last executing test programs:

13.92585168s ago: executing program 4 (id=1148):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
r2 = openat$sysctl(0xffffffffffffff9c, 0x0, 0x1, 0x0)
sendfile(r2, r1, &(0x7f00000000c0)=0x8b, 0x100000500)
syz_80211_inject_frame(&(0x7f0000000000), &(0x7f00000004c0)=@data_frame={@a_msdu=@type00={{0x0, 0x2, 0x9, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1}, {0x8}, @broadcast, @device_b, @from_mac, {0x8, 0x5}, "", @value={0xd, 0x1, 0x2, 0x1, 0x5}, @value=@ver_80211n={0x0, 0x8, 0x3, 0x1, 0x0, 0x2, 0x1, 0x0, 0x1, 0x1}}, @random="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"}, 0x416)
clock_adjtime(0xa, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0xf2, 0x30, 0x39, 0x20, 0x2c42, 0x1202, 0x8540, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0xc, 0x2, 0x2, 0xc1, 0x7f, 0xc, 0x0, [], [{{0x9, 0x5, 0x2, 0x2, 0x200, 0x2}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0)
syz_usb_control_io$printer(r4, 0x0, 0x0)
syz_usb_control_io(r4, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r4, 0x0, &(0x7f0000000500)={0x44, &(0x7f0000000280)={0x0, 0x6, 0x4, "40993788"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
fanotify_mark(0xffffffffffffffff, 0x1, 0x40001019, 0xffffffffffffffff, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = dup2(r0, r3)
sendmmsg$inet(r5, &(0x7f0000000480)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000a00)="316f82fa", 0x4}, {0x0}], 0x2}}], 0x1, 0x4084)
r6 = syz_open_dev$sg(&(0x7f0000001940), 0x0, 0x0)
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r8 = dup3(r7, r6, 0x0)
sendmsg$NL80211_CMD_VENDOR(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYRES16], 0x30}}, 0x0)
r9 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
read$char_usb(0xffffffffffffffff, &(0x7f0000000440)=""/4096, 0x1000)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r8, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000001980)={0xc20, 0x0, 0x200, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7, 0x12}}}}, [@NL80211_PMSR_ATTR_PEERS={0x388, 0x5, 0x0, 0x1, [{0x384, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x2f0, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x6c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xfff8}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0xb9dba70f5334a995}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3a}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xd4e4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x140, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xc033}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x12}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1b}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x108, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7f}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xfc}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x200}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x2}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x90, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x4}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x78, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xc0}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}]}]}]}]}]}, @NL80211_PMSR_ATTR_PEERS={0x5c8, 0x5, 0x0, 0x1, [{0x1c4, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x1c0, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0xb4, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xfffb}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x48, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xd5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xfffa}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x8c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xfff}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xe}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x16}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x10}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x70, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xc}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}, {0x374, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x64, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x5c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xf5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x1cc, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xbc, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0xe8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x100}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x6b08}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3}]}]}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_REQ={0x134, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1e}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x60, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1c}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0xa4, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0x48, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3ff}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x11}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xff}]}]}]}]}, {0x8c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x1c, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}]}]}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_CHAN={0x54, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x4}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x9}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x4}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x99e}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x101}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}]}]}, @NL80211_PMSR_ATTR_PEERS={0x9c, 0x5, 0x0, 0x1, [{0x94, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_REQ={0x14, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x4c, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xd}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x171b}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x9}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x4}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x1a}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}]}, {0x4}]}, @NL80211_PMSR_ATTR_PEERS={0x204, 0x5, 0x0, 0x1, [{0x84, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_REQ={0x74, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x11}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x7e}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x7}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}, {0x170, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x2c, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0x4}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x4}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x140, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xa4, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x72}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xd}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x17}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x90, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x13}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x91a7}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x18}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}]}, @NL80211_PMSR_ATTR_PEERS={0x8, 0x5, 0x0, 0x1, [{0x4}]}]}, 0xc20}, 0x1, 0x0, 0x0, 0x4}, 0x800)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r10, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f00000003c0)="66b9800000c00f326635004000000f300f00d636808a0d0001ba4300b80b00ef66b88c5000000f23d00f21f866352000000e0f23f80f01c30f789deb32660f3a21cf220f2bb00058660f1bde", 0x4c}], 0x1, 0x0, 0x0, 0x0)

10.605189949s ago: executing program 4 (id=1162):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
r2 = openat$sysctl(0xffffffffffffff9c, 0x0, 0x1, 0x0)
sendfile(r2, r1, &(0x7f00000000c0)=0x8b, 0x100000500)
syz_80211_inject_frame(&(0x7f0000000000), &(0x7f00000004c0)=@data_frame={@a_msdu=@type00={{0x0, 0x2, 0x9, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1}, {0x8}, @broadcast, @device_b, @from_mac, {0x8, 0x5}, "", @value={0xd, 0x1, 0x2, 0x1, 0x5}, @value=@ver_80211n={0x0, 0x8, 0x3, 0x1, 0x0, 0x2, 0x1, 0x0, 0x1, 0x1}}}, 0x1e)
clock_adjtime(0xa, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0xf2, 0x30, 0x39, 0x20, 0x2c42, 0x1202, 0x8540, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0xc, 0x2, 0x2, 0xc1, 0x7f, 0xc, 0x0, [], [{{0x9, 0x5, 0x2, 0x2, 0x200, 0x2}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0)
syz_usb_control_io$printer(r4, 0x0, 0x0)
syz_usb_control_io(r4, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r4, 0x0, &(0x7f0000000500)={0x44, &(0x7f0000000280)={0x0, 0x6, 0x4, "40993788"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
fanotify_mark(0xffffffffffffffff, 0x1, 0x40001019, 0xffffffffffffffff, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = dup2(r0, r3)
sendmmsg$inet(r5, 0x0, 0x0, 0x4084)
r6 = syz_open_dev$sg(&(0x7f0000001940), 0x0, 0x0)
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r8 = dup3(r7, r6, 0x0)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB='0\x00\x00', @ANYRES16=r9, @ANYBLOB="0100000000000000000067000000080001000200"], 0x30}}, 0x0)
r10 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
read$char_usb(0xffffffffffffffff, &(0x7f0000000440)=""/4096, 0x1000)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r12=>0x0})
sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r8, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000001980)={0x8dc, r9, 0x200, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x3, r12}, @val={0xc, 0x99, {0x7, 0x12}}}}, [@NL80211_PMSR_ATTR_PEERS={0x388, 0x5, 0x0, 0x1, [{0x384, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x2f0, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x6c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xfff8}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0xb9dba70f5334a995}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3a}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xd4e4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x140, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xc033}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x12}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1b}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x108, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7f}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xfc}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x200}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x2}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x90, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x4}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x78, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xc0}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}]}]}]}]}]}, @NL80211_PMSR_ATTR_PEERS={0x474, 0x5, 0x0, 0x1, [{0x1c4, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x1c0, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0xb4, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xfffb}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x48, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xd5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xfffa}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x8c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xfff}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xe}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x16}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x10}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x70, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xc}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}, {0x220, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x60, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xf5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0xbc, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xb4, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_REQ={0xf4, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1c}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xa}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x94, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3ff}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x11}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xff}]}]}]}]}, {0x8c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x1c, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}]}]}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_CHAN={0x54, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x4}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x9}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x4}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x99e}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x101}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}]}]}, @NL80211_PMSR_ATTR_PEERS={0x68, 0x5, 0x0, 0x1, [{0x48, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_REQ={0x14, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_CHAN={0xc, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xfffffffd}]}]}]}, @NL80211_PMSR_ATTR_PEERS={0x3c, 0x5, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_REQ={0x4}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_REQ={0x8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}]}]}, @NL80211_PMSR_ATTR_PEERS={0x14, 0x5, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa}]}]}]}, 0x8dc}, 0x1, 0x0, 0x0, 0x4}, 0x800)
ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$TIOCSWINSZ(r8, 0x5414, &(0x7f00000001c0)={0x3ff, 0x4, 0x6, 0x400})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r11, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f00000003c0)="66b9800000c00f326635004000000f300f00d636808a0d0001ba4300b80b00ef66b88c5000000f23d00f21f866352000000e0f23f80f01c30f789deb32660f3a21cf220f2bb00058660f1bde", 0x4c}], 0x1, 0x0, 0x0, 0x0)

8.488463104s ago: executing program 1 (id=1173):
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$LOOP_SET_BLOCK_SIZE(0xffffffffffffffff, 0x4c09, 0x3)
prctl$PR_SET_THP_DISABLE(0x29, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(0xffffffffffffffff, 0x29, 0x36, &(0x7f0000001440)=ANY=[], 0xc0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r2, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000ec0)={0x2c, r3, 0x1, 0x70bd2a, 0x25dfdbff, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0xc0}, 0x40004)
syz_usb_connect(0x2, 0x52, &(0x7f0000000140)=ANY=[@ANYBLOB="120100036ffa680863070120ff2c0102030109024000021109400c0904080601ff8bbd020a240107000d02010205240503"], &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0})
r4 = syz_usb_connect$uac1(0x0, 0xac, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000000000106b1d010140000102030109029a0003010000000904000000010100000a24010000000201020c24020000000000000800000524050000082407000000009e0c240700000000a3e82f07070d240701060000fd80000000e80924030000000001"], 0x0)
syz_usb_control_io(r4, &(0x7f0000000140)={0x2c, 0x0, &(0x7f0000000040)=ANY=[@ANYRES64=r0], 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$uac1(r4, &(0x7f0000001840)={0x14, 0x0, &(0x7f0000000080)={0x0, 0x3, 0x2, @string={0x2}}}, 0x0)
syz_usb_control_io(r4, 0x0, &(0x7f0000000c40)={0x84, &(0x7f0000000480)=ANY=[@ANYBLOB="601606"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r4, 0x0, &(0x7f0000000b40)={0x44, &(0x7f0000000740)=ANY=[@ANYBLOB="ff0f5d74a92acaf7c537000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(0xffffffffffffffff, 0x1, &(0x7f0000000200)={0x100}, 0x0)

7.679602769s ago: executing program 0 (id=1175):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000001c80)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2, 0x3}}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x8}]}}, 0x0, 0x42, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28) (fail_nth: 2)

7.591006548s ago: executing program 0 (id=1176):
r0 = socket(0x10, 0x3, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000040)={{{@in6=@loopback, @in=@empty}}, {{@in=@private}, 0x0, @in6=@loopback}}, 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r4 = inotify_init1(0x0)
inotify_add_watch(r4, &(0x7f0000000040)='.\x00', 0xc0000484)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
utimes(&(0x7f0000000100)='./file0\x00', 0x0)

6.512712232s ago: executing program 0 (id=1177):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000180)=0xffff0018)
ioctl$SNDCTL_DSP_GETISPACE(r0, 0x8010500d, &(0x7f0000000040))
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x3a)
setsockopt$inet6_int(r1, 0x29, 0x13, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r2, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000080)={0x42, 0x80000009, 0x2}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
socket$tipc(0x1e, 0x2, 0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r5, &(0x7f0000000000)={0x1f, 0x0, @any, 0x0, 0x1}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r5, 0x112, 0xf, &(0x7f0000000080)=0x4, 0x3e)
connect$bt_l2cap(r5, &(0x7f0000000140)={0x1f, 0xf6, @none, 0x0, 0x2}, 0xe)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000fdffffff0f0000003000078008000100050000000800020007"], 0x44}, 0x1, 0x0, 0x0, 0x44}, 0x0)
r7 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r7, 0x10f, 0x87, &(0x7f0000000300)={0x42, 0x3, 0x1}, 0x10)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='tracefs\x00', 0x800090, 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x220483b, &(0x7f00000001c0)={[{}]})
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x38e38e38e38e426, [{{0x9, 0x2, 0x48}}]}}, 0x0)

5.992647864s ago: executing program 3 (id=1179):
r0 = socket(0x10, 0x3, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000040)={{{@in6=@loopback, @in=@empty}}, {{@in=@private}, 0x0, @in6=@loopback}}, 0x0)
creat(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r4 = inotify_init1(0x0)
inotify_add_watch(r4, &(0x7f0000000040)='.\x00', 0xc0000484)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
utimes(&(0x7f0000000100)='./file0\x00', 0x0)

5.189395562s ago: executing program 4 (id=1180):
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x67, &(0x7f0000000040)=0x91, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e2a, 0xffffffff, @mcast2, 0x9}, 0x1c)
socket$igmp6(0xa, 0x3, 0x2)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000000)=0x10000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000100)={@local})
open(&(0x7f0000000140)='./file0\x00', 0xec40, 0x12)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffffff30000008001000000000000000"], 0x15)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
truncate(&(0x7f0000000040)='./file0\x00', 0xff8c)
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r0, 0x7b1, &(0x7f0000000080)={0x0, 0x1, 0xc00, 0x8})
r4 = socket$inet6(0xa, 0x3, 0x8000000003c)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
times(0x0)
connect$inet6(r4, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote, 0x1}, 0x1c)
sendmsg(r4, &(0x7f00000000c0)={0x0, 0x952f, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xfff2}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)
setsockopt$inet6_IPV6_DSTOPTS(0xffffffffffffffff, 0x29, 0x3b, &(0x7f00000000c0)=ANY=[@ANYBLOB="2c00e7446d93de06"], 0x8)
r5 = syz_open_dev$usbfs(&(0x7f0000000040), 0x80000000003, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(r5, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="0200a006002a17006000000002000020d3"])
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
ioctl$USBDEVFS_REAPURBNDELAY(r5, 0x4004550c, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000008, 0x11, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="05000000060016ffff010000400000000000000049e3b370edc3c239c8d000cbc4dc94e6520026c4a6c5f6d23838c560aee34654d6554cf03f445118492a649e1cfc61ff93b188091468c5c5168cfbcff1c3b44d31da9f3ccfe475471e19172b204ada7af61e576da4e05c6430c65b53", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)

5.130129574s ago: executing program 4 (id=1181):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setresuid(0xee01, 0x0, 0x0)
acct(&(0x7f0000000080)='./file0\x00')
r0 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r0, &(0x7f0000000480)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x27}}, 0x10)
connect$inet(r0, &(0x7f0000000580)={0x2, 0x4e20, @loopback}, 0x10)
getpeername$l2tp(r0, 0x0, 0x0)
prlimit64(0x0, 0xd, &(0x7f0000000040), 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x9264}, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
socket$kcm(0x10, 0x2, 0x0)
socket$rds(0x15, 0x5, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket(0xa, 0x3, 0x3a)
socket$inet6_udp(0xa, 0x2, 0x0)
r1 = syz_io_uring_setup(0x117, &(0x7f0000000300)={0x0, 0x0, 0x10100, 0x200000, 0x1000000}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='rdma.current\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f00000000c0)=ANY=[@ANYRES16=r4], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

5.038248166s ago: executing program 2 (id=1182):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bond0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_MIIMON={0x8, 0x3, 0x4}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004040}, 0x0)

5.03732765s ago: executing program 3 (id=1183):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
preadv(r3, &(0x7f0000000180)=[{&(0x7f0000000280)=""/243, 0xf3}], 0x1, 0x180000, 0x6)
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xffffffff}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r0}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="18000000002400000000009500"/32], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x8, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

5.034842s ago: executing program 1 (id=1184):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffd000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000880)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a300000000058000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000211c001180090001006d657461000000000c0002800800024000000019140000001000010000000000000000000000000ac3eee1b9e9d5c3272196c1992fab80393007beec6de2e1adedf87a7760b966fc04ab9c5ddd693caf2ee5533a405d2c"], 0xa0}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='stat\x00')
pread64(r3, &(0x7f0000000300)=""/22, 0x16, 0x4)
read$FUSE(0xffffffffffffffff, &(0x7f0000001300)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000000240)={0x50, 0xfffffffffffffff5, r4, {0x7, 0x29, 0x3, 0x28040238, 0x10, 0xf9, 0x7, 0x9, 0x0, 0x0, 0x4, 0xd}}, 0x50)
r5 = open(0x0, 0xc162, 0x0)
ioctl$FUSE_DEV_IOC_BACKING_CLOSE(r5, 0x4004e502, &(0x7f0000000380)=0xc)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
write$uinput_user_dev(r6, &(0x7f0000000400)={'syz0\x00', {0x7, 0x4, 0x6}, 0x1d, [0x6, 0xc95a, 0xfffffff3, 0x9, 0x80, 0x2, 0x1, 0x7f, 0x6, 0x4d, 0xfffffff2, 0x5f, 0x6, 0x3, 0xffff2d33, 0x1dd2, 0x6, 0x7, 0x0, 0x80000001, 0x4, 0x7, 0x3, 0x3c5b, 0x1, 0x24, 0xffffffff, 0x41, 0x1f461e2c, 0x2, 0xe661, 0x4, 0x7, 0x3, 0x7fff, 0x4c74, 0x8f00, 0x642, 0x3, 0xa, 0x0, 0x71, 0x7, 0x7, 0x103, 0x0, 0x5, 0x3c, 0x8f, 0x6, 0x6, 0x3, 0x5, 0x4, 0x8, 0x0, 0x80, 0x0, 0x5, 0x6, 0x8, 0x204, 0x1, 0x40], [0x10000007, 0xffff, 0x12f, 0x8000, 0x200010, 0xfffffff5, 0x129432e6, 0xcb, 0xf9, 0xd, 0x2bf, 0x6c9, 0x9, 0xfffffffc, 0x3, 0x0, 0x7, 0x5, 0x20002f, 0xe, 0x312, 0x78, 0xea4, 0xa, 0x4, 0x4, 0x8000, 0x9, 0x400, 0x9, 0x6, 0x1, 0xff, 0xffff8001, 0x7ff, 0x5f31, 0x4, 0x0, 0x6, 0x2, 0x9, 0x4, 0x9, 0x8, 0x9, 0x6, 0x5, 0x0, 0x1, 0x8000, 0xffff, 0x1002, 0x7f, 0x9, 0x5, 0x1, 0x4, 0x7f, 0xa, 0x6, 0xb, 0x48c93690, 0x2, 0xff], [0x7, 0x4, 0x0, 0x64e, 0xfffffdfe, 0x7fffffff, 0x8000, 0x100009, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x4, 0x8, 0x86, 0x3, 0x10000009, 0x3f7, 0x1, 0x105, 0x8, 0x2, 0xf, 0x8, 0x4, 0x6d01, 0x8, 0x3e, 0x3, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x0, 0xa2, 0x7, 0x1, 0x5, 0x4, 0x54fe12d2, 0xbf, 0xb, 0x3, 0x400000, 0xfffffff9, 0x0, 0x1, 0x5, 0x0, 0x6, 0x0, 0x120000, 0x3, 0x6, 0x9, 0x4, 0x3], [0x9, 0x1, 0x3, 0x2, 0x5, 0x938, 0x6, 0x6, 0x0, 0x5, 0xce7, 0x100001ff, 0x6, 0x0, 0x5, 0x3, 0x101, 0x10000, 0x6, 0x7fff, 0xffff, 0xa620, 0x2, 0x5, 0x40001, 0x2, 0x14c, 0x60a7, 0x6, 0x6, 0xffffffff, 0x80000000, 0x5, 0x8, 0x81, 0x3, 0x3, 0xffff, 0x3, 0x9, 0x100, 0x9602, 0xa, 0x2, 0x4, 0x6, 0x1, 0x10000, 0x5, 0x8, 0x2b91, 0xa1f, 0x4, 0x9, 0x6, 0x6c1b, 0x1, 0x4, 0x5, 0xb1c, 0x1, 0x200, 0xffff3441, 0xfff]}, 0x45c)
r7 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030040000b05d25a806c8c6394f90324fc60100002000a000200053582c137153e3704640180fc5409000c00", 0x33fe0}], 0x1}, 0x0)

4.965554366s ago: executing program 4 (id=1185):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0x9}, 0x1c)
syz_usb_connect(0x0, 0x2d, &(0x7f0000001600)=ANY=[@ANYBLOB="12010000ec31f8104c1302007eec0102030109021b0001000000000904000001098b7500090583"], 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f00000000c0)="04", 0x1, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x8)
r1 = getpid()
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r2, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000001a40)={0xe4, 0x2d, 0x1, 0x0, 0x0, "", [@generic="52e6d56248d27c243257bbe42796ae8915e6acf097f3eee56a951758ad7e200feb670f3e2f038452ebcb031b762f7cdf4853905ea587fe3992f6fd7d6f12cfd3d0a2b96eed974356e050fcdde9a704a03258b13b5081789f641dc65baab9624dba60e92f302f7071f2e68af657f1dd772495a2fba0a7f3ddc46f9d2f0e6b7471689e60ad7848f13fe3dcac47d2eb2be51628dd70200ca21d6d07e267f980ed6ca6ee8330a522d5b99b0dc793e1dcdfbfb09228955567d5dfde66e5b98b7b9f163fad1487d197c8b868047888c6ca182c9b"]}, 0xe4}], 0x1, 0x0, 0x0, 0x4000}, 0x0)
sched_setscheduler(r1, 0x6, &(0x7f0000000200)=0x80000000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f0000001900)=[{{&(0x7f0000000240)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000340)=""/130, 0x82}, {&(0x7f0000000400)=""/176, 0xb0}, {&(0x7f00000004c0)=""/137, 0x89}, {&(0x7f0000000580)=""/127, 0x7f}, {&(0x7f0000000600)=""/240, 0xf0}, {&(0x7f0000002580)=""/4096, 0x1000}, {&(0x7f0000000700)=""/252, 0xfc}, {&(0x7f0000000080)=""/37, 0x25}, {&(0x7f0000000100)=""/23, 0x17}], 0x9, &(0x7f00000001c0)=""/19, 0x13}, 0xffffffff}, {{&(0x7f0000000940)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10}, 0x80, &(0x7f00000002c0)=[{&(0x7f00000009c0)=""/130, 0x82}, {&(0x7f0000000a80)=""/194, 0xc2}, {&(0x7f0000000b80)=""/252, 0xfc}, {&(0x7f0000000c80)=""/202, 0xca}], 0x4, &(0x7f0000003580)=""/4096, 0x1000}}, {{0x0, 0x0, &(0x7f0000000e80)=[{&(0x7f00000008c0)=""/64, 0x40}, {&(0x7f0000000d80)}, {&(0x7f0000000dc0)=""/78, 0x4e}, {&(0x7f0000000e40)=""/13, 0xd}], 0x4, &(0x7f0000000ec0)=""/100, 0x64}, 0x5}, {{&(0x7f0000000f40)=@sco={0x1f, @none}, 0x80, &(0x7f0000001500)=[{&(0x7f0000000fc0)=""/113, 0x71}, {&(0x7f0000001040)=""/166, 0xa6}, {&(0x7f0000001100)}, {&(0x7f0000001140)=""/163, 0xa3}, {&(0x7f0000001200)=""/55, 0x37}, {&(0x7f00000012c0)=""/198, 0xc6}, {&(0x7f00000013c0)=""/114, 0x72}, {&(0x7f0000004580)=""/4096, 0x1000}, {&(0x7f0000001440)=""/191, 0xbf}], 0x9, &(0x7f0000001240)=""/47, 0x2f}, 0xac85}, {{&(0x7f0000001640)=@alg, 0x80, &(0x7f0000001880)=[{&(0x7f0000005580)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/69, 0x45}, {&(0x7f0000001740)=""/172, 0xac}, {&(0x7f0000006580)=""/4096, 0x1000}, {&(0x7f0000007580)=""/4096, 0x1000}, {&(0x7f0000001800)=""/119, 0x77}], 0x6, &(0x7f00000015c0)}, 0xd4e}], 0x5, 0x2, 0x0)
r5 = fanotify_init(0x0, 0x80000)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000001100)='./file0\x00', 0x101081, 0x0)
fanotify_mark(r5, 0x71, 0x0, r6, 0x0)
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$inet6(r7, &(0x7f0000000900)={&(0x7f00000000c0)={0xa, 0x4e24, 0x0, @loopback}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000290000003b000000e7ff000000000000280000000000000029000000050000000002020100000000"], 0x40}, 0x0)
bind$unix(0xffffffffffffffff, 0x0, 0x0)
unshare(0x62040200)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)

4.692517364s ago: executing program 2 (id=1186):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xb, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000300)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x47, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="1a6b0100"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x0, 0x8000)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES16, @ANYRESHEX=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = syz_usb_connect(0x2, 0x24, &(0x7f0000000380)=ANY=[@ANYBLOB="120100004f92b90857152077ebb7000000010902120001000000000904"], 0x0)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000040), 0x4)
syz_usb_control_io(r2, 0x0, &(0x7f0000000f80)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e00)={0x40, 0x13, 0x6, @random="0000000200"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r2, 0x0, &(0x7f0000001740)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)={0x40, 0x19, 0x2, "fffc"}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r2, 0x0, &(0x7f0000000880)={0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x40, 0x9, 0x1, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610007000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x400000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee00, 0xee01}}, './file0\x00'})
socket$packet(0x11, 0x2, 0x300)
r3 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
write$sysctl(r3, &(0x7f0000000580)='1\x00', 0x2)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@newtaction={0x88, 0x30, 0xcac229faa96ee7df, 0x0, 0x0, {}, [{0x74, 0x1, [@m_ife={0x70, 0x1, 0x0, 0x0, {{0x8}, {0x48, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x1}}, @TCA_IFE_DMAC={0xa, 0x3, @dev}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x1, 0x0, 0x6, 0x1, 0x8}, 0x1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x88}, 0x1, 0x500}, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1c181, 0x0)
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/wakeup_count', 0x302, 0x0)
write$cgroup_pid(r5, &(0x7f0000000280), 0x3)
r6 = fsopen(&(0x7f0000000100)='hfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040), 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xc, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setscheduler(0x0, 0x1, 0x0)

4.496758305s ago: executing program 3 (id=1187):
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0x141000, 0x0)
ioctl$PTP_SYS_OFFSET(r0, 0x43403d05, &(0x7f00000007c0)={0xe})

4.484593031s ago: executing program 3 (id=1188):
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000000)={0x0, 0xbd6, {<r0=>0xffffffffffffffff}, {0xee01}, 0x0, 0x76})
r1 = syz_open_dev$sndmidi(&(0x7f0000000140), 0x2, 0x141381)
r2 = dup(r1)
write$6lowpan_enable(r2, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'lo\x00', <r4=>0x0})
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x60, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xb}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x30, 0x2, {{0x0, 0x200000, 0x0, 0x38e7, 0xffffffff, 0x8003}, [@TCA_NETEM_RATE={0x14, 0x6, {0x3, 0x4, 0x7, 0x9}}]}}}]}, 0x60}}, 0x20000010)
r5 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmmsg(r5, &(0x7f0000000480), 0x2e9, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000540)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_CONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x30, r7, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x30}}, 0x0)
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000300)=@mgmt_frame=@probe_response={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x1, [{0x2, 0x1}]}, @void, @void, @void, @void, @void, @void}, 0x2f)
syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000400)=@mgmt_frame=@auth={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x1}}, 0x0, 0x2, 0x0, @void}, 0x1e)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl(r9, 0x8b2a, &(0x7f0000000040))
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000400)={'wlan1\x00'})
sendmsg$nl_generic(r2, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0xa8, 0x22, 0x100, 0x70bd2d, 0x25dfdbfc, {0x19}, [@typed={0x8, 0x24, 0x0, 0x0, @ipv4=@multicast1}, @typed={0x8b, 0xb, 0x0, 0x0, @binary="a055f5cfd2c70fc7567bcd1ca474ffcb4fba794fdcea9a188c6bb5385b1b537d096ab110bcd9bb878c4af6d966e0f6dbd1ab03d519639112728da992c9e3a463517bca2c09776ef5670ea0042c17d8521883881d07b25650b6eeddfcb83a286b8d18ba262422ddabac1f6a74cef041d46ceab8f7e3880f65897f09ecc2e5c1db88c8fc32bb1528"}]}, 0xa8}, 0x1, 0x0, 0x0, 0x20000851}, 0x40000)
syz_open_procfs(r0, &(0x7f0000000100)='net/l2cap\x00')

