last executing test programs:

7m21.569522293s ago: executing program 3 (id=75):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ICV_LEN={0x5, 0x3, 0x10}]}}}]}, 0x3c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000580)={'team0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000800)=@newqdisc={0x34, 0x24, 0xd0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xf}, {0xffff, 0xffff}, {0x0, 0xe}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x8100000018000000}, 0x20004010)

7m21.506110357s ago: executing program 3 (id=76):
r0 = socket$igmp(0x2, 0x3, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r1, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000180)='\x00', 0x1}], 0x1}}], 0x1, 0x0)
r2 = syz_io_uring_setup(0x200000d1, &(0x7f0000000480)={0x0, 0x0, 0x400, 0x0, 0x338}, &(0x7f0000000080)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r5 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r5, &(0x7f0000000580)=[{&(0x7f0000000040)=@in={0x2, 0x0, @dev}, 0x10, &(0x7f0000000400)=[{&(0x7f0000000380)="b9", 0x1}], 0x1, &(0x7f0000000540)=[@prinfo={0x18}], 0x18}], 0x1, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x8, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000240)=[{&(0x7f0000001800)=""/224, 0xe0}], 0x1})
io_uring_enter(r2, 0x47ba, 0x0, 0x0, 0x0, 0x0)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
syz_emit_ethernet(0x2e, &(0x7f0000002140)={@multicast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x11, 0x0, @broadcast, @multicast1=0xe000c800}, {0x4, 0x0, 0xc, 0x0, @gue={{0x1, 0x1, 0x3, 0x7, 0x0, @void}}}}}}}, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x100010, r2, 0x10000000)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x949902, 0x0)
r6 = syz_usb_connect(0x3, 0x2d, &(0x7f00000003c0)={{0x12, 0x1, 0x0, 0x5a, 0xe4, 0xc4, 0x10, 0x596, 0x1, 0x5f5, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0xd6, 0x0, 0x1, 0xb5, 0xe1, 0x45, 0x0, [], [{{0x9, 0x5, 0x83, 0x0, 0x3ff, 0x3, 0x7, 0x4}}]}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ncm(r6, 0x0, &(0x7f0000000c80)={0x44, &(0x7f0000000a00)={0x40, 0x0, 0x10, "467b727d89e87f94d14d056d359a6db6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r6, 0x0, 0x0)

7m18.431842665s ago: executing program 3 (id=85):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="680000000206011e0000000000000000000000000e0003006269746d61703a697000000005000400000000000900020073797a300000000020000780050003001c0000000c000180080001400800000005001400200000000500050002000000050001"], 0x68}}, 0x0) (fail_nth: 9)

7m17.906039031s ago: executing program 3 (id=88):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0}, 0x0)
io_setup(0x9, &(0x7f0000000080))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000240)={0x2000000f})
readv(0xffffffffffffffff, &(0x7f0000000500)=[{&(0x7f0000000380)=""/82, 0x52}], 0x1)
write$eventfd(0xffffffffffffffff, &(0x7f0000000280)=0x9, 0x8)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCGPTPEER(r2, 0x80045439, 0x5c6)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000001200)={0x84, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x20, 0x0, 0x4, {0x1}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)

7m14.442408522s ago: executing program 3 (id=102):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = epoll_create1(0x99344c68e635bb3)
dup3(r0, r0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000200)=0x10)
inotify_add_watch(r2, &(0x7f0000000300)='./file0\x00', 0x6a)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/10, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/16], 0x48)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='blkio.bfq.io_serviced\x00', 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x22, &(0x7f0000000740)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [@ldst={0x3, 0x0, 0x2, 0x7, 0x9, 0x18}, @ldst={0x1, 0x1, 0x4, 0x9, 0x4, 0x0, 0x10}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r6}}, @initr0={0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x6}, @ldst={0x3, 0x1, 0x4, 0x1, 0x1, 0x8, 0x10}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffb}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1ff}}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000009c010000090a01040000000000000000070000043c0109804800028044000180080001400012a00008000140000000050800014000000009080001400000000240000140fffffffb0800014000000002080001400000000f0800014080000001d8000280440001800800014000000006080001407fffffff08000140000000010800014000000005080001400000080008000140ffffffff080001400000031808000140000000000c00018008000140000000921c0001800800014000000003080001400000000008000140000000272400018008000140000000090800014000000000080001400000a77808000140fffffff8440001800800014000008c080800014000000003080001400000000008000140fffffffe0800014000000008080001400000000208000140000000060800014000000007080001400000000b08000140000003eb08000140000000080900020073797a31000000000900010073797a300000000008000540000000212c0011800a0001006c696d69740000001c0002800c00024000000000000000030c000140000000000000010164000000080a05000000000000000000050000072c0007403d71b32682bb15897c01d4fa66a8175e9872e4cc0d9b3832de08e08e24df369ec0a31c82067f6a310900020073797a31040000000000000000000001040005800900020073797a30000000001c000000080a01020000000000000000020000020400048004000480140000001000010000000000000000000084000a"], 0x264}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x2d)
r9 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r10 = memfd_create(&(0x7f0000000540)='y\x105\xfb\xf7u\x83%\x1f\xe09@:r\xc2\xb9x0\x90P\x03\x00\x00\x00\x00\x00\x00\x00\xfe,\x1c\xf1\xdd\xcf]\xac\xbc\t\xbb\xfc\xa4j\x9f\xceX\x8f5=\xaa\xd5\xe9n\xab s\xa5\x00\x8d\tV\t\x91\x18\x06O\xb0=D\xda\xb6F\x1a\xc82\x8b\xc0l\xd0\x89d\xe6\xb7\xd8\x97\xb8\xde\xa3\x89\"%/u\x17\xdam\x8d\x01Lh\x1e^\x9ej\x1c\xc5\xf0\xf6\x92\x05\x9aH\x00\'\xd4\x94d[\v\xfc\xad\x0f\xa8\xc5\xad\x001\x8b%\xaa?\x00\x00\x00\x00\x00\x00\x00\nj\x8c\xef\x90\xc0Z\xfa\x1a\xb3\xf0wVq\xe9d\xf8N\x80\xd1g\xd8e\xc8\x16\xad1\x02\xab\xce3\xb2\xb0\xd1\x11\xf0\xc2Gj+kV', 0x2)
ftruncate(r10, 0xfbff)
ioctl$UDMABUF_CREATE(r9, 0x40187542, &(0x7f0000000280)={r10, 0x0, 0x1000, 0x100000000})
r11 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$inet6(r11, &(0x7f0000000500)={&(0x7f0000000140)={0xa, 0x4e20, 0x721, @private0, 0x2}, 0x1c, 0x0, 0x0, &(0x7f0000000340)=[@pktinfo={{0x20, 0x29, 0x43, {@loopback}}}], 0x20}, 0x4800)
fcntl$addseals(r10, 0x409, 0x7)
r12 = ioctl$UDMABUF_CREATE(r9, 0x40187542, &(0x7f0000000000)={r10, 0x0, 0x0, 0x4000})
ioctl$DMA_BUF_IOCTL_SYNC(r12, 0x40086200, &(0x7f0000000440)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf20000000000000160005003f1b48013d030100000000009500000000000000bc26000000000000bf67000000000000070600000fff07006702000003000000360600000ee600f0bf052000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a83683d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf5fe7030586"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

7m11.582380866s ago: executing program 3 (id=111):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x44f, 0xb65d, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_connect$cdc_ecm(0x0, 0x75, &(0x7f00000000c0)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x63, 0x1, 0x1, 0x0, 0x80, 0x1, [{{0x9, 0x4, 0x0, 0x91, 0x3, 0x2, 0x6, 0x0, 0x0, {{0x8, 0x24, 0x6, 0x0, 0x0, "879a7b"}, {0x5, 0x24, 0x0, 0x1}, {0xd, 0x24, 0xf, 0x1, 0x8, 0xfffd, 0x1, 0x2}, [@network_terminal={0x7, 0x24, 0xa, 0x5, 0x1, 0x6, 0x9}, @call_mgmt={0x5, 0x24, 0x1, 0x2, 0x1}, @obex={0x5}, @obex={0x5, 0x24, 0x15, 0x1}, @ncm={0x6, 0x24, 0x1a, 0x6, 0x19}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x40, 0x8, 0xd, 0x6}}], {{0x9, 0x5, 0x82, 0x2, 0x200, 0x8, 0x8, 0x5}}, {{0x9, 0x5, 0x3, 0x2, 0x40, 0x5, 0xaf}}}}}]}}]}}, &(0x7f0000000780)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x200, 0xe, 0xf1, 0x32, 0x40, 0x40}, 0x16b, &(0x7f0000000140)={0x5, 0xf, 0x16b, 0x5, [@generic={0x67, 0x10, 0xb, "5d017785799e2e45680ce65afbd319deffff054cbce162b706425f478ce4b7b89142a1c3495f22608ff3189c2c0b56e1180a01ce5e5ee2b2208453fee52b7fbff52bfabff57731cca294937c7a1342e0b757e2b0221ba22fc0735aae28f0256fa9b2259a"}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x0, 0x69, 0x4, 0x8}, @ss_container_id={0x14, 0x10, 0x4, 0x4, "1cf74ce9a5fb23ddcc26647f5ea1127e"}, @ssp_cap={0x24, 0x10, 0xa, 0x6, 0x6, 0x6, 0x0, 0x8, [0x3f00, 0xff3ff0, 0x4100, 0xc050, 0xc03f, 0x3fff]}, @generic={0xbd, 0x10, 0x3, "7ccd0c0207c7380b6cb0b4afb90fb31c8064f3fb28a14304ee7b04d47db6f218a33529b6c9c9d228a7af43d3b3f88549b5c2bbf42a3ac4083a14df10d0018b3000c82d21dd173731860789a80d79cbca1687105cb552e029ed1381ff7c37f2069c2cf8f333e75600ef731d7700d173ad6dd6580ad5955826647998a06fa539ed9326902e00c3cb2b219dfb0a86e92c9490b0bd14ab9285b6d37c9843b1077582b5be28d3238fb78d74bddac26f7a61e6db319b545a441a5cde31"}]}, 0x7, [{0xd4, &(0x7f00000002c0)=@string={0xd4, 0x3, "92f64b13a535b3077efe1429ecceb295eed94997522810de78d3c7a3bb65ffc59b4404eee1ae11d0e2e30da879be7d1ae3036c8443481d09fb4332d13401e61a3dc2896c55eaec26d0b2fb4a74eb96ed8572985619e1bccad87d19b25db9a5d9a8c9fb5a056a42782b4db1e504ab5d4b2a675f62f5dd2cb7ec52b43c15c76574d012c4337aa3d9f24da320c66bcbd4a50e00c7336d99f999e98c49e8f0995d8383a7cab11ffeb2038a7c079a9ba94248e8b536f9c1924539b20ff87175e6fdf36c620253c9cb0d89f2070e2b1ceab97bcd4b"}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x812}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x410}}, {0xba, &(0x7f0000000600)=@string={0xba, 0x3, "e3ae13c3e665b18c386c26bb66469d626542f902c82350428d1a313dc65ae8529e7052910401d954bdee700cbc563408ca56ed28c1ded47ea303e83df42f50d1b648cde99b1049d897c18cdbbf54fdc2301f76494c31892dc9b709bf11ec83858c964bd70732ded05b5c1295f0e6a02cceae645a64da2c3f1c101e4528a8df7a78039fbf432f04b8593c04fcf985e8fc7983c2454438fe4513b61c6c4fc1814a4a357f3d3678cf79d2f386e2ba170c7b79a16ea6eb729a71"}}, {0x4, &(0x7f00000006c0)=@lang_id={0x4, 0x3, 0x42d}}, {0x4, &(0x7f0000000700)=@lang_id={0x4, 0x3, 0x443}}, {0x4, &(0x7f0000000740)=@lang_id={0x4, 0x3, 0x415}}]})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000b80)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0x0, "825ee50e"}]}}, 0x0}, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000580)={0x44, &(0x7f0000000280)=ANY=[], 0x0, 0x0, &(0x7f0000000440)={0x20, 0x80, 0x1c, {0xa, 0x5, 0x4, 0xfff9, 0xb4f, 0x2, 0x8, 0xe, 0x6, 0x3, 0x6, 0x3cd2}}, &(0x7f0000000480)={0x20, 0x85, 0x4, 0x8}, &(0x7f00000004c0)={0x20, 0x83, 0x2, 0x1}, &(0x7f0000000500)={0x20, 0x87, 0x2}, &(0x7f0000000540)={0x20, 0x89, 0x2}})

6m57.673679059s ago: executing program 4 (id=163):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800"/11], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x48140, 0x0)
acct(&(0x7f0000000040)='\xe9\x1fq\x89Y\x1e\x923aK\x00')
acct(0x0)

6m57.0647846s ago: executing program 4 (id=165):
syz_open_dev$cec(&(0x7f0000000080), 0x0, 0xaf80)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$gtp(&(0x7f0000000040), 0xffffffffffffffff)
getsockopt$MRT(0xffffffffffffffff, 0x0, 0xcf, &(0x7f0000000100), &(0x7f0000000140)=0x4)
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000280), 0xb, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r2})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0xb5})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000080)={0x0, 0x0, <r3=>0xffffffffffffffff})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r3})

6m56.985734805s ago: executing program 4 (id=166):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0x202, 0x0)
fanotify_mark(r1, 0x1, 0x4800003e, r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x2000000, &(0x7f0000000140)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x40240, 0x0)
read$FUSE(r2, &(0x7f0000001a40)={0x2020}, 0x2020)

6m56.169217114s ago: executing program 32 (id=111):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x44f, 0xb65d, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_connect$cdc_ecm(0x0, 0x75, &(0x7f00000000c0)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x63, 0x1, 0x1, 0x0, 0x80, 0x1, [{{0x9, 0x4, 0x0, 0x91, 0x3, 0x2, 0x6, 0x0, 0x0, {{0x8, 0x24, 0x6, 0x0, 0x0, "879a7b"}, {0x5, 0x24, 0x0, 0x1}, {0xd, 0x24, 0xf, 0x1, 0x8, 0xfffd, 0x1, 0x2}, [@network_terminal={0x7, 0x24, 0xa, 0x5, 0x1, 0x6, 0x9}, @call_mgmt={0x5, 0x24, 0x1, 0x2, 0x1}, @obex={0x5}, @obex={0x5, 0x24, 0x15, 0x1}, @ncm={0x6, 0x24, 0x1a, 0x6, 0x19}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x40, 0x8, 0xd, 0x6}}], {{0x9, 0x5, 0x82, 0x2, 0x200, 0x8, 0x8, 0x5}}, {{0x9, 0x5, 0x3, 0x2, 0x40, 0x5, 0xaf}}}}}]}}]}}, &(0x7f0000000780)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x200, 0xe, 0xf1, 0x32, 0x40, 0x40}, 0x16b, &(0x7f0000000140)={0x5, 0xf, 0x16b, 0x5, [@generic={0x67, 0x10, 0xb, "5d017785799e2e45680ce65afbd319deffff054cbce162b706425f478ce4b7b89142a1c3495f22608ff3189c2c0b56e1180a01ce5e5ee2b2208453fee52b7fbff52bfabff57731cca294937c7a1342e0b757e2b0221ba22fc0735aae28f0256fa9b2259a"}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x0, 0x69, 0x4, 0x8}, @ss_container_id={0x14, 0x10, 0x4, 0x4, "1cf74ce9a5fb23ddcc26647f5ea1127e"}, @ssp_cap={0x24, 0x10, 0xa, 0x6, 0x6, 0x6, 0x0, 0x8, [0x3f00, 0xff3ff0, 0x4100, 0xc050, 0xc03f, 0x3fff]}, @generic={0xbd, 0x10, 0x3, "7ccd0c0207c7380b6cb0b4afb90fb31c8064f3fb28a14304ee7b04d47db6f218a33529b6c9c9d228a7af43d3b3f88549b5c2bbf42a3ac4083a14df10d0018b3000c82d21dd173731860789a80d79cbca1687105cb552e029ed1381ff7c37f2069c2cf8f333e75600ef731d7700d173ad6dd6580ad5955826647998a06fa539ed9326902e00c3cb2b219dfb0a86e92c9490b0bd14ab9285b6d37c9843b1077582b5be28d3238fb78d74bddac26f7a61e6db319b545a441a5cde31"}]}, 0x7, [{0xd4, &(0x7f00000002c0)=@string={0xd4, 0x3, "92f64b13a535b3077efe1429ecceb295eed94997522810de78d3c7a3bb65ffc59b4404eee1ae11d0e2e30da879be7d1ae3036c8443481d09fb4332d13401e61a3dc2896c55eaec26d0b2fb4a74eb96ed8572985619e1bccad87d19b25db9a5d9a8c9fb5a056a42782b4db1e504ab5d4b2a675f62f5dd2cb7ec52b43c15c76574d012c4337aa3d9f24da320c66bcbd4a50e00c7336d99f999e98c49e8f0995d8383a7cab11ffeb2038a7c079a9ba94248e8b536f9c1924539b20ff87175e6fdf36c620253c9cb0d89f2070e2b1ceab97bcd4b"}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x812}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x410}}, {0xba, &(0x7f0000000600)=@string={0xba, 0x3, "e3ae13c3e665b18c386c26bb66469d626542f902c82350428d1a313dc65ae8529e7052910401d954bdee700cbc563408ca56ed28c1ded47ea303e83df42f50d1b648cde99b1049d897c18cdbbf54fdc2301f76494c31892dc9b709bf11ec83858c964bd70732ded05b5c1295f0e6a02cceae645a64da2c3f1c101e4528a8df7a78039fbf432f04b8593c04fcf985e8fc7983c2454438fe4513b61c6c4fc1814a4a357f3d3678cf79d2f386e2ba170c7b79a16ea6eb729a71"}}, {0x4, &(0x7f00000006c0)=@lang_id={0x4, 0x3, 0x42d}}, {0x4, &(0x7f0000000700)=@lang_id={0x4, 0x3, 0x443}}, {0x4, &(0x7f0000000740)=@lang_id={0x4, 0x3, 0x415}}]})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000b80)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0x0, "825ee50e"}]}}, 0x0}, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000580)={0x44, &(0x7f0000000280)=ANY=[], 0x0, 0x0, &(0x7f0000000440)={0x20, 0x80, 0x1c, {0xa, 0x5, 0x4, 0xfff9, 0xb4f, 0x2, 0x8, 0xe, 0x6, 0x3, 0x6, 0x3cd2}}, &(0x7f0000000480)={0x20, 0x85, 0x4, 0x8}, &(0x7f00000004c0)={0x20, 0x83, 0x2, 0x1}, &(0x7f0000000500)={0x20, 0x87, 0x2}, &(0x7f0000000540)={0x20, 0x89, 0x2}})

6m56.052322543s ago: executing program 4 (id=171):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
chroot(&(0x7f0000000180)='./file0\x00')
mount(0x0, &(0x7f0000000400)='./file0/../file0\x00', &(0x7f0000000340)='devpts\x00', 0x0, 0x0)
chroot(&(0x7f0000000040)='./file0/../file0/../file0\x00')
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000100)='./file0\x00')
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/../file0/../file0\x00', 0x102000, 0xce)
getdents64(r0, &(0x7f0000001f80)=""/4073, 0xfe9)

6m55.533638712s ago: executing program 4 (id=173):
r0 = syz_open_dev$swradio(&(0x7f0000000040), 0x1, 0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000340)=ANY=[@ANYBLOB="1201000016038308c5109a8146e40102230109022d0001000000000904000003030000000905be3b"], 0x0)
syz_usb_control_io(r1, 0x0, &(0x7f0000000000)={0x84, &(0x7f0000000200)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r1, 0x0, &(0x7f0000000380)={0x2c, 0x0, 0x0, 0x0, &(0x7f0000000240)={0x20, 0x1, 0x8f, "47e4ed61c9f41661260e9051d2da51d22db6b44d4c7c4632d877f767fe18dcfab42f7865d3f8efb87ce3ee6bf792ea982959914cc8f1c77eceafa3af6cb86078d2c47feb223e608f793f2b6eb68383caeb7086ca0da54aed8f7358c78c757b9352e9753358daa2e4f620cf45f7e99cb98b010d91111538d0ad9664f627d113b4b2f2e83841f502df36b563b835f3c5"}, 0x0})
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x5)
ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000080)={0x0, 0x4, 0x8000000})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)={0x20, 0x7, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x20}}, 0x0)
getpid()
r3 = socket(0x11, 0xa, 0x0)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000000)=@unlock_all, 0x7)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xa, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x3, 0x3, 0x0, 0x1, 0xd}]}, &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$can_bcm(r3, &(0x7f0000000140)={&(0x7f0000000000), 0x10, &(0x7f0000000040)={0x0}, 0x8, 0x0, 0x0, 0x880}, 0x40800c4)
syz_usb_control_io$uac1(r1, &(0x7f0000000300)={0x14, &(0x7f0000000180)={0x20, 0x24, 0x5f, {0x5f, 0x5, "5371f3a79082ab50b132495785ab90899a03e85340c1fd4b818fd99afee3ac06e0a2288e87a53a1c0979d4e40601571a43f9c4d01e101b5e90c0dfaa869a6201beaa290b8162e881f610a3682747bc00abe2f28a82fa830cd6a34d3034"}}, &(0x7f00000003c0)={0x0, 0x3, 0x7e, @string={0x7e, 0x3, "6f96172afbc9ecdacf429de70f79d3f250e65efadae564b8a4684fe415360af7a7a7ef7b6fd8b28f4c9f76dd32bf968f845c1ce069df3fd04be1085d1e0177a41de9673c618684cb6d324b04948c0a57308051eaf6e57a1cdad8644c022f48f778910f24127f5c23eb3e285aa51b65bf8f4f52b24dd8da309d75f367"}}}, &(0x7f0000000740)={0x44, &(0x7f0000000480)={0x20, 0x13, 0xdb, "f01e224427fb49980dfe54f3812498d03577905d277b915f40f7d9c9c32387f237ff0f338b3a138388c9f64aaa13b177d90ec0809f757792722bbbe70b02f7e8fb32fab44a937e6f4b6ad20e9eacf529b75036e1b0a31bba55641f7ab95641e86c94dc88e07269be9c02541751cb91675bce7d3fd240893bceaa54ee94bda44db4a3e7d7c2202216a6740e8c2b4baf597e843fa13492e41274641009c4470783b6e22dcc0c2d7764ba0da0bf61c6ab07416392db8063b3f7fb7d58bb51e35f0410f240cf95eb427b5d2ce9d0dbe27377558d961c0581a7c196b148"}, &(0x7f0000000580)={0x0, 0xa, 0x1, 0x4}, &(0x7f00000005c0)={0x0, 0x8, 0x1, 0xe7}, &(0x7f0000000600)={0x20, 0x81, 0x1, '\r'}, &(0x7f0000000640)={0x20, 0x82, 0x2, "b52a"}, &(0x7f0000000680)={0x20, 0x83, 0x1, "13"}, &(0x7f00000006c0)={0x20, 0x84, 0x4, "65774813"}, &(0x7f0000000700)={0x20, 0x85, 0x3, "3d1194"}})

6m54.930298084s ago: executing program 0 (id=177):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000002400000024000000020000000000000001000084040000000000000002"], 0x0, 0x3e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000d80)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000000000000000c00000002000000002000000000001304000080"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
modify_ldt$write(0x1, &(0x7f00000004c0)={0x403, 0x20000800, 0x4000}, 0x10)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_SIZE(r2, 0x5760, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000004200080028bd7000fddbdf2400000000"], 0x14}, 0x1, 0x0, 0x0, 0x20008881}, 0x40005)
timer_create(0x0, 0x0, &(0x7f00000002c0))
r3 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
migrate_pages(0x0, 0x2, &(0x7f0000000440)=0xd33, &(0x7f0000000480))
r4 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_MOVE(0x1e, r3, 0xfffffffffffffffb, r4, 0x0)
syz_clone(0x20001000, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_dev$vbi(&(0x7f0000000180), 0x3, 0x2)
ioctl$VIDIOC_S_DV_TIMINGS(r5, 0xc0845657, &(0x7f0000000380)={0x0, @bt={0x2d0, 0x7c5, 0x1, 0x2, 0xd59f80, 0x42c, 0x5, 0xb, 0x7fffffff, 0x5, 0x80, 0xe72, 0xb0c, 0x9, 0x35, 0x27, {0x6fc, 0x8001}, 0x3, 0xed}})
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8936, &(0x7f0000000000)={'nicvf0\x00', 0x0})
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCFLSH(0xffffffffffffffff, 0x404c4701, 0x20000000)
socket$inet_icmp_raw(0x2, 0x3, 0x1)

