last executing test programs:

21m48.24493163s ago: executing program 32 (id=8):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_init_net_socket$rose(0xb, 0x5, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
r2 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TCSETSW2(r2, 0x5453, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x4000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
iopl(0x3)
sendmmsg$unix(r0, &(0x7f0000000000), 0x400000000000041, 0x0)
r3 = syz_pidfd_open(0x0, 0x0)
pidfd_getfd(r3, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001180)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x19)
mbind(&(0x7f000003a000/0x2000)=nil, 0x2000, 0x4000, 0x0, 0x0, 0x2)

21m40.424878023s ago: executing program 33 (id=19):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
openat$random(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, 0x0, 0x0)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
sendmsg$can_j1939(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000c40)='./file0\x00', 0x810c11, &(0x7f0000000040)=ANY=[@ANYRESHEX], 0x2, 0x1e2, &(0x7f00000006c0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
semget(0x3, 0x4, 0x100)

21m19.652604736s ago: executing program 34 (id=45):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_init_net_socket$rose(0xb, 0x5, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x40004)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x4000)
sendmmsg$unix(r0, &(0x7f0000000000), 0x400000000000041, 0x0)
syz_pidfd_open(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x19)

10m10.824019276s ago: executing program 7 (id=1594):

10m10.415769955s ago: executing program 7 (id=1595):
r0 = syz_usb_connect(0x2, 0x24, &(0x7f0000000300)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec0000000109021200010000000009"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000000)={0x84, &(0x7f0000001300)=ANY=[@ANYBLOB="0015f700000004"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, &(0x7f00000006c0)={0x2c, &(0x7f0000000540)=ANY=[@ANYBLOB="00170d"], 0x0, 0x0, 0x0, 0x0})

10m7.240298247s ago: executing program 0 (id=1602):
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000300)={@local, 0x0, 0x0, 0x1}, 0x0)
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000380)=ANY=[@ANYBLOB="12010000000000084e040b1200000000000109022400010000200f090400040103000200092100000001220b0009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

10m6.736412564s ago: executing program 7 (id=1603):
socket$inet6_udp(0xa, 0x2, 0x0)
socket$inet6(0xa, 0x80003, 0xff)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
close(0x3)
socket$inet6(0xa, 0x80003, 0xff)
socket$inet6(0xa, 0x80003, 0xff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000340)={0x0, 0xcc}, 0x8)
socket$netlink(0x10, 0x3, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
r1 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback, 0x7}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000640)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x2, @loopback, 0x3}, 0x1c, 0x0}}], 0x1, 0x3404c8d4)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES16=r0, @ANYRES16=r1], 0x1000f)

10m4.848065341s ago: executing program 7 (id=1607):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, 0x0, &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x24000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000440)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='\x00', 0x89901)

10m4.350446706s ago: executing program 0 (id=1608):
ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, &(0x7f0000000240)={0x0, 0x1, &(0x7f0000000040)=[0x0], 0x0, 0x0, 0x0})
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_int(r0, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)
write$tun(r1, &(0x7f0000000200)=ANY=[@ANYBLOB], 0x4b)

10m3.946665832s ago: executing program 7 (id=1611):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000040)={0x44, &(0x7f00000000c0)=ANY=[@ANYRES16=r0, @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)

10m3.29651254s ago: executing program 7 (id=1612):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f00000000c0)={0x1, 0x0, [{0xa, 0x1, 0x0, 0x0, @adapter={0x80000001, 0x4, 0x3d9e, 0x97, 0x9}}]})

10m1.4235021s ago: executing program 35 (id=1612):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f00000000c0)={0x1, 0x0, [{0xa, 0x1, 0x0, 0x0, @adapter={0x80000001, 0x4, 0x3d9e, 0x97, 0x9}}]})

10m1.407161505s ago: executing program 0 (id=1614):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
ioctl$VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, &(0x7f0000000140)={0x1, 0xa, 0x3, "2e85f85a3b9156e89e82960ad936188f4429f4bf777d1b56926c75b050d4c3f0", 0x39555659})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$int_in(r0, 0x5421, &(0x7f0000000100)=0x100000001)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e20, @dev}, 0x10)
close(r0)

9m58.473949977s ago: executing program 5 (id=1618):
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000300)={@local, 0x0, 0x0, 0x1}, 0x0)
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000380)=ANY=[@ANYBLOB="12010000000000084e040b1200000000000109022400010000200f090400040103000200092100000001220b0009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

9m57.54255222s ago: executing program 0 (id=1621):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x24000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000440)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='\x00', 0x89901)