4.038064208s ago: executing program 1 (id=1189):
r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
write(r0, &(0x7f0000000040)="d665312bd098d5cbc8af668d67877d6b", 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='kfree\x00', r2}, 0x18)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000840)={r1, 0x58, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0x10)
r5 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x101800)
r6 = fcntl$dupfd(r5, 0x0, r5)
ioctl$SCSI_IOCTL_GET_PCI(r6, 0x2284, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0x0, 0x1, 0x0, 0x6, 0x0, r1, 0x8, '\x00', r4, r6, 0x4, 0x2, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$SIOCSIFHWADDR(r3, 0x8946, &(0x7f0000000940)={'pimreg\x00', @random='\x00\x00\x00 \x00'})
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000180), 0x0, &(0x7f0000000100)={[{@inode32}]})
r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup\x00', 0xc0f41, 0x20)
execveat(r7, &(0x7f0000000200)='./cgroup\x00', &(0x7f0000000680)={[&(0x7f0000000400)='{\x00', &(0x7f0000000440)='lo\x00', &(0x7f0000000480)='\x00', &(0x7f0000000500)='(#\'\x00', &(0x7f0000000580)='\x00', &(0x7f00000005c0)='/proc/sys/net/ipv4/tcp_congestion_control\x00', &(0x7f0000000600)='\\\x00', &(0x7f0000000640)='\x00']}, &(0x7f0000000780)={[&(0x7f0000000700)='inode32', &(0x7f0000000740)='lo\x00']}, 0x1000)

3.864119816s ago: executing program 2 (id=1190):
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1aeff000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000073c0)=[{{0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000000540)="42f5650bf6e7831614d68d3b2bb966a330cb10fa1c4b65864108b622ccc6b4f98f20ba3d5b4f41a01397fbc55940c5d494a1a54073e3b0e6821f29291a878b8d074c0687c135e34b48840f747c1ee7f69e9893308e92b1577086d3bb280af2709f8ac457919eb59057180090cfff94c65f66be9f6bae6423089cf2d858301a2a72e82d72a4c48db9b51635c82a057f39cba0c02ca7f0f7443c4a525843e2c99978287519f7131e7f3ccfc69ce6c5fdc3c595440b124c1ab564e380055be155a82b88a9dfe87755aa4abec39bc0f9803d48730d19f73a61676721fadf3f4f64f0e20d0675df2f8b5f0b28ec44a28fca6ea0b2fd5f0272e827", 0xf8}, {&(0x7f0000000640)="fca318058f2181d811a33cb5bea1acdb0304854553a737bf5a4935bc8a10e61580ab383e96837babb80a1e7b76a65eea1ac817ac58328cc7a23e6f36e6c34ca6bd0b0eb890ea6cc2a1653992d0b2cebc0750d19fc08b406cd81c6d59d12b7fe29f582873b8e423501dd0175715ea3faa410dcf7ee61f98474f07cd3944c1d38af15017c567fda525af28215729a1312c21", 0x91}, {&(0x7f0000000300)="40b1027e4d1c8a", 0x7}, {&(0x7f0000000700)="7b863eb2ffa4bd12306043a5ad98afb30e2d739ee26a3edee0b0954ce3471ea44d3124a5d2ddf295f90bd87eb5b7995f7470ab945ef31765678e2b54006c14b92ed45815bad3a4685b91e19688f0d17aceb50377b340e670d6ff69be4e490547a5931b0eb327629a7909f53d1b8be001645cde8a9a981d94d1cbd1c25b1e33145f1b7d5929d8de6a345718ee540c4fd783e3808136b6223c16844ec46a250aeeed66d22882d05f16ed3c1620b3181d2c7f26deb4122016eeab55183a22b09c3f7bda4a8e72c9e1b6f04b63c0a0836da7b8ba0d58", 0xd4}, {&(0x7f00000008c0)="84f51d6c69369e981ea1617708c1c80e06dad5a29e496e4ddbbc98e33115ec5909a3e69892d907d949ca5b46a8617b0f8db7893f83ffd52834e3f0025c9af64356a561efd65605093587ca557d90530ac9a238423301749e37a5dd01233a983c5954987787e3d9bf36514dc9dbaf89650092da32f0e1ba222beef6ff5d94f49e44288838d28dcd2d1bcd27f9e6404cb80fe6f0f67cdcce86d50d417ae00b77ecf8df851c", 0xa4}, {&(0x7f0000000980)="efc48169b7bfe043c4a63db1b449170569f1d7fadc77da672052784d4f5250bb7371d26223d0e627982f438b637d4fc93133db310861f2f07112134d3e8809db2256be7bcaf7baa24197c7bdf854efe151481a7fded0d4c67119764a95987d2b9453bc3965469754501f2fad278be5ac44f709bc2a8eb519fb9bcd7c1411d52f31998179a4f2eaa6d7c6cb444cd225a9b9a805d1ac184822064ffa90a6addcd000a71783482bd053da66a6c331062d6cef48e0c8d725fc7772a210f23f0f6d463572c1962e18e8a296e27e03c198df0d", 0xd0}, {&(0x7f0000000a80)="7223b7e3f03a677ee0f6bcd0918f9db12da9ff025206cfa56c2de66b3d813c4840c5dc517f2b98c07c3cdac3fa73d30732e74cbefe0de504b803d2f9f22f64342cfe16b3f7a92b346906b5b52cbf98c62f10964a7ecf7ce35ae4d74321364127d5d9", 0x62}, {&(0x7f0000000b00)="976f2fac4ab1c75510d6c7f640bc89558bea1c088a5914e9dc87b29c06658fd7361363997f547323f5b16398d808a8b330a5718f39e9a4cc0317363dba9cfcb99066a37d7192b0ef9b315ddbe4ac5f152fe8d7e49dc72af25bb1c0602eb7120095821be47f6f83c1e9358250601fe12ad8f79b5d5047304a78b96124dc06f775d7d084122c68a4c68a90aa57d198ed0a7e4d78b291897dba22f20ba5c8440542ab39c817969b9fb956444ca91b8533f27ef2f1be63f692f8c6738db48a44f545a8ac30944384eb747208069ebe", 0xcd}, {&(0x7f0000000c00)="48cdd102af3e4e623218b1085521e5fa57617e7b40e7abb92881b2fd08ae9f19f73c066759e76fd857ad8fc58da48ae8c2f8051c2c72a5713d036820bc1a22c9dc7e5f252926804e2a1e1841d74c33754d6a70394ae32a04ae5ef0", 0x5b}], 0x9, &(0x7f0000000d40)=ANY=[@ANYBLOB="24000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32, @ANYRES32=r1, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="e0542e06af9e38214dd2284d560f4b3f020a77361c0d2bfeee83ef18086564095c141ca1e25a62a44943ec1b3330bef8895f43a42a4317a7d8c5f78dd476f4a390957eefa18a2069b2b58da2e9fb23a560af2514e617a387dd2612796f24261c2b75fe12e82ca1a3488bb167730a46fe56c2ee98"], 0x48, 0x40040040}}, {{0x0, 0x0, &(0x7f0000003100)=[{&(0x7f0000002ec0)="2134e552444f4131f5ce72c59d34f3c76b745b4794077eac9d1114e9bd944cd4e686b2e9a64cc98dc366b8af54a46caf97b2eadc09777d15eabb4559615c16f9c164a73a427882986b3fc7939fddf6d6df5a98d0ac4e70629a70f1dbbd52d1de", 0x60}, {&(0x7f0000002f40)="a2fe58c011121d8584d5f3afe0213ec37bdcd66440131ff525aa8bf4d6b5eb9eda81751cfc242979ff7508da38c58ff791b76765320298af26ad86442efd0d994d629dfa9cffed21f3213150ff8e964a415b5123730b44d55968e28aef810fde5180b3ddcbcc98c31975dbfcbbd65a303f46e903d79825acdb5a65ab53301e6e5b0418813cb9c2166cb8ea6da322c62c28bb444cc070819080d4fcb632efe7c09066fbf5bf68ad9246866e9c8d68cae716f8b5de7b1a9a9a76dcd471ae63682eebad3885f03e4e01b01a1a6f31", 0xcd}, {&(0x7f0000003040)="e2d17e306755ee59146014049a67aab3805f255bfc846d7d2e8fe3ad7618a28e8031ded5d3df9c893f4d0102d2dcd6cf6fa031619cca3f367c6c67aaa277b1c54cef770a519a8fd8a776e099772426806eb4a5eefbdcb3d84c69f7340f5be8dd1dcc72337ff2b722407203bc647dbad59f3ee8fba8b7ee0d212fb42502842c69e21b339faadb4e50530cd339a6207390a2a2dacc635bb6fdfdda1be0", 0x9c}], 0x3, &(0x7f00000031c0)=[@rights={{0x10}}, @cred={{0x1c, 0x1, 0x2, {r0}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [r1]}}], 0xa8, 0x4080}}, {{&(0x7f0000003280)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f00000033c0)=[{&(0x7f0000003300)="43ceaafef5d2d0730fcba15261277340c96e46371e64771eddfeaedf28f410b93b9029299a6b98b804ceb8523f2c4be390312a0f028ae632bad8b6210d39a87ff0f574", 0x43}, {&(0x7f0000003380)="964f0b9fbeb94ac11e68d99cbf158b82eeae4a9618a8caca740092e8bd52ce67", 0x20}], 0x2, 0x0, 0x0, 0x2}}, {{&(0x7f0000003400)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000003640)=[{&(0x7f0000003480)="e8d4003e97852d3272dcd0b9db3a9797cbb69f89db79f4ee2169b5e722f7e9bbf2e1f6df7019db00830fee84067017dad6c3c20ee6b19a0d3ff6a95e9dbd81013041dbf943c707e80e", 0x49}, {&(0x7f0000003500)="733446d10871c8051e9f78109fe5bf8e4342516446d35ea242fe1ac9f6cfd0ac999214ed88aeee29653cc83dfce5ef2cd67423cb9dfc0e1c4cb08f430f7feabdd6c50c6ce9c82059bc11679f40507df7dbde8f62b0422f3f46344f9c1c56f60998028353fe6c23eb3b48f997c3203bb6738e852bb34f4b15d64f2437311fa3099a829fbedf452cde419f074805e133d7816553a3136702f7935c9d459fbddf4c7d5c5a", 0xa3}, {&(0x7f00000035c0)="2975f7836daeeae006ba21eef731e2574534f6d51b93f9952575b0deeabc7d887edb8ce7d83905ac82f02d6cdc39729819fb3fd877cf0901fc53084bcc77410d18a91ce134a20425984fe549644f25dbf40c4c7d9b79cfc55e17b185085b656eeb3f33540792b93adb10f9afaed9fd86086da0a3de57d605f8d9277f815590", 0x7f}], 0x3, 0x0, 0x0, 0x4000}}, {{0x0, 0x0, &(0x7f00000038c0)=[{&(0x7f0000003680)="7fd4d8fe6ff3e9181514932b643e53d38be36bdd7cbfb67cd4b7c0902cf3dbec8932747e652e51f8b4952de0ac", 0x2d}, {&(0x7f00000036c0)="296d01ead79b1389bc82e06025a1078ed553c60d37c43e9c6f6cd88c8e81ed91f3fc4a904df9f4ff4334f06db0cc3334ee3776e313e43181cc532c95135ee684f039d5ce3fb918a19546c590b3534f9f7cf018281ee72f41458b17c37cc6d0ac70e5df2ded5eddc1a090938b7ee2c87f462497c13a453b5e0d20f5b80767d51bda55418d799d4c1b81009efa967a8f04f51821c44d7ad658c75744428bb1a6d843bfeca3e3bc06b0c20b9cc149d31f52cef02f65ac83c460867a6f89f4b64a90477a8f9d0fe4e6959200c08bed1bd0113a733787381bcf40cd", 0xd9}, {&(0x7f00000037c0)="2882819d0755979b0c56a48425550b3c8a02fcd5d4bc2446d7bf87bd65e34ce133a02721be92a43d8484cdca09537bec6ff043093e6f40608c1a992e52b251b10dbe331c7c5d02b4379d0107d96c52c7b965f6115d90f958ad9aa9844253b4db2a869240a1d800973dd0f698200da4a98def3c76e6a07b040d86ed683db29dbb9a4c55d2f37b5c3b13593028d808ab5279f05556d724352a42c4ad01f8d1af37951865673d2569c4a07be543a71202299088cd28bfedbd43840cf9ea6020be7d4714d7eacd12974a3944fd4306b1374bfdad9f9e09261632d8da922144bba0c137fab20a0e4c79ad4038", 0xea}], 0x3, &(0x7f00000039c0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r1, r2, r1, r1]}}, @rights={{0x14, 0x1, 0x1, [r1]}}, @cred={{0x1c, 0x1, 0x2, {r0}}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, r2, r2]}}], 0x80, 0x80}}, {{&(0x7f0000003a40)=@file={0x1, './file1\x00'}, 0x6e, &(0x7f0000003e80)=[{&(0x7f0000003ac0)="751863177e3b02e3e1cf05731c72155666c58ec9ab2e4ded50aa45c966e3e78a53a0210faaea1d13c25ca1db2a25ba89930051f6a095b0953ad46781485222b5832437c3f136e93e6004c94d539fb4097da8d1fcb197d3a81588770cbd6294bbfdfd9dad8f3026b172d196b454da", 0x6e}, {&(0x7f0000003b40)="32698542ce1d75b412cd591083e9530490b59b32b1d8471fa4ff79f82ea60eb3f37c9678bd90452e594f3dfd7c0b478c46e56a3e5e049698376efb5cb5a940ceca07acc45b2714da86e0e60fa4d9d01448ae0a974b9ab7643d748e56f5609fd6944a6b9a09c0a812de3bbd97518959289191babaace16a478e96a7aa3896550007e530b46999397f4f4230f30887f068c84da5dc6c26a921ba01e20d3e1a0f45359f217c6288e41681f62732af1653dbea9359d2fea9", 0xb6}, {&(0x7f0000003c00)="ed4f07d52348166d3950625c3bce218090bd5787276fc0310158cf0ce8774ea0ca79dfd94c7b621dcebc0544eac569e79609ee2b9f4b464e9f6a1dbe3b7c3505c4", 0x41}, {&(0x7f0000003c80)="de99c983ea05eb41cde14bbe2668a8cf37214e1062925e4a7a70efa467233134b91496c83eb79404610fdd370967b71e986aaf2fd9c03e8bc0bad5b72678fceb394fcc993fcfca5e1c82ddac0f58c86f4df47a13c74ab2769373118725", 0x5d}, {&(0x7f0000003d00)="ba0ba9eedbd04e53ec5bee5ff07e9da26e0ee00fffe7062630b22333026288516432f1774eee2055ae9e493ef5333026b9e6865404", 0x35}, {&(0x7f0000003d40)="b86e738d1a281c20391399c19c8da3d28790fe5d41061347682a9550492e729b80afd643d1cd21eec8c3fd0012407ab1581c00f2b0b2aed69e0f5e07547aacb1b30890b46c43aeace39917e2e719743ca39f7d5cd94c6ea747c193c5344df70827cc946e5ab37b04820611d5174a986bac8c277ace2bd1dae73139ea9294f00955903eed9951", 0x86}, {&(0x7f0000003e00)="cb21a00602270fdfb5445726b07653e93c38ce8c30ed7d43c113a6845c066b271613802c8b571133d6424cc4e4db90a7374c6a47ce00f00f8f5373616333aeaa0326e4980a19d0eb4785dee03602da89be9c5f8a0e81269a", 0x58}], 0x7, &(0x7f0000003f00)=[@cred={{0x1c}}], 0x20, 0x4010}}, {{0x0, 0x0, &(0x7f0000004100)=[{&(0x7f0000003f40)="4e5c48cb33d93e89ecce73ec97fc74e73fbfdfbbe4383244928e1100691eab47f1548ebbccec5c1ca0aa969a5beb442c9e17433709e346ea3358d3e45f4c369d4b616588c4859be6c4597f3fe68a89b68cf733e7b1af80ec3e4d8b958d6292575df0a52eea4942a608cd14c9d601f522fe9e733af5f12cd87710ceabf1d9b6d119fc23f9d60e0f872e550ed00589c2ce4b59078a9175d842aca8aaaf7387a6b76d64b2eb4a49938e68db073ab741b92a70ba37703210ced25b4d7adb09326acff9138876f7549341daeced02126abbee2087db161f13e23677430955900746ae6051da1ee4036551411533eb6cea19e366", 0xf1}, {&(0x7f0000004040)="acea69a7c8f3e50f02c135cee19b79d8b33fd7afab1a1ad2646087029a3d38181986c699774bbef2893a6b82c84ebfc6c20b68e467c5907488ba83de3968a37ddb229afb65dea0c9ca81a52bb2f31b2c4b8f9bb55ec072fb017f8649360cfef32c960c2ce5229b86532ef2b44cdc4162594d3030c2811f58b77c2b56555e03e5a99ba15ea7fa7ec678ac9f058105f3ede7a6a535682b7d12599dbc50e9fbe43c6d13b2af058a", 0xa6}], 0x2, &(0x7f00000041c0)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {r0}}}], 0x40, 0x4000000}}, {{&(0x7f0000004200)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000004480)=[{&(0x7f0000004280)="e17d6676f6373b938eda17c6fd925030d0d188a69dfaf8fa3b554942b06c39f4c63483f1842a1e358afb50d43eea469ff9c8469a4021d2996524a7a0cdeb8d8325f5376b5977c7f1da3690541d547458104a2fca000ee1d21c18f2b2a4e82ddd40f4e470872a2eaab1349dc8f870d4a67fd831cc6a1ff9fa580e3382c71631732b98259a8c92c2bed481887763c31cabe419d0d106b842093e94d9b1bdd83d1cc53dfdd12d91d88d3c10dc5e8f3a08b14f84a8c209fa770984ca15e4c8645d7c95", 0xc1}, {&(0x7f0000004380)="0287dbf1", 0x4}, {&(0x7f00000043c0)="c0bdcf679c6e716545c65cfeedc9ad803301b42789d79542bd8d14dd6fdff3d9a4203da4311493f099ad8e639f940218263b33a0512e79a581dbdf024cf4cd3bed01b49cc073ccc7b00984a0179ac891588027020b67400398756f554675175e7bad7f664d7c3c2cd885c5050b228d0dbb902c0bcd7a0fe7597d779815a3bab5aee67b4cdf5e43d93bd0aab8dd24c6a3", 0x90}], 0x3, &(0x7f00000047c0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0}}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1]}}, @cred={{0x1c, 0x1, 0x2, {r0}}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1, r2, r2, r2, r1]}}], 0x128, 0x1}}, {{&(0x7f0000004900)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000006c80)=[{&(0x7f0000004980)="4534b4f2dadad251ca6c90412803b20816a0f8713da21885e70f343801e82fd83fffff41c93eb01f", 0x28}, {&(0x7f00000049c0)="748518e115ca47e14ea4f8e37fc1179de582e47e20753e384804a0cd03ac49900a5fd09a18ab273eb4f29ff82d008e9df0fc8a3da44a71ee567bf3073230586e6414f1221f4daff86a851d3cb6d21ac49e587baab163982155f9a88f15143ec9036dca198b0379c919cfd33e71d1ccff409c875fcb2023deb8b7a243ddd8d297195b81598a6da70d6888bdc81618897d1bedfa3d7afbd1fa", 0x98}, {&(0x7f0000004a80)="dd1af4bb400ae6796d9901da8a6bd7e92936f5fda078daa1d03c6be2fa8b864422326b7c6f1d7eeea4dd5356bf993e39ab7afd3268ea6bed28c5af30fb94c0f89bb761da735a50559500a1cd0f58e906f8c805d27314464722df4d2995324a18b38a175f41d89d4964d543a3aa4ea5a4aad74c4911f70e35fcc48ff9894c745f0e121ec3be32f8e06e7376b82bb213826a8954c1de6d54378b9a1b6eb60c4b01c1f4ca62b1cb725f40e7daa8168614f69b9edf11b96ad7da734926c91edd0c4be801da710372938d09a80982cc412630b698c4a8cc6eddda147b62c00d3a720c4ede8714b573282465030f30b69e5296041bd75b6d1f281cb77516fac185a0d261637ea507e5f1f54e96d639b34ab9e777a56348497eb81a2bdd3ed59728bb318ec64a1e35d62cefadd2fe10ea63ad828e224ca7adcbeac5adfaf0bfbba020d8a269f7fd6b8ef3872eb7e74fa6e3242209ea5cb49613c45518ac9b02d74b4a9958ec2d42b30045c5092245f5c8dc2f4749302d2843fefbfe4f99772d52b7d4a94e777720e9a0c141852938025be7aa52fe0eeede9ad86fd209b3a82aab068ce6d434f6e50306710640a13a14e0f3ae6387a804fe9ab2b4a23780e6d9e9dfc4c416e26277853f83b8ef3d910717c3d5efcba9197756865611ad7fe742cbd1e2f43462e254b32c3f78f2bfa3a174ffda6a394e6c2504b1fe65c8b074fd86319259c9357446bf81114a3c04240e6447a3dd89337d43445f609ba7b22ff78facf248fd8ce32d4cb749d1a52f5607ef67fcfaa260924a5fd15e8cbacdf6dcc8a106f16067f4e3c1094c434f1ba1fd28435ee8efbbf37419598831012989e27691af013dfda59cbf7d8c31ef1986266eae3574cf4deaceba8da21501750540804f215179b5ac9c46c1eca0dba2ef36c691f07f244baae00b558eea07355933961cdf450a60e96238eb2d05d2aa80b782940d85afd9076af94a4e93e68ecacf472a0c62ee9e0846d738fb18777b2491278e846e9c622b746f93747f7d7f371a548c22e401e96dd7a94f66c485233713f5df544c7e8924c0c20764ca120e2e59adbf019b5f03b11df177103e4ca3588b839a282ef7a8462eb1965b849462ce43eb70938cdf63a581b5d7ec6a44b135fc39b6dda8e0c134b09c29925d4d08ef634261744ad8297448bd87f6c48fc9fdad7b1b380b0c38c26203e92504b965156383c916bf4b6e61fa590b4ed7c7d8633c2c2f7826a7a046ef1b7797b80f2def1e4e29e0c33a1a6c1fa4e77c4fe70085efa42dd1af74c55d5a6830869a9acb62aad6e66993e91b49156efeddbca1ee84ff17bb3ee92f66147f75fc4146b16ead5803cd2e6672dd1bbb6a3e0f57b62b8392ac777255921bc64c44d2364ab1eea97648fb38d2e61383151431d4faa8b6819301fedf21f3f0c708af19216f772d4ee31981c52881756e27c7340ea46c4d220f4d5c23884464024cd0a51948bf337c426a485f3e105a1fcb6e344f4bc2256ae506c15f5e36f8dafb070ce99ae92cf300cd1baa110bc216e8dddba1851df1a963631cccad99454f79f9bbecbf7404c683de0d750140817e81e414336208de7479ab27a69ff3c9b1a559baa7f58af7cff2e91f7875b28bce92a764493ce76634de854b248223cd64cbf10373371cdedc4e90ab1f321769a91e63b574d6b53cc98aee35cf594fdc8f636ff72fdfe52bd0fb90c6bc7be6d503d3fc022e305f37941c073941fdb35cabd6480c5411ccbb6b04e1cdc9eb0b3fb80d0d317312eda1247007397b5c1e90f48e6ba31bdb3001ea18afe144e981dc52fff4dd1ef41af8e5d0782707740289df687116c8f432371c6a3959bf12264daad984cbbd91c4e3c5a3d1efb7fba13cce8f5fe2b3cccaf93fbe7229a66148a4d0844a6dd06fbe213fe8df2268299a2f83d8ef41a6b4934b4a572364b72cb14a6340f00afa3962cd8f4a1e073c6da987af30184098c7c4d62160ea3fb38503984a677d4625eba6bff408a8c6c85837e73c6abc39c19744d7c9773ff995fdac97162252e7c703001a8b5769c9b62c6ad9cbac0788b92d3cca9f4d5305f41bc8b0d6e96ebecef7b74868fd2b09ed641c2dc41e4b93ba3e5d4e56e345e7fc7c181f7c50bdc55c3c1151ab0f32b37d3db16899203d94cb0dde4f4cfb5671cd647868a6628c495fbdcab40101d3eeca7450955bc8fc3523cf63c751e99ea68d79511d444aa6816d7e20b6cac9e1abaf522ded99efacbb156f7f6e5a0d9f09c19d0e2552e3c034dd5c834c8c41bd514a99520fac7f9e6cdc489d0c05596aa54aea9e09574b0dfde51201b65a98b347ecfb90b49733e50a53ba6dde0ffa927d464cc7c9521d64678b5aec2ebc2821499dea7dde94527367e00e189abfc22453d7d31b4dd019455dbedf88ee3b2d940ca72f42fb1010de3fa63b07c79e6a65decaf7ade95bb0c03beac20bb0444b75f9a4e8e5795630a315b458ef863b511ca37fa0f0eac06c8295cfa2a4922ddb2f6a6a204a7dea6d5330fd791aed9f3cba51e694a65a86fcd5b16b814aa8d93b3126cb1c4108cb1559bc2845e99ab092c8906ab049536957ca2b668307f8e35822e0a441d6fdf48d56fb92393a8bbaac97aa97ba91e6faa6201fcd0311a4de62471b66e02d03b3bd86dc100d5e6d643c22013acb76a40fa15dbc61f74182dd7d80711a4c737e71c961d5f2184a1d2094f1735912493b8e1bfea39b189d3282e0ea4979e8899658b200183455542ced2e51c8abe68e4d62dfbf43d69e3057839ee48c7c72039f26bf5aec11522bd3455f914c38597aa63b011ad87808099711bd71a24b737e5d1973f05903af982d102e8a297ea78130e0d476c8015b18e38fe418e4fcb6882c547ca5442d147a6d0a6dd5c46716b7609f3d541a33fd93a6450905717d506e72078e858fdfa74beaf62d40254193cd17f13ad328b4e08e5197db9bb5f586de0e71b4eb8569c3d25ddc29401f5cbc61524db153b337a38be59bec6014e748222a07373bec2dac535da035d31480de48d3654006e69adac25f6e382bec758b61d16c0cd6808cc5be926c7b240eeb6b6ab8c8184ace5412ce14e60140a0c58700e22b3bd614121b86f74021eaabe6880ddb7919e6dd74b7a1e06daa7f9c62fdf53bcd014c9c8c73ab36b1ee442e761b7c5bea33bd40fe1208866bf9a67e48c90e11d9200c6e92e5e61892a43ab8ee133cd17b7edb7bb4f0dd555532782813fc851582543b56d719f5d7a5b337efb8170458469ada6423b602b59b9e797df4aa11c8707d7cfb563bc53110abe8cf692b3ac922c8c96f51eb5890356b26e40e270d234895508781a367c9a3b37e1a55e5719f7af44abb280d56ff390b93aa3fa7394cc0a0e1502c52912b21563e46a98ea3a826dde9a76d77552d98d15b9f31c1e614e9bffd2f2b837472f136c8959dbfdeca2937373d0394bea2eb8f5bc84fc1695e461f14dc088e9e88c17eabd85a566dfa884c5ba41824bf655a873d508c138bc09900f6f6ebd324061d90acba68d8a205dc2abead93cdf688b432605e7bea99ee244b09af584930281a5d6cff9191059d2cd8c4a887301868f97cedb4a078a994837c9610d1081ccb83a7fb230ea149e8f4419712f5087179768940b462bcb62a18a186ecb64f8947142deab2d76e504dca8b56f5035fd3d6ee824d3442e788533d1221cd1fea1969bebf94a58c8f57edf8be5e51e39986f6adbb987ad1de11c61b203877cfa27b606c0fd0fbc0f708d98915bb154ebff8d73427c8bc961800aa37ab6cc94fb9614b5ad8f79d32fed9d74ebde8b10fb9d40c4d8decbd1c7bce4f7f15bda100d6f29acc2baeb884b014b61099d24b8094743a75219293207c817432c43889516b815f9a2d9cbd2fd4e7f001a0e690d0ad32933e487c2145c9aa0e12b3ab4b73525f6203d8404bc9e6a262076e1a5dc1275e17295bfd3187917330d803edd7c30e28588ae428d33cad5423ae69590bc772e88a7503435d2104dc17e940de2485a03f2268bab8b7cfdf17a15ed5e185ffbed5f541bbab327be57f2a6dd7fae9dbea78657a293a3c477fb803d2188ed5bdfd3f6e9c37e7a8a212a4d9413315356bd8702caae5ab5192d5365860f6845c2dd25816fee58dc4a5d2c079560610115013f109831cf631e7d1e12272011bbdb5a84997b681bd05c43f21216d9e456954768378bfcca842a38d1b4943cad0e5ae57d52ca560d6ee60befcd557f2eafe9d12bf9590b4673c21c325a8521c6ca600a6981a31f5cccd7e15e8d0b0fecf1113451f24ca07dd19e12494d34649f0afdf31f54bf25fa08f0d3245e8811b4b23eb5faf1f95d5335788f48cfc7c33a805fb837382dfc734b4e7c76eed23a46045deec79061a21beab35c309b942a8ee71f17c29f355c81834a169cd3bed67843ace30e7f052adba3dc38082ac03317f811af35272e268dddbb5f1133c7f68295fdddac8c316975bf54aebfb991bd9460a3edd52e7b6eb990e0d49004ef9e7e23babb71a6c43e8976432f51f8a04adfc147124eadf8bd15039196f241f3594ce3aa7ce1108564b264a951b2d19dfcbf02802db6d313358477920b55436697c41a08829b7413b765b97e5689785ea120739bd95e9f4bd5970fe54216e5c54bee5bb5f62f1f2f32893ffcb57ed378e98afdfcbe8516db1b7c5f995af7313e903eaf185d2cbc276a018244021e955825366ccb85f992541286854d40969bec0b5bcf9717ce30db07b846389cfb8708d093430f21180b74e97430475dfd21b6cedf361c451df2dcb9513e21b44cbd4aa08c446612d47114b50de41cf36b05bb0f0094390424cdd560b3c1a880914c2a6d974f0d2c6643ec75af47cf92603e5daf9fdcbab7d00baa16fa269ed25ea5e24db6ce2fa80ad5b27ee1b134ab2208d62ff97d7feea896509c60e98b8d273f638c3698b37e63dae3f3ef4c85c39f56f4df4015b0172081816deaad94f570db42deed86f72e03fb527c93a0069a6e1ee8cfb24584cae9e6c11b38b57cf3644e15d6f7b9a63a9faa873b02e573eed785ad5d30104554e60113a5af96887b0f8b7ddb9e899485afe71224d8f78e33cf640476d5103de77f52ad9a8658a18f9b1bbda2d5bbd9f099714037d49037972a0696e5d1a477512354bbf2bb0252809b318655d9dd293ba9cd18c6b252015612d4df0f62cafa6114cdde67fa767365b322d8e58f604c603c42ba58bbf24e1f7f73766061e52dd4bcc7f6086062a4003e0458dc86bef47d4705582baa344d2bb61d7c5a9153b12e1700008e22cdf93cd5f23bfe181b1cb515c6ccde7a1c389cc0ef35f6123476500aa53459a343eb458d3104893ff3f38535abe03afecb8234fa6069c102a84268c4d829ebf2d6df68931e69c880f967c378e2a3d62eca4c7f4567a752baa226975b150f49afac3736b075825c5fb03e0c37f936982d41a1ddbe762331f5971c3ff9c3ae77ee475e07ac2e1534fa60f99c76cb2844aa7b9ab86550579c0e8bb2091fc8a3d977c145a66a92e011e3ce62fc680e702842546d49c1d9c1c504e22a55f7c1272a4906542feb7b0a056c3e40f40378d064fd37b70a01af3e24b516881a91175a729ef49f39a6785409b3611635e031b16a38b7b0a121f4d33802a304026023cea969cbf899e900ce089ef77685af2bc50e724fb1544280f14c82411f3182eb37709012acc9d8eb4cdd352f50dca3e71ad3a172e65b83dad09465fabbd390efb2da618dadd0dadcae108f22405d4e77571bad37820161793e533600e80069c97f14bfaa4773a", 0x1000}, {&(0x7f0000005a80)="deb7e209a623f08fe86357fd68da554d2621fc76e8db9672135c23712a9014500c8ecc5102b5c403227f4e1bc2694edd77a7f2be38347d660fa176f0f0", 0x3d}, {&(0x7f0000005ac0)="f55b4c641a3a703a6befba02d3c17f010323923590d8ba41fbedadf7cd54fb5604e9977da3d09f5f011c73a1393fff1df25aa15c056a11366bd9eb75215cf4213d08f17218be15f2f02d68bb9303d6e25be3ac2399a9c346c7c9b385bd2b84aad053bdeadcf88ea710b7b220b6eb80030c399689b5", 0x75}, {&(0x7f0000005b40)="f84e5b574872b7670acceb15b843d33e372de321c3d5f5baec263041da4a9ef8b365583145fdca767535a77f2e8e90b6d1eaeb953ee57373f74404", 0x3b}, {&(0x7f0000005b80)="f0589e9967457f3ad67466e42c5fdd726a7e920e8471862d4bf061251de2b3f9698bc32618afd07923e94c665a4fd0a6de455fcb7f7318312c247a91b5589e855484319076d74ca805d7ec0e24294c6371e052b4696b466adddf2017c4c1156b2e0b352e6226092ce745fc070356b523413c15160b89de2f881aaf76ac971addb81d4476fdee641a924ec301f469c8b7ee5bdd258572cb27d6b509f929826ea2fbac6e0588cf65c205f51f411373a380ab476c0e9d50a25a47d5f9f3f81d66ef6a333775f9b0d7678cd7c6f049d6c0433e280f73", 0xd4}, {&(0x7f0000005c80)="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", 0x1000}], 0x8, &(0x7f0000006dc0)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r2, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, r2, 0xffffffffffffffff, 0xffffffffffffffff, r2, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb0, 0x20044840}}, {{&(0x7f0000006e80)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000007240)=[{&(0x7f0000006f00)="ac6522e2a8551a9d28fb0661ef9b93d81c59f56f4657c4ee2acfb671545698eaad1065a9c367f40d20e67696e8b93127091b2f6ff6db5cf540c22538f1bee9ef7600fffb713697bb4b0509ee9f939643f557f93408dc709a98a00172c89078497e1b7ccf089fd09bc280631606f7576b831e4a4225b2bb3b2f9a61d178ed630529d0f7c26a99eee5837ce2491f13e44a2a2706da2a613f8298291037f37b4f91f6402f530bd8a82325ea09", 0xab}, {&(0x7f0000006fc0)="ac61b59b9b43ebe69eca789d587720eb148b7fbceb6ce9093a68d7e16e0f201c988c6852567550a1ff20292633b3e5833c4bcd659883b3e880", 0x39}, {&(0x7f0000007000)="b0f3631f1d5ffc5758020320a6d9e0a29d5b88f81c71aa61576c079110d59e9a33fbd2f38275411df5c0c52bbb98b320c3dfcc60a5e1f8d2aadac6bd21109cf4c61b197afecc1e5d", 0x48}, {&(0x7f0000007080)="5f53df0deb23ce6a2753226cb0cdf3842fdc66ddeefecea28869c8ac77a3b84ad30f18799b4f99ea09d3cfbd7349d0d9f5786a57ae53bfeeb4df6d6d8c486ac790c4dd15ec3cbd563026db598f6527b35106d1e31c87183df637e310445b303c8040e7128e88d3bf2b886b9ac5d67103015754dafa418fa98d21deceda47140e7bf54393f49f966e29d6ebd0b24c220bfdbb75", 0x93}, {&(0x7f0000007140)="06a34467d14f9f43354cd2849c1143d87b68f169eea47eeb13a3498fb86288d1fad37a1c96a0677dad11e025e074077fafc21fffb7b8407b615582fbd40e30e1ff03fd223a7df8098ac809a193e9525ed3e4e6f60d4f61554a8ff7a18095967c47810fa19a63b23ef6a768c0112cdae6cd0326922b8eb82f43d88bc1f41620edee2940b28f93df1d145f9008f52b24387b10e334152ece594c0d6570381480fc3f357ee1f029b3e290279ee3a23a0d1fa716869f8d7ed2350cd2bc9de5c48c82247787572ff788ff5b030f474693095579d626e5aee40f3fcd67d43c8bec1c7c2866556e7ec293fadf4e739cf0f4db6d", 0xf0}], 0x5, &(0x7f0000007380)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @cred={{0x1c}}], 0x40, 0x40008804}}], 0xa, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x543840, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
openat$fb0(0xffffffffffffff9c, &(0x7f0000000840), 0x200, 0x0)
recvmsg(r3, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/uevent_helper', 0x341a82, 0x10)
write$char_usb(r4, &(0x7f0000000240)="96", 0x1)
socket$unix(0x1, 0x1, 0x0)
readlink(&(0x7f0000000040)='./file0/file0/file0/file0/file0\x00', &(0x7f0000000080)=""/167, 0xa7)
openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109843, 0x0)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
r5 = syz_open_dev$I2C(&(0x7f00000001c0), 0x0, 0x501640)
ioctl$I2C_SMBUS(r5, 0x720, &(0x7f00000003c0)={0x1, 0x9, 0xfffffffd, &(0x7f0000000280)={0x5, "90e3ab55d0ee85b78a9f89c46492ce246e51a674f3aff9bc8baf3c9b8e307b71f1"}})
chdir(&(0x7f0000000080)='./file1\x00')
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r6, 0x0)
setpgid(r0, r0)
mount$9p_fd(0x0, &(0x7f0000000880)='./file1\x00', 0x0, 0x2, 0x0)

