 0x2000000000903, 0x2}, 0x21)
syz_usb_ep_write(r1, 0x1, 0x0, &(0x7f00000005c0))
syz_usb_connect(0x2, 0x6b2, &(0x7f0000000f40)={{0x12, 0x1, 0x110, 0x57, 0x73, 0xc6, 0x8, 0x1b3d, 0x1d7, 0x5053, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x6a0, 0x3, 0xd, 0x4, 0x78, 0x6, [{{0x9, 0x4, 0x42, 0x4, 0xb, 0x25, 0x2c, 0x75, 0x3, [@cdc_ncm={{0x9, 0x24, 0x6, 0x0, 0x1, "e8c361a3"}, {0x5, 0x24, 0x0, 0x2}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x5ff, 0x4, 0x4}, {0x6, 0x24, 0x1a, 0x7, 0x6}, [@mbim={0xc, 0x24, 0x1b, 0x9, 0x100, 0x4, 0x4, 0x5ed2, 0xd}, @mdlm_detail={0xa6, 0x24, 0x13, 0x7, "2d77aba9a19e220c8aa1c3d03d0c83e9ba46aa8cf2f7936dbd6fc122d6490481dc96e760f73e14fb3c553e644736d563a01c5701ffe28e8d7693ebcf5b8b0188f764873aa3f36734c83aaaa347c6a9656a02fe4dffbd240ce058c8633108999f413d9070b63ed4f6e0d6045d101fcbf0cbf2307a782d36a11d62266f01e7f179269126fb1752ef8aa51cfec0f68e6c06443ee50c31308e3290d2a354ff900fd72b9e"}]}, @uac_as], [{{0x9, 0x5, 0x7, 0xc, 0x8, 0x4, 0x6, 0x20}}, {{0x9, 0x5, 0xc, 0xc, 0x3ff, 0x6, 0x8, 0x7, [@generic={0xf7, 0x0, "d444a767baeb8ea41eac5b016d1e58aab937831d2a33383db150c6fbe024769d19b92a886d77d7ab63ad05cf66ce734a7646f31945bf68d5c8ce385ca007371d8cdd46845659e6b0bd8e3df192c7c74a6b0c54a1feee2fe3ce1c97b4f5e51879c73f3342a0be81f5f780ea3282a8057b9965fde5daed04b95925f3eaff874aa15e6c0fc44957ec6965bad9d657a3c88820aaa4144e1940a6b84bcb964639b0e1ce26efc4da414fa58df032f2fd6177abfdaa36d5d09d60f6a6fb176726d2566653d3a00f0ebae55cea6823854652c9d5f0437a40f35b273b830f6b9f2662b2f7a0452f6c4e8accdaf671f09c7f4d3df5d03b5c1c2a"}, @uac_iso={0x7, 0x25, 0x1, 0xc9f4cb30443ff7ef, 0x7, 0x3c}]}}, {{0x9, 0x5, 0xd, 0x10, 0x200, 0x9c, 0x2, 0x7f, [@generic={0x77, 0x23, "3ae9167d46229a18dd577729467ee55abafead33ba3d8d20115b25d6798cfedd8d2dc89ac6d24e51f19f5ecc3e8b6c0332c3f26bbdb38442a4054b88ba531909aa3157f75d79838d35fea771c7f4414eb05aba56a1c16852262073459ec8efb88cc2d5880188e07782e67f7575d0f7e6d4b03a09ac"}]}}, {{0x9, 0x5, 0xa, 0x1, 0x10, 0xff, 0xe5, 0x7}}, {{0x9, 0x5, 0xc, 0x10, 0x400, 0x3, 0x2, 0xcb, [@generic={0xaa, 0x0, "020b2f242181ec208f74c235b11f3c6c3c8477ad191242073f777b9a3c9ea969c08b043cac696c0f574cece130233b4cb253fa7c0bdf730f0ba390e66ee3135ae78ad8026325ac6ecb02a3105c07ca5e5bba1a51f74cd2854a77a8fe282ada61e1f9d2d0c68c1d9ef085ffcbc6f77bee364ef02e3fe2e59028fb6384418bdb84e4833ca72f445dfc75e0dbefe6e4f40282179984580141020ac121f6e1723a5a418f02f45d0b7fce"}]}}, {{0x9, 0x5, 0x8, 0x10, 0x400, 0x8, 0xf, 0xff, [@generic={0x2, 0xc}, @uac_iso={0x7, 0x25, 0x1, 0x82, 0xf9}]}}, {{0x9, 0x5, 0x4, 0x10, 0x20, 0xde, 0x7, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0xe8, 0xecaa}, @uac_iso={0x7, 0x25, 0x1, 0x83, 0x3, 0x1}]}}, {{0x9, 0x5, 0xd, 0x0, 0x20, 0x7, 0x2, 0x2}}, {{0x9, 0x5, 0x1, 0x4, 0x400, 0x80, 0x4, 0xa, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x5, 0x18}]}}, {{0x9, 0x5, 0xf, 0x10, 0x260, 0x0, 0x7, 0x1, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x2, 0x401}, @uac_iso={0x7, 0x25, 0x1, 0x81, 0x2, 0x9}]}}, {{0x9, 0x5, 0xc, 0x2, 0x8, 0x0, 0x1, 0x1, [@generic={0xf, 0x23, "d4508dc62ecea50b288a0bcd23"}]}}]}}, {{0x9, 0x4, 0xdf, 0x4, 0x5, 0x5c, 0x14, 0xd6, 0x3, [], [{{0x9, 0x5, 0x3, 0x8, 0x20, 0x82, 0x3, 0x5, [@generic={0xac, 0x7, "130f6014e5176b07d5a9c84ca09ad9e7f1f397cc94f170aebb31dab8c7ae2731273241d8a0e3e621c495d1241602cbd656910b2ccec459753c55b2703a5c2ec9328c110635f99376aa4f2f50537f660825531a45414dcb281e301ec79b144930fd7c4dadb84e708668f58950d2ef9f85894b9604ba861e15ae907cbf695a11e466f90483c91deb8cdd2329eb947e91da7975b44b9bfe72a85bcbdd85c0af1bd76f70fbfedaaa85cc51af"}]}}, {{0x9, 0x5, 0x1, 0x3, 0x965125a869d050f6, 0xd, 0xbc, 0x1}}, {{0x9, 0x5, 0x6, 0x10, 0x8, 0xb, 0x2, 0x40, [@generic={0xd5, 0x35, "91de0a22d478871ce5ae55f5eae9da8f3aaffd5c34e51c40aee224b930f5b2006481f9d545267b3177e3d0ed682a86916cc00bdd75576766b93f3a28ef9a4bcf67d3d1376e8ed441af4e40d978f253ce1e905ce8fa41da1caae80f4ed6329ed1a37c7af32cee216e014f6e8786433d212d78adbc5c3631ec4c0751b233f77de40b2d61caed3a0eacb4432ab0c3ed9ae4a2ff96fe8784c6036808517615becbe4497b1f7c7f5149c9bac398c86eedfa6c6df53e318c885781b42b1ea3e859f710770eca2892acb7601ea29b330e0e4de3083374"}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0xf, 0x4}]}}, {{0x9, 0x5, 0x3, 0x10, 0x3ff, 0x2, 0x1, 0x81, [@generic={0xb9, 0x22, "6f5ae998df73613eb6eb8ab97d7ff6b6fe34d2d5cfd2a6e7e0e24303fb06c653da70e15566e63ae578f7822f72a8fc1eb351d4bbed1a6146e12d593fceb3fbfd6a69bd5b0e6c40b2fbabc35ea0ee5e0abed5f33925349adcb3039bdba61b6a230e7f5fae55acf39d499f2982af6026272343f10d7ee17238fcc3a3985cdf02bcd75a4782143a28963c76e6cf3bb6f9e62d5b4c4fc64eda042d0c8d5c6cbc560b970d68ab3d431a6593fab740e576273b6af2d6eac7815f"}, @generic={0x75, 0x0, "a7a3e01626269e46e8fc07c844849ca0b6d82b386fe6579dee4daabaf60548f0dcbf5066d2f4643448309843b89d534cb333aebaeb3a9c9db8419a4e30cdb87a1f622f0aefb7120f2b5d25c4b467974adc950ccfca4cfe54ec204117262f6e35780391043a174eae491947ac0d811219da52c3"}]}}, {{0x9, 0x5, 0x9, 0x3, 0x200, 0x6, 0x9, 0xd7}}]}}, {{0x9, 0x4, 0x40, 0x7, 0x0, 0x47, 0x15, 0x51, 0x82, [@hid_hid={0x9, 0x21, 0x9, 0x9, 0x1, {0x22, 0x7d8}}]}}]}}]}}, &(0x7f0000000840)={0xa, &(0x7f0000000140)={0xa, 0x6, 0x200, 0x4, 0x66, 0x8}, 0x107, &(0x7f0000000340)={0x5, 0xf, 0x107, 0x6, [@ptm_cap={0x3}, @ext_cap={0x7, 0x10, 0x2, 0x14, 0x6, 0x3, 0xa7}, @generic={0xe8, 0x10, 0xb, "d28eeec0221804afbce2b4105c9e0019ee116ca9db47bcfa9624a9cc4af766a635c1705b89960a091cda49d2efed8da9867859661ff72fabb94ee9608b09cd039928b532816db55d85373c3676c0ceef493ef427774745e43c7712a2540f6b9a852c7c20e49591ce9a2a69ea1a735719dba20008f2020d4359bf67d5f5a3ce6dfd0f162eaddf6f20d1f99815bcdd70bc8eb4925b7f43fb7dd82039aaea1801b2e852188e02342edd037f577032b2b8645a761869ef6b7eecb0d4f84b266ca60fa1eabe9e11bd51fdc25ce9a956808658a30c09537d4704b40d452874f088afd2373ebbbaf6"}, @ptm_cap={0x3}, @generic={0x3, 0x10, 0x1}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x4, 0x2, 0x1, 0x3}]}, 0xa, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x82c}}, {0x71, &(0x7f0000000500)=@string={0x71, 0x3, "fcfbc71a387456207fd51f2b9f13bfb07926a21b7ece72ca296fb68190096fe3ecaa987348def6be61f708eb952dea501feb78de1f0d7b67b7c6aa6c3d9934f48f184ac763ec4af4e662838caeeb8310223a722d97b0e510c482e723ab0b44e3e7b4b5e9fdb722ddaccbc4267f15e2"}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4}}, {0x4, &(0x7f0000000580)=@lang_id={0x4, 0x3, 0x2c0a}}, {0x9a, &(0x7f0000000940)=ANY=[@ANYBLOB="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"]}, {0x4, &(0x7f0000000680)=@lang_id={0x4, 0x3, 0x459}}, {0x4, &(0x7f00000006c0)=@lang_id={0x4, 0x3, 0x405}}, {0x4, &(0x7f0000000700)=@lang_id={0x4, 0x3, 0x3409}}, {0x34, &(0x7f0000000740)=@string={0x34, 0x3, "d4632f4bc29f3c42b5db05d490a5e75bb6ffe3e934a8564fdb9c30f91346ee67ba71552e3a0263c916d59c0d7564b7bb8bee"}}, {0x14, &(0x7f00000007c0)=@string={0x14, 0x3, "e2b38b34d8e4c9a154619e388f6f1472a4b1"}}]})
getsockopt$inet_int(r2, 0x10d, 0x8a, &(0x7f0000000200), &(0x7f0000000280)=0x1c)
accept4(r2, &(0x7f0000000040)=@xdp, &(0x7f0000000100)=0x80, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)

30.311749893s ago: executing program 3 (id=1672):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x28, 0x2a, 0xb, 0x70bd27, 0x4000, {0x9}, [@typed={0x8, 0x2, 0x0, 0x0, @binary='AYV~'}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x56, 0x0, 0x0, @ipv4=@multicast2}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x4040080)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @rand_addr=0x64010100}]}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='tlb_flush\x00', r4}, 0x18)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x3000003, 0x200000006c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fd7000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, 0x0}], 0x1, 0x38, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(r3, 0x4048aecb, &(0x7f00000002c0)=ANY=[])

28.234451568s ago: executing program 3 (id=1676):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x2000, &(0x7f0000000080)={&(0x7f00000001c0)={0x5c, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}, @IPSET_ATTR_MAXELEM={0x8}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}]}, 0x5c}}, 0x0)

28.037897635s ago: executing program 3 (id=1678):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000040)={0x4, 0x1, 0xf, 0x2, 0x100, &(0x7f00000000c0)="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"})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f3, &(0x7f0000000940)={'syztnl0\x00', &(0x7f0000000180)={'gretap0\x00', 0x0, 0x8, 0x7811, 0x0, 0xffffffff, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x4, 0x0, @loopback, @private=0xa010100}}}})

27.637950798s ago: executing program 3 (id=1681):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
getdents(r1, &(0x7f0000001040)=""/4096, 0x1000)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
write(r2, &(0x7f0000000040)="05000000", 0x4)
r3 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_GET_CAP(r3, 0xc010640c, &(0x7f0000000000)={0x4})
r4 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000040)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r4, 0xc06864a1, &(0x7f0000000540)={0x0, 0x0, r5, <r6=>0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r4, 0xc06864a2, &(0x7f0000000240)={0x0, 0x0, r5, r6, 0x0, 0x0, 0x8, 0x5, {0x6, 0x0, 0x80, 0x30b4, 0x1, 0x2025, 0x84, 0x4, 0x3e40, 0x4, 0x6, 0x2, 0x2, 0x1, "12d56163d7287bd287881d942450c7143a32ff017ca9a58f1c702a4ccc476b15"}})
syz_open_dev$usbfs(&(0x7f0000000300), 0x7fff, 0x40000)
ioctl$DRM_IOCTL_MODE_GETPLANE(r1, 0xc02064b6, &(0x7f0000000140)={0x0, 0x0, <r7=>r6, 0x0, 0x0, 0x0, &(0x7f0000000100)})
ioctl$DRM_IOCTL_MODE_GETPLANE(r4, 0xc02064b6, &(0x7f00000002c0)={0x0, <r8=>0x0, r7, 0x0, 0x0, 0x6, &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r1, 0xc01864b0, &(0x7f0000000180)={r8, r7, 0x0, 0x9, 0x2})
getsockopt$WPAN_SECURITY_LEVEL(r1, 0x0, 0x2, &(0x7f0000000000), &(0x7f00000000c0)=0x4)

23.93288876s ago: executing program 0 (id=1688):
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000000340)=0xfffffffffffffff9, 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in6={0xa, 0x0, 0x2000000, @loopback}, @in6={0xa, 0x0, 0xffffffff, @private0}], 0x38)

23.78052008s ago: executing program 0 (id=1689):
socket$inet(0x2, 0x4000000000000001, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
io_uring_enter(0xffffffffffffffff, 0x389b, 0x10db, 0x11, &(0x7f0000000440)={[0x35]}, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
r3 = syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x2)
ioctl$VIDIOC_G_FREQUENCY(r3, 0xc02c5638, &(0x7f00000000c0)={0x0, 0x0, 0x7})
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="01002abd700001801400020073797a5f74756e0000000028848579e84d3f42725fd800000000000500020005000000050007000200000008000500040000"], 0x44}}, 0x20000840)
r4 = socket(0x1e, 0x1, 0x0)
accept$nfc_llcp(r4, &(0x7f00000003c0), &(0x7f00000004c0)=0x60)

22.392471215s ago: executing program 1 (id=1695):
ioperm(0x284, 0x7f, 0xe3)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pread64(0xffffffffffffffff, &(0x7f00000001c0)=""/73, 0x49, 0x400000000000000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x25, &(0x7f00000000c0)=0x198, 0x4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'veth0_to_bond\x00', <r5=>0x0})
sendto$packet(r4, 0x0, 0x0, 0x0, &(0x7f0000000080)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @multicast}, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYRES32], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
recvfrom$packet(r4, 0x0, 0x0, 0x2000, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

21.329535143s ago: executing program 1 (id=1697):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@newtaction={0x330, 0x30, 0x400, 0x70bd29, 0x25dfdbff, {}, [{0x31c, 0x1, [@m_nat={0xe4, 0x15, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x5, 0x800, 0x0, 0x6, 0x5}, @broadcast, @private=0xa010101, 0xff, 0x1}}]}, {0x91, 0x6, "10e888c9612e2e34f2a5c0d7a87138e300765dba5074c9d374932654344b0c3962c5b1337fa6db0058e4c409791d8494eb4f1d5e393184346fed949d96f5daa0ce947de3daaa6e95d07edeca20c84c34c3d590793d972426d03baeb20ac6787db577296c99e3e931b99974120505982554b03c14cf350d002b5185962405187e60822f26f3d3d50fc809abad8c"}, {0xc}, {0xc, 0x8, {0x2, 0x1}}}}, @m_gact={0xcc, 0x8, 0x0, 0x0, {{0x9}, {0x4}, {0x9d, 0x6, "0f617356f0a663079ab7576a2846e5b3b3d9b048dc90bac2c3b40552dc14f7774371c98d6e2763d4fda783e36f45e224484cc6a0e6a530d841c87c70bbf3448d6187a58197fa3ffb0b318a51cc59415ac311a355fe1d08f8de9966d8ba89a56bfbc37c6af7d37dcdeb618f98f29bf3b05a23cefbbf51193614c08c162352d9eaad342b2f307dd8babd71ab8a1c4f80bbbbccc8ce4d369a33f9"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_sample={0x108, 0x1e, 0x0, 0x0, {{0xb}, {0x4}, {0xda, 0x6, "b994bedd346bce0500000000000000d115251a878473985c1ed7a3d4fca80601598de37da823754e06000000b3a3c993afbb7ebbbe1526dab34d44b5c23c87b684ba0a43c6d997aa4921c5a813b871326a35619082cefce7336f46644321281eb0d25aefbb3a49f1569225f999328fd102ad19375fb7bbd7b7fcbf6d8b3d9c2e08d675477de0b8bb08de621609e209dc52b7268675f10327caafcbe9c5553649bdc97cc8419d23d432bac4f46bd20ab85b8f31e2fd1ce4748acfd7cfe4c096ef362040236d9832fd00ef369e48bd13ecee89420f0524"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ctinfo={0x60, 0x10, 0x0, 0x0, {{0xb}, {0x4}, {0x31, 0x6, "244f1d5e491793fe299ae91a500c9cc02390a453351e3b982d0e4762ca9b14a043390c938c41ebe65abfb7c2db"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}]}]}, 0x330}}, 0x48000)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x7, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400})

21.14919188s ago: executing program 1 (id=1698):
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000000000000000000000b00000008000300000000000c00018008000700db50467c9baf6e5ace46112e8993287f60aecd86b05124bc0ae090d46ee7521fff10b75a25fb4a5907afda64573b51a08d2b4536"], 0x28}}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x31, &(0x7f00000001c0)=0x3, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

20.932410003s ago: executing program 1 (id=1699):
ioperm(0x284, 0x7f, 0xe3)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pread64(0xffffffffffffffff, &(0x7f00000001c0)=""/73, 0x49, 0x400000000000000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x25, &(0x7f00000000c0)=0x198, 0x4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'veth0_to_bond\x00', <r5=>0x0})
sendto$packet(r4, 0x0, 0x0, 0x0, &(0x7f0000000080)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @multicast}, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYRES32], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
recvfrom$packet(r4, 0x0, 0x0, 0x2000, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

20.843935599s ago: executing program 0 (id=1700):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
ioprio_set$pid(0x1, 0xffffffffffffffff, 0x4000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_emit_ethernet(0x41d, &(0x7f0000000700)=ANY=[@ANYBLOB="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"/1049], 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000c80)={@cgroup, 0x2e, 0x0, 0xd, &(0x7f0000000580)=[0x0, 0x0, 0x0], 0x3, 0x0, &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000c00)=[0x0, 0x0], &(0x7f0000000c40)=[0x0]}, 0x40)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={0xffffffffffffffff, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)

19.781061581s ago: executing program 1 (id=1701):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x2, 0x3}]})
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x11, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)}, 0x0)

19.742097314s ago: executing program 5 (id=1702):
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$media(&(0x7f00000012c0), 0x66, 0x180502)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000002c00010324bd7002f9dbdf2506"], 0x14}, 0x1, 0x0, 0x0, 0x4004004}, 0x40)
recvmmsg(r1, &(0x7f0000006580)=[{{0x0, 0x0, 0x0}, 0x7}], 0x1, 0x12020, 0x0)
syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x8541)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r6, @ANYBLOB="ff830500000700ffffff", @ANYRES8=r2], 0x4}}, 0x0)
sendfile(r5, r4, 0x0, 0x100000002)

19.580518527s ago: executing program 0 (id=1703):
mknod$loop(&(0x7f0000000300)='./file0\x00', 0x100000000000600d, 0x1)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))

19.580093985s ago: executing program 5 (id=1704):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000001c0), 0x885c0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000200)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_IOAS_IOVA_RANGES(r1, 0x3b84, &(0x7f0000000340)={0x20, r2, 0x0, 0x0, &(0x7f0000000240)})
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000240)={0x3, 0x2})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r4 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000003240)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r4, 0xc05064a7, &(0x7f0000000680)={0x0, 0x0, &(0x7f00000005c0)=[0x0], 0x0, 0x0, 0x1, 0x0, 0x0, r5})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000500)={&(0x7f0000000400)=[0x0, 0x0, 0x0], &(0x7f0000000440)=[0x0], &(0x7f0000000480)=[0x0, <r6=>0x0], &(0x7f00000004c0)=[0x0, 0x0, 0x0], 0x3, 0x1, 0x2, 0x3})
ioctl$DRM_IOCTL_MODE_GET_LEASE(r0, 0xc01064c8, &(0x7f0000000580)={0x1, 0x0, &(0x7f0000000540)=[<r7=>0x0]})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000006c0)={&(0x7f00000005c0)=[0x0], &(0x7f0000000600)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000640), &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x1, 0x7, 0x9, 0x40000000000000e2})
ioctl$DRM_IOCTL_MODE_GETENCODER(r0, 0xc01464a6, &(0x7f0000000740)={0x0, 0x0, <r8=>0x0})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000880)={&(0x7f0000000780)=[0x0, 0x0, <r9=>0x0, 0x0, 0x0], &(0x7f00000007c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000800)=[0x0, 0x0, <r10=>0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000840)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x26598162593e577d, 0x7, 0x5})
ioctl$DRM_IOCTL_MODE_SETCRTC(0xffffffffffffffff, 0xc06864a2, &(0x7f0000000280)={&(0x7f0000000700)=[r5, r6, r7, 0x0, 0x0, 0x0, 0x0], 0x7, r8, r9, 0x80000000, 0x5, 0x5, 0x9, {0x9, 0x56, 0x1, 0x1, 0x7, 0xffff, 0x4, 0x6, 0x80, 0x44, 0x3, 0x2, 0x9, 0x3fc, "8f6ccf078ff8dfded89ad28d72c7e2fa8d24b104dd7cc9d8cb7c3e1512b06fdc"}})
r11 = fsmount(r1, 0x0, 0x8)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000003c0)={r3, r11, 0x0, 0x0, @void}, 0xfffffffffffffee4)
syz_emit_ethernet(0x4a, &(0x7f00000008c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000e86dd60fe1de65faa124704b6000000d184000200000000aafe0f9a636cb559e17dab34e2151d27f2a023690e4ab0d9d833f9175fd483a380000600c53622f3c383a321df75876d7b1df9e013cb7e0bfec30246bc0e2c50f1f8cfb442ce3c770835d7031ad18ca3bf9739def8c4688e3b85de5faafbd4b2d4526509f582beba3eea4cadbd725788beef7624cae57cb9418ac5a87b98eed0439488414ce114256005da290000", @ANYRES32=0x0, @ANYRESHEX=r10, @ANYBLOB="50c2000090780001"], 0x0)
ioctl$DRM_IOCTL_MODE_OBJ_SETPROPERTY(r0, 0xc01864ba, &(0x7f0000000300)={0x14})

19.458696258s ago: executing program 0 (id=1705):
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000000000000000000000b00000008000300000000000c00018008000700db50467c9baf6e5ace46112e8993287f60aecd86b05124bc0ae090d46ee7521fff"], 0x28}}, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0)=[{0x0, 0x114}], 0x1}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={0xffffffffffffffff, 0x0, 0x6, 0x0, &(0x7f0000000000)="40f0538ef047", 0x0, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)=ANY=[@ANYBLOB="4400000010000104"], 0x44}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e", 0xc2}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

18.902282905s ago: executing program 5 (id=1706):
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000340)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x2d}}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r4, 0x0)
r5 = socket(0x2, 0x80805, 0x0)
r6 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r6, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0x2d}, 0x4e20, 0x3, 'wrr\x00', 0x1, 0x2, 0x6f}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r5, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010101, 0x4e21, 0x3, 'lc\x00', 0x4, 0x8, 0x77}, {@loopback, 0x4e23, 0x2, 0xcd, 0x12d5f, 0x3}}, 0x44)
r7 = socket$inet_smc(0x2b, 0x1, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70200000300001085"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r10=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="01000000ff000000030000000200000000000000", @ANYRES32, @ANYBLOB="0a00001000"/20, @ANYRES32=r10, @ANYRES32, @ANYRESHEX=r0], 0x50)
setsockopt$IP_VS_SO_SET_ADDDEST(r7, 0x0, 0x487, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_FLUSH(r7, 0x0, 0x485, 0x0, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x2001, 0x0)
getpid()