6m54.878249844s ago: executing program 4 (id=178):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = dup(r1)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r4 = dup(r3)
sendfile(r4, r2, 0x0, 0x89ffc)

6m54.681353245s ago: executing program 33 (id=178):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = dup(r1)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r4 = dup(r3)
sendfile(r4, r2, 0x0, 0x89ffc)

6m54.20753508s ago: executing program 0 (id=181):
r0 = socket$kcm(0x2, 0x3, 0x84)
sendmsg$inet(r0, &(0x7f00000009c0)={&(0x7f0000000240)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000000880)=[{&(0x7f00000000c0)="823be7271019b3fe048765ad05be33fc", 0x10}], 0x1, &(0x7f0000000940)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x27}}}}], 0x20}, 0x0)
sendmsg$inet(r0, &(0x7f0000000780)={&(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10, 0x0, 0x0, &(0x7f0000000640)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @broadcast, @rand_addr=0x64010102}}}, @ip_retopts={{0x48, 0x0, 0x7, {[@cipso={0x86, 0x13, 0x3, [{0x2, 0x4, "0fdf"}, {0x2, 0x9, "857ce2b6537278"}]}, @generic={0x7, 0x4, "1976"}, @timestamp={0x44, 0x20, 0x55, 0x0, 0x8, [0x1000, 0x2, 0x1, 0x6, 0xeb89, 0x4, 0x0]}, @end]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x6139}}, @ip_retopts={{0x10}}, @ip_ttl={{0x14, 0x0, 0x2, 0x6}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x1b71dc66}}], 0xe0}, 0x804)

6m54.109465517s ago: executing program 0 (id=182):
syz_open_dev$I2C(&(0x7f0000000100), 0xa, 0x48000)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
ioperm(0x1, 0xfffffffffffffffc, 0x1)
syz_init_net_socket$ax25(0x3, 0x5, 0xcd)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
connect$packet(r1, &(0x7f0000000200)={0x1f, 0xf8, 0x0, 0x1, 0x2}, 0x14)
add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)="ae", 0x1, 0xffffffffffffffff)

6m53.217740762s ago: executing program 0 (id=183):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
chroot(&(0x7f0000000180)='./file0\x00')
mount(0x0, &(0x7f0000000400)='./file0/../file0\x00', &(0x7f0000000340)='devpts\x00', 0x0, 0x0)
chroot(&(0x7f0000000040)='./file0/../file0/../file0\x00')
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000100)='./file0\x00')
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/../file0/../file0\x00', 0x102000, 0xce)
getdents64(r0, &(0x7f0000001f80)=""/4073, 0xfe9)

6m53.041735844s ago: executing program 0 (id=185):
ioperm(0x0, 0x6, 0x13cc)
symlink(&(0x7f0000000040)='.\x00', &(0x7f0000000100)='./file0\x00') (fail_nth: 3)

6m51.632602696s ago: executing program 0 (id=191):
syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
unshare(0x2000400)
r4 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000040)='.log\x00', 0x802442, 0x0)
clock_adjtime(0x0, &(0x7f0000000100)={0x5f0827ee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd571, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$FICLONE(r4, 0x40049409, r4)
syz_open_dev$sndctrl(0x0, 0xfffffffffffffffd, 0x206000)
r5 = socket(0x6, 0x2, 0xffffffff)
recvmmsg(r5, 0x0, 0x0, 0x0, &(0x7f0000003700)={0x77359400})
r6 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=ANY=[@ANYBLOB="0a00000016000000b30000007f00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0100"/28], 0x48)
write$binfmt_elf32(r6, 0x0, 0x0)
unshare(0x20000400)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
getsockopt$inet_mptcp_buf(r7, 0x6, 0x1, 0xfffffffffffffffd, &(0x7f0000000000)=0x2000000)
r8 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x0)
r9 = fcntl$dupfd(r8, 0x406, r8)
ioctl$SCSI_IOCTL_GET_PCI(r9, 0x2284, &(0x7f0000000000))

6m51.389151826s ago: executing program 34 (id=191):
syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
unshare(0x2000400)
r4 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000040)='.log\x00', 0x802442, 0x0)
clock_adjtime(0x0, &(0x7f0000000100)={0x5f0827ee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd571, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$FICLONE(r4, 0x40049409, r4)
syz_open_dev$sndctrl(0x0, 0xfffffffffffffffd, 0x206000)
r5 = socket(0x6, 0x2, 0xffffffff)
recvmmsg(r5, 0x0, 0x0, 0x0, &(0x7f0000003700)={0x77359400})
r6 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=ANY=[@ANYBLOB="0a00000016000000b30000007f00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0100"/28], 0x48)
write$binfmt_elf32(r6, 0x0, 0x0)
unshare(0x20000400)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
getsockopt$inet_mptcp_buf(r7, 0x6, 0x1, 0xfffffffffffffffd, &(0x7f0000000000)=0x2000000)
r8 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x0)
r9 = fcntl$dupfd(r8, 0x406, r8)
ioctl$SCSI_IOCTL_GET_PCI(r9, 0x2284, &(0x7f0000000000))

4m57.308779053s ago: executing program 5 (id=547):
gettid()
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r0, &(0x7f0000000200)=""/209, 0xd1)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='comm\x00')
fchown(r1, 0x0, 0xee01)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000096c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@getchain={0x4c, 0x66, 0x1, 0x70bd28, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x0, 0xb}, {0xffec, 0x7}, {0xffff, 0xb}}, [{0x8, 0xb, 0xfffffff8}, {0x8, 0xb, 0x3}, {0x8, 0xb, 0x3}, {0x8, 0xb, 0xffff1eca}, {0x8, 0xb, 0x41}]}, 0x4c}}, 0x1)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
clock_gettime(0xfffffffffffffff1, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000180)={'wlan1\x00'})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
socket$unix(0x1, 0x2, 0x0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)={0x50, r7, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r8}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}, @NL80211_ATTR_MESH_ID={0xa}]}, 0x50}, 0x1, 0x0, 0x0, 0x91}, 0x24048804)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r9)
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})

4m56.204958985s ago: executing program 5 (id=551):
socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x1000, &(0x7f0000006680))
sched_setscheduler(0x0, 0x1, 0x0)
arch_prctl$ARCH_REQ_XCOMP_GUEST_PERM(0x5005, 0x4000000002004003)
socket$can_bcm(0x1d, 0x2, 0x2)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000380)={0x118, 0x2d, 0x1, 0x0, 0x0, "", [@nested={0x107, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@loopback={0x100000000000000}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f8cd1066030"]}]}, 0x118}], 0x1}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
syz_io_uring_setup(0x23c, 0x0, 0x0, 0x0)
r1 = openat$kvm(0x0, 0x0, 0x10b500, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
syz_usb_connect(0x0, 0xffffffffffffff83, &(0x7f0000000300)=ANY=[@ANYBLOB="12010000cc378d20d1122ec321a1010203010902320001000010000904f6f001ff010906210900000004005b05070905010c00020200"/68], 0x0)
socket$alg(0x26, 0x5, 0x0)
socket(0x25, 0x5, 0x0)
socket$rds(0x15, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$xdp(0x2c, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100))
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
socket(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=r2, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
mount_setattr(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x8800, &(0x7f00000002c0)={0x0, 0x2, 0x20000}, 0x20)

4m52.865726957s ago: executing program 5 (id=560):
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
recvmmsg(r0, &(0x7f00000048c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2300, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0) (async)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0) (async)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$TUNSETSNDBUF(r2, 0x400454d4, &(0x7f0000000180)) (async)
ioctl$TUNSETSNDBUF(r2, 0x400454d4, &(0x7f0000000180))
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x1c, 0x2a, 0xb, 0x0, 0x0, {0x6}, [@nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0x81}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
socket(0x2, 0x80805, 0x0) (async)
socket(0x2, 0x80805, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)={0x40, 0x1, 0x1, 0x201, 0x0, 0x0, {0x2}, [@CTA_TUPLE_REPLY={0x10, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}]}, @CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x400006}, @CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x8}]}, @CTA_STATUS={0x8}]}, 0x40}}, 0x0)

4m52.0625517s ago: executing program 5 (id=564):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
chroot(&(0x7f0000000180)='./file0\x00')
mount(0x0, &(0x7f0000000400)='./file0/../file0\x00', &(0x7f0000000340)='devpts\x00', 0x0, 0x0)
chroot(&(0x7f0000000040)='./file0/../file0/../file0\x00')
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/../file0/../file0\x00', 0x102000, 0xce)
getdents64(r0, &(0x7f0000001f80)=""/4073, 0xfe9)

4m51.065719298s ago: executing program 5 (id=571):
r0 = openat$nvram(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_procfs(0x0, &(0x7f00000021c0)='maps\x00')
socket$nl_generic(0x10, 0x3, 0x10)
read$msr(r0, &(0x7f0000000400)=""/228, 0xe4)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'virt_wifi0\x00', 0xa0})
ioctl(r2, 0x8b2a, &(0x7f0000000040))
pipe(0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0xd0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000000), 0xfffffecc)
r3 = syz_open_dev$I2C(&(0x7f0000000480), 0x0, 0x0)
ioctl$I2C_RDWR(r3, 0x707, &(0x7f0000000240)={&(0x7f0000000180)})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000280)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
membarrier(0x8, 0x0)

4m50.127936944s ago: executing program 5 (id=574):
syz_open_dev$cec(&(0x7f0000000080), 0x0, 0xaf80)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$gtp(&(0x7f0000000040), 0xffffffffffffffff)
getsockopt$MRT(0xffffffffffffffff, 0x0, 0xcf, &(0x7f0000000100), 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000280), 0xb, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r2, <r3=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r1, 0xc06864ce, &(0x7f0000000440)={r3, 0x7, 0x0, 0x0, 0x0, [<r4=>0x0], [0xfd, 0x5, 0x40, 0x10], [0x0, 0x0, 0xa, 0xfffffff5], [0x80000000000bf0, 0x8000000000000, 0xf95000000000, 0x8000]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0xb5})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000080)={r4, 0x0, <r5=>0xffffffffffffffff})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r5})

4m49.808588841s ago: executing program 35 (id=574):
syz_open_dev$cec(&(0x7f0000000080), 0x0, 0xaf80)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$gtp(&(0x7f0000000040), 0xffffffffffffffff)
getsockopt$MRT(0xffffffffffffffff, 0x0, 0xcf, &(0x7f0000000100), 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000280), 0xb, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r2, <r3=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r1, 0xc06864ce, &(0x7f0000000440)={r3, 0x7, 0x0, 0x0, 0x0, [<r4=>0x0], [0xfd, 0x5, 0x40, 0x10], [0x0, 0x0, 0xa, 0xfffffff5], [0x80000000000bf0, 0x8000000000000, 0xf95000000000, 0x8000]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0xb5})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000080)={r4, 0x0, <r5=>0xffffffffffffffff})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r5})

12.944488432s ago: executing program 2 (id=1431):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000140)=0x8, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000000)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x1000007, 0x12, r2, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r3, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
sendmmsg(r3, &(0x7f0000001bc0)=[{{0x0, 0x0, &(0x7f0000000a80)=[{&(0x7f00000009c0)="ef", 0x1}, {&(0x7f0000003080)='.', 0x1}], 0x2}}], 0x1, 0x800)
ioctl$BLKDISCARD(r2, 0x1277, &(0x7f0000000180)=0x7)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f0000000040)={0xc, 0x0, <r5=>0x0})
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r6, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})
ioctl$sock_netdev_private(r6, 0x8943, &(0x7f0000000000))
accept4$x25(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080)=0x12, 0x80000)
r7 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_int(r7, 0x6, 0x24, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r7, &(0x7f0000000380)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
recvmmsg(r7, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000000740)}, 0x500}, {{0x0, 0x0, &(0x7f0000001d80)=[{&(0x7f0000000980)=""/4096, 0x1000}], 0x1}, 0x3}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000001c0)=""/89, 0x59}], 0x1}, 0x800005}], 0x3, 0x40010101, 0x0)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r1, 0x3ba0, &(0x7f0000000080)={0x48, 0x2, r5, 0x0, 0x0, 0x0, 0x0, 0x1})
sendmsg$inet(r1, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0)

11.884133333s ago: executing program 2 (id=1434):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0xe8, 0x0, 0x0)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfecc)
ioctl$KVM_GET_SREGS(r1, 0x8138ae83, &(0x7f0000000180))
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r1, 0x0)
getsockopt$SO_J1939_ERRQUEUE(r0, 0x6b, 0x4, 0x0, &(0x7f0000000040))
prlimit64(0x0, 0xe, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3, &(0x7f0000000080)=0xb, 0x8, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x3)

10.630277251s ago: executing program 2 (id=1445):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x8b}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r2 = socket$inet6(0xa, 0x2, 0x3a)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

9.424068707s ago: executing program 2 (id=1447):
mkdir(&(0x7f00000009c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
mknodat(r0, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
mount$bind(&(0x7f0000000080)='.\x00', 0x0, 0x0, 0x101091, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
unlinkat(r1, &(0x7f0000000280)='./file0\x00', 0x200)

8.521009922s ago: executing program 2 (id=1448):
r0 = socket$igmp(0x2, 0x3, 0x2)
mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000004c0)={0x1ff, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_open_procfs(0x0, 0x0)
pread64(r2, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
r4 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
fremovexattr(r5, &(0x7f0000000000)=@known='system.posix_acl_access\x00')
connect$llc(r4, 0x0, 0x0)
sendmmsg$alg(r3, 0x0, 0x0, 0x0)
syz_emit_vhci(0x0, 0x14)
r6 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r6, 0x0, &(0x7f0000001480))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x2041e, &(0x7f00000002c0)={0x0, 0x124a, 0x100, 0x0, 0x280}, &(0x7f0000ff0000), 0x0)
mlockall(0x7)
r7 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$UFFDIO_WRITEPROTECT(r7, 0xc018aa06, &(0x7f0000000080)={{&(0x7f0000ffe000/0x1000)=nil, 0x1000}, 0x2})
mprotect(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x4)
sendmmsg$sock(r2, &(0x7f0000000180)=[{{0xfffffffffffffffc, 0x0, &(0x7f0000000240)=[{&(0x7f00000014c0)="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", 0x1000}, {&(0x7f00000000c0)="39166f8212cd4166a8e7ad142d40f7b3bc8e433e15c1fc32e2079daaa80dd610baabfdc2b787813c28e65532bbe5cb78669a0b6e3fa00c3889b0fe7c953093c284ba11532034e27dff402c57a41f7a49989fa3405512007a3b4933cbcf0e5c0d4d7d4c5eaa7a6d", 0x67}, {&(0x7f00000024c0)="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", 0x1000}, {&(0x7f0000000340)="c67ba09b5578c1bd71673edd3bafae8c5d5eb88266b37bed0163cb75ddf5601de09e91fe02d2c871bed1029c39374af3695aac5555fd2527ec69d2dc7dc90dec8cfc20889c5bb1d32c50b97aacb7c76d79866441b03d7f26159f30bec48fa81706dfb63c76003ace250a4341ec9a517aaad2358ed164498ed9a4c9e3fd3ff92881608c513271b58982a0e1488722826e932ef90668873613779f021e9e24533123109f182cf9474e3d9c02465de378d4a072", 0xb2}, {&(0x7f0000000500)="61631fbffdbb9f745bbbca7cd47de7d5c15c83ec4d94cfbbc961a228e1c351e722508e4356d6320a5f62a7260f1899b183b38f784af619ec965425864e0c92654acec15ed14d5ab6543559dbef93a41e442eeb6b79cdec29de287ee67742b35900ec8e901f0152aa593e8cc7103c30658fe868f8c26520d93814d4ad068bc19f425a98311c4da17f4d9d707193e1e91bae9598921d8e9b1614946ec79c46c727db1fcc92cc7c1c28e68f5b8ac74170c4346c8e0e512b469802d14076cca0c401ea16db5e9518", 0xc6}, {&(0x7f0000000600)="eb50dfcb7729647e4824a2a4c8f2c54e7e752099e34c1cbf22f59ff12f9f69775e0720f7ce28bf974186e548e3f59ff47d30a7af5711a442735b3749fb0c7bcc2c870bd4f1a883618edc0a5a17eebf58283ec59b9e47020172856ce7ca0409e287fc430e35bfc35cf8f1371bcc74e56cf54a0f77a91dadc8f8f99516e3a994495595b88510", 0x85}, {&(0x7f0000000140)="59adac708b4481", 0x7}], 0x7, &(0x7f0000000440)=[@txtime={{0x18, 0x1, 0x3d, 0x81}}, @timestamping={{0x14, 0x1, 0x25, 0x4}}, @txtime={{0x18, 0x1, 0x3d, 0x7}}, @mark={{0x14, 0x1, 0x24, 0x8000}}], 0x60}}], 0x1, 0x8)
bind$alg(0xffffffffffffffff, &(0x7f00000006c0)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha1-avx2)\x00'}, 0x58)
ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000040)={'veth1_virt_wifi\x00', {0x2, 0x4e22, @rand_addr=0x64010100}})

7.833182243s ago: executing program 2 (id=1449):
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000480)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x3, 0x3f8, 0x1, 0x32, 0x0, 0xfe}, 0x9c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='nr_inodes=M'])
chdir(&(0x7f0000000140)='./file0\x00')
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0)
mknodat(r1, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20004000, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @private2, 0x80}, 0x1c)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0xd, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
chdir(&(0x7f0000000140)='./bus\x00')
unlink(&(0x7f0000000180)='./file1\x00')
open(&(0x7f0000000140)='./file1\x00', 0x10f0c2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0xff, 0x0, 0x7fff7ffc}]})
syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x2042)
close_range(r3, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
io_uring_setup(0x3eaf, &(0x7f0000000100))

7.255655358s ago: executing program 6 (id=1451):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b904000000000000009b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
r4 = syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
write$binfmt_script(r5, &(0x7f00000000c0)={'#! ', './file0'}, 0xf000)
socket$kcm(0x10, 0x8d80ae3734163dee, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.state\x00', 0x26e1, 0x0)
close(r6)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240))
ioctl$SIOCSIFHWADDR(r6, 0x8b26, &(0x7f0000000200)={'wlan1\x00', @random="8dffffff00"})
ioctl$CEC_DQEVENT(r4, 0xc0506107, 0x0)
inotify_init1(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x200000000000000, 0x100}, 0x0, 0x0)

7.186342872s ago: executing program 7 (id=1453):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000003c0)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_PROTO={0x5}]}}}]}, 0x3c}}, 0x0) (fail_nth: 8)

5.835845458s ago: executing program 6 (id=1455):
set_mempolicy(0x3, &(0x7f0000000000)=0x5, 0x8)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x28280000, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)
r0 = shmget(0x3, 0x4000, 0x40, &(0x7f0000bda000/0x4000)=nil)
shmat(r0, &(0x7f0000ffa000/0x3000)=nil, 0x3000)

5.786285895s ago: executing program 7 (id=1457):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
mknodat(r1, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
chdir(&(0x7f00000000c0)='./bus\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000240)='./bus\x00', 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
renameat2(r2, &(0x7f00000001c0)='./file0\x00', r2, &(0x7f0000000200)='./bus/file0\x00', 0x0)
link(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./bus\x00')
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents64(r3, &(0x7f0000000180)=""/92, 0x5c)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff, 0x2}, 0x63)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0x5}]}, 0x10)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f0000000040)="1a", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x20000, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r6, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000002dc0)=ANY=[@ANYBLOB="ec000000", @ANYRES16=r7, @ANYBLOB="01000000000000000000010000000800050001000000140002007767310000000000000000000000000024000300a0cb879a47f5bc644c0e693fa6d031c74a1553b6e901b9ff2f518c78042fb5420800050000000000900008808c20"], 0xec}, 0x1, 0x0, 0x0, 0x4084}, 0x20000010)
r8 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r8, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x110000})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r8, 0x4010ae68, &(0x7f0000000280)={0xf000, 0x10000})
writev(r0, &(0x7f0000000240)=[{&(0x7f0000002740)="1e", 0xfdef}], 0x1)
fchmodat(r1, &(0x7f0000000100)='./file1\x00', 0x4)

5.732730534s ago: executing program 1 (id=1458):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000bc0)=@dellink={0x34, 0x11, 0x1, 0x0, 0x0, {}, [@IFLA_IFNAME={0x14, 0x3, 'macvlan0\x00'}]}, 0x34}}, 0x0)

5.704197208s ago: executing program 6 (id=1459):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0, 0x0, {0x40, 0x4, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x120, 0x6000, 0x0, 0x0, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1}, 0x50)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x1)
ioctl$TIOCGPTPEER(r2, 0x4004092b, 0x8)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x3, &(0x7f0000001300)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x64, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000007c0)={r3, r5, 0x3, 0x0, @val=@perf_event={0x1}}, 0x18)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r6, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1000000, 0xb400, &(0x7f0000000000))
lsm_get_self_attr(0x0, &(0x7f0000000580)={0x0, 0x0, 0x1020, 0x1000, ""/4096}, &(0x7f0000000380)=0x1020, 0x1)
r7 = timerfd_create(0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000400))
timerfd_settime(r7, 0x3, &(0x7f0000000200)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x32600)
r8 = socket(0x15, 0x5, 0x0)
getsockopt(r8, 0x200000000114, 0x2720, 0x0, &(0x7f0000000000))
syz_usb_connect(0x3, 0x3d, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000729158086311000292b80000000109022b0001020000000904a9000220e2c70009058010ff037f790209050e9b"], 0x0)
r9 = creat(&(0x7f0000000540)='./file0\x00', 0x0)
unshare(0x22020400)
fchmod(r9, 0x100)
r10 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$TIOCL_GETKMSGREDIRECT(r10, 0x4b66, &(0x7f0000000000))

5.162616054s ago: executing program 8 (id=1460):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
rt_sigaction(0x1000037, 0x0, 0x0, 0x8, &(0x7f0000000200))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x13, 0x0, 0x7, 0x7, 0x2}}, &(0x7f00000001c0)=""/152, 0x1a, 0x98, 0x1, 0x0, 0x0, @void, @value}, 0x20)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
r1 = accept$inet6(0xffffffffffffffff, 0x0, &(0x7f0000000240))
accept4$inet6(r1, &(0x7f0000000300)={0xa, 0x0, 0x0, @dev}, &(0x7f0000000340)=0x1c, 0x800)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
userfaultfd(0x801)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000300), r3)
sendmsg$NFC_CMD_START_POLL(r4, &(0x7f0000001100)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f0000001040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002dbd7000fbdbdf250600000008000e008000000008000100", @ANYRES32=0x0, @ANYBLOB="08000d0001084000"], 0x2c}, 0x1, 0x0, 0x0, 0x4000880}, 0x4000084)

4.396473568s ago: executing program 1 (id=1461):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x5, &(0x7f0000000340)=ANY=[@ANYBLOB="18020000010000000000000000000000850000001700000085000000d00000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r4, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b904000000000000009b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
r5 = syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
write$binfmt_script(r6, &(0x7f00000000c0)={'#! ', './file0'}, 0xf000)
socket$kcm(0x10, 0x8d80ae3734163dee, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.state\x00', 0x26e1, 0x0)
close(r7)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240))
ioctl$SIOCSIFHWADDR(r7, 0x8b26, &(0x7f0000000200)={'wlan1\x00', @random="8dffffff00"})
ioctl$CEC_DQEVENT(r5, 0xc0506107, 0x0)
inotify_init1(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x200000000000000, 0x100}, 0x0, 0x0)