3.73227553s ago: executing program 3 (id=1191):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_int(r0, 0x0, 0x15, &(0x7f0000000040)=0x3, 0x4)
bind$inet(r0, &(0x7f0000000380)={0x2, 0x4e22, @empty}, 0x10)
listen(r0, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @multicast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @remote={0xac, 0x3}, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r2 = io_uring_setup(0xb63, &(0x7f00000001c0)={0x0, 0x6b5, 0x800, 0x1, 0x28b})
io_uring_enter(r2, 0x1244, 0x544f, 0x66, &(0x7f0000000140)={[0x5d4]}, 0x8)
r3 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r3, 0xc0184800, &(0x7f0000000080)={0x10001, <r4=>r1})
setsockopt$inet_tcp_int(r4, 0x6, 0x22, &(0x7f0000000180)=0x6, 0x4)
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f00000000c0)=0x4)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
dup3(r1, r5, 0x80000)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
syz_usb_connect(0x5, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="120100003d37d840890457e01400000000010902240003000000000904", @ANYRESDEC], 0x0)
write$sndseq(r5, &(0x7f0000005880)=[{0xe, 0x0, 0x0, 0xfd, @tick, {}, {0xe}, @ext={0x0, 0x0}}], 0x1c)
ioctl$DMA_HEAP_IOCTL_ALLOC(r4, 0xc0184800, &(0x7f0000000000)={0x7f, r4})
mmap$dsp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000002, 0x12, r4, 0x0)
r6 = getpgid(0xffffffffffffffff)
prlimit64(r6, 0x5, 0x0, 0x0)

3.694286889s ago: executing program 1 (id=1192):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x0)
r4 = dup2(r3, r3)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$l2tp(0x2, 0x2, 0x73)
r6 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x44, r6, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0xe4}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, @loopback=0xac1414aa}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0xf}]}, 0x44}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', <r7=>0x0})
ioctl$sock_inet6_SIOCDELRT(r4, 0x890c, &(0x7f0000000640)={@remote, @empty, @dev={0xfe, 0x80, '\x00', 0x25}, 0x40000, 0x44, 0xd, 0x0, 0xfffffffffffffffe, 0x4080048, r7})
recvfrom$unix(r4, &(0x7f0000000300)=""/156, 0x9c, 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x6, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0x4, 0x8, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r9, 0x0, 0x1}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xb5, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
socket$inet(0x2, 0x3, 0x4)

2.791206623s ago: executing program 2 (id=1193):
r0 = socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
sendmsg$key(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)=ANY=[@ANYBLOB="020a0f09040000002dbd7000ffdbdf2502000a"], 0x20}}, 0x44)

2.661051187s ago: executing program 0 (id=1194):
r0 = socket(0x10, 0x3, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000040)={{{@in6=@loopback, @in=@empty}}, {{@in=@private}, 0x0, @in6=@loopback}}, 0x0)
creat(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r4 = inotify_init1(0x0)
inotify_add_watch(r4, &(0x7f0000000040)='.\x00', 0xc0000484)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
utimes(&(0x7f0000000100)='./file0\x00', 0x0)

2.650288185s ago: executing program 1 (id=1195):
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
ptrace(0x4208, 0x0)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
r0 = syz_open_dev$vcsu(0x0, 0x0, 0x4e2c2)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r0, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000580)={&(0x7f00000000c0)=ANY=[@ANYBLOB='@\x00', @ANYRESHEX, @ANYRES32=0x0, @ANYBLOB="0c00998003800000450000000a000600080211000001010400"], 0x40}, 0x1, 0x0, 0x0, 0x20004000}, 0x2000c045)
r1 = syz_create_resource$binfmt(0x0)
r2 = openat$binfmt(0xffffffffffffff9c, r1, 0x42, 0x1ff)
close(r2)
execveat$binfmt(0xffffffffffffff9c, r1, 0x0, &(0x7f0000000880)={[], 0xf000}, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000480)=[{&(0x7f0000000180)="580000001400add427323b470c45b45602067fffffff81004e22030d00ff0028925aa8002000eaa57b00090080020efffeffe809020000ff0004f03a04000800ffffffffffffffffffffffe7ee0000000000000000020000", 0x58}], 0x1)

973.436575ms ago: executing program 2 (id=1196):
syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000406a05160000000000000109022400010000000009040000000318000009210000000122000009058103"], 0x0)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[], 0x118)

955.206162ms ago: executing program 0 (id=1197):
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
unshare(0x2c020400)
r0 = creat(&(0x7f00000001c0)='./file1\x00', 0x0)
r1 = syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x76c2, 0x80, 0x204, 0x2f6}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r4, &(0x7f0000000280)={0xa, 0x0, 0x0, @dev}, 0x1c)
prlimit64(0x0, 0xe, 0x0, 0x0)
ioctl$BINDER_GET_NODE_INFO_FOR_REF(r0, 0xc018620c, &(0x7f0000000100)={0x3})
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getrlimit(0x7, &(0x7f0000000000))
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019500)=""/102397, 0x18ffd)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000010000507000000000004000000000000", @ANYRES32=r8, @ANYBLOB="00000016010000001800120008000100736974000c0002000800030036"], 0x38}}, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x50, 0x10, 0x439, 0x70bd2c, 0xffffffea, {0x0, 0x0, 0xe403, r8, 0x40083}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @sit={{0x8}, {0x24, 0x2, 0x0, 0x1, [@IFLA_IPTUN_PROTO={0x5, 0x9, 0x29}, @IFLA_IPTUN_ENCAP_TYPE={0x6, 0xf, 0x3}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @multicast1}, @IFLA_IPTUN_6RD_RELAY_PREFIXLEN={0x6}]}}}]}, 0x50}, 0x1, 0x0, 0x0, 0x8000}, 0x4040)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee01, <r9=>0x0}}, './file0\x00'})
setresgid(r9, 0xee01, 0x0)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newtaction={0x64, 0x30, 0xcac229faa96ee7df, 0x0, 0x400, {}, [{0x50, 0x1, [@m_ife={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x1}}, @TCA_IFE_METALST={0x4}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x64}}, 0x8004)
setsockopt$sock_linger(r4, 0x1, 0xd, &(0x7f00000000c0), 0x8)

908.507296ms ago: executing program 1 (id=1198):
socket$kcm(0x10, 0x2, 0x0)
r0 = timerfd_create(0x0, 0x0)
r1 = syz_io_uring_setup(0x700a, &(0x7f0000000140)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000100)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd=r0, 0x0, &(0x7f0000001240)=""/4102, 0x1006})
r4 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r4, &(0x7f0000000600)={&(0x7f0000000300)={0x2, 0x0, @remote}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000280)="0800a9fc0da6b30a", 0x8}], 0x1, &(0x7f0000001d00)=ANY=[@ANYBLOB], 0x30}, 0x4000040)
io_uring_register$IORING_UNREGISTER_PBUF_RING(r1, 0x17, &(0x7f00000001c0)={&(0x7f0000004000)={[{&(0x7f0000002280)="e9e6ac3b5de01bb301da3b5826dc268b09fe615b35aa5afe8203658cd69749c5f89de34bcd98a3ad999de6564dd75190c1aa72ce0e7f7f090310980b93e0bc6e8742765d7e2bf95ace97dd32104565f72d71e1a14952cd4e7e43bee6a70b1fb71b4ed847ad9064b7dad1d1d1b803e5e17e069489a93084c562f037aaf5a465c93ce630223a6eb81c4d7f2ce74b05dddbe11b31687ac775a4118b41cca9dbecb9fc9e55d597df27b81e1f2e56c8e83bf32983fc644d7e363d89baea90748b564c6e853da93b3372e56da824bbb951a01c123bb885bad5351dc38c9e130e076dfbde57870b8f6859ec6dd8d043dbe26806b3613981dfbc4028f5c96b21c27e37e35b7088fcf397df5894b16537df3fd889f79ee1ba1c6082dda1414838514c6cbe5d194d0b730b4144189eea8abfde5398385bb0b7378f7df8afb5302bdd792f1e963a3497ce807f8fd82bf38fff373c0c96ad4b3d2a241ab1e9b1eae6e2ddca7ea7a2e2402383c762e40417b624c5ea81e209ffa1b913d99c0cf3e58c99420c505520fa4a0d55b9642698f0a551e97bb1ffef301a629a836da842ba0f2a80f7cb402cc24d0cca48a5026fe53596678a67f7712e2a14e768209339b091dfd509d0be7791f21625a9a2baf1d796dfd378966cd1b48ef3d70d1296c9e1134b9d8c1f0ab08ee6fcc73ef8baaaa34864182eaaa65d5bf0eb97dcd1e87447d24ad5930937645d855d34efc2dc693de62e11b905608168ab52a94cb85f41b7fce4765d7ca2c57d0ebad7cf6673ac5fd5d28d84ab330d7182de8bea8008505096eccc9bbbfb13eaa887c778a8770af30f7a62c6f5d0fa7733dddae1f94534fdb66803f826f242e9a81d45d81b8b250a11c30968d47d09fe17ea7e814a664a90ee4d6d8be21fc555cc3a5cc07239f3493364ebd2cefbc8ee08ca8d5ebd74bea484850d5803f3754dae455bf552058574cb548f78253d21ce0b9fd919c7e8c1568c41b61fa6b5d0b8dbbb789e43f2640b6894c5b788d652003a229bea0c93f19bcd3b459cb47d9cf4eefcacf35b91c3b02c1928796d3b3c1909ae726b5083fc764d2451d22a49fb32f2d0124ffbf116ca0fba86c9bc8c34c9aa049372797cc6f9b272845e288a9d2ba3dec58eb96084fc704e84936fb85a4b38e4eff593f312bf6ddc3f886302bb1801eb37775859d9932b7855d24e1c3495ca64c8f06e72e22bb58eb146226559f66acbbc3376aaaa6cddf6418df0c4d3fc05099f237a5dd45d5b5d2fc8c6eecb1571222cc29ae850d54fcda006c33ed07d8c5cb75570286a1e26ad930a69082f5fbc884a1c37e9674ea4bbc119eeb13eb277d35f0dde03ef6c57a81f0e1fc71f62f18f673cfdcb00787a522b3801b0b57271ef9414aa36d8f1a5aaa1160da8d09d0e8fdcff10a58396ecb7b6f69ba4adb756897f199b9d4cd2daad11f4b99afe8925d3f7176ebf68310db5afb9ca9b772646da3933e235a1a8aae5c45687331d26e0d0ad362c6a545dd985ea1acaf93e2c1e7aecd725834298470edaa49e1f464148ff23e7b03d975b24860bea2fc05eac0398c80960cca0acdd010b5e0ab37abaf3ff548acdd7afc959c748b7a6a4cd044913187593b761a7505454be2fb542e2b7dcd9069726bcaa2fe8e2dafcd3604df3fd0dadcbeb39e7c11c685c01d729780554d55fcc7a1b7a99887488db647f633d976943626ce61eb7a7b4e80c309ae7d0bdac7b98040d002f6110f38c29c5374d6f11b2a2485ceec5e8de0e57c70582acceaf074d9e7f0c55917d6f11d597d9689bee9974cf49071cfa0fbae911f15cfcb27ed21e211117276a253731db680929ffecbe003015f572c3d4556f9b5453e1bf787c264740093c709c4d2dda3458497bbab9ca1e0622981e219f9767ee2d28ca6e4768e9336fb2708747dfda3950efba6b736bacb4e480755836332af3517c16e8c4fa7697b06663cac8ea3e7d25be8771cd0793d1623bdd25704144cf71e30ea2d2d617b4d2f5d5e7c3768a017bc7a7d26cf9a9e52a876f7146ddb8eb61392b756606a47e646016eeb779366cf3ddcd4443d1afa6d1084bcf97ee345be92efacbdfee0dd9c415f835a4ace02da0f06fe026d96d61695e5f29d6e2573e37597932ab9bf31dacbb66eea14d274491de63241f30", 0x5f8, 0x1}, {&(0x7f0000000300)="9f2532209eafa3fdc6e3bf7716bea1109b4579ff867a52ec5923598dc3ef70a63bc265f2a5c4e6733a1cb8136474d32cc5db7c59890c76f67ddb04c2618a5e3992da826eb510b43c3e665ff0de3ec39a6db5dc49233546836561699e", 0x5c}, {&(0x7f0000000040)="fc9a734598dc91227f11", 0xa, 0x2}, {&(0x7f00000000c0)}]}, 0x4, 0x1}, 0x1)
io_uring_enter(r1, 0x1f82, 0x0, 0x0, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000032680)=ANY=[@ANYRESOCT=r4, @ANYRESDEC=r3, @ANYBLOB="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"], 0x1c}}, 0x48845)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r6 = syz_open_dev$vbi(&(0x7f0000002280), 0x3, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r6, 0xc0205648, &(0x7f0000002300)={0xf010000, 0xd, 0x7fff, 0xffffffffffffffff, 0x0, &(0x7f00000022c0)={0x990a7d, 0x7, '\x00', @value64=0xab64}})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$SO_J1939_SEND_PRIO(0xffffffffffffffff, 0x6b, 0x3, &(0x7f0000000000)=0x2, 0x4)
eventfd(0x6)
r8 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt$WPAN_SECURITY(r8, 0x0, 0x1, 0x0, 0x0)
sendmsg$802154_dgram(r8, &(0x7f00000018c0)={&(0x7f0000000500), 0x14, &(0x7f0000001880)={0x0}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r9 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r9, &(0x7f0000002700)=""/102392, 0x18ff8)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3000005, 0x200000005c831, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setreuid(0xee01, 0x0)
pipe2$9p(&(0x7f00000001c0), 0x88800)

804.603107ms ago: executing program 4 (id=1199):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x4)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
ptrace(0x4208, r2)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000580)={&(0x7f00000000c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRESHEX=r1, @ANYBLOB="000826bd7000fedbdf257000000008000300", @ANYRES32=0x0, @ANYBLOB="0c00998003800000450000000a0006000802110000010104"], 0x40}, 0x1, 0x0, 0x0, 0x20004000}, 0x2000c045)
r3 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r4 = openat$binfmt(0xffffffffffffff9c, r3, 0x42, 0x1ff)
close(r4)
execveat$binfmt(0xffffffffffffff9c, r3, 0x0, &(0x7f0000000880)={[], 0xf000}, 0x0)

417.927514ms ago: executing program 0 (id=1200):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x441, 0x0)
r1 = msgget(0x0, 0x0)
r2 = syz_usb_connect$cdc_ncm(0x2, 0x6e, &(0x7f0000000140)=ANY=[@ANYBLOB="12011001020000402505a1a440000102030109025c0002010030000904000001020d0000052406000105240000000d240f01fdff"], 0x0)
syz_usb_control_io$cdc_ncm(r2, 0x0, 0x0)
msgctl$MSG_STAT(r1, 0xb, &(0x7f0000000580)=""/93)
syz_usb_control_io$cdc_ncm(r2, 0x0, &(0x7f00000000c0)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x20, 0x80, 0x1c, {0x4002, 0x200, 0x5000, 0x0, 0x2, 0x0, 0x5, 0xffffffff, 0x0, 0x0, 0x3}}, 0x0, 0x0, 0x0, 0x0})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, 0x0, 0x0)
syz_emit_ethernet(0x9a, &(0x7f0000002340)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd603000bb00642b00fc020000000000000000000000000000fe8000000000000000000000000000aa00000000006490783a00000000000000000000003ba53de64f6ce2ee11028289aefdb3449391a823213e6336516748a7949bb108402fa83b1d661c18462075368a1860929ddeb8f71aa23d391b8fa99e9816af2d040876a663a86d97f46b9665cc18492b"], 0x0)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
r6 = eventfd(0xffffffff)
ioctl$VHOST_SET_LOG_FD(r5, 0x4004af07, &(0x7f0000000240)=r6)
ioctl$VHOST_SET_VRING_KICK(r5, 0x4008af20, &(0x7f0000000040)={0x1, r6})
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r5, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_SET_VRING_ERR(r5, 0x4008af22, &(0x7f00000002c0)={0x1, r6})
ioctl$VHOST_VSOCK_SET_RUNNING(r5, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xf, @void, @value}, 0x94)
ioctl$TCSBRKP(r4, 0x5425, 0x5)
write$binfmt_aout(r0, &(0x7f0000000240)=ANY=[], 0x3b13)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x7, 0x2, 0xf, "1000a87d827bc2c95a5947380b00"})
r7 = syz_open_pts(r0, 0x800)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
r8 = dup3(r7, r0, 0x0)
ioctl$TIOCSTI(r8, 0x5412, &(0x7f0000000000)=0x17)
syz_usb_connect(0x3, 0x2d, &(0x7f00000003c0)=ANY=[@ANYBLOB="12010102b4d9f920260c2000c3fd0102030109021b00016b0b0cfbb4cc87a7f1697730090a2401008002020102"], &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0})

393.779126ms ago: executing program 3 (id=1201):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000b00)=ANY=[@ANYBLOB="9feb0100180000000000000030000000300000000400000002000000000000110300000000000000000000000100000d000000000000000000000000020000000000000c02000000000061"], 0x0, 0x4c, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102384, 0x18ff0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r2, 0x0, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$SO_BINDTODEVICE(r3, 0x88, 0x65, 0x0, 0xfffffffffffffcbe)
r4 = syz_open_dev$dri(&(0x7f0000000040), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000000)={0x0, &(0x7f00000000c0)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f0000000400)={0x0, 0x0, r5})
r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r6, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r6, 0x4008af03, &(0x7f0000000d00)={0x1, 0x0, [{0x0, 0x0, 0x0}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r6, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r4, 0xc00c642d, &(0x7f0000000080)={0x0, 0x0, <r7=>0xffffffffffffffff})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.cpu/syz0\x00', 0x1ff)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
mkdirat(0xffffffffffffffff, 0x0, 0x101)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$evdev(0x0, 0x8, 0x280f81)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1000004, 0x13, r7, 0x0)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000400))