18.860495159s ago: executing program 0 (id=1707):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="5000008072003303000000000000000007000000", @ANYRES32=0x0, @ANYBLOB], 0x50}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0x80)
modify_ldt$write(0x1, 0x0, 0x0)
modify_ldt$read(0x0, &(0x7f0000002200)=""/229, 0xe5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=@ipmr_delroute={0x24, 0x19, 0x1, 0x0, 0x25dfdbfb, {0x80, 0x20, 0x14, 0x0, 0x0, 0x11, 0x0, 0x5}, [@RTA_TABLE={0x8, 0xf, 0xfffffffe}]}, 0x24}}, 0x8000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socket(0x10, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_usb_connect(0x4, 0x0, 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)=@ipv6_delroute={0x28, 0x19, 0x800, 0x70bd28, 0x25dfdbfb, {0xa, 0x10, 0x14, 0x6, 0xff, 0x4, 0x0, 0x7, 0x800}, [@RTA_MULTIPATH={0xc, 0x9, {0xe81f, 0x4, 0x81}}]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x20000000)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f0000000240)={0x0, 0x12, &(0x7f0000000200)={&(0x7f0000000000)={0x38, 0x1403, 0x1, 0xf, 0x25dfdbfc, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'wlan0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8080}, 0x8810)
r5 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r5, &(0x7f0000f67fe4)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r6 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r6, &(0x7f0000000480)={0xa, 0x4e20, 0x0, @mcast1={0xff, 0x5}}, 0x1c)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e23, 0x5, @mcast1, 0x9}, 0x1c)
syz_emit_ethernet(0x3a, &(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x20000000)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c0000002c00010026bd9300fcdbdf250400000008000c80"], 0x1c}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)
syz_emit_ethernet(0x141, &(0x7f00000008c0)=ANY=[@ANYBLOB="0180c200000000000000000008004dff013300650000de069078ac1414bbe00000018604760344281920000001ff000000030000000600000040000000070000000600000004000000070000000044342233ffffffff0000000096ec9ba400000009ac1414bb0000dfefac1414aa000000047f0000010000000a0a010101000001014e224e23", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="a0ff000390780001131225cd5e87bf66956204d4ce3b45cd21e90000eb2ede530163998bbfd192dd439219b1d0b37a49815ec1905ff068014395bf0dcf7d91206804bb87c99d5a5b84a4eca86bceded6815b21478c18377cb632dab53969078603509a0a5222b33a9e441e04707d1d674b6f7c11490e84d8f2273dc0d3f7b9ac749a27b00aba706a383efa37073e955a2a8eab50c78f7f83ed3fe1c1215750e0eef965dbe55fc81cbb5ada8be4185451fe7714"], 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x2808c0)

17.578483626s ago: executing program 5 (id=1708):
syz_usb_connect(0x0, 0x24, &(0x7f0000000700)={{0x12, 0x1, 0x110, 0x77, 0x8a, 0xdd, 0x20, 0x403, 0xbca1, 0xdd73, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x9, 0xa6, 0x0, 0xe, [{{0x9, 0x4, 0x8f, 0x4, 0x0, 0xa2, 0x45, 0x3c, 0x4}}]}}]}}, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000a40)="d8000000180081034e81f783db4cb9040a1d020006007c09e8fc55a10a0015000400142603600e120800140000000401a80009000900024004000000035c044dc1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2e03a7cef4090000001fb71b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad9e3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd4e1ffffffffc1c9b6278754ca397c388b0dd6e4efef3d9300"/216, 0xd8}], 0x1}, 0x0)

17.519439119s ago: executing program 1 (id=1709):
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$media(&(0x7f00000012c0), 0x66, 0x180502)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000002c00010324bd7002f9dbdf2506"], 0x14}, 0x1, 0x0, 0x0, 0x4004004}, 0x40)
recvmmsg(r1, &(0x7f0000006580)=[{{0x0, 0x0, 0x0}, 0x7}], 0x1, 0x12020, 0x0)
syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x8541)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
r4 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
syz_usb_disconnect(r4)
syz_usb_connect$cdc_ecm(0x6, 0x56, &(0x7f0000000640)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r4, 0x4004550f, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="11000000040000000400000001"], 0x48)
socket$kcm(0x2c, 0x3, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000380)={0x100, <r6=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r6, r0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000000)={r5, &(0x7f0000000140), &(0x7f0000000200)=""/221}, 0x20)

16.246845381s ago: executing program 5 (id=1710):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00'}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000000)={'syztnl2\x00', &(0x7f0000000240)={'syztnl0\x00', 0x0, 0x29, 0x3, 0x2, 0x4, 0x47b01dfbb9992d4d, @dev={0xfe, 0x80, '\x00', 0x3c}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x700, 0x7, 0x0, 0x3}})
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0xfffffdca, &(0x7f0000000200)=0x400000bce)
mprotect(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0xa)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in={{0x2, 0x4e23, @empty}}, 0x7fff, 0x0, 0xd78e, 0x0, 0x5a1, 0x0, 0x7}, 0x9c)
socket$netlink(0x10, 0x3, 0x4)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xd, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002a00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

15.660499838s ago: executing program 5 (id=1711):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_PEERS={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000) (fail_nth: 6)

15.352172201s ago: executing program 33 (id=1669):
symlink(&(0x7f0000006000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000e40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
pwrite64(r0, 0x0, 0x0, 0x5)
add_key$keyring(&(0x7f00000000c0), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r1 = syz_usb_connect(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201100153a42908f00a71729188010203010902240001060000000904020002ff"], 0x0)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_open_dev$vim2m(0x0, 0x2, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r5, 0xc0405668, &(0x7f00000000c0)={0x5322de72, 0x1, 0x1, "0000087aba10fdfffffb05000400", 0xa4435559})
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, 0x0)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002380)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="110129bd7000fddbdf250200000008000100", @ANYRES32], 0x1c}, 0x1, 0x0, 0x0, 0x4000080}, 0x4000002)
write$nci(r3, &(0x7f0000000180)=ANY=[@ANYBLOB="508403c102b306"], 0x7)
syz_open_dev$ttys(0xc, 0x2, 0x1)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000900), 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@loopback, 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@loopback={0xff00000000000000, 0x7ffffffff000}, 0x800, 0x0, 0x2000000000903, 0x2}, 0x21)
syz_usb_ep_write(r1, 0x1, 0x0, &(0x7f00000005c0))
syz_usb_connect(0x2, 0x6b2, &(0x7f0000000f40)={{0x12, 0x1, 0x110, 0x57, 0x73, 0xc6, 0x8, 0x1b3d, 0x1d7, 0x5053, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x6a0, 0x3, 0xd, 0x4, 0x78, 0x6, [{{0x9, 0x4, 0x42, 0x4, 0xb, 0x25, 0x2c, 0x75, 0x3, [@cdc_ncm={{0x9, 0x24, 0x6, 0x0, 0x1, "e8c361a3"}, {0x5, 0x24, 0x0, 0x2}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x5ff, 0x4, 0x4}, {0x6, 0x24, 0x1a, 0x7, 0x6}, [@mbim={0xc, 0x24, 0x1b, 0x9, 0x100, 0x4, 0x4, 0x5ed2, 0xd}, @mdlm_detail={0xa6, 0x24, 0x13, 0x7, "2d77aba9a19e220c8aa1c3d03d0c83e9ba46aa8cf2f7936dbd6fc122d6490481dc96e760f73e14fb3c553e644736d563a01c5701ffe28e8d7693ebcf5b8b0188f764873aa3f36734c83aaaa347c6a9656a02fe4dffbd240ce058c8633108999f413d9070b63ed4f6e0d6045d101fcbf0cbf2307a782d36a11d62266f01e7f179269126fb1752ef8aa51cfec0f68e6c06443ee50c31308e3290d2a354ff900fd72b9e"}]}, @uac_as], [{{0x9, 0x5, 0x7, 0xc, 0x8, 0x4, 0x6, 0x20}}, {{0x9, 0x5, 0xc, 0xc, 0x3ff, 0x6, 0x8, 0x7, [@generic={0xf7, 0x0, "d444a767baeb8ea41eac5b016d1e58aab937831d2a33383db150c6fbe024769d19b92a886d77d7ab63ad05cf66ce734a7646f31945bf68d5c8ce385ca007371d8cdd46845659e6b0bd8e3df192c7c74a6b0c54a1feee2fe3ce1c97b4f5e51879c73f3342a0be81f5f780ea3282a8057b9965fde5daed04b95925f3eaff874aa15e6c0fc44957ec6965bad9d657a3c88820aaa4144e1940a6b84bcb964639b0e1ce26efc4da414fa58df032f2fd6177abfdaa36d5d09d60f6a6fb176726d2566653d3a00f0ebae55cea6823854652c9d5f0437a40f35b273b830f6b9f2662b2f7a0452f6c4e8accdaf671f09c7f4d3df5d03b5c1c2a"}, @uac_iso={0x7, 0x25, 0x1, 0xc9f4cb30443ff7ef, 0x7, 0x3c}]}}, {{0x9, 0x5, 0xd, 0x10, 0x200, 0x9c, 0x2, 0x7f, [@generic={0x77, 0x23, "3ae9167d46229a18dd577729467ee55abafead33ba3d8d20115b25d6798cfedd8d2dc89ac6d24e51f19f5ecc3e8b6c0332c3f26bbdb38442a4054b88ba531909aa3157f75d79838d35fea771c7f4414eb05aba56a1c16852262073459ec8efb88cc2d5880188e07782e67f7575d0f7e6d4b03a09ac"}]}}, {{0x9, 0x5, 0xa, 0x1, 0x10, 0xff, 0xe5, 0x7}}, {{0x9, 0x5, 0xc, 0x10, 0x400, 0x3, 0x2, 0xcb, [@generic={0xaa, 0x0, "020b2f242181ec208f74c235b11f3c6c3c8477ad191242073f777b9a3c9ea969c08b043cac696c0f574cece130233b4cb253fa7c0bdf730f0ba390e66ee3135ae78ad8026325ac6ecb02a3105c07ca5e5bba1a51f74cd2854a77a8fe282ada61e1f9d2d0c68c1d9ef085ffcbc6f77bee364ef02e3fe2e59028fb6384418bdb84e4833ca72f445dfc75e0dbefe6e4f40282179984580141020ac121f6e1723a5a418f02f45d0b7fce"}]}}, {{0x9, 0x5, 0x8, 0x10, 0x400, 0x8, 0xf, 0xff, [@generic={0x2, 0xc}, @uac_iso={0x7, 0x25, 0x1, 0x82, 0xf9}]}}, {{0x9, 0x5, 0x4, 0x10, 0x20, 0xde, 0x7, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0xe8, 0xecaa}, @uac_iso={0x7, 0x25, 0x1, 0x83, 0x3, 0x1}]}}, {{0x9, 0x5, 0xd, 0x0, 0x20, 0x7, 0x2, 0x2}}, {{0x9, 0x5, 0x1, 0x4, 0x400, 0x80, 0x4, 0xa, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x5, 0x18}]}}, {{0x9, 0x5, 0xf, 0x10, 0x260, 0x0, 0x7, 0x1, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x2, 0x401}, @uac_iso={0x7, 0x25, 0x1, 0x81, 0x2, 0x9}]}}, {{0x9, 0x5, 0xc, 0x2, 0x8, 0x0, 0x1, 0x1, [@generic={0xf, 0x23, "d4508dc62ecea50b288a0bcd23"}]}}]}}, {{0x9, 0x4, 0xdf, 0x4, 0x5, 0x5c, 0x14, 0xd6, 0x3, [], [{{0x9, 0x5, 0x3, 0x8, 0x20, 0x82, 0x3, 0x5, [@generic={0xac, 0x7, "130f6014e5176b07d5a9c84ca09ad9e7f1f397cc94f170aebb31dab8c7ae2731273241d8a0e3e621c495d1241602cbd656910b2ccec459753c55b2703a5c2ec9328c110635f99376aa4f2f50537f660825531a45414dcb281e301ec79b144930fd7c4dadb84e708668f58950d2ef9f85894b9604ba861e15ae907cbf695a11e466f90483c91deb8cdd2329eb947e91da7975b44b9bfe72a85bcbdd85c0af1bd76f70fbfedaaa85cc51af"}]}}, {{0x9, 0x5, 0x1, 0x3, 0x965125a869d050f6, 0xd, 0xbc, 0x1}}, {{0x9, 0x5, 0x6, 0x10, 0x8, 0xb, 0x2, 0x40, [@generic={0xd5, 0x35, "91de0a22d478871ce5ae55f5eae9da8f3aaffd5c34e51c40aee224b930f5b2006481f9d545267b3177e3d0ed682a86916cc00bdd75576766b93f3a28ef9a4bcf67d3d1376e8ed441af4e40d978f253ce1e905ce8fa41da1caae80f4ed6329ed1a37c7af32cee216e014f6e8786433d212d78adbc5c3631ec4c0751b233f77de40b2d61caed3a0eacb4432ab0c3ed9ae4a2ff96fe8784c6036808517615becbe4497b1f7c7f5149c9bac398c86eedfa6c6df53e318c885781b42b1ea3e859f710770eca2892acb7601ea29b330e0e4de3083374"}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0xf, 0x4}]}}, {{0x9, 0x5, 0x3, 0x10, 0x3ff, 0x2, 0x1, 0x81, [@generic={0xb9, 0x22, "6f5ae998df73613eb6eb8ab97d7ff6b6fe34d2d5cfd2a6e7e0e24303fb06c653da70e15566e63ae578f7822f72a8fc1eb351d4bbed1a6146e12d593fceb3fbfd6a69bd5b0e6c40b2fbabc35ea0ee5e0abed5f33925349adcb3039bdba61b6a230e7f5fae55acf39d499f2982af6026272343f10d7ee17238fcc3a3985cdf02bcd75a4782143a28963c76e6cf3bb6f9e62d5b4c4fc64eda042d0c8d5c6cbc560b970d68ab3d431a6593fab740e576273b6af2d6eac7815f"}, @generic={0x75, 0x0, "a7a3e01626269e46e8fc07c844849ca0b6d82b386fe6579dee4daabaf60548f0dcbf5066d2f4643448309843b89d534cb333aebaeb3a9c9db8419a4e30cdb87a1f622f0aefb7120f2b5d25c4b467974adc950ccfca4cfe54ec204117262f6e35780391043a174eae491947ac0d811219da52c3"}]}}, {{0x9, 0x5, 0x9, 0x3, 0x200, 0x6, 0x9, 0xd7}}]}}, {{0x9, 0x4, 0x40, 0x7, 0x0, 0x47, 0x15, 0x51, 0x82, [@hid_hid={0x9, 0x21, 0x9, 0x9, 0x1, {0x22, 0x7d8}}]}}]}}]}}, &(0x7f0000000840)={0xa, &(0x7f0000000140)={0xa, 0x6, 0x200, 0x4, 0x66, 0x8}, 0x107, &(0x7f0000000340)={0x5, 0xf, 0x107, 0x6, [@ptm_cap={0x3}, @ext_cap={0x7, 0x10, 0x2, 0x14, 0x6, 0x3, 0xa7}, @generic={0xe8, 0x10, 0xb, "d28eeec0221804afbce2b4105c9e0019ee116ca9db47bcfa9624a9cc4af766a635c1705b89960a091cda49d2efed8da9867859661ff72fabb94ee9608b09cd039928b532816db55d85373c3676c0ceef493ef427774745e43c7712a2540f6b9a852c7c20e49591ce9a2a69ea1a735719dba20008f2020d4359bf67d5f5a3ce6dfd0f162eaddf6f20d1f99815bcdd70bc8eb4925b7f43fb7dd82039aaea1801b2e852188e02342edd037f577032b2b8645a761869ef6b7eecb0d4f84b266ca60fa1eabe9e11bd51fdc25ce9a956808658a30c09537d4704b40d452874f088afd2373ebbbaf6"}, @ptm_cap={0x3}, @generic={0x3, 0x10, 0x1}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x4, 0x2, 0x1, 0x3}]}, 0xa, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x82c}}, {0x71, &(0x7f0000000500)=@string={0x71, 0x3, "fcfbc71a387456207fd51f2b9f13bfb07926a21b7ece72ca296fb68190096fe3ecaa987348def6be61f708eb952dea501feb78de1f0d7b67b7c6aa6c3d9934f48f184ac763ec4af4e662838caeeb8310223a722d97b0e510c482e723ab0b44e3e7b4b5e9fdb722ddaccbc4267f15e2"}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4}}, {0x4, &(0x7f0000000580)=@lang_id={0x4, 0x3, 0x2c0a}}, {0x9a, &(0x7f0000000940)=ANY=[@ANYBLOB="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"]}, {0x4, &(0x7f0000000680)=@lang_id={0x4, 0x3, 0x459}}, {0x4, &(0x7f00000006c0)=@lang_id={0x4, 0x3, 0x405}}, {0x4, &(0x7f0000000700)=@lang_id={0x4, 0x3, 0x3409}}, {0x34, &(0x7f0000000740)=@string={0x34, 0x3, "d4632f4bc29f3c42b5db05d490a5e75bb6ffe3e934a8564fdb9c30f91346ee67ba71552e3a0263c916d59c0d7564b7bb8bee"}}, {0x14, &(0x7f00000007c0)=@string={0x14, 0x3, "e2b38b34d8e4c9a154619e388f6f1472a4b1"}}]})
getsockopt$inet_int(r2, 0x10d, 0x8a, &(0x7f0000000200), &(0x7f0000000280)=0x1c)
accept4(r2, &(0x7f0000000040)=@xdp, &(0x7f0000000100)=0x80, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)

12.510638015s ago: executing program 34 (id=1681):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
getdents(r1, &(0x7f0000001040)=""/4096, 0x1000)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
write(r2, &(0x7f0000000040)="05000000", 0x4)
r3 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_GET_CAP(r3, 0xc010640c, &(0x7f0000000000)={0x4})
r4 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000040)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r4, 0xc06864a1, &(0x7f0000000540)={0x0, 0x0, r5, <r6=>0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r4, 0xc06864a2, &(0x7f0000000240)={0x0, 0x0, r5, r6, 0x0, 0x0, 0x8, 0x5, {0x6, 0x0, 0x80, 0x30b4, 0x1, 0x2025, 0x84, 0x4, 0x3e40, 0x4, 0x6, 0x2, 0x2, 0x1, "12d56163d7287bd287881d942450c7143a32ff017ca9a58f1c702a4ccc476b15"}})
syz_open_dev$usbfs(&(0x7f0000000300), 0x7fff, 0x40000)
ioctl$DRM_IOCTL_MODE_GETPLANE(r1, 0xc02064b6, &(0x7f0000000140)={0x0, 0x0, <r7=>r6, 0x0, 0x0, 0x0, &(0x7f0000000100)})
ioctl$DRM_IOCTL_MODE_GETPLANE(r4, 0xc02064b6, &(0x7f00000002c0)={0x0, <r8=>0x0, r7, 0x0, 0x0, 0x6, &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r1, 0xc01864b0, &(0x7f0000000180)={r8, r7, 0x0, 0x9, 0x2})
getsockopt$WPAN_SECURITY_LEVEL(r1, 0x0, 0x2, &(0x7f0000000000), &(0x7f00000000c0)=0x4)

3.496908245s ago: executing program 35 (id=1707):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="5000008072003303000000000000000007000000", @ANYRES32=0x0, @ANYBLOB], 0x50}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0x80)
modify_ldt$write(0x1, 0x0, 0x0)
modify_ldt$read(0x0, &(0x7f0000002200)=""/229, 0xe5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=@ipmr_delroute={0x24, 0x19, 0x1, 0x0, 0x25dfdbfb, {0x80, 0x20, 0x14, 0x0, 0x0, 0x11, 0x0, 0x5}, [@RTA_TABLE={0x8, 0xf, 0xfffffffe}]}, 0x24}}, 0x8000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socket(0x10, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_usb_connect(0x4, 0x0, 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)=@ipv6_delroute={0x28, 0x19, 0x800, 0x70bd28, 0x25dfdbfb, {0xa, 0x10, 0x14, 0x6, 0xff, 0x4, 0x0, 0x7, 0x800}, [@RTA_MULTIPATH={0xc, 0x9, {0xe81f, 0x4, 0x81}}]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x20000000)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f0000000240)={0x0, 0x12, &(0x7f0000000200)={&(0x7f0000000000)={0x38, 0x1403, 0x1, 0xf, 0x25dfdbfc, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'wlan0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8080}, 0x8810)
r5 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r5, &(0x7f0000f67fe4)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r6 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r6, &(0x7f0000000480)={0xa, 0x4e20, 0x0, @mcast1={0xff, 0x5}}, 0x1c)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e23, 0x5, @mcast1, 0x9}, 0x1c)
syz_emit_ethernet(0x3a, &(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x20000000)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c0000002c00010026bd9300fcdbdf250400000008000c80"], 0x1c}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)
syz_emit_ethernet(0x141, &(0x7f00000008c0)=ANY=[@ANYBLOB="0180c200000000000000000008004dff013300650000de069078ac1414bbe00000018604760344281920000001ff000000030000000600000040000000070000000600000004000000070000000044342233ffffffff0000000096ec9ba400000009ac1414bb0000dfefac1414aa000000047f0000010000000a0a010101000001014e224e23", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="a0ff000390780001131225cd5e87bf66956204d4ce3b45cd21e90000eb2ede530163998bbfd192dd439219b1d0b37a49815ec1905ff068014395bf0dcf7d91206804bb87c99d5a5b84a4eca86bceded6815b21478c18377cb632dab53969078603509a0a5222b33a9e441e04707d1d674b6f7c11490e84d8f2273dc0d3f7b9ac749a27b00aba706a383efa37073e955a2a8eab50c78f7f83ed3fe1c1215750e0eef965dbe55fc81cbb5ada8be4185451fe7714"], 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x2808c0)

1.995982594s ago: executing program 36 (id=1709):
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$media(&(0x7f00000012c0), 0x66, 0x180502)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000002c00010324bd7002f9dbdf2506"], 0x14}, 0x1, 0x0, 0x0, 0x4004004}, 0x40)
recvmmsg(r1, &(0x7f0000006580)=[{{0x0, 0x0, 0x0}, 0x7}], 0x1, 0x12020, 0x0)
syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x8541)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
r4 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
syz_usb_disconnect(r4)
syz_usb_connect$cdc_ecm(0x6, 0x56, &(0x7f0000000640)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r4, 0x4004550f, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="11000000040000000400000001"], 0x48)
socket$kcm(0x2c, 0x3, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000380)={0x100, <r6=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r6, r0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000000)={r5, &(0x7f0000000140), &(0x7f0000000200)=""/221}, 0x20)

0s ago: executing program 37 (id=1711):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_PEERS={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000) (fail_nth: 6)

kernel console output (not intermixed with test programs):