4.34347003s ago: executing program 8 (id=1462):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x5, &(0x7f0000000340)=ANY=[@ANYBLOB="18020000010000000000000000000000850000001700000085000000d00000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r3, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b904000000000000009b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
write$binfmt_script(r4, &(0x7f00000000c0)={'#! ', './file0'}, 0xf000)

4.121926023s ago: executing program 7 (id=1463):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = socket$kcm(0x11, 0x2, 0x0)
setsockopt$sock_attach_bpf(r2, 0x107, 0x14, &(0x7f0000000000), 0x4)
sendmsg$kcm(r2, &(0x7f00000002c0)={&(0x7f0000000100)=@tipc=@name={0x1e, 0x2, 0x0, {{0x43}}}, 0x80, 0x0}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = socket$xdp(0x2c, 0x3, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
setsockopt$XDP_UMEM_COMPLETION_RING(r5, 0x11b, 0x6, 0x0, 0x0)
setsockopt$XDP_RX_RING(r5, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'batadv_slave_1\x00', <r6=>0x0})
bind$xdp(r5, &(0x7f0000000100)={0x2c, 0x0, r6}, 0x10)
r7 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r8 = fsopen(&(0x7f0000000000)='udf\x00', 0x1)
r9 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r9, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
close(r9)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000540)={{{@in, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x3, 0x2000, 0x5, 0xfffffffffffffffc}, {0x5, 0x1000, 0xfffffffffffffffe}, 0x200}, {{@in=@multicast2, 0x0, 0x32}, 0x0, @in6=@local}}, 0xe8)
r10 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r9, &(0x7f00000000c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x20}}, 0x2, 0x3, 0x2, 0x20000}}, 0x2e)
ioctl$PPPIOCGL2TPSTATS(r10, 0x80487436, &(0x7f0000005280))
fsconfig$FSCONFIG_SET_STRING(r8, 0x1, &(0x7f0000000240)='uid', &(0x7f00000008c0)='-\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
close(r7)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)=@x86={0x7, 0xe9, 0x8, 0x0, 0x401, 0xf, 0x9, 0xc, 0x9, 0x8, 0xc, 0x3, 0x0, 0xb28a, 0x200, 0xf9, 0xf, 0x40, 0x67, '\x00', 0xb, 0x7})
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000600)=ANY=[@ANYBLOB="010000000000000070000040"])

3.333935975s ago: executing program 1 (id=1464):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
epoll_wait(0xffffffffffffffff, &(0x7f0000000040)=[{}], 0x1, 0x400)
r1 = io_uring_setup(0x3eaf, &(0x7f0000000100))
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

1.751103864s ago: executing program 8 (id=1465):
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000040)={0x9, <r0=>0x0}, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001240)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100), 0x10, r0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000000)='./file0\x00')
openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0/file0/..\x00', &(0x7f0000000240)={0x0, 0x0, 0x8}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x1f2f, 0xf, 0x3ce, &(0x7f00000007c0)="9f44948721919580684010a40800", 0x0, 0x241, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39"}, 0x23)

1.747522772s ago: executing program 6 (id=1466):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x24000000)

1.519751574s ago: executing program 7 (id=1467):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001240)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x14)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x1f2f, 0xf, 0x3ce, &(0x7f00000007c0)="9f44948721919580684010a40800", 0x0, 0x241, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39"}, 0x23) (fail_nth: 8)

1.497769956s ago: executing program 8 (id=1468):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
memfd_secret(0x80000)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x30)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f0000000300), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
lseek(0xffffffffffffffff, 0x0, 0x4)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x44080)
r1 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0xfad6}, &(0x7f0000000240)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xb59, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0xdb4, 0x0, 0x0, 0x0, 0x0)

1.496861418s ago: executing program 1 (id=1469):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001240)=@base={0xf, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x37)
close(0xffffffffffffffff)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0xf, &(0x7f0000000280)=ANY=[], &(0x7f0000001440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@map=r0, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
mkdir(0x0, 0x3b)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffb000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r3, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x4000054)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r0}, &(0x7f0000000100), &(0x7f0000000140)}, 0x20)
set_mempolicy(0x2002, &(0x7f0000000000)=0x9, 0x9)
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='numa_maps\x00')
pread64(r7, &(0x7f0000002180)=""/4105, 0x137, 0x0)
r8 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET(r8, &(0x7f0000000100)={0x0, 0xf00, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x1401, 0x7fc32be5eb343aa7}, 0x5c}}, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)

967.588419ms ago: executing program 6 (id=1470):
readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000080)=""/120, 0x78}, {&(0x7f0000000000)=""/29, 0x1d}], 0x2)
io_submit(0x0, 0xfffffffffffffcf9, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="02c9200c00080005000680d100030300096e1268cf3907e1b9deb9ae0052ec6f4726a580d4f8912b7933a7939e56c6e345cb2a8c8ca79ad9e83a70e01c2acf237a489934d82e9545c1dcf92a57a4f32bbfb9840692b8a26d8950d381da50833a7cb92763562fe507ccd2df"], 0x11)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=@newtaction={0x64, 0x30, 0xffffffffffffffff, 0x0, 0x0, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x1}}, @TCA_ACT_BPF_FD={0x8}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)

770.556101ms ago: executing program 7 (id=1471):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r0}, 0x10) (fail_nth: 8)

677.50637ms ago: executing program 8 (id=1472):
io_uring_setup(0x6f6, &(0x7f0000005100)={0x0, 0x9dcc, 0x802})
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'ovf\x00', 0x1b, 0xffffffff, 0x3e}, 0x2c)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000040)="6127e29a1000810804a7a4f6594cb92e0a28b137140000004abd6efb2503eaff0d0001", 0x23}], 0x1}, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000000d40)=@newtaction={0x48, 0x31, 0x12f, 0x0, 0x0, {}, [{0x34, 0x1, [@m_police={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc, 0xb, {0x1}}, {0x2, 0xa}}}]}]}, 0x48}}, 0x0)
r2 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="93430000"], 0xfe33)

530.467911ms ago: executing program 1 (id=1473):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_audit(0x10, 0x3, 0x9)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-sse2\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440)
r3 = accept4(r2, 0x0, 0x0, 0x0)
sendmmsg$alg(r3, &(0x7f0000004140)=[{0x8dffffff, 0x0, &(0x7f0000000600)=[{&(0x7f0000000040)="eae85ab678ec", 0x6}, {&(0x7f0000000180)="2bcd2b68d6b35fdd96ff6b085783f389ea7e145ce86629480dac7284dd7209b5ad6ce7154e10e0677254965c652304763b6e457b17f31bccc2ce6498e56e4f5931", 0x41}], 0x2}], 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='nilfs2_segment_usage_check\x00', r1}, 0x18)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="1400000016000b63d25a", 0xa}], 0x1}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000003680)='sched_switch\x00', r5}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0x9, 0x4, 0x4, 0x7ff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000380), 0xce4, r6}, 0x38)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000280)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0xe, '\x00', 0x0, r1, 0x5, 0x0, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
r7 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r8 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_DEL(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={0x14, r7, 0xe27, 0x0, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x0)
r9 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r9, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newsa={0x17c, 0x10, 0x1, 0x0, 0x0, {{@in6=@private2, @in=@multicast1}, {@in=@empty, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth={0x89, 0x1, {{'sha256\x00'}, 0x208, "ca8bdaf566099b58b0085179e7b91acc5981a2f76db1cb781fe7cb575f642ed9d3ee2820e6be79e042344d8e2e779c6a0b7e0987ec26fe22919789f93ba510dd3b"}}]}, 0x17c}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
sendmmsg(r0, 0x0, 0x0, 0x803)
syz_emit_ethernet(0x30, &(0x7f0000000380)=ANY=[@ANYBLOB="05fffffffbffaaaaaaaaaa000800450000220000000000bfd39b5f25595fe7fde40d2f90780a010101e00000013f0088be000e904223be7805f4fd278b1cff54527ef7c441436148f607"], 0x0)
r10 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r10, 0xae60)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f00000002c0)={[0x8aba, 0x4, 0x364, 0xd646, 0x8000000000000006, 0x71, 0x120000, 0x40000000000001ff, 0x0, 0x8, 0x8000000000000001, 0x2, 0x10003, 0x101, 0x5, 0x1], 0xeeee8000, 0x141200})

62.316093ms ago: executing program 8 (id=1474):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x5, &(0x7f0000000340)=ANY=[@ANYBLOB="18020000010000000000000000000000850000001700000085000000d00000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r4, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b904000000000000009b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
r5 = syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
write$binfmt_script(r6, &(0x7f00000000c0)={'#! ', './file0'}, 0xf000)
socket$kcm(0x10, 0x8d80ae3734163dee, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.state\x00', 0x26e1, 0x0)
close(r7)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240))
ioctl$SIOCSIFHWADDR(r7, 0x8b26, &(0x7f0000000200)={'wlan1\x00', @random="8dffffff00"})
ioctl$CEC_DQEVENT(r5, 0xc0506107, 0x0)
inotify_init1(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x200000000000000, 0x100}, 0x0, 0x0)

51.981276ms ago: executing program 1 (id=1475):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x18400, 0x0)
ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f00000000c0)={'bond_slave_1\x00'})
bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'streebog256-generic\x00'}, 0x58) (async)
bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'streebog256-generic\x00'}, 0x58)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) (async)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000002700)=""/102392, 0x18ff8) (async)
read$msr(r2, &(0x7f0000002700)=""/102392, 0x18ff8)
rseq(&(0x7f0000000400), 0x20, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x22, &(0x7f0000000080)=0x1, 0x4) (async)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x22, &(0x7f0000000080)=0x1, 0x4)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
move_pages(r3, 0x1, &(0x7f0000000000)=[&(0x7f0000076000/0x400000)=nil], &(0x7f0000000080), 0x0, 0x0)
r4 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg$unix(r4, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500}}], 0x600, 0x0, 0x0)

35.755993ms ago: executing program 7 (id=1476):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x5, &(0x7f0000000340)=ANY=[@ANYBLOB="18020000010000000000000000000000850000001700000085000000d00000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r3, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b904000000000000009b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
write$binfmt_script(r4, &(0x7f00000000c0)={'#! ', './file0'}, 0xf000)

0s ago: executing program 6 (id=1477):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
socketpair$tipc(0x1e, 0x5, 0x0, 0x0)
r1 = dup(r0)
r2 = syz_io_uring_setup(0x6a52, &(0x7f0000000600)={0x0, 0xfffffffe, 0x4, 0x0, 0x4000029a, 0x0, r1}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
write$P9_RWALK(0xffffffffffffffff, 0x0, 0x4a)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x3, 0x0, 0x8080000, 0x2000, &(0x7f00007d9000/0x2000)=nil})
ioctl$BTRFS_IOC_SEND(r2, 0x40489426, &(0x7f0000000380)={{r1}, 0x1, &(0x7f0000000100)=[0x6], 0x7fffffff, 0x0, 0x1})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000034700)=""/102361, 0x18fd9)
ioctl$UFFDIO_CONTINUE(0xffffffffffffffff, 0xc020aa08, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r1, 0x0, &(0x7f0000000500)="76dc8a3d1603d1778c73d9ba5cb740aa336f95d552ab812ee51ce484b60f072e6b27f33775c5c67e58cf8c12a4ddde505c2f9c540302df02bd47b7aa329be0fd717fe3144543bd6891f74521db93ec5e7fb38437a654b8a9f96c8c19478873928eb75d51db8c434fe13c25cfed2ef08225576a2ee13d835334f1da87dfea86253ff6b7d19cbb4af0b676f4ed652aaee1850e753841d788b05e3a1e7f7a38a1d31aa767f152cd9ab06373e5ee617ca3039f8cdf8a9635013a5bb78c1e4e2411500c87e33154e74bc767beb561720f30252835606852ac16be", 0xd8, 0x40000002, 0x1, {0x0, r6}})
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0)
r7 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f0000000400)=@file={0x1, '\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00'}, 0x6e)
sendmmsg$unix(r9, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_settime(0x0, &(0x7f0000003c80)={0x77359400})

kernel console output (not intermixed with test programs):