0s ago: executing program 2 (id=1202):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
setsockopt$bt_hci_HCI_FILTER(r2, 0x0, 0x2, &(0x7f0000000180)={0xd1e4ca3, [0x7], 0xd3dd}, 0x10)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000002100)=ANY=[@ANYBLOB="b0000000000000001659ec0889419429aa5db97288b0f8a87ea8e66d9a8b"], 0xb0)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="10"], 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',posixacl'])
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$UI_DEV_SETUP(r4, 0x405c5503, &(0x7f0000001140)={{0x4, 0x0, 0x9, 0xd}, 'syz0\x00', 0xd})
r5 = fcntl$dupfd(r4, 0x406, r4)
ioctl$UI_ABS_SETUP(r5, 0x401c5504, &(0x7f0000000000)={0x35})
ioctl$UI_SET_EVBIT(r4, 0x40045564, 0x3)
ioctl$UI_DEV_CREATE(r4, 0x5501)
r6 = syz_open_dev$sndctrl(&(0x7f0000000100), 0xfffffffffffffff4, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r6, 0xc4c85513, &(0x7f0000000880)={{0x9, 0x1, 0x80000001, 0x9, 'syz1\x00', 0x4}, 0x0, [0x4, 0xfffffffffffffffc, 0x4, 0x7fffffffffffffff, 0xff, 0x4, 0x1, 0x2, 0x5, 0x6, 0xffff, 0x0, 0x3, 0x6, 0x88, 0xffffffff, 0xffffffffffffffff, 0x5, 0xb, 0x800, 0xd4, 0x0, 0x6841, 0x7, 0x5, 0x6, 0x3ff, 0x4, 0x708000000000, 0x4, 0xa, 0x80, 0x9, 0x101, 0x0, 0x7, 0x23ea, 0x8, 0x2, 0x40, 0x9, 0x8000000, 0x3, 0xacd4, 0xa73, 0x1, 0x765000000, 0x5, 0x2, 0x73, 0x9, 0x8000000000000001, 0x10001, 0x5, 0x8, 0x6, 0x80000001, 0x6, 0x0, 0x684d, 0x7, 0x8001, 0x1, 0x97, 0x5, 0x7fffffffffffffff, 0xfe51, 0x0, 0x3, 0x2, 0x200, 0x6, 0x3, 0x6, 0x3, 0xe37, 0x7fff, 0x1, 0x228, 0x7, 0x75b, 0x8, 0x1, 0x4, 0x5, 0x1, 0xa51, 0x4dec, 0x4, 0x6, 0x9, 0x9, 0x5f9b, 0x4, 0x2, 0x6, 0x2, 0x4, 0x80, 0x3, 0x0, 0x401, 0x100000000, 0x9, 0x7, 0x1, 0x4, 0x0, 0x2, 0x1, 0x0, 0x9061, 0x7, 0xfffffffffffffff9, 0xe328, 0x2, 0x88fd, 0xc5e, 0x8, 0x6, 0x8001, 0x0, 0x1dce967e, 0xbd79, 0x8000000000000001, 0x6, 0x200, 0xd3]})
r7 = syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x2042)
read$msr(r7, 0x0, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x7, 0x4, 0x6, 0xfffa}, 0x1d, [0x6, 0xc95a, 0xfffffff3, 0x9, 0x83, 0x7, 0x1, 0x7f, 0x6, 0x4d, 0xfffffff2, 0x5f, 0xa, 0x40000003, 0xffff2d37, 0x1dd2, 0x6, 0x7, 0x2, 0x80000001, 0x7, 0x9, 0x3, 0x3c5b, 0x4, 0x24, 0x3, 0xfffffffe, 0x1f461e2c, 0x2, 0xe661, 0x4, 0x7, 0x3, 0x7fff, 0x4c74, 0x8f00, 0x642, 0x4, 0xa, 0x0, 0x71, 0x7, 0xfffff000, 0x103, 0x0, 0x5, 0x4, 0x91, 0x1, 0x6, 0x3, 0x5, 0x4, 0x8, 0x0, 0x80, 0x2, 0x5, 0xa, 0x8, 0x7, 0x1, 0xfffffffc], [0x10000007, 0xffff, 0x12f, 0x8000, 0x10, 0xfffffff5, 0x129432e6, 0xcb, 0xf9, 0x0, 0x2bf, 0x6c9, 0x9, 0xfffffffe, 0x3, 0x4002, 0x101, 0x5, 0x2f, 0xe, 0xfff, 0x78, 0xea4, 0xa, 0x4, 0x0, 0x8000, 0xb, 0x400, 0x101, 0x0, 0xfffffffd, 0xff, 0x1005, 0x7ff, 0x5f31, 0x4, 0x0, 0x6, 0x2, 0x9, 0x4, 0x9, 0x8, 0x9, 0x6, 0x5, 0x0, 0x1, 0x8000, 0xffff, 0x2, 0x7f, 0x9, 0xfff, 0x1000, 0x4, 0x1, 0x7, 0xb, 0x9, 0x48c93690, 0x2, 0xff], [0x7, 0x4, 0x0, 0x64e, 0xfffffdfe, 0x7fffffff, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x10000009, 0x3ea, 0xb, 0x5, 0x2, 0x2, 0xf, 0x8, 0x0, 0x6d01, 0x5, 0x3b, 0x3, 0x200, 0x80, 0x3, 0xfffffffe, 0x2, 0x0, 0xa2, 0x7, 0x53cf697b, 0x5, 0x6, 0x54fe12d2, 0xbf, 0x200, 0x3, 0x400002, 0xfffffff9, 0x0, 0x6, 0x5, 0x0, 0x6, 0xfffffffb, 0x120000, 0x3, 0x6, 0x9, 0x4, 0x3], [0x9, 0xbb2e, 0x80000003, 0xb, 0x5, 0x938, 0x6, 0x3, 0x0, 0x5, 0xce7, 0x1ff, 0x6, 0x0, 0x5, 0x0, 0x101, 0x10000, 0x6, 0x7fff, 0x8ffff, 0xa620, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x6, 0x5, 0x7ffffffe, 0x5, 0x8, 0x8, 0x3, 0x3, 0xffff, 0x3, 0x9, 0x100, 0x9602, 0xa, 0x2, 0x4, 0x6, 0x1, 0x10000, 0x5, 0x8, 0x2b91, 0xa1f, 0x8, 0x9, 0x1, 0x6c1b, 0x2d513b50, 0x4, 0x5, 0x6, 0x1, 0x1fd, 0xffff7441, 0xfff]}, 0x45c)
syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x822b01)
write$char_usb(r7, &(0x7f0000000240)="4de2cb4f37105c98f1ec52571ddc2aa44faa6d3b0bfa2b5feb9a0374d719f1e15595aa09c5c36598d61078ce581769c2a54e39d36897ae0d581952178d4743d4e5fd015b73fbe9cff2e0e7111ab5288dd27808e3b4d7df9ac3722f29902247b9753a6c86dd5becb40ef815f2d43fe0c666c7364938c476", 0x77)

kernel console output (not intermixed with test programs):