.651570][ T1204] ch341 2-1:0.0: ch341-uart converter detected
[  384.732668][ T5876] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  384.748900][ T5876] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  384.760282][ T5908] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  384.880171][ T9963] random: crng reseeded on system resumption
[  385.471839][ T5908] usb 6-1: Using ep0 maxpacket: 8
[  385.490827][ T5908] usb 6-1: config 6 has an invalid interface number: 2 but max is 0
[  385.511590][ T5908] usb 6-1: config 6 has an invalid descriptor of length 0, skipping remainder of the config
[  385.550241][ T5876] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  385.627806][ T9953] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  385.653346][ T5908] usb 6-1: config 6 has no interface number 0
[  385.669680][ T5876] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  385.680123][ T5908] usb 6-1: config 6 interface 2 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  385.732361][ T5908] usb 6-1: New USB device found, idVendor=0af0, idProduct=7271, bcdDevice=88.91
[  385.753957][ T1204] usb 2-1: failed to send control message: -71
[  385.760042][ T5908] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  385.770472][ T1204] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  385.796103][ T5908] usb 6-1: Product: syz
[  385.814520][ T1204] usb 2-1: USB disconnect, device number 30
[  385.837829][ T1204] ch341 2-1:0.0: device disconnected
[  385.960541][ T5908] usb 6-1: Manufacturer: syz
[  385.965201][ T5908] usb 6-1: SerialNumber: syz
[  385.989403][ T5908] hso 6-1:6.2: Failed to find INT IN ep
[  386.743179][   T26] usb 4-1: USB disconnect, device number 37
[  386.827542][ T9972] netlink: 260 bytes leftover after parsing attributes in process `syz.0.1209'.
[  386.907720][ T9956] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  386.928419][ T6032] udevd[6032]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  386.956715][ T9956] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  388.235525][ T5875] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[  388.398240][   T30] audit: type=1326 audit(1742535809.524:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9986 comm="syz.4.1213" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7eff46f8d169 code=0x0
[  388.433247][ T5876] usb 6-1: USB disconnect, device number 14
[  388.439863][ T5875] usb 2-1: Using ep0 maxpacket: 16
[  388.469491][ T5875] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  388.502206][ T5875] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  388.534497][ T5875] usb 2-1: New USB device found, idVendor=056a, idProduct=0003, bcdDevice= 0.00
[  388.564637][ T5875] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  389.402363][ T5875] usb 2-1: config 0 descriptor??
[  389.432080][ T9995] FAULT_INJECTION: forcing a failure.
[  389.432080][ T9995] name failslab, interval 1, probability 0, space 0, times 0
[  389.510197][ T9995] CPU: 1 UID: 0 PID: 9995 Comm: syz.0.1215 Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  389.510228][ T9995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  389.510242][ T9995] Call Trace:
[  389.510250][ T9995]  <TASK>
[  389.510259][ T9995]  dump_stack_lvl+0x241/0x360
[  389.510292][ T9995]  ? __pfx_dump_stack_lvl+0x10/0x10
[  389.510314][ T9995]  ? __pfx__printk+0x10/0x10
[  389.510347][ T9995]  ? __kmalloc_cache_noprof+0x48/0x390
[  389.510370][ T9995]  ? __pfx___might_resched+0x10/0x10
[  389.510400][ T9995]  should_fail_ex+0x40a/0x550
[  389.510437][ T9995]  should_failslab+0xac/0x100
[  389.510473][ T9995]  __kmalloc_cache_noprof+0x70/0x390
[  389.510494][ T9995]  ? snd_mixer_oss_get_volume1_sw+0xf7/0x490
[  389.510528][ T9995]  snd_mixer_oss_get_volume1_sw+0xf7/0x490
[  389.510564][ T9995]  snd_mixer_oss_get_recsrc1_sw+0x104/0x280
[  389.510597][ T9995]  ? __pfx_snd_mixer_oss_get_recsrc1_sw+0x10/0x10
[  389.510636][ T9995]  ? __pfx_snd_mixer_oss_get_recsrc1_sw+0x10/0x10
[  389.510663][ T9995]  snd_mixer_oss_ioctl1+0x1605/0x1c10
[  389.510689][ T9995]  ? __pfx_lock_release+0x10/0x10
[  389.510724][ T9995]  ? tomoyo_path_number_perm+0x5dd/0x770
[  389.510757][ T9995]  ? __pfx_snd_mixer_oss_ioctl1+0x10/0x10
[  389.510784][ T9995]  ? tomoyo_path_number_perm+0x5dd/0x770
[  389.510820][ T9995]  ? tomoyo_path_number_perm+0x65d/0x770
[  389.510851][ T9995]  ? __lock_acquire+0x1397/0x2100
[  389.510884][ T9995]  ? tomoyo_path_number_perm+0x209/0x770
[  389.510916][ T9995]  ? smack_log+0x10d/0x5c0
[  389.510948][ T9995]  ? __pfx_smack_log+0x10/0x10
[  389.510981][ T9995]  snd_mixer_oss_ioctl_card+0x150/0x1b0
[  389.511012][ T9995]  ? __pfx_snd_mixer_oss_ioctl_card+0x10/0x10
[  389.511044][ T9995]  ? smack_file_ioctl+0x304/0x3b0
[  389.511085][ T9995]  snd_pcm_oss_ioctl+0x2df/0xff0
[  389.511128][ T9995]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  389.511168][ T9995]  ? __fget_files+0x2a/0x410
[  389.511191][ T9995]  ? __fget_files+0x2a/0x410
[  389.511214][ T9995]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  389.511241][ T9995]  __se_sys_ioctl+0xf5/0x170
[  389.511266][ T9995]  do_syscall_64+0xf3/0x230
[  389.511295][ T9995]  ? clear_bhb_loop+0x35/0x90
[  389.511323][ T9995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.511348][ T9995] RIP: 0033:0x7f1e1798d169
[  389.511364][ T9995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  389.511379][ T9995] RSP: 002b:00007f1e18729038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  389.511399][ T9995] RAX: ffffffffffffffda RBX: 00007f1e17ba5fa0 RCX: 00007f1e1798d169
[  389.511412][ T9995] RDX: 00002000000001c0 RSI: 0000000080044dff RDI: 0000000000000003
[  389.511424][ T9995] RBP: 00007f1e18729090 R08: 0000000000000000 R09: 0000000000000000
[  389.511436][ T9995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  389.511447][ T9995] R13: 0000000000000000 R14: 00007f1e17ba5fa0 R15: 00007ffe6196b168
[  389.511473][ T9995]  </TASK>
[  389.809464][ T9997] netlink: 'syz.4.1213': attribute type 3 has an invalid length.
[  389.817505][ T9997] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.1213'.
[  390.214233][ T5875] wacom 0003:056A:0003.0016: Unknown device_type for 'HID 056a:0003'. Assuming pen.
[  390.494522][ T5875] wacom 0003:056A:0003.0016: hidraw0: USB HID v0.00 Device [HID 056a:0003] on usb-dummy_hcd.1-1/input0
[  390.508369][ T5875] input: Wacom Cintiq Partner Pen as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:056A:0003.0016/input/input85
[  390.771116][ T5875] usb 2-1: USB disconnect, device number 31
[  390.997716][T10005] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1218'.
[  392.901324][T10017] netlink: 'syz.1.1221': attribute type 1 has an invalid length.
[  392.909103][T10017] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1221'.
[  393.000689][T10017] loop9: detected capacity change from 0 to 7
[  393.101048][T10020] netlink: 260 bytes leftover after parsing attributes in process `syz.3.1222'.
[  393.546906][T10017] Dev loop9: unable to read RDB block 7
[  393.565429][T10017]  loop9: unable to read partition table
[  393.571715][T10017] loop9: partition table beyond EOD, truncated
[  393.578257][T10017] loop_reread_partitions: partition scan of loop9 (þ被x󟣑– ) failed (rc=-5)
[  393.777268][ T3080] usb 6-1: new full-speed USB device number 15 using dummy_hcd
[  394.080292][ T5875] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  394.260092][   T26] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[  394.268128][ T5875] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  394.281931][ T3080] usb 6-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  394.288351][ T5875] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  394.304303][ T5875] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  394.340485][T10026] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  394.349073][ T3080] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  394.389829][ T3080] usb 6-1: config 0 descriptor??
[  394.393123][ T5875] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  394.422676][ T3080] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  394.490518][   T26] usb 2-1: Using ep0 maxpacket: 8
[  394.510616][   T26] usb 2-1: config 252 has an invalid interface number: 138 but max is 0
[  394.557398][   T26] usb 2-1: config 252 has no interface number 0
[  394.625531][ T5875] usb 4-1: USB disconnect, device number 38
[  394.640547][   T26] usb 2-1: config 252 interface 138 altsetting 1 endpoint 0x5 has invalid maxpacket 512, setting to 64
[  394.716672][   T26] usb 2-1: config 252 interface 138 has no altsetting 0
[  394.755569][ T3080] gp8psk: usb in 128 operation failed.
[  394.762082][   T26] usb 2-1: New USB device found, idVendor=0424, idProduct=7801, bcdDevice=32.4b
[  394.771444][   T26] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  394.779640][ T3080] gp8psk: usb in 137 operation failed.
[  394.792395][ T3080] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  394.858437][ T3080] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  394.938539][ T3080] usb 6-1: USB disconnect, device number 15
[  395.973282][   T26] usb 2-1: string descriptor 0 read error: -71
[  396.090216][   T26] usb 2-1: USB disconnect, device number 32
[  398.092594][ T1204] usb 5-1: new high-speed USB device number 45 using dummy_hcd
[  398.650474][ T1204] usb 5-1: Using ep0 maxpacket: 32
[  398.725141][T10058] netlink: 260 bytes leftover after parsing attributes in process `syz.5.1234'.
[  398.776078][ T1204] usb 5-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[  398.810207][ T1204] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  398.820030][ T1204] usb 5-1: Product: syz
[  398.834423][ T1204] usb 5-1: Manufacturer: syz
[  398.850207][ T1204] usb 5-1: SerialNumber: syz
[  398.862755][ T1204] usb 5-1: config 0 descriptor??
[  398.883690][ T1204] rtl8150 5-1:0.0: couldn't find required endpoints
[  398.900928][ T1204] rtl8150 5-1:0.0: probe with driver rtl8150 failed with error -5
[  398.923049][T10049] kvm: kvm [10040]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x4110
[  399.020482][T10049] kvm: kvm [10040]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0xac60
[  399.055255][T10049] kvm: kvm [10040]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0xd040
[  399.664014][ T5876] usb 5-1: USB disconnect, device number 45
[  399.834968][ T2923] bridge0: port 2(bridge_slave_1) entered disabled state
[  400.110089][ T5876] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  400.330629][ T5876] usb 6-1: Using ep0 maxpacket: 8
[  400.420368][ T3080] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[  400.495507][ T5876] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  400.503804][ T5876] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  400.513778][ T5876] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  400.527844][ T5876] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  400.580899][ T5876] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  400.595047][ T5876] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  400.669128][ T3080] usb 2-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad
[  400.677882][T10081] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  400.710979][ T3080] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  400.808730][ T5876] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  400.809760][ T3080] usb 2-1: config 0 descriptor??
[  400.837212][ T3080] gspca_main: spca508-2.14.0 probing 8086:0110
[  400.934913][   T30] audit: type=1326 audit(1742535822.074:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10088 comm="syz.3.1245" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe71ed8d169 code=0x0
[  400.950179][ T1204] usb 5-1: new high-speed USB device number 46 using dummy_hcd
[  401.033212][ T3080] gspca_spca508: reg_read err -32
[  401.041623][ T3080] gspca_spca508: reg_read err -32
[  401.055543][ T3080] gspca_spca508: reg_read err -32
[  401.069203][ T5876] usb 6-1: GET_CAPABILITIES returned 0
[  401.075289][ T5876] usbtmc 6-1:16.0: can't read capabilities
[  401.113387][ T1204] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  401.132764][T10091] netlink: 'syz.3.1245': attribute type 3 has an invalid length.
[  401.141061][ T1204] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  401.151319][T10091] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.1245'.
[  401.161553][ T1204] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  401.173371][T10082] raw-gadget.2 gadget.4: fail, usb_ep_enable returned -22
[  401.184444][ T1204] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  401.271290][T10074] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  401.462450][T10074] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  401.670734][ T3080] gspca_spca508: reg_read err -110
[  401.858396][ T3080] gspca_spca508: reg write: error -32
[  401.869751][   T26] usb 5-1: USB disconnect, device number 46
[  401.877215][ T3080] spca508 2-1:0.0: probe with driver spca508 failed with error -32
[  401.991964][T10074] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  402.010569][T10074] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  402.100213][T10096] netlink: 260 bytes leftover after parsing attributes in process `syz.0.1246'.
[  402.146574][ T6032] udevd[6032]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  402.547978][   T26] usb 2-1: USB disconnect, device number 33
[  402.802042][   T26] usb 6-1: USB disconnect, device number 16
[  403.078662][ T5823] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  403.320585][ T5823] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  403.641236][T10105] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1248'.
[  403.989895][T10110] random: crng reseeded on system resumption
[  405.325604][ T5823] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  405.644975][ T5823] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  405.654801][ T5823] CPU: 1 UID: 0 PID: 5823 Comm: kworker/u9:2 Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  405.654824][ T5823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  405.654836][ T5823] Workqueue: hci2 hci_rx_work
[  405.654862][ T5823] Call Trace:
[  405.654869][ T5823]  <TASK>
[  405.654877][ T5823]  dump_stack_lvl+0x241/0x360
[  405.654909][ T5823]  ? __pfx_dump_stack_lvl+0x10/0x10
[  405.654928][ T5823]  ? __pfx__printk+0x10/0x10
[  405.654962][ T5823]  ? __kmalloc_cache_noprof+0x243/0x390
[  405.654981][ T5823]  ? sysfs_create_dir_ns+0x28a/0x3a0
[  405.655013][ T5823]  sysfs_create_dir_ns+0x2ce/0x3a0
[  405.655043][ T5823]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  405.655079][ T5823]  kobject_add_internal+0x435/0x8d0
[  405.655106][ T5823]  kobject_add+0x152/0x220
[  405.655125][ T5823]  ? preempt_schedule_thunk+0x1a/0x30
[  405.655151][ T5823]  ? device_add+0x3e7/0xbf0
[  405.655180][ T5823]  ? __pfx_kobject_add+0x10/0x10
[  405.655198][ T5823]  ? _raw_spin_unlock+0x3e/0x50
[  405.655225][ T5823]  ? get_device_parent+0x165/0x410
[  405.655246][ T5823]  device_add+0x4e5/0xbf0
[  405.655280][ T5823]  hci_conn_add_sysfs+0xe8/0x200
[  405.655304][ T5823]  le_conn_complete_evt+0xd1a/0x1360
[  405.655342][ T5823]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  405.655368][ T5823]  ? __mutex_unlock_slowpath+0x227/0x800
[  405.655399][ T5823]  ? __skb_clone+0x5c/0x6c0
[  405.655423][ T5823]  ? skb_pull_data+0x112/0x230
[  405.655452][ T5823]  hci_le_enh_conn_complete_evt+0x185/0x420
[  405.655485][ T5823]  hci_event_packet+0xa54/0x1540
[  405.655511][ T5823]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  405.655541][ T5823]  ? __pfx_hci_event_packet+0x10/0x10
[  405.655565][ T5823]  ? mark_lock+0x9a/0x360
[  405.655595][ T5823]  ? kcov_remote_start+0x2e/0x7d0
[  405.655624][ T5823]  ? hci_send_to_monitor+0xdc/0x530
[  405.655654][ T5823]  hci_rx_work+0x3f3/0xdb0
[  405.655684][ T5823]  ? process_scheduled_works+0x9c6/0x18e0
[  405.655706][ T5823]  process_scheduled_works+0xabe/0x18e0
[  405.655754][ T5823]  ? __pfx_process_scheduled_works+0x10/0x10
[  405.655786][ T5823]  ? assign_work+0x364/0x3d0
[  405.655813][ T5823]  worker_thread+0x870/0xd30
[  405.655843][ T5823]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  405.655871][ T5823]  ? __kthread_parkme+0x169/0x1d0
[  405.655905][ T5823]  ? __pfx_worker_thread+0x10/0x10
[  405.655929][ T5823]  kthread+0x7a9/0x920
[  405.655954][ T5823]  ? __pfx_kthread+0x10/0x10
[  405.655982][ T5823]  ? __pfx_worker_thread+0x10/0x10
[  405.656006][ T5823]  ? __pfx_kthread+0x10/0x10
[  405.656030][ T5823]  ? __pfx_kthread+0x10/0x10
[  405.656060][ T5823]  ? __pfx_kthread+0x10/0x10
[  405.656084][ T5823]  ? _raw_spin_unlock_irq+0x23/0x50
[  405.656107][ T5823]  ? lockdep_hardirqs_on+0x99/0x150
[  405.656132][ T5823]  ? __pfx_kthread+0x10/0x10
[  405.656160][ T5823]  ret_from_fork+0x4b/0x80
[  405.656182][ T5823]  ? __pfx_kthread+0x10/0x10
[  405.656207][ T5823]  ret_from_fork_asm+0x1a/0x30
[  405.656242][ T5823]  </TASK>
[  405.656358][ T5823] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  406.323076][ T5823] Bluetooth: hci2: failed to register connection device
[  407.160663][ T5874] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[  407.194306][T10136] netlink: 260 bytes leftover after parsing attributes in process `syz.5.1257'.
[  408.062227][ T5874] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  408.076636][ T5874] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[  408.100079][ T5874] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  408.116151][ T5874] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[  408.140892][ T5874] usb 4-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[  408.178421][ T5874] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  408.216346][ T5874] usb 4-1: config 0 descriptor??
[  408.416571][T10145] Device name cannot be null; rc = [-22]
[  408.917651][ T5874] hdpvr 4-1:0.0: firmware version 0x12 dated 
[  409.030427][T10147] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1261'.
[  409.046199][T10147] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1261'.
[  409.128331][ T5874] hdpvr 4-1:0.0: device init failed
[  409.141420][ T5874] hdpvr 4-1:0.0: probe with driver hdpvr failed with error -12
[  409.169471][ T5874] usb 4-1: USB disconnect, device number 39
[  409.345434][T10149] xt_CT: You must specify a L4 protocol and not use inversions on it
[  410.567846][T10162] random: crng reseeded on system resumption
[  410.772506][T10161] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1265'.
[  411.043168][T10170] netlink: 260 bytes leftover after parsing attributes in process `syz.3.1269'.
[  411.340916][T10174] netlink: 'syz.5.1272': attribute type 1 has an invalid length.
[  411.348911][T10174] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1272'.
[  411.587944][T10181] netlink: 'syz.0.1274': attribute type 10 has an invalid length.
[  411.609625][T10181] syz_tun: entered promiscuous mode
[  411.641816][ T5874] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  411.702238][T10181] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  411.724584][T10183] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1275'.
[  411.769442][T10183] bridge0: port 2(bridge_slave_1) entered disabled state
[  411.788396][T10187] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1276'.
[  411.850492][ T5874] usb 6-1: Using ep0 maxpacket: 8
[  411.882393][ T5874] usb 6-1: config 252 has an invalid interface number: 138 but max is 0
[  411.901018][ T5874] usb 6-1: config 252 has no interface number 0
[  411.925425][ T5874] usb 6-1: config 252 interface 138 altsetting 1 endpoint 0x5 has invalid maxpacket 512, setting to 64
[  411.970142][ T5874] usb 6-1: config 252 interface 138 has no altsetting 0
[  411.997620][ T5874] usb 6-1: New USB device found, idVendor=0424, idProduct=7801, bcdDevice=32.4b
[  412.037469][ T5874] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  412.609816][T10194] random: crng reseeded on system resumption
[  412.624064][ T5823] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  413.782735][ T5874] usb 6-1: string descriptor 0 read error: -71
[  413.903161][ T5874] usb 6-1: USB disconnect, device number 17
[  414.539875][   T30] audit: type=1326 audit(1742535835.674:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10219 comm="syz.4.1285" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7eff46f8d169 code=0x0
[  414.590122][ T1204] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[  414.740309][ T1204] usb 2-1: Using ep0 maxpacket: 16
[  414.747496][ T1204] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  414.757735][ T1204] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  414.782952][ T1204] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  414.792897][ T1204] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  414.801019][ T1204] usb 2-1: Product: syz
[  414.805223][ T1204] usb 2-1: Manufacturer: syz
[  414.810424][ T1204] usb 2-1: SerialNumber: syz
[  414.920096][ T5876] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  415.037030][ T1204] usb 2-1: 0:2 : does not exist
[  415.046815][ T1204] usb 2-1: 5:0: failed to get current value for ch 0 (-22)
[  415.054383][ T5876] usb 6-1: device descriptor read/64, error -71
[  415.083168][ T1204] usb 2-1: USB disconnect, device number 34
[  415.271883][ T6012] udevd[6012]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  415.300052][ T5876] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  415.387424][T10233] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1289'.
[  415.401479][ T3080] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[  415.430161][ T5876] usb 6-1: device descriptor read/64, error -71
[  415.570376][ T3080] usb 4-1: Using ep0 maxpacket: 32
[  415.582054][ T3080] usb 4-1: unable to get BOS descriptor or descriptor too short
[  415.590399][ T5876] usb usb6-port1: attempt power cycle
[  415.682296][T10239] random: crng reseeded on system resumption
[  416.053311][ T3080] usb 4-1: config 7 has an invalid interface number: 3 but max is 1
[  416.262916][ T3080] usb 4-1: config 7 has an invalid interface number: 164 but max is 1
[  416.276849][ T3080] usb 4-1: config 7 has no interface number 0
[  416.294191][ T3080] usb 4-1: config 7 has no interface number 1
[  416.303776][ T3080] usb 4-1: config 7 interface 3 altsetting 14 bulk endpoint 0x6 has invalid maxpacket 1024
[  416.314452][ T3080] usb 4-1: config 7 interface 3 altsetting 14 endpoint 0xA has invalid maxpacket 1024, setting to 64
[  416.380092][ T3080] usb 4-1: config 7 interface 3 altsetting 14 endpoint 0xB has invalid maxpacket 512, setting to 64
[  416.400122][ T3080] usb 4-1: config 7 interface 3 altsetting 14 endpoint 0x7 has an invalid bInterval 0, changing to 7
[  416.421347][ T3080] usb 4-1: config 7 interface 3 altsetting 14 has a duplicate endpoint with address 0xB, skipping
[  416.456602][ T3080] usb 4-1: config 7 interface 3 altsetting 14 has an invalid descriptor for endpoint zero, skipping
[  416.477352][ T3080] usb 4-1: config 7 interface 3 altsetting 14 endpoint 0x5 has invalid maxpacket 1024, setting to 64
[  416.513376][ T5876] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  416.582247][ T5876] usb 6-1: device descriptor read/8, error -71
[  416.952787][ T3080] usb 4-1: config 7 interface 3 has no altsetting 0
[  417.251006][ T3080] usb 4-1: config 7 interface 164 has no altsetting 0
[  417.516225][ T3080] usb 4-1: New USB device found, idVendor=19d2, idProduct=1018, bcdDevice=ff.eb
[  417.526536][ T3080] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  417.540505][ T3080] usb 4-1: Product: syz
[  417.544709][ T3080] usb 4-1: Manufacturer: syz
[  417.601177][ T3080] usb 4-1: SerialNumber: syz
[  417.633782][T10230] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  417.840266][ T5876] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  417.904392][ T5876] usb 6-1: device descriptor read/8, error -71
[  417.937048][ T3080] usb 4-1: USB disconnect, device number 40
[  417.974348][T10260] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1297'.
[  418.032436][ T5876] usb usb6-port1: unable to enumerate USB device
[  418.037792][T10264] netlink: 892 bytes leftover after parsing attributes in process `syz.1.1300'.
[  418.239250][T10267] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1301'.
[  418.991802][ T1204] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  419.256234][T10282] random: crng reseeded on system resumption
[  419.835494][ T1204] usb 2-1: Using ep0 maxpacket: 16
[  419.871588][ T1204] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  419.900172][ T1204] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  419.932505][ T1204] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  419.948287][ T1204] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  419.958923][ T1204] usb 2-1: Product: syz
[  419.968634][ T1204] usb 2-1: Manufacturer: syz
[  419.973637][ T1204] usb 2-1: SerialNumber: syz
[  420.268801][ T1204] usb 2-1: 0:2 : does not exist
[  420.292453][ T1204] usb 2-1: 5:0: failed to get current value for ch 0 (-22)
[  420.340559][   T26] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  420.355532][T10292] FAULT_INJECTION: forcing a failure.
[  420.355532][T10292] name failslab, interval 1, probability 0, space 0, times 0
[  420.368189][T10292] CPU: 1 UID: 0 PID: 10292 Comm: syz.0.1310 Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  420.368212][T10292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  420.368223][T10292] Call Trace:
[  420.368229][T10292]  <TASK>
[  420.368236][T10292]  dump_stack_lvl+0x241/0x360
[  420.368260][T10292]  ? __pfx_dump_stack_lvl+0x10/0x10
[  420.368278][T10292]  ? __pfx__printk+0x10/0x10
[  420.368317][T10292]  should_fail_ex+0x40a/0x550
[  420.368349][T10292]  should_failslab+0xac/0x100
[  420.368376][T10292]  ? skb_clone+0x20c/0x390
[  420.368397][T10292]  kmem_cache_alloc_noprof+0x70/0x380
[  420.368429][T10292]  skb_clone+0x20c/0x390
[  420.368451][T10292]  __netlink_deliver_tap+0x3c4/0x7f0
[  420.368483][T10292]  ? netlink_deliver_tap+0x2e/0x1b0
[  420.368503][T10292]  netlink_deliver_tap+0x19d/0x1b0
[  420.368526][T10292]  netlink_unicast+0x7c4/0x990
[  420.368552][T10292]  ? __pfx_netlink_unicast+0x10/0x10
[  420.368569][T10292]  ? __virt_addr_valid+0x45f/0x530
[  420.368596][T10292]  ? __phys_addr_symbol+0x2f/0x70
[  420.368621][T10292]  ? __check_object_size+0x47a/0x730
[  420.368654][T10292]  netlink_sendmsg+0x8de/0xcb0
[  420.368687][T10292]  ? __pfx_netlink_sendmsg+0x10/0x10
[  420.368722][T10292]  ? __pfx_netlink_sendmsg+0x10/0x10
[  420.368742][T10292]  __sock_sendmsg+0x221/0x270
[  420.368769][T10292]  ____sys_sendmsg+0x53a/0x860
[  420.368797][T10292]  ? __pfx_____sys_sendmsg+0x10/0x10
[  420.368815][T10292]  ? __fget_files+0x2a/0x410
[  420.368836][T10292]  ? __fget_files+0x2a/0x410
[  420.368863][T10292]  __sys_sendmsg+0x269/0x350
[  420.368887][T10292]  ? __pfx___sys_sendmsg+0x10/0x10
[  420.368932][T10292]  ? __might_fault+0xaa/0x120
[  420.368954][T10292]  ? __pfx_lock_release+0x10/0x10