.314287][ T9611] RSP: 002b:00007f9ef2c20038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  322.322678][ T9611] RAX: ffffffffffffffda RBX: 00007f9ef1f75fa0 RCX: 00007f9ef1d85d29
[  322.330628][ T9611] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000005
[  322.338578][ T9611] RBP: 00007f9ef2c20090 R08: 0000000000000000 R09: 0000000000000000
[  322.346523][ T9611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  322.354472][ T9611] R13: 0000000000000000 R14: 00007f9ef1f75fa0 R15: 00007fff237e2eb8
[  322.362428][ T9611]  </TASK>
[  322.365492][    C0] vkms_vblank_simulate: vblank timer overrun
[  322.781056][ T5862] IPVS: starting estimator thread 0...
[  322.890532][ T9623] IPVS: using max 30 ests per chain, 72000 per kthread
[  323.513319][   T25] usb 2-1: new low-speed USB device number 31 using dummy_hcd
[  323.534844][ T9641] Bluetooth: MGMT ver 1.23
[  323.567802][   T29] audit: type=1326 audit(1734974467.135:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9637 comm="syz.8.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd873785d29 code=0x7ffc0000
[  323.607078][   T29] audit: type=1326 audit(1734974467.165:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9637 comm="syz.8.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd873785d29 code=0x7ffc0000
[  323.630362][    C0] vkms_vblank_simulate: vblank timer overrun
[  323.641443][   T29] audit: type=1326 audit(1734974467.165:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9637 comm="syz.8.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd873785d29 code=0x7ffc0000
[  323.664679][    C0] vkms_vblank_simulate: vblank timer overrun
[  323.675056][   T25] usb 2-1: device descriptor read/64, error -71
[  323.752580][   T29] audit: type=1326 audit(1734974467.175:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9637 comm="syz.8.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd873785d29 code=0x7ffc0000
[  323.795216][   T29] audit: type=1326 audit(1734974467.175:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9637 comm="syz.8.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd873785d29 code=0x7ffc0000
[  323.820523][   T29] audit: type=1326 audit(1734974467.205:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9637 comm="syz.8.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd873785d29 code=0x7ffc0000
[  323.859612][   T29] audit: type=1326 audit(1734974467.205:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9637 comm="syz.8.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd873785d29 code=0x7ffc0000
[  323.905162][   T29] audit: type=1326 audit(1734974467.215:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9637 comm="syz.8.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd873785d29 code=0x7ffc0000
[  323.939938][   T25] usb 2-1: new low-speed USB device number 32 using dummy_hcd
[  323.950073][   T29] audit: type=1326 audit(1734974467.255:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9637 comm="syz.8.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7fd873785d29 code=0x7ffc0000
[  324.043852][   T29] audit: type=1326 audit(1734974467.255:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9637 comm="syz.8.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd873785d29 code=0x7ffc0000
[  324.070072][   T25] usb 2-1: device descriptor read/64, error -71
[  324.359271][   T25] usb usb2-port1: attempt power cycle
[  325.420536][ T5141] Bluetooth: hci4: ACL packet for unknown connection handle 201
[  325.439950][ T5890] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[  325.469900][   T25] usb 2-1: new low-speed USB device number 33 using dummy_hcd
[  325.492794][   T25] usb 2-1: device descriptor read/8, error -71
[  325.609958][ T5890] usb 7-1: Using ep0 maxpacket: 32
[  325.619463][ T5890] usb 7-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[  325.634321][ T5890] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  325.654080][ T5890] usb 7-1: Product: syz
[  325.675355][ T5890] usb 7-1: Manufacturer: syz
[  325.890150][   T25] usb 2-1: new low-speed USB device number 34 using dummy_hcd
[  325.919486][ T5890] usb 7-1: SerialNumber: syz
[  325.926442][   T25] usb 2-1: device descriptor read/8, error -71
[  326.040766][   T25] usb usb2-port1: unable to enumerate USB device
[  326.097559][ T5890] usb 7-1: config 0 descriptor??
[  326.105029][ T5890] gspca_main: ov534_9-2.14.0 probing 05a9:1550
[  327.228810][ T5890] gspca_ov534_9: reg_w failed -110
[  327.893080][ T5890] gspca_ov534_9: Unknown sensor 0000
[  327.893149][ T5890] ov534_9 7-1:0.0: probe with driver ov534_9 failed with error -22
[  328.057334][ T9734] netlink: 16186 bytes leftover after parsing attributes in process `syz.7.885'.
[  328.106407][ T9734] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  328.200749][ T9734] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  328.630610][   T80] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  328.779942][   T80] usb 8-1: Using ep0 maxpacket: 8
[  328.786790][   T80] usb 8-1: unable to get BOS descriptor or descriptor too short
[  328.795717][   T80] usb 8-1: config 11 has an invalid interface number: 244 but max is 0
[  328.804120][   T80] usb 8-1: config 11 has no interface number 0
[  328.810506][   T80] usb 8-1: config 11 interface 244 altsetting 5 endpoint 0x3 has invalid wMaxPacketSize 0
[  328.821565][   T80] usb 8-1: config 11 interface 244 has no altsetting 0
[  328.831136][   T80] usb 8-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=57.8a
[  328.840447][   T80] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  328.854843][   T80] usb 8-1: Product: syz
[  328.859115][   T80] usb 8-1: Manufacturer: syz
[  328.864304][   T80] usb 8-1: SerialNumber: syz
[  329.228632][ T5890] usb 7-1: USB disconnect, device number 23
[  329.397565][ T9750] netlink: 240 bytes leftover after parsing attributes in process `syz.6.891'.
[  329.673196][   T29] kauditd_printk_skb: 37 callbacks suppressed
[  329.673234][   T29] audit: type=1400 audit(1734974473.235:670): avc:  denied  { map } for  pid=9751 comm="syz.1.892" path="/dev/binderfs/binder0" dev="binder" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  329.771620][ T9756] binder: 9751:9756 unknown command 1077961493
[  329.777892][ T9756] binder: 9751:9756 ioctl c0306201 20000300 returned -22
[  329.823178][   T29] audit: type=1400 audit(1734974473.335:671): avc:  denied  { call } for  pid=9751 comm="syz.1.892" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  330.683524][ T9763] rtc_cmos 00:00: Alarms can be up to one day in the future
[  330.981701][ T9760] rtc_cmos 00:00: Alarms can be up to one day in the future
[  331.004778][   T29] audit: type=1326 audit(1734974474.575:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9728 comm="syz.7.885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeca785d29 code=0x7fc00000
[  331.132559][   T80] usb 8-1: USB disconnect, device number 15
[  331.637412][ T9780] 9pnet_fd: Insufficient options for proto=fd
[  331.662808][ T9780] netlink: 4 bytes leftover after parsing attributes in process `syz.7.899'.
[  332.155634][ T9795] netlink: 16 bytes leftover after parsing attributes in process `syz.6.900'.
[  332.164743][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  332.174428][ T9795] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  332.316132][ T9797] block nbd6: shutting down sockets
[  332.540185][ T5862] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  332.680564][ T5862] usb 2-1: device descriptor read/64, error -71
[  333.009973][ T5862] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  333.150154][ T5862] usb 2-1: device descriptor read/64, error -71
[  333.675043][ T5862] usb usb2-port1: attempt power cycle
[  333.847100][ T9810] FAULT_INJECTION: forcing a failure.
[  333.847100][ T9810] name failslab, interval 1, probability 0, space 0, times 0
[  333.879925][ T9810] CPU: 0 UID: 0 PID: 9810 Comm: syz.2.907 Not tainted 6.13.0-rc4-syzkaller #0
[  333.888833][ T9810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  333.898890][ T9810] Call Trace:
[  333.902152][ T9810]  <TASK>
[  333.905073][ T9810]  dump_stack_lvl+0x16c/0x1f0
[  333.909825][ T9810]  should_fail_ex+0x497/0x5b0
[  333.914489][ T9810]  ? fs_reclaim_acquire+0xae/0x150
[  333.919589][ T9810]  should_failslab+0xc2/0x120
[  333.924245][ T9810]  __kmalloc_cache_noprof+0x68/0x410
[  333.929509][ T9810]  loop_add+0xbf/0xb60
[  333.933558][ T9810]  ? do_vfs_ioctl+0x513/0x1990
[  333.938301][ T9810]  ? __pfx_loop_add+0x10/0x10
[  333.942988][ T9810]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  333.948050][ T9810]  ? __pfx_lock_release+0x10/0x10
[  333.953095][ T9810]  loop_control_ioctl+0x13e/0x640
[  333.958120][ T9810]  ? __pfx_loop_control_ioctl+0x10/0x10
[  333.963662][ T9810]  ? selinux_file_ioctl+0x180/0x270
[  333.968859][ T9810]  ? selinux_file_ioctl+0xb4/0x270
[  333.973975][ T9810]  ? __pfx_loop_control_ioctl+0x10/0x10
[  333.979513][ T9810]  __x64_sys_ioctl+0x190/0x200
[  333.984291][ T9810]  do_syscall_64+0xcd/0x250
[  333.988795][ T9810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.994780][ T9810] RIP: 0033:0x7fe0ca785d29
[  333.999185][ T9810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.018787][ T9810] RSP: 002b:00007fe0cb51b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  334.027194][ T9810] RAX: ffffffffffffffda RBX: 00007fe0ca975fa0 RCX: 00007fe0ca785d29
[  334.035154][ T9810] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000003
[  334.043121][ T9810] RBP: 00007fe0cb51b090 R08: 0000000000000000 R09: 0000000000000000
[  334.051101][ T9810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  334.059085][ T9810] R13: 0000000000000000 R14: 00007fe0ca975fa0 R15: 00007fff2fb9ad18
[  334.067111][ T9810]  </TASK>
[  334.405557][ T5862] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  334.529201][   T29] audit: type=1400 audit(1734974478.095:673): avc:  denied  { map } for  pid=9817 comm="syz.2.910" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  334.621398][   T29] audit: type=1400 audit(1734974478.095:674): avc:  denied  { execute } for  pid=9817 comm="syz.2.910" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  334.667395][ T5862] usb 2-1: device descriptor read/8, error -71
[  335.096866][ T9825] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  335.106157][ T9825] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  336.790680][ T5859] IPVS: starting estimator thread 0...
[  336.890289][ T9855] IPVS: using max 27 ests per chain, 64800 per kthread
[  337.230378][ T6717] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  337.354351][ T5862] usb 2-1: new full-speed USB device number 38 using dummy_hcd
[  337.440831][ T5862] usb 2-1: device descriptor read/8, error -71
[  337.469993][ T6717] usb 3-1: Using ep0 maxpacket: 8
[  337.479538][ T6717] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  337.493460][ T6717] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  337.580232][ T5862] usb usb2-port1: unable to enumerate USB device
[  339.700355][ T5859] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[  339.890051][ T5859] usb 7-1: Using ep0 maxpacket: 16
[  339.942973][ T5859] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  340.027313][ T5859] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  340.135308][ T5859] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  340.214290][ T5859] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  340.226389][ T6717] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  340.236538][ T6717] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  340.249647][ T6717] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  340.258815][ T6717] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  340.335116][    C0] raw-gadget.0 gadget.2: ignoring, device is not running
[  340.344151][ T6717] usb 3-1: can't set config #16, error -32
[  340.375335][ T6717] usb 3-1: USB disconnect, device number 27
[  340.388005][ T5859] usb 7-1: config 0 descriptor??
[  340.961860][ T9887] netlink: 16 bytes leftover after parsing attributes in process `syz.1.929'.
[  341.087864][ T5859] microsoft 0003:045E:07DA.0008: No inputs registered, leaving
[  341.846038][ T5859] microsoft 0003:045E:07DA.0008: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.6-1/input0
[  341.857609][ T5859] microsoft 0003:045E:07DA.0008: no inputs found
[  341.864044][ T5859] microsoft 0003:045E:07DA.0008: could not initialize ff, continuing anyway
[  342.319852][ T6717] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[  342.550071][ T6717] usb 2-1: Using ep0 maxpacket: 32
[  342.587066][ T6717] usb 2-1: unable to get BOS descriptor or descriptor too short
[  342.632463][ T6717] usb 2-1: unable to read config index 0 descriptor/start: -71
[  342.654860][ T6717] usb 2-1: can't read configurations, error -71
[  342.659936][   T80] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  343.350746][   T80] usb 3-1: Using ep0 maxpacket: 8
[  343.370547][   T80] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  343.381889][   T80] usb 3-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  343.391421][   T80] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  343.412601][   T80] usb 3-1: config 0 descriptor??
[  343.650023][ T5862] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  343.673080][   T80] iowarrior 3-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  343.830079][ T5862] usb 9-1: Using ep0 maxpacket: 32
[  343.837045][ T5862] usb 9-1: unable to get BOS descriptor or descriptor too short
[  343.846059][ T5862] usb 9-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  343.861802][ T5862] usb 9-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb
[  343.889943][ T5862] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  343.898047][ T5862] usb 9-1: Product: syz
[  343.902725][ T5862] usb 9-1: Manufacturer: syz
[  343.907355][ T5862] usb 9-1: SerialNumber: syz
[  344.111980][   T80] usb 3-1: USB disconnect, device number 28
[  344.140232][ T5862] usb 9-1: Invalid number of CPorts: 0
[  344.145835][ T5862] es2_ap_driver 9-1:7.0: probe with driver es2_ap_driver failed with error -22
[  344.721430][ T6717] usb 9-1: USB disconnect, device number 7
[  344.747373][ T5861] usb 7-1: USB disconnect, device number 24
[  347.579908][ T1828] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  348.369912][ T1828] usb 3-1: Using ep0 maxpacket: 32
[  348.403702][ T1828] usb 3-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[  348.447574][ T1828] usb 3-1: New USB device found, idVendor=054c, idProduct=06c3, bcdDevice=eb.7a
[  348.494419][ T1828] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  348.553936][ T1828] usb 3-1: Product: syz
[  348.584063][ T1828] usb 3-1: Manufacturer: syz
[  348.588712][ T1828] usb 3-1: SerialNumber: syz
[  350.918099][ T1828] port100 3-1:8.0: NFC: Could not find bulk-in or bulk-out endpoint
[  350.922754][ T5861] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[  351.009933][ T1828] usb 3-1: USB disconnect, device number 29
[  351.189983][ T5861] usb 7-1: Using ep0 maxpacket: 16
[  351.265832][ T5861] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  351.326564][ T5861] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  351.378355][ T5861] usb 7-1: config 0 has no interface number 0
[  351.384744][ T5861] usb 7-1: config 0 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  351.397827][ T5861] usb 7-1: New USB device found, idVendor=28bd, idProduct=0071, bcdDevice= 0.00
[  351.407163][ T5861] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.421471][ T5861] usb 7-1: config 0 descriptor??
[  351.428552][ T5861] usbhid 7-1:0.1: couldn't find an input interrupt endpoint
[  351.640917][ T5861] usb 7-1: USB disconnect, device number 25
[  351.819969][ T1828] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  351.990332][ T1828] usb 3-1: Using ep0 maxpacket: 32
[  351.997264][ T1828] usb 3-1: config 0 has an invalid interface number: 67 but max is 0
[  352.007279][ T1828] usb 3-1: config 0 has no interface number 0
[  352.031363][ T1828] usb 3-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  352.051132][ T1828] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  352.076474][ T1828] usb 3-1: Product: syz
[  352.091483][ T1828] usb 3-1: Manufacturer: syz
[  352.103497][ T1828] usb 3-1: SerialNumber: syz
[  352.158250][ T1828] usb 3-1: config 0 descriptor??
[  352.186983][ T1828] smsc95xx v2.0.0
[  352.600340][ T5861] usb 7-1: new high-speed USB device number 26 using dummy_hcd
[  352.834319][T10018] FAULT_INJECTION: forcing a failure.
[  352.834319][T10018] name failslab, interval 1, probability 0, space 0, times 0
[  352.847180][T10018] CPU: 0 UID: 0 PID: 10018 Comm: syz.8.969 Not tainted 6.13.0-rc4-syzkaller #0
[  352.856125][T10018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  352.866181][T10018] Call Trace:
[  352.869457][T10018]  <TASK>
[  352.872389][T10018]  dump_stack_lvl+0x16c/0x1f0
[  352.877081][T10018]  should_fail_ex+0x497/0x5b0
[  352.881767][T10018]  ? fs_reclaim_acquire+0xae/0x150
[  352.886884][T10018]  should_failslab+0xc2/0x120
[  352.891574][T10018]  __kmalloc_cache_noprof+0x68/0x410
[  352.896864][T10018]  ? lockdep_init_map_type+0x16d/0x7d0
[  352.902335][T10018]  fuse_init_fs_context+0x43/0x1e0
[  352.907453][T10018]  ? __pfx_fuse_init_fs_context+0x10/0x10
[  352.913177][T10018]  alloc_fs_context+0x54a/0x9c0
[  352.918045][T10018]  path_mount+0xb08/0x1f20
[  352.922469][T10018]  ? kmem_cache_free+0x152/0x4c0
[  352.927414][T10018]  ? __pfx_path_mount+0x10/0x10
[  352.932269][T10018]  ? putname+0x13c/0x180
[  352.936529][T10018]  __x64_sys_mount+0x294/0x320
[  352.941299][T10018]  ? __pfx___x64_sys_mount+0x10/0x10
[  352.946596][T10018]  do_syscall_64+0xcd/0x250
[  352.951113][T10018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.957015][T10018] RIP: 0033:0x7fd873785d29
[  352.961431][T10018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  352.981043][T10018] RSP: 002b:00007fd874657038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  352.989472][T10018] RAX: ffffffffffffffda RBX: 00007fd873976160 RCX: 00007fd873785d29
[  352.997447][T10018] RDX: 0000000020002100 RSI: 00000000200020c0 RDI: 0000000000000000
[  353.005419][T10018] RBP: 00007fd874657090 R08: 0000000000000000 R09: 0000000000000000
[  353.013397][T10018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  353.021368][T10018] R13: 0000000000000000 R14: 00007fd873976160 R15: 00007ffe5f90a338
[  353.029358][T10018]  </TASK>
[  353.749882][ T5861] usb 7-1: Using ep0 maxpacket: 16
[  353.756872][ T5861] usb 7-1: config 0 has an invalid interface number: 41 but max is 0
[  353.765298][ T5861] usb 7-1: config 0 has no interface number 0
[  353.777240][T10021] ceph: No mds server is up or the cluster is laggy
[  353.791506][ T6717] libceph: connect (1)[c::]:6789 error -101
[  353.817611][ T1828] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71
[  353.834637][ T6717] libceph: mon0 (1)[c::]:6789 connect error
[  353.844944][   T29] audit: type=1400 audit(1734974497.385:675): avc:  denied  { bind } for  pid=10020 comm="syz.1.970" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  353.894456][ T1828] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  353.931533][ T1828] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  353.961131][ T1828] smsc95xx 3-1:0.67: probe with driver smsc95xx failed with error -71
[  353.995749][ T1828] usb 3-1: USB disconnect, device number 30
[  354.418070][ T5861] usb 7-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  354.434128][ T5861] usb 7-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  354.444552][ T5861] usb 7-1: config 0 interface 41 has no altsetting 0
[  354.454812][ T5861] usb 7-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  354.478748][ T5861] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  354.488162][ T5861] usb 7-1: Product: syz
[  354.492696][ T5861] usb 7-1: Manufacturer: syz
[  354.497445][ T5861] usb 7-1: SerialNumber: syz
[  354.506719][ T5861] usb 7-1: config 0 descriptor??
[  354.632661][T10011] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  355.323791][T10011] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  355.893888][ T5861] usb 7-1: can't set config #0, error -71
[  355.905106][ T5861] usb 7-1: USB disconnect, device number 26
[  357.836506][T10054] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(3)
[  357.843544][T10054] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  358.593083][T10054] vhci_hcd vhci_hcd.0: Device attached
[  358.661294][ T6717] usb 9-1: new low-speed USB device number 8 using dummy_hcd
[  358.779953][ T5862] vhci_hcd: vhci_device speed not set
[  358.825838][ T6717] usb 9-1: config 0 has no interfaces?
[  358.836445][ T6717] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  358.847237][ T5862] usb 49-1: new full-speed USB device number 2 using vhci_hcd
[  358.879285][ T6717] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  358.930620][ T6717] usb 9-1: config 0 descriptor??
[  359.215492][ T6717] usb 9-1: USB disconnect, device number 8
[  359.249021][T10056] usb 49-1: recv xbuf, -104
[  359.285341][   T11] vhci_hcd: stop threads
[  359.309329][   T11] vhci_hcd: release socket
[  359.342029][   T11] vhci_hcd: disconnect device
[  359.350718][ T5862] vhci_hcd: vhci_device speed not set
[  359.698336][ T1828] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  359.850046][ T1828] usb 3-1: Using ep0 maxpacket: 16
[  359.872883][ T1828] usb 3-1: config 0 has an invalid interface number: 214 but max is 0
[  359.911492][ T1828] usb 3-1: config 0 has no interface number 0
[  360.014498][ T1828] usb 3-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid maxpacket 1023, setting to 64
[  360.186113][ T1828] usb 3-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[  360.212886][ T1828] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  360.236806][ T1828] usb 3-1: Product: syz
[  360.246932][ T1828] usb 3-1: Manufacturer: syz
[  360.266484][ T1828] usb 3-1: SerialNumber: syz
[  360.288007][ T1828] usb 3-1: config 0 descriptor??
[  360.428525][T10092] netlink: 48 bytes leftover after parsing attributes in process `syz.1.987'.
[  360.513833][ T1828] usbtouchscreen 3-1:0.214: Failed to read FW rev: 15
[  360.558050][ T1828] usbtouchscreen 3-1:0.214: probe with driver usbtouchscreen failed with error -5
[  361.480447][   T29] audit: type=1400 audit(1734974505.055:676): avc:  denied  { setopt } for  pid=10107 comm="syz.1.994" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  361.565825][   T29] audit: type=1400 audit(1734974505.055:677): avc:  denied  { nlmsg_read } for  pid=10107 comm="syz.1.994" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  363.126893][T10128] overlayfs: workdir and upperdir must be separate subtrees
[  363.187469][   T80] usb 3-1: USB disconnect, device number 31
[  364.177008][   T29] audit: type=1400 audit(1734974507.745:678): avc:  denied  { setcurrent } for  pid=10134 comm="syz.7.1002" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  365.052252][ T5861] usb 3-1: new full-speed USB device number 32 using dummy_hcd
[  365.152512][   T29] audit: type=1400 audit(1734974508.725:679): avc:  denied  { unmount } for  pid=5812 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  365.708229][ T5861] usb 3-1: unable to get BOS descriptor or descriptor too short
[  365.717189][ T5861] usb 3-1: not running at top speed; connect to a high speed hub
[  365.733530][ T5861] usb 3-1: too many configurations: 163, using maximum allowed: 8
[  366.062587][ T5861] usb 3-1: unable to read config index 0 descriptor/start: -61
[  366.169889][ T5861] usb 3-1: can't read configurations, error -61
[  366.344788][ T5861] usb 3-1: new full-speed USB device number 33 using dummy_hcd
[  366.620256][ T5818] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  366.718201][T10177] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1014'.
[  366.794098][   T29] audit: type=1400 audit(1734974510.345:680): avc:  denied  { write } for  pid=10173 comm="syz.2.1014" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  366.869883][ T5818] usb 2-1: Using ep0 maxpacket: 16
[  366.892936][ T5818] usb 2-1: config 0 has an invalid interface number: 214 but max is 0
[  366.911980][ T5818] usb 2-1: config 0 has no interface number 0
[  366.918886][ T5818] usb 2-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid maxpacket 1023, setting to 64
[  366.943330][ T5818] usb 2-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[  366.974114][ T5818] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  367.029373][ T5818] usb 2-1: Product: syz
[  367.155901][ T5818] usb 2-1: Manufacturer: syz
[  367.168246][ T5818] usb 2-1: SerialNumber: syz
[  367.785803][ T5818] usb 2-1: config 0 descriptor??
[  367.942618][T10190] netlink: 48 bytes leftover after parsing attributes in process `syz.8.1016'.
[  368.104430][T10194] IPVS: ip_vs_add_dest(): lower threshold is higher than upper threshold
[  368.255844][ T5818] usbtouchscreen 2-1:0.214: Failed to read FW rev: 15
[  368.263316][ T5818] usbtouchscreen 2-1:0.214: probe with driver usbtouchscreen failed with error -5
[  368.390037][ T5861] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[  368.474728][T10169] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1013'.
[  368.529935][ T5861] usb 3-1: device descriptor read/64, error -71
[  369.320026][ T5861] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  369.439425][   T29] audit: type=1400 audit(1734974513.005:681): avc:  denied  { mount } for  pid=10207 comm="syz.7.1023" name="/" dev="pstore" ino=3749 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[  369.461816][    C0] vkms_vblank_simulate: vblank timer overrun
[  369.547088][ T5861] usb 3-1: device descriptor read/64, error -71
[  369.712136][ T5861] usb usb3-port1: attempt power cycle
[  369.732877][ T1828] usb 2-1: USB disconnect, device number 41
[  369.743124][T10213] netlink: 'syz.8.1024': attribute type 21 has an invalid length.
[  369.758756][   T29] audit: type=1400 audit(1734974513.325:682): avc:  denied  { compute_member } for  pid=10212 comm="syz.8.1024" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  369.858833][T10219] 9pnet_fd: Insufficient options for proto=fd