e+0x77/0x7f
[  282.276098][ T8959] RIP: 0033:0x7f220e98cd29
[  282.276111][ T8959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  282.276127][ T8959] RSP: 002b:00007f220f823038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  282.276144][ T8959] RAX: ffffffffffffffda RBX: 00007f220eba5fa0 RCX: 00007f220e98cd29
[  282.276154][ T8959] RDX: 0000000000000050 RSI: 0000000020000380 RDI: 000000000000000a
[  282.276164][ T8959] RBP: 00007f220f823090 R08: 0000000000000000 R09: 0000000000000000
[  282.276174][ T8959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  282.276183][ T8959] R13: 0000000000000000 R14: 00007f220eba5fa0 R15: 00007ffce1c9acf8
[  282.276205][ T8959]  </TASK>
[  282.709678][ T8966] netlink: 187320 bytes leftover after parsing attributes in process `syz.2.845'.
[  284.846273][ T8987] 9pnet: Could not find request transport: 
[  285.676743][ T9006] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  286.052617][ T5864] usb 2-1: new full-speed USB device number 21 using dummy_hcd
[  286.224018][ T5864] usb 2-1: unable to get BOS descriptor or descriptor too short
[  286.252730][ T5864] usb 2-1: not running at top speed; connect to a high speed hub
[  286.275541][ T7224] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  286.295060][ T5864] usb 2-1: config 17 has an invalid interface number: 8 but max is 1
[  286.311602][ T5864] usb 2-1: config 17 has 1 interface, different from the descriptor's value: 2
[  286.331979][ T5864] usb 2-1: config 17 has no interface number 0
[  286.338164][ T5864] usb 2-1: config 17 interface 8 altsetting 6 endpoint 0x3 has an invalid bInterval 116, changing to 4
[  286.371768][ T5864] usb 2-1: config 17 interface 8 altsetting 6 endpoint 0x3 has invalid maxpacket 30307, setting to 1023
[  286.398211][ T5864] usb 2-1: config 17 interface 8 has no altsetting 0
[  286.561453][ T5864] usb 2-1: New USB device found, idVendor=0763, idProduct=2001, bcdDevice=2c.ff
[  286.570701][ T5864] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  286.578830][ T5864] usb 2-1: Product: syz
[  286.583040][ T5864] usb 2-1: Manufacturer: syz
[  286.587762][ T5864] usb 2-1: SerialNumber: syz
[  287.078796][ T7224] usb 3-1: Using ep0 maxpacket: 16
[  287.086554][ T9004] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  287.095263][ T9004] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  287.105570][ T7224] usb 3-1: New USB device found, idVendor=0403, idProduct=f850, bcdDevice= 0.81
[  287.111164][ T5864] usb 2-1: selecting invalid altsetting 0
[  287.125779][ T7224] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  287.138368][ T7224] usb 3-1: config 0 descriptor??
[  287.140167][ T5864] usb 2-1: 8:6 : no UAC_FORMAT_TYPE desc
[  287.144710][ T7224] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected
[  287.162027][ T5864] usb 2-1: selecting invalid altsetting 0
[  287.166113][ T7224] usb 3-1: Detected SIO
[  287.185061][ T5864] usb 2-1: USB disconnect, device number 21
[  287.205688][ T7224] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  287.548062][ T7224] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  287.549909][ T5864] usb 3-1: USB disconnect, device number 17
[  287.567677][ T5864] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  287.585365][ T5864] ftdi_sio 3-1:0.0: device disconnected
[  287.720280][ T7224] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  287.738675][ T7224] usb 4-1: New USB device found, idVendor=1e7d, idProduct=31ce, bcdDevice= 0.00
[  287.761513][ T7224] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  287.797972][ T7224] usb 4-1: config 0 descriptor??
[  288.817919][ T7224] usbhid 4-1:0.0: can't add hid device: -71
[  288.841317][ T7224] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  288.864035][ T7224] usb 4-1: USB disconnect, device number 22
[  289.093172][ T5864] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  290.350061][ T5864] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  290.396482][ T5864] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  290.408115][ T5864] usb 2-1: New USB device found, idVendor=1038, idProduct=12b6, bcdDevice= 0.1f
[  290.671718][ T5864] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  291.017453][ T9072] netlink: 187320 bytes leftover after parsing attributes in process `syz.2.875'.
[  291.026842][ T9072] net_ratelimit: 31 callbacks suppressed
[  291.026870][ T9072] netlink: zone id is out of range
[  291.037974][ T9072] netlink: zone id is out of range
[  291.043413][ T9072] netlink: zone id is out of range
[  291.048581][ T9072] netlink: zone id is out of range
[  291.053732][ T9072] netlink: zone id is out of range
[  291.059064][ T9072] netlink: zone id is out of range
[  291.064197][ T9072] netlink: zone id is out of range
[  291.069405][ T9072] netlink: zone id is out of range
[  291.074546][ T9072] netlink: zone id is out of range
[  291.079813][ T9072] netlink: zone id is out of range
[  291.349519][ T9074] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  291.351104][ T5864] usb 2-1: config 0 descriptor??
[  291.790204][ T9079] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  291.889300][ T7224] usb 5-1: new full-speed USB device number 25 using dummy_hcd
[  291.906568][ T9049] netlink: 32 bytes leftover after parsing attributes in process `syz.1.870'.
[  292.989111][ T5864] usbhid 2-1:0.0: can't add hid device: -71
[  293.054873][ T7224] usb 5-1: unable to get BOS descriptor or descriptor too short
[  293.061564][ T5864] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  293.094041][ T5864] usb 2-1: USB disconnect, device number 22
[  293.223951][ T7224] usb 5-1: not running at top speed; connect to a high speed hub
[  293.233967][ T7224] usb 5-1: config 17 has an invalid interface number: 8 but max is 1
[  293.242189][ T7224] usb 5-1: config 17 has 1 interface, different from the descriptor's value: 2
[  293.251213][ T7224] usb 5-1: config 17 has no interface number 0
[  293.257429][ T7224] usb 5-1: config 17 interface 8 altsetting 6 endpoint 0x3 has an invalid bInterval 116, changing to 4
[  293.272218][ T7224] usb 5-1: config 17 interface 8 altsetting 6 endpoint 0x3 has invalid maxpacket 30307, setting to 1023
[  293.283475][ T7224] usb 5-1: config 17 interface 8 has no altsetting 0
[  293.306652][ T7224] usb 5-1: New USB device found, idVendor=0763, idProduct=2001, bcdDevice=2c.ff
[  293.320612][ T7224] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  293.340040][ T7224] usb 5-1: Product: syz
[  293.348707][ T7224] usb 5-1: Manufacturer: syz
[  293.357761][ T7224] usb 5-1: SerialNumber: syz
[  293.584259][ T7224] usb 5-1: selecting invalid altsetting 0
[  293.604405][ T7224] usb 5-1: 8:6 : no UAC_FORMAT_TYPE desc
[  293.625969][ T7224] usb 5-1: selecting invalid altsetting 0
[  293.833161][ T7224] usb 5-1: USB disconnect, device number 25
[  299.642532][ T9165] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  300.269925][ T9175] netlink: 187320 bytes leftover after parsing attributes in process `syz.3.902'.
[  300.279286][ T9175] net_ratelimit: 15 callbacks suppressed
[  300.279313][ T9175] netlink: zone id is out of range
[  300.290138][ T9175] netlink: zone id is out of range
[  300.295472][ T9175] netlink: zone id is out of range
[  300.300628][ T9175] netlink: zone id is out of range
[  300.305823][ T9175] netlink: zone id is out of range
[  300.311116][ T9175] netlink: zone id is out of range
[  300.316323][ T9175] netlink: zone id is out of range
[  300.321547][ T9175] netlink: zone id is out of range
[  300.326761][ T9175] netlink: zone id is out of range
[  300.331982][ T9175] netlink: zone id is out of range
[  300.483532][    T9] usb 3-1: new full-speed USB device number 18 using dummy_hcd
[  300.677907][    T9] usb 3-1: unable to get BOS descriptor or descriptor too short
[  300.693857][    T9] usb 3-1: not running at top speed; connect to a high speed hub
[  300.706432][    T9] usb 3-1: config 2 has an invalid interface number: 232 but max is 0
[  300.718567][ T5863] usb 2-1: new full-speed USB device number 23 using dummy_hcd
[  300.724780][    T9] usb 3-1: config 2 has no interface number 0
[  300.743758][    T9] usb 3-1: config 2 interface 232 has no altsetting 0
[  300.756008][    T9] usb 3-1: New USB device found, idVendor=056c, idProduct=8007, bcdDevice=5f.aa
[  300.766907][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  300.775569][    T9] usb 3-1: Product: syz
[  300.779883][    T9] usb 3-1: Manufacturer: syz
[  300.784589][    T9] usb 3-1: SerialNumber: syz
[  300.971553][ T5820] Bluetooth: hci2: unexpected event for opcode 0x2005
[  301.126867][ T5863] usb 2-1: unable to get BOS descriptor or descriptor too short
[  301.135122][ T5863] usb 2-1: not running at top speed; connect to a high speed hub
[  301.148801][ T5863] usb 2-1: config 17 has an invalid interface number: 8 but max is 1
[  301.376429][ T5863] usb 2-1: config 17 has an invalid descriptor of length 0, skipping remainder of the config
[  301.475693][ T5863] usb 2-1: config 17 has 1 interface, different from the descriptor's value: 2
[  301.570910][ T5863] usb 2-1: config 17 has no interface number 0
[  301.650791][ T5863] usb 2-1: config 17 interface 8 has no altsetting 0
[  301.807969][ T5863] usb 2-1: New USB device found, idVendor=0763, idProduct=2001, bcdDevice=2c.ff
[  301.817580][ T5863] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  301.838728][ T5863] usb 2-1: Product: syz
[  301.842923][ T5863] usb 2-1: Manufacturer: syz
[  301.847518][ T5863] usb 2-1: SerialNumber: syz
[  302.155549][ T9164] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  302.164705][ T9164] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  302.191526][ T5863] usb 2-1: USB disconnect, device number 23
[  302.215295][  T932] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  302.387784][  T932] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  302.413709][  T932] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  302.427390][  T932] usb 5-1: New USB device found, idVendor=1038, idProduct=12b6, bcdDevice= 0.1f
[  302.437629][  T932] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  302.451310][  T932] usb 5-1: config 0 descriptor??
[  302.688677][ T9190] netlink: 32 bytes leftover after parsing attributes in process `syz.4.907'.
[  303.711915][  T932] usbhid 5-1:0.0: can't add hid device: -71
[  303.721110][  T932] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  303.736924][  T932] usb 5-1: USB disconnect, device number 26
[  303.809605][    T9] belkin_sa 3-1:2.232: Belkin / Peracom / GoHubs USB Serial Adapter converter detected
[  303.830652][    T9] usb 3-1: bcdDevice: 5faa, bfc: 0
[  303.838741][    T9] usb 3-1: Belkin / Peracom / GoHubs USB Serial Adapter converter now attached to ttyUSB0
[  303.850242][    T9] usb 3-1: USB disconnect, device number 18
[  303.858775][    T9] belkin ttyUSB0: Belkin / Peracom / GoHubs USB Serial Adapter converter now disconnected from ttyUSB0
[  303.870091][    T9] belkin_sa 3-1:2.232: device disconnected
[  303.887962][ T9206] FAULT_INJECTION: forcing a failure.
[  303.887962][ T9206] name failslab, interval 1, probability 0, space 0, times 0
[  303.901047][ T9206] CPU: 0 UID: 0 PID: 9206 Comm: syz.2.911 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  303.901068][ T9206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  303.901077][ T9206] Call Trace:
[  303.901082][ T9206]  <TASK>
[  303.901089][ T9206]  dump_stack_lvl+0x16c/0x1f0
[  303.901112][ T9206]  should_fail_ex+0x497/0x5b0
[  303.901134][ T9206]  should_failslab+0xc2/0x120
[  303.901160][ T9206]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  303.901185][ T9206]  ? sidtab_sid2str_get+0x17a/0x680
[  303.901217][ T9206]  kmemdup_noprof+0x29/0x60
[  303.901237][ T9206]  sidtab_sid2str_get+0x17a/0x680
[  303.901266][ T9206]  sidtab_entry_to_string+0x33/0x110
[  303.901293][ T9206]  security_sid_to_context_core+0x35c/0x640
[  303.901321][ T9206]  avc_audit_post_callback+0x10b/0x8c0
[  303.901345][ T9206]  ? audit_log_format+0xe9/0x130
[  303.901362][ T9206]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  303.901378][ T9206]  ? skb_put+0x138/0x1b0
[  303.901396][ T9206]  ? audit_log_n_string+0x253/0x540
[  303.901418][ T9206]  ? audit_log_n_untrustedstring+0xf2/0x100
[  303.901440][ T9206]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  303.901456][ T9206]  common_lsm_audit+0x33e/0x2290
[  303.901480][ T9206]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  303.901497][ T9206]  ? __pfx_common_lsm_audit+0x10/0x10
[  303.901521][ T9206]  ? find_held_lock+0x2d/0x110
[  303.901551][ T9206]  ? avc_denied+0x434/0x780
[  303.901567][ T9206]  ? __pfx_lock_release+0x10/0x10
[  303.901585][ T9206]  ? __pfx_avc_node_free+0x10/0x10
[  303.901600][ T9206]  ? rcu_is_watching+0x12/0xc0
[  303.901630][ T9206]  ? slow_avc_audit+0x17d/0x210
[  303.901646][ T9206]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  303.901662][ T9206]  slow_avc_audit+0x17d/0x210
[  303.901680][ T9206]  ? __pfx_slow_avc_audit+0x10/0x10
[  303.901707][ T9206]  ? avc_has_perm_noaudit+0x2fa/0x3a0
[  303.901729][ T9206]  avc_has_perm+0x18d/0x1c0
[  303.901749][ T9206]  ? __pfx_avc_has_perm+0x10/0x10
[  303.901769][ T9206]  ? hlock_class+0x4e/0x130
[  303.901791][ T9206]  ? __lock_acquire+0xcc5/0x3c40
[  303.901814][ T9206]  sock_has_perm+0x253/0x2f0
[  303.901834][ T9206]  ? __pfx_sock_has_perm+0x10/0x10
[  303.901852][ T9206]  ? ksys_write+0x12b/0x250
[  303.901871][ T9206]  ? __pfx___lock_acquire+0x10/0x10
[  303.901900][ T9206]  ? find_held_lock+0x2d/0x110
[  303.901926][ T9206]  security_socket_getsockopt+0x211/0x240
[  303.901950][ T9206]  do_sock_getsockopt+0xf5/0x800
[  303.901976][ T9206]  ? trace_lock_acquire+0x14e/0x1f0
[  303.902003][ T9206]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  303.902029][ T9206]  ? lock_acquire+0x2f/0xb0
[  303.902046][ T9206]  ? __fget_files+0x40/0x3a0
[  303.902070][ T9206]  ? __fget_files+0x206/0x3a0
[  303.902096][ T9206]  __sys_getsockopt+0x12f/0x260
[  303.902123][ T9206]  __x64_sys_getsockopt+0xbd/0x160
[  303.902143][ T9206]  ? do_syscall_64+0x91/0x250
[  303.902161][ T9206]  ? lockdep_hardirqs_on+0x7c/0x110
[  303.902178][ T9206]  do_syscall_64+0xcd/0x250
[  303.902199][ T9206]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.902219][ T9206] RIP: 0033:0x7ff0a398cd29
[  303.902232][ T9206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  303.902248][ T9206] RSP: 002b:00007ff0a4754038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  303.902264][ T9206] RAX: ffffffffffffffda RBX: 00007ff0a3ba5fa0 RCX: 00007ff0a398cd29
[  303.902274][ T9206] RDX: 0000000000000004 RSI: 000000000000010c RDI: 0000000000000004
[  303.902284][ T9206] RBP: 00007ff0a4754090 R08: 0000000020003540 R09: 0000000000000000
[  303.902294][ T9206] R10: 0000000020003500 R11: 0000000000000246 R12: 0000000000000001
[  303.902303][ T9206] R13: 0000000000000000 R14: 00007ff0a3ba5fa0 R15: 00007ffefd09c9f8
[  303.902326][ T9206]  </TASK>
[  303.902406][   T29] audit: type=1400 audit(1737726787.722:415): avc:  denied  { getopt } for  pid=9205 comm="syz.2.911" ssid=146 tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  306.018286][ T9224] netlink: 187320 bytes leftover after parsing attributes in process `syz.3.916'.
[  306.027767][ T9224] net_ratelimit: 16 callbacks suppressed
[  306.027795][ T9224] netlink: zone id is out of range
[  306.038708][ T9224] netlink: zone id is out of range
[  306.043988][ T9224] netlink: zone id is out of range
[  306.049124][ T9224] netlink: zone id is out of range
[  306.054376][ T9224] netlink: zone id is out of range
[  306.059672][ T9224] netlink: zone id is out of range
[  306.064830][ T9224] netlink: zone id is out of range
[  306.070019][ T9224] netlink: zone id is out of range
[  306.075181][ T9224] netlink: zone id is out of range
[  306.080381][ T9224] netlink: zone id is out of range
[  306.607772][ T9216] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  306.876369][  T970] usb 2-1: new full-speed USB device number 24 using dummy_hcd
[  307.039631][  T970] usb 2-1: unable to get BOS descriptor or descriptor too short
[  307.080063][  T970] usb 2-1: not running at top speed; connect to a high speed hub
[  307.092174][  T970] usb 2-1: config 17 has an invalid interface number: 8 but max is 1
[  307.100507][  T970] usb 2-1: config 17 has 1 interface, different from the descriptor's value: 2
[  307.170963][  T970] usb 2-1: config 17 has no interface number 0
[  307.197720][  T970] usb 2-1: config 17 interface 8 altsetting 6 endpoint 0x3 has an invalid bInterval 116, changing to 4
[  307.245152][  T970] usb 2-1: config 17 interface 8 altsetting 6 endpoint 0x3 has invalid maxpacket 30307, setting to 1023
[  307.287035][ T9230] netlink: 160 bytes leftover after parsing attributes in process `syz.3.919'.
[  307.328640][  T970] usb 2-1: config 17 interface 8 has no altsetting 0
[  307.345823][  T970] usb 2-1: New USB device found, idVendor=0763, idProduct=2001, bcdDevice=2c.ff
[  307.645563][  T970] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  307.727373][ T7224] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  307.763005][  T970] usb 2-1: Product: syz
[  307.783343][  T970] usb 2-1: Manufacturer: syz
[  307.789389][ T9238] netlink: 160 bytes leftover after parsing attributes in process `syz.0.922'.
[  307.810539][  T970] usb 2-1: SerialNumber: syz
[  308.045069][  T970] usb 2-1: can't set config #17, error -71
[  308.059917][ T7224] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  308.060248][ T9251] netlink: 3 bytes leftover after parsing attributes in process `syz.1.925'.
[  308.072432][ T7224] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  308.081047][  T970] usb 2-1: USB disconnect, device number 24
[  308.096562][ T7224] usb 3-1: New USB device found, idVendor=1038, idProduct=12b6, bcdDevice= 0.1f
[  308.177181][ T7224] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  308.187820][ T7224] usb 3-1: config 0 descriptor??
[  308.199160][ T9251] 0ªX¹¦À: renamed from caif0
[  308.222255][ T9251] 0ªX¹¦À: entered allmulticast mode
[  308.433413][ T9239] netlink: 32 bytes leftover after parsing attributes in process `syz.2.923'.
[  309.557721][ T7224] usbhid 3-1:0.0: can't add hid device: -71
[  309.585692][ T7224] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  309.624130][ T7224] usb 3-1: USB disconnect, device number 19
[  309.955214][ T9280] netlink: 148 bytes leftover after parsing attributes in process `syz.0.935'.
[  310.553596][   T29] audit: type=1400 audit(1737726793.849:416): avc:  denied  { write } for  pid=9261 comm="syz.1.929" name="autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  310.692487][   T29] audit: type=1400 audit(1737726793.849:417): avc:  denied  { ioctl } for  pid=9261 comm="syz.1.929" path="/dev/autofs" dev="devtmpfs" ino=98 ioctlcmd=0x9371 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  310.718430][   T29] audit: type=1400 audit(1737726793.849:418): avc:  denied  { ioctl } for  pid=9261 comm="syz.1.929" path="net:[4026533176]" dev="nsfs" ino=4026533176 ioctlcmd=0x540f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  310.746320][ T5816] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  311.484067][ T5816] usb 4-1: Using ep0 maxpacket: 16
[  311.497172][ T5816] usb 4-1: New USB device found, idVendor=0403, idProduct=f850, bcdDevice= 0.81
[  311.516256][ T5816] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.543716][ T5816] usb 4-1: config 0 descriptor??
[  311.585719][ T5816] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[  311.605764][ T5816] usb 4-1: Detected SIO
[  311.615162][ T5816] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  311.649691][ T9293] kvm: kvm [9292]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x11a00000000
[  311.650863][ T9303] bridge0: port 3(syz_tun) entered blocking state
[  311.659313][ T9293] kvm: kvm [9292]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x11b00000800
[  311.674852][ T9303] bridge0: port 3(syz_tun) entered disabled state
[  311.675109][ T9303] syz_tun: entered allmulticast mode
[  311.696746][ T9303] syz_tun: entered promiscuous mode
[  311.707274][ T9303] bridge0: port 3(syz_tun) entered blocking state
[  311.714082][ T9303] bridge0: port 3(syz_tun) entered forwarding state
[  311.729898][  T970] usb 2-1: new full-speed USB device number 25 using dummy_hcd
[  311.777214][ T9303] netlink: 4 bytes leftover after parsing attributes in process `syz.4.941'.
[  311.788062][ T9303] syz_tun: left allmulticast mode
[  311.795823][ T9303] syz_tun: left promiscuous mode
[  311.809111][ T9303] bridge0: port 3(syz_tun) entered disabled state
[  311.820915][ T9303] bridge_slave_1: left allmulticast mode
[  311.826714][ T9303] bridge_slave_1: left promiscuous mode
[  311.833780][ T9303] bridge0: port 2(bridge_slave_1) entered disabled state
[  311.844923][ T9303] bridge_slave_0: left allmulticast mode
[  311.881492][ T9303] bridge_slave_0: left promiscuous mode
[  311.887158][ T9303] bridge0: port 1(bridge_slave_0) entered disabled state
[  311.912522][  T970] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  311.926338][  T970] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  311.942810][  T970] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  311.952015][  T970] usb 2-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  311.964645][  T970] usb 2-1: Product: syz
[  311.968898][  T970] usb 2-1: Manufacturer: syz
[  311.993944][  T970] hub 2-1:4.0: USB hub found
[  312.073092][ T9314] netlink: 'syz.0.945': attribute type 4 has an invalid length.
[  312.100666][ T9314] netlink: 'syz.0.945': attribute type 4 has an invalid length.
[  312.159424][ T5863] usb 4-1: USB disconnect, device number 23
[  312.175642][ T5863] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  312.462852][ T5863] ftdi_sio 4-1:0.0: device disconnected
[  312.627298][   T29] audit: type=1400 audit(1737726795.813:419): avc:  denied  { read } for  pid=9295 comm="syz.1.939" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  313.036644][  T970] hub 2-1:4.0: 2 ports detected
[  313.177724][ T9326] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  313.450459][ T9328] netlink: 187320 bytes leftover after parsing attributes in process `syz.3.949'.
[  313.459952][ T9328] net_ratelimit: 16 callbacks suppressed
[  313.459978][ T9328] netlink: zone id is out of range
[  313.470821][ T9328] netlink: zone id is out of range
[  313.476429][ T9328] netlink: zone id is out of range
[  313.481844][ T9328] netlink: zone id is out of range
[  313.487071][ T9328] netlink: zone id is out of range
[  313.492283][ T9328] netlink: zone id is out of range
[  313.497579][ T9328] netlink: zone id is out of range
[  313.502769][ T9328] netlink: zone id is out of range
[  313.508028][ T9328] netlink: zone id is out of range
[  313.513227][ T9328] netlink: zone id is out of range
[  313.700273][   T29] audit: type=1400 audit(1737726796.870:420): avc:  denied  { mounton } for  pid=9329 comm="syz.2.950" path="/193/file0" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  313.730512][   T29] audit: type=1400 audit(1737726796.926:421): avc:  denied  { remount } for  pid=9329 comm="syz.2.950" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  313.767983][   T29] audit: type=1400 audit(1737726796.964:422): avc:  denied  { unmount } for  pid=5813 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  314.481893][  T970] hub 2-1:4.0: hub_hub_status failed (err = -32)
[  314.489462][  T970] hub 2-1:4.0: config failed, can't get hub status (err -32)
[  314.889036][  T932] usb 2-1: USB disconnect, device number 25
[  315.893438][  T970] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  316.104316][  T970] usb 3-1: Using ep0 maxpacket: 16
[  316.111229][  T970] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  316.123066][  T970] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  316.218608][  T970] usb 3-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  316.238476][  T970] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  316.259237][  T970] usb 3-1: Product: syz
[  316.271416][  T970] usb 3-1: Manufacturer: syz
[  316.281007][  T970] usb 3-1: SerialNumber: syz
[  316.301955][  T970] usb 3-1: config 0 descriptor??
[  316.320199][  T970] em28xx 3-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  316.341309][  T970] em28xx 3-1:0.0: Audio interface 0 found (Vendor Class)
[  316.573087][ T9365] netdevsim netdevsim0 netdevsim0: Unsupported IPsec algorithm
[  316.666699][ T9374] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  316.869566][ T9377] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  317.897901][  T970] em28xx 3-1:0.0: unknown em28xx chip ID (0)
[  318.122698][  T970] em28xx 3-1:0.0: Config register raw data: 0x00
[  318.248663][ T9386] FAULT_INJECTION: forcing a failure.
[  318.248663][ T9386] name failslab, interval 1, probability 0, space 0, times 0
[  318.261728][ T9386] CPU: 0 UID: 0 PID: 9386 Comm: syz.4.964 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  318.261751][ T9386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  318.261761][ T9386] Call Trace:
[  318.261766][ T9386]  <TASK>
[  318.261772][ T9386]  dump_stack_lvl+0x16c/0x1f0
[  318.261796][ T9386]  should_fail_ex+0x497/0x5b0
[  318.261812][ T9386]  ? __pfx_lock_release+0x10/0x10
[  318.261833][ T9386]  should_failslab+0xc2/0x120
[  318.261858][ T9386]  __kmalloc_cache_noprof+0x68/0x410
[  318.261885][ T9386]  tipc_service_create+0xb1/0x350
[  318.261901][ T9386]  ? tipc_service_find+0x161/0x1c0
[  318.261919][ T9386]  tipc_nametbl_insert_publ+0xf6d/0x1660
[  318.261938][ T9386]  ? do_raw_spin_lock+0x12d/0x2c0
[  318.261961][ T9386]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  318.261984][ T9386]  ? tipc_nametbl_publish+0xdb/0x280
[  318.262006][ T9386]  tipc_nametbl_publish+0x137/0x280
[  318.262027][ T9386]  tipc_sk_publish+0x1d8/0x430
[  318.262045][ T9386]  ? preempt_schedule_common+0x44/0xc0
[  318.262063][ T9386]  ? __pfx_tipc_sk_publish+0x10/0x10
[  318.262089][ T9386]  tipc_sk_bind+0x16f/0x380
[  318.262109][ T9386]  tipc_bind+0x190/0x2a0
[  318.262128][ T9386]  __sys_bind+0x213/0x260
[  318.262148][ T9386]  ? __pfx___sys_bind+0x10/0x10
[  318.262165][ T9386]  ? __fget_files+0x206/0x3a0
[  318.262194][ T9386]  ? __pfx_ksys_write+0x10/0x10
[  318.262219][ T9386]  __x64_sys_bind+0x72/0xb0
[  318.262235][ T9386]  ? lockdep_hardirqs_on+0x7c/0x110
[  318.262252][ T9386]  do_syscall_64+0xcd/0x250
[  318.262274][ T9386]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.262293][ T9386] RIP: 0033:0x7f220e98cd29
[  318.262307][ T9386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.262322][ T9386] RSP: 002b:00007f220f802038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  318.262338][ T9386] RAX: ffffffffffffffda RBX: 00007f220eba6080 RCX: 00007f220e98cd29
[  318.262348][ T9386] RDX: 0000000000000010 RSI: 0000000020000100 RDI: 0000000000000004
[  318.262357][ T9386] RBP: 00007f220f802090 R08: 0000000000000000 R09: 0000000000000000
[  318.262366][ T9386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  318.262375][ T9386] R13: 0000000000000000 R14: 00007f220eba6080 R15: 00007ffce1c9acf8
[  318.262398][ T9386]  </TASK>
[  318.487350][ T9386] tipc: Service creation failed, no memory
[  318.529886][   T29] audit: type=1326 audit(1737726801.426:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9388 comm="syz.1.965" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7feed538cd29 code=0x0
[  319.185047][ T9402] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  319.207064][ T9400] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  319.480714][ T7224] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  319.528245][ T5820] Bluetooth: hci1: unexpected event for opcode 0x0000
[  319.536155][ T5820] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  319.773934][   T29] audit: type=1400 audit(1737726802.585:424): avc:  denied  { setopt } for  pid=9411 comm="syz.2.972" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  319.795586][ T9412] netlink: 28 bytes leftover after parsing attributes in process `syz.2.972'.
[  319.804964][ T9412] tipc: Started in network mode
[  319.809983][ T9412] tipc: Node identity 7, cluster identity 5
[  319.816096][ T9412] tipc: Node number set to 7
[  319.824576][ T9412] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  319.833029][ T9412] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  319.842829][   T29] audit: type=1400 audit(1737726802.632:425): avc:  denied  { remount } for  pid=9411 comm="syz.2.972" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  319.908233][ T7224] usb 4-1: Using ep0 maxpacket: 32
[  319.921234][ T7224] usb 4-1: config 0 has an invalid interface number: 12 but max is 0
[  319.949306][ T7224] usb 4-1: config 0 has no interface number 0
[  319.956310][ T7224] usb 4-1: config 0 interface 12 has no altsetting 0
[  319.968554][ T7224] usb 4-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  319.978764][ T7224] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  319.989897][ T7224] usb 4-1: Product: syz
[  319.994767][ T7224] usb 4-1: Manufacturer: syz
[  319.999468][ T7224] usb 4-1: SerialNumber: syz
[  320.007749][ T7224] usb 4-1: config 0 descriptor??
[  320.160017][   T29] audit: type=1400 audit(1737726802.941:426): avc:  denied  { unmount } for  pid=5814 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  320.214267][ T9420] FAULT_INJECTION: forcing a failure.
[  320.214267][ T9420] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  320.227560][ T9420] CPU: 0 UID: 0 PID: 9420 Comm: syz.4.973 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  320.227586][ T9420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  320.227595][ T9420] Call Trace:
[  320.227600][ T9420]  <TASK>
[  320.227606][ T9420]  dump_stack_lvl+0x16c/0x1f0
[  320.227625][ T9420]  should_fail_ex+0x497/0x5b0
[  320.227637][ T9420]  _copy_from_user+0x2e/0xd0
[  320.227649][ T9420]  ipv6_get_msfilter+0x255/0x400
[  320.227661][ T9420]  ? __pfx_ipv6_get_msfilter+0x10/0x10
[  320.227671][ T9420]  ? is_bpf_text_address+0x8a/0x1a0
[  320.227683][ T9420]  ? trace_lock_acquire+0x14e/0x1f0
[  320.227705][ T9420]  ? __might_fault+0xe3/0x190
[  320.227719][ T9420]  ? __might_fault+0xe3/0x190
[  320.227735][ T9420]  do_ipv6_getsockopt+0xaf8/0x2e40
[  320.227746][ T9420]  ? __pfx_do_ipv6_getsockopt+0x10/0x10
[  320.227757][ T9420]  ? hlock_class+0x4e/0x130
[  320.227775][ T9420]  ? __pfx___lock_acquire+0x10/0x10
[  320.227786][ T9420]  ? hlock_class+0x4e/0x130
[  320.227798][ T9420]  ? __lock_acquire+0xcc5/0x3c40
[  320.227810][ T9420]  ? find_held_lock+0x2d/0x110
[  320.227824][ T9420]  ? ipv6_getsockopt+0x126/0x280
[  320.227832][ T9420]  ipv6_getsockopt+0x126/0x280
[  320.227842][ T9420]  ? __pfx_ipv6_getsockopt+0x10/0x10
[  320.227852][ T9420]  ? lock_acquire+0x2f/0xb0
[  320.227860][ T9420]  ? __might_fault+0xe3/0x190
[  320.227873][ T9420]  ? __might_fault+0xe3/0x190
[  320.227887][ T9420]  udpv6_getsockopt+0x61/0xb0
[  320.227898][ T9420]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  320.227913][ T9420]  do_sock_getsockopt+0x3fe/0x800
[  320.227929][ T9420]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  320.227942][ T9420]  ? lock_acquire+0x2f/0xb0
[  320.227951][ T9420]  ? __fget_files+0x40/0x3a0
[  320.227963][ T9420]  ? __fget_files+0x206/0x3a0
[  320.227975][ T9420]  __sys_getsockopt+0x12f/0x260
[  320.227989][ T9420]  __x64_sys_getsockopt+0xbd/0x160
[  320.227999][ T9420]  ? do_syscall_64+0x91/0x250
[  320.228009][ T9420]  ? lockdep_hardirqs_on+0x7c/0x110
[  320.228019][ T9420]  do_syscall_64+0xcd/0x250