[  420.368991][T10292]  ? rcu_is_watching+0x15/0xb0
[  420.369011][T10292]  ? trace_sys_enter+0x25/0x120
[  420.369042][T10292]  do_syscall_64+0xf3/0x230
[  420.369070][T10292]  ? clear_bhb_loop+0x35/0x90
[  420.369106][T10292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.369129][T10292] RIP: 0033:0x7f1e1798d169
[  420.369144][T10292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.369160][T10292] RSP: 002b:00007f1e18708038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  420.369180][T10292] RAX: ffffffffffffffda RBX: 00007f1e17ba6080 RCX: 00007f1e1798d169
[  420.369193][T10292] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000004
[  420.369205][T10292] RBP: 00007f1e18708090 R08: 0000000000000000 R09: 0000000000000000
[  420.369216][T10292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  420.369227][T10292] R13: 0000000000000000 R14: 00007f1e17ba6080 R15: 00007ffe6196b168
[  420.369254][T10292]  </TASK>
[  420.370346][ T1204] usb 2-1: USB disconnect, device number 35
[  420.785214][T10299] netlink: 892 bytes leftover after parsing attributes in process `syz.3.1313'.
[  420.830266][   T26] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  420.848706][   T26] usb 6-1: New USB device found, idVendor=0bfd, idProduct=010c, bcdDevice=2d.16
[  420.859368][   T26] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  420.875306][T10301] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1314'.
[  420.876247][   T26] usb 6-1: Product: syz
[  420.889320][   T26] usb 6-1: Manufacturer: syz
[  420.905798][   T26] usb 6-1: SerialNumber: syz
[  420.944172][   T26] usb 6-1: config 0 descriptor??
[  420.952331][   T26] kvaser_usb 6-1:0.0: error -ENODEV: Cannot get usb endpoint(s)
[  421.502876][T10287] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  421.531956][T10287] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  421.669868][T10308] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  421.710391][T10308] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  422.013304][T10318] random: crng reseeded on system resumption
[  422.543040][ T5876] usb 6-1: USB disconnect, device number 22
[  422.798084][T10324] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  422.823471][T10324] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  422.900239][T10324] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  423.805012][T10347] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1325'.
[  425.886239][T10362] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1331'.
[  427.560819][T10372] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1334'.
[  427.569817][T10372] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1334'.
[  427.597054][T10372] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1334'.
[  427.774576][T10382] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1339'.
[  427.980177][T10390] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  429.274699][T10404] random: crng reseeded on system resumption
[  430.060463][ T3080] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  430.450326][ T3080] usb 6-1: Using ep0 maxpacket: 16
[  430.510041][ T5876] kernel write not supported for file /amidi2 (pid: 5876 comm: kworker/0:6)
[  430.520363][ T1204] usb 5-1: new full-speed USB device number 47 using dummy_hcd
[  430.529720][ T3080] usb 6-1: unable to get BOS descriptor or descriptor too short
[  430.897995][ T3080] usb 6-1: config 1 has an invalid interface number: 206 but max is 0
[  430.907230][ T1204] usb 5-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  430.916493][ T3080] usb 6-1: config 1 has no interface number 0
[  430.929117][ T3080] usb 6-1: New USB device found, idVendor=152d, idProduct=0310, bcdDevice=3b.0a
[  430.934280][ T1204] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  430.956534][ T3080] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  430.981810][ T1204] usb 5-1: config 0 descriptor??
[  430.997823][ T3080] usb 6-1: Product: syz
[  431.009279][ T3080] usb 6-1: Manufacturer: syz
[  431.012704][ T1204] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  431.028563][ T3080] usb 6-1: SerialNumber: syz
[  431.502935][T10429] netlink: 'syz.0.1351': attribute type 4 has an invalid length.
[  431.510859][T10429] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.1351'.
[  432.354327][ T1204] gp8psk: usb in 128 operation failed.
[  432.381548][ T1204] gp8psk: usb in 137 operation failed.
[  432.419333][ T1204] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  432.514034][ T1204] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  433.030619][ T5876] kernel write not supported for file /cpu/0/msr (pid: 5876 comm: kworker/0:6)
[  433.153763][ T1204] usb 5-1: USB disconnect, device number 47
[  433.588210][T10449] input: syz0 as /devices/virtual/input/input91
[  434.358531][ T5872] usb 2-1: new full-speed USB device number 36 using dummy_hcd
[  434.505478][ T3080] usb 6-1: USB disconnect, device number 23
[  434.526324][   T30] audit: type=1326 audit(1742535855.664:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10453 comm="syz.4.1360" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7eff46f8d169 code=0x0
[  434.550987][ T5872] usb 2-1: device descriptor read/64, error -71
[  434.713836][T10462] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1363'.
[  434.800262][ T5872] usb 2-1: new full-speed USB device number 37 using dummy_hcd
[  434.880078][ T3080] usb 6-1: new full-speed USB device number 24 using dummy_hcd
[  434.940124][ T5872] usb 2-1: device descriptor read/64, error -71
[  435.050522][ T5872] usb usb2-port1: attempt power cycle
[  435.061704][ T3080] usb 6-1: config 0 has an invalid interface number: 22 but max is 0
[  435.069881][ T3080] usb 6-1: config 0 has no interface number 0
[  435.080078][ T3080] usb 6-1: New USB device found, idVendor=2639, idProduct=0003, bcdDevice=d1.b9
[  435.089381][ T3080] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  435.098056][ T3080] usb 6-1: Product: syz
[  435.103009][ T3080] usb 6-1: Manufacturer: syz
[  435.107683][ T3080] usb 6-1: SerialNumber: syz
[  435.119615][ T3080] usb 6-1: config 0 descriptor??
[  435.334856][ T5876] usb 6-1: USB disconnect, device number 24
[  435.390483][ T5872] usb 2-1: new full-speed USB device number 38 using dummy_hcd
[  435.410652][ T5872] usb 2-1: device descriptor read/8, error -71
[  435.513612][T10464] netlink: 'syz.4.1364': attribute type 1 has an invalid length.
[  435.530167][T10464] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1364'.
[  435.680108][ T5872] usb 2-1: new full-speed USB device number 39 using dummy_hcd
[  435.705991][ T5872] usb 2-1: device descriptor read/8, error -71
[  435.830896][ T5876] usb 5-1: new high-speed USB device number 48 using dummy_hcd
[  435.869129][ T5872] usb usb2-port1: unable to enumerate USB device
[  436.071616][ T5876] usb 5-1: Using ep0 maxpacket: 8
[  436.104591][ T5876] usb 5-1: config 252 has an invalid interface number: 138 but max is 0
[  436.186255][ T5876] usb 5-1: config 252 has no interface number 0
[  436.221212][ T5876] usb 5-1: config 252 interface 138 altsetting 1 endpoint 0x5 has invalid maxpacket 512, setting to 64
[  436.232446][ T5876] usb 5-1: config 252 interface 138 has no altsetting 0
[  436.239430][ T5876] usb 5-1: New USB device found, idVendor=0424, idProduct=7801, bcdDevice=32.4b
[  436.276629][ T5876] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  436.490300][ T1204] usb 4-1: new full-speed USB device number 41 using dummy_hcd
[  436.626002][T10477] Bluetooth: MGMT ver 1.23
[  436.662751][ T1204] usb 4-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  436.690085][ T1204] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  436.740170][ T1204] usb 4-1: config 0 descriptor??
[  436.785959][ T1204] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  437.107151][T10479] FAULT_INJECTION: forcing a failure.
[  437.107151][T10479] name failslab, interval 1, probability 0, space 0, times 0
[  437.802916][T10479] CPU: 1 UID: 0 PID: 10479 Comm: syz.0.1370 Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  437.802946][T10479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  437.802959][T10479] Call Trace:
[  437.802966][T10479]  <TASK>
[  437.802974][T10479]  dump_stack_lvl+0x241/0x360
[  437.803001][T10479]  ? __pfx_dump_stack_lvl+0x10/0x10
[  437.803022][T10479]  ? __pfx__printk+0x10/0x10
[  437.803063][T10479]  ? fs_reclaim_acquire+0x93/0x130
[  437.803086][T10479]  ? __pfx___might_resched+0x10/0x10
[  437.803107][T10479]  ? lockdep_init_map_type+0xa1/0x910
[  437.803137][T10479]  should_fail_ex+0x40a/0x550
[  437.803169][T10479]  should_failslab+0xac/0x100
[  437.803199][T10479]  ? security_inode_alloc+0x37/0x310
[  437.803220][T10479]  kmem_cache_alloc_noprof+0x70/0x380
[  437.803255][T10479]  security_inode_alloc+0x37/0x310
[  437.803279][T10479]  inode_init_always_gfp+0xa0f/0xd90
[  437.803313][T10479]  ? __pfx_proc_alloc_inode+0x10/0x10
[  437.803337][T10479]  alloc_inode+0x9f/0x1a0
[  437.803357][T10479]  new_inode+0x22/0x1d0
[  437.803375][T10479]  ? proc_ns_dir_lookup+0x13f/0x3a0
[  437.803396][T10479]  proc_pid_make_inode+0x1f/0x130
[  437.803421][T10479]  proc_ns_dir_lookup+0x20c/0x3a0
[  437.803443][T10479]  ? __pfx_proc_ns_dir_lookup+0x10/0x10
[  437.803464][T10479]  path_openat+0x11b4/0x3590
[  437.803517][T10479]  ? __pfx_path_openat+0x10/0x10
[  437.803558][T10479]  do_filp_open+0x27f/0x4e0
[  437.803590][T10479]  ? __pfx_do_filp_open+0x10/0x10
[  437.803612][T10479]  ? do_raw_spin_lock+0x14f/0x370
[  437.803642][T10479]  ? __pfx_kfree_link+0x10/0x10
[  437.803694][T10479]  do_sys_openat2+0x13e/0x1d0
[  437.803716][T10479]  ? __pfx_do_sys_openat2+0x10/0x10
[  437.803740][T10479]  ? __fget_files+0x2a/0x410
[  437.803783][T10479]  __x64_sys_openat+0x247/0x2a0
[  437.803806][T10479]  ? __pfx___x64_sys_openat+0x10/0x10
[  437.803830][T10479]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  437.803873][T10479]  ? do_syscall_64+0xb6/0x230
[  437.803907][T10479]  do_syscall_64+0xf3/0x230
[  437.803936][T10479]  ? clear_bhb_loop+0x35/0x90
[  437.803967][T10479]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  437.803993][T10479] RIP: 0033:0x7f1e1798bad0
[  437.804010][T10479] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  437.804027][T10479] RSP: 002b:00007f1e18728f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  437.804048][T10479] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f1e1798bad0
[  437.804080][T10479] RDX: 0000000000000002 RSI: 00007f1e18728fa0 RDI: 00000000ffffff9c
[  437.804093][T10479] RBP: 00007f1e18728fa0 R08: 0000000000000000 R09: 00007f1e18728cd5
[  437.804107][T10479] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  437.804119][T10479] R13: 0000000000000000 R14: 00007f1e17ba5fa0 R15: 00007ffe6196b168
[  437.804151][T10479]  </TASK>
[  438.185197][ T1204] gp8psk: usb in 137 operation failed.
[  438.191620][ T1204] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  438.206368][ T1204] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  438.238120][ T1204] usb 4-1: USB disconnect, device number 41
[  438.349437][   T30] audit: type=1326 audit(1742535859.484:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10491 comm="syz.1.1374" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f458618d169 code=0x0
[  439.022941][T10498] random: crng reseeded on system resumption
[  439.462893][ T5876] usb 5-1: string descriptor 0 read error: -71
[  439.549359][ T5876] usb 5-1: USB disconnect, device number 48
[  439.650248][T10500] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  439.656439][   T30] audit: type=1326 audit(1742535860.794:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10501 comm="syz.5.1377" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0d4298d169 code=0x0
[  440.092555][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  441.213456][T10530] 9pnet_fd: Insufficient options for proto=fd
[  441.460391][ T5872] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  441.650229][ T5872] usb 6-1: Using ep0 maxpacket: 8
[  441.659178][   T30] audit: type=1326 audit(1742535862.794:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10528 comm="syz.0.1386" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1e1798d169 code=0x0
[  441.709991][ T5872] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  441.771833][ T5872] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  441.813065][ T5872] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  441.829753][T10537] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1387'.
[  441.836088][ T5872] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  441.919526][ T5872] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  441.956413][ T5872] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  441.999759][ T5872] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  442.255603][ T5872] usb 6-1: GET_CAPABILITIES returned 0
[  442.276454][ T5872] usbtmc 6-1:16.0: can't read capabilities
[  443.881584][ T5876] usb 6-1: USB disconnect, device number 25
[  444.110305][ T5908] usb 5-1: new full-speed USB device number 49 using dummy_hcd
[  444.196801][T10561] geneve2: entered promiscuous mode
[  444.220154][T10561] geneve2: entered allmulticast mode
[  444.263116][ T5908] usb 5-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  444.284185][ T5908] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  444.348714][ T5908] usb 5-1: config 0 descriptor??
[  444.372331][ T5908] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  444.703456][T10568] FAULT_INJECTION: forcing a failure.
[  444.703456][T10568] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  444.730431][T10568] CPU: 0 UID: 0 PID: 10568 Comm: syz.0.1397 Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  444.730461][T10568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  444.730475][T10568] Call Trace:
[  444.730482][T10568]  <TASK>
[  444.730491][T10568]  dump_stack_lvl+0x241/0x360
[  444.730520][T10568]  ? __pfx_dump_stack_lvl+0x10/0x10
[  444.730542][T10568]  ? __pfx__printk+0x10/0x10
[  444.730577][T10568]  ? __pfx_lock_release+0x10/0x10
[  444.730616][T10568]  should_fail_ex+0x40a/0x550
[  444.730652][T10568]  _copy_to_iter+0x427/0x1c40
[  444.730691][T10568]  ? __pfx__copy_to_iter+0x10/0x10
[  444.730720][T10568]  ? __virt_addr_valid+0x183/0x530
[  444.730751][T10568]  ? __virt_addr_valid+0x183/0x530
[  444.730780][T10568]  ? __virt_addr_valid+0x45f/0x530
[  444.730813][T10568]  ? __check_object_size+0x47a/0x730
[  444.730852][T10568]  __skb_datagram_iter+0x107/0x900
[  444.730880][T10568]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  444.730913][T10568]  skb_copy_datagram_iter+0xd1/0x250
[  444.730943][T10568]  netlink_recvmsg+0x2d1/0x11a0
[  444.730979][T10568]  ? __pfx_netlink_recvmsg+0x10/0x10
[  444.731021][T10568]  ? __import_iovec+0x3bf/0x830
[  444.731047][T10568]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  444.731077][T10568]  ? __pfx_netlink_recvmsg+0x10/0x10
[  444.731105][T10568]  sock_recvmsg+0x22f/0x280
[  444.731139][T10568]  ____sys_recvmsg+0x1c6/0x480
[  444.731189][T10568]  ? __pfx_____sys_recvmsg+0x10/0x10
[  444.731234][T10568]  __sys_recvmsg+0x291/0x390
[  444.731262][T10568]  ? __pfx___sys_recvmsg+0x10/0x10
[  444.731299][T10568]  ? __fget_files+0x2a/0x410
[  444.731334][T10568]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  444.731365][T10568]  ? do_syscall_64+0x100/0x230
[  444.731400][T10568]  ? do_syscall_64+0xb6/0x230
[  444.731434][T10568]  do_syscall_64+0xf3/0x230
[  444.731465][T10568]  ? clear_bhb_loop+0x35/0x90
[  444.731496][T10568]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  444.731523][T10568] RIP: 0033:0x7f1e1798d169
[  444.731541][T10568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  444.731558][T10568] RSP: 002b:00007f1e18729038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  444.731580][T10568] RAX: ffffffffffffffda RBX: 00007f1e17ba5fa0 RCX: 00007f1e1798d169
[  444.731595][T10568] RDX: 0000000040012022 RSI: 0000200000000080 RDI: 0000000000000003
[  444.731608][T10568] RBP: 00007f1e18729090 R08: 0000000000000000 R09: 0000000000000000
[  444.731620][T10568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  444.731632][T10568] R13: 0000000000000000 R14: 00007f1e17ba5fa0 R15: 00007ffe6196b168
[  444.731662][T10568]  </TASK>
[  445.616549][ T5908] gp8psk: usb in 137 operation failed.
[  445.629512][ T5908] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  445.642768][ T5908] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  445.662155][ T5908] usb 5-1: USB disconnect, device number 49
[  446.348885][T10577] 9pnet_fd: Insufficient options for proto=fd
[  447.016676][ T5823] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  447.049013][   T30] audit: type=1326 audit(1742535868.184:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10579 comm="syz.1.1402" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f458618d169 code=0x0
[  447.291128][ T5823] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  447.491482][T10594] FAULT_INJECTION: forcing a failure.
[  447.491482][T10594] name failslab, interval 1, probability 0, space 0, times 0
[  447.568590][T10594] CPU: 1 UID: 0 PID: 10594 Comm: syz.4.1408 Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  447.568630][T10594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  447.568640][T10594] Call Trace:
[  447.568648][T10594]  <TASK>
[  447.568656][T10594]  dump_stack_lvl+0x241/0x360
[  447.568683][T10594]  ? __pfx_dump_stack_lvl+0x10/0x10
[  447.568702][T10594]  ? __pfx__printk+0x10/0x10
[  447.568731][T10594]  ? fs_reclaim_acquire+0x93/0x130
[  447.568755][T10594]  ? __pfx___might_resched+0x10/0x10
[  447.568781][T10594]  should_fail_ex+0x40a/0x550
[  447.568812][T10594]  should_failslab+0xac/0x100
[  447.568841][T10594]  __kmalloc_noprof+0xdd/0x4c0
[  447.568859][T10594]  ? tomoyo_encode+0x26f/0x540
[  447.568883][T10594]  tomoyo_encode+0x26f/0x540
[  447.568910][T10594]  tomoyo_realpath_from_path+0x59e/0x5e0
[  447.568942][T10594]  tomoyo_path_number_perm+0x239/0x770
[  447.568970][T10594]  ? __lock_acquire+0x1397/0x2100
[  447.568999][T10594]  ? tomoyo_path_number_perm+0x209/0x770
[  447.569028][T10594]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  447.569095][T10594]  ? __fget_files+0x2a/0x410
[  447.569128][T10594]  ? __fget_files+0x2a/0x410
[  447.569153][T10594]  security_file_ioctl+0xc6/0x2a0
[  447.569184][T10594]  __se_sys_ioctl+0x46/0x170
[  447.569211][T10594]  do_syscall_64+0xf3/0x230
[  447.569240][T10594]  ? clear_bhb_loop+0x35/0x90
[  447.569270][T10594]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  447.569294][T10594] RIP: 0033:0x7eff46f8d169
[  447.569311][T10594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  447.569327][T10594] RSP: 002b:00007eff47e1a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  447.569365][T10594] RAX: ffffffffffffffda RBX: 00007eff471a5fa0 RCX: 00007eff46f8d169
[  447.569379][T10594] RDX: 0000200000000000 RSI: 00000000000007ab RDI: 0000000000000003
[  447.569392][T10594] RBP: 00007eff47e1a090 R08: 0000000000000000 R09: 0000000000000000
[  447.569405][T10594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  447.569416][T10594] R13: 0000000000000000 R14: 00007eff471a5fa0 R15: 00007ffc4ee7bf48
[  447.569446][T10594]  </TASK>
[  447.569464][T10594] ERROR: Out of memory at tomoyo_realpath_from_path.
[  449.120188][ T1204] usb 5-1: new full-speed USB device number 50 using dummy_hcd
[  449.256786][T10614] Device name cannot be null; rc = [-22]
[  450.634709][ T1204] usb 5-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  450.657415][ T1204] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  450.699090][ T1204] usb 5-1: config 0 descriptor??
[  450.725758][ T1204] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  452.598829][ T1204] gp8psk: usb in 128 operation failed.
[  452.607566][ T1204] gp8psk: usb in 137 operation failed.
[  452.633676][ T1204] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  452.714827][ T1204] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  452.804060][ T1204] usb 5-1: USB disconnect, device number 50
[  452.824411][   T30] audit: type=1326 audit(1742535873.964:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10628 comm="syz.4.1419" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7eff46f8d169 code=0x0
[  453.072707][T10630] batadv_slave_1: entered promiscuous mode
[  453.587708][T10627] batadv_slave_1: left promiscuous mode
[  454.270190][   T30] audit: type=1326 audit(1742535875.414:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10637 comm="syz.4.1421" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7eff46f8d169 code=0x0
[  455.194175][ T5874] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[  455.252269][T10645] 9pnet_fd: Insufficient options for proto=fd
[  455.491358][ T5874] usb 4-1: device descriptor read/64, error -71
[  455.850240][ T5874] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[  456.010602][ T3080] usb 6-1: new high-speed USB device number 26 using dummy_hcd
[  456.220096][ T5874] usb 4-1: device descriptor read/64, error -71
[  456.321094][ T3080] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  456.344219][ T5874] usb usb4-port1: attempt power cycle
[  456.520012][ T3080] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  456.562407][T10659] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1427'.
[  456.571552][T10659] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1427'.
[  456.619054][ T3080] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  456.670239][ T3080] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  456.689707][ T3080] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  456.701147][ T5874] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[  456.724400][ T3080] usb 6-1: config 0 descriptor??
[  456.749752][ T5874] usb 4-1: device descriptor read/8, error -71
[  457.254123][ T3080] usbhid 6-1:0.0: can't add hid device: -71
[  457.337292][ T3080] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  457.435847][ T3080] usb 6-1: USB disconnect, device number 26
[  457.684060][ T5874] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[  457.725377][ T5874] usb 4-1: device descriptor read/8, error -71
[  457.942488][ T5874] usb usb4-port1: unable to enumerate USB device
[  458.266843][T10677] batadv_slave_1: entered promiscuous mode
[  458.901443][T10670] batadv_slave_1: left promiscuous mode
[  459.738787][T10686] FAULT_INJECTION: forcing a failure.
[  459.738787][T10686] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  459.821747][ T5874] usb 5-1: new full-speed USB device number 51 using dummy_hcd
[  459.829764][T10686] CPU: 0 UID: 0 PID: 10686 Comm: syz.1.1437 Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  459.829795][T10686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  459.829807][T10686] Call Trace:
[  459.829813][T10686]  <TASK>
[  459.829822][T10686]  dump_stack_lvl+0x241/0x360
[  459.829848][T10686]  ? __pfx_dump_stack_lvl+0x10/0x10
[  459.829868][T10686]  ? __pfx__printk+0x10/0x10
[  459.829897][T10686]  ? __pfx_lock_release+0x10/0x10
[  459.829931][T10686]  should_fail_ex+0x40a/0x550
[  459.829963][T10686]  _copy_from_iter+0x1df/0x1c40
[  459.829985][T10686]  ? __virt_addr_valid+0x183/0x530
[  459.830034][T10686]  ? __pfx_lock_release+0x10/0x10
[  459.830070][T10686]  ? __alloc_skb+0x28f/0x440
[  459.830103][T10686]  ? __pfx__copy_from_iter+0x10/0x10
[  459.830129][T10686]  ? __virt_addr_valid+0x183/0x530
[  459.830159][T10686]  ? __virt_addr_valid+0x183/0x530
[  459.830189][T10686]  ? __virt_addr_valid+0x45f/0x530
[  459.830219][T10686]  ? __phys_addr_symbol+0x2f/0x70
[  459.830256][T10686]  ? __check_object_size+0x47a/0x730
[  459.830293][T10686]  netlink_sendmsg+0x742/0xcb0
[  459.830331][T10686]  ? __pfx_netlink_sendmsg+0x10/0x10
[  459.830369][T10686]  ? __pfx_netlink_sendmsg+0x10/0x10
[  459.830394][T10686]  __sock_sendmsg+0x221/0x270
[  459.830425][T10686]  ____sys_sendmsg+0x53a/0x860
[  459.830456][T10686]  ? __pfx_____sys_sendmsg+0x10/0x10
[  459.830477][T10686]  ? __fget_files+0x2a/0x410
[  459.830502][T10686]  ? __fget_files+0x2a/0x410
[  459.830532][T10686]  __sys_sendmsg+0x269/0x350
[  459.830560][T10686]  ? __pfx___sys_sendmsg+0x10/0x10
[  459.830596][T10686]  ? do_sys_openat2+0x17a/0x1d0
[  459.830643][T10686]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  459.830674][T10686]  ? do_syscall_64+0x100/0x230
[  459.830709][T10686]  ? do_syscall_64+0xb6/0x230
[  459.830744][T10686]  do_syscall_64+0xf3/0x230
[  459.830775][T10686]  ? clear_bhb_loop+0x35/0x90
[  459.830808][T10686]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  459.830835][T10686] RIP: 0033:0x7f458618d169
[  459.830854][T10686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  459.830872][T10686] RSP: 002b:00007f45870c9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  459.830894][T10686] RAX: ffffffffffffffda RBX: 00007f45863a5fa0 RCX: 00007f458618d169
[  459.830910][T10686] RDX: 0000000044048010 RSI: 0000200000000640 RDI: 0000000000000003
[  459.830924][T10686] RBP: 00007f45870c9090 R08: 0000000000000000 R09: 0000000000000000
[  459.830936][T10686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  459.830949][T10686] R13: 0000000000000000 R14: 00007f45863a5fa0 R15: 00007fffb8df0358
[  459.830979][T10686]  </TASK>
[  460.339675][ T5874] usb 5-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  460.348899][ T5874] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  460.363163][ T5874] usb 5-1: config 0 descriptor??
[  460.371004][ T5874] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  460.433321][T10699] FAULT_INJECTION: forcing a failure.
[  460.433321][T10699] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  460.484961][T10699] CPU: 0 UID: 0 PID: 10699 Comm: syz.3.1442 Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  460.484987][T10699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  460.484999][T10699] Call Trace:
[  460.485005][T10699]  <TASK>
[  460.485012][T10699]  dump_stack_lvl+0x241/0x360
[  460.485038][T10699]  ? __pfx_dump_stack_lvl+0x10/0x10
[  460.485057][T10699]  ? __pfx__printk+0x10/0x10
[  460.485092][T10699]  ? snprintf+0xda/0x120
[  460.485117][T10699]  should_fail_ex+0x40a/0x550
[  460.485148][T10699]  _copy_to_user+0x31/0xb0
[  460.485174][T10699]  simple_read_from_buffer+0xca/0x150
[  460.485213][T10699]  proc_fail_nth_read+0x1e9/0x250
[  460.485234][T10699]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  460.485255][T10699]  ? rw_verify_area+0x243/0x630
[  460.485277][T10699]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  460.485297][T10699]  vfs_read+0x1f8/0xb40
[  460.485320][T10699]  ? fdget_pos+0x254/0x320
[  460.485339][T10699]  ? __pfx___mutex_lock+0x10/0x10
[  460.485367][T10699]  ? __pfx_vfs_read+0x10/0x10
[  460.485392][T10699]  ? __fget_files+0x2a/0x410
[  460.485412][T10699]  ? __fget_files+0x395/0x410
[  460.485429][T10699]  ? __fget_files+0x2a/0x410
[  460.485456][T10699]  ksys_read+0x18f/0x2b0
[  460.485481][T10699]  ? __pfx_ksys_read+0x10/0x10