[  369.901256][   T29] audit: type=1400 audit(1734974513.475:683): avc:  denied  { unmount } for  pid=6553 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[  369.935210][T10219] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1027'.
[  370.209271][T10227] netlink: 156 bytes leftover after parsing attributes in process `syz.8.1029'.
[  370.218990][   T29] audit: type=1400 audit(1734974513.765:684): avc:  denied  { accept } for  pid=10224 comm="syz.8.1029" lport=60 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  370.423534][ T5861] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[  370.491369][ T5861] usb 3-1: device descriptor read/8, error -71
[  370.630074][ T1828] usb 9-1: new full-speed USB device number 9 using dummy_hcd
[  370.651275][T10242] 9pnet_fd: Insufficient options for proto=fd
[  370.734383][T10244] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0.
[  370.749945][ T5861] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[  370.758530][T10246] /dev/nullb0: Can't open blockdev
[  370.781208][ T1828] usb 9-1: config 0 has an invalid interface number: 55 but max is 0
[  370.790715][ T1828] usb 9-1: config 0 has no interface number 0
[  370.796837][ T1828] usb 9-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  370.821151][T10244] tipc: Started in network mode
[  370.826404][   T29] audit: type=1400 audit(1734974514.395:685): avc:  denied  { ioctl } for  pid=10243 comm="syz.7.1035" path="socket:[26472]" dev="sockfs" ino=26472 ioctlcmd=0x4942 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  370.860169][T10244] tipc: Node identity fe800000000000000000000000000013, cluster identity 4711
[  370.912281][T10244] tipc: Enabled bearer <udp:syz0>, priority 10
[  370.915717][   T29] audit: type=1400 audit(1734974514.475:686): avc:  denied  { map } for  pid=10245 comm="syz.1.1034" path="/236/file0" dev="tmpfs" ino=1310 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  370.918595][ T1828] usb 9-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  370.971059][ T5861] usb 3-1: device descriptor read/8, error -71
[  371.081285][ T5861] usb usb3-port1: unable to enumerate USB device
[  371.457058][ T1828] usb 9-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  371.468242][ T1828] usb 9-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 64
[  371.479380][ T1828] usb 9-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  371.492471][ T1828] usb 9-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  371.501597][ T1828] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  371.518233][ T1828] usb 9-1: config 0 descriptor??
[  371.535604][T10227] raw-gadget.1 gadget.8: fail, usb_ep_enable returned -22
[  371.621025][ T1828] ldusb 9-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  372.009552][ T5861] usb 9-1: USB disconnect, device number 9
[  372.041289][ T5861] ldusb 9-1:0.55: LD USB Device #0 now disconnected
[  372.139662][ T1828] tipc: Node number set to 4269801491
[  372.349938][ T1828] usb 7-1: new high-speed USB device number 27 using dummy_hcd
[  372.510051][ T1828] usb 7-1: Using ep0 maxpacket: 32
[  372.541609][ T1828] usb 7-1: config 0 has an invalid interface number: 67 but max is 0
[  372.590590][ T1828] usb 7-1: config 0 has no interface number 0
[  372.605584][ T1828] usb 7-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  372.623992][T10268] FAULT_INJECTION: forcing a failure.
[  372.623992][T10268] name failslab, interval 1, probability 0, space 0, times 0
[  372.642616][ T1828] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  372.659703][ T1828] usb 7-1: Product: syz
[  372.668222][ T1828] usb 7-1: Manufacturer: syz
[  372.702340][T10268] CPU: 1 UID: 0 PID: 10268 Comm: syz.8.1045 Not tainted 6.13.0-rc4-syzkaller #0
[  372.711430][T10268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  372.721505][T10268] Call Trace:
[  372.724821][T10268]  <TASK>
[  372.727762][T10268]  dump_stack_lvl+0x16c/0x1f0
[  372.732463][T10268]  should_fail_ex+0x497/0x5b0
[  372.737162][T10268]  ? fs_reclaim_acquire+0xae/0x150
[  372.742296][T10268]  should_failslab+0xc2/0x120
[  372.746990][T10268]  __kmalloc_noprof+0xcb/0x510
[  372.751769][T10268]  ? __get_fs_type+0x21/0x170
[  372.756470][T10268]  tomoyo_encode2+0x100/0x3e0
[  372.761168][T10268]  tomoyo_encode+0x29/0x50
[  372.765604][T10268]  tomoyo_mount_acl+0x314/0x880
[  372.770468][T10268]  ? hlock_class+0x4e/0x130
[  372.774986][T10268]  ? __lock_acquire+0x15a9/0x3c40
[  372.780029][T10268]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  372.785421][T10268]  ? __pfx___lock_acquire+0x10/0x10
[  372.790631][T10268]  ? stack_trace_save+0x95/0xd0
[  372.795506][T10268]  ? __pfx_lock_release+0x10/0x10
[  372.800557][T10268]  ? trace_lock_acquire+0x14e/0x1f0
[  372.805776][T10268]  ? tomoyo_mount_permission+0x149/0x420
[  372.808371][ T1828] usb 7-1: SerialNumber: syz
[  372.811418][T10268]  ? lock_acquire+0x2f/0xb0
[  372.811456][T10268]  ? tomoyo_mount_permission+0x149/0x420
[  372.811480][T10268]  tomoyo_mount_permission+0x16e/0x420
[  372.811500][T10268]  ? tomoyo_mount_permission+0x149/0x420
[  372.837237][T10268]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  372.843254][T10268]  ? get_current_fs_domain+0x184/0x1f0
[  372.848753][T10268]  security_sb_mount+0x9b/0x260
[  372.853619][T10268]  path_mount+0x129/0x1f20
[  372.858031][T10268]  ? kmem_cache_free+0x152/0x4c0
[  372.862952][T10268]  ? __pfx_path_mount+0x10/0x10
[  372.867785][T10268]  ? putname+0x13c/0x180
[  372.872012][T10268]  __x64_sys_mount+0x294/0x320
[  372.876770][T10268]  ? __pfx___x64_sys_mount+0x10/0x10
[  372.882054][T10268]  do_syscall_64+0xcd/0x250
[  372.884520][ T1828] usb 7-1: config 0 descriptor??
[  372.886570][T10268]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.886602][T10268] RIP: 0033:0x7fd873785d29
[  372.893355][ T1828] smsc95xx v2.0.0
[  372.897402][T10268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  372.897425][T10268] RSP: 002b:00007fd874699038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  372.897444][T10268] RAX: ffffffffffffffda RBX: 00007fd873975fa0 RCX: 00007fd873785d29
[  372.897457][T10268] RDX: 0000000020000640 RSI: 0000000020000000 RDI: 0000000000000000
[  372.949603][T10268] RBP: 00007fd874699090 R08: 0000000020000200 R09: 0000000000000000
[  372.957622][T10268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  372.965611][T10268] R13: 0000000000000000 R14: 00007fd873975fa0 R15: 00007ffe5f90a338
[  372.972208][T10274] 9pnet_fd: Insufficient options for proto=fd
[  372.973607][T10268]  </TASK>
[  373.519877][ T6717] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[  373.656997][T10284] FAULT_INJECTION: forcing a failure.
[  373.656997][T10284] name failslab, interval 1, probability 0, space 0, times 0
[  373.670357][T10284] CPU: 1 UID: 0 PID: 10284 Comm: syz.8.1050 Not tainted 6.13.0-rc4-syzkaller #0
[  373.679420][T10284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  373.679882][ T6717] usb 8-1: Using ep0 maxpacket: 16
[  373.689477][T10284] Call Trace:
[  373.697912][T10284]  <TASK>
[  373.700852][T10284]  dump_stack_lvl+0x16c/0x1f0
[  373.705548][T10284]  should_fail_ex+0x497/0x5b0
[  373.710243][T10284]  ? fs_reclaim_acquire+0xae/0x150
[  373.715370][T10284]  should_failslab+0xc2/0x120
[  373.720065][T10284]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  373.725441][T10284]  ? ptlock_alloc+0x1f/0x70
[  373.729943][T10284]  ptlock_alloc+0x1f/0x70
[  373.734263][T10284]  pte_alloc_one+0x74/0x390
[  373.738844][T10284]  __pte_alloc+0x6e/0x3b0
[  373.743161][T10284]  ? __pfx___pte_alloc+0x10/0x10
[  373.748087][T10284]  ? __pfx_lock_release+0x10/0x10
[  373.753132][T10284]  ? do_raw_spin_lock+0x12d/0x2c0
[  373.758167][T10284]  do_pte_missing+0x2810/0x3e00
[  373.763014][T10284]  ? _raw_spin_unlock+0x28/0x50
[  373.767862][T10284]  ? __pmd_alloc+0x380/0x860
[  373.772442][T10284]  __handle_mm_fault+0x103c/0x2a40
[  373.777550][T10284]  ? __pfx___handle_mm_fault+0x10/0x10
[  373.783000][T10284]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  373.788636][T10284]  ? find_vma+0xc0/0x140
[  373.792866][T10284]  ? __pfx_find_vma+0x10/0x10
[  373.797537][T10284]  handle_mm_fault+0x3fa/0xaa0
[  373.802303][T10284]  do_user_addr_fault+0x7a3/0x13f0
[  373.807418][T10284]  exc_page_fault+0x5c/0xc0
[  373.811917][T10284]  asm_exc_page_fault+0x26/0x30
[  373.816767][T10284] RIP: 0010:rep_movs_alternative+0x13/0x70
[  373.822567][T10284] Code: cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f
[  373.842164][T10284] RSP: 0018:ffffc90004a6fd60 EFLAGS: 00050202
[  373.848219][T10284] RAX: 0000000000000001 RBX: 00000000200000c0 RCX: 0000000000000004
[  373.856180][T10284] RDX: fffff5200094dfbc RSI: 00000000200000c0 RDI: ffffc90004a6fde0
[  373.864137][T10284] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff5200094dfbc
[  373.872111][T10284] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000
[  373.880090][T10284] R13: ffffc90004a6fde0 R14: 0000000000000000 R15: 0000000000000084
[  373.888061][T10284]  _copy_from_user+0x9a/0xd0
[  373.892645][T10284]  do_sock_getsockopt+0x5f6/0x800
[  373.897665][T10284]  ? trace_lock_acquire+0x90/0x1f0
[  373.902774][T10284]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  373.908312][T10284]  ? lock_acquire+0x2f/0xb0
[  373.912806][T10284]  ? __fget_files+0x40/0x3a0
[  373.917390][T10284]  ? __fget_files+0x206/0x3a0
[  373.922083][T10284]  __sys_getsockopt+0x12f/0x260
[  373.926942][T10284]  __x64_sys_getsockopt+0xbd/0x160
[  373.932046][T10284]  ? do_syscall_64+0x91/0x250
[  373.936715][T10284]  ? lockdep_hardirqs_on+0x7c/0x110
[  373.941903][T10284]  do_syscall_64+0xcd/0x250
[  373.946400][T10284]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.952294][T10284] RIP: 0033:0x7fd873785d29
[  373.956704][T10284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  373.976306][T10284] RSP: 002b:00007fd874699038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  373.984712][T10284] RAX: ffffffffffffffda RBX: 00007fd873975fa0 RCX: 00007fd873785d29
[  373.992690][T10284] RDX: 000000000000007d RSI: 0000000000000084 RDI: 0000000000000003
[  374.000649][T10284] RBP: 00007fd874699090 R08: 00000000200000c0 R09: 0000000000000000
[  374.008608][T10284] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  374.016571][T10284] R13: 0000000000000000 R14: 00007fd873975fa0 R15: 00007ffe5f90a338
[  374.024542][T10284]  </TASK>
[  374.043122][ T6717] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  374.064541][ T6717] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  374.077281][ T6717] usb 8-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  374.116792][ T6717] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  374.139330][ T6717] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  374.197999][ T1828] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -71
[  374.239893][ T6717] usb 8-1: Product: syz
[  374.245527][ T6717] usb 8-1: Manufacturer: syz
[  374.250435][ T1828] smsc95xx 7-1:0.67: probe with driver smsc95xx failed with error -71
[  374.259996][ T6717] usb 8-1: SerialNumber: syz
[  374.282072][ T1828] usb 7-1: USB disconnect, device number 27
[  374.340916][T10275] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  374.364126][T10275] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  374.746715][ T6717] usb 8-1: 2:1 : format type 0 is detected, processed as PCM
[  375.505256][ T6717] usb 8-1: 2:1: cannot get freq at ep 0x82
[  375.587324][ T5861] usb 7-1: new high-speed USB device number 28 using dummy_hcd
[  375.675742][T10305] netlink: 20 bytes leftover after parsing attributes in process `syz.8.1055'.
[  375.775553][ T5861] usb 7-1: config 1 has an invalid interface number: 4 but max is 2
[  375.783767][ T5861] usb 7-1: config 1 has 4 interfaces, different from the descriptor's value: 3
[  375.809210][ T5861] usb 7-1: config 1 has no interface number 3
[  375.840334][ T5861] usb 7-1: too many endpoints for config 1 interface 4 altsetting 4: 84, using maximum allowed: 30
[  375.999922][ T5861] usb 7-1: config 1 interface 4 altsetting 4 has 0 endpoint descriptors, different from the interface descriptor's value: 84
[  376.190616][ T5861] usb 7-1: config 1 interface 4 has no altsetting 0
[  376.197265][ T5861] usb 7-1: config 1 interface 1 has no altsetting 0
[  376.240270][ T5861] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  376.249353][ T5861] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  376.271373][ T5861] usb 7-1: Product: syz
[  376.275587][ T5861] usb 7-1: Manufacturer: syz
[  376.280411][ T5861] usb 7-1: SerialNumber: syz
[  376.493577][T10315] 9pnet_fd: Insufficient options for proto=fd
[  376.680822][ T6717] usb 8-1: USB disconnect, device number 16
[  377.163657][ T5906] udevd[5906]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  377.894652][ T5890] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  378.140270][ T5890] usb 8-1: Using ep0 maxpacket: 32
[  378.150251][ T5890] usb 8-1: config 0 has an invalid interface number: 67 but max is 0
[  378.195869][ T5890] usb 8-1: config 0 has no interface number 0
[  378.246920][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  378.305710][ T5890] usb 8-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  378.403771][T10341] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1063'.
[  378.423022][ T5890] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  378.999550][ T5890] usb 8-1: Product: syz
[  379.026929][T10341] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1063'.
[  379.039873][ T5890] usb 8-1: Manufacturer: syz
[  379.044496][ T5890] usb 8-1: SerialNumber: syz
[  379.074381][ T5890] usb 8-1: config 0 descriptor??
[  379.142150][ T5890] smsc95xx v2.0.0
[  379.460044][ T5861] usb 7-1: 2:1 : UAC_AS_GENERAL descriptor not found
[  379.515424][ T5861] hub 7-1:1.4: bad descriptor, ignoring hub
[  379.537875][ T5861] hub 7-1:1.4: probe with driver hub failed with error -5
[  379.604178][ T5890] smsc95xx 8-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -71
[  379.604837][ T5861] usb 7-1: USB disconnect, device number 28
[  379.676052][ T5890] smsc95xx 8-1:0.67: probe with driver smsc95xx failed with error -71
[  380.064174][ T5890] usb 8-1: USB disconnect, device number 17
[  380.251932][ T5904] udevd[5904]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  380.998917][T10370] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  381.008925][T10370] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  381.155507][ T5861] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  381.549868][ T5861] usb 8-1: Using ep0 maxpacket: 16
[  381.589813][ T5861] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  381.884880][ T5861] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  381.897825][ T5861] usb 8-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  381.906939][ T5861] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  381.930988][ T5861] usb 8-1: config 0 descriptor??
[  382.834803][ T5861] microsoft 0003:045E:07DA.0009: No inputs registered, leaving
[  382.906710][ T5861] microsoft 0003:045E:07DA.0009: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.7-1/input0
[  382.940948][ T5861] microsoft 0003:045E:07DA.0009: no inputs found
[  382.947323][ T5861] microsoft 0003:045E:07DA.0009: could not initialize ff, continuing anyway
[  384.824708][ T5861] usb 8-1: USB disconnect, device number 18
[  385.070199][ T5859] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  385.270451][ T5859] usb 9-1: Using ep0 maxpacket: 32
[  385.283701][ T5859] usb 9-1: config 0 has an invalid interface number: 67 but max is 0
[  385.319594][ T5859] usb 9-1: config 0 has no interface number 0
[  385.420797][ T5859] usb 9-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  385.446204][ T5859] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  385.449945][   T29] audit: type=1400 audit(1734974529.015:687): avc:  denied  { write } for  pid=10406 comm="syz.7.1088" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  385.459957][ T5859] usb 9-1: Product: syz
[  385.480577][   T29] audit: type=1400 audit(1734974529.025:688): avc:  denied  { write open } for  pid=10406 comm="syz.7.1088" path="/179/file0" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  385.489655][ T5859] usb 9-1: Manufacturer: syz
[  385.516459][ T5859] usb 9-1: SerialNumber: syz
[  385.719186][ T5859] usb 9-1: config 0 descriptor??
[  385.785373][ T5859] smsc95xx v2.0.0
[  385.898269][ T5890] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[  385.979894][ T1828] usb 7-1: new high-speed USB device number 29 using dummy_hcd
[  386.069850][ T5890] usb 3-1: Using ep0 maxpacket: 32
[  386.102496][ T5890] usb 3-1: config 0 has an invalid interface number: 67 but max is 0
[  386.110904][ T5890] usb 3-1: config 0 has no interface number 0
[  386.118677][ T5890] usb 3-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  386.126716][ T5859] smsc95xx 9-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -71
[  386.128171][ T5890] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  386.143480][ T5859] smsc95xx 9-1:0.67: probe with driver smsc95xx failed with error -71
[  386.149019][ T5890] usb 3-1: Product: syz
[  386.164089][ T5890] usb 3-1: Manufacturer: syz
[  386.166672][ T5859] usb 9-1: USB disconnect, device number 10
[  386.169232][ T5890] usb 3-1: SerialNumber: syz
[  386.183198][ T1828] usb 7-1: Using ep0 maxpacket: 32
[  386.189827][ T1828] usb 7-1: config 0 has an invalid interface number: 67 but max is 0
[  386.725999][ T1828] usb 7-1: config 0 has no interface number 0
[  386.749487][ T5890] usb 3-1: config 0 descriptor??
[  386.756646][ T5890] smsc95xx v2.0.0
[  386.769842][ T1828] usb 7-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  386.779168][ T1828] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  386.787295][ T5890] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[  386.799540][ T5890] smsc95xx 3-1:0.67: probe with driver smsc95xx failed with error -22
[  386.807823][ T1828] usb 7-1: Product: syz
[  386.812027][ T1828] usb 7-1: Manufacturer: syz
[  386.816622][ T1828] usb 7-1: SerialNumber: syz
[  386.852763][ T1828] usb 7-1: config 0 descriptor??
[  386.861798][ T1828] smsc95xx v2.0.0
[  387.130223][ T5890] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  387.364347][ T5890] usb 8-1: Using ep0 maxpacket: 16
[  387.537001][ T1828] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71
[  387.560029][ T5890] usb 8-1: config 0 has an invalid interface number: 214 but max is 0
[  387.574785][ T5890] usb 8-1: config 0 has no interface number 0
[  387.581144][ T1828] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  387.590804][ T5890] usb 8-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid maxpacket 1023, setting to 64
[  387.604955][ T1828] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  387.618486][ T5890] usb 8-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[  387.630911][ T5890] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  387.753274][ T5890] usb 8-1: Product: syz
[  387.802275][ T1828] smsc95xx 7-1:0.67: probe with driver smsc95xx failed with error -71
[  387.864149][ T5890] usb 8-1: Manufacturer: syz
[  387.971203][ T5890] usb 8-1: SerialNumber: syz
[  387.985875][ T1828] usb 7-1: USB disconnect, device number 29
[  388.007539][ T5890] usb 8-1: config 0 descriptor??
[  388.148670][T10436] FAULT_INJECTION: forcing a failure.
[  388.148670][T10436] name failslab, interval 1, probability 0, space 0, times 0
[  388.161746][T10436] CPU: 0 UID: 0 PID: 10436 Comm: syz.6.1095 Not tainted 6.13.0-rc4-syzkaller #0
[  388.170785][T10436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  388.180834][T10436] Call Trace:
[  388.184093][T10436]  <TASK>
[  388.187002][T10436]  dump_stack_lvl+0x16c/0x1f0
[  388.191663][T10436]  should_fail_ex+0x497/0x5b0
[  388.196322][T10436]  should_failslab+0xc2/0x120
[  388.200988][T10436]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  388.206340][T10436]  ? skb_clone+0x190/0x3f0
[  388.210734][T10436]  skb_clone+0x190/0x3f0
[  388.214965][T10436]  neigh_probe+0x5d/0x110
[  388.219277][T10436]  __neigh_event_send+0xace/0x13e0
[  388.224375][T10436]  neigh_resolve_output+0x5ed/0x950
[  388.229558][T10436]  ? __pfx____neigh_create+0x10/0x10
[  388.234823][T10436]  ip6_finish_output2+0xb1b/0x2070
[  388.239919][T10436]  ip6_finish_output+0x3f9/0x1360
[  388.244936][T10436]  ip6_output+0x1f8/0x540
[  388.249243][T10436]  ? __pfx_ip6_output+0x10/0x10
[  388.254071][T10436]  ip6_local_out+0xcd/0x4a0
[  388.258579][T10436]  ip6_send_skb+0x112/0x460
[  388.263070][T10436]  ip6_push_pending_frames+0xe0/0x110
[  388.268421][T10436]  rawv6_sendmsg+0x2f80/0x4440
[  388.273161][T10436]  ? avc_has_perm_noaudit+0x119/0x3a0
[  388.278517][T10436]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  388.283617][T10436]  ? avc_has_perm_noaudit+0x143/0x3a0
[  388.288969][T10436]  ? avc_has_perm+0x11b/0x1c0
[  388.293639][T10436]  ? __pfx_avc_has_perm+0x10/0x10
[  388.298663][T10436]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  388.303838][T10436]  ? inet_sendmsg+0x119/0x140
[  388.308493][T10436]  inet_sendmsg+0x119/0x140
[  388.312976][T10436]  ____sys_sendmsg+0x98c/0xc90
[  388.317735][T10436]  ? copy_msghdr_from_user+0x10b/0x160
[  388.323177][T10436]  ? __pfx_____sys_sendmsg+0x10/0x10
[  388.328443][T10436]  ? __lock_acquire+0xcc5/0x3c40
[  388.333366][T10436]  ___sys_sendmsg+0x135/0x1e0
[  388.338018][T10436]  ? __pfx____sys_sendmsg+0x10/0x10
[  388.343198][T10436]  ? trace_lock_acquire+0x14e/0x1f0
[  388.348384][T10436]  __sys_sendmmsg+0x201/0x420
[  388.353052][T10436]  ? __pfx___sys_sendmmsg+0x10/0x10
[  388.358234][T10436]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  388.364197][T10436]  ? fput+0x67/0x440
[  388.368070][T10436]  ? ksys_write+0x1ba/0x250
[  388.372550][T10436]  ? __pfx_ksys_write+0x10/0x10
[  388.377378][T10436]  __x64_sys_sendmmsg+0x9c/0x100
[  388.382290][T10436]  ? lockdep_hardirqs_on+0x7c/0x110
[  388.387477][T10436]  do_syscall_64+0xcd/0x250
[  388.391958][T10436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.397829][T10436] RIP: 0033:0x7f9ef1d85d29
[  388.402219][T10436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  388.421810][T10436] RSP: 002b:00007f9ef2c20038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  388.430200][T10436] RAX: ffffffffffffffda RBX: 00007f9ef1f75fa0 RCX: 00007f9ef1d85d29
[  388.438321][T10436] RDX: 0000000000000001 RSI: 00000000200000c0 RDI: 0000000000000003
[  388.446270][T10436] RBP: 00007f9ef2c20090 R08: 0000000000000000 R09: 0000000000000000
[  388.454216][T10436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  388.462160][T10436] R13: 0000000000000000 R14: 00007f9ef1f75fa0 R15: 00007fff237e2eb8
[  388.470133][T10436]  </TASK>
[  388.549356][ T5890] usbtouchscreen 8-1:0.214: Failed to read FW rev: 15
[  388.556687][ T5890] usbtouchscreen 8-1:0.214: probe with driver usbtouchscreen failed with error -5
[  388.683608][ T5890] usb 3-1: USB disconnect, device number 38
[  389.456143][ T5859] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[  389.669059][ T5859] usb 7-1: Using ep0 maxpacket: 32
[  389.852379][ T5859] usb 7-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  389.929038][ T5859] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  389.957513][ T5859] usb 7-1: Product: syz
[  389.974078][ T5859] usb 7-1: Manufacturer: syz
[  389.978821][ T5859] usb 7-1: SerialNumber: syz
[  390.011617][ T5890] usb 8-1: USB disconnect, device number 19
[  390.078473][ T5859] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  390.797589][T10476] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1110'.
[  390.922942][T10476] kvm: kvm [10475]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x5f26
[  390.943812][T10476] kvm_intel: kvm [10475]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x1d9) = 0xef35
[  390.970184][T10476] kvm: kvm [10475]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x11e) = 0x7cba
[  390.989232][T10476] kvm: kvm [10475]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x186) = 0x9e7b
[  391.244978][ T5818] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[  391.421141][   T29] audit: type=1400 audit(1734974534.805:689): avc:  denied  { mount } for  pid=10483 comm="syz.8.1113" name="/" dev="selinuxfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=filesystem permissive=1
[  391.917110][T10492] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  391.926773][T10492] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  392.409284][ T5818] usb 2-1: Using ep0 maxpacket: 32
[  392.422295][ T5818] usb 2-1: config 0 has an invalid interface number: 67 but max is 0
[  392.430922][ T5818] usb 2-1: config 0 has no interface number 0
[  392.579880][ T5818] usb 2-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  392.589010][ T5818] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  392.622198][ T5818] usb 2-1: Product: syz
[  392.918655][T10507] Mount JFS Failure: -22
[  392.922859][ T5818] usb 2-1: Manufacturer: syz
[  392.923787][T10507] jfs_mount failed w/return code = -22
[  392.928114][ T5818] usb 2-1: SerialNumber: syz
[  393.005563][   T29] audit: type=1400 audit(1734974536.565:690): avc:  denied  { read } for  pid=10501 comm="syz.2.1118" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  393.010021][ T5818] usb 2-1: config 0 descriptor??
[  393.077473][ T5818] smsc95xx v2.0.0
[  393.081223][ T5818] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[  393.095947][ T5818] smsc95xx 2-1:0.67: probe with driver smsc95xx failed with error -22
[  394.455507][ T5859] gspca_stk1135: reg_w 0x351 err -71
[  394.462483][ T5859] gspca_stk1135: serial bus timeout: status=0x00
[  394.469063][ T5859] gspca_stk1135: Sensor write failed
[  394.475722][ T5859] gspca_stk1135: serial bus timeout: status=0x00
[  394.482141][ T5859] gspca_stk1135: Sensor write failed
[  394.487462][ T5859] gspca_stk1135: serial bus timeout: status=0x00
[  394.493888][ T5859] gspca_stk1135: Sensor read failed