[  320.228029][ T9420]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.228042][ T9420] RIP: 0033:0x7f220e98cd29
[  320.228049][ T9420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  320.228058][ T9420] RSP: 002b:00007f220f823038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  320.228067][ T9420] RAX: ffffffffffffffda RBX: 00007f220eba5fa0 RCX: 00007f220e98cd29
[  320.228072][ T9420] RDX: 0000000000000030 RSI: 0000000000000029 RDI: 0000000000000003
[  320.228077][ T9420] RBP: 00007f220f823090 R08: 0000000020001000 R09: 0000000000000000
[  320.228082][ T9420] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  320.228086][ T9420] R13: 0000000000000000 R14: 00007f220eba5fa0 R15: 00007ffce1c9acf8
[  320.228097][ T9420]  </TASK>
[  320.952419][ T7224] f81534 4-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  320.959956][ T7224] f81534 4-1:0.12: f81534_find_config_idx: read failed: -71
[  320.967399][ T7224] f81534 4-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  320.975237][ T7224] f81534 4-1:0.12: probe with driver f81534 failed with error -71
[  321.021960][ T7224] usb 4-1: USB disconnect, device number 24
[  321.177139][ T9437] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  321.246479][ T9441] FAULT_INJECTION: forcing a failure.
[  321.246479][ T9441] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  321.259656][ T9441] CPU: 1 UID: 0 PID: 9441 Comm: syz.2.978 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  321.259676][ T9441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  321.259685][ T9441] Call Trace:
[  321.259688][ T9441]  <TASK>
[  321.259692][ T9441]  dump_stack_lvl+0x16c/0x1f0
[  321.259706][ T9441]  should_fail_ex+0x497/0x5b0
[  321.259717][ T9441]  _copy_from_user+0x2e/0xd0
[  321.259729][ T9441]  vmci_host_unlocked_ioctl+0x1317/0x1fb0
[  321.259739][ T9441]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[  321.259752][ T9441]  ? ioctl_has_perm.constprop.0.isra.0+0x2f2/0x450
[  321.259763][ T9441]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  321.259774][ T9441]  ? __pfx_lock_release+0x10/0x10
[  321.259789][ T9441]  ? selinux_file_ioctl+0x180/0x270
[  321.259797][ T9441]  ? selinux_file_ioctl+0xb4/0x270
[  321.259806][ T9441]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[  321.259816][ T9441]  __x64_sys_ioctl+0x190/0x200
[  321.259826][ T9441]  do_syscall_64+0xcd/0x250
[  321.259838][ T9441]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.259851][ T9441] RIP: 0033:0x7ff0a398cd29
[  321.259858][ T9441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.259866][ T9441] RSP: 002b:00007ff0a4754038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  321.259875][ T9441] RAX: ffffffffffffffda RBX: 00007ff0a3ba5fa0 RCX: 00007ff0a398cd29
[  321.259881][ T9441] RDX: 0000000020000080 RSI: 00000000000007b1 RDI: 0000000000000004
[  321.259886][ T9441] RBP: 00007ff0a4754090 R08: 0000000000000000 R09: 0000000000000000
[  321.259891][ T9441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  321.259896][ T9441] R13: 0000000000000000 R14: 00007ff0a3ba5fa0 R15: 00007ffefd09c9f8
[  321.259907][ T9441]  </TASK>
[  321.950708][ T9454] netlink: 187320 bytes leftover after parsing attributes in process `syz.4.983'.
[  321.960089][ T9454] net_ratelimit: 7 callbacks suppressed
[  321.960102][ T9454] netlink: zone id is out of range
[  321.971596][ T9454] netlink: zone id is out of range
[  323.056031][ T9466] netlink: 148 bytes leftover after parsing attributes in process `syz.1.986'.
[  323.270806][ T9472] ubi0: attaching mtd0
[  323.284553][ T9472] ubi0: scanning is finished
[  323.296322][ T9475] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  323.306211][ T9472] ubi0: empty MTD device detected
[  323.346771][ T9468] netlink: 8 bytes leftover after parsing attributes in process `syz.4.988'.
[  323.357289][ T9468] netlink: 8 bytes leftover after parsing attributes in process `syz.4.988'.
[  323.778154][ T9472] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  323.785662][ T9472] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  323.865373][ T5820] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  323.874059][ T5820] Bluetooth: hci1: Injecting HCI hardware error event
[  323.882160][ T5820] Bluetooth: hci1: hardware error 0x00
[  323.903675][ T9472] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  323.952163][ T9472] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  323.959569][ T9472] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  323.967760][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  323.967867][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  324.038930][ T9495] FAULT_INJECTION: forcing a failure.
[  324.038930][ T9495] name failslab, interval 1, probability 0, space 0, times 0
[  324.067962][ T9495] CPU: 1 UID: 0 PID: 9495 Comm: syz.3.995 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  324.067986][ T9495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  324.067996][ T9495] Call Trace:
[  324.068000][ T9495]  <TASK>
[  324.068007][ T9495]  dump_stack_lvl+0x16c/0x1f0
[  324.068031][ T9495]  should_fail_ex+0x497/0x5b0
[  324.068050][ T9495]  ? find_held_lock+0x2d/0x110
[  324.068077][ T9495]  should_failslab+0xc2/0x120
[  324.068100][ T9495]  __kmalloc_noprof+0xcb/0x510
[  324.068122][ T9495]  ? __pfx_io_file_supports_nowait+0x10/0x10
[  324.068139][ T9495]  ? io_file_get_flags+0x102/0x140
[  324.068158][ T9495]  ? io_rw_init_file+0x853/0xc20
[  324.068185][ T9495]  io_arm_poll_handler+0xab1/0xc10
[  324.068210][ T9495]  ? __pfx_io_arm_poll_handler+0x10/0x10
[  324.068239][ T9495]  ? io_read+0x32/0x70
[  324.068265][ T9495]  io_queue_async+0xaa/0x420
[  324.068282][ T9495]  io_submit_sqes+0x1772/0x25c0
[  324.068315][ T9495]  __do_sys_io_uring_enter+0xd60/0x1670
[  324.068341][ T9495]  ? __fget_files+0x206/0x3a0
[  324.068362][ T9495]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  324.068385][ T9495]  ? fput+0x67/0x440
[  324.068409][ T9495]  ? ksys_write+0x1ba/0x250
[  324.068428][ T9495]  ? __pfx_ksys_write+0x10/0x10
[  324.068455][ T9495]  do_syscall_64+0xcd/0x250
[  324.068478][ T9495]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.068500][ T9495] RIP: 0033:0x7f2d03b8cd29
[  324.068513][ T9495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  324.068529][ T9495] RSP: 002b:00007f2d049ba038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  324.068544][ T9495] RAX: ffffffffffffffda RBX: 00007f2d03da5fa0 RCX: 00007f2d03b8cd29
[  324.068555][ T9495] RDX: 0000000000000000 RSI: 00000000000047ba RDI: 0000000000000005
[  324.068564][ T9495] RBP: 00007f2d049ba090 R08: 0000000000000000 R09: 0000000000000000
[  324.068574][ T9495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  324.068582][ T9495] R13: 0000000000000000 R14: 00007f2d03da5fa0 R15: 00007ffd82e30f58
[  324.068606][ T9495]  </TASK>
[  324.081185][ T9472] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  324.289833][ T9472] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3097895765
[  324.299891][ T9472] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  324.466485][ T9488] ubi0: background thread "ubi_bgt0d" started, PID 9488
[  325.724785][ T9513] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  325.820215][ T5863] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  325.978484][ T9515] kvm: kvm [9514]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[  325.991213][ T5863] usb 4-1: Using ep0 maxpacket: 16
[  325.996483][ T9515] kvm: kvm [9514]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[  326.008240][ T7224] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  326.010190][ T5863] usb 4-1: config 8 has an invalid interface number: 39 but max is 0
[  326.030172][ T9515] kvm: kvm [9514]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[  326.044566][ T5863] usb 4-1: config 8 has no interface number 0
[  326.050809][ T5863] usb 4-1: config 8 interface 39 altsetting 1 has an endpoint descriptor with address 0xDF, changing to 0x8F
[  326.063547][ T5863] usb 4-1: config 8 interface 39 altsetting 1 endpoint 0x8F has invalid wMaxPacketSize 0
[  326.073430][ T5863] usb 4-1: config 8 interface 39 altsetting 1 bulk endpoint 0x8F has invalid maxpacket 0
[  326.083469][ T5863] usb 4-1: config 8 interface 39 has no altsetting 0
[  326.087414][ T5820] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  326.091961][ T5863] usb 4-1: New USB device found, idVendor=05ac, idProduct=c704, bcdDevice=62.77
[  326.105735][ T5863] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  326.113814][ T5863] usb 4-1: Product: syz
[  326.118128][ T5863] usb 4-1: Manufacturer: syz
[  326.122747][ T5863] usb 4-1: SerialNumber: syz
[  326.172964][ T7224] usb 2-1: Using ep0 maxpacket: 32
[  326.179829][ T7224] usb 2-1: config 0 has an invalid interface number: 12 but max is 0
[  326.194234][ T7224] usb 2-1: config 0 has no interface number 0
[  326.200346][ T7224] usb 2-1: config 0 interface 12 has no altsetting 0
[  326.209182][ T7224] usb 2-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  326.218437][ T7224] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  326.238557][ T7224] usb 2-1: Product: syz
[  326.242724][ T7224] usb 2-1: Manufacturer: syz
[  326.247326][ T7224] usb 2-1: SerialNumber: syz
[  326.254648][ T7224] usb 2-1: config 0 descriptor??
[  326.346002][ T9510] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  326.354727][ T9510] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  327.066981][ T5863] ipheth 4-1:8.39: ipheth_enable_ncm: usb_control_msg: 0
[  327.145731][ T5863] ipheth 4-1:8.39: Apple iPhone USB Ethernet device attached
[  327.159728][ T9522] FAULT_INJECTION: forcing a failure.
[  327.159728][ T9522] name failslab, interval 1, probability 0, space 0, times 0
[  327.176304][ T9522] CPU: 0 UID: 0 PID: 9522 Comm: syz.0.1003 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  327.176326][ T9522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  327.176336][ T9522] Call Trace:
[  327.176340][ T9522]  <TASK>
[  327.176347][ T9522]  dump_stack_lvl+0x16c/0x1f0
[  327.176371][ T9522]  should_fail_ex+0x497/0x5b0
[  327.176390][ T9522]  ? fs_reclaim_acquire+0xae/0x150
[  327.176411][ T9522]  should_failslab+0xc2/0x120
[  327.176434][ T9522]  __kmalloc_node_noprof+0xd1/0x510
[  327.176457][ T9522]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  327.176482][ T9522]  __kvmalloc_node_noprof+0xad/0x1a0
[  327.176503][ T9522]  __kvm_mmu_topup_memory_cache+0x451/0x600
[  327.176530][ T9522]  mmu_topup_memory_caches+0x22/0xd0
[  327.176559][ T9522]  kvm_mmu_load+0xda/0x21f0
[  327.176587][ T9522]  ? kvm_apic_has_interrupt+0xb6/0x190
[  327.176610][ T9522]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  327.176630][ T9522]  ? kvm_guest_time_update+0x71e/0xeb0
[  327.176657][ T9522]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  327.176676][ T9522]  ? __pfx_kvm_mmu_load+0x10/0x10
[  327.176701][ T9522]  ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[  327.176722][ T9522]  ? kvm_check_and_inject_events+0x725/0x12e0
[  327.176746][ T9522]  ? record_steal_time+0x31/0xbe0
[  327.176774][ T9522]  vcpu_run+0x33a4/0x4f50
[  327.176799][ T9522]  ? __pfx_vmx_vcpu_load_vmcs+0x10/0x10
[  327.176832][ T9522]  ? __pfx_vcpu_run+0x10/0x10
[  327.176854][ T9522]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  327.176875][ T9522]  ? rcu_is_watching+0x12/0xc0
[  327.176899][ T9522]  ? trace_lock_acquire+0x14e/0x1f0
[  327.176924][ T9522]  ? __local_bh_enable_ip+0xa4/0x120
[  327.176945][ T9522]  ? lockdep_hardirqs_on+0x7c/0x110
[  327.176963][ T9522]  ? kvm_arch_vcpu_ioctl_run+0x150/0x1740
[  327.176996][ T9522]  ? kvm_arch_vcpu_ioctl_run+0x44a/0x1740
[  327.177022][ T9522]  kvm_arch_vcpu_ioctl_run+0x44a/0x1740
[  327.177056][ T9522]  kvm_vcpu_ioctl+0x6ce/0x1520
[  327.177073][ T9522]  ? do_vfs_ioctl+0x513/0x1990
[  327.177090][ T9522]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  327.177115][ T9522]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[  327.177134][ T9522]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  327.177154][ T9522]  ? __pfx_lock_release+0x10/0x10
[  327.177183][ T9522]  ? selinux_file_ioctl+0x180/0x270
[  327.177198][ T9522]  ? selinux_file_ioctl+0xb4/0x270
[  327.177215][ T9522]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  327.177232][ T9522]  __x64_sys_ioctl+0x190/0x200
[  327.177255][ T9522]  do_syscall_64+0xcd/0x250
[  327.177276][ T9522]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.177297][ T9522] RIP: 0033:0x7fde01d8cd29
[  327.177310][ T9522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  327.177325][ T9522] RSP: 002b:00007fde02c63038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  327.177340][ T9522] RAX: ffffffffffffffda RBX: 00007fde01fa5fa0 RCX: 00007fde01d8cd29
[  327.177351][ T9522] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  327.177360][ T9522] RBP: 00007fde02c63090 R08: 0000000000000000 R09: 0000000000000000
[  327.177370][ T9522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  327.177380][ T9522] R13: 0000000000000000 R14: 00007fde01fa5fa0 R15: 00007fff3f33f808
[  327.177403][ T9522]  </TASK>
[  327.288991][ T9510] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  327.294119][    C0] vkms_vblank_simulate: vblank timer overrun
[  327.309280][ T9510] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  327.556328][ T5863] usb 4-1: USB disconnect, device number 25
[  327.948781][ T5863] ipheth 4-1:8.39: Apple iPhone USB Ethernet now disconnected
[  328.158089][ T9544] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1007'.
[  328.170180][   T29] audit: type=1400 audit(1737726810.443:427): avc:  denied  { execstack } for  pid=9543 comm="syz.3.1007" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  329.479486][ T7224] f81534 2-1:0.12: f81534_get_register: reg: 1003 failed: -32
[  329.510766][ T7224] f81534 2-1:0.12: f81534_find_config_idx: read failed: -32
[  329.518112][ T7224] f81534 2-1:0.12: f81534_calc_num_ports: find idx failed: -32
[  329.547511][ T7224] f81534 2-1:0.12: probe with driver f81534 failed with error -32
[  329.565100][ T7224] usb 2-1: USB disconnect, device number 26
[  329.723202][ T9558] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  329.787307][ T9562] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  330.139108][    T8] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  330.207305][   T29] audit: type=1400 audit(1737726812.239:428): avc:  denied  { listen } for  pid=9568 comm="syz.2.1015" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  330.618144][    T8] usb 4-1: Using ep0 maxpacket: 32
[  330.639843][    T8] usb 4-1: config 0 has an invalid interface number: 12 but max is 0
[  330.658891][    T8] usb 4-1: config 0 has no interface number 0
[  330.784282][ T9577] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1017'.
[  331.007737][    T8] usb 4-1: config 0 interface 12 has no altsetting 0
[  331.037348][    T8] usb 4-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  331.059254][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  331.060472][ T9571] netlink: 136 bytes leftover after parsing attributes in process `syz.1.1016'.
[  331.122645][    T8] usb 4-1: Product: syz
[  331.126831][    T8] usb 4-1: Manufacturer: syz
[  331.131429][    T8] usb 4-1: SerialNumber: syz
[  331.159224][    T8] usb 4-1: config 0 descriptor??
[  331.649225][ T9587] netlink: 148 bytes leftover after parsing attributes in process `syz.1.1020'.
[  332.082540][    T8] f81534 4-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  332.095638][    T8] f81534 4-1:0.12: f81534_find_config_idx: read failed: -71
[  332.648227][    T8] f81534 4-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  332.655896][    T8] f81534 4-1:0.12: probe with driver f81534 failed with error -71
[  332.673132][    T8] usb 4-1: USB disconnect, device number 26
[  332.776341][ T9596] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  332.944889][ T9601] batadv0: entered promiscuous mode
[  333.010258][ T9601] batadv0: left promiscuous mode
[  333.260834][    T8] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  333.496102][    T8] usb 4-1: Using ep0 maxpacket: 32
[  333.598224][    T8] usb 4-1: config 0 has an invalid interface number: 12 but max is 0
[  333.622489][    T8] usb 4-1: config 0 has no interface number 0
[  333.630507][    T8] usb 4-1: config 0 interface 12 has no altsetting 0
[  333.645919][    T8] usb 4-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  333.659454][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  333.669862][    T8] usb 4-1: Product: syz
[  333.674080][    T8] usb 4-1: Manufacturer: syz
[  333.681401][    T8] usb 4-1: SerialNumber: syz
[  333.773501][    T8] usb 4-1: config 0 descriptor??
[  333.819043][   T29] audit: type=1400 audit(1737726815.718:429): avc:  denied  { bind } for  pid=9621 comm="syz.2.1028" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  333.839691][   T29] audit: type=1400 audit(1737726815.718:430): avc:  denied  { listen } for  pid=9621 comm="syz.2.1028" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  333.859786][   T29] audit: type=1400 audit(1737726815.718:431): avc:  denied  { write } for  pid=9621 comm="syz.2.1028" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  333.870777][ T9623] exFAT-fs (nullb0): invalid boot record signature
[  333.891684][ T9623] exFAT-fs (nullb0): failed to read boot sector
[  334.073762][ T9623] exFAT-fs (nullb0): failed to recognize exfat type
[  334.195425][   T29] audit: type=1400 audit(1737726816.074:432): avc:  denied  { write } for  pid=9617 comm="syz.0.1027" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  334.312377][ T9631] 9pnet_fd: p9_fd_create_unix (9631): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  334.317737][   T29] audit: type=1400 audit(1737726816.186:433): avc:  denied  { ioctl } for  pid=9630 comm="syz.2.1030" path="/dev/ppp" dev="devtmpfs" ino=709 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  334.408783][    C0] vkms_vblank_simulate: vblank timer overrun
[  334.425614][ T9633] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 64993
[  334.433848][    C0] vkms_vblank_simulate: vblank timer overrun
[  334.463793][ T9633] netlink: 'syz.4.1031': attribute type 4 has an invalid length.
[  334.473424][ T9633] netlink: 'syz.4.1031': attribute type 1 has an invalid length.
[  334.486911][ T9633] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1031'.
[  334.675669][    T8] f81534 4-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  334.683368][    T8] f81534 4-1:0.12: f81534_find_config_idx: read failed: -71
[  334.693513][    T8] f81534 4-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  334.704825][    T8] f81534 4-1:0.12: probe with driver f81534 failed with error -71
[  334.762361][    T8] usb 4-1: USB disconnect, device number 27
[  335.261082][ T9647] FAULT_INJECTION: forcing a failure.
[  335.261082][ T9647] name failslab, interval 1, probability 0, space 0, times 0
[  335.273717][ T9647] CPU: 0 UID: 0 PID: 9647 Comm: syz.1.1035 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  335.273730][ T9647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  335.273734][ T9647] Call Trace:
[  335.273737][ T9647]  <TASK>
[  335.273740][ T9647]  dump_stack_lvl+0x16c/0x1f0
[  335.273754][ T9647]  should_fail_ex+0x497/0x5b0
[  335.273763][ T9647]  ? fs_reclaim_acquire+0xae/0x150
[  335.273774][ T9647]  should_failslab+0xc2/0x120
[  335.273787][ T9647]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  335.273799][ T9647]  ? getname_flags.part.0+0x4c/0x550
[  335.273813][ T9647]  getname_flags.part.0+0x4c/0x550
[  335.273827][ T9647]  getname_uflags+0x9d/0xf0
[  335.273837][ T9647]  __x64_sys_execveat+0xc4/0x120
[  335.273848][ T9647]  do_syscall_64+0xcd/0x250
[  335.273859][ T9647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.273872][ T9647] RIP: 0033:0x7feed538cd29
[  335.273879][ T9647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  335.273888][ T9647] RSP: 002b:00007feed626a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[  335.273897][ T9647] RAX: ffffffffffffffda RBX: 00007feed55a5fa0 RCX: 00007feed538cd29
[  335.273903][ T9647] RDX: 0000000000000000 RSI: 0000000020000140 RDI: ffffffffffffff9c
[  335.273908][ T9647] RBP: 00007feed626a090 R08: 0000000000000000 R09: 0000000000000000
[  335.273912][ T9647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  335.273917][ T9647] R13: 0000000000000000 R14: 00007feed55a5fa0 R15: 00007fffc7784508
[  335.273929][ T9647]  </TASK>
[  335.275338][   T29] audit: type=1400 audit(1737726817.084:434): avc:  denied  { connect } for  pid=9644 comm="syz.1.1035" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  336.191706][   T29] audit: type=1400 audit(1737726817.861:435): avc:  denied  { watch_reads } for  pid=9657 comm="syz.0.1037" path="/223" dev="tmpfs" ino=1191 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  336.214067][    C0] vkms_vblank_simulate: vblank timer overrun
[  336.407144][ T9664] fuse: Bad value for 'group_id'
[  336.412233][ T9664] fuse: Bad value for 'group_id'
[  336.679749][ T9668] netlink: 136 bytes leftover after parsing attributes in process `syz.4.1040'.
[  338.645642][ T9684] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  338.742104][ T9695] FAULT_INJECTION: forcing a failure.
[  338.742104][ T9695] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  338.795815][ T9695] CPU: 0 UID: 0 PID: 9695 Comm: syz.0.1048 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  338.795841][ T9695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  338.795850][ T9695] Call Trace:
[  338.795855][ T9695]  <TASK>
[  338.795861][ T9695]  dump_stack_lvl+0x16c/0x1f0
[  338.795884][ T9695]  should_fail_ex+0x497/0x5b0
[  338.795904][ T9695]  _copy_from_user+0x2e/0xd0
[  338.795925][ T9695]  __sys_bpf+0x21c/0x49c0
[  338.795948][ T9695]  ? __pfx_lock_release+0x10/0x10
[  338.795968][ T9695]  ? __pfx___sys_bpf+0x10/0x10
[  338.795988][ T9695]  ? vfs_write+0x306/0x1150
[  338.796012][ T9695]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  338.796046][ T9695]  ? fput+0x67/0x440
[  338.796069][ T9695]  ? ksys_write+0x1ba/0x250
[  338.796086][ T9695]  ? __pfx_ksys_write+0x10/0x10
[  338.796108][ T9695]  __x64_sys_bpf+0x78/0xc0
[  338.796131][ T9695]  ? lockdep_hardirqs_on+0x7c/0x110
[  338.796150][ T9695]  do_syscall_64+0xcd/0x250
[  338.796171][ T9695]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  338.796206][ T9695] RIP: 0033:0x7fde01d8cd29
[  338.796219][ T9695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  338.796232][ T9695] RSP: 002b:00007fde02c63038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  338.796248][ T9695] RAX: ffffffffffffffda RBX: 00007fde01fa5fa0 RCX: 00007fde01d8cd29
[  338.796259][ T9695] RDX: 0000000000000050 RSI: 0000000020000580 RDI: 000000000000000a
[  338.796268][ T9695] RBP: 00007fde02c63090 R08: 0000000000000000 R09: 0000000000000000
[  338.796277][ T9695] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  338.796286][ T9695] R13: 0000000000000000 R14: 00007fde01fa5fa0 R15: 00007fff3f33f808
[  338.796307][ T9695]  </TASK>
[  338.971026][    C0] vkms_vblank_simulate: vblank timer overrun
[  339.921184][ T5863] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  340.171349][ T5863] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  340.236816][ T5863] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  340.337829][ T5863] usb 5-1: New USB device found, idVendor=1038, idProduct=12b6, bcdDevice= 0.1f
[  340.347211][ T5863] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  340.370835][ T5863] usb 5-1: config 0 descriptor??
[  341.100094][ T9707] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1054'.
[  341.179130][ T9726] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  341.344643][ T9732] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1062'.
[  342.423300][ T5863] usbhid 5-1:0.0: can't add hid device: -71
[  342.429251][ T5863] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  342.527549][ T9738] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  342.549435][ T5863] usb 5-1: USB disconnect, device number 27
[  342.762526][ T9742] Sensor B: =================  START STATUS  =================
[  342.796839][ T9742] Sensor B: Test Pattern: 75% Colorbar
[  342.802573][ T9742] Sensor B: Show Information: All
[  342.830358][ T9742] Sensor B: Vertical Flip: false
[  342.835341][ T9742] Sensor B: Horizontal Flip: false
[  342.842096][ T9742] Sensor B: Brightness: 128
[  342.847355][ T9742] Sensor B: Contrast: 128
[  342.851811][ T9742] Sensor B: Hue: 0
[  342.855544][ T9742] Sensor B: Saturation: 128
[  342.860075][ T9742] Sensor B: ==================  END STATUS  ==================
[  343.025007][ T9749] FAULT_INJECTION: forcing a failure.
[  343.025007][ T9749] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  343.038556][ T9749] CPU: 1 UID: 0 PID: 9749 Comm: syz.0.1065 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  343.038577][ T9749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  343.038587][ T9749] Call Trace:
[  343.038592][ T9749]  <TASK>
[  343.038598][ T9749]  dump_stack_lvl+0x16c/0x1f0
[  343.038622][ T9749]  should_fail_ex+0x497/0x5b0
[  343.038644][ T9749]  _copy_from_user+0x2e/0xd0
[  343.038665][ T9749]  do_ipt_set_ctl+0x8e1/0xbe0
[  343.038693][ T9749]  ? __pfx_do_ipt_set_ctl+0x10/0x10
[  343.038715][ T9749]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  343.038737][ T9749]  ? irqentry_exit+0x3b/0x90
[  343.038755][ T9749]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  343.038788][ T9749]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  343.038813][ T9749]  nf_setsockopt+0x8a/0xf0
[  343.038834][ T9749]  ip_setsockopt+0xcb/0xf0
[  343.038860][ T9749]  udp_setsockopt+0x7d/0xd0
[  343.038880][ T9749]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  343.038907][ T9749]  do_sock_setsockopt+0x222/0x480
[  343.038932][ T9749]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  343.038958][ T9749]  ? lock_acquire+0x2f/0xb0
[  343.038992][ T9749]  __sys_setsockopt+0x1a0/0x230
[  343.039017][ T9749]  __x64_sys_setsockopt+0xbd/0x160
[  343.039036][ T9749]  ? do_syscall_64+0x91/0x250
[  343.039055][ T9749]  ? lockdep_hardirqs_on+0x7c/0x110
[  343.039073][ T9749]  do_syscall_64+0xcd/0x250
[  343.039094][ T9749]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.039115][ T9749] RIP: 0033:0x7fde01d8cd29
[  343.039128][ T9749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.039144][ T9749] RSP: 002b:00007fde02c21038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  343.039160][ T9749] RAX: ffffffffffffffda RBX: 00007fde01fa6160 RCX: 00007fde01d8cd29
[  343.039170][ T9749] RDX: 0000000000000040 RSI: 0004000000000000 RDI: 0000000000000007
[  343.039180][ T9749] RBP: 00007fde02c21090 R08: 0000000000000310 R09: 0000000000000000
[  343.039190][ T9749] R10: 0000000020000340 R11: 0000000000000246 R12: 0000000000000001
[  343.039199][ T9749] R13: 0000000000000000 R14: 00007fde01fa6160 R15: 00007fff3f33f808
[  343.039228][ T9749]  </TASK>
[  343.262632][ T9750] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  343.273764][ T9750] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  343.309948][ T5816] usb 2-1: new full-speed USB device number 27 using dummy_hcd
[  344.131075][ T9756] openvswitch: netlink: Port -1227849244 exceeds max allowable 65535
[  344.145759][ T5816] usb 2-1: unable to get BOS descriptor or descriptor too short
[  344.162821][ T5816] usb 2-1: not running at top speed; connect to a high speed hub
[  344.186087][ T5816] usb 2-1: config 17 has an invalid interface number: 8 but max is 1
[  344.205061][ T5816] usb 2-1: config 17 has 1 interface, different from the descriptor's value: 2
[  344.220680][ T5816] usb 2-1: config 17 has no interface number 0
[  344.237783][ T5816] usb 2-1: config 17 interface 8 altsetting 6 endpoint 0x3 has an invalid bInterval 116, changing to 4
[  344.261417][ T5816] usb 2-1: config 17 interface 8 altsetting 6 endpoint 0x3 has invalid maxpacket 30307, setting to 1023
[  344.365997][ T5816] usb 2-1: config 17 interface 8 has no altsetting 0
[  344.376497][ T5816] usb 2-1: New USB device found, idVendor=0763, idProduct=2001, bcdDevice=2c.ff
[  344.386514][ T5816] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  344.395979][ T5816] usb 2-1: Product: syz
[  344.400247][ T5816] usb 2-1: Manufacturer: syz
[  344.404963][ T5816] usb 2-1: SerialNumber: syz
[  344.435792][ T5816] usb 2-1: can't set config #17, error -71
[  344.472822][ T5816] usb 2-1: USB disconnect, device number 27
[  345.446712][ T9782] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  345.565709][ T5816] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  345.769192][ T5816] usb 5-1: Using ep0 maxpacket: 16
[  346.045252][ T9791] FAULT_INJECTION: forcing a failure.
[  346.045252][ T9791] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  346.058423][ T9791] CPU: 1 UID: 0 PID: 9791 Comm: syz.1.1075 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  346.058442][ T9791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  346.058452][ T9791] Call Trace:
[  346.058457][ T9791]  <TASK>
[  346.058463][ T9791]  dump_stack_lvl+0x16c/0x1f0
[  346.058487][ T9791]  should_fail_ex+0x497/0x5b0
[  346.058509][ T9791]  _copy_to_user+0x32/0xd0
[  346.058531][ T9791]  put_timespec64+0xb6/0x120
[  346.058548][ T9791]  ? __pfx_put_timespec64+0x10/0x10
[  346.058571][ T9791]  __x64_sys_clock_gettime+0x1d5/0x270
[  346.058593][ T9791]  ? __pfx___x64_sys_clock_gettime+0x10/0x10
[  346.058622][ T9791]  do_syscall_64+0xcd/0x250
[  346.058644][ T9791]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.058666][ T9791] RIP: 0033:0x7feed538cd29
[  346.058679][ T9791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  346.058695][ T9791] RSP: 002b:00007feed6228038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e4
[  346.058712][ T9791] RAX: ffffffffffffffda RBX: 00007feed55a6160 RCX: 00007feed538cd29
[  346.058722][ T9791] RDX: 0000000000000000 RSI: 0000000020003d80 RDI: 0000000000000000
[  346.058732][ T9791] RBP: 00007feed6228090 R08: 0000000000000000 R09: 0000000000000000
[  346.058742][ T9791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  346.058751][ T9791] R13: 0000000000000000 R14: 00007feed55a6160 R15: 00007fffc7784508
[  346.058774][ T9791]  </TASK>
[  346.327579][ T5816] usb 5-1: config 236 has an invalid interface number: 73 but max is 3
[  346.336071][ T5816] usb 5-1: config 236 has an invalid interface number: 162 but max is 3
[  346.344430][ T5816] usb 5-1: config 236 has an invalid interface number: 172 but max is 3
[  346.352894][ T5816] usb 5-1: config 236 has an invalid interface descriptor of length 2, skipping
[  346.361938][ T5816] usb 5-1: config 236 has an invalid descriptor of length 198, skipping remainder of the config
[  346.372655][ T5816] usb 5-1: config 236 has 3 interfaces, different from the descriptor's value: 4
[  346.428574][ T5816] usb 5-1: config 236 has no interface number 0
[  346.443847][ T5816] usb 5-1: config 236 has no interface number 1
[  346.457894][ T5816] usb 5-1: config 236 has no interface number 2
[  346.473084][ T9795] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9795 comm=syz.2.1077
[  346.488629][ T9795] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1077'.
[  346.504766][ T5816] usb 5-1: config 236 interface 73 altsetting 13 has an invalid descriptor for endpoint zero, skipping
[  346.520688][ T5816] usb 5-1: config 236 interface 73 altsetting 13 has a duplicate endpoint with address 0xC, skipping