[  460.485504][T10699]  ? do_syscall_64+0x100/0x230
[  460.485534][T10699]  ? do_syscall_64+0xb6/0x230
[  460.485564][T10699]  do_syscall_64+0xf3/0x230
[  460.485590][T10699]  ? clear_bhb_loop+0x35/0x90
[  460.485619][T10699]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  460.485642][T10699] RIP: 0033:0x7fe71ed8bb7c
[  460.485658][T10699] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  460.485673][T10699] RSP: 002b:00007fe71fb54030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  460.485693][T10699] RAX: ffffffffffffffda RBX: 00007fe71efa5fa0 RCX: 00007fe71ed8bb7c
[  460.485705][T10699] RDX: 000000000000000f RSI: 00007fe71fb540a0 RDI: 0000000000000005
[  460.485716][T10699] RBP: 00007fe71fb54090 R08: 0000000000000000 R09: 0000000000000000
[  460.485727][T10699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  460.485738][T10699] R13: 0000000000000000 R14: 00007fe71efa5fa0 R15: 00007ffc7f644568
[  460.485764][T10699]  </TASK>
[  461.263211][ T5874] gp8psk: usb in 137 operation failed.
[  461.268726][ T5874] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  461.301128][T10703] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1444'.
[  461.330027][ T5874] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  461.365063][ T5874] usb 5-1: USB disconnect, device number 51
[  461.507981][ T5823] Bluetooth: hci3: SCO packet for unknown connection handle 200
[  461.650483][ T1204] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[  461.802389][T10712] overlayfs: statfs failed on './file0'
[  461.840325][ T5874] usb 2-1: new full-speed USB device number 40 using dummy_hcd
[  461.849268][ T1204] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  461.862064][ T1204] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  461.872303][ T1204] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  461.885771][ T1204] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  461.897084][ T1204] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  461.906966][ T1204] usb 4-1: config 0 descriptor??
[  462.013574][ T5874] usb 2-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  462.033810][ T5874] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  462.055874][ T5874] usb 2-1: config 0 descriptor??
[  462.075761][ T5874] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  462.210402][T10719] vcan0: left promiscuous mode
[  462.220773][T10719] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  462.280453][ T5874] gp8psk: usb in 128 operation failed.
[  462.300244][ T5874] gp8psk: usb in 137 operation failed.
[  462.305782][ T5874] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  462.340248][ T5874] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  462.356972][ T1204] usbhid 4-1:0.0: can't add hid device: -71
[  462.365347][ T1204] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  462.374992][ T5874] usb 2-1: USB disconnect, device number 40
[  462.375257][T10724] ttyS ttyS3: ldisc open failed (-12), clearing slot 3
[  462.408854][ T1204] usb 4-1: USB disconnect, device number 46
[  462.450128][ T5876] usb 5-1: new high-speed USB device number 52 using dummy_hcd
[  462.600120][ T5876] usb 5-1: Using ep0 maxpacket: 32
[  462.607913][ T5876] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  462.619596][ T5876] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  462.635933][ T5876] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  462.645221][ T5876] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  462.656844][ T5876] usb 5-1: config 0 descriptor??
[  462.663553][ T5876] hub 5-1:0.0: USB hub found
[  462.760067][ T5875] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[  462.886349][ T5876] hub 5-1:0.0: 6 ports detected
[  462.895403][ T5876] hub 5-1:0.0: insufficient power available to use all downstream ports
[  462.931369][ T5875] usb 6-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  462.955712][ T5875] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  462.974882][ T5875] usb 6-1: config 0 descriptor??
[  463.013706][T10736] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  463.087042][ T5876] hub 5-1:0.0: hub_hub_status failed (err = -71)
[  463.097626][ T5876] hub 5-1:0.0: config failed, can't get hub status (err -71)
[  463.123974][ T5876] usbhid 5-1:0.0: can't add hid device: -71
[  463.135766][ T5876] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  463.176587][ T5876] usb 5-1: USB disconnect, device number 52
[  463.215224][T10730] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  463.438725][T10730] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1454'.
[  463.824459][ T5876] usb 4-1: new full-speed USB device number 47 using dummy_hcd
[  464.069262][ T5876] usb 4-1: config 7 has an invalid interface number: 34 but max is 0
[  464.077652][ T5876] usb 4-1: config 7 has no interface number 0
[  464.086400][ T5876] usb 4-1: New USB device found, idVendor=0fe9, idProduct=db51, bcdDevice=5e.35
[  464.102089][ T5876] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  464.120052][ T5876] usb 4-1: Product: syz
[  464.132800][ T5876] usb 4-1: Manufacturer: syz
[  464.140873][ T5876] usb 4-1: SerialNumber: syz
[  464.214543][T10751] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1462'.
[  464.422493][T10755] FAULT_INJECTION: forcing a failure.
[  464.422493][T10755] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  464.435743][T10755] CPU: 1 UID: 0 PID: 10755 Comm: syz.1.1464 Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  464.435769][T10755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  464.435781][T10755] Call Trace:
[  464.435789][T10755]  <TASK>
[  464.435797][T10755]  dump_stack_lvl+0x241/0x360
[  464.435825][T10755]  ? __pfx_dump_stack_lvl+0x10/0x10
[  464.435846][T10755]  ? __pfx__printk+0x10/0x10
[  464.435889][T10755]  ? __pfx_lock_release+0x10/0x10
[  464.435923][T10755]  ? __lock_acquire+0x1397/0x2100
[  464.435956][T10755]  should_fail_ex+0x40a/0x550
[  464.435990][T10755]  _copy_from_user+0x2d/0xb0
[  464.436017][T10755]  kstrtouint_from_user+0xc6/0x190
[  464.436042][T10755]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  464.436067][T10755]  ? __pfx_lock_acquire+0x10/0x10
[  464.436103][T10755]  proc_fail_nth_write+0xaa/0x2d0
[  464.436124][T10755]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  464.436146][T10755]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  464.436171][T10755]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  464.436194][T10755]  vfs_write+0x29f/0xd10
[  464.436220][T10755]  ? fdget_pos+0x254/0x320
[  464.436239][T10755]  ? __mutex_unlock_slowpath+0x227/0x800
[  464.436272][T10755]  ? __pfx_vfs_write+0x10/0x10
[  464.436300][T10755]  ? __fget_files+0x2a/0x410
[  464.436321][T10755]  ? __fget_files+0x395/0x410
[  464.436340][T10755]  ? __fget_files+0x2a/0x410
[  464.436369][T10755]  ksys_write+0x18f/0x2b0
[  464.436396][T10755]  ? __pfx_ksys_write+0x10/0x10
[  464.436421][T10755]  ? do_syscall_64+0x100/0x230
[  464.436454][T10755]  ? do_syscall_64+0xb6/0x230
[  464.436486][T10755]  do_syscall_64+0xf3/0x230
[  464.436515][T10755]  ? clear_bhb_loop+0x35/0x90
[  464.436545][T10755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  464.436570][T10755] RIP: 0033:0x7f458618bc1f
[  464.436588][T10755] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  464.436604][T10755] RSP: 002b:00007f45870c9030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  464.436624][T10755] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f458618bc1f
[  464.436648][T10755] RDX: 0000000000000001 RSI: 00007f45870c90a0 RDI: 0000000000000004
[  464.436660][T10755] RBP: 00007f45870c9090 R08: 0000000000000000 R09: 0000000000000000
[  464.436671][T10755] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  464.436682][T10755] R13: 0000000000000000 R14: 00007f45863a5fa0 R15: 00007fffb8df0358
[  464.436709][T10755]  </TASK>
[  464.681336][    C1] vkms_vblank_simulate: vblank timer overrun
[  464.708587][ T5875] usb 6-1: Cannot set autoneg
[  464.721013][ T5875] MOSCHIP usb-ethernet driver 6-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[  464.815513][ T5875] usb 6-1: USB disconnect, device number 27
[  465.026429][ T5876] dvb-usb: found a 'DViCO FusionHDTV DVB-T Dual USB' in warm state.
[  465.049263][ T5876] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  465.064632][ T5876] dvb-usb: DViCO FusionHDTV DVB-T Dual USB error while loading driver (-19)
[  465.073939][ T5876] dvb_usb_cxusb 4-1:7.34: probe with driver dvb_usb_cxusb failed with error -22
[  465.814451][ T3080] usb 5-1: new high-speed USB device number 53 using dummy_hcd
[  465.910331][ T5876] usb 6-1: new full-speed USB device number 28 using dummy_hcd
[  465.972681][ T3080] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  465.988861][ T3080] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  465.999694][ T3080] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  466.022494][ T3080] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  466.036523][ T3080] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  466.050115][ T3080] usb 5-1: config 0 descriptor??
[  466.066073][ T5876] usb 6-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  466.075249][ T5876] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  466.085248][ T5876] usb 6-1: config 0 descriptor??
[  466.094722][ T5876] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  466.319081][ T5876] gp8psk: usb in 128 operation failed.
[  466.327652][ T5876] gp8psk: usb in 137 operation failed.
[  466.338702][ T5876] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  466.357339][ T5876] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  466.381557][ T5876] usb 6-1: USB disconnect, device number 28
[  466.445461][T10774] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1468'.
[  466.466118][ T3080] usbhid 5-1:0.0: can't add hid device: -71
[  466.472226][ T3080] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  466.497541][ T3080] usb 5-1: USB disconnect, device number 53
[  466.546579][ T5875] usb 4-1: USB disconnect, device number 47
[  467.756451][T10788] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1473'.
[  467.924911][T10795] tmpfs: Unknown parameter '00000000000000000000003'
[  468.698681][T10801] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1477'.
[  468.750092][T10801] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1477'.
[  469.060409][ T5872] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  469.720478][ T5872] usb 2-1: Using ep0 maxpacket: 16
[  469.969128][ T5872] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  470.009434][ T5872] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  470.042813][ T5872] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  470.064456][ T5872] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  470.092886][ T5872] usb 2-1: Product: syz
[  470.107377][ T5872] usb 2-1: Manufacturer: syz
[  470.127987][ T5872] usb 2-1: SerialNumber: syz
[  470.985839][ T5872] usb 2-1: 0:2 : does not exist
[  471.148072][ T5872] usb 2-1: USB disconnect, device number 41
[  471.314107][   T30] audit: type=1326 audit(1742535892.454:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10826 comm="syz.0.1486" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1e1798d169 code=0x0
[  471.381121][ T6012] udevd[6012]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  471.440350][ T5875] usb 5-1: new full-speed USB device number 54 using dummy_hcd
[  471.470225][ T5907] usb 4-1: new full-speed USB device number 48 using dummy_hcd
[  471.552718][T10830] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1487'.
[  471.592748][ T5875] usb 5-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  471.612320][ T5875] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  471.627830][ T5875] usb 5-1: config 0 descriptor??
[  471.697785][T10832] mmap: syz.1.1488 (10832) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  471.740309][ T5907] usb 4-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  471.753013][ T5875] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  471.755723][ T5907] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  471.772184][ T5907] usb 4-1: config 0 descriptor??
[  471.782069][ T5907] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  471.899049][ T5875] gp8psk: usb in 128 operation failed.
[  471.921810][ T5875] gp8psk: usb in 137 operation failed.
[  471.932727][ T5875] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  471.943688][ T5875] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  471.964580][ T5875] usb 5-1: USB disconnect, device number 54
[  472.193299][ T5907] gp8psk: usb in 137 operation failed.
[  472.201888][ T5907] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  472.229402][ T5907] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  472.261089][ T5907] usb 4-1: USB disconnect, device number 48
[  472.357979][ T1204] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[  472.541173][ T1204] usb 2-1: Using ep0 maxpacket: 16
[  472.556364][ T1204] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  472.571798][ T1204] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  472.582491][ T1204] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  472.582862][T10848] FAULT_INJECTION: forcing a failure.
[  472.582862][T10848] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  472.592752][ T1204] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  472.620151][T10848] CPU: 0 UID: 0 PID: 10848 Comm: syz.0.1496 Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  472.620179][T10848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  472.620193][T10848] Call Trace:
[  472.620200][T10848]  <TASK>
[  472.620209][T10848]  dump_stack_lvl+0x241/0x360
[  472.620241][T10848]  ? __pfx_dump_stack_lvl+0x10/0x10
[  472.620263][T10848]  ? __pfx__printk+0x10/0x10
[  472.620299][T10848]  ? __pfx_lock_release+0x10/0x10
[  472.620347][T10848]  should_fail_ex+0x40a/0x550
[  472.620384][T10848]  _copy_from_iter+0x1df/0x1c40
[  472.620410][T10848]  ? __virt_addr_valid+0x183/0x530
[  472.620444][T10848]  ? __pfx_lock_release+0x10/0x10
[  472.620480][T10848]  ? __alloc_skb+0x28f/0x440
[  472.620517][T10848]  ? __pfx__copy_from_iter+0x10/0x10
[  472.620544][T10848]  ? __virt_addr_valid+0x183/0x530
[  472.620575][T10848]  ? __virt_addr_valid+0x183/0x530
[  472.620604][T10848]  ? __virt_addr_valid+0x45f/0x530
[  472.620635][T10848]  ? __phys_addr_symbol+0x2f/0x70
[  472.620666][T10848]  ? __check_object_size+0x47a/0x730
[  472.620704][T10848]  netlink_sendmsg+0x742/0xcb0
[  472.620743][T10848]  ? __pfx_netlink_sendmsg+0x10/0x10
[  472.620783][T10848]  ? __pfx_netlink_sendmsg+0x10/0x10
[  472.620807][T10848]  __sock_sendmsg+0x221/0x270
[  472.620839][T10848]  ____sys_sendmsg+0x53a/0x860
[  472.620871][T10848]  ? __pfx_____sys_sendmsg+0x10/0x10
[  472.620893][T10848]  ? __fget_files+0x2a/0x410
[  472.620919][T10848]  ? __fget_files+0x2a/0x410
[  472.620950][T10848]  __sys_sendmsg+0x269/0x350
[  472.620979][T10848]  ? __pfx___sys_sendmsg+0x10/0x10
[  472.621015][T10848]  ? do_sys_openat2+0x17a/0x1d0
[  472.621065][T10848]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  472.621097][T10848]  ? do_syscall_64+0x100/0x230
[  472.621145][T10848]  ? do_syscall_64+0xb6/0x230
[  472.621189][T10848]  do_syscall_64+0xf3/0x230
[  472.621219][T10848]  ? clear_bhb_loop+0x35/0x90
[  472.621249][T10848]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.621285][T10848] RIP: 0033:0x7f1e1798d169
[  472.621305][T10848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  472.621321][T10848] RSP: 002b:00007f1e18729038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  472.621340][T10848] RAX: ffffffffffffffda RBX: 00007f1e17ba5fa0 RCX: 00007f1e1798d169
[  472.621353][T10848] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  472.621364][T10848] RBP: 00007f1e18729090 R08: 0000000000000000 R09: 0000000000000000
[  472.621375][T10848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  472.621385][T10848] R13: 0000000000000000 R14: 00007f1e17ba5fa0 R15: 00007ffe6196b168
[  472.621411][T10848]  </TASK>
[  472.911760][ T1204] usb 2-1: New USB device found, idVendor=0586, idProduct=1500, bcdDevice=2e.97
[  472.921101][ T1204] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  472.929142][ T1204] usb 2-1: Product: syz
[  472.933658][ T1204] usb 2-1: Manufacturer: syz
[  472.938302][ T1204] usb 2-1: SerialNumber: syz
[  472.955193][ T1204] usb 2-1: config 0 descriptor??
[  473.000411][ T1204] omninet 2-1:0.0: ZyXEL - omni.net usb converter detected
[  473.083869][ T1204] usb 2-1: ZyXEL - omni.net usb converter now attached to ttyUSB0
[  473.364659][T10854] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1498'.
[  473.710236][ T5907] usb 4-1: new high-speed USB device number 49 using dummy_hcd
[  474.210082][ T5907] usb 4-1: Using ep0 maxpacket: 8
[  474.476732][ T5907] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[  474.497902][ T5907] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  474.526785][ T5907] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  474.553883][ T5907] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  474.638699][ T5876] usb 2-1: USB disconnect, device number 42
[  474.649635][ T5876] omninet ttyUSB0: ZyXEL - omni.net usb converter now disconnected from ttyUSB0
[  474.669366][ T5907] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  474.671585][ T5876] omninet 2-1:0.0: device disconnected
[  474.698268][ T5907] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  474.707905][ T5907] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  474.722581][T10867] FAULT_INJECTION: forcing a failure.
[  474.722581][T10867] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  474.747695][T10867] CPU: 1 UID: 0 PID: 10867 Comm: syz.0.1502 Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  474.747725][T10867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  474.747754][T10867] Call Trace:
[  474.747761][T10867]  <TASK>
[  474.747768][T10867]  dump_stack_lvl+0x241/0x360
[  474.747802][T10867]  ? __pfx_dump_stack_lvl+0x10/0x10
[  474.747821][T10867]  ? __pfx__printk+0x10/0x10
[  474.747852][T10867]  ? __pfx_lock_release+0x10/0x10
[  474.747886][T10867]  should_fail_ex+0x40a/0x550
[  474.747928][T10867]  _copy_from_user+0x2d/0xb0
[  474.747954][T10867]  do_ipv6_setsockopt+0x2fc/0x35b0
[  474.747985][T10867]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[  474.748007][T10867]  ? __pfx_validate_chain+0x10/0x10
[  474.748042][T10867]  ? __pfx_lock_acquire+0x10/0x10
[  474.748068][T10867]  ? get_pid_task+0x23/0x1f0
[  474.748095][T10867]  ? __pfx_lock_release+0x10/0x10
[  474.748120][T10867]  ? kstrtouint_from_user+0x128/0x190
[  474.748150][T10867]  ? mark_lock+0x9a/0x360
[  474.748182][T10867]  ? __lock_acquire+0x1397/0x2100
[  474.748218][T10867]  ipv6_setsockopt+0x5d/0x170
[  474.748243][T10867]  dccp_setsockopt+0x17c/0x1140
[  474.748275][T10867]  ? __pfx_dccp_setsockopt+0x10/0x10
[  474.748301][T10867]  ? __pfx_lock_acquire+0x10/0x10
[  474.748327][T10867]  ? sock_common_setsockopt+0x37/0xc0
[  474.748357][T10867]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  474.748384][T10867]  do_sock_setsockopt+0x3af/0x720
[  474.748409][T10867]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  474.748433][T10867]  ? __fget_files+0x395/0x410
[  474.748452][T10867]  ? __fget_files+0x2a/0x410
[  474.748480][T10867]  __x64_sys_setsockopt+0x1ee/0x280
[  474.748506][T10867]  do_syscall_64+0xf3/0x230
[  474.748535][T10867]  ? clear_bhb_loop+0x35/0x90
[  474.748564][T10867]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  474.748590][T10867] RIP: 0033:0x7f1e1798d169
[  474.748606][T10867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  474.748622][T10867] RSP: 002b:00007f1e18729038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  474.748642][T10867] RAX: ffffffffffffffda RBX: 00007f1e17ba5fa0 RCX: 00007f1e1798d169
[  474.748666][T10867] RDX: 0000000000000030 RSI: 0000000000000029 RDI: 0000000000000003
[  474.748677][T10867] RBP: 00007f1e18729090 R08: 0000000000000090 R09: 0000000000000000
[  474.748689][T10867] R10: 00002000000001c0 R11: 0000000000000246 R12: 0000000000000001
[  474.748700][T10867] R13: 0000000000000000 R14: 00007f1e17ba5fa0 R15: 00007ffe6196b168
[  474.748725][T10867]  </TASK>
[  475.005076][ T5907] usb 4-1: GET_CAPABILITIES returned 0
[  475.010923][ T5907] usbtmc 4-1:16.0: can't read capabilities
[  475.805203][T10874] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1504'.
[  476.367858][ T5907] usb 4-1: USB disconnect, device number 49
[  476.414351][T10880] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1505'.
[  476.428114][ T1204] usb 2-1: new full-speed USB device number 43 using dummy_hcd
[  476.435940][T10880] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1505'.
[  476.969507][ T1204] usb 2-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  476.978882][ T1204] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  477.026315][ T1204] usb 2-1: config 0 descriptor??
[  477.045681][ T1204] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  477.155066][T10893] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1509'.
[  477.251497][ T1204] gp8psk: usb in 128 operation failed.
[  477.259149][ T1204] gp8psk: usb in 137 operation failed.
[  477.267298][ T1204] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  477.286869][ T1204] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  477.307328][ T1204] usb 2-1: USB disconnect, device number 43
[  478.670136][ T5908] usb 6-1: new full-speed USB device number 29 using dummy_hcd
[  478.740324][ T5823] Bluetooth: hci4: SCO packet for unknown connection handle 200
[  478.808780][   T30] audit: type=1326 audit(1742535899.944:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10903 comm="syz.3.1513" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe71ed8d169 code=0x0
[  478.845096][ T5908] usb 6-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  478.877592][ T5908] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  478.911125][ T5908] usb 6-1: config 0 descriptor??
[  478.934441][ T5908] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  479.231824][T10907] overlayfs: statfs failed on './file0'
[  479.338600][ T5908] gp8psk: usb in 137 operation failed.
[  479.344243][ T5908] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  479.362448][ T5908] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  479.387435][ T5908] usb 6-1: USB disconnect, device number 29
[  479.743344][   T30] audit: type=1326 audit(1742535900.884:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10920 comm="syz.3.1518" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe71ed8d169 code=0x0
[  480.682368][T10934] random: crng reseeded on system resumption
[  481.818779][ T5876] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[  481.964168][ T1204] usb 2-1: new full-speed USB device number 44 using dummy_hcd
[  482.130486][ T5876] usb 6-1: Using ep0 maxpacket: 32
[  482.148186][ T1204] usb 2-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  482.179441][ T5876] usb 6-1: config 0 has an invalid interface number: 12 but max is 0
[  482.214088][ T1204] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  482.230403][ T5876] usb 6-1: config 0 has no interface number 0
[  482.254922][ T5876] usb 6-1: config 0 interface 12 has no altsetting 0
[  482.334963][ T1204] usb 2-1: config 0 descriptor??
[  482.631369][T10958] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1529'.
[  482.654082][ T5876] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  482.666461][ T1204] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  482.675350][ T5876] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  482.683675][ T5876] usb 6-1: Product: syz
[  482.687983][ T5876] usb 6-1: Manufacturer: syz
[  482.692844][ T5876] usb 6-1: SerialNumber: syz
[  482.701407][ T5876] usb 6-1: config 0 descriptor??
[  483.476242][ T1204] gp8psk: usb in 128 operation failed.
[  483.486394][ T1204] gp8psk: usb in 137 operation failed.
[  483.494653][T10938] usb usb8: usbfs: interface 0 claimed by hub while 'syz.5.1523' resets device
[  483.520166][ T1204] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  483.553425][ T1204] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  483.609420][ T1204] usb 2-1: USB disconnect, device number 44
[  484.511225][ T5874] usb 5-1: new high-speed USB device number 55 using dummy_hcd
[  484.661053][ T5876] f81534 6-1:0.12: f81534_set_register: reg: 1002 data: 0 failed: -71
[  484.771130][ T5874] usb 5-1: Using ep0 maxpacket: 8
[  484.780003][ T5876] f81534 6-1:0.12: f81534_find_config_idx: read failed: -71
[  484.787357][ T5876] f81534 6-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  484.814118][ T5874] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  484.835439][ T5874] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  484.845269][ T5876] f81534 6-1:0.12: probe with driver f81534 failed with error -71
[  485.317244][ T5874] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  485.334945][ T5876] usb 6-1: USB disconnect, device number 30
[  485.379613][ T5874] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 65535, setting to 1024
[  485.410448][ T5874] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  485.452480][ T5874] usb 5-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  485.486633][ T5874] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  485.513636][ T5874] usb 5-1: config 0 descriptor??
[  485.529690][T10974] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  485.662776][T10993] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1542'.
[  486.443612][   T26] usb 5-1: USB disconnect, device number 55
[  486.451387][ T5823] Bluetooth: hci5: Opcode 0x0c03 failed: -19
[  486.682055][ T5874] usb 6-1: new full-speed USB device number 31 using dummy_hcd
[  487.598880][ T5874] usb 6-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  487.618811][ T5874] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  487.629013][ T5874] usb 6-1: config 0 descriptor??
[  487.659316][ T5874] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  487.912463][ T5907] usb 4-1: new high-speed USB device number 50 using dummy_hcd
[  488.184352][ T5874] gp8psk: usb in 128 operation failed.
[  488.197589][ T5874] gp8psk: usb in 137 operation failed.
[  488.208049][ T5874] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  488.241912][ T5874] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  488.267792][ T5874] usb 6-1: USB disconnect, device number 31
[  488.291230][ T5823] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  488.404593][ T5907] usb 4-1: Using ep0 maxpacket: 8
[  488.451146][ T5823] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201'
[  488.461799][ T5823] CPU: 0 UID: 0 PID: 5823 Comm: kworker/u9:2 Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  488.461829][ T5823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  488.461843][ T5823] Workqueue: hci0 hci_rx_work
[  488.461885][ T5823] Call Trace:
[  488.461892][ T5823]  <TASK>
[  488.461901][ T5823]  dump_stack_lvl+0x241/0x360
[  488.461938][ T5823]  ? __pfx_dump_stack_lvl+0x10/0x10
[  488.461959][ T5823]  ? __pfx__printk+0x10/0x10
[  488.461993][ T5823]  ? __kmalloc_cache_noprof+0x243/0x390
[  488.462013][ T5823]  ? sysfs_create_dir_ns+0x28a/0x3a0
[  488.462047][ T5823]  sysfs_create_dir_ns+0x2ce/0x3a0
[  488.462079][ T5823]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  488.462119][ T5823]  kobject_add_internal+0x435/0x8d0
[  488.462149][ T5823]  kobject_add+0x152/0x220
[  488.462168][ T5823]  ? do_raw_spin_unlock+0x13c/0x8b0
[  488.462193][ T5823]  ? device_add+0x3e7/0xbf0
[  488.462223][ T5823]  ? __pfx_kobject_add+0x10/0x10
[  488.462243][ T5823]  ? _raw_spin_unlock+0x28/0x50
[  488.462273][ T5823]  ? get_device_parent+0x165/0x410
[  488.462296][ T5823]  device_add+0x4e5/0xbf0
[  488.462332][ T5823]  hci_conn_add_sysfs+0xe8/0x200
[  488.462357][ T5823]  le_conn_complete_evt+0xd1a/0x1360
[  488.462399][ T5823]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  488.462426][ T5823]  ? __mutex_unlock_slowpath+0x227/0x800
[  488.462460][ T5823]  ? __skb_clone+0x5c/0x6c0
[  488.462485][ T5823]  ? skb_pull_data+0x112/0x230
[  488.462513][ T5823]  hci_le_enh_conn_complete_evt+0x185/0x420
[  488.462550][ T5823]  hci_event_packet+0xa54/0x1540
[  488.462578][ T5823]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  488.462610][ T5823]  ? __pfx_hci_event_packet+0x10/0x10
[  488.462633][ T5823]  ? do_raw_spin_unlock+0x13c/0x8b0
[  488.462670][ T5823]  ? kcov_remote_start+0x3d0/0x7d0
[  488.462694][ T5823]  ? mce_severity+0x10/0x20
[  488.462733][ T5823]  ? hci_send_to_monitor+0xdc/0x530
[  488.462764][ T5823]  hci_rx_work+0x3f3/0xdb0
[  488.462794][ T5823]  ? process_scheduled_works+0x9c6/0x18e0
[  488.462816][ T5823]  process_scheduled_works+0xabe/0x18e0
[  488.462864][ T5823]  ? __pfx_process_scheduled_works+0x10/0x10
[  488.462895][ T5823]  ? assign_work+0x364/0x3d0
[  488.462928][ T5823]  worker_thread+0x870/0xd30
[  488.462959][ T5823]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  488.462988][ T5823]  ? __kthread_parkme+0x169/0x1d0
[  488.463016][ T5823]  ? __pfx_worker_thread+0x10/0x10
[  488.463039][ T5823]  kthread+0x7a9/0x920
[  488.463064][ T5823]  ? __pfx_kthread+0x10/0x10
[  488.463091][ T5823]  ? __pfx_worker_thread+0x10/0x10
[  488.463116][ T5823]  ? __pfx_kthread+0x10/0x10
[  488.463140][ T5823]  ? __pfx_kthread+0x10/0x10
[  488.463170][ T5823]  ? __pfx_kthread+0x10/0x10
[  488.463200][ T5823]  ? _raw_spin_unlock_irq+0x23/0x50
[  488.463227][ T5823]  ? lockdep_hardirqs_on+0x99/0x150
[  488.463253][ T5823]  ? __pfx_kthread+0x10/0x10
[  488.463280][ T5823]  ret_from_fork+0x4b/0x80
[  488.463320][ T5823]  ? __pfx_kthread+0x10/0x10
[  488.463349][ T5823]  ret_from_fork_asm+0x1a/0x30
[  488.463387][ T5823]  </TASK>
[  488.463407][ T5823] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  488.475962][ T5907] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[  488.484546][ T1204] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[  488.600214][ T5823] Bluetooth: hci0: failed to register connection device
[  488.855412][ T5907] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  488.866330][ T5907] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  488.879626][ T5907] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  488.890714][ T5907] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  488.906942][ T5907] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  488.917606][ T5907] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  488.942209][ T1204] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  488.952866][ T1204] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  488.962361][ T1204] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  488.974158][T11019] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  488.984861][ T1204] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  489.152693][ T5907] usb 4-1: GET_CAPABILITIES returned 0
[  489.158230][ T5907] usbtmc 4-1:16.0: can't read capabilities
[  489.177899][   T30] audit: type=1800 audit(1742535910.314:26): pid=11030 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.5.1555" name="bus" dev="tmpfs" ino=871 res=0 errno=0
[  489.271401][ T5907] usb 2-1: USB disconnect, device number 45
[  489.297370][T11034] overlayfs: missing 'lowerdir'
[  491.064423][T11057] Device name cannot be null; rc = [-22]
[  492.300347][   T26] usb 4-1: USB disconnect, device number 50
[  494.587823][T11070] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1565'.
[  495.369134][   T56] Bluetooth: hci3: SCO packet for unknown connection handle 200
[  495.450237][ T1204] usb 5-1: new high-speed USB device number 56 using dummy_hcd
[  495.616410][T11094] random: crng reseeded on system resumption
[  496.301733][ T1204] usb 5-1: Using ep0 maxpacket: 8
[  496.358137][ T1204] usb 5-1: config 6 has an invalid interface number: 2 but max is 0
[  496.376617][ T1204] usb 5-1: config 6 has an invalid descriptor of length 0, skipping remainder of the config
[  496.413208][ T1204] usb 5-1: config 6 has no interface number 0
[  496.436018][ T1204] usb 5-1: config 6 interface 2 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  496.462640][ T1204] usb 5-1: New USB device found, idVendor=0af0, idProduct=7271, bcdDevice=88.91
[  496.497617][ T1204] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  496.508373][T11106] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1576'.
[  496.523558][ T1204] usb 5-1: Product: syz
[  496.545828][ T1204] usb 5-1: Manufacturer: syz
[  496.681269][ T1204] usb 5-1: SerialNumber: syz
[  497.638445][ T1204] hso 5-1:6.2: Failed to find INT IN ep
[  497.860324][T11108] overlayfs: statfs failed on './file0'
[  497.906654][ T5907] usb 5-1: USB disconnect, device number 56
[  498.216204][ T1204] usb 4-1: new full-speed USB device number 51 using dummy_hcd
[  498.640891][ T1204] usb 4-1: device descriptor read/64, error -71
[  498.971175][ T1204] usb 4-1: new full-speed USB device number 52 using dummy_hcd
[  499.240053][ T1204] usb 4-1: device descriptor read/64, error -71
[  499.323314][T11134] bridge_slave_0: left allmulticast mode
[  499.329235][T11134] bridge_slave_0: left promiscuous mode
[  499.339842][T11134] bridge0: port 1(bridge_slave_0) entered disabled state
[  499.350464][ T1204] usb usb4-port1: attempt power cycle
[  499.381565][T11135] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1584'.
[  499.408218][T11134] bridge_slave_1: left allmulticast mode
[  499.434662][T11134] bridge_slave_1: left promiscuous mode
[  499.452717][T11134] bridge0: port 2(bridge_slave_1) entered disabled state
[  499.476330][T11134] bond0: (slave bond_slave_0): Releasing backup interface
[  499.503482][T11134] team0: Port device team_slave_0 removed
[  499.515288][T11134] team0: Port device team_slave_1 removed
[  499.521957][T11134] batman_adv: batadv0: Removing interface: batadv_slave_0
[  499.531166][T11134] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  499.538603][T11134] batman_adv: batadv0: Removing interface: batadv_slave_1
[  499.588439][T11134] team0: Port device wlan1 removed
[  499.650107][ T5874] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[  499.700698][ T1204] usb 4-1: new full-speed USB device number 53 using dummy_hcd
[  499.721647][ T1204] usb 4-1: device descriptor read/8, error -71
[  499.747007][T11146] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1589'.
[  499.799961][ T5874] usb 6-1: Using ep0 maxpacket: 8
[  499.807977][ T5874] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xAD, changing to 0x8D
[  499.822649][ T5874] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8D has invalid wMaxPacketSize 0
[  499.834649][ T5874] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8D has invalid maxpacket 0
[  499.844641][ T5874] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x93, changing to 0x83
[  499.856540][ T5874] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  499.869788][ T5874] usb 6-1: New USB device found, idVendor=0bfd, idProduct=0124, bcdDevice=3a.9f
[  499.879395][ T5874] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  499.887751][ T5874] usb 6-1: Product: syz
[  499.893075][ T5874] usb 6-1: Manufacturer: syz
[  499.897703][ T5874] usb 6-1: SerialNumber: syz
[  499.906848][ T5874] usb 6-1: config 0 descriptor??
[  499.950185][ T5876] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[  499.960036][ T1204] usb 4-1: new full-speed USB device number 54 using dummy_hcd
[  499.996286][ T1204] usb 4-1: device descriptor read/8, error -71
[  500.110534][ T1204] usb usb4-port1: unable to enumerate USB device
[  500.211624][T11137] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  500.240985][T11137] xt_hashlimit: overflow, rate too high: 0
[  501.030065][ T5876] usb 2-1: Using ep0 maxpacket: 8
[  501.036985][ T5876] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[  501.050517][ T5874] kvaser_usb 6-1:0.0: error -ENODEV: Cannot get usb endpoint(s)
[  501.072353][ T5876] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  501.088104][ T5874] usb 6-1: USB disconnect, device number 32
[  501.100139][ T5876] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  501.120988][ T5876] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  501.142024][ T5876] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  501.157283][ T5876] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  501.167854][ T5876] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  501.406983][ T5876] usb 2-1: GET_CAPABILITIES returned 0
[  501.418548][ T5876] usbtmc 2-1:16.0: can't read capabilities
[  501.532484][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  502.799798][T11177] FAULT_INJECTION: forcing a failure.
[  502.799798][T11177] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  502.821832][T11179] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1600'.
[  502.854336][T11177] CPU: 1 UID: 0 PID: 11177 Comm: syz.5.1599 Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  502.854364][T11177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  502.854386][T11177] Call Trace:
[  502.854393][T11177]  <TASK>
[  502.854401][T11177]  dump_stack_lvl+0x241/0x360
[  502.854429][T11177]  ? __pfx_dump_stack_lvl+0x10/0x10
[  502.854448][T11177]  ? __pfx__printk+0x10/0x10
[  502.854478][T11177]  ? __lock_acquire+0x1397/0x2100
[  502.854512][T11177]  should_fail_ex+0x40a/0x550
[  502.854545][T11177]  prepare_alloc_pages+0x1da/0x5b0
[  502.854579][T11177]  __alloc_frozen_pages_noprof+0x16f/0x710
[  502.854608][T11177]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  502.854641][T11177]  ? __pfx_validate_chain+0x10/0x10
[  502.854664][T11177]  ? __pfx_lock_acquire+0x10/0x10
[  502.854693][T11177]  alloc_pages_mpol+0x311/0x660
[  502.854728][T11177]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  502.854767][T11177]  vma_alloc_folio_noprof+0x12b/0x260
[  502.854800][T11177]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  502.854839][T11177]  folio_prealloc+0x2e/0x170
[  502.854883][T11177]  __handle_mm_fault+0x32e6/0x6ef0
[  502.854921][T11177]  ? mark_lock+0x9a/0x360
[  502.854979][T11177]  ? __pfx___handle_mm_fault+0x10/0x10
[  502.855011][T11177]  ? __pfx_lock_acquire+0x10/0x10
[  502.855044][T11177]  ? do_raw_spin_lock+0x14f/0x370
[  502.855088][T11177]  ? follow_page_pte+0x25a/0x1460
[  502.855116][T11177]  ? follow_page_pte+0x86a/0x1460
[  502.855151][T11177]  ? __pfx_lock_release+0x10/0x10
[  502.855187][T11177]  ? do_raw_spin_unlock+0x13c/0x8b0
[  502.855229][T11177]  ? __pfx___might_resched+0x10/0x10
[  502.855259][T11177]  handle_mm_fault+0x2c1/0x7e0
[  502.855294][T11177]  __get_user_pages+0x1a92/0x4140
[  502.855358][T11177]  ? __pfx___get_user_pages+0x10/0x10
[  502.855386][T11177]  ? __pfx_down_read_killable+0x10/0x10
[  502.855429][T11177]  __gup_longterm_locked+0xe64/0x17f0
[  502.855476][T11177]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  502.855505][T11177]  ? __pfx___gup_longterm_locked+0x10/0x10
[  502.855533][T11177]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  502.855561][T11177]  ? unwind_get_return_address+0x4d/0x90
[  502.855589][T11177]  ? sanity_check_pinned_pages+0x11b9/0x12a0
[  502.855618][T11177]  ? gup_fast_fallback+0x207e/0x29c0
[  502.855647][T11177]  gup_fast_fallback+0x2266/0x29c0
[  502.855706][T11177]  ? __pfx_gup_fast_fallback+0x10/0x10
[  502.855730][T11177]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  502.855797][T11177]  ? is_valid_gup_args+0x124/0x200
[  502.855827][T11177]  pin_user_pages_fast+0xcc/0x160
[  502.855856][T11177]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  502.855881][T11177]  ? rcu_is_watching+0x15/0xb0
[  502.855904][T11177]  ? trace_kmalloc+0x1f/0xd0
[  502.855924][T11177]  ? rds_info_getsockopt+0x20c/0x600
[  502.855958][T11177]  rds_info_getsockopt+0x22e/0x600
[  502.855990][T11177]  ? __might_fault+0xaa/0x120
[  502.856013][T11177]  ? __pfx_lock_release+0x10/0x10
[  502.856044][T11177]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  502.856077][T11177]  ? __might_fault+0xc6/0x120
[  502.856104][T11177]  ? rds_getsockopt+0x2c2/0x530
[  502.856135][T11177]  ? __pfx_rds_getsockopt+0x10/0x10
[  502.856162][T11177]  do_sock_getsockopt+0x38e/0x740
[  502.856189][T11177]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  502.856207][T11177]  ? __fget_files+0x2a/0x410
[  502.856229][T11177]  ? __fget_files+0x395/0x410
[  502.856248][T11177]  ? __fget_files+0x2a/0x410
[  502.856275][T11177]  __x64_sys_getsockopt+0x2a1/0x370
[  502.856303][T11177]  ? __pfx___x64_sys_getsockopt+0x10/0x10
[  502.856327][T11177]  ? do_syscall_64+0x100/0x230
[  502.856362][T11177]  ? do_syscall_64+0xb6/0x230
[  502.856397][T11177]  do_syscall_64+0xf3/0x230
[  502.856428][T11177]  ? clear_bhb_loop+0x35/0x90
[  502.856460][T11177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  502.856507][T11177] RIP: 0033:0x7f0d4298d169
[  502.856524][T11177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  502.856540][T11177] RSP: 002b:00007f0d4374a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  502.856562][T11177] RAX: ffffffffffffffda RBX: 00007f0d42ba5fa0 RCX: 00007f0d4298d169
[  502.856577][T11177] RDX: 0000000000002711 RSI: 0000200000000114 RDI: 0000000000000003
[  502.856590][T11177] RBP: 00007f0d4374a090 R08: 0000200000000000 R09: 0000000000000000
[  502.856615][T11177] R10: 0000200000019580 R11: 0000000000000246 R12: 0000000000000002
[  502.856627][T11177] R13: 0000000000000000 R14: 00007f0d42ba5fa0 R15: 00007ffea0117388
[  502.856655][T11177]  </TASK>
[  503.762029][ T5908] usb 2-1: USB disconnect, device number 46
[  504.641816][T11202] 9pnet_fd: Insufficient options for proto=fd
[  504.680202][ T5907] usb 4-1: new full-speed USB device number 55 using dummy_hcd
[  504.706160][   T56] Bluetooth: hci3: unexpected event for opcode 0x1004
[  504.753034][   T30] audit: type=1326 audit(1742535925.844:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11200 comm="syz.5.1607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d4298d169 code=0x7ffc0000
[  504.950149][   T30] audit: type=1326 audit(1742535925.844:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11200 comm="syz.5.1607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0d4298d169 code=0x7ffc0000
[  504.981873][ T5907] usb 4-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  504.999783][T11211] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1609'.
[  505.001004][ T5907] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  505.662230][   T30] audit: type=1326 audit(1742535925.844:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11200 comm="syz.5.1607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d4298d169 code=0x7ffc0000
[  505.712163][ T5907] usb 4-1: config 0 descriptor??
[  505.776780][   T30] audit: type=1326 audit(1742535925.844:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11200 comm="syz.5.1607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f0d4298bc1f code=0x7ffc0000
[  505.803138][ T5907] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  505.820702][   T30] audit: type=1326 audit(1742535925.844:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11200 comm="syz.5.1607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d4298d169 code=0x7ffc0000
[  505.921881][   T30] audit: type=1326 audit(1742535925.844:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11200 comm="syz.5.1607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d4298d169 code=0x7ffc0000
[  506.212071][ T5907] gp8psk: usb in 137 operation failed.
[  506.218948][ T5907] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  506.251367][ T5907] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  506.276895][ T5907] usb 4-1: USB disconnect, device number 55
[  506.343242][   T56] Bluetooth: hci0: unexpected event for opcode 0x200c
[  506.514847][   T56] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  507.139046][   T56] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  508.783712][T11271] batadv_slave_1: entered promiscuous mode
[  508.801161][ T5823] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  508.810179][ T5823] Bluetooth: hci3: Injecting HCI hardware error event
[  508.824756][ T5823] Bluetooth: hci3: hardware error 0x00
[  509.182652][T11260] batadv_slave_1: left promiscuous mode
[  509.696482][T11283] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1633'.
[  509.898005][   T56] Bluetooth: hci4: unexpected event for opcode 0x200c
[  510.691466][ T5907] usb 4-1: new high-speed USB device number 56 using dummy_hcd
[  510.893541][ T5907] usb 4-1: Using ep0 maxpacket: 8
[  510.972909][ T5907] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[  510.981895][ T5823] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  511.020542][ T5907] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  511.033403][ T5907] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  511.044041][ T5907] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  511.055957][ T5907] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  512.100079][ T5907] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  512.125291][ T5907] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  512.250125][   T26] usb 2-1: new full-speed USB device number 47 using dummy_hcd
[  512.378632][ T5907] usb 4-1: GET_CAPABILITIES returned 0
[  512.398263][ T5907] usbtmc 4-1:16.0: can't read capabilities
[  512.622742][ T1204] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[  512.640223][   T26] usb 2-1: device not accepting address 47, error -71
[  513.121305][ T1204] usb 6-1: Using ep0 maxpacket: 32
[  513.137512][ T1204] usb 6-1: config 0 has an invalid interface number: 184 but max is 0
[  513.150112][ T1204] usb 6-1: config 0 has no interface number 0
[  513.156272][ T1204] usb 6-1: config 0 interface 184 has no altsetting 0
[  513.181482][T11327] FAULT_INJECTION: forcing a failure.
[  513.181482][T11327] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  513.214906][ T1204] usb 6-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  513.234440][ T1204] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  513.250134][ T1204] usb 6-1: Product: syz
[  513.254442][ T1204] usb 6-1: Manufacturer: syz
[  513.259221][ T1204] usb 6-1: SerialNumber: syz
[  513.265161][T11327] CPU: 0 UID: 0 PID: 11327 Comm: syz.1.1649 Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  513.265183][T11327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  513.265194][T11327] Call Trace:
[  513.265199][T11327]  <TASK>
[  513.265207][T11327]  dump_stack_lvl+0x241/0x360
[  513.265231][T11327]  ? __pfx_dump_stack_lvl+0x10/0x10
[  513.265248][T11327]  ? __pfx__printk+0x10/0x10
[  513.265275][T11327]  ? __pfx_lock_release+0x10/0x10
[  513.265310][T11327]  should_fail_ex+0x40a/0x550
[  513.265342][T11327]  _copy_from_iter+0x1df/0x1c40
[  513.265363][T11327]  ? __virt_addr_valid+0x183/0x530
[  513.265391][T11327]  ? __pfx_lock_release+0x10/0x10
[  513.265429][T11327]  ? __alloc_skb+0x28f/0x440
[  513.265457][T11327]  ? __pfx__copy_from_iter+0x10/0x10
[  513.265480][T11327]  ? __virt_addr_valid+0x183/0x530
[  513.265505][T11327]  ? __virt_addr_valid+0x183/0x530
[  513.265529][T11327]  ? __virt_addr_valid+0x45f/0x530
[  513.265556][T11327]  ? __phys_addr_symbol+0x2f/0x70
[  513.265580][T11327]  ? __check_object_size+0x47a/0x730
[  513.265612][T11327]  netlink_sendmsg+0x742/0xcb0
[  513.265645][T11327]  ? __pfx_netlink_sendmsg+0x10/0x10
[  513.265677][T11327]  ? __pfx_netlink_sendmsg+0x10/0x10
[  513.265697][T11327]  __sock_sendmsg+0x221/0x270
[  513.265724][T11327]  ____sys_sendmsg+0x53a/0x860
[  513.265750][T11327]  ? __pfx_____sys_sendmsg+0x10/0x10
[  513.265768][T11327]  ? __fget_files+0x2a/0x410
[  513.265790][T11327]  ? __fget_files+0x2a/0x410
[  513.265816][T11327]  __sys_sendmsg+0x269/0x350
[  513.265839][T11327]  ? __pfx___sys_sendmsg+0x10/0x10
[  513.265869][T11327]  ? do_sys_openat2+0x17a/0x1d0
[  513.265909][T11327]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  513.265936][T11327]  ? do_syscall_64+0x100/0x230
[  513.265965][T11327]  ? do_syscall_64+0xb6/0x230
[  513.265995][T11327]  do_syscall_64+0xf3/0x230
[  513.266022][T11327]  ? clear_bhb_loop+0x35/0x90
[  513.266049][T11327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  513.266073][T11327] RIP: 0033:0x7f458618d169
[  513.266088][T11327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  513.266103][T11327] RSP: 002b:00007f45870c9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  513.266122][T11327] RAX: ffffffffffffffda RBX: 00007f45863a5fa0 RCX: 00007f458618d169
[  513.266135][T11327] RDX: 0000000000044000 RSI: 0000200000000540 RDI: 0000000000000003
[  513.266146][T11327] RBP: 00007f45870c9090 R08: 0000000000000000 R09: 0000000000000000
[  513.266158][T11327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  513.266169][T11327] R13: 0000000000000000 R14: 00007f45863a5fa0 R15: 00007fffb8df0358
[  513.266194][T11327]  </TASK>
[  513.269799][ T1204] usb 6-1: config 0 descriptor??
[  513.652260][ T1204] smsc75xx v1.0.0
[  513.796178][ T5830] usb 4-1: USB disconnect, device number 56
[  513.873639][T11335] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  513.881964][ T5876] usb 5-1: new high-speed USB device number 57 using dummy_hcd
[  513.917225][   T30] audit: type=1326 audit(1742535935.054:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11336 comm="syz.3.1654" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe71ed8d169 code=0x0
[  514.030129][ T5876] usb 5-1: Using ep0 maxpacket: 8
[  514.042045][ T5876] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 13
[  514.059495][ T5876] usb 5-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58
[  514.076586][ T5876] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  514.095368][ T5876] usb 5-1: Product: syz
[  514.107399][ T5876] usb 5-1: Manufacturer: syz
[  514.132367][ T5876] usb 5-1: SerialNumber: syz
[  514.147256][ T5876] usb 5-1: config 0 descriptor??
[  514.162646][ T5876] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae
[  514.200112][   T26] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[  514.270431][ T1204] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  514.281811][ T1204] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  514.376528][T11331] netlink: 'syz.4.1651': attribute type 29 has an invalid length.
[  514.453865][ T5876] gspca_zc3xx: reg_w_i err -71
[  514.523508][T11321] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  514.536851][T11321] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  514.539983][   T26] usb 2-1: Using ep0 maxpacket: 32
[  514.551898][   T26] usb 2-1: New USB device found, idVendor=052b, idProduct=1803, bcdDevice= c.62
[  514.561462][   T26] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  514.571363][   T26] usb 2-1: config 0 descriptor??
[  514.772873][ T1204] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000010: -32
[  514.894469][ T1204] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): Failed to read HW_CFG: -32
[  515.044706][ T1204] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -32
[  515.070086][ T5876] gspca_zc3xx: Unknown sensor - set to TAS5130C
[  515.124030][ T5876] gspca_zc3xx 5-1:0.0: probe with driver gspca_zc3xx failed with error -71
[  515.213075][ T1204] smsc75xx 6-1:0.184: probe with driver smsc75xx failed with error -32
[  515.231533][T11331] netlink: 'syz.4.1651': attribute type 1 has an invalid length.
[  515.249750][ T5876] usb 5-1: USB disconnect, device number 57
[  515.279419][T11331] netlink: 'syz.4.1651': attribute type 6 has an invalid length.
[  515.320013][   T26] gspca_main: sunplus-2.14.0 probing 052b:1803
[  515.325269][T11331] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1651'.
[  515.581840][T11354] random: crng reseeded on system resumption
[  516.157190][ T5876] usb 2-1: USB disconnect, device number 49
[  516.719358][ T1204] usb 6-1: USB disconnect, device number 33
[  516.843838][T11361] netlink: 188 bytes leftover after parsing attributes in process `syz.3.1660'.
[  518.365808][   T26] libceph: connect (1)[c::]:6789 error -101
[  518.387620][   T26] libceph: mon0 (1)[c::]:6789 connect error
[  518.500599][T11369] ceph: No mds server is up or the cluster is laggy
[  518.682085][   T30] audit: type=1326 audit(1742535939.824:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11373 comm="syz.3.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe71ed8d169 code=0x7ffc0000
[  518.800328][   T30] audit: type=1326 audit(1742535939.824:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11373 comm="syz.3.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=461 compat=0 ip=0x7fe71ed8d169 code=0x7ffc0000
[  518.884387][   T30] audit: type=1326 audit(1742535939.824:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11373 comm="syz.3.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe71ed8d169 code=0x7ffc0000
[  518.947721][   T30] audit: type=1326 audit(1742535939.824:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11373 comm="syz.3.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7fe71ed8d169 code=0x7ffc0000
[  519.047322][   T30] audit: type=1326 audit(1742535939.924:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11373 comm="syz.3.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe71ed8d169 code=0x7ffc0000
[  519.129661][   T30] audit: type=1326 audit(1742535939.924:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11373 comm="syz.3.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe71ed8d169 code=0x7ffc0000
[  519.194148][   T30] audit: type=1326 audit(1742535939.974:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11373 comm="syz.3.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fe71ed8d169 code=0x7ffc0000
[  519.370356][T11402] random: crng reseeded on system resumption
[  519.756729][T11404] netlink: 'syz.3.1672': attribute type 1 has an invalid length.
[  519.800358][ T5907] usb 5-1: new high-speed USB device number 58 using dummy_hcd