[  394.499111][ T5859] gspca_stk1135: serial bus timeout: status=0x00
[  394.505480][ T5859] gspca_stk1135: Sensor read failed
[  394.510703][ T5859] gspca_stk1135: Detected sensor type unknown (0x0)
[  394.517327][ T5859] gspca_stk1135: serial bus timeout: status=0x00
[  394.523705][ T5859] gspca_stk1135: Sensor read failed
[  394.529010][ T5859] gspca_stk1135: serial bus timeout: status=0x00
[  394.535393][ T5859] gspca_stk1135: Sensor read failed
[  394.540671][ T5859] gspca_stk1135: serial bus timeout: status=0x00
[  394.547004][ T5859] gspca_stk1135: Sensor write failed
[  394.552567][ T5859] gspca_stk1135: serial bus timeout: status=0x00
[  394.558881][ T5859] gspca_stk1135: Sensor write failed
[  394.564730][ T5859] stk1135 7-1:64.0: probe with driver stk1135 failed with error -71
[  394.660587][ T5859] usb 7-1: USB disconnect, device number 30
[  395.882303][ T5862] usb 2-1: USB disconnect, device number 42
[  396.525389][T10554] FAULT_INJECTION: forcing a failure.
[  396.525389][T10554] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  396.544889][T10554] CPU: 1 UID: 0 PID: 10554 Comm: syz.1.1130 Not tainted 6.13.0-rc4-syzkaller #0
[  396.553965][T10554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  396.564046][T10554] Call Trace:
[  396.567337][T10554]  <TASK>
[  396.570264][T10554]  dump_stack_lvl+0x16c/0x1f0
[  396.574942][T10554]  should_fail_ex+0x497/0x5b0
[  396.579618][T10554]  _copy_from_user+0x2e/0xd0
[  396.584193][T10554]  vt_do_kdsk_ioctl+0x93/0xa90
[  396.588959][T10554]  ? __pfx_vt_do_kdsk_ioctl+0x10/0x10
[  396.594319][T10554]  ? bpf_lsm_capable+0x9/0x10
[  396.598981][T10554]  ? security_capable+0x7e/0x260
[  396.603908][T10554]  vt_ioctl+0xbf3/0x2f80
[  396.608157][T10554]  ? __pfx_vt_ioctl+0x10/0x10
[  396.612828][T10554]  ? tomoyo_path_number_perm+0x46d/0x590
[  396.618540][T10554]  ? find_held_lock+0x2d/0x110
[  396.623300][T10554]  ? avc_has_perm_noaudit+0x119/0x3a0
[  396.628680][T10554]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  396.634582][T10554]  ? do_vfs_ioctl+0x513/0x1990
[  396.639337][T10554]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  396.645221][T10554]  ? tty_jobctrl_ioctl+0x152/0xe00
[  396.650338][T10554]  ? __pfx_vt_ioctl+0x10/0x10
[  396.655019][T10554]  tty_ioctl+0x651/0x15d0
[  396.659355][T10554]  ? __pfx_tty_ioctl+0x10/0x10
[  396.664107][T10554]  ? cred_has_capability.isra.0+0x192/0x2f0
[  396.669996][T10554]  ? __pfx_cred_has_capability.isra.0+0x10/0x10
[  396.676278][T10554]  ? __pfx_lock_release+0x10/0x10
[  396.681311][T10554]  ? trace_lock_acquire+0x14e/0x1f0
[  396.686520][T10554]  ? selinux_file_ioctl+0xb4/0x270
[  396.691645][T10554]  ? __pfx_tty_ioctl+0x10/0x10
[  396.696396][T10554]  __x64_sys_ioctl+0x190/0x200
[  396.701160][T10554]  do_syscall_64+0xcd/0x250
[  396.705681][T10554]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  396.711570][T10554] RIP: 0033:0x7f6f6fb85d29
[  396.715985][T10554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  396.735586][T10554] RSP: 002b:00007f6f7095f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  396.743989][T10554] RAX: ffffffffffffffda RBX: 00007f6f6fd75fa0 RCX: 00007f6f6fb85d29
[  396.751967][T10554] RDX: 0000000020000080 RSI: 0000000000004b47 RDI: 0000000000000003
[  396.759924][T10554] RBP: 00007f6f7095f090 R08: 0000000000000000 R09: 0000000000000000
[  396.767881][T10554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  396.775838][T10554] R13: 0000000000000000 R14: 00007f6f6fd75fa0 R15: 00007ffe79c19a38
[  396.783823][T10554]  </TASK>
[  396.880273][ T5818] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[  397.192094][ T5890] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  397.420930][   T29] audit: type=1400 audit(1734974540.985:691): avc:  denied  { watch } for  pid=10561 comm="syz.1.1133" path="/259/file0" dev="tmpfs" ino=1450 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  397.464093][ T5818] usb 7-1: Using ep0 maxpacket: 16
[  397.470977][ T5818] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  397.482213][ T5818] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  397.519239][ T5818] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  397.544926][ T5818] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  397.549858][ T5890] usb 9-1: Using ep0 maxpacket: 32
[  397.575630][ T5818] usb 7-1: config 0 descriptor??
[  397.588894][ T5890] usb 9-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  397.608298][ T5890] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  397.632705][ T5890] usb 9-1: Product: syz
[  397.636967][ T5890] usb 9-1: Manufacturer: syz
[  397.641788][ T5862] usb 3-1: new high-speed USB device number 39 using dummy_hcd
[  397.659868][ T5890] usb 9-1: SerialNumber: syz
[  397.691467][ T5890] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  397.786475][T10568] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1135'.
[  397.795631][T10568] netlink: 'syz.1.1135': attribute type 2 has an invalid length.
[  397.870617][   T29] audit: type=1400 audit(1734974541.335:692): avc:  denied  { create } for  pid=10565 comm="syz.1.1135" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  398.049936][ T5862] usb 3-1: Using ep0 maxpacket: 16
[  398.337900][ T5890] gspca_stk1135: reg_w 0x2 err -110
[  398.344337][ T5890] gspca_stk1135: serial bus timeout: status=0x00
[  398.351293][ T5890] gspca_stk1135: Sensor write failed
[  398.356690][ T5890] gspca_stk1135: serial bus timeout: status=0x00
[  398.363171][ T5890] gspca_stk1135: Sensor write failed
[  398.368557][ T5890] gspca_stk1135: serial bus timeout: status=0x00
[  398.375045][ T5890] gspca_stk1135: Sensor read failed
[  398.380441][ T5890] gspca_stk1135: serial bus timeout: status=0x00
[  398.386864][ T5890] gspca_stk1135: Sensor read failed
[  398.392298][ T5890] gspca_stk1135: Detected sensor type unknown (0x0)
[  398.399017][ T5890] gspca_stk1135: serial bus timeout: status=0x00
[  398.405494][ T5890] gspca_stk1135: Sensor read failed
[  398.410861][ T5890] gspca_stk1135: serial bus timeout: status=0x00
[  398.417277][ T5890] gspca_stk1135: Sensor read failed
[  398.422701][ T5890] gspca_stk1135: serial bus timeout: status=0x00
[  398.429131][ T5890] gspca_stk1135: Sensor write failed
[  398.434583][ T5890] gspca_stk1135: serial bus timeout: status=0x00
[  398.441073][ T5890] gspca_stk1135: Sensor write failed
[  398.446481][ T5890] stk1135 9-1:64.0: probe with driver stk1135 failed with error -110
[  398.561497][ T5818] microsoft 0003:045E:07DA.000A: No inputs registered, leaving
[  398.589861][ T5862] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  398.590119][ T5818] microsoft 0003:045E:07DA.000A: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.6-1/input0
[  398.601066][ T5862] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  398.630352][ T5862] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  398.644918][ T5818] microsoft 0003:045E:07DA.000A: no inputs found
[  398.649888][ T5862] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  398.661260][ T5818] microsoft 0003:045E:07DA.000A: could not initialize ff, continuing anyway
[  398.670000][ T5862] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  398.671504][ T5862] usb 3-1: config 0 descriptor??
[  399.112855][ T5818] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[  399.122780][ T5862] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  399.130296][ T5862] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0
[  399.137896][ T5862] microsoft 0003:045E:07DA.000B: No inputs registered, leaving
[  399.146711][ T5862] microsoft 0003:045E:07DA.000B: hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  399.158467][ T5862] microsoft 0003:045E:07DA.000B: no inputs found
[  399.164955][ T5862] microsoft 0003:045E:07DA.000B: could not initialize ff, continuing anyway
[  399.719047][T10549] netlink: 10 bytes leftover after parsing attributes in process `syz.2.1128'.
[  399.747089][ T5862] usb 3-1: USB disconnect, device number 39
[  399.779830][ T5818] usb 2-1: Using ep0 maxpacket: 32
[  399.796836][ T5818] usb 2-1: config 0 has an invalid interface number: 67 but max is 0
[  399.806887][ T5818] usb 2-1: config 0 has no interface number 0
[  399.817219][ T5818] usb 2-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  399.826943][ T5818] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  399.894395][ T5818] usb 2-1: Product: syz
[  399.898605][ T5818] usb 2-1: Manufacturer: syz
[  399.903273][ T5818] usb 2-1: SerialNumber: syz
[  399.936393][ T5818] usb 2-1: config 0 descriptor??
[  399.945802][ T5818] smsc95xx v2.0.0
[  400.032124][ T5859] usb 9-1: USB disconnect, device number 11
[  401.226110][ T5818] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71
[  401.259236][ T5818] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  401.730405][ T5818] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  401.756619][ T5818] smsc95xx 2-1:0.67: probe with driver smsc95xx failed with error -71
[  401.776584][ T5818] usb 2-1: USB disconnect, device number 43
[  401.827957][ T5859] usb 7-1: USB disconnect, device number 31
[  402.271953][T10618] netlink: 'syz.6.1148': attribute type 4 has an invalid length.
[  402.509364][T10623] netlink: 'syz.6.1148': attribute type 4 has an invalid length.
[  402.846233][T10618] syz.6.1148 (10618) used greatest stack depth: 20576 bytes left
[  403.070058][ T5818] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[  403.239997][ T5818] usb 2-1: Using ep0 maxpacket: 16
[  403.245869][ T5859] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[  403.282851][ T5818] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  403.310676][ T5818] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  403.406889][ T5818] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  403.416234][ T5818] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  403.442998][ T5818] usb 2-1: config 0 descriptor??
[  403.529913][ T5859] usb 7-1: Using ep0 maxpacket: 32
[  403.546299][ T5859] usb 7-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  403.556142][ T5859] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  403.566470][ T5859] usb 7-1: Product: syz
[  403.570788][ T5859] usb 7-1: Manufacturer: syz
[  403.591268][ T5859] usb 7-1: SerialNumber: syz
[  403.788725][ T5859] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  404.032244][ T5818] microsoft 0003:045E:07DA.000C: No inputs registered, leaving
[  404.116657][ T5818] microsoft 0003:045E:07DA.000C: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  404.158657][ T5818] microsoft 0003:045E:07DA.000C: no inputs found
[  404.176475][ T5818] microsoft 0003:045E:07DA.000C: could not initialize ff, continuing anyway
[  404.987256][   T29] audit: type=1400 audit(1734974548.555:693): avc:  denied  { read } for  pid=10649 comm="syz.2.1156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  405.649971][ T6717] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[  405.799833][ T6717] usb 9-1: Using ep0 maxpacket: 32
[  405.806695][ T6717] usb 9-1: config 0 has an invalid interface number: 67 but max is 0
[  405.865745][ T6717] usb 9-1: config 0 has no interface number 0
[  405.930535][ T6717] usb 9-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  405.939658][ T6717] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  405.948072][ T6717] usb 9-1: Product: syz
[  405.964675][ T6717] usb 9-1: Manufacturer: syz
[  405.978045][ T6717] usb 9-1: SerialNumber: syz
[  406.001518][ T6717] usb 9-1: config 0 descriptor??
[  406.019342][ T6717] smsc95xx v2.0.0
[  406.495133][ T6717] smsc95xx 9-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71
[  406.645565][ T6717] smsc95xx 9-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  406.725177][ T6717] smsc95xx 9-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  406.742978][ T6717] smsc95xx 9-1:0.67: probe with driver smsc95xx failed with error -71
[  406.796980][ T6717] usb 9-1: USB disconnect, device number 12
[  407.548553][ T5861] usb 2-1: USB disconnect, device number 44
[  407.567598][ T5859] gspca_stk1135: reg_w 0x351 err -71
[  407.574488][ T5859] gspca_stk1135: serial bus timeout: status=0x00
[  407.583765][ T5859] gspca_stk1135: Sensor write failed
[  407.592103][ T5859] gspca_stk1135: serial bus timeout: status=0x00
[  407.598944][ T5859] gspca_stk1135: Sensor write failed
[  407.624366][ T5859] gspca_stk1135: serial bus timeout: status=0x00
[  407.647591][ T5859] gspca_stk1135: Sensor read failed
[  408.780526][ T5859] gspca_stk1135: serial bus timeout: status=0x00
[  408.787001][ T5859] gspca_stk1135: Sensor read failed
[  408.792478][ T5859] gspca_stk1135: Detected sensor type unknown (0x0)
[  408.800016][ T5859] gspca_stk1135: serial bus timeout: status=0x00
[  408.806366][ T5859] gspca_stk1135: Sensor read failed
[  408.811784][ T5859] gspca_stk1135: serial bus timeout: status=0x00
[  408.818158][ T5859] gspca_stk1135: Sensor read failed
[  408.823424][ T5859] gspca_stk1135: serial bus timeout: status=0x00
[  408.829819][ T5859] gspca_stk1135: Sensor write failed
[  408.835130][ T5859] gspca_stk1135: serial bus timeout: status=0x00
[  408.879948][ T5859] gspca_stk1135: Sensor write failed
[  408.921245][ T5859] stk1135 7-1:64.0: probe with driver stk1135 failed with error -71
[  409.193749][ T5859] usb 7-1: USB disconnect, device number 32
[  410.419904][ T5859] usb 7-1: new high-speed USB device number 33 using dummy_hcd
[  410.581623][ T5859] usb 7-1: unable to read config index 0 descriptor/start: -61
[  410.599874][ T5859] usb 7-1: can't read configurations, error -61
[  411.799863][ T5859] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[  412.584516][ T5859] usb 7-1: device descriptor read/all, error -71
[  412.592439][ T5859] usb usb7-port1: attempt power cycle
[  413.150275][T10732] 9pnet_fd: Insufficient options for proto=fd
[  413.996323][T10732] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1180'.
[  414.141667][T10742] 9pnet_fd: Insufficient options for proto=fd
[  414.157238][T10742] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1182'.
[  417.714146][T10774] 9pnet_fd: Insufficient options for proto=fd
[  418.679955][   T29] audit: type=1400 audit(1734974561.925:694): avc:  denied  { setattr } for  pid=10776 comm="syz.2.1194" name="vcsa" dev="devtmpfs" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[  418.826706][   T29] audit: type=1400 audit(1734974561.935:695): avc:  denied  { connect } for  pid=10776 comm="syz.2.1194" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  420.289947][ T6717] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[  420.341945][T10806] 9pnet_fd: Insufficient options for proto=fd
[  420.438225][T10810] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1202'.
[  420.470011][ T6717] usb 7-1: Using ep0 maxpacket: 32
[  420.489419][ T6717] usb 7-1: config 0 has an invalid interface number: 67 but max is 0
[  420.511816][ T6717] usb 7-1: config 0 has no interface number 0
[  420.566314][ T6717] usb 7-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  420.593769][ T6717] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  420.651335][ T6717] usb 7-1: Product: syz
[  420.709181][ T6717] usb 7-1: Manufacturer: syz
[  420.739983][ T6717] usb 7-1: SerialNumber: syz
[  420.761360][ T6717] usb 7-1: config 0 descriptor??
[  420.784933][ T6717] smsc95xx v2.0.0
[  421.094910][ T5862] usb 3-1: new high-speed USB device number 40 using dummy_hcd
[  421.249907][ T5862] usb 3-1: Using ep0 maxpacket: 16
[  421.769871][ T6717] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -71
[  421.781009][ T6717] smsc95xx 7-1:0.67: probe with driver smsc95xx failed with error -71
[  421.802889][ T6717] usb 7-1: USB disconnect, device number 36
[  421.816853][ T5862] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  421.827922][ T5862] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  421.841027][ T5862] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  421.850321][ T5862] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  421.867122][ T5862] usb 3-1: config 0 descriptor??
[  421.997827][T10823] netlink: 52 bytes leftover after parsing attributes in process `syz.7.1207'.
[  422.008199][T10823] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1207'.
[  422.473326][ T5862] microsoft 0003:045E:07DA.000D: No inputs registered, leaving
[  422.599203][ T5862] microsoft 0003:045E:07DA.000D: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  422.610792][ T5862] microsoft 0003:045E:07DA.000D: no inputs found
[  422.617284][ T5862] microsoft 0003:045E:07DA.000D: could not initialize ff, continuing anyway
[  424.416835][ T5859] usb 3-1: USB disconnect, device number 40
[  425.679856][ T5859] usb 7-1: new high-speed USB device number 37 using dummy_hcd
[  425.893530][ T5859] usb 7-1: Using ep0 maxpacket: 32
[  425.903016][ T5859] usb 7-1: config 0 has an invalid interface number: 67 but max is 0
[  425.915095][ T5859] usb 7-1: config 0 has no interface number 0
[  425.925232][ T5859] usb 7-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  425.940028][ T5859] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  425.952035][ T5859] usb 7-1: Product: syz
[  425.956295][ T5859] usb 7-1: Manufacturer: syz
[  425.969832][ T5859] usb 7-1: SerialNumber: syz
[  425.983280][ T5859] usb 7-1: config 0 descriptor??
[  426.073134][ T5862] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[  426.240254][ T5862] usb 2-1: Using ep0 maxpacket: 8
[  426.263356][ T5862] usb 2-1: config 0 has an invalid interface number: 176 but max is 0
[  426.337477][ T5862] usb 2-1: config 0 has no interface number 0
[  426.404880][ T5862] usb 2-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac
[  426.455452][ T5859] smsc95xx v2.0.0
[  426.463870][ T5862] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  426.485382][ T5862] usb 2-1: config 0 descriptor??
[  427.463326][ T5859] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71
[  427.474130][ T5859] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  427.483558][ T5859] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  427.494557][ T5859] smsc95xx 7-1:0.67: probe with driver smsc95xx failed with error -71
[  427.534155][ T5859] usb 7-1: USB disconnect, device number 37
[  428.049852][ T5859] usb 8-1: new high-speed USB device number 20 using dummy_hcd
[  428.199970][ T5859] usb 8-1: Using ep0 maxpacket: 32
[  428.212618][ T5859] usb 8-1: New USB device found, idVendor=041e, idProduct=403c, bcdDevice=cc.d7
[  428.223433][ T5859] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  428.244423][T10885] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1215'.
[  428.260148][T10884] 9pnet_fd: Insufficient options for proto=fd
[  428.271732][ T5859] usb 8-1: config 0 descriptor??
[  428.283845][T10884] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1223'.
[  428.289308][ T5859] gspca_main: sq930x-2.14.0 probing 041e:403c
[  429.442446][T10895] netlink: 'syz.8.1227': attribute type 1 has an invalid length.
[  430.167419][T10879] af_packet: tpacket_rcv: packet too big, clamped from 65075 to 3952. macoff=96
[  430.181537][T10879] netlink: 'syz.7.1222': attribute type 1 has an invalid length.
[  430.213282][T10879] netlink: 12054 bytes leftover after parsing attributes in process `syz.7.1222'.
[  430.220825][ T5859] gspca_sq930x: reg_w 0105 bf00 failed -110
[  430.228592][ T5859] sq930x 8-1:0.0: probe with driver sq930x failed with error -110
[  430.258404][ T5818] usb 2-1: USB disconnect, device number 45
[  430.281055][T10881] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1222'.
[  431.914002][   T29] audit: type=1326 audit(1734974575.485:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10906 comm="syz.1.1230" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6f6fb85d29 code=0x0
[  432.018495][T10920] 9pnet_fd: Insufficient options for proto=fd
[  432.041767][T10920] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1234'.
[  432.137704][   T29] audit: type=1326 audit(1734974575.705:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10922 comm="syz.1.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f6fb85d29 code=0x7ffc0000
[  432.207280][   T29] audit: type=1326 audit(1734974575.735:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10922 comm="syz.1.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f6f6fb85d29 code=0x7ffc0000
[  432.230706][    C0] vkms_vblank_simulate: vblank timer overrun
[  432.268454][   T29] audit: type=1326 audit(1734974575.735:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10922 comm="syz.1.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f6fb85d29 code=0x7ffc0000
[  432.563606][ T5818] usb 8-1: USB disconnect, device number 20
[  432.788245][T10933] syzkaller1: entered promiscuous mode
[  432.809989][T10933] syzkaller1: entered allmulticast mode
[  433.559884][ T1828] usb 7-1: new high-speed USB device number 38 using dummy_hcd
[  433.760654][ T1828] usb 7-1: Using ep0 maxpacket: 16
[  433.788086][ T1828] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  433.802815][ T1828] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  433.831686][ T1828] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  433.878885][ T1828] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  433.911868][ T1828] usb 7-1: config 0 descriptor??
[  434.329976][ T1828] microsoft 0003:045E:07DA.000E: No inputs registered, leaving
[  434.338475][ T1828] microsoft 0003:045E:07DA.000E: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.6-1/input0
[  435.002914][ T1828] microsoft 0003:045E:07DA.000E: no inputs found
[  435.009596][ T1828] microsoft 0003:045E:07DA.000E: could not initialize ff, continuing anyway
[  436.991623][ T5859] usb 7-1: USB disconnect, device number 38
[  437.147258][T10973] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1247'.
[  437.361876][T10977] SET target dimension over the limit!
[  437.518324][   T29] audit: type=1400 audit(1734974581.085:700): avc:  denied  { bind } for  pid=10967 comm="syz.8.1248" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  437.675133][   T29] audit: type=1400 audit(1734974581.085:701): avc:  denied  { listen } for  pid=10967 comm="syz.8.1248" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  437.699946][   T29] audit: type=1400 audit(1734974581.085:702): avc:  denied  { accept } for  pid=10967 comm="syz.8.1248" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  437.790364][ T6717] usb 7-1: new high-speed USB device number 39 using dummy_hcd
[  438.295154][ T6717] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  438.313953][ T6717] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  438.398775][ T6717] usb 7-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  438.564672][ T6717] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  438.575752][ T6717] usb 7-1: SerialNumber: syz
[  439.085260][ T5141] Bluetooth: hci3: SCO packet for unknown connection handle 201
[  439.401013][ T6717] usb 7-1: 0:2 : does not exist
[  439.413980][ T6717] usb 7-1: unit 5 not found!
[  439.429208][ T6717] usb 7-1: USB disconnect, device number 39
[  439.634922][ T5904] udevd[5904]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  439.686679][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  440.859969][ T5862] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[  440.894802][   T29] audit: type=1326 audit(1734974584.465:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11009 comm="syz.6.1260" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9ef1d85d29 code=0x0
[  441.709965][ T5862] usb 2-1: Using ep0 maxpacket: 32
[  442.835393][ T5862] usb 2-1: config index 0 descriptor too short (expected 156, got 27)
[  442.843630][ T5862] usb 2-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  442.854638][ T5862] usb 2-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  442.865738][ T5862] usb 2-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  442.879040][ T5862] usb 2-1: config 0 interface 0 has no altsetting 0
[  442.896420][ T5862] usb 2-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  442.930045][ T5862] usb 2-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  443.027667][ T5862] usb 2-1: Product: syz
[  443.045146][ T5862] usb 2-1: Manufacturer: syz
[  443.089359][ T5862] usb 2-1: SerialNumber: syz
[  443.100361][   T29] audit: type=1326 audit(1734974586.675:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11037 comm="syz.8.1267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd873785d29 code=0x7ffc0000
[  443.154014][ T5862] usb 2-1: config 0 descriptor??
[  443.182594][   T29] audit: type=1326 audit(1734974586.695:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11037 comm="syz.8.1267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7fd873785d29 code=0x7ffc0000
[  443.354994][   T29] audit: type=1326 audit(1734974586.695:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11037 comm="syz.8.1267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd873785d29 code=0x7ffc0000
[  443.545136][ T5862] ldusb 2-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  443.621031][ T5862] ldusb 2-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  443.698088][ T5862] usb 2-1: USB disconnect, device number 46
[  444.710348][ T5862] ldusb 2-1:0.0: LD USB Device #0 now disconnected
[  448.121099][T11085] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  448.130789][T11085] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  449.509889][ T5818] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[  450.039923][ T5818] usb 2-1: Using ep0 maxpacket: 32
[  450.056948][ T5818] usb 2-1: config 0 has an invalid interface number: 111 but max is 3
[  450.088279][ T5818] usb 2-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[  450.109871][ T5818] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  450.114640][T11109] overlayfs: missing 'lowerdir'
[  450.120149][ T5818] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 4
[  450.120178][ T5818] usb 2-1: config 0 has no interface number 0
[  450.120208][ T5818] usb 2-1: config 0 interface 111 altsetting 1 endpoint 0xB has an invalid bInterval 138, changing to 11
[  450.120236][ T5818] usb 2-1: config 0 interface 111 altsetting 1 endpoint 0xC has invalid wMaxPacketSize 0