[  346.533139][ T5816] usb 5-1: config 236 interface 73 altsetting 13 endpoint 0x6 has an invalid bInterval 251, changing to 11
[  346.544739][ T5816] usb 5-1: config 236 interface 73 altsetting 13 has a duplicate endpoint with address 0xE, skipping
[  346.555910][ T5816] usb 5-1: config 236 interface 73 altsetting 13 endpoint 0x3 has an invalid bInterval 145, changing to 11
[  346.567455][ T5816] usb 5-1: config 236 interface 73 altsetting 13 has a duplicate endpoint with address 0x3, skipping
[  346.575889][   T29] audit: type=1400 audit(1737726827.654:436): avc:  denied  { relabelfrom } for  pid=9793 comm="syz.2.1077" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  346.650051][ T5816] usb 5-1: config 236 interface 73 altsetting 13 has a duplicate endpoint with address 0xC, skipping
[  346.662446][ T5816] usb 5-1: config 236 interface 162 altsetting 4 endpoint 0xA has invalid maxpacket 560, setting to 64
[  346.770700][ T5816] usb 5-1: config 236 interface 162 altsetting 4 endpoint 0x5 has an invalid bInterval 233, changing to 11
[  346.827629][   T29] audit: type=1400 audit(1737726827.682:437): avc:  denied  { relabelto } for  pid=9793 comm="syz.2.1077" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  347.059660][ T9795] ALSA: mixer_oss: invalid OSS volume 'dev/net/tun'
[  347.067991][ T5816] usb 5-1: config 236 interface 162 altsetting 4 bulk endpoint 0x2 has invalid maxpacket 1023
[  347.094530][ T5816] usb 5-1: config 236 interface 162 altsetting 4 has a duplicate endpoint with address 0x3, skipping
[  347.098908][ T9803] FAULT_INJECTION: forcing a failure.
[  347.098908][ T9803] name failslab, interval 1, probability 0, space 0, times 0
[  347.128754][ T5816] usb 5-1: config 236 interface 162 altsetting 4 has a duplicate endpoint with address 0x6, skipping
[  347.137263][ T9803] CPU: 0 UID: 0 PID: 9803 Comm: syz.0.1080 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  347.137285][ T9803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  347.137293][ T9803] Call Trace:
[  347.137297][ T9803]  <TASK>
[  347.137303][ T9803]  dump_stack_lvl+0x16c/0x1f0
[  347.137324][ T9803]  should_fail_ex+0x497/0x5b0
[  347.137339][ T9803]  ? fs_reclaim_acquire+0xae/0x150
[  347.137357][ T9803]  should_failslab+0xc2/0x120
[  347.137377][ T9803]  __kmalloc_cache_noprof+0x68/0x410
[  347.137400][ T9803]  ? lock_acquire+0x2f/0xb0
[  347.137416][ T9803]  ? sctp_has_association+0x44/0x270
[  347.137435][ T9803]  sctp_association_new+0x97/0x2ab0
[  347.137452][ T9803]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  347.137476][ T9803]  sctp_connect_new_asoc+0x1b7/0x790
[  347.137497][ T9803]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  347.137516][ T9803]  ? selinux_sctp_bind_connect+0x112/0x2c0
[  347.137539][ T9803]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  347.137561][ T9803]  sctp_sendmsg+0x1610/0x1eb0
[  347.137578][ T9803]  ? avc_has_perm+0x11b/0x1c0
[  347.137599][ T9803]  ? __pfx_sctp_sendmsg+0x10/0x10
[  347.137623][ T9803]  ? __pfx_sock_has_perm+0x10/0x10
[  347.137652][ T9803]  ? __pfx_sctp_sendmsg+0x10/0x10
[  347.137672][ T9803]  inet_sendmsg+0x119/0x140
[  347.137693][ T9803]  __sys_sendto+0x42a/0x4f0
[  347.137714][ T9803]  ? __pfx___sys_sendto+0x10/0x10
[  347.137751][ T9803]  ? ksys_write+0x1ba/0x250
[  347.137767][ T9803]  ? __pfx_ksys_write+0x10/0x10
[  347.137786][ T9803]  __x64_sys_sendto+0xe0/0x1c0
[  347.137801][ T9803]  ? do_syscall_64+0x91/0x250
[  347.137817][ T9803]  ? lockdep_hardirqs_on+0x7c/0x110
[  347.137832][ T9803]  do_syscall_64+0xcd/0x250
[  347.137849][ T9803]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.137866][ T9803] RIP: 0033:0x7fde01d8cd29
[  347.137878][ T9803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  347.137891][ T9803] RSP: 002b:00007fde02c63038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  347.137905][ T9803] RAX: ffffffffffffffda RBX: 00007fde01fa5fa0 RCX: 00007fde01d8cd29
[  347.137915][ T9803] RDX: 000000000000fee4 RSI: 0000000020847fff RDI: 0000000000000003
[  347.137923][ T9803] RBP: 00007fde02c63090 R08: 000000002005ffe4 R09: 000000000000001c
[  347.137931][ T9803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  347.137939][ T9803] R13: 0000000000000000 R14: 00007fde01fa5fa0 R15: 00007fff3f33f808
[  347.137959][ T9803]  </TASK>
[  347.190666][   T29] audit: type=1400 audit(1737726828.187:438): avc:  denied  { read } for  pid=9802 comm="syz.0.1080" path="socket:[25842]" dev="sockfs" ino=25842 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  347.190705][   T29] audit: type=1400 audit(1737726828.187:439): avc:  denied  { write } for  pid=9802 comm="syz.0.1080" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  347.425997][ T5816] usb 5-1: config 236 interface 162 altsetting 4 has a duplicate endpoint with address 0xA, skipping
[  347.436898][ T5816] usb 5-1: config 236 interface 162 altsetting 4 has a duplicate endpoint with address 0x5, skipping
[  347.447771][ T5816] usb 5-1: config 236 interface 162 altsetting 4 has a duplicate endpoint with address 0xE, skipping
[  347.458663][ T5816] usb 5-1: config 236 interface 172 altsetting 6 has an invalid descriptor for endpoint zero, skipping
[  347.586196][ T5816] usb 5-1: config 236 interface 172 altsetting 6 has a duplicate endpoint with address 0x2, skipping
[  348.134091][ T5816] usb 5-1: config 236 interface 172 altsetting 6 endpoint 0xB has an invalid bInterval 179, changing to 7
[  348.145639][ T5816] usb 5-1: config 236 interface 172 altsetting 6 has an invalid descriptor for endpoint zero, skipping
[  348.156873][ T5816] usb 5-1: config 236 interface 172 altsetting 6 has 4 endpoint descriptors, different from the interface descriptor's value: 8
[  348.195627][ T5816] usb 5-1: config 236 interface 73 has no altsetting 0
[  348.204580][ T5816] usb 5-1: config 236 interface 162 has no altsetting 0
[  348.211644][ T5816] usb 5-1: config 236 interface 172 has no altsetting 0
[  348.274063][ T5816] usb 5-1: string descriptor 0 read error: -71
[  348.297648][ T9813] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  348.301713][ T5816] usb 5-1: New USB device found, idVendor=04a5, idProduct=4027, bcdDevice=d8.f9
[  348.583872][ T5816] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  348.598620][ T5816] usb 5-1: can't set config #236, error -71
[  348.638004][ T5816] usb 5-1: USB disconnect, device number 28
[  349.136518][ T7224] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  349.296763][ T7224] usb 4-1: Using ep0 maxpacket: 16
[  349.306347][ T7224] usb 4-1: New USB device found, idVendor=0403, idProduct=f850, bcdDevice= 0.81
[  349.316558][ T7224] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  349.327201][ T7224] usb 4-1: config 0 descriptor??
[  349.334230][ T7224] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[  349.342464][ T7224] usb 4-1: Detected SIO
[  349.348560][ T7224] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  349.584822][ T9835] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  350.110187][ T5864] usb 4-1: USB disconnect, device number 28
[  350.117145][ T5864] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  350.126748][ T5864] ftdi_sio 4-1:0.0: device disconnected
[  350.381314][ T5816] usb 2-1: new full-speed USB device number 28 using dummy_hcd
[  350.702705][ T9834] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  350.711187][ T9834] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  350.725403][ T5816] usb 2-1: unable to get BOS descriptor or descriptor too short
[  350.734344][ T5816] usb 2-1: unable to read config index 0 descriptor/start: -71
[  350.742035][ T5816] usb 2-1: can't read configurations, error -71
[  350.826349][ T7224] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  350.985799][ T7224] usb 5-1: Using ep0 maxpacket: 16
[  350.997570][ T7224] usb 5-1: New USB device found, idVendor=0403, idProduct=f850, bcdDevice= 0.81
[  351.006620][ T7224] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.030001][ T7224] usb 5-1: config 0 descriptor??
[  351.037287][ T7224] ftdi_sio 5-1:0.0: FTDI USB Serial Device converter detected
[  351.045339][ T7224] usb 5-1: Detected SIO
[  351.050291][ T7224] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  351.344472][ T5864] usb 5-1: USB disconnect, device number 29
[  351.816065][ T5864] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  351.826713][ T5864] ftdi_sio 5-1:0.0: device disconnected
[  353.090221][ T9863] input: syz0 as /devices/virtual/input/input19
[  353.228438][ T9867] netlink: 148 bytes leftover after parsing attributes in process `syz.3.1098'.
[  353.445805][   T29] audit: type=1400 audit(1737726834.071:440): avc:  denied  { read } for  pid=9859 comm="syz.2.1097" name="fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  354.511387][   T29] audit: type=1400 audit(1737726834.071:441): avc:  denied  { open } for  pid=9859 comm="syz.2.1097" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  354.535364][   T29] audit: type=1400 audit(1737726834.071:442): avc:  denied  { ioctl } for  pid=9859 comm="syz.2.1097" path="/dev/fb0" dev="devtmpfs" ino=629 ioctlcmd=0x4605 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  354.555388][ T9855] ISOFS: Unable to identify CD-ROM format.
[  354.603391][   T29] audit: type=1400 audit(1737726835.100:443): avc:  denied  { append } for  pid=9854 comm="syz.0.1095" name="video37" dev="devtmpfs" ino=1050 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  355.291285][ T9888] FAULT_INJECTION: forcing a failure.
[  355.291285][ T9888] name failslab, interval 1, probability 0, space 0, times 0
[  355.422613][ T9888] CPU: 1 UID: 0 PID: 9888 Comm: syz.4.1101 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  355.422636][ T9888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  355.422645][ T9888] Call Trace:
[  355.422650][ T9888]  <TASK>
[  355.422656][ T9888]  dump_stack_lvl+0x16c/0x1f0
[  355.422679][ T9888]  should_fail_ex+0x497/0x5b0
[  355.422695][ T9888]  ? fs_reclaim_acquire+0xae/0x150
[  355.422714][ T9888]  should_failslab+0xc2/0x120
[  355.422736][ T9888]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  355.422754][ T9888]  ? __pfx_lock_release+0x10/0x10
[  355.422772][ T9888]  ? alloc_empty_file+0x73/0x1e0
[  355.422796][ T9888]  alloc_empty_file+0x73/0x1e0
[  355.422817][ T9888]  path_openat+0xe1/0x2d70
[  355.422834][ T9888]  ? lockdep_hardirqs_on+0x7c/0x110
[  355.422852][ T9888]  ? __schedule+0x3db1/0x5b60
[  355.422873][ T9888]  ? __pfx_path_openat+0x10/0x10
[  355.422897][ T9888]  do_filp_open+0x20c/0x470
[  355.422915][ T9888]  ? __pfx_do_filp_open+0x10/0x10
[  355.422931][ T9888]  ? find_held_lock+0x2d/0x110
[  355.422969][ T9888]  ? alloc_fd+0x41f/0x760
[  355.422993][ T9888]  do_sys_openat2+0x17a/0x1e0
[  355.423014][ T9888]  ? __pfx_do_sys_openat2+0x10/0x10
[  355.423039][ T9888]  ? __x64_sys_openat+0x139/0x210
[  355.423065][ T9888]  __x64_sys_openat+0x175/0x210
[  355.423087][ T9888]  ? __pfx___x64_sys_openat+0x10/0x10
[  355.423117][ T9888]  do_syscall_64+0xcd/0x250
[  355.423136][ T9888]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.423157][ T9888] RIP: 0033:0x7f220e98b690
[  355.423169][ T9888] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  355.423183][ T9888] RSP: 002b:00007f220f801b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  355.423199][ T9888] RAX: ffffffffffffffda RBX: 0000000000000102 RCX: 00007f220e98b690
[  355.423208][ T9888] RDX: 0000000000000102 RSI: 00007f220f801c10 RDI: 00000000ffffff9c
[  355.423217][ T9888] RBP: 00007f220f801c10 R08: 0000000000000000 R09: 0023617363762f76
[  355.423227][ T9888] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  355.423235][ T9888] R13: 0000000000000001 R14: 00007f220eba6080 R15: 00007ffce1c9acf8
[  355.423256][ T9888]  </TASK>
[  355.490745][   T29] audit: type=1400 audit(1737726835.989:444): avc:  denied  { block_suspend } for  pid=9892 comm="syz.0.1103" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  355.687392][ T9888] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[  355.694163][ T9888] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  355.807766][ T9888] vhci_hcd vhci_hcd.0: Device attached
[  355.901586][ T9890] vhci_hcd: connection closed
[  355.936551][ T7855] vhci_hcd: stop threads
[  356.011228][ T7855] vhci_hcd: release socket
[  356.086647][ T7855] vhci_hcd: disconnect device
[  356.931163][   T29] audit: type=1400 audit(1737726837.317:445): avc:  denied  { create } for  pid=9906 comm="syz.2.1106" name="#13" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  357.463727][   T29] audit: type=1400 audit(1737726837.317:446): avc:  denied  { link } for  pid=9906 comm="syz.2.1106" name="#13" dev="tmpfs" ino=1225 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  357.513945][   T29] audit: type=1400 audit(1737726837.317:447): avc:  denied  { rename } for  pid=9906 comm="syz.2.1106" name="#14" dev="tmpfs" ino=1225 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  358.549299][ T9929] FAULT_INJECTION: forcing a failure.
[  358.549299][ T9929] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  358.562388][ T9929] CPU: 0 UID: 0 PID: 9929 Comm: syz.0.1111 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  358.562400][ T9929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  358.562406][ T9929] Call Trace:
[  358.562409][ T9929]  <TASK>
[  358.562412][ T9929]  dump_stack_lvl+0x16c/0x1f0
[  358.562426][ T9929]  should_fail_ex+0x497/0x5b0
[  358.562438][ T9929]  _copy_from_user+0x2e/0xd0
[  358.562449][ T9929]  move_addr_to_kernel+0x68/0x160
[  358.562460][ T9929]  __sys_connect+0xb0/0x170
[  358.562469][ T9929]  ? __pfx___sys_connect+0x10/0x10
[  358.562483][ T9929]  ? __pfx_ksys_write+0x10/0x10
[  358.562496][ T9929]  __x64_sys_connect+0x72/0xb0
[  358.562505][ T9929]  ? lockdep_hardirqs_on+0x7c/0x110
[  358.562515][ T9929]  do_syscall_64+0xcd/0x250
[  358.562526][ T9929]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.562538][ T9929] RIP: 0033:0x7fde01d8cd29
[  358.562545][ T9929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  358.562554][ T9929] RSP: 002b:00007fde02c63038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  358.562562][ T9929] RAX: ffffffffffffffda RBX: 00007fde01fa5fa0 RCX: 00007fde01d8cd29
[  358.562567][ T9929] RDX: 0000000000000048 RSI: 0000000020000300 RDI: 0000000000000005
[  358.562572][ T9929] RBP: 00007fde02c63090 R08: 0000000000000000 R09: 0000000000000000
[  358.562577][ T9929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  358.562582][ T9929] R13: 0000000000000000 R14: 00007fde01fa5fa0 R15: 00007fff3f33f808
[  358.562593][ T9929]  </TASK>
[  358.727888][   T29] audit: type=1400 audit(1737726838.870:448): avc:  denied  { write } for  pid=9928 comm="syz.0.1111" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  358.762735][   T29] audit: type=1400 audit(1737726839.057:449): avc:  denied  { mount } for  pid=9930 comm="syz.3.1112" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  358.842429][ T9934] FAULT_INJECTION: forcing a failure.
[  358.842429][ T9934] name failslab, interval 1, probability 0, space 0, times 0
[  358.920368][ T9934] CPU: 0 UID: 0 PID: 9934 Comm: syz.0.1113 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  358.920392][ T9934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  358.920402][ T9934] Call Trace:
[  358.920406][ T9934]  <TASK>
[  358.920413][ T9934]  dump_stack_lvl+0x16c/0x1f0
[  358.920436][ T9934]  should_fail_ex+0x497/0x5b0
[  358.920453][ T9934]  ? fs_reclaim_acquire+0xae/0x150
[  358.920473][ T9934]  should_failslab+0xc2/0x120
[  358.920496][ T9934]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  358.920519][ T9934]  ? __alloc_skb+0x2b1/0x380
[  358.920543][ T9934]  __alloc_skb+0x2b1/0x380
[  358.920563][ T9934]  ? __pfx___alloc_skb+0x10/0x10
[  358.920586][ T9934]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  358.920612][ T9934]  netlink_alloc_large_skb+0x69/0x130
[  358.920634][ T9934]  netlink_sendmsg+0x689/0xd70
[  358.920659][ T9934]  ? __pfx_netlink_sendmsg+0x10/0x10
[  358.920689][ T9934]  ____sys_sendmsg+0xaaf/0xc90
[  358.920707][ T9934]  ? copy_msghdr_from_user+0x10b/0x160
[  358.920729][ T9934]  ? __pfx_____sys_sendmsg+0x10/0x10
[  358.920758][ T9934]  ___sys_sendmsg+0x135/0x1e0
[  358.920781][ T9934]  ? __pfx____sys_sendmsg+0x10/0x10
[  358.920813][ T9934]  ? __pfx_lock_release+0x10/0x10
[  358.920832][ T9934]  ? trace_lock_acquire+0x14e/0x1f0
[  358.920866][ T9934]  ? __fget_files+0x206/0x3a0
[  358.920893][ T9934]  __sys_sendmsg+0x16e/0x220
[  358.920916][ T9934]  ? __pfx___sys_sendmsg+0x10/0x10
[  358.920954][ T9934]  do_syscall_64+0xcd/0x250
[  358.920976][ T9934]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.920998][ T9934] RIP: 0033:0x7fde01d8cd29
[  358.921012][ T9934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  358.921028][ T9934] RSP: 002b:00007fde02c63038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  358.921045][ T9934] RAX: ffffffffffffffda RBX: 00007fde01fa5fa0 RCX: 00007fde01d8cd29
[  358.921056][ T9934] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000003
[  358.921066][ T9934] RBP: 00007fde02c63090 R08: 0000000000000000 R09: 0000000000000000
[  358.921076][ T9934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  358.921085][ T9934] R13: 0000000000000000 R14: 00007fde01fa5fa0 R15: 00007fff3f33f808
[  358.921106][ T9934]  </TASK>
[  358.976842][ T9939] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  359.316425][ T9944] netlink: 136 bytes leftover after parsing attributes in process `syz.2.1116'.
[  359.614765][ T9947] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  360.171445][ T9966] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  360.227530][ T9966] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  360.241311][ T9966] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  360.717556][ T9976] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  361.377105][ T5864] usb 2-1: new full-speed USB device number 30 using dummy_hcd
[  361.552464][ T5864] usb 2-1: unable to get BOS descriptor or descriptor too short
[  361.754717][ T5864] usb 2-1: not running at top speed; connect to a high speed hub
[  362.021674][ T5864] usb 2-1: config 17 has an invalid interface number: 8 but max is 1
[  362.038344][ T5864] usb 2-1: config 17 has 1 interface, different from the descriptor's value: 2
[  362.049740][ T5864] usb 2-1: config 17 has no interface number 0
[  362.058501][ T5864] usb 2-1: config 17 interface 8 altsetting 6 endpoint 0x3 has an invalid bInterval 116, changing to 4
[  362.594883][ T5864] usb 2-1: config 17 interface 8 altsetting 6 endpoint 0x3 has invalid maxpacket 30307, setting to 1023
[  362.632357][ T5864] usb 2-1: config 17 interface 8 has no altsetting 0
[  362.636241][ T9995] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1132'.
[  362.765454][ T5864] usb 2-1: New USB device found, idVendor=0763, idProduct=2001, bcdDevice=2c.ff
[  362.774738][ T5864] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  362.793906][ T5864] usb 2-1: Product: syz
[  362.798178][ T5864] usb 2-1: Manufacturer: syz
[  362.803935][ T5864] usb 2-1: SerialNumber: syz
[  362.893712][ T9999] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1132'.
[  363.451320][ T9974] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  363.459746][ T9974] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  363.490822][ T5864] usb 2-1: selecting invalid altsetting 0
[  363.496627][ T5864] usb 2-1: 8:6 : no UAC_FORMAT_TYPE desc
[  363.502870][ T5864] usb 2-1: selecting invalid altsetting 0
[  363.600548][ T5864] usb 2-1: USB disconnect, device number 30
[  363.697470][T10004] FAULT_INJECTION: forcing a failure.
[  363.697470][T10004] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.718736][T10004] CPU: 1 UID: 0 PID: 10004 Comm: syz.2.1133 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  363.718760][T10004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  363.718770][T10004] Call Trace:
[  363.718774][T10004]  <TASK>
[  363.718781][T10004]  dump_stack_lvl+0x16c/0x1f0
[  363.718805][T10004]  should_fail_ex+0x497/0x5b0
[  363.718824][T10004]  strncpy_from_user+0x3b/0x2d0
[  363.718850][T10004]  getname_flags.part.0+0x8f/0x550
[  363.718874][T10004]  ? do_user_addr_fault+0xdc7/0x13f0
[  363.718895][T10004]  getname+0x8d/0xe0
[  363.718912][T10004]  do_sys_openat2+0x104/0x1e0
[  363.718934][T10004]  ? __pfx_do_sys_openat2+0x10/0x10
[  363.718954][T10004]  ? do_user_addr_fault+0xe50/0x13f0
[  363.718968][T10004]  ? __pfx_lock_release+0x10/0x10
[  363.718987][T10004]  __x64_sys_openat+0x175/0x210
[  363.719005][T10004]  ? __pfx___x64_sys_openat+0x10/0x10
[  363.719028][T10004]  ? do_user_addr_fault+0x83d/0x13f0
[  363.719049][T10004]  do_syscall_64+0xcd/0x250
[  363.719069][T10004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.719093][T10004] RIP: 0033:0x7ff0a398b690
[  363.719107][T10004] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  363.719122][T10004] RSP: 002b:00007ff0a4753b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  363.719137][T10004] RAX: ffffffffffffffda RBX: 0000000000044000 RCX: 00007ff0a398b690
[  363.719146][T10004] RDX: 0000000000044000 RSI: 00007ff0a4753c10 RDI: 00000000ffffff9c
[  363.719155][T10004] RBP: 00007ff0a4753c10 R08: 0000000000000000 R09: 0000000000000000
[  363.719164][T10004] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  363.719173][T10004] R13: 0000000000000000 R14: 00007ff0a3ba5fa0 R15: 00007ffefd09c9f8
[  363.719193][T10004]  </TASK>
[  363.719511][   T29] audit: type=1400 audit(1737726843.696:450): avc:  denied  { name_bind } for  pid=10005 comm="syz.0.1134" src=3618 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  363.921216][   T29] audit: type=1400 audit(1737726843.743:451): avc:  denied  { write } for  pid=10005 comm="syz.0.1134" name="fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  364.077580][T10006] 9pnet_fd: Insufficient options for proto=fd
[  364.097740][T10013] netlink: 187320 bytes leftover after parsing attributes in process `syz.3.1136'.
[  364.107137][T10013] netlink: zone id is out of range
[  364.112240][T10013] netlink: zone id is out of range
[  364.117372][T10013] netlink: zone id is out of range
[  364.122471][T10013] netlink: zone id is out of range
[  364.127626][T10013] netlink: zone id is out of range
[  364.132711][T10013] netlink: zone id is out of range
[  364.137866][T10013] netlink: zone id is out of range
[  364.142974][T10013] netlink: zone id is out of range
[  364.148117][T10013] netlink: zone id is out of range
[  364.153202][T10013] netlink: zone id is out of range
[  364.160083][ T5816] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  364.359990][ T5816] usb 5-1: Using ep0 maxpacket: 16
[  364.486159][ T5816] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  364.578670][ T5816] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  364.685271][T10023] FAULT_INJECTION: forcing a failure.
[  364.685271][T10023] name failslab, interval 1, probability 0, space 0, times 0
[  364.701586][T10023] CPU: 0 UID: 0 PID: 10023 Comm: syz.0.1138 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  364.701608][T10023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  364.701617][T10023] Call Trace:
[  364.701620][T10023]  <TASK>
[  364.701623][T10023]  dump_stack_lvl+0x16c/0x1f0
[  364.701638][T10023]  should_fail_ex+0x497/0x5b0
[  364.701647][T10023]  ? fs_reclaim_acquire+0xae/0x150
[  364.701659][T10023]  should_failslab+0xc2/0x120
[  364.701672][T10023]  __kmalloc_cache_noprof+0x68/0x410
[  364.701684][T10023]  ? _copy_from_user+0x59/0xd0
[  364.701695][T10023]  copy_mount_options+0x55/0x190
[  364.701710][T10023]  __x64_sys_mount+0x1ad/0x310
[  364.701721][T10023]  ? __pfx___x64_sys_mount+0x10/0x10
[  364.701745][T10023]  do_syscall_64+0xcd/0x250
[  364.701766][T10023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.701785][T10023] RIP: 0033:0x7fde01d8cd29
[  364.701799][T10023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  364.701812][T10023] RSP: 002b:00007fde02c42038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  364.701826][T10023] RAX: ffffffffffffffda RBX: 00007fde01fa6080 RCX: 00007fde01d8cd29
[  364.701837][T10023] RDX: 0000000020000080 RSI: 0000000020000300 RDI: 0000000000000000
[  364.701847][T10023] RBP: 00007fde02c42090 R08: 0000000020000900 R09: 0000000000000000
[  364.701856][T10023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  364.701864][T10023] R13: 0000000000000001 R14: 00007fde01fa6080 R15: 00007fff3f33f808
[  364.701879][T10023]  </TASK>
[  364.858226][ T5816] usb 5-1: New USB device found, idVendor=0471, idProduct=0327, bcdDevice=61.a4
[  364.969321][ T5816] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  365.018293][ T5816] usb 5-1: config 0 descriptor??
[  365.439615][ T7224] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  365.589311][ T7224] usb 4-1: device descriptor read/64, error -71
[  365.616698][   T29] audit: type=1400 audit(1737726845.464:452): avc:  denied  { ioctl } for  pid=10036 comm="syz.1.1144" path="/dev/nullb0" dev="devtmpfs" ino=696 ioctlcmd=0x125f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  365.867115][ T7224] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  366.006143][ T7224] usb 4-1: device descriptor read/64, error -71
[  366.187561][T10047] FAULT_INJECTION: forcing a failure.
[  366.187561][T10047] name failslab, interval 1, probability 0, space 0, times 0
[  366.200365][T10047] CPU: 0 UID: 0 PID: 10047 Comm: syz.1.1145 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  366.200386][T10047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  366.200395][T10047] Call Trace:
[  366.200400][T10047]  <TASK>
[  366.200407][T10047]  dump_stack_lvl+0x16c/0x1f0
[  366.200432][T10047]  should_fail_ex+0x497/0x5b0
[  366.200448][T10047]  ? fs_reclaim_acquire+0xae/0x150
[  366.200470][T10047]  should_failslab+0xc2/0x120
[  366.200494][T10047]  __kmalloc_cache_noprof+0x68/0x410
[  366.200515][T10047]  ? __pfx___schedule+0x10/0x10
[  366.200538][T10047]  ip_vs_new_dest+0x19b/0xc50
[  366.200560][T10047]  ? find_held_lock+0x2d/0x110
[  366.200586][T10047]  ? __pfx_ip_vs_new_dest+0x10/0x10
[  366.200609][T10047]  ? preempt_schedule_thunk+0x1a/0x30
[  366.200629][T10047]  ? preempt_schedule_common+0x44/0xc0
[  366.200648][T10047]  ? preempt_schedule_thunk+0x1a/0x30
[  366.200673][T10047]  ip_vs_add_dest+0x546/0x1090
[  366.200704][T10047]  ? __pfx_ip_vs_add_dest+0x10/0x10
[  366.200725][T10047]  ? trace_lock_acquire+0x14e/0x1f0
[  366.200759][T10047]  ? do_ip_vs_set_ctl+0x104d/0x11c0
[  366.200781][T10047]  do_ip_vs_set_ctl+0x104d/0x11c0
[  366.200811][T10047]  ? __pfx_do_ip_vs_set_ctl+0x10/0x10
[  366.200836][T10047]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  366.200857][T10047]  ? rcu_is_watching+0x12/0xc0
[  366.200885][T10047]  ? __mutex_lock+0x1cc/0xb10
[  366.200902][T10047]  ? preempt_schedule_thunk+0x1a/0x30
[  366.200923][T10047]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  366.200968][T10047]  ? nf_setsockopt+0x8a/0xf0
[  366.200985][T10047]  nf_setsockopt+0x8a/0xf0
[  366.201006][T10047]  ip_setsockopt+0xcb/0xf0
[  366.201032][T10047]  tcp_setsockopt+0xa4/0x100
[  366.201058][T10047]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  366.201091][T10047]  do_sock_setsockopt+0x222/0x480
[  366.201116][T10047]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  366.201142][T10047]  ? lock_acquire+0x2f/0xb0
[  366.201175][T10047]  __sys_setsockopt+0x1a0/0x230
[  366.201201][T10047]  __x64_sys_setsockopt+0xbd/0x160
[  366.201220][T10047]  ? do_syscall_64+0x91/0x250
[  366.201238][T10047]  ? lockdep_hardirqs_on+0x7c/0x110
[  366.201255][T10047]  do_syscall_64+0xcd/0x250
[  366.201276][T10047]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.201298][T10047] RIP: 0033:0x7feed538cd29
[  366.201312][T10047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.201326][T10047] RSP: 002b:00007feed6228038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  366.201342][T10047] RAX: ffffffffffffffda RBX: 00007feed55a6160 RCX: 00007feed538cd29
[  366.201352][T10047] RDX: 0000000000000487 RSI: 0000000000000000 RDI: 000000000000000a
[  366.201361][T10047] RBP: 00007feed6228090 R08: 0000000000000044 R09: 0000000000000000
[  366.201371][T10047] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  366.201380][T10047] R13: 0000000000000000 R14: 00007feed55a6160 R15: 00007fffc7784508
[  366.201404][T10047]  </TASK>
[  366.497658][    T8] IPVS: starting estimator thread 0...
[  366.503367][ T7224] usb usb4-port1: attempt power cycle
[  366.668961][T10048] IPVS: using max 30 ests per chain, 72000 per kthread
[  366.872087][ T7224] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  366.928314][ T7224] usb 4-1: device descriptor read/8, error -71
[  366.933280][ T5864] usb 5-1: USB disconnect, device number 30
[  366.992079][T10054] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  367.335340][ T7224] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  367.352618][T10064] netlink: 187320 bytes leftover after parsing attributes in process `syz.1.1147'.
[  367.367091][ T7224] usb 4-1: device descriptor read/8, error -71
[  367.385184][ T5864] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  367.482172][ T7224] usb usb4-port1: unable to enumerate USB device
[  367.535560][T10066] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1150'.
[  367.544548][T10066] tipc: Started in network mode
[  367.549555][T10066] tipc: Node identity 7, cluster identity 5
[  367.556134][T10066] tipc: Node number set to 7
[  367.588398][ T5864] usb 5-1: Using ep0 maxpacket: 32
[  367.594821][ T5864] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  367.603021][ T5864] usb 5-1: config 0 has no interface number 0
[  367.609217][ T5864] usb 5-1: config 0 interface 12 has no altsetting 0
[  367.618041][ T5864] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  367.628419][ T5864] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  367.636531][ T5864] usb 5-1: Product: syz
[  367.640864][ T5864] usb 5-1: Manufacturer: syz
[  367.646847][ T5864] usb 5-1: SerialNumber: syz
[  367.653253][ T5864] usb 5-1: config 0 descriptor??
[  367.731253][T10068] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  367.740637][T10068] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  367.755512][T10068] netlink: 'syz.2.1151': attribute type 10 has an invalid length.
[  367.763428][T10068] netlink: 2 bytes leftover after parsing attributes in process `syz.2.1151'.
[  367.772560][T10068] team0: entered promiscuous mode
[  367.777592][T10068] team_slave_0: entered promiscuous mode
[  367.783574][T10068] team_slave_1: entered promiscuous mode
[  367.789414][T10068] bridge0: port 3(team0) entered blocking state
[  367.795701][T10068] bridge0: port 3(team0) entered disabled state
[  367.802130][T10068] team0: entered allmulticast mode
[  367.807242][T10068] team_slave_0: entered allmulticast mode
[  367.813015][T10068] team_slave_1: entered allmulticast mode
[  367.820041][T10068] bridge0: port 3(team0) entered blocking state
[  367.827425][T10068] bridge0: port 3(team0) entered forwarding state
[  368.204364][T10074] geneve2: entered promiscuous mode
[  368.211000][T10074] geneve2: entered allmulticast mode
[  368.574736][T10083] FAULT_INJECTION: forcing a failure.
[  368.574736][T10083] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  368.847382][T10083] CPU: 1 UID: 0 PID: 10083 Comm: syz.2.1157 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  368.847414][T10083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  368.847423][T10083] Call Trace:
[  368.847429][T10083]  <TASK>
[  368.847435][T10083]  dump_stack_lvl+0x16c/0x1f0