[  519.870401][   T30] audit: type=1326 audit(1742535939.974:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11373 comm="syz.3.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe71ed8d169 code=0x7ffc0000
[  519.960784][   T30] audit: type=1326 audit(1742535939.974:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11373 comm="syz.3.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fe71ed8bb7c code=0x7ffc0000
[  520.030189][T11404] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1672'.
[  520.056234][   T30] audit: type=1326 audit(1742535939.974:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11373 comm="syz.3.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe71ed8d169 code=0x7ffc0000
[  520.102260][   T30] audit: type=1326 audit(1742535939.974:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11373 comm="syz.3.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe71ed8bad0 code=0x7ffc0000
[  520.150081][   T30] audit: type=1326 audit(1742535939.974:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11373 comm="syz.3.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fe71ed8e997 code=0x7ffc0000
[  520.200201][ T5907] usb 5-1: Using ep0 maxpacket: 8
[  520.222896][ T5907] usb 5-1: config 6 has an invalid interface number: 2 but max is 0
[  520.234992][ T5907] usb 5-1: config 6 has an invalid descriptor of length 0, skipping remainder of the config
[  520.259989][   T30] audit: type=1326 audit(1742535939.974:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11373 comm="syz.3.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe71ed8d169 code=0x7ffc0000
[  520.290053][ T5907] usb 5-1: config 6 has no interface number 0
[  520.306634][ T5907] usb 5-1: config 6 interface 2 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  520.354536][ T5907] usb 5-1: New USB device found, idVendor=0af0, idProduct=7271, bcdDevice=88.91
[  520.367933][ T5907] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  520.392298][ T5907] usb 5-1: Product: syz
[  520.408675][ T5907] usb 5-1: Manufacturer: syz
[  520.430175][ T5907] usb 5-1: SerialNumber: syz
[  520.460899][ T5907] hso 5-1:6.2: Failed to find INT IN ep
[  521.288035][T11395] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  521.373648][T11395] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  522.776278][T11436] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  522.782888][T11436] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  522.817951][T11436] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  522.977506][T11454] random: crng reseeded on system resumption
[  523.361308][T11436] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  523.496988][T11436] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  523.503583][T11436] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  523.522696][T11436] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  523.528643][T11436] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  523.605643][   T26] usb 6-1: new full-speed USB device number 34 using dummy_hcd
[  523.715449][T11461] netlink: 'syz.1.1684': attribute type 1 has an invalid length.
[  523.740076][T11461] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1684'.
[  523.761600][T11461] loop9: detected capacity change from 0 to 7
[  523.768520][T11461] Dev loop9: unable to read RDB block 7
[  523.779844][T11461]  loop9: unable to read partition table
[  523.783553][   T26] usb 6-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  523.801600][T11461] loop9: partition table beyond EOD, truncated
[  523.807997][T11461] loop_reread_partitions: partition scan of loop9 (þ被x󟣑– ) failed (rc=-5)
[  523.819842][   T26] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  523.843464][   T26] usb 6-1: config 0 descriptor??
[  523.858588][   T26] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  524.061609][ T1204] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[  524.232941][ T1204] usb 2-1: Using ep0 maxpacket: 8
[  524.249216][ T1204] usb 2-1: config 252 has an invalid interface number: 138 but max is 0
[  524.285413][ T1204] usb 2-1: config 252 has no interface number 0
[  524.294894][ T1204] usb 2-1: config 252 interface 138 altsetting 1 endpoint 0x5 has invalid maxpacket 512, setting to 64
[  524.325573][ T1204] usb 2-1: config 252 interface 138 has no altsetting 0
[  524.367016][   T26] gp8psk: usb in 137 operation failed.
[  524.379935][   T26] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  524.392566][ T1204] usb 2-1: New USB device found, idVendor=0424, idProduct=7801, bcdDevice=32.4b
[  524.400080][   T26] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  524.410897][ T1204] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  524.429348][   T26] usb 6-1: USB disconnect, device number 34
[  525.455799][ T1204] usb 2-1: string descriptor 0 read error: -71
[  525.690458][ T1204] usb 2-1: USB disconnect, device number 50
[  527.808621][T11552] random: crng reseeded on system resumption
[  529.838116][   T30] kauditd_printk_skb: 8 callbacks suppressed
[  529.838134][   T30] audit: type=1326 audit(1742535950.974:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11581 comm="syz.1.1701" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f458618d169 code=0x0
[  530.703765][T11597] wlan0 speed is unknown, defaulting to 1000
[  530.716068][T11597] wlan0 speed is unknown, defaulting to 1000
[  530.844062][T11597] wlan0 speed is unknown, defaulting to 1000
[  530.861432][T11597] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  530.866218][T11599] random: crng reseeded on system resumption
[  530.884444][T11597] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  531.964260][T11597] wlan0 speed is unknown, defaulting to 1000
[  531.978288][T11597] wlan0 speed is unknown, defaulting to 1000
[  531.993839][T11597] wlan0 speed is unknown, defaulting to 1000
[  532.005409][T11597] wlan0 speed is unknown, defaulting to 1000
[  532.012464][T11597] wlan0 speed is unknown, defaulting to 1000
[  532.190079][ T5874] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[  532.340069][ T5874] usb 6-1: Using ep0 maxpacket: 32
[  532.346814][ T5874] usb 6-1: config 9 has an invalid interface number: 143 but max is 0
[  532.355276][ T5874] usb 6-1: config 9 has no interface number 0
[  532.367611][ T5874] usb 6-1: config 9 interface 143 has no altsetting 0
[  532.376341][ T5874] usb 6-1: New USB device found, idVendor=0403, idProduct=bca1, bcdDevice=dd.73
[  532.388860][ T5874] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  532.396986][ T5874] usb 6-1: Product: syz
[  532.404628][ T5874] usb 6-1: Manufacturer: syz
[  532.409315][ T5874] usb 6-1: SerialNumber: syz
[  532.627294][T11604] netlink: 'syz.5.1708': attribute type 21 has an invalid length.
[  532.635511][T11604] netlink: 'syz.5.1708': attribute type 20 has an invalid length.
[  532.643708][T11604] IPv6: NLM_F_CREATE should be specified when creating new route
[  532.659299][ T5874] ftdi_sio 6-1:9.143: FTDI USB Serial Device converter detected
[  532.667982][ T5874] ftdi_sio ttyUSB0: unknown device type: 0xdd73
[  532.678327][ T5874] usb 6-1: USB disconnect, device number 35
[  532.691727][ T5874] ftdi_sio 6-1:9.143: device disconnected
[  533.814435][T11615] FAULT_INJECTION: forcing a failure.
[  533.814435][T11615] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  533.827790][T11615] CPU: 0 UID: 0 PID: 11615 Comm: syz.5.1711 Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  533.827812][T11615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  533.827823][T11615] Call Trace:
[  533.827829][T11615]  <TASK>
[  533.827853][T11615]  dump_stack_lvl+0x241/0x360
[  533.827880][T11615]  ? __pfx_dump_stack_lvl+0x10/0x10
[  533.827900][T11615]  ? __pfx__printk+0x10/0x10
[  533.827934][T11615]  ? snprintf+0xda/0x120
[  533.827960][T11615]  should_fail_ex+0x40a/0x550
[  533.827994][T11615]  _copy_to_user+0x31/0xb0
[  533.828021][T11615]  simple_read_from_buffer+0xca/0x150
[  533.828054][T11615]  proc_fail_nth_read+0x1e9/0x250
[  533.828077][T11615]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  533.828100][T11615]  ? rw_verify_area+0x243/0x630
[  533.828123][T11615]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  533.828144][T11615]  vfs_read+0x1f8/0xb40
[  533.828169][T11615]  ? fdget_pos+0x254/0x320
[  533.828190][T11615]  ? __pfx___mutex_lock+0x10/0x10
[  533.828220][T11615]  ? __pfx_vfs_read+0x10/0x10
[  533.828241][T11615]  ? do_sys_openat2+0x17a/0x1d0
[  533.828264][T11615]  ? __fget_files+0x2a/0x410
[  533.828285][T11615]  ? __fget_files+0x395/0x410
[  533.828303][T11615]  ? __fget_files+0x2a/0x410
[  533.828342][T11615]  ksys_read+0x18f/0x2b0
[  533.828366][T11615]  ? __pfx_ksys_read+0x10/0x10
[  533.828390][T11615]  ? do_syscall_64+0x100/0x230
[  533.828420][T11615]  ? do_syscall_64+0xb6/0x230
[  533.828450][T11615]  do_syscall_64+0xf3/0x230
[  533.828477][T11615]  ? clear_bhb_loop+0x35/0x90
[  533.828505][T11615]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  533.828547][T11615] RIP: 0033:0x7f0d4298bb7c
[  533.828563][T11615] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  533.828580][T11615] RSP: 002b:00007f0d43729030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  533.828600][T11615] RAX: ffffffffffffffda RBX: 00007f0d42ba6080 RCX: 00007f0d4298bb7c
[  533.828614][T11615] RDX: 000000000000000f RSI: 00007f0d437290a0 RDI: 0000000000000005
[  533.828625][T11615] RBP: 00007f0d43729090 R08: 0000000000000000 R09: 0000000000000000
[  533.828637][T11615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  533.828647][T11615] R13: 0000000000000001 R14: 00007f0d42ba6080 R15: 00007ffea0117388
[  533.828675][T11615]  </TASK>
[  562.972161][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  614.175035][   T48] kworker/1:1 (48) used greatest stack depth: 17912 bytes left
[  624.414240][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  680.731038][   T31] INFO: task syz-executor:5829 blocked for more than 143 seconds.
[  680.739945][   T31]       Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  680.747600][   T31]       Blocked by coredump.
[  680.752623][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  680.761352][   T31] task:syz-executor    state:D stack:18224 pid:5829  tgid:5829  ppid:1      task_flags:0x40054c flags:0x00004006
[  680.773369][   T31] Call Trace:
[  680.776658][   T31]  <TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  680.779583][   T31]  __schedule+0x18bc/0x4c40
[  680.784250][   T31]  ? __pfx___schedule+0x10/0x10
[  680.789143][   T31]  ? __pfx_lock_release+0x10/0x10
[  680.795217][   T31]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  680.801211][   T31]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  680.807148][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  680.813632][   T31]  ? schedule+0x90/0x320
[  680.817918][   T31]  schedule+0x14b/0x320
[  680.833880][   T31]  schedule_preempt_disabled+0x13/0x30
[  680.839379][   T31]  __mutex_lock+0x817/0x1010
[  680.858935][   T31]  ? __mutex_lock+0x602/0x1010
[  680.868883][   T31]  ? rfkill_unregister+0xd0/0x230
[  680.875688][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  680.895620][   T31]  ? __pfx_device_del+0x10/0x10
[  680.901593][   T31]  ? hci_sock_dev_event+0x470/0x660
[  680.906858][   T31]  rfkill_unregister+0xd0/0x230
[  680.912195][   T31]  hci_unregister_dev+0x366/0x510
[  680.917269][   T31]  vhci_release+0x80/0xd0
[  680.921732][   T31]  ? __pfx_vhci_release+0x10/0x10
[  680.926830][   T31]  __fput+0x3e9/0x9f0
[  680.930923][   T31]  task_work_run+0x24f/0x310
[  680.935543][   T31]  ? __pfx_task_work_run+0x10/0x10
[  680.941030][   T31]  ? do_exit+0xa25/0x2940
[  680.945402][   T31]  ? do_exit+0xa25/0x2940
[  680.949751][   T31]  do_exit+0xa2a/0x2940
[  680.953978][   T31]  ? __pfx_do_exit+0x10/0x10
[  680.958625][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  680.964120][   T31]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  680.970966][   T31]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  680.977346][   T31]  ? _raw_spin_lock_irq+0xdf/0x120
[  680.982645][   T31]  do_group_exit+0x207/0x2c0
[  680.987279][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  680.992603][   T31]  ? lockdep_hardirqs_on+0x99/0x150
[  680.997844][   T31]  get_signal+0x168c/0x1720
[  681.002465][   T31]  ? __pfx_get_signal+0x10/0x10
[  681.007370][   T31]  arch_do_signal_or_restart+0x96/0x860
[  681.012994][   T31]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  681.019170][   T31]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  681.025313][   T31]  ? syscall_exit_to_user_mode+0xa3/0x340
[  681.031154][   T31]  syscall_exit_to_user_mode+0xce/0x340
[  681.036746][   T31]  do_syscall_64+0x100/0x230
[  681.041417][   T31]  ? clear_bhb_loop+0x35/0x90
[  681.046117][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  681.052069][   T31] RIP: 0033:0x7eff46f833d7
[  681.056504][   T31] RSP: 002b:00007ffc4ee7c2a0 EFLAGS: 00000293 ORIG_RAX: 000000000000003d
[  681.065080][   T31] RAX: fffffffffffffe00 RBX: 000000000000038b RCX: 00007eff46f833d7
[  681.073122][   T31] RDX: 0000000040000000 RSI: 00007ffc4ee7c30c RDI: 00000000ffffffff
[  681.081241][   T31] RBP: 00007ffc4ee7c30c R08: 0000000000000000 R09: 0000000000000000
[  681.089247][   T31] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000013e
[  681.097321][   T31] R13: 00005555897ed590 R14: 000000000007f4bb R15: 00007ffc4ee7c360
[  681.105492][   T31]  </TASK>
[  681.108551][   T31] INFO: task kworker/1:6:5907 blocked for more than 143 seconds.
[  681.116327][   T31]       Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  681.124040][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  681.133467][   T31] task:kworker/1:6     state:D stack:18424 pid:5907  tgid:5907  ppid:2      task_flags:0x4208060 flags:0x00004000
[  681.145622][   T31] Workqueue: events rfkill_global_led_trigger_worker
[  681.152399][   T31] Call Trace:
[  681.155689][   T31]  <TASK>
[  681.158645][   T31]  __schedule+0x18bc/0x4c40
[  681.163260][   T31]  ? do_raw_spin_lock+0x14f/0x370
[  681.168334][   T31]  ? schedule+0x90/0x320
[  681.172652][   T31]  ? __pfx___schedule+0x10/0x10
[  681.177525][   T31]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  681.183617][   T31]  ? __pfx_lock_release+0x10/0x10
[  681.188693][   T31]  ? kick_pool+0x1bd/0x620
[  681.193270][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  681.198525][   T31]  ? lockdep_hardirqs_on+0x99/0x150
[  681.203831][   T31]  ? schedule+0x90/0x320
[  681.208097][   T31]  schedule+0x14b/0x320
[  681.212394][   T31]  schedule_preempt_disabled+0x13/0x30
[  681.217879][   T31]  __mutex_lock+0x817/0x1010
[  681.222618][   T31]  ? __mutex_lock+0x602/0x1010
[  681.227425][   T31]  ? rfkill_global_led_trigger_worker+0x27/0xd0
[  681.233773][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  681.238820][   T31]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  681.244905][   T31]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  681.251337][   T31]  ? process_scheduled_works+0x9c6/0x18e0
[  681.257083][   T31]  rfkill_global_led_trigger_worker+0x27/0xd0
[  681.263330][   T31]  ? process_scheduled_works+0x9c6/0x18e0
[  681.269083][   T31]  process_scheduled_works+0xabe/0x18e0
[  681.274763][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[  681.280857][   T31]  ? assign_work+0x364/0x3d0
[  681.285487][   T31]  worker_thread+0x870/0xd30
[  681.290221][   T31]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  681.296155][   T31]  ? __kthread_parkme+0x169/0x1d0
[  681.301359][   T31]  ? __pfx_worker_thread+0x10/0x10
[  681.306530][   T31]  kthread+0x7a9/0x920
[  681.311500][   T31]  ? __pfx_kthread+0x10/0x10
[  681.316125][   T31]  ? __pfx_worker_thread+0x10/0x10
[  681.321337][   T31]  ? __pfx_kthread+0x10/0x10
[  681.325951][   T31]  ? __pfx_kthread+0x10/0x10
[  681.330641][   T31]  ? __pfx_kthread+0x10/0x10
[  681.335266][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  681.340626][   T31]  ? lockdep_hardirqs_on+0x99/0x150
[  681.345899][   T31]  ? __pfx_kthread+0x10/0x10
[  681.351393][   T31]  ret_from_fork+0x4b/0x80
[  681.355841][   T31]  ? __pfx_kthread+0x10/0x10
[  681.360547][   T31]  ret_from_fork_asm+0x1a/0x30
[  681.365350][   T31]  </TASK>
[  681.368393][   T31] INFO: task syz.4.1669:11395 blocked for more than 143 seconds.
[  681.377453][   T31]       Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  681.385180][   T31]       Blocked by coredump.
[  681.389779][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  681.398562][   T31] task:syz.4.1669      state:D stack:25776 pid:11395 tgid:11393 ppid:5829   task_flags:0x40054c flags:0x00004002
[  681.412837][   T31] Call Trace:
[  681.416156][   T31]  <TASK>
[  681.419089][   T31]  __schedule+0x18bc/0x4c40
[  681.423782][   T31]  ? __pfx___schedule+0x10/0x10
[  681.428676][   T31]  ? __pfx_lock_release+0x10/0x10
[  681.433844][   T31]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  681.439783][   T31]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  681.445775][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  681.452523][   T31]  ? schedule+0x90/0x320
[  681.456812][   T31]  schedule+0x14b/0x320
[  681.461158][   T31]  schedule_preempt_disabled+0x13/0x30
[  681.466704][   T31]  __mutex_lock+0x817/0x1010
[  681.471413][   T31]  ? __mutex_lock+0x602/0x1010
[  681.476205][   T31]  ? rfkill_unregister+0xd0/0x230
[  681.481345][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  681.486399][   T31]  ? __pfx_device_del+0x10/0x10
[  681.491367][   T31]  rfkill_unregister+0xd0/0x230
[  681.496254][   T31]  nfc_unregister_device+0x96/0x2a0
[  681.501516][   T31]  virtual_ncidev_close+0x56/0x90
[  681.506553][   T31]  ? __pfx_virtual_ncidev_close+0x10/0x10
[  681.512351][   T31]  __fput+0x3e9/0x9f0
[  681.516414][   T31]  task_work_run+0x24f/0x310
[  681.521134][   T31]  ? __pfx_task_work_run+0x10/0x10
[  681.526269][   T31]  ? do_exit+0xa25/0x2940
[  681.530848][   T31]  ? do_exit+0xa25/0x2940
[  681.535250][   T31]  do_exit+0xa2a/0x2940
[  681.539441][   T31]  ? __pfx_do_exit+0x10/0x10
[  681.544137][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  681.549540][   T31]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  681.555646][   T31]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  681.562080][   T31]  ? _raw_spin_lock_irq+0xdf/0x120
[  681.567221][   T31]  do_group_exit+0x207/0x2c0
[  681.571888][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  681.577104][   T31]  ? lockdep_hardirqs_on+0x99/0x150
[  681.582411][   T31]  get_signal+0x168c/0x1720
[  681.586951][   T31]  ? __pfx_get_signal+0x10/0x10
[  681.591947][   T31]  arch_do_signal_or_restart+0x96/0x860
[  681.597536][   T31]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  681.603728][   T31]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  681.609739][   T31]  ? syscall_exit_to_user_mode+0xa3/0x340
[  681.615572][   T31]  syscall_exit_to_user_mode+0xce/0x340
[  681.621340][   T31]  do_syscall_64+0x100/0x230
[  681.625963][   T31]  ? clear_bhb_loop+0x35/0x90
[  681.630867][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  681.636791][   T31] RIP: 0033:0x7eff46f8d169
[  681.641300][   T31] RSP: 002b:00007eff47e1a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  681.649749][   T31] RAX: fffffffffffffe00 RBX: 00007eff471a5fa8 RCX: 00007eff46f8d169
[  681.657801][   T31] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007eff471a5fa8
[  681.665837][   T31] RBP: 00007eff471a5fa0 R08: 0000000000000000 R09: 0000000000000000
[  681.673888][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 00007eff471a5fac
[  681.681942][   T31] R13: 0000000000000000 R14: 00007ffc4ee7be60 R15: 00007ffc4ee7bf48
[  681.690085][   T31]  </TASK>
[  681.693175][   T31] INFO: task syz.3.1681:11436 blocked for more than 144 seconds.
[  681.705461][   T31]       Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  681.713231][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  681.721941][   T31] task:syz.3.1681      state:D stack:22904 pid:11436 tgid:11435 ppid:5824   task_flags:0x400040 flags:0x00004006
[  681.733999][   T31] Call Trace:
[  681.737312][   T31]  <TASK>
[  681.740314][   T31]  __schedule+0x18bc/0x4c40
[  681.744868][   T31]  ? __pfx___schedule+0x10/0x10
[  681.749716][   T31]  ? __pfx_lock_release+0x10/0x10
[  681.754818][   T31]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  681.760813][   T31]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  681.766849][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  681.773464][   T31]  ? schedule+0x90/0x320
[  681.777781][   T31]  schedule+0x14b/0x320
[  681.782048][   T31]  schedule_preempt_disabled+0x13/0x30
[  681.787551][   T31]  __mutex_lock+0x817/0x1010
[  681.792276][   T31]  ? __mutex_lock+0x602/0x1010
[  681.797088][   T31]  ? nfc_rfkill_set_block+0x50/0x310
[  681.802483][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  681.807551][   T31]  ? lockdep_hardirqs_on+0x99/0x150
[  681.812952][   T31]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  681.818893][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  681.825375][   T31]  nfc_rfkill_set_block+0x50/0x310
[  681.830571][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[  681.836328][   T31]  rfkill_set_block+0x1f1/0x440
[  681.841311][   T31]  rfkill_fop_write+0x5b8/0x790
[  681.846204][   T31]  ? __pfx_rfkill_fop_write+0x10/0x10
[  681.851678][   T31]  ? bpf_lsm_inode_copy_up_xattr+0x10/0x20
[  681.857517][   T31]  ? rw_verify_area+0x243/0x630
[  681.862478][   T31]  ? __pfx_rfkill_fop_write+0x10/0x10
[  681.867914][   T31]  vfs_write+0x29f/0xd10
[  681.872485][   T31]  ? __pfx_vfs_write+0x10/0x10
[  681.877293][   T31]  ? __fget_files+0x2a/0x410
[  681.882435][   T31]  ? __fget_files+0x395/0x410
[  681.887164][   T31]  ? __fget_files+0x2a/0x410
[  681.891867][   T31]  ksys_write+0x18f/0x2b0
[  681.896227][   T31]  ? __pfx_ksys_write+0x10/0x10
[  681.901202][   T31]  ? do_syscall_64+0x100/0x230
[  681.906038][   T31]  ? do_syscall_64+0xb6/0x230
[  681.910838][   T31]  do_syscall_64+0xf3/0x230
[  681.915392][   T31]  ? clear_bhb_loop+0x35/0x90
[  681.920178][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  681.926087][   T31] RIP: 0033:0x7fe71ed8d169
[  681.930739][   T31] RSP: 002b:00007fe71fb54038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  681.939366][   T31] RAX: ffffffffffffffda RBX: 00007fe71efa5fa0 RCX: 00007fe71ed8d169
[  681.947434][   T31] RDX: 0000000000000008 RSI: 0000200000000080 RDI: 0000000000000003
[  681.955550][   T31] RBP: 00007fe71ee0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  681.963636][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  681.971739][   T31] R13: 0000000000000000 R14: 00007fe71efa5fa0 R15: 00007ffc7f644568
[  681.979741][   T31]  </TASK>
[  681.982856][   T31] INFO: task syz.0.1707:11600 blocked for more than 144 seconds.
[  681.990673][   T31]       Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  681.998331][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  682.007081][   T31] task:syz.0.1707      state:D stack:23912 pid:11600 tgid:11593 ppid:5820   task_flags:0x400140 flags:0x00004004
[  682.019197][   T31] Call Trace:
[  682.022592][   T31]  <TASK>
[  682.025639][   T31]  __schedule+0x18bc/0x4c40
[  682.030235][   T31]  ? __pfx___schedule+0x10/0x10
[  682.035095][   T31]  ? __pfx_lock_release+0x10/0x10
[  682.040229][   T31]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  682.046156][   T31]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  682.052129][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  682.058492][   T31]  ? schedule+0x90/0x320
[  682.062799][   T31]  schedule+0x14b/0x320
[  682.066983][   T31]  schedule_preempt_disabled+0x13/0x30
[  682.072546][   T31]  __mutex_lock+0x817/0x1010
[  682.077163][   T31]  ? __mutex_lock+0x602/0x1010
[  682.082068][   T31]  ? rfkill_register+0x34/0x8c0
[  682.086952][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  682.092273][   T31]  ? netdev_run_todo+0xeac/0xf30
[  682.097282][   T31]  ? __pfx_netdev_run_todo+0x10/0x10
[  682.102678][   T31]  rfkill_register+0x34/0x8c0
[  682.107413][   T31]  wiphy_register+0x1ef6/0x2650
[  682.112372][   T31]  ? __pfx_wiphy_register+0x10/0x10
[  682.117585][   T31]  ? minstrel_ht_alloc+0x84b/0x940
[  682.122794][   T31]  ? ieee80211_init_rate_ctrl_alg+0x5a2/0x620
[  682.128890][   T31]  ieee80211_register_hw+0x35d9/0x42e0
[  682.134489][   T31]  ? ieee80211_register_hw+0x1691/0x42e0
[  682.140261][   T31]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  682.146099][   T31]  ? __asan_memset+0x23/0x50
[  682.150814][   T31]  ? __hrtimer_init+0x170/0x250
[  682.155705][   T31]  mac80211_hwsim_new_radio+0x2ae8/0x4a40
[  682.161517][   T31]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  682.167608][   T31]  hwsim_new_radio_nl+0xece/0x2290
[  682.173195][   T31]  ? __pfx___nla_validate_parse+0x10/0x10
[  682.178949][   T31]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  682.184625][   T31]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  682.191074][   T31]  genl_rcv_msg+0xb1f/0xec0
[  682.195625][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[  682.200727][   T31]  ? mark_lock+0x9a/0x360
[  682.205114][   T31]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  682.211208][   T31]  ? lockdep_hardirqs_on+0x99/0x150
[  682.216444][   T31]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  682.222093][   T31]  netlink_rcv_skb+0x206/0x480
[  682.226900][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[  682.232068][   T31]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  682.237398][   T31]  ? __netlink_deliver_tap+0x7b0/0x7f0
[  682.243068][   T31]  genl_rcv+0x28/0x40
[  682.247132][   T31]  netlink_unicast+0x7f6/0x990
[  682.251982][   T31]  ? lockdep_hardirqs_on+0x99/0x150
[  682.257207][   T31]  ? __pfx_netlink_unicast+0x10/0x10
[  682.262579][   T31]  ? security_netlink_send+0x21b/0x280
[  682.268069][   T31]  netlink_sendmsg+0x8de/0xcb0
[  682.272989][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[  682.278302][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[  682.283662][   T31]  __sock_sendmsg+0x221/0x270
[  682.288406][   T31]  ____sys_sendmsg+0x53a/0x860
[  682.293274][   T31]  ? __pfx_____sys_sendmsg+0x10/0x10
[  682.298572][   T31]  ? __fget_files+0x2a/0x410
[  682.303238][   T31]  ? __fget_files+0x2a/0x410
[  682.307845][   T31]  __sys_sendmsg+0x269/0x350
[  682.312536][   T31]  ? __pfx_lock_release+0x10/0x10
[  682.317626][   T31]  ? __pfx___sys_sendmsg+0x10/0x10
[  682.322855][   T31]  ? __pfx___might_resched+0x10/0x10
[  682.328179][   T31]  ? lockdep_hardirqs_on+0x99/0x150
[  682.333488][   T31]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  682.339938][   T31]  ? do_syscall_64+0x100/0x230
[  682.344741][   T31]  ? do_syscall_64+0xb6/0x230
[  682.349448][   T31]  do_syscall_64+0xf3/0x230
[  682.354072][   T31]  ? clear_bhb_loop+0x35/0x90
[  682.358776][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  682.364747][   T31] RIP: 0033:0x7f1e1798d169