[  450.161837][ T5818] usb 2-1: config 0 interface 111 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 7
[  450.175334][ T5818] usb 2-1: config 0 interface 111 has no altsetting 0
[  450.944056][ T5818] usb 2-1: New USB device found, idVendor=2001, idProduct=3a02, bcdDevice=57.90
[  450.953252][ T5818] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  450.963518][ T5818] usb 2-1: Product: syz
[  450.967700][ T5818] usb 2-1: Manufacturer: syz
[  450.983679][ T5818] usb 2-1: SerialNumber: syz
[  451.036408][ T5818] usb 2-1: config 0 descriptor??
[  451.127598][ T5818] usb 2-1: Could not find all expected endpoints
[  452.176202][ T5818] usb 2-1: USB disconnect, device number 47
[  455.749292][   T29] audit: type=1400 audit(1734974599.315:707): avc:  denied  { connect } for  pid=11182 comm="syz.8.1296" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  456.079836][ T6717] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[  456.820997][ T6717] usb 2-1: Using ep0 maxpacket: 32
[  456.836841][ T6717] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  456.846500][ T6717] usb 2-1: config 0 has no interface number 0
[  456.914362][ T6717] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  456.937988][ T6717] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  456.971244][ T6717] usb 2-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[  456.992943][ T6717] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  457.030169][ T6717] usb 2-1: config 0 descriptor??
[  457.321156][ T5860] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  457.969912][ T5860] usb 9-1: Using ep0 maxpacket: 32
[  457.989680][ T5860] usb 9-1: config 0 has an invalid interface number: 67 but max is 0
[  458.142559][ T5860] usb 9-1: config 0 has no interface number 0
[  458.179943][ T6717] uclogic 0003:28BD:0094.000F: pen parameters not found
[  458.193255][ T5860] usb 9-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  458.224500][ T5860] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  458.903495][ T6717] uclogic 0003:28BD:0094.000F: interface is invalid, ignoring
[  458.912199][ T5860] usb 9-1: Product: syz
[  458.916440][ T5860] usb 9-1: Manufacturer: syz
[  458.921088][ T5860] usb 9-1: SerialNumber: syz
[  458.959000][ T5860] usb 9-1: config 0 descriptor??
[  458.969317][ T5860] smsc95xx v2.0.0
[  459.196648][ T5818] usb 2-1: USB disconnect, device number 48
[  459.640454][ T5860] smsc95xx 9-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71
[  459.651743][ T5860] smsc95xx 9-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  459.662533][ T5860] smsc95xx 9-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  459.673643][ T5860] smsc95xx 9-1:0.67: probe with driver smsc95xx failed with error -71
[  459.687643][ T5860] usb 9-1: USB disconnect, device number 13
[  460.411309][T11222] overlayfs: missing 'lowerdir'
[  461.789881][ T5860] usb 8-1: new high-speed USB device number 21 using dummy_hcd
[  461.800039][ T6717] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[  461.927098][T11237] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  461.936826][T11237] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  462.450140][ T5860] usb 8-1: Using ep0 maxpacket: 16
[  462.456427][ T6717] usb 9-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  462.478901][ T6717] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  462.489580][ T5860] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  462.513165][ T6717] usb 9-1: config 0 descriptor??
[  462.519310][ T5860] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  462.540275][ T6717] gspca_main: cpia1-2.14.0 probing 0813:0001
[  462.570779][ T5860] usb 8-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  462.601721][ T5860] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  462.663081][ T5860] usb 8-1: config 0 descriptor??
[  463.039907][ T6717] cpia1 9-1:0.0: unexpected state after lo power cmd: 00
[  463.130185][ T5860] microsoft 0003:045E:07DA.0010: No inputs registered, leaving
[  463.138846][ T5860] microsoft 0003:045E:07DA.0010: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.7-1/input0
[  463.159784][ T5860] microsoft 0003:045E:07DA.0010: no inputs found
[  463.176378][ T5860] microsoft 0003:045E:07DA.0010: could not initialize ff, continuing anyway
[  463.283928][ T6717] gspca_cpia1: usb_control_msg 01, error -71
[  463.290173][ T6717] cpia1 9-1:0.0: only firmware version 1 is supported (got: 0)
[  463.305684][ T6717] usb 9-1: USB disconnect, device number 14
[  464.693321][   T29] audit: type=1400 audit(1734974608.205:708): avc:  denied  { unmount } for  pid=6492 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  467.097347][ T5859] usb 8-1: USB disconnect, device number 21
[  467.185624][T11279] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  467.195318][T11279] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  468.468194][T11285] netlink: 'syz.6.1326': attribute type 10 has an invalid length.
[  468.483081][T11285] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  468.508061][   T29] audit: type=1400 audit(1734974612.075:709): avc:  denied  { listen } for  pid=11284 comm="syz.6.1326" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  471.280163][T11316] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1333'.
[  472.150231][ T5818] usb 7-1: new high-speed USB device number 40 using dummy_hcd
[  472.339907][ T5818] usb 7-1: Using ep0 maxpacket: 8
[  472.349492][ T5818] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  472.441626][ T5818] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  472.848581][ T5818] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  472.861534][ T5818] usb 7-1: New USB device found, idVendor=04d8, idProduct=c002, bcdDevice= 0.00
[  472.870864][ T5818] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  472.911750][ T5818] usb 7-1: config 0 descriptor??
[  473.060920][T11331] overlayfs: missing 'lowerdir'
[  473.389252][ T5818] hid-picolcd 0003:04D8:C002.0011: unknown main item tag 0x0
[  473.397038][ T5818] hid-picolcd 0003:04D8:C002.0011: unknown main item tag 0x0
[  473.411199][ T5860] usb 9-1: new high-speed USB device number 15 using dummy_hcd
[  473.479942][ T5818] hid-picolcd 0003:04D8:C002.0011: No report with id 0x11 found
[  473.589622][T11342] FAULT_INJECTION: forcing a failure.
[  473.589622][T11342] name failslab, interval 1, probability 0, space 0, times 0
[  473.660763][T11342] CPU: 1 UID: 0 PID: 11342 Comm: syz.1.1341 Not tainted 6.13.0-rc4-syzkaller #0
[  473.669825][T11342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  473.679866][T11342] Call Trace:
[  473.683133][T11342]  <TASK>
[  473.686050][T11342]  dump_stack_lvl+0x16c/0x1f0
[  473.690715][T11342]  should_fail_ex+0x497/0x5b0
[  473.695385][T11342]  ? fs_reclaim_acquire+0xae/0x150
[  473.700476][T11342]  should_failslab+0xc2/0x120
[  473.705131][T11342]  __kmalloc_noprof+0xcb/0x510
[  473.709886][T11342]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  473.715506][T11342]  tomoyo_realpath_from_path+0xb9/0x720
[  473.721048][T11342]  ? tomoyo_path_number_perm+0x235/0x590
[  473.726663][T11342]  ? tomoyo_path_number_perm+0x235/0x590
[  473.732275][T11342]  tomoyo_path_number_perm+0x248/0x590
[  473.737721][T11342]  ? tomoyo_path_number_perm+0x235/0x590
[  473.743347][T11342]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  473.749318][T11342]  ? __pfx_lock_release+0x10/0x10
[  473.754335][T11342]  ? trace_lock_acquire+0x14e/0x1f0
[  473.759516][T11342]  ? lock_acquire+0x2f/0xb0
[  473.763996][T11342]  ? __fget_files+0x40/0x3a0
[  473.768564][T11342]  ? __fget_files+0x206/0x3a0
[  473.773223][T11342]  security_file_ioctl+0x9b/0x240
[  473.778230][T11342]  __x64_sys_ioctl+0xb7/0x200
[  473.782890][T11342]  do_syscall_64+0xcd/0x250
[  473.787373][T11342]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  473.793245][T11342] RIP: 0033:0x7f6f6fb85d29
[  473.797637][T11342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  473.817223][T11342] RSP: 002b:00007f6f7095f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  473.825622][T11342] RAX: ffffffffffffffda RBX: 00007f6f6fd75fa0 RCX: 00007f6f6fb85d29
[  473.833580][T11342] RDX: 0000000020000040 RSI: 00000000400454d9 RDI: 0000000000000005
[  473.841546][T11342] RBP: 00007f6f7095f090 R08: 0000000000000000 R09: 0000000000000000
[  473.849497][T11342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  473.857447][T11342] R13: 0000000000000000 R14: 00007f6f6fd75fa0 R15: 00007ffe79c19a38
[  473.865406][T11342]  </TASK>
[  473.893471][T11342] ERROR: Out of memory at tomoyo_realpath_from_path.
[  473.959803][ T5860] usb 9-1: Using ep0 maxpacket: 32
[  473.985293][ T5860] usb 9-1: config index 0 descriptor too short (expected 29220, got 36)
[  473.996500][ T5860] usb 9-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  474.005225][ T5860] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 81
[  474.025854][ T5860] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  474.048529][ T5860] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  474.064278][ T5860] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  474.077439][ T5860] usb 9-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  474.096592][ T5860] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  474.131182][ T5860] usb 9-1: config 0 descriptor??
[  475.151308][ T5860] usblp 9-1:0.0: usblp0: USB Bidirectional printer dev 15 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  475.182144][ T5860] usb 9-1: USB disconnect, device number 15
[  475.217187][ T5860] usblp0: removed
[  475.361986][ T5861] usb 7-1: USB disconnect, device number 40
[  476.349941][ T5860] usb 9-1: new high-speed USB device number 16 using dummy_hcd
[  476.509892][ T5860] usb 9-1: Using ep0 maxpacket: 32
[  476.525902][ T5860] usb 9-1: config index 0 descriptor too short (expected 29220, got 36)
[  476.567866][ T5860] usb 9-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  476.600030][ T5860] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 81
[  476.624709][ T5860] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  476.667457][ T5860] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  476.685671][ T5860] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  476.882850][ T5861] usb 3-1: new full-speed USB device number 41 using dummy_hcd
[  477.046339][ T5860] usb 9-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  477.055922][ T5860] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  477.075780][ T5860] usb 9-1: config 0 descriptor??
[  477.183985][T11374] syz.6.1350: attempt to access beyond end of device
[  477.183985][T11374] nbd6: rw=2048, sector=2, nr_sectors = 1 limit=0
[  477.206811][   T29] audit: type=1400 audit(1734974620.735:710): avc:  denied  { connect } for  pid=11368 comm="syz.6.1350" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  477.231396][ T5861] usb 3-1: New USB device found, idVendor=13d8, idProduct=0001, bcdDevice=30.62
[  477.302077][ T5861] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  477.522085][ T5861] usb 3-1: Product: syz
[  477.526288][ T5861] usb 3-1: Manufacturer: syz
[  477.535416][ T5860] usb 9-1: can't set config #0, error -71
[  477.542572][   T29] audit: type=1400 audit(1734974620.745:711): avc:  denied  { write } for  pid=11368 comm="syz.6.1350" laddr=fe80::7cb5:b8ff:fe1b:711f lport=31 faddr=ff01::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  477.566843][   T29] audit: type=1400 audit(1734974620.745:712): avc:  denied  { read } for  pid=11368 comm="syz.6.1350" laddr=fe80::7cb5:b8ff:fe1b:711f lport=31 faddr=ff01::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  477.603250][ T5861] usb 3-1: SerialNumber: syz
[  477.667118][ T5861] usb 3-1: config 0 descriptor??
[  477.676219][ T5860] usb 9-1: USB disconnect, device number 16
[  477.744829][ T5861] usb 3-1: selecting invalid altsetting 3
[  477.756933][ T5861] comedi comedi0: could not set alternate setting 3 in high speed
[  477.767245][ T5818] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[  477.767549][   T29] audit: type=1400 audit(1734974621.335:713): avc:  denied  { ioctl } for  pid=11377 comm="syz.6.1353" path="socket:[32252]" dev="sockfs" ino=32252 ioctlcmd=0x8924 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  477.778495][ T5861] usbdux 3-1:0.0: driver 'usbdux' failed to auto-configure device.
[  477.846150][ T5861] usbdux 3-1:0.0: probe with driver usbdux failed with error -22
[  477.989937][ T5818] usb 2-1: Using ep0 maxpacket: 16
[  477.999473][ T5818] usb 2-1: config 0 has an invalid descriptor of length 243, skipping remainder of the config
[  478.020243][ T5818] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  478.042147][ T5861] usb 3-1: USB disconnect, device number 41
[  478.056576][ T5818] usb 2-1: New USB device found, idVendor=1e7d, idProduct=3232, bcdDevice= 0.00
[  478.066860][ T5818] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  478.103560][ T5818] usb 2-1: config 0 descriptor??
[  479.462880][T11401] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  479.736917][T11402] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1355'.
[  479.746526][T11402] netlink: 264 bytes leftover after parsing attributes in process `syz.7.1355'.
[  479.755842][T11402] netlink: 64 bytes leftover after parsing attributes in process `syz.7.1355'.
[  481.166301][T11405] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  481.254533][T11405] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  481.310010][ T5860] usb 3-1: new high-speed USB device number 42 using dummy_hcd
[  481.462906][ T5860] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  481.479427][ T5860] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  481.600228][ T5862] usb 8-1: new high-speed USB device number 22 using dummy_hcd
[  481.609346][ T5860] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  481.618767][ T5860] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  481.630305][ T5860] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  481.794407][ T5818] usb 2-1: string descriptor 0 read error: -71
[  481.838570][ T5818] usb 2-1: USB disconnect, device number 49
[  481.888774][ T5860] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  481.908856][ T5860] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  481.917079][ T5860] usb 3-1: Product: syz
[  481.921353][ T5860] usb 3-1: Manufacturer: syz
[  481.950192][ T5860] cdc_wdm 3-1:1.0: skipping garbage
[  481.955441][ T5860] cdc_wdm 3-1:1.0: skipping garbage
[  481.980433][ T5860] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[  481.986410][ T5860] cdc_wdm 3-1:1.0: Unknown control protocol
[  482.070488][ T5862] usb 8-1: Using ep0 maxpacket: 32
[  482.093505][ T5862] usb 8-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  482.118779][ T5862] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  482.139364][ T5818] usb 3-1: USB disconnect, device number 42
[  482.149568][ T5862] usb 8-1: Product: syz
[  482.167458][ T5862] usb 8-1: Manufacturer: syz
[  482.179800][ T5862] usb 8-1: SerialNumber: syz
[  482.237147][ T5862] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  482.599939][ T5818] usb 3-1: new high-speed USB device number 43 using dummy_hcd
[  482.761167][ T5818] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  482.769986][ T5818] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  482.780225][ T5818] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  482.789207][ T5818] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  482.800546][ T5818] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  482.813305][ T5818] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  482.830873][ T5818] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  482.859253][ T5818] usb 3-1: Product: syz
[  482.867074][ T5818] usb 3-1: Manufacturer: syz
[  482.917821][ T5818] cdc_wdm 3-1:1.0: skipping garbage
[  482.942112][ T5818] cdc_wdm 3-1:1.0: skipping garbage
[  482.981275][ T5818] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[  482.987631][ T5818] cdc_wdm 3-1:1.0: Unknown control protocol
[  483.120285][ T6717] usb 3-1: USB disconnect, device number 43
[  485.356361][T11454] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  485.366093][T11454] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  486.911432][ T5862] gspca_stk1135: reg_w 0x300 err -71
[  486.926632][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  487.104752][ T5141] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  487.106002][ T5862] gspca_stk1135: Sensor write failed
[  487.118928][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  487.125355][ T5862] gspca_stk1135: Sensor write failed
[  487.130951][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  487.137303][ T5862] gspca_stk1135: Sensor read failed
[  487.142894][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  487.149442][ T5862] gspca_stk1135: Sensor read failed
[  487.155147][ T5862] gspca_stk1135: Detected sensor type unknown (0x0)
[  487.161833][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  487.168185][ T5862] gspca_stk1135: Sensor read failed
[  487.173523][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  487.179929][ T5862] gspca_stk1135: Sensor read failed
[  487.185144][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  487.191586][ T5862] gspca_stk1135: Sensor write failed
[  487.196898][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  487.203388][ T5862] gspca_stk1135: Sensor write failed
[  487.208939][ T5862] stk1135 8-1:64.0: probe with driver stk1135 failed with error -71
[  487.258960][T11467] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  487.268651][T11467] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  487.375133][ T5862] usb 8-1: USB disconnect, device number 22
[  488.241064][T11474] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  488.449143][T11474] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  488.496273][T11476] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1372'.
[  488.524171][T11476] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1372'.
[  489.420736][T11476] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1372'.
[  489.470074][T11476] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1372'.
[  490.842215][ T6717] usb 8-1: new full-speed USB device number 23 using dummy_hcd
[  491.463804][ T6717] usb 8-1: too many configurations: 36, using maximum allowed: 8
[  491.481213][ T6717] usb 8-1: unable to read config index 0 descriptor/start: -61
[  491.493782][ T6717] usb 8-1: can't read configurations, error -61
[  491.614215][ T5141] Bluetooth: hci0: unexpected event for opcode 0x0405
[  491.670653][ T6717] usb 8-1: new full-speed USB device number 24 using dummy_hcd
[  492.141610][ T6717] usb 8-1: too many configurations: 36, using maximum allowed: 8
[  492.154093][ T6717] usb 8-1: unable to read config index 0 descriptor/start: -61
[  492.167194][T11513] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  492.176936][T11513] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  492.189913][ T5862] usb 9-1: new high-speed USB device number 17 using dummy_hcd
[  492.260210][ T6717] usb 8-1: can't read configurations, error -61
[  492.355752][ T5862] usb 9-1: Using ep0 maxpacket: 32
[  492.397724][ T5862] usb 9-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  492.599811][ T5862] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  492.607995][ T5862] usb 9-1: Product: syz
[  492.612492][ T5862] usb 9-1: Manufacturer: syz
[  492.617131][ T5862] usb 9-1: SerialNumber: syz
[  492.623092][ T6717] usb usb8-port1: attempt power cycle
[  492.721492][ T5141] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  492.722723][ T5862] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  494.600115][ T5862] gspca_stk1135: reg_w 0xd err -110
[  494.620381][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  494.747380][ T5862] gspca_stk1135: Sensor write failed
[  494.758148][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  494.773076][ T5862] gspca_stk1135: Sensor write failed
[  494.783802][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  494.799747][ T5862] gspca_stk1135: Sensor read failed
[  494.809834][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  494.817442][ T5862] gspca_stk1135: Sensor read failed
[  494.826308][ T5862] gspca_stk1135: Detected sensor type unknown (0x0)
[  494.833214][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  494.839654][ T5862] gspca_stk1135: Sensor read failed
[  494.875528][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  494.881977][ T5862] gspca_stk1135: Sensor read failed
[  494.887199][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  494.893609][ T5862] gspca_stk1135: Sensor write failed
[  494.898914][ T5862] gspca_stk1135: serial bus timeout: status=0x00
[  494.905311][ T5862] gspca_stk1135: Sensor write failed
[  494.911239][ T5862] stk1135 9-1:64.0: probe with driver stk1135 failed with error -110
[  494.929832][ T5141] Bluetooth: hci2: unexpected event for opcode 0x0405
[  495.821968][T11552] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  495.856021][T11552] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  497.107550][ T6717] usb 9-1: USB disconnect, device number 17
[  497.273784][T11567] syz.6.1403: attempt to access beyond end of device
[  497.273784][T11567] loop6: rw=0, sector=2, nr_sectors = 1 limit=0
[  497.286988][T11567] hfs: can't find a HFS filesystem on dev loop6
[  497.299944][   T29] audit: type=1400 audit(1734974640.845:714): avc:  denied  { wake_alarm } for  pid=11564 comm="syz.6.1403" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  499.983232][T11595] overlayfs: missing 'lowerdir'
[  500.072820][ T5818] usb 7-1: new high-speed USB device number 41 using dummy_hcd
[  500.339976][ T5818] usb 7-1: Using ep0 maxpacket: 32
[  500.380574][ T5818] usb 7-1: config 0 has an invalid interface number: 111 but max is 3
[  500.388918][ T5818] usb 7-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[  500.398312][ T5818] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  500.408938][ T5818] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 4
[  500.418041][ T5818] usb 7-1: config 0 has no interface number 0
[  500.424766][ T5818] usb 7-1: config 0 interface 111 altsetting 1 endpoint 0xB has an invalid bInterval 138, changing to 11
[  500.438529][ T5818] usb 7-1: config 0 interface 111 altsetting 1 endpoint 0xC has invalid wMaxPacketSize 0
[  500.449937][ T5818] usb 7-1: config 0 interface 111 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 7
[  500.464628][ T5818] usb 7-1: config 0 interface 111 has no altsetting 0
[  500.515075][ T5818] usb 7-1: New USB device found, idVendor=2001, idProduct=3a02, bcdDevice=57.90
[  500.524753][ T5818] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  500.533418][ T5818] usb 7-1: Product: syz
[  500.538116][ T5818] usb 7-1: Manufacturer: syz
[  500.543475][ T5818] usb 7-1: SerialNumber: syz
[  500.584278][ T5818] usb 7-1: config 0 descriptor??
[  500.598410][ T5818] usb 7-1: Could not find all expected endpoints
[  500.726385][   T29] audit: type=1400 audit(1734974644.295:715): avc:  denied  { getopt } for  pid=11600 comm="syz.1.1412" lport=54678 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  500.796937][   T80] usb 7-1: USB disconnect, device number 41
[  501.114179][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  501.159962][ T5818] usb 3-1: new high-speed USB device number 44 using dummy_hcd
[  501.573915][ T5818] usb 3-1: Using ep0 maxpacket: 16
[  501.619209][ T5818] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  501.633953][ T5818] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  501.647355][ T5818] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  501.660606][T11609] block nbd6: Device being setup by another task
[  501.662639][ T5818] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  502.367593][T11605] block nbd6: NBD_DISCONNECT
[  502.435871][ T5818] usb 3-1: config 0 descriptor??
[  502.548775][T11617] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1416'.
[  502.600883][T11604] block nbd6: Disconnected due to user request.
[  502.624085][T11604] block nbd6: shutting down sockets
[  502.656290][T11611] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1416'.
[  502.870326][ T5818] microsoft 0003:045E:07DA.0012: No inputs registered, leaving
[  502.878668][ T5818] microsoft 0003:045E:07DA.0012: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  502.892234][ T5818] microsoft 0003:045E:07DA.0012: no inputs found
[  502.899000][ T5818] microsoft 0003:045E:07DA.0012: could not initialize ff, continuing anyway
[  504.804476][ T5814] Bluetooth: hci4: command 0x0405 tx timeout
[  505.566289][T11649] overlayfs: missing 'lowerdir'
[  506.979323][ T2144] usb 3-1: USB disconnect, device number 44
[  507.029894][ T1828] usb 8-1: new high-speed USB device number 26 using dummy_hcd
[  507.180014][ T1828] usb 8-1: Using ep0 maxpacket: 32
[  507.190224][ T1828] usb 8-1: config 0 has an invalid interface number: 111 but max is 3
[  507.212820][ T1828] usb 8-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[  507.233458][ T1828] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  507.244694][ T1828] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 4
[  507.258156][ T1828] usb 8-1: config 0 has no interface number 0
[  507.266322][ T1828] usb 8-1: config 0 interface 111 altsetting 1 endpoint 0xB has an invalid bInterval 138, changing to 11
[  507.281952][ T1828] usb 8-1: config 0 interface 111 altsetting 1 endpoint 0xC has invalid wMaxPacketSize 0
[  507.294097][ T1828] usb 8-1: config 0 interface 111 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 7
[  507.327861][ T1828] usb 8-1: config 0 interface 111 has no altsetting 0
[  507.339552][ T1828] usb 8-1: New USB device found, idVendor=2001, idProduct=3a02, bcdDevice=57.90
[  507.349096][ T1828] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  507.357866][ T1828] usb 8-1: Product: syz
[  507.369313][ T1828] usb 8-1: Manufacturer: syz