[  368.847461][T10083]  should_fail_ex+0x497/0x5b0
[  368.847482][T10083]  _copy_to_user+0x32/0xd0
[  368.847503][T10083]  copy_siginfo_to_user+0x23/0xc0
[  368.847527][T10083]  x64_setup_rt_frame+0x814/0xcf0
[  368.847558][T10083]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[  368.847590][T10083]  arch_do_signal_or_restart+0x5e6/0x7e0
[  368.847617][T10083]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  368.847647][T10083]  ? ksys_write+0x1ba/0x250
[  368.847666][T10083]  ? __pfx_ksys_write+0x10/0x10
[  368.847689][T10083]  syscall_exit_to_user_mode+0x150/0x2a0
[  368.847710][T10083]  do_syscall_64+0xda/0x250
[  368.847731][T10083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.847753][T10083] RIP: 0033:0x7ff0a398cd27
[  368.847766][T10083] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[  368.847782][T10083] RSP: 002b:00007ff0a4754038 EFLAGS: 00000246 ORIG_RAX: 0000000000000049
[  368.847799][T10083] RAX: 0000000000000049 RBX: 00007ff0a3ba5fa0 RCX: 00007ff0a398cd29
[  368.847810][T10083] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000004
[  368.847819][T10083] RBP: 00007ff0a4754090 R08: 0000000000000000 R09: 0000000000000000
[  368.847828][T10083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  368.847838][T10083] R13: 0000000000000000 R14: 00007ff0a3ba5fa0 R15: 00007ffefd09c9f8
[  368.847859][T10083]  </TASK>
[  369.017733][    C1] vkms_vblank_simulate: vblank timer overrun
[  369.368289][T10091] netlink: 2036 bytes leftover after parsing attributes in process `syz.2.1158'.
[  369.378094][T10091] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1158'.
[  369.623321][T10097] netlink: 187320 bytes leftover after parsing attributes in process `syz.3.1160'.
[  369.632888][T10097] net_ratelimit: 42 callbacks suppressed
[  369.632896][T10097] netlink: zone id is out of range
[  369.643838][T10097] netlink: zone id is out of range
[  369.648948][T10097] netlink: zone id is out of range
[  369.654121][T10097] netlink: zone id is out of range
[  369.659255][T10097] netlink: zone id is out of range
[  369.664461][T10097] netlink: zone id is out of range
[  369.669582][T10097] netlink: zone id is out of range
[  369.674708][T10097] netlink: zone id is out of range
[  369.680025][T10097] netlink: zone id is out of range
[  369.685135][T10097] netlink: zone id is out of range
[  369.703331][T10098] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1159'.
[  370.074583][T10100] FAULT_INJECTION: forcing a failure.
[  370.074583][T10100] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  370.087851][T10100] CPU: 0 UID: 0 PID: 10100 Comm: syz.1.1161 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  370.087871][T10100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  370.087881][T10100] Call Trace:
[  370.087887][T10100]  <TASK>
[  370.087893][T10100]  dump_stack_lvl+0x16c/0x1f0
[  370.087916][T10100]  should_fail_ex+0x497/0x5b0
[  370.087938][T10100]  _copy_from_user+0x2e/0xd0
[  370.087959][T10100]  copy_arg_from_user+0x59/0x90
[  370.087977][T10100]  ? __pfx_copy_arg_from_user+0x10/0x10
[  370.087995][T10100]  media_device_ioctl+0x1cd/0x490
[  370.088015][T10100]  ? __pfx_media_device_ioctl+0x10/0x10
[  370.088060][T10100]  ? __pfx_media_device_ioctl+0x10/0x10
[  370.088080][T10100]  media_ioctl+0xf1/0x150
[  370.088097][T10100]  ? __pfx_media_ioctl+0x10/0x10
[  370.088119][T10100]  __x64_sys_ioctl+0x190/0x200
[  370.088136][T10100]  do_syscall_64+0xcd/0x250
[  370.088157][T10100]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.088179][T10100] RIP: 0033:0x7feed538cd29
[  370.088192][T10100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  370.088208][T10100] RSP: 002b:00007feed626a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  370.088224][T10100] RAX: ffffffffffffffda RBX: 00007feed55a5fa0 RCX: 00007feed538cd29
[  370.088234][T10100] RDX: 0000000020000140 RSI: 00000000c0487c04 RDI: 0000000000000003
[  370.088244][T10100] RBP: 00007feed626a090 R08: 0000000000000000 R09: 0000000000000000
[  370.088253][T10100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  370.088262][T10100] R13: 0000000000000000 R14: 00007feed55a5fa0 R15: 00007fffc7784508
[  370.088282][T10100]  </TASK>
[  370.282791][ T5864] f81534 5-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  370.291065][ T5864] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  370.314633][ T5864] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  370.322260][ T5864] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[  370.393114][T10105] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1163'.
[  370.536559][ T5864] usb 5-1: USB disconnect, device number 31
[  370.806231][T10111] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  370.870399][   T29] audit: type=1400 audit(1737726850.366:453): avc:  denied  { read } for  pid=10104 comm="syz.3.1165" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  371.169656][ T7224] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  371.231372][T10124] FAULT_INJECTION: forcing a failure.
[  371.231372][T10124] name failslab, interval 1, probability 0, space 0, times 0
[  371.244090][T10124] CPU: 0 UID: 0 PID: 10124 Comm: syz.1.1169 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  371.244110][T10124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  371.244119][T10124] Call Trace:
[  371.244124][T10124]  <TASK>
[  371.244130][T10124]  dump_stack_lvl+0x16c/0x1f0
[  371.244154][T10124]  should_fail_ex+0x497/0x5b0
[  371.244174][T10124]  ? fs_reclaim_acquire+0xae/0x150
[  371.244196][T10124]  should_failslab+0xc2/0x120
[  371.244220][T10124]  __kmalloc_cache_node_noprof+0x6e/0x420
[  371.244243][T10124]  ? __get_vm_area_node+0x101/0x2f0
[  371.244266][T10124]  __get_vm_area_node+0x101/0x2f0
[  371.244285][T10124]  ? lockdep_hardirqs_on+0x7c/0x110
[  371.244305][T10124]  __vmalloc_node_range_noprof+0x26a/0x1530
[  371.244326][T10124]  ? bpf_prog_alloc_no_stats+0x54/0x620
[  371.244348][T10124]  ? rcu_is_watching+0x12/0xc0
[  371.244374][T10124]  ? __rcu_read_unlock+0x2b4/0x580
[  371.244394][T10124]  ? bpf_prog_alloc_no_stats+0x54/0x620
[  371.244419][T10124]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  371.244444][T10124]  ? rcu_is_watching+0x12/0xc0
[  371.244470][T10124]  ? bpf_prog_alloc_no_stats+0x54/0x620
[  371.244490][T10124]  __vmalloc_noprof+0x6d/0x90
[  371.244509][T10124]  ? bpf_prog_alloc_no_stats+0x54/0x620
[  371.244529][T10124]  bpf_prog_alloc_no_stats+0x54/0x620
[  371.244548][T10124]  ? security_capable+0x7e/0x260
[  371.244572][T10124]  bpf_prog_alloc+0x3b/0x230
[  371.244588][T10124]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  371.244611][T10124]  bpf_prog_load+0x1a00/0x2480
[  371.244640][T10124]  ? __pfx_bpf_prog_load+0x10/0x10
[  371.244662][T10124]  ? avc_has_perm_noaudit+0x143/0x3a0
[  371.244700][T10124]  ? selinux_bpf+0xde/0x130
[  371.244721][T10124]  __sys_bpf+0x4043/0x49c0
[  371.244742][T10124]  ? finish_task_switch.isra.0+0x217/0xcc0
[  371.244762][T10124]  ? __switch_to+0x6d0/0x1190
[  371.244786][T10124]  ? __pfx___sys_bpf+0x10/0x10
[  371.244809][T10124]  ? __schedule+0x114a/0x5b60
[  371.244847][T10124]  ? fput+0x67/0x440
[  371.244870][T10124]  ? ksys_write+0x1ba/0x250
[  371.244895][T10124]  __x64_sys_bpf+0x78/0xc0
[  371.244918][T10124]  ? lockdep_hardirqs_on+0x7c/0x110
[  371.244935][T10124]  do_syscall_64+0xcd/0x250
[  371.244956][T10124]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.244977][T10124] RIP: 0033:0x7feed538cd29
[  371.244990][T10124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  371.245006][T10124] RSP: 002b:00007feed6228038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  371.245022][T10124] RAX: ffffffffffffffda RBX: 00007feed55a6160 RCX: 00007feed538cd29
[  371.245032][T10124] RDX: 0000000000000094 RSI: 0000000020000580 RDI: 0000000000000005
[  371.245041][T10124] RBP: 00007feed6228090 R08: 0000000000000000 R09: 0000000000000000
[  371.245056][T10124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  371.245066][T10124] R13: 0000000000000000 R14: 00007feed55a6160 R15: 00007fffc7784508
[  371.245090][T10124]  </TASK>
[  371.534075][T10124] syz.1.1169: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  371.550366][T10124] CPU: 0 UID: 0 PID: 10124 Comm: syz.1.1169 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  371.550387][T10124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  371.550397][T10124] Call Trace:
[  371.550401][T10124]  <TASK>
[  371.550407][T10124]  dump_stack_lvl+0x16c/0x1f0
[  371.550431][T10124]  warn_alloc+0x24d/0x3a0
[  371.550456][T10124]  ? __pfx_warn_alloc+0x10/0x10
[  371.550476][T10124]  ? rcu_is_watching+0x12/0xc0
[  371.550504][T10124]  ? __kmalloc_cache_node_noprof+0x2ad/0x420
[  371.550528][T10124]  ? __kasan_kmalloc+0x8a/0xb0
[  371.550549][T10124]  ? __get_vm_area_node+0x1dc/0x2f0
[  371.550573][T10124]  __vmalloc_node_range_noprof+0xd27/0x1530
[  371.550593][T10124]  ? rcu_is_watching+0x12/0xc0
[  371.550618][T10124]  ? __rcu_read_unlock+0x2b4/0x580
[  371.550637][T10124]  ? bpf_prog_alloc_no_stats+0x54/0x620
[  371.550662][T10124]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  371.550685][T10124]  ? rcu_is_watching+0x12/0xc0
[  371.550709][T10124]  ? bpf_prog_alloc_no_stats+0x54/0x620
[  371.550728][T10124]  __vmalloc_noprof+0x6d/0x90
[  371.550747][T10124]  ? bpf_prog_alloc_no_stats+0x54/0x620
[  371.550767][T10124]  bpf_prog_alloc_no_stats+0x54/0x620
[  371.550784][T10124]  ? security_capable+0x7e/0x260
[  371.550806][T10124]  bpf_prog_alloc+0x3b/0x230
[  371.550822][T10124]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  371.550845][T10124]  bpf_prog_load+0x1a00/0x2480
[  371.550872][T10124]  ? __pfx_bpf_prog_load+0x10/0x10
[  371.550893][T10124]  ? avc_has_perm_noaudit+0x143/0x3a0
[  371.550929][T10124]  ? selinux_bpf+0xde/0x130
[  371.550949][T10124]  __sys_bpf+0x4043/0x49c0
[  371.550970][T10124]  ? finish_task_switch.isra.0+0x217/0xcc0
[  371.550989][T10124]  ? __switch_to+0x6d0/0x1190
[  371.551013][T10124]  ? __pfx___sys_bpf+0x10/0x10
[  371.551036][T10124]  ? __schedule+0x114a/0x5b60
[  371.551079][T10124]  ? fput+0x67/0x440
[  371.551102][T10124]  ? ksys_write+0x1ba/0x250
[  371.551126][T10124]  __x64_sys_bpf+0x78/0xc0
[  371.551149][T10124]  ? lockdep_hardirqs_on+0x7c/0x110
[  371.551166][T10124]  do_syscall_64+0xcd/0x250
[  371.551187][T10124]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.551207][T10124] RIP: 0033:0x7feed538cd29
[  371.551220][T10124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  371.551235][T10124] RSP: 002b:00007feed6228038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  371.551250][T10124] RAX: ffffffffffffffda RBX: 00007feed55a6160 RCX: 00007feed538cd29
[  371.551260][T10124] RDX: 0000000000000094 RSI: 0000000020000580 RDI: 0000000000000005
[  371.551270][T10124] RBP: 00007feed6228090 R08: 0000000000000000 R09: 0000000000000000
[  371.551279][T10124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  371.551288][T10124] R13: 0000000000000000 R14: 00007feed55a6160 R15: 00007fffc7784508
[  371.551309][T10124]  </TASK>
[  371.551332][T10124] Mem-Info:
[  371.835226][T10124] active_anon:13229 inactive_anon:0 isolated_anon:0
[  371.835226][T10124]  active_file:22424 inactive_file:38666 isolated_file:0
[  371.835226][T10124]  unevictable:768 dirty:770 writeback:0
[  371.835226][T10124]  slab_reclaimable:11703 slab_unreclaimable:101218
[  371.835226][T10124]  mapped:33515 shmem:8377 pagetables:996
[  371.835226][T10124]  sec_pagetables:0 bounce:0
[  371.835226][T10124]  kernel_misc_reclaimable:0
[  371.835226][T10124]  free:1297707 free_pcp:7977 free_cma:0
[  371.880505][    C1] vkms_vblank_simulate: vblank timer overrun
[  371.886781][T10124] Node 0 active_anon:52956kB inactive_anon:0kB active_file:89696kB inactive_file:153800kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:134060kB dirty:3076kB writeback:0kB shmem:32064kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11508kB pagetables:3948kB sec_pagetables:0kB all_unreclaimable? no
[  371.919170][    C1] vkms_vblank_simulate: vblank timer overrun
[  371.925283][T10124] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:864kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  371.955977][T10124] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  371.970460][   T29] audit: type=1326 audit(1737726851.404:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10129 comm="syz.2.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a398cd29 code=0x7ffc0000
[  371.983012][    C1] vkms_vblank_simulate: vblank timer overrun
[  371.983117][T10124] lowmem_reserve[]: 0 2487 2487 0 0
[  371.983155][T10124] Node 0 DMA32 free:1293752kB boost:0kB min:34152kB low:42688kB high:51224kB reserved_highatomic:0KB active_anon:52956kB inactive_anon:0kB active_file:89696kB inactive_file:153708kB unevictable:1536kB writepending:3076kB present:3129332kB managed:2547052kB mlocked:0kB bounce:0kB free_pcp:8344kB local_pcp:4028kB free_cma:0kB
[  371.983200][T10124] lowmem_reserve[]: 0 0 0 0 0
[  371.983231][T10124] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:92kB unevictable:0kB writepending:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[  371.983271][T10124] lowmem_reserve[]: 0 0 0
[  372.024959][ T7224] usb 5-1: Using ep0 maxpacket: 32
[  372.048530][T10124]  0 0
[  372.091967][T10124] Node 1 Normal free:3881236kB boost:0kB min:55748kB low:69684kB high:83620kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:864kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:23532kB local_pcp:8812kB free_cma:0kB
[  372.121297][    C1] vkms_vblank_simulate: vblank timer overrun
[  372.127301][T10124] lowmem_reserve[]: 0 0 0 0 0
[  372.132025][T10124] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  372.144597][T10124] Node 0 DMA32: 368*4kB (UM) 119*8kB (UM) 133*16kB (UE) 122*32kB (UME) 58*64kB (UME) 34*128kB (UME) 42*256kB (UME) 43*512kB (UME) 16*1024kB (ME) 5*2048kB (UM) 298*4096kB (UME) = 1296520kB
[  372.163383][T10124] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  372.174816][T10124] Node 1 Normal: 4*4kB (UME) 7*8kB (UME) 32*16kB (UME) 212*32kB (UME) 106*64kB (UME) 38*128kB (UME) 11*256kB (UM) 6*512kB (UM) 4*1024kB (UME) 3*2048kB (UME) 939*4096kB (M) = 3881288kB
[  372.192981][T10124] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  372.202543][T10124] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  372.211835][T10124] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  372.221375][T10124] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  372.230655][T10124] 69490 total pagecache pages
[  372.235303][T10124] 0 pages in swap cache
[  372.239456][T10124] Free swap  = 124268kB
[  372.243584][T10124] Total swap = 124996kB
[  372.247721][T10124] 2097051 pages RAM
[  372.251524][T10124] 0 pages HighMem/MovableOnly
[  372.256167][T10124] 428630 pages reserved
[  372.260575][T10124] 0 pages cma reserved
[  372.339787][ T7224] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  372.348979][ T7224] usb 5-1: config 0 has no interface number 0
[  372.375786][   T29] audit: type=1326 audit(1737726851.404:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10129 comm="syz.2.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a398cd29 code=0x7ffc0000
[  372.409112][ T7224] usb 5-1: config 0 interface 12 has no altsetting 0
[  372.425107][   T29] audit: type=1326 audit(1737726851.404:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10129 comm="syz.2.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff0a398cd29 code=0x7ffc0000
[  372.774660][ T7224] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  372.783735][ T7224] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  372.810748][   T29] audit: type=1326 audit(1737726851.404:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10129 comm="syz.2.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a398cd29 code=0x7ffc0000
[  372.862454][ T7224] usb 5-1: Product: syz
[  372.869624][ T7224] usb 5-1: Manufacturer: syz
[  372.883786][ T7224] usb 5-1: SerialNumber: syz
[  372.902229][ T7224] usb 5-1: config 0 descriptor??
[  372.912240][   T29] audit: type=1326 audit(1737726851.404:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10129 comm="syz.2.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a398cd29 code=0x7ffc0000
[  372.966585][   T29] audit: type=1326 audit(1737726851.404:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10129 comm="syz.2.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=104 compat=0 ip=0x7ff0a398cd29 code=0x7ffc0000
[  373.014322][   T29] audit: type=1326 audit(1737726851.404:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10129 comm="syz.2.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a398cd29 code=0x7ffc0000
[  373.038144][    T9] usb 2-1: new full-speed USB device number 31 using dummy_hcd
[  373.070126][   T29] audit: type=1326 audit(1737726851.404:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10129 comm="syz.2.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0a398cd29 code=0x7ffc0000
[  373.104486][   T29] audit: type=1326 audit(1737726851.404:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10129 comm="syz.2.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff0a398cd29 code=0x7ffc0000
[  373.227945][    T9] usb 2-1: unable to get BOS descriptor or descriptor too short
[  373.236154][    T9] usb 2-1: not running at top speed; connect to a high speed hub
[  373.268389][    T9] usb 2-1: config 17 has an invalid interface number: 8 but max is 1
[  373.283177][    T9] usb 2-1: config 17 has 1 interface, different from the descriptor's value: 2
[  373.293145][    T9] usb 2-1: config 17 has no interface number 0
[  373.305193][    T9] usb 2-1: config 17 interface 8 altsetting 6 endpoint 0x3 has invalid wMaxPacketSize 0
[  373.315576][    T9] usb 2-1: config 17 interface 8 has no altsetting 0
[  373.449528][    T9] usb 2-1: New USB device found, idVendor=0763, idProduct=2001, bcdDevice=2c.ff
[  373.460350][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  373.468709][    T9] usb 2-1: Product: syz
[  373.473106][    T9] usb 2-1: Manufacturer: syz
[  373.477694][    T9] usb 2-1: SerialNumber: syz
[  374.278354][ T7224] f81534 5-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  374.285896][ T7224] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  374.350402][T10132] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  374.358856][T10132] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  374.384904][ T7224] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  374.397600][    T9] usb 2-1: selecting invalid altsetting 0
[  374.443370][ T7224] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[  374.466180][    T9] usb 2-1: USB disconnect, device number 31
[  374.798025][ T7224] usb 5-1: USB disconnect, device number 32
[  374.832448][T10154] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1177'.
[  375.732659][T10162] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  376.213942][T10175] netlink: 187320 bytes leftover after parsing attributes in process `syz.1.1184'.
[  376.223495][T10175] net_ratelimit: 16 callbacks suppressed
[  376.223506][T10175] netlink: zone id is out of range
[  376.234345][T10175] netlink: zone id is out of range
[  376.239554][T10175] netlink: zone id is out of range
[  376.244744][T10175] netlink: zone id is out of range
[  376.249925][T10175] netlink: zone id is out of range
[  376.255084][T10175] netlink: zone id is out of range
[  376.260304][T10175] netlink: zone id is out of range
[  376.265450][T10175] netlink: zone id is out of range
[  376.270798][T10175] netlink: zone id is out of range
[  376.275957][T10175] netlink: zone id is out of range
[  376.340372][T10177] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  376.355106][T10177] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  376.364283][T10177] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  376.372909][T10177] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  376.398725][T10177] hfs: can't find a HFS filesystem on dev nullb0
[  376.412279][ T7224] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  376.550451][T10181] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  376.563013][T10181] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  376.579174][ T7224] usb 5-1: Using ep0 maxpacket: 16
[  376.585619][ T7224] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  376.597325][ T7224] usb 5-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  376.606479][ T7224] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  376.614686][ T7224] usb 5-1: Product: syz
[  376.618859][ T7224] usb 5-1: Manufacturer: syz
[  376.623477][ T7224] usb 5-1: SerialNumber: syz
[  376.628926][ T7224] usb 5-1: config 0 descriptor??
[  376.635226][ T7224] hub 5-1:0.0: bad descriptor, ignoring hub
[  376.641292][ T7224] hub 5-1:0.0: probe with driver hub failed with error -5
[  376.649778][ T7224] input: syz syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input20
[  376.863092][T10172] netlink: 192 bytes leftover after parsing attributes in process `syz.4.1185'.
[  377.314704][   T29] kauditd_printk_skb: 50 callbacks suppressed
[  377.314721][   T29] audit: type=1400 audit(1737726856.362:513): avc:  denied  { mount } for  pid=10188 comm="syz.2.1190" name="/" dev="autofs" ino=27081 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  377.532602][ T7224] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  377.845550][ T7224] usb 4-1: config 0 has an invalid interface number: 49 but max is 2
[  378.163621][   T29] audit: type=1400 audit(1737726857.129:514): avc:  denied  { unmount } for  pid=5813 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  378.229031][ T7224] usb 4-1: config 0 has an invalid descriptor of length 52, skipping remainder of the config
[  378.244792][ T7224] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 3
[  378.253800][ T7224] usb 4-1: config 0 has no interface number 0
[  378.260065][ T7224] usb 4-1: too many endpoints for config 0 interface 49 altsetting 56: 52, using maximum allowed: 30
[  378.270954][ T7224] usb 4-1: config 0 interface 49 altsetting 56 has 0 endpoint descriptors, different from the interface descriptor's value: 52
[  378.284310][ T7224] usb 4-1: config 0 interface 49 has no altsetting 0
[  378.291155][ T7224] usb 4-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.14
[  378.300191][ T7224] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  378.330331][ T7224] usb 4-1: config 0 descriptor??
[  379.399654][ T7224] usb 4-1: string descriptor 0 read error: -71
[  379.418789][ T7224] usb 4-1: USB disconnect, device number 33
[  380.006701][T10215] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  380.020183][  T932] usb 5-1: USB disconnect, device number 33
[  380.035888][T10215] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  380.352324][   T29] audit: type=1400 audit(1737726859.233:515): avc:  denied  { execute } for  pid=10216 comm="syz.1.1198" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=27123 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  381.050946][T10233] ------------[ cut here ]------------
[  381.056599][T10233] WARNING: CPU: 0 PID: 10233 at mm/page_alloc.c:4729 __alloc_pages_noprof+0x1f66/0x2470
[  381.066446][T10233] Modules linked in:
[  381.070469][T10233] CPU: 0 UID: 0 PID: 10233 Comm: syz.2.1202 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  381.080947][T10233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  381.091054][T10233] RIP: 0010:__alloc_pages_noprof+0x1f66/0x2470
[  381.097222][T10233] Code: 24 38 41 89 c6 0f b6 c0 44 8b ac 24 84 00 00 00 89 44 24 18 e9 a8 f7 ff ff 90 0f 0b 90 e9 b6 f7 ff ff c6 05 5d 68 5a 0e 01 90 <0f> 0b 90 e9 d9 e4 ff ff 90 0f 0b 90 e9 4e fb ff ff 83 bc 24 80 00
[  381.116865][T10233] RSP: 0018:ffffc90003def908 EFLAGS: 00010246
[  381.123048][T10233] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  381.131088][T10233] RDX: 0000000000000000 RSI: 0000000000000015 RDI: 0000000000040d40
[  381.139140][T10233] RBP: 0000000100008b00 R08: 0000000000000007 R09: 0000000000000000
[  381.147107][T10233] R10: 0000000100008b00 R11: 0000000000000000 R12: 0000000000000015
[  381.155077][T10233] R13: 1ffff920007bdf35 R14: 0000000100008b00 R15: ffffffff83594e7a
[  381.163030][T10233] FS:  00007ff0a47546c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  381.171978][T10233] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  381.178667][T10233] CR2: 0000000020016000 CR3: 000000007fc8a000 CR4: 00000000003526f0
[  381.186660][T10233] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  381.194643][T10233] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  381.202623][T10233] Call Trace:
[  381.205881][T10233]  <TASK>
[  381.208830][T10233]  ? __warn+0xea/0x3c0
[  381.212882][T10233]  ? __alloc_pages_noprof+0x1f66/0x2470
[  381.218422][T10233]  ? report_bug+0x3c0/0x580
[  381.222930][T10233]  ? handle_bug+0x54/0xa0
[  381.227252][T10233]  ? exc_invalid_op+0x17/0x50
[  381.231945][T10233]  ? asm_exc_invalid_op+0x1a/0x20
[  381.237072][T10233]  ? v9fs_fid_get_acl+0x7a/0x120
[  381.242124][T10233]  ? __alloc_pages_noprof+0x1f66/0x2470
[  381.247684][T10233]  ? mark_held_locks+0x9f/0xe0
[  381.252447][T10233]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  381.258148][T10233]  ? kasan_quarantine_put+0x10a/0x240
[  381.263516][T10233]  ? lockdep_hardirqs_on+0x7c/0x110
[  381.268695][T10233]  ? p9_client_clunk+0x12a/0x170
[  381.273655][T10233]  ? p9_client_clunk+0x12f/0x170
[  381.278575][T10233]  ? v9fs_fid_get_acl+0x7a/0x120
[  381.283508][T10233]  ___kmalloc_large_node+0x84/0x1b0
[  381.288686][T10233]  __kmalloc_large_node_noprof+0x1c/0x70
[  381.294320][T10233]  __kmalloc_noprof.cold+0xc/0x61
[  381.299328][T10233]  ? lockdep_init_map_type+0x16d/0x7d0
[  381.304782][T10233]  ? v9fs_cache_inode_get_cookie+0x290/0x3a0
[  381.310749][T10233]  ? p9_req_put+0x1c6/0x250
[  381.315260][T10233]  v9fs_fid_get_acl+0x7a/0x120
[  381.320007][T10233]  v9fs_get_acl+0xee/0x530
[  381.324402][T10233]  v9fs_inode_from_fid_dotl+0x264/0x2f0
[  381.329955][T10233]  v9fs_mount+0x4fe/0xa30
[  381.334265][T10233]  ? __pfx_v9fs_mount+0x10/0x10
[  381.339160][T10233]  ? cap_capable+0xb3/0x250
[  381.343642][T10233]  ? __pfx_v9fs_mount+0x10/0x10
[  381.348568][T10233]  legacy_get_tree+0x109/0x220
[  381.353312][T10233]  vfs_get_tree+0x8b/0x340
[  381.357811][T10233]  path_mount+0x14e6/0x1f10
[  381.362297][T10233]  ? kmem_cache_free+0x152/0x4c0
[  381.367222][T10233]  ? __pfx_path_mount+0x10/0x10
[  381.372069][T10233]  ? putname+0x13c/0x180
[  381.376293][T10233]  __x64_sys_mount+0x28f/0x310
[  381.381063][T10233]  ? __pfx___x64_sys_mount+0x10/0x10
[  381.386329][T10233]  do_syscall_64+0xcd/0x250
[  381.390833][T10233]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.396714][T10233] RIP: 0033:0x7ff0a398cd29
[  381.401152][T10233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  381.420784][T10233] RSP: 002b:00007ff0a4754038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  381.429334][T10233] RAX: ffffffffffffffda RBX: 00007ff0a3ba5fa0 RCX: 00007ff0a398cd29
[  381.437333][T10233] RDX: 0000000020000b80 RSI: 00000000200003c0 RDI: 0000000000000000
[  381.445297][T10233] RBP: 00007ff0a3a0e2a0 R08: 0000000020000580 R09: 0000000000000000
[  381.453251][T10233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  381.461324][T10233] R13: 0000000000000000 R14: 00007ff0a3ba5fa0 R15: 00007ffefd09c9f8
[  381.469482][T10233]  </TASK>
[  381.472501][T10233] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  381.479765][T10233] CPU: 0 UID: 0 PID: 10233 Comm: syz.2.1202 Not tainted 6.13.0-syzkaller-05001-gd0d106a2bd21 #0
[  381.490150][T10233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  381.500185][T10233] Call Trace:
[  381.503440][T10233]  <TASK>
[  381.506347][T10233]  dump_stack_lvl+0x3d/0x1f0
[  381.510914][T10233]  panic+0x71d/0x800
[  381.514789][T10233]  ? __pfx_panic+0x10/0x10
[  381.519183][T10233]  ? show_trace_log_lvl+0x29d/0x3d0
[  381.524378][T10233]  ? __alloc_pages_noprof+0x1f66/0x2470
[  381.529904][T10233]  check_panic_on_warn+0xab/0xb0
[  381.534835][T10233]  __warn+0xf6/0x3c0
[  381.538702][T10233]  ? __alloc_pages_noprof+0x1f66/0x2470
[  381.544223][T10233]  report_bug+0x3c0/0x580
[  381.548527][T10233]  handle_bug+0x54/0xa0
[  381.552658][T10233]  exc_invalid_op+0x17/0x50
[  381.557137][T10233]  asm_exc_invalid_op+0x1a/0x20
[  381.561962][T10233] RIP: 0010:__alloc_pages_noprof+0x1f66/0x2470
[  381.568103][T10233] Code: 24 38 41 89 c6 0f b6 c0 44 8b ac 24 84 00 00 00 89 44 24 18 e9 a8 f7 ff ff 90 0f 0b 90 e9 b6 f7 ff ff c6 05 5d 68 5a 0e 01 90 <0f> 0b 90 e9 d9 e4 ff ff 90 0f 0b 90 e9 4e fb ff ff 83 bc 24 80 00
[  381.587706][T10233] RSP: 0018:ffffc90003def908 EFLAGS: 00010246
[  381.593758][T10233] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  381.601710][T10233] RDX: 0000000000000000 RSI: 0000000000000015 RDI: 0000000000040d40
[  381.609655][T10233] RBP: 0000000100008b00 R08: 0000000000000007 R09: 0000000000000000
[  381.617598][T10233] R10: 0000000100008b00 R11: 0000000000000000 R12: 0000000000000015
[  381.625541][T10233] R13: 1ffff920007bdf35 R14: 0000000100008b00 R15: ffffffff83594e7a
[  381.633489][T10233]  ? v9fs_fid_get_acl+0x7a/0x120
[  381.638419][T10233]  ? mark_held_locks+0x9f/0xe0
[  381.643160][T10233]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  381.648855][T10233]  ? kasan_quarantine_put+0x10a/0x240
[  381.654202][T10233]  ? lockdep_hardirqs_on+0x7c/0x110
[  381.659389][T10233]  ? p9_client_clunk+0x12a/0x170
[  381.664303][T10233]  ? p9_client_clunk+0x12f/0x170
[  381.669217][T10233]  ? v9fs_fid_get_acl+0x7a/0x120
[  381.674147][T10233]  ___kmalloc_large_node+0x84/0x1b0
[  381.679325][T10233]  __kmalloc_large_node_noprof+0x1c/0x70
[  381.684934][T10233]  __kmalloc_noprof.cold+0xc/0x61
[  381.689937][T10233]  ? lockdep_init_map_type+0x16d/0x7d0
[  381.695370][T10233]  ? v9fs_cache_inode_get_cookie+0x290/0x3a0
[  381.701328][T10233]  ? p9_req_put+0x1c6/0x250
[  381.705805][T10233]  v9fs_fid_get_acl+0x7a/0x120
[  381.710555][T10233]  v9fs_get_acl+0xee/0x530
[  381.714951][T10233]  v9fs_inode_from_fid_dotl+0x264/0x2f0
[  381.720473][T10233]  v9fs_mount+0x4fe/0xa30
[  381.724777][T10233]  ? __pfx_v9fs_mount+0x10/0x10
[  381.729598][T10233]  ? cap_capable+0xb3/0x250
[  381.734087][T10233]  ? __pfx_v9fs_mount+0x10/0x10
[  381.738911][T10233]  legacy_get_tree+0x109/0x220
[  381.743652][T10233]  vfs_get_tree+0x8b/0x340
[  381.748038][T10233]  path_mount+0x14e6/0x1f10
[  381.752520][T10233]  ? kmem_cache_free+0x152/0x4c0
[  381.757434][T10233]  ? __pfx_path_mount+0x10/0x10
[  381.762260][T10233]  ? putname+0x13c/0x180
[  381.766479][T10233]  __x64_sys_mount+0x28f/0x310
[  381.771216][T10233]  ? __pfx___x64_sys_mount+0x10/0x10
[  381.776492][T10233]  do_syscall_64+0xcd/0x250
[  381.780970][T10233]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.786842][T10233] RIP: 0033:0x7ff0a398cd29
[  381.791229][T10233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  381.810809][T10233] RSP: 002b:00007ff0a4754038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  381.819194][T10233] RAX: ffffffffffffffda RBX: 00007ff0a3ba5fa0 RCX: 00007ff0a398cd29
[  381.827138][T10233] RDX: 0000000020000b80 RSI: 00000000200003c0 RDI: 0000000000000000
[  381.835079][T10233] RBP: 00007ff0a3a0e2a0 R08: 0000000020000580 R09: 0000000000000000
[  381.843026][T10233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  381.850969][T10233] R13: 0000000000000000 R14: 00007ff0a3ba5fa0 R15: 00007ffefd09c9f8
[  381.858917][T10233]  </TASK>
[  381.862110][T10233] Kernel Offset: disabled
[  381.866471][T10233] Rebooting in 86400 seconds..