[  682.369179][   T31] RSP: 002b:00007f1e157f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  682.377683][   T31] RAX: ffffffffffffffda RBX: 00007f1e17ba6160 RCX: 00007f1e1798d169
[  682.385714][   T31] RDX: 0000000020000000 RSI: 0000200000000140 RDI: 0000000000000004
[  682.393776][   T31] RBP: 00007f1e17a0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  682.401856][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  682.409933][   T31] R13: 0000000000000000 R14: 00007f1e17ba6160 R15: 00007ffe6196b168
[  682.417930][   T31]  </TASK>
[  682.421022][   T31] INFO: task syz.1.1709:11606 blocked for more than 145 seconds.
[  682.428770][   T31]       Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  682.436472][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  682.445221][   T31] task:syz.1.1709      state:D stack:23736 pid:11606 tgid:11605 ppid:5826   task_flags:0x400140 flags:0x00000004
[  682.457221][   T31] Call Trace:
[  682.460560][   T31]  <TASK>
[  682.463512][   T31]  __schedule+0x18bc/0x4c40
[  682.468041][   T31]  ? __pfx___schedule+0x10/0x10
[  682.473005][   T31]  ? __pfx_lock_release+0x10/0x10
[  682.478053][   T31]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  682.483990][   T31]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  682.490103][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  682.496480][   T31]  ? schedule+0x90/0x320
[  682.501006][   T31]  schedule+0x14b/0x320
[  682.505206][   T31]  schedule_preempt_disabled+0x13/0x30
[  682.511355][   T31]  __mutex_lock+0x817/0x1010
[  682.515985][   T31]  ? __mutex_lock+0x602/0x1010
[  682.521263][   T31]  ? genl_rcv_msg+0x122/0xec0
[  682.525981][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  682.531477][   T31]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  682.537876][   T31]  ? __local_bh_enable_ip+0x168/0x200
[  682.543338][   T31]  ? lockdep_hardirqs_on+0x99/0x150
[  682.548578][   T31]  ? radix_tree_lookup+0x238/0x290
[  682.553799][   T31]  genl_rcv_msg+0x122/0xec0
[  682.558335][   T31]  ? mark_lock+0x9a/0x360
[  682.562790][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[  682.567891][   T31]  ? __pfx_lock_acquire+0x10/0x10
[  682.573023][   T31]  ? __pfx___might_resched+0x10/0x10
[  682.578337][   T31]  netlink_rcv_skb+0x206/0x480
[  682.583212][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[  682.588269][   T31]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  682.593653][   T31]  ? __netlink_deliver_tap+0x7b0/0x7f0
[  682.599143][   T31]  genl_rcv+0x28/0x40
[  682.603235][   T31]  netlink_unicast+0x7f6/0x990
[  682.608263][   T31]  ? __pfx_netlink_unicast+0x10/0x10
[  682.613886][   T31]  ? __virt_addr_valid+0x45f/0x530
[  682.619038][   T31]  ? __phys_addr_symbol+0x2f/0x70
[  682.624133][   T31]  ? __check_object_size+0x47a/0x730
[  682.629474][   T31]  netlink_sendmsg+0x8de/0xcb0
[  682.634394][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[  682.639728][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[  682.645117][   T31]  __sock_sendmsg+0x221/0x270
[  682.649990][   T31]  ____sys_sendmsg+0x53a/0x860
[  682.654976][   T31]  ? __pfx_____sys_sendmsg+0x10/0x10
[  682.660520][   T31]  ? __fget_files+0x2a/0x410
[  682.665146][   T31]  ? __fget_files+0x2a/0x410
[  682.669907][   T31]  __sys_sendmsg+0x269/0x350
[  682.674556][   T31]  ? __pfx_futex_wake+0x10/0x10
[  682.679411][   T31]  ? __pfx___sys_sendmsg+0x10/0x10
[  682.684597][   T31]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  682.691073][   T31]  ? do_syscall_64+0x100/0x230
[  682.695873][   T31]  ? do_syscall_64+0xb6/0x230
[  682.700632][   T31]  do_syscall_64+0xf3/0x230
[  682.705174][   T31]  ? clear_bhb_loop+0x35/0x90
[  682.709952][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  682.715861][   T31] RIP: 0033:0x7f458618d169
[  682.720364][   T31] RSP: 002b:00007f45870c9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  682.728804][   T31] RAX: ffffffffffffffda RBX: 00007f45863a5fa0 RCX: 00007f458618d169
[  682.737069][   T31] RDX: 0000000000000040 RSI: 0000200000000180 RDI: 0000000000000007
[  682.745440][   T31] RBP: 00007f458620e2a0 R08: 0000000000000000 R09: 0000000000000000
[  682.754130][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  682.764857][   T31] R13: 0000000000000000 R14: 00007f45863a5fa0 R15: 00007fffb8df0358
[  682.772915][   T31]  </TASK>
[  682.775953][   T31] INFO: task syz.1.1709:11608 blocked for more than 145 seconds.
[  682.784050][   T31]       Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  682.791786][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  682.801367][   T31] task:syz.1.1709      state:D stack:24928 pid:11608 tgid:11605 ppid:5826   task_flags:0x400140 flags:0x00000004
[  682.813454][   T31] Call Trace:
[  682.816746][   T31]  <TASK>
[  682.819684][   T31]  __schedule+0x18bc/0x4c40
[  682.824438][   T31]  ? __pfx___schedule+0x10/0x10
[  682.829333][   T31]  ? __pfx_lock_release+0x10/0x10
[  682.834424][   T31]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  682.840392][   T31]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  682.846322][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  682.852778][   T31]  ? schedule+0x90/0x320
[  682.857053][   T31]  schedule+0x14b/0x320
[  682.861460][   T31]  schedule_preempt_disabled+0x13/0x30
[  682.866951][   T31]  __mutex_lock+0x817/0x1010
[  682.872318][   T31]  ? __mutex_lock+0x602/0x1010
[  682.877133][   T31]  ? genl_rcv_msg+0x122/0xec0
[  682.881971][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  682.887039][   T31]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  682.893653][   T31]  ? __local_bh_enable_ip+0x168/0x200
[  682.899050][   T31]  ? lockdep_hardirqs_on+0x99/0x150
[  682.904452][   T31]  ? radix_tree_lookup+0x238/0x290
[  682.909590][   T31]  genl_rcv_msg+0x122/0xec0
[  682.914189][   T31]  ? mark_lock+0x9a/0x360
[  682.918543][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[  682.923748][   T31]  ? __pfx_lock_acquire+0x10/0x10
[  682.928810][   T31]  ? __pfx___might_resched+0x10/0x10
[  682.934169][   T31]  netlink_rcv_skb+0x206/0x480
[  682.938950][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[  682.944179][   T31]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  682.949494][   T31]  ? __netlink_deliver_tap+0x7b0/0x7f0
[  682.955037][   T31]  genl_rcv+0x28/0x40
[  682.959057][   T31]  netlink_unicast+0x7f6/0x990
[  682.963919][   T31]  ? __pfx_netlink_unicast+0x10/0x10
[  682.969218][   T31]  ? __virt_addr_valid+0x45f/0x530
[  682.974390][   T31]  ? __phys_addr_symbol+0x2f/0x70
[  682.979437][   T31]  ? __check_object_size+0x47a/0x730
[  682.985622][   T31]  netlink_sendmsg+0x8de/0xcb0
[  682.990504][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[  682.995841][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[  683.001645][   T31]  __sock_sendmsg+0x221/0x270
[  683.006406][   T31]  __sys_sendto+0x363/0x4c0
[  683.010996][   T31]  ? __pfx___sys_sendto+0x10/0x10
[  683.016066][   T31]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  683.022407][   T31]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  683.028780][   T31]  __x64_sys_sendto+0xde/0x100
[  683.033741][   T31]  do_syscall_64+0xf3/0x230
[  683.038303][   T31]  ? clear_bhb_loop+0x35/0x90
[  683.043247][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  683.049183][   T31] RIP: 0033:0x7f458618effc
[  683.053669][   T31] RSP: 002b:00007f4587085ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  683.062300][   T31] RAX: ffffffffffffffda RBX: 00007f4587085fc0 RCX: 00007f458618effc
[  683.070368][   T31] RDX: 0000000000000020 RSI: 00007f4587086010 RDI: 0000000000000010
[  683.078360][   T31] RBP: 0000000000000000 R08: 00007f4587085f14 R09: 000000000000000c
[  683.086372][   T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000010
[  683.094424][   T31] R13: 00007f4587085f68 R14: 00007f4587086010 R15: 0000000000000000
[  683.102655][   T31]  </TASK>
[  683.105705][   T31] INFO: task syz.5.1711:11614 blocked for more than 145 seconds.
[  683.113820][   T31]       Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  683.121544][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  683.131402][   T31] task:syz.5.1711      state:D stack:26808 pid:11614 tgid:11613 ppid:7879   task_flags:0x400040 flags:0x00000004
[  683.144692][   T31] Call Trace:
[  683.148000][   T31]  <TASK>
[  683.151104][   T31]  __schedule+0x18bc/0x4c40
[  683.155664][   T31]  ? __pfx___schedule+0x10/0x10
[  683.160683][   T31]  ? __pfx_lock_release+0x10/0x10
[  683.165778][   T31]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  683.171771][   T31]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  683.177682][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  683.184211][   T31]  ? schedule+0x90/0x320
[  683.188476][   T31]  schedule+0x14b/0x320
[  683.192733][   T31]  schedule_preempt_disabled+0x13/0x30
[  683.198243][   T31]  __mutex_lock+0x817/0x1010
[  683.202921][   T31]  ? __mutex_lock+0x602/0x1010
[  683.207735][   T31]  ? genl_rcv_msg+0x122/0xec0
[  683.212492][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  683.217536][   T31]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  683.224237][   T31]  ? __local_bh_enable_ip+0x168/0x200
[  683.229641][   T31]  ? lockdep_hardirqs_on+0x99/0x150
[  683.234968][   T31]  ? radix_tree_lookup+0x238/0x290
[  683.240245][   T31]  genl_rcv_msg+0x122/0xec0
[  683.244786][   T31]  ? mark_lock+0x9a/0x360
[  683.249148][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[  683.254307][   T31]  ? __pfx_lock_acquire+0x10/0x10
[  683.259361][   T31]  ? __pfx___might_resched+0x10/0x10
[  683.264909][   T31]  netlink_rcv_skb+0x206/0x480
[  683.269694][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[  683.274805][   T31]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  683.280184][   T31]  ? __netlink_deliver_tap+0x7b0/0x7f0
[  683.285673][   T31]  genl_rcv+0x28/0x40
[  683.289652][   T31]  netlink_unicast+0x7f6/0x990
[  683.295217][   T31]  ? __pfx_netlink_unicast+0x10/0x10
[  683.300875][   T31]  ? __virt_addr_valid+0x45f/0x530
[  683.306045][   T31]  ? __phys_addr_symbol+0x2f/0x70
[  683.311506][   T31]  ? __check_object_size+0x47a/0x730
[  683.316829][   T31]  netlink_sendmsg+0x8de/0xcb0
[  683.321705][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[  683.327013][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[  683.332432][   T31]  __sock_sendmsg+0x221/0x270
[  683.337131][   T31]  __sys_sendto+0x363/0x4c0
[  683.341948][   T31]  ? __pfx___sys_sendto+0x10/0x10
[  683.347010][   T31]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  683.353085][   T31]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  683.359434][   T31]  ? exc_page_fault+0x590/0x8b0
[  683.364362][   T31]  __x64_sys_sendto+0xde/0x100
[  683.369159][   T31]  do_syscall_64+0xf3/0x230
[  683.373762][   T31]  ? clear_bhb_loop+0x35/0x90
[  683.378464][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  683.384544][   T31] RIP: 0033:0x7f0d4298effc
[  683.388993][   T31] RSP: 002b:00007f0d43748ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  683.397496][   T31] RAX: ffffffffffffffda RBX: 00007f0d43748fc0 RCX: 00007f0d4298effc
[  683.405499][   T31] RDX: 0000000000000024 RSI: 00007f0d43749010 RDI: 0000000000000004
[  683.413503][   T31] RBP: 0000000000000000 R08: 00007f0d43748f14 R09: 000000000000000c
[  683.421689][   T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004
[  683.429676][   T31] R13: 00007f0d43748f68 R14: 00007f0d43749010 R15: 0000000000000000
[  683.437803][   T31]  </TASK>
[  683.440932][   T31] INFO: task syz-executor:11617 blocked for more than 146 seconds.
[  683.448833][   T31]       Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  683.456681][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  683.465509][   T31] task:syz-executor    state:D stack:26976 pid:11617 tgid:11617 ppid:1      task_flags:0x400040 flags:0x00004000
[  683.477526][   T31] Call Trace:
[  683.480896][   T31]  <TASK>
[  683.483875][   T31]  __schedule+0x18bc/0x4c40
[  683.488442][   T31]  ? __pfx___schedule+0x10/0x10
[  683.493353][   T31]  ? __pfx_lock_release+0x10/0x10
[  683.498407][   T31]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  683.504467][   T31]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  683.510552][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  683.516910][   T31]  ? schedule+0x90/0x320
[  683.521245][   T31]  schedule+0x14b/0x320
[  683.525437][   T31]  schedule_preempt_disabled+0x13/0x30
[  683.537983][   T31]  __mutex_lock+0x817/0x1010
[  683.542737][   T31]  ? __mutex_lock+0x602/0x1010
[  683.547539][   T31]  ? rfkill_register+0x34/0x8c0
[  683.552490][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  683.557598][   T31]  ? device_initialize+0x266/0x460
[  683.563031][   T31]  rfkill_register+0x34/0x8c0
[  683.567745][   T31]  hci_register_dev+0x407/0x8b0
[  683.572684][   T31]  vhci_create_device+0x35b/0x6b0
[  683.577743][   T31]  vhci_write+0x3cf/0x490
[  683.582254][   T31]  vfs_write+0xacf/0xd10
[  683.586554][   T31]  ? __pfx_vhci_write+0x10/0x10
[  683.591520][   T31]  ? __pfx_vfs_write+0x10/0x10
[  683.596334][   T31]  ksys_write+0x18f/0x2b0
[  683.600726][   T31]  ? __pfx_ksys_write+0x10/0x10
[  683.605605][   T31]  ? exc_page_fault+0x590/0x8b0
[  683.610541][   T31]  ? do_syscall_64+0xb6/0x230
[  683.615269][   T31]  do_syscall_64+0xf3/0x230
[  683.619849][   T31]  ? clear_bhb_loop+0x35/0x90
[  683.624646][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  683.630791][   T31] RIP: 0033:0x7f7bb298bbe0
[  683.635246][   T31] RSP: 002b:00007fff32163ad8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001
[  683.643767][   T31] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f7bb298bbe0
[  683.651767][   T31] RDX: 0000000000000002 RSI: 00007fff32163aea RDI: 00000000000000ca
[  683.659736][   T31] RBP: 00007f7bb2ba6738 R08: 0000000000000000 R09: 00007f7bb36dd6c0
[  683.667883][   T31] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[  683.676069][   T31] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  683.684143][   T31]  </TASK>
[  683.687208][   T31] INFO: task syz-executor:11619 blocked for more than 146 seconds.
[  683.696181][   T31]       Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  683.703963][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  683.712657][   T31] task:syz-executor    state:D stack:26832 pid:11619 tgid:11619 ppid:1      task_flags:0x400040 flags:0x00000000
[  683.724625][   T31] Call Trace:
[  683.727911][   T31]  <TASK>
[  683.730924][   T31]  __schedule+0x18bc/0x4c40
[  683.735474][   T31]  ? __pfx___schedule+0x10/0x10
[  683.740505][   T31]  ? __pfx_lock_release+0x10/0x10
[  683.745572][   T31]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  683.751529][   T31]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  683.757484][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  683.763865][   T31]  ? schedule+0x90/0x320
[  683.768107][   T31]  schedule+0x14b/0x320
[  683.772382][   T31]  schedule_preempt_disabled+0x13/0x30
[  683.777857][   T31]  __mutex_lock+0x817/0x1010
[  683.782774][   T31]  ? __mutex_lock+0x602/0x1010
[  683.787599][   T31]  ? rfkill_register+0x34/0x8c0
[  683.792594][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  683.797647][   T31]  ? device_initialize+0x266/0x460
[  683.802847][   T31]  rfkill_register+0x34/0x8c0
[  683.807577][   T31]  hci_register_dev+0x407/0x8b0
[  683.812504][   T31]  vhci_create_device+0x35b/0x6b0
[  683.817594][   T31]  vhci_write+0x3cf/0x490
[  683.822099][   T31]  vfs_write+0xacf/0xd10
[  683.826394][   T31]  ? __pfx_vhci_write+0x10/0x10
[  683.831333][   T31]  ? __pfx_vfs_write+0x10/0x10
[  683.836140][   T31]  ksys_write+0x18f/0x2b0
[  683.840552][   T31]  ? __pfx_ksys_write+0x10/0x10
[  683.845432][   T31]  ? exc_page_fault+0x590/0x8b0
[  683.850352][   T31]  ? do_syscall_64+0xb6/0x230
[  683.855082][   T31]  do_syscall_64+0xf3/0x230
[  683.859615][   T31]  ? clear_bhb_loop+0x35/0x90
[  683.864456][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  683.870453][   T31] RIP: 0033:0x7fc7a5d8bbe0
[  683.874898][   T31] RSP: 002b:00007ffc11d89f08 EFLAGS: 00000202 ORIG_RAX: 0000000000000001
[  683.883418][   T31] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fc7a5d8bbe0
[  683.891673][   T31] RDX: 0000000000000002 RSI: 00007ffc11d89f1a RDI: 00000000000000ca
[  683.899683][   T31] RBP: 00007fc7a5fa6738 R08: 0000000000000000 R09: 00007fc7a6add6c0
[  683.907841][   T31] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[  683.915897][   T31] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  683.923941][   T31]  </TASK>
[  683.926977][   T31] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  683.936201][   T31] 
[  683.936201][   T31] Showing all locks held in the system:
[  683.944122][   T31] 1 lock held by khungtaskd/31:
[  683.949010][   T31]  #0: ffffffff8eb393e0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x55/0x2a0
[  683.959350][   T31] 2 locks held by getty/5581:
[  683.964321][   T31]  #0: ffff8880322bc0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  683.974155][   T31]  #1: ffffc90002fd62f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x616/0x1770
[  683.984394][   T31] 1 lock held by syz-executor/5829:
[  683.989605][   T31]  #0: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xd0/0x230
[  683.999751][   T31] 3 locks held by kworker/1:6/5907:
[  684.005175][   T31]  #0: ffff88801b080d48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x98b/0x18e0
[  684.016262][   T31]  #1: ffffc900044b7c60 ((work_completion)(&rfkill_global_led_trigger_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9c6/0x18e0
[  684.029954][   T31]  #2: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_global_led_trigger_worker+0x27/0xd0
[  684.041417][   T31] 2 locks held by syz.4.1669/11395:
[  684.046616][   T31]  #0: ffff8880237b2100 (&dev->mutex){....}-{4:4}, at: nfc_unregister_device+0x63/0x2a0
[  684.056420][   T31]  #1: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xd0/0x230
[  684.066587][   T31] 2 locks held by syz.3.1681/11436:
[  684.071820][   T31]  #0: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_fop_write+0x1a6/0x790
[  684.082041][   T31]  #1: ffff8880237b2100 (&dev->mutex){....}-{4:4}, at: nfc_rfkill_set_block+0x50/0x310
[  684.091830][   T31] 3 locks held by syz.0.1707/11600:
[  684.097032][   T31]  #0: ffffffff8ff27f50 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  684.105286][   T31]  #1: ffffffff8ff27e08 (genl_mutex){+.+.}-{4:4}, at: genl_rcv_msg+0x122/0xec0
[  684.114476][   T31]  #2: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x34/0x8c0
[  684.124475][   T31] 2 locks held by syz.1.1709/11606:
[  684.129691][   T31]  #0: ffffffff8ff27f50 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  684.137989][   T31]  #1: ffffffff8ff27e08 (genl_mutex){+.+.}-{4:4}, at: genl_rcv_msg+0x122/0xec0
[  684.147082][   T31] 2 locks held by syz.1.1709/11608:
[  684.152326][   T31]  #0: ffffffff8ff27f50 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  684.160602][   T31]  #1: ffffffff8ff27e08 (genl_mutex){+.+.}-{4:4}, at: genl_rcv_msg+0x122/0xec0
[  684.169633][   T31] 2 locks held by syz.5.1711/11614:
[  684.174859][   T31]  #0: ffffffff8ff27f50 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  684.183158][   T31]  #1: ffffffff8ff27e08 (genl_mutex){+.+.}-{4:4}, at: genl_rcv_msg+0x122/0xec0
[  684.192248][   T31] 2 locks held by syz-executor/11617:
[  684.197642][   T31]  #0: ffff88802b10f918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6b0
[  684.207699][   T31]  #1: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x34/0x8c0
[  684.217717][   T31] 2 locks held by syz-executor/11619:
[  684.223338][   T31]  #0: ffff88802b108918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6b0
[  684.233423][   T31]  #1: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x34/0x8c0
[  684.243459][   T31] 2 locks held by syz-executor/11621:
[  684.248844][   T31]  #0: ffff888030ae7918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6b0
[  684.259060][   T31]  #1: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x34/0x8c0
[  684.269042][   T31] 2 locks held by syz-executor/11624:
[  684.274438][   T31]  #0: ffff88807f9ba118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6b0
[  684.284631][   T31]  #1: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x34/0x8c0
[  684.294715][   T31] 2 locks held by syz-executor/11626:
[  684.300161][   T31]  #0: ffff88807afe9918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6b0
[  684.310304][   T31]  #1: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x34/0x8c0
[  684.320325][   T31] 2 locks held by syz-executor/11630:
[  684.325715][   T31]  #0: ffff88807f221118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6b0
[  684.336068][   T31]  #1: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x34/0x8c0
[  684.346122][   T31] 2 locks held by syz-executor/11633:
[  684.351541][   T31]  #0: ffff888027cba118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6b0
[  684.361651][   T31]  #1: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x34/0x8c0
[  684.371673][   T31] 2 locks held by syz-executor/11636:
[  684.377054][   T31]  #0: ffff88805c062918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6b0
[  684.387138][   T31]  #1: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x34/0x8c0
[  684.397181][   T31] 2 locks held by syz-executor/11640:
[  684.402629][   T31]  #0: ffff88802856f118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6b0
[  684.412768][   T31]  #1: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x34/0x8c0
[  684.422797][   T31] 2 locks held by syz-executor/11642:
[  684.428178][   T31]  #0: ffff888028665118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6b0
[  684.438230][   T31]  #1: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x34/0x8c0
[  684.448349][   T31] 2 locks held by syz-executor/11648:
[  684.453792][   T31]  #0: ffff888034ab7918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6b0
[  684.463902][   T31]  #1: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x34/0x8c0
[  684.473933][   T31] 2 locks held by syz-executor/11651:
[  684.479312][   T31]  #0: ffff88807f222118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6b0
[  684.489397][   T31]  #1: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x34/0x8c0
[  684.499475][   T31] 2 locks held by syz-executor/11653:
[  684.504912][   T31]  #0: ffff88804d594118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6b0
[  684.515028][   T31]  #1: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x34/0x8c0
[  684.525210][   T31] 2 locks held by syz-executor/11656:
[  684.530656][   T31]  #0: ffff88804d596118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6b0
[  684.540865][   T31]  #1: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x34/0x8c0
[  684.551199][   T31] 2 locks held by syz-executor/11658:
[  684.556597][   T31]  #0: ffff888051300118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6b0
[  684.566664][   T31]  #1: ffffffff9019d5e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x34/0x8c0
[  684.577350][   T31] 
[  684.579695][   T31] =============================================
[  684.579695][   T31] 
[  684.588513][   T31] NMI backtrace for cpu 1
[  684.588528][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  684.588549][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  684.588560][   T31] Call Trace:
[  684.588567][   T31]  <TASK>
[  684.588574][   T31]  dump_stack_lvl+0x241/0x360
[  684.588599][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  684.588618][   T31]  ? __pfx__printk+0x10/0x10
[  684.588657][   T31]  nmi_cpu_backtrace+0x49c/0x4d0
[  684.588688][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  684.588710][   T31]  ? _printk+0xd5/0x120
[  684.588736][   T31]  ? __pfx__printk+0x10/0x10
[  684.588762][   T31]  ? __wake_up_klogd+0xcc/0x110
[  684.588786][   T31]  ? __pfx__printk+0x10/0x10
[  684.588815][   T31]  ? __rcu_read_unlock+0xa1/0x110
[  684.588842][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  684.588867][   T31]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  684.588895][   T31]  watchdog+0x1058/0x10a0
[  684.588923][   T31]  ? watchdog+0x1ea/0x10a0
[  684.588953][   T31]  ? __pfx_watchdog+0x10/0x10
[  684.588980][   T31]  kthread+0x7a9/0x920
[  684.589017][   T31]  ? __pfx_kthread+0x10/0x10
[  684.589045][   T31]  ? __pfx_watchdog+0x10/0x10
[  684.589072][   T31]  ? __pfx_kthread+0x10/0x10
[  684.589097][   T31]  ? __pfx_kthread+0x10/0x10
[  684.589126][   T31]  ? __pfx_kthread+0x10/0x10
[  684.589151][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  684.589176][   T31]  ? lockdep_hardirqs_on+0x99/0x150
[  684.589202][   T31]  ? __pfx_kthread+0x10/0x10
[  684.589230][   T31]  ret_from_fork+0x4b/0x80
[  684.589253][   T31]  ? __pfx_kthread+0x10/0x10
[  684.589280][   T31]  ret_from_fork_asm+0x1a/0x30
[  684.589325][   T31]  </TASK>
[  684.589332][   T31] Sending NMI from CPU 1 to CPUs 0:
[  684.758550][    C0] NMI backtrace for cpu 0 skipped: idling at acpi_safe_halt+0x21/0x30
[  684.768331][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  684.775188][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.14.0-rc7-syzkaller-00137-g5fc319360819 #0
[  684.785806][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  684.795881][   T31] Call Trace:
[  684.799165][   T31]  <TASK>
[  684.802105][   T31]  dump_stack_lvl+0x241/0x360
[  684.806802][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  684.812007][   T31]  ? __pfx__printk+0x10/0x10
[  684.816612][   T31]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  684.822613][   T31]  ? vscnprintf+0x5d/0x90
[  684.826954][   T31]  panic+0x349/0x880
[  684.830868][   T31]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  684.837032][   T31]  ? __pfx_panic+0x10/0x10
[  684.841461][   T31]  ? preempt_schedule_thunk+0x1a/0x30
[  684.846843][   T31]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  684.853001][   T31]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  684.859162][   T31]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  684.865321][   T31]  watchdog+0x1097/0x10a0
[  684.869658][   T31]  ? watchdog+0x1ea/0x10a0
[  684.874078][   T31]  ? __pfx_watchdog+0x10/0x10
[  684.878763][   T31]  kthread+0x7a9/0x920
[  684.882842][   T31]  ? __pfx_kthread+0x10/0x10
[  684.887447][   T31]  ? __pfx_watchdog+0x10/0x10
[  684.892136][   T31]  ? __pfx_kthread+0x10/0x10
[  684.896733][   T31]  ? __pfx_kthread+0x10/0x10
[  684.901341][   T31]  ? __pfx_kthread+0x10/0x10
[  684.905940][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  684.911146][   T31]  ? lockdep_hardirqs_on+0x99/0x150
[  684.916356][   T31]  ? __pfx_kthread+0x10/0x10
[  684.920954][   T31]  ret_from_fork+0x4b/0x80
[  684.925392][   T31]  ? __pfx_kthread+0x10/0x10
[  684.929992][   T31]  ret_from_fork_asm+0x1a/0x30
[  684.934793][   T31]  </TASK>
[  684.938205][   T31] Kernel Offset: disabled
[  684.942554][   T31] Rebooting in 86400 seconds..