[  507.378703][ T1828] usb 8-1: SerialNumber: syz
[  507.393463][ T1828] usb 8-1: config 0 descriptor??
[  507.400548][ T1828] usb 8-1: Could not find all expected endpoints
[  507.552835][T11671] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2048 sclass=netlink_route_socket pid=11671 comm=syz.2.1430
[  507.568063][T11671] netlink: 'syz.2.1430': attribute type 1 has an invalid length.
[  507.603812][ T1828] usb 8-1: USB disconnect, device number 26
[  507.693396][T11671] 8021q: adding VLAN 0 to HW filter on device bond2
[  507.702827][T11671] bond1: (slave bond2): making interface the new active one
[  507.725716][T11671] bond1: (slave bond2): Enslaving as an active interface with an up link
[  508.108824][T11681] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  508.118571][T11681] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  508.924761][   T29] audit: type=1400 audit(1734974652.445:716): avc:  denied  { getopt } for  pid=11694 comm="syz.2.1434" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  509.300481][ T5862] usb 7-1: new high-speed USB device number 42 using dummy_hcd
[  509.500141][ T5862] usb 7-1: Using ep0 maxpacket: 16
[  509.513437][ T5862] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  509.527790][ T5862] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  509.550938][ T5862] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  509.804196][ T5862] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  509.832301][ T5862] usb 7-1: config 0 descriptor??
[  510.296696][ T5862] microsoft 0003:045E:07DA.0013: No inputs registered, leaving
[  510.569934][ T5862] microsoft 0003:045E:07DA.0013: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.6-1/input0
[  510.581748][ T5862] microsoft 0003:045E:07DA.0013: no inputs found
[  510.588299][ T5862] microsoft 0003:045E:07DA.0013: could not initialize ff, continuing anyway
[  510.731807][   T80] usb 8-1: new high-speed USB device number 27 using dummy_hcd
[  511.169807][   T80] usb 8-1: Using ep0 maxpacket: 32
[  511.176534][   T80] usb 8-1: config 0 has an invalid interface number: 111 but max is 3
[  511.185001][   T80] usb 8-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[  511.199798][   T80] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  511.218063][   T80] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 4
[  511.303808][   T80] usb 8-1: config 0 has no interface number 0
[  511.310208][   T80] usb 8-1: config 0 interface 111 altsetting 1 endpoint 0xB has an invalid bInterval 138, changing to 11
[  511.321616][   T80] usb 8-1: config 0 interface 111 altsetting 1 endpoint 0xC has invalid wMaxPacketSize 0
[  511.331618][   T80] usb 8-1: config 0 interface 111 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 7
[  511.897673][   T80] usb 8-1: config 0 interface 111 has no altsetting 0
[  511.938395][   T80] usb 8-1: New USB device found, idVendor=2001, idProduct=3a02, bcdDevice=57.90
[  511.957006][   T80] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  511.998258][   T80] usb 8-1: Product: syz
[  512.029802][   T80] usb 8-1: Manufacturer: syz
[  512.054214][   T80] usb 8-1: SerialNumber: syz
[  512.171944][   T80] usb 8-1: config 0 descriptor??
[  512.180582][   T80] usb 8-1: Could not find all expected endpoints
[  512.410844][   T80] usb 8-1: USB disconnect, device number 27
[  513.382216][T11738] overlayfs: missing 'lowerdir'
[  513.667508][T11748] FAULT_INJECTION: forcing a failure.
[  513.667508][T11748] name failslab, interval 1, probability 0, space 0, times 0
[  513.689079][T11748] CPU: 1 UID: 0 PID: 11748 Comm: syz.7.1453 Not tainted 6.13.0-rc4-syzkaller #0
[  513.698147][T11748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  513.708199][T11748] Call Trace:
[  513.711467][T11748]  <TASK>
[  513.714387][T11748]  dump_stack_lvl+0x16c/0x1f0
[  513.719065][T11748]  should_fail_ex+0x497/0x5b0
[  513.723745][T11748]  should_failslab+0xc2/0x120
[  513.728406][T11748]  __kmalloc_cache_noprof+0x68/0x410
[  513.733682][T11748]  ? stack_depot_init+0x39/0x120
[  513.738608][T11748]  __hw_addr_add_ex+0x3c8/0x7c0
[  513.743445][T11748]  ? __pfx___hw_addr_add_ex+0x10/0x10
[  513.748803][T11748]  ? __mutex_unlock_slowpath+0x71/0x690
[  513.754339][T11748]  dev_addr_init+0x162/0x250
[  513.758913][T11748]  ? __pfx_dev_addr_init+0x10/0x10
[  513.764022][T11748]  ? __pfx_ipip_tunnel_setup+0x10/0x10
[  513.769478][T11748]  ? __pfx_ipip_tunnel_setup+0x10/0x10
[  513.774915][T11748]  alloc_netdev_mqs+0x3ef/0x1510
[  513.779927][T11748]  rtnl_create_link+0xc10/0xfa0
[  513.784765][T11748]  rtnl_newlink+0x14c6/0x1d60
[  513.789440][T11748]  ? __pfx_rtnl_newlink+0x10/0x10
[  513.794472][T11748]  ? __pfx___lock_acquire+0x10/0x10
[  513.799651][T11748]  ? cred_has_capability.isra.0+0x192/0x2f0
[  513.805548][T11748]  ? __pfx_cred_has_capability.isra.0+0x10/0x10
[  513.811792][T11748]  ? find_held_lock+0x2d/0x110
[  513.816576][T11748]  ? rtnetlink_rcv_msg+0x93a/0xea0
[  513.821676][T11748]  ? __pfx_lock_release+0x10/0x10
[  513.826688][T11748]  ? trace_lock_acquire+0x14e/0x1f0
[  513.831888][T11748]  ? __pfx_rtnl_newlink+0x10/0x10
[  513.836899][T11748]  rtnetlink_rcv_msg+0x95b/0xea0
[  513.841822][T11748]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  513.847270][T11748]  netlink_rcv_skb+0x16b/0x440
[  513.852016][T11748]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  513.857466][T11748]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  513.862781][T11748]  ? netlink_deliver_tap+0x1ae/0xd30
[  513.868064][T11748]  netlink_unicast+0x53c/0x7f0
[  513.872828][T11748]  ? __pfx_netlink_unicast+0x10/0x10
[  513.878110][T11748]  netlink_sendmsg+0x8b8/0xd70
[  513.882956][T11748]  ? __pfx_netlink_sendmsg+0x10/0x10
[  513.888245][T11748]  ____sys_sendmsg+0xaaf/0xc90
[  513.892998][T11748]  ? copy_msghdr_from_user+0x10b/0x160
[  513.898439][T11748]  ? __pfx_____sys_sendmsg+0x10/0x10
[  513.903713][T11748]  ___sys_sendmsg+0x135/0x1e0
[  513.908369][T11748]  ? __pfx____sys_sendmsg+0x10/0x10
[  513.913554][T11748]  ? __pfx_lock_release+0x10/0x10
[  513.918566][T11748]  ? trace_lock_acquire+0x14e/0x1f0
[  513.923775][T11748]  ? __fget_files+0x206/0x3a0
[  513.928440][T11748]  __sys_sendmsg+0x16e/0x220
[  513.933039][T11748]  ? __pfx___sys_sendmsg+0x10/0x10
[  513.938144][T11748]  do_syscall_64+0xcd/0x250
[  513.942636][T11748]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  513.948526][T11748] RIP: 0033:0x7feeca785d29
[  513.952950][T11748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  513.972563][T11748] RSP: 002b:00007feecb651038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  513.980973][T11748] RAX: ffffffffffffffda RBX: 00007feeca975fa0 RCX: 00007feeca785d29
[  513.988923][T11748] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  513.996963][T11748] RBP: 00007feecb651090 R08: 0000000000000000 R09: 0000000000000000
[  514.004924][T11748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  514.012891][T11748] R13: 0000000000000000 R14: 00007feeca975fa0 R15: 00007ffd4b406468
[  514.020870][T11748]  </TASK>
[  514.148291][ T6717] usb 7-1: USB disconnect, device number 42
[  515.486275][   T29] audit: type=1400 audit(1734974659.055:717): avc:  denied  { read } for  pid=11765 comm="syz.6.1459" name="file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  515.524324][   T29] audit: type=1400 audit(1734974659.055:718): avc:  denied  { open } for  pid=11765 comm="syz.6.1459" path="/222/file0/file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  515.585938][T11771] block device autoloading is deprecated and will be removed.
[  519.487084][T11810] FAULT_INJECTION: forcing a failure.
[  519.487084][T11810] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  519.507864][T11810] CPU: 0 UID: 0 PID: 11810 Comm: syz.7.1467 Not tainted 6.13.0-rc4-syzkaller #0
[  519.516936][T11810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  519.527007][T11810] Call Trace:
[  519.530291][T11810]  <TASK>
[  519.533213][T11810]  dump_stack_lvl+0x16c/0x1f0
[  519.537874][T11810]  should_fail_ex+0x497/0x5b0
[  519.542536][T11810]  _copy_to_user+0x32/0xd0
[  519.546928][T11810]  bpf_test_finish.isra.0+0x52b/0x680
[  519.552282][T11810]  ? __pfx_bpf_test_finish.isra.0+0x10/0x10
[  519.558172][T11810]  ? __asan_memset+0x23/0x50
[  519.562745][T11810]  bpf_prog_test_run_skb+0x1363/0x2270
[  519.568191][T11810]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  519.573976][T11810]  ? fput+0x67/0x440
[  519.577853][T11810]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  519.583647][T11810]  __sys_bpf+0xfc6/0x49c0
[  519.588005][T11810]  ? __pfx_lock_release+0x10/0x10
[  519.593025][T11810]  ? __pfx___sys_bpf+0x10/0x10
[  519.597794][T11810]  ? vfs_write+0x306/0x1150
[  519.602306][T11810]  ? __mutex_unlock_slowpath+0x164/0x690
[  519.606794][T11812] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  519.607957][T11810]  ? fput+0x67/0x440
[  519.607987][T11810]  ? ksys_write+0x1ba/0x250
[  519.617643][T11812] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  519.621327][T11810]  ? __pfx_ksys_write+0x10/0x10
[  519.621362][T11810]  __x64_sys_bpf+0x78/0xc0
[  519.621388][T11810]  ? lockdep_hardirqs_on+0x7c/0x110
[  519.648851][T11810]  do_syscall_64+0xcd/0x250
[  519.653342][T11810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.659234][T11810] RIP: 0033:0x7feeca785d29
[  519.663670][T11810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  519.683292][T11810] RSP: 002b:00007feecb651038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  519.691709][T11810] RAX: ffffffffffffffda RBX: 00007feeca975fa0 RCX: 00007feeca785d29
[  519.699679][T11810] RDX: 0000000000000023 RSI: 0000000020000240 RDI: 000000000000000a
[  519.707648][T11810] RBP: 00007feecb651090 R08: 0000000000000000 R09: 0000000000000000
[  519.715601][T11810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  519.723551][T11810] R13: 0000000000000000 R14: 00007feeca975fa0 R15: 00007ffd4b406468
[  519.731522][T11810]  </TASK>
[  519.997417][ T5141] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  520.259272][T11822] FAULT_INJECTION: forcing a failure.
[  520.259272][T11822] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  520.300335][T11822] CPU: 1 UID: 0 PID: 11822 Comm: syz.7.1471 Not tainted 6.13.0-rc4-syzkaller #0
[  520.309408][T11822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  520.319483][T11822] Call Trace:
[  520.322757][T11822]  <TASK>
[  520.325680][T11822]  dump_stack_lvl+0x16c/0x1f0
[  520.330359][T11822]  should_fail_ex+0x497/0x5b0
[  520.335036][T11822]  _copy_to_user+0x32/0xd0
[  520.339439][T11822]  simple_read_from_buffer+0xd0/0x160
[  520.344828][T11822]  proc_fail_nth_read+0x198/0x270
[  520.349848][T11822]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  520.355389][T11822]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  520.360956][T11822]  vfs_read+0x1df/0xbe0
[  520.365116][T11822]  ? __fget_files+0x1fc/0x3a0
[  520.369796][T11822]  ? __pfx___mutex_lock+0x10/0x10
[  520.374814][T11822]  ? __pfx_vfs_read+0x10/0x10
[  520.379918][T11822]  ? __fget_files+0x206/0x3a0
[  520.384588][T11822]  ksys_read+0x12b/0x250
[  520.388817][T11822]  ? __pfx_ksys_read+0x10/0x10
[  520.393577][T11822]  do_syscall_64+0xcd/0x250
[  520.398087][T11822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  520.403972][T11822] RIP: 0033:0x7feeca78473c
[  520.408390][T11822] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  520.427988][T11822] RSP: 002b:00007feecb630030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  520.436390][T11822] RAX: ffffffffffffffda RBX: 00007feeca976080 RCX: 00007feeca78473c
[  520.444351][T11822] RDX: 000000000000000f RSI: 00007feecb6300a0 RDI: 0000000000000006
[  520.452310][T11822] RBP: 00007feecb630090 R08: 0000000000000000 R09: 0000000000000000
[  520.460266][T11822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  520.468241][T11822] R13: 0000000000000000 R14: 00007feeca976080 R15: 00007ffd4b406468
[  520.476228][T11822]  </TASK>
[  520.507781][T11824] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1472'.
[  520.526792][T11824] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=28261 sclass=netlink_route_socket pid=11824 comm=syz.8.1472
[  625.949675][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  625.956655][    C0] rcu: 	1-...!: (4 ticks this GP) idle=f034/1/0x4000000000000000 softirq=45526/45526 fqs=1
[  625.967956][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=41761, q=109 ncpus=2)
[  625.975683][    C0] Sending NMI from CPU 0 to CPUs 1:
[  625.975709][    C1] NMI backtrace for cpu 1
[  625.975720][    C1] CPU: 1 UID: 0 PID: 11836 Comm: syz.6.1477 Not tainted 6.13.0-rc4-syzkaller #0
[  625.975735][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  625.975743][    C1] RIP: 0010:__this_cpu_preempt_check+0x0/0x20
[  625.975769][    C1] Code: c6 a0 ec d1 8b 48 c7 c7 e0 ec d1 8b e9 f9 fe ff ff 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 48 89 fe 48 c7 c7 20 ed d1 8b e9 cd fe ff ff 66 2e 0f
[  625.975783][    C1] RSP: 0018:ffffc90000a18c90 EFLAGS: 00000082
[  625.975797][    C1] RAX: 0000000000000001 RBX: 1ffff92000143194 RCX: 00000000d439196c
[  625.975807][    C1] RDX: 0000000000000001 RSI: 0000000000000001 RDI: ffffffff8b6cdc40
[  625.975816][    C1] RBP: 0000000000000000 R08: 0000000000000000 R09: fffffbfff2dca398
[  625.975825][    C1] R10: ffffffff96e51cc7 R11: 0000000000000004 R12: 0000000000000000
[  625.975835][    C1] R13: ffffffff8e1bb900 R14: 0000000000000000 R15: 0000000000000000
[  625.975844][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  625.975860][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  625.975870][    C1] CR2: 00007f9ef2bfef98 CR3: 000000003052c000 CR4: 00000000003526f0
[  625.975880][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  625.975889][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  625.975898][    C1] Call Trace:
[  625.975904][    C1]  <NMI>
[  625.975911][    C1]  ? nmi_cpu_backtrace+0x1d8/0x390
[  625.975927][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  625.975943][    C1]  ? nmi_handle+0x1ac/0x5d0
[  625.975959][    C1]  ? __pfx___this_cpu_preempt_check+0x10/0x10
[  625.975978][    C1]  ? default_do_nmi+0x6a/0x160
[  625.975992][    C1]  ? exc_nmi+0x170/0x1e0
[  625.976006][    C1]  ? end_repeat_nmi+0xf/0x53
[  625.976028][    C1]  ? __pfx___this_cpu_preempt_check+0x10/0x10
[  625.976047][    C1]  ? __pfx___this_cpu_preempt_check+0x10/0x10
[  625.976067][    C1]  ? __pfx___this_cpu_preempt_check+0x10/0x10
[  625.976086][    C1]  </NMI>
[  625.976090][    C1]  <IRQ>
[  625.976095][    C1]  lock_acquire.part.0+0x12b/0x380
[  625.976112][    C1]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  625.976128][    C1]  ? rcu_is_watching+0x12/0xc0
[  625.976146][    C1]  ? trace_lock_acquire+0x14e/0x1f0
[  625.976166][    C1]  ? advance_sched+0x679/0xc60
[  625.976181][    C1]  ? lock_acquire+0x2f/0xb0
[  625.976200][    C1]  ? advance_sched+0x679/0xc60
[  625.976215][    C1]  advance_sched+0x67f/0xc60
[  625.976228][    C1]  ? advance_sched+0x679/0xc60
[  625.976246][    C1]  ? __pfx_advance_sched+0x10/0x10
[  625.976260][    C1]  __hrtimer_run_queues+0x20a/0xae0
[  625.976283][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  625.976300][    C1]  ? read_tsc+0x9/0x20
[  625.976322][    C1]  hrtimer_interrupt+0x392/0x8e0
[  625.976341][    C1]  ? irq_work_single+0x13a/0x260
[  625.976361][    C1]  __sysvec_apic_timer_interrupt+0x10f/0x400
[  625.976380][    C1]  sysvec_apic_timer_interrupt+0x9f/0xc0
[  625.976397][    C1]  </IRQ>
[  625.976401][    C1]  <TASK>
[  625.976406][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  625.976425][    C1] RIP: 0010:kasan_check_range+0x158/0x1a0
[  625.976446][    C1] Code: 74 11 80 38 00 74 ef 4d 8d 1c 2c 48 85 c0 48 89 c2 75 93 48 89 da 4c 89 d8 4c 29 da e9 2c ff ff ff 5b b8 01 00 00 00 5d 41 5c <c3> cc cc cc cc b8 01 00 00 00 c3 cc cc cc cc 48 29 c3 48 89 da 49
[  625.976459][    C1] RSP: 0018:ffffc9000fab7588 EFLAGS: 00000246
[  625.976471][    C1] RAX: 0000000000000001 RBX: ffff88801da75eb8 RCX: ffffffff82086866
[  625.976481][    C1] RDX: ffffed1003b4ebd8 RSI: 0000000000000004 RDI: ffff88801da75eb8
[  625.976490][    C1] RBP: ffff88801da75e70 R08: 0000000000000000 R09: ffffed1003b4ebd7
[  625.976500][    C1] R10: ffff88801da75ebb R11: 0000000000000003 R12: 0000000000000000
[  625.976510][    C1] R13: 0000000000000001 R14: 0000000000000000 R15: dffffc0000000000
[  625.976522][    C1]  ? page_table_check_clear.part.0+0x316/0x540
[  625.976542][    C1]  page_table_check_clear.part.0+0x316/0x540
[  625.976561][    C1]  __page_table_check_pte_clear+0x328/0x580
[  625.976578][    C1]  ? __pfx___page_table_check_pte_clear+0x10/0x10
[  625.976596][    C1]  ? __tlb_remove_folio_pages_size.constprop.0+0x162/0x560
[  625.976617][    C1]  unmap_page_range+0x22f6/0x3d10
[  625.976639][    C1]  ? __pfx_unmap_page_range+0x10/0x10
[  625.976652][    C1]  ? mas_next_slot+0x12d3/0x21b0
[  625.976672][    C1]  ? uprobe_munmap+0x20/0x5c0
[  625.976690][    C1]  unmap_single_vma+0x194/0x2b0
[  625.976706][    C1]  unmap_vmas+0x22f/0x490
[  625.976721][    C1]  ? __pfx_unmap_vmas+0x10/0x10
[  625.976736][    C1]  ? __pfx_lock_release+0x10/0x10
[  625.976753][    C1]  ? lock_acquire+0x2f/0xb0
[  625.976767][    C1]  ? mlock_drain_local+0x6f/0x4f0
[  625.976787][    C1]  exit_mmap+0x1c6/0xb20
[  625.976803][    C1]  ? __pfx_exit_mmap+0x10/0x10
[  625.976820][    C1]  ? __pfx_mark_lock+0x10/0x10
[  625.976842][    C1]  __mmput+0x12a/0x4c0
[  625.976859][    C1]  mmput+0x62/0x70
[  625.976874][    C1]  do_exit+0x9ba/0x2d70
[  625.976895][    C1]  ? get_signal+0x8f7/0x26c0
[  625.976912][    C1]  ? __pfx_do_exit+0x10/0x10
[  625.976930][    C1]  ? do_raw_spin_lock+0x12d/0x2c0
[  625.976948][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  625.976967][    C1]  do_group_exit+0xd3/0x2a0
[  625.976987][    C1]  get_signal+0x24ed/0x26c0
[  625.977005][    C1]  ? __pfx_add_device_randomness+0x10/0x10
[  625.977025][    C1]  ? __pfx_get_signal+0x10/0x10
[  625.977042][    C1]  ? __pfx_do_futex+0x10/0x10
[  625.977056][    C1]  arch_do_signal_or_restart+0x90/0x7e0
[  625.977076][    C1]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  625.977097][    C1]  ? __x64_sys_clock_settime+0x1ca/0x2a0
[  625.977113][    C1]  ? __pfx___x64_sys_clock_settime+0x10/0x10
[  625.977132][    C1]  syscall_exit_to_user_mode+0x150/0x2a0
[  625.977150][    C1]  do_syscall_64+0xda/0x250
[  625.977168][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  625.977190][    C1] RIP: 0033:0x7f9ef1d85d29
[  625.977200][    C1] Code: Unable to access opcode bytes at 0x7f9ef1d85cff.
[  625.977207][    C1] RSP: 002b:00007f9ef2c200e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  625.977219][    C1] RAX: fffffffffffffe00 RBX: 00007f9ef1f75fa8 RCX: 00007f9ef1d85d29
[  625.977229][    C1] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9ef1f75fa8
[  625.977237][    C1] RBP: 00007f9ef1f75fa0 R08: 0000000000000000 R09: 0000000000000000
[  625.977245][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9ef1f75fac
[  625.977254][    C1] R13: 0000000000000000 R14: 00007fff237e2dd0 R15: 00007fff237e2eb8
[  625.977268][    C1]  </TASK>
[  625.977704][    C0] rcu: rcu_preempt kthread starved for 10497 jiffies! g41761 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  626.612014][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  626.621979][    C0] rcu: RCU grace-period kthread stack dump:
[  626.627877][    C0] task:rcu_preempt     state:R  running task     stack:28424 pid:17    tgid:17    ppid:2      flags:0x00004000
[  626.639654][    C0] Call Trace:
[  626.642934][    C0]  <TASK>
[  626.645895][    C0]  __schedule+0xe58/0x5ad0
[  626.650320][    C0]  ? __pfx___lock_acquire+0x10/0x10
[  626.655533][    C0]  ? __pfx___schedule+0x10/0x10
[  626.660384][    C0]  ? schedule+0x298/0x350
[  626.664716][    C0]  ? __pfx_lock_release+0x10/0x10
[  626.669743][    C0]  ? lock_acquire+0x2f/0xb0
[  626.674241][    C0]  ? schedule+0x1fd/0x350
[  626.678572][    C0]  schedule+0xe7/0x350
[  626.682642][    C0]  schedule_timeout+0x124/0x280
[  626.687491][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  626.692868][    C0]  ? __pfx_process_timeout+0x10/0x10
[  626.698169][    C0]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  626.703976][    C0]  ? prepare_to_swait_event+0xf3/0x470
[  626.709439][    C0]  rcu_gp_fqs_loop+0x1eb/0xb00
[  626.714207][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  626.719491][    C0]  ? rcu_gp_init+0xc82/0x1630
[  626.724176][    C0]  ? _raw_spin_unlock_irq+0x2e/0x50
[  626.729382][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  626.735192][    C0]  rcu_gp_kthread+0x271/0x380
[  626.739874][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  626.745078][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[  626.750281][    C0]  ? __kthread_parkme+0x148/0x220
[  626.755311][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  626.760509][    C0]  kthread+0x2c1/0x3a0
[  626.764584][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  626.769782][    C0]  ? __pfx_kthread+0x10/0x10
[  626.774376][    C0]  ret_from_fork+0x45/0x80
[  626.778790][    C0]  ? __pfx_kthread+0x10/0x10
[  626.783386][    C0]  ret_from_fork_asm+0x1a/0x30
[  626.788165][    C0]  </TASK>
[  626.791178][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  626.797491][    C0] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:1 Not tainted 6.13.0-rc4-syzkaller #0
[  626.806422][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  626.816472][    C0] Workqueue: events_unbound toggle_allocation_gate
[  626.822981][    C0] RIP: 0010:smp_call_function_many_cond+0x45d/0x1300
[  626.829662][    C0] Code: 4d 48 b8 00 00 00 00 00 fc ff df 4d 89 f4 4c 89 f5 49 c1 ec 03 83 e5 07 49 01 c4 83 c5 03 e8 ba 0e 0c 00 f3 90 41 0f b6 04 24 <40> 38 c5 7c 08 84 c0 0f 85 a7 0c 00 00 8b 43 08 31 ff 83 e0 01 41
[  626.849268][    C0] RSP: 0018:ffffc90000117998 EFLAGS: 00000293
[  626.855331][    C0] RAX: 0000000000000000 RBX: ffff8880b8744a40 RCX: ffffffff818e071c
[  626.863300][    C0] RDX: ffff88801cef4880 RSI: ffffffff818e06f6 RDI: 0000000000000005
[  626.871268][    C0] RBP: 0000000000000003 R08: 0000000000000005 R09: 0000000000000000
[  626.879231][    C0] R10: 0000000000000001 R11: 0000000000000006 R12: ffffed10170e8949
[  626.887199][    C0] R13: 0000000000000001 R14: ffff8880b8744a48 R15: ffff8880b863fe40
[  626.895165][    C0] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  626.904094][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  626.910681][    C0] CR2: 00007fd874657d58 CR3: 000000000df7e000 CR4: 00000000003526f0
[  626.918652][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  626.926617][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  626.934583][    C0] Call Trace:
[  626.937859][    C0]  <IRQ>
[  626.940704][    C0]  ? rcu_check_gp_kthread_starvation+0x31b/0x450
[  626.947208][    C0]  ? do_raw_spin_unlock+0x172/0x230
[  626.952411][    C0]  ? rcu_sched_clock_irq+0x247a/0x3310
[  626.957896][    C0]  ? timekeeping_advance+0x72e/0xa90
[  626.963190][    C0]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[  626.968828][    C0]  ? __asan_memcpy+0x3c/0x60
[  626.973427][    C0]  ? rcu_is_watching+0x12/0xc0
[  626.978197][    C0]  ? update_process_times+0x178/0x2d0
[  626.983575][    C0]  ? __pfx_update_process_times+0x10/0x10
[  626.989296][    C0]  ? __pfx_tick_nohz_handler+0x10/0x10
[  626.994764][    C0]  ? update_wall_time+0x1c/0x40
[  626.999702][    C0]  ? tick_nohz_handler+0x376/0x530
[  627.004820][    C0]  ? __pfx_tick_nohz_handler+0x10/0x10
[  627.010287][    C0]  ? __hrtimer_run_queues+0x5fb/0xae0
[  627.015670][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  627.021389][    C0]  ? read_tsc+0x9/0x20
[  627.025471][    C0]  ? hrtimer_interrupt+0x392/0x8e0
[  627.030600][    C0]  ? __sysvec_apic_timer_interrupt+0x10f/0x400
[  627.036756][    C0]  ? sysvec_apic_timer_interrupt+0x9f/0xc0
[  627.042563][    C0]  </IRQ>
[  627.045489][    C0]  <TASK>
[  627.048420][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  627.054582][    C0]  ? smp_call_function_many_cond+0x47c/0x1300
[  627.060652][    C0]  ? smp_call_function_many_cond+0x456/0x1300
[  627.066722][    C0]  ? smp_call_function_many_cond+0x45d/0x1300
[  627.072793][    C0]  ? smp_call_function_many_cond+0x456/0x1300
[  627.078865][    C0]  ? __pfx_do_sync_core+0x10/0x10
[  627.083902][    C0]  ? __pfx_do_sync_core+0x10/0x10
[  627.088928][    C0]  on_each_cpu_cond_mask+0x40/0x90
[  627.094045][    C0]  text_poke_bp_batch+0x22b/0x760
[  627.099077][    C0]  ? __pfx_text_poke_bp_batch+0x10/0x10
[  627.104625][    C0]  ? __jump_label_patch+0x1db/0x400
[  627.109833][    C0]  ? arch_jump_label_transform_queue+0xc0/0x120
[  627.116086][    C0]  text_poke_finish+0x30/0x40
[  627.120773][    C0]  arch_jump_label_transform_apply+0x1c/0x30
[  627.126758][    C0]  jump_label_update+0x1d7/0x400
[  627.131704][    C0]  static_key_enable_cpuslocked+0x1b7/0x270
[  627.137601][    C0]  static_key_enable+0x1a/0x20
[  627.142371][    C0]  toggle_allocation_gate+0xfc/0x260
[  627.147662][    C0]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  627.153554][    C0]  ? trace_lock_acquire+0x14e/0x1f0
[  627.158756][    C0]  ? process_one_work+0x921/0x1ba0
[  627.163873][    C0]  ? lock_acquire+0x2f/0xb0
[  627.168375][    C0]  ? process_one_work+0x921/0x1ba0
[  627.173489][    C0]  process_one_work+0x9c5/0x1ba0
[  627.178433][    C0]  ? __pfx_nsim_dev_trap_report_work+0x10/0x10
[  627.184587][    C0]  ? __pfx_process_one_work+0x10/0x10
[  627.189956][    C0]  ? rcu_is_watching+0x12/0xc0
[  627.194730][    C0]  ? assign_work+0x1a0/0x250
[  627.199321][    C0]  worker_thread+0x6c8/0xf00
[  627.203924][    C0]  ? __pfx_worker_thread+0x10/0x10
[  627.209033][    C0]  kthread+0x2c1/0x3a0
[  627.213103][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  627.218303][    C0]  ? __pfx_kthread+0x10/0x10
[  627.222900][    C0]  ret_from_fork+0x45/0x80
[  627.227315][    C0]  ? __pfx_kthread+0x10/0x10
[  627.231906][    C0]  ret_from_fork_asm+0x1a/0x30
[  627.236685][    C0]  </TASK>