9m55.904611925s ago: executing program 5 (id=1624):
syz_usb_connect$cdc_ecm(0x3, 0x0, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x163, &(0x7f0000000480)=ANY=[@ANYBLOB="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"]})
syz_emit_vhci(&(0x7f0000000580)=ANY=[@ANYBLOB="040e070e0514"], 0xa)

9m55.847541071s ago: executing program 0 (id=1626):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000740)=ANY=[@ANYBLOB="12010000795d6c08450c3a616dc4010203010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000400)={0x2c, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000000800)={0x84, &(0x7f0000000040)=ANY=[@ANYBLOB="00000104000012"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f00000005c0)={0x2c, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)

9m54.974429058s ago: executing program 0 (id=1627):
socket$inet6_udp(0xa, 0x2, 0x0)
socket$inet6(0xa, 0x80003, 0xff)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
close(0x3)
socket$inet6(0xa, 0x80003, 0xff)
socket$inet6(0xa, 0x80003, 0xff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000340)={0x0, 0xcc}, 0x8)
socket$netlink(0x10, 0x3, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
r1 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback, 0x7}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000640)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x2, @loopback, 0x3}, 0x1c, &(0x7f0000000500)}}], 0x1, 0x3404c8d4)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES16=r0, @ANYRES16=r1], 0x1000f)

9m52.026385373s ago: executing program 36 (id=1627):
socket$inet6_udp(0xa, 0x2, 0x0)
socket$inet6(0xa, 0x80003, 0xff)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
close(0x3)
socket$inet6(0xa, 0x80003, 0xff)
socket$inet6(0xa, 0x80003, 0xff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000340)={0x0, 0xcc}, 0x8)
socket$netlink(0x10, 0x3, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
r1 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback, 0x7}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000640)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x2, @loopback, 0x3}, 0x1c, &(0x7f0000000500)}}], 0x1, 0x3404c8d4)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES16=r0, @ANYRES16=r1], 0x1000f)

9m51.976572832s ago: executing program 5 (id=1630):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
ioctl$VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, &(0x7f0000000140)={0x1, 0xa, 0x3, "2e85f85a3b9156e89e82960ad936188f4429f4bf777d1b56926c75b050d4c3f0", 0x39555659})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$int_in(r0, 0x5421, &(0x7f0000000100)=0x100000001)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e20, @dev}, 0x10)
close(r0)

9m47.202325198s ago: executing program 5 (id=1635):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x24000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000440)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='\x00', 0x89901)

9m45.456574138s ago: executing program 5 (id=1637):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000e4c5ad101d0620c0159c01"], 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000040)={0x44, &(0x7f00000000c0)=ANY=[@ANYRES16=r0, @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)

9m44.495670644s ago: executing program 5 (id=1639):
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0xc0040, 0x0)
r1 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000050cb5340450c10108e492940a80909021b00090000000009040002010035040009058dff86"], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x10000)
syz_usb_disconnect(r1)
close_range(r0, 0xffffffffffffffff, 0x0)

9m44.396051834s ago: executing program 6 (id=1640):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010002000000406d0432c500000000000109022400010000003109040bbe010300000009210000000122050009058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000002c0)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)

9m39.907641484s ago: executing program 37 (id=1639):
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0xc0040, 0x0)
r1 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000050cb5340450c10108e492940a80909021b00090000000009040002010035040009058dff86"], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x10000)
syz_usb_disconnect(r1)
close_range(r0, 0xffffffffffffffff, 0x0)

9m39.822988796s ago: executing program 6 (id=1642):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000003c0)={0x0, &(0x7f0000000300), &(0x7f0000000000)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000640)=[r1, 0x0], 0x2})
ioctl$DRM_IOCTL_MODE_LIST_LESSEES(r0, 0xc01064c7, &(0x7f00000002c0)={0x0, 0x0, 0x0})

9m38.820026964s ago: executing program 6 (id=1644):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x4d, 0x6, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x7, 0x3, 0x0, 0x5, 0x24, 0x1, 0x7, 0x3c5b, 0x1, 0x24, 0x6, 0x5, 0x5, 0xffffffff, 0xe661, 0x4, 0x7, 0x5, 0x8, 0x4c74, 0x80000000, 0x40000, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x407, 0x5, 0x3e, 0x8f, 0x4006, 0x6, 0x0, 0x0, 0x4, 0x8, 0x400, 0x80, 0x0, 0x5, 0x7, 0x8, 0x4, 0xfffffffe, 0x40], [0x10000007, 0xf0000000, 0x8000012f, 0x8004, 0x5, 0x6, 0x129432e6, 0xc8, 0xf9, 0xe, 0x2bf, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0xd, 0xea4, 0xffffffff, 0x4, 0x7, 0x7fff, 0x5a7c, 0x420, 0x401, 0x6, 0x0, 0xff, 0x1, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x9, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0xfffffffe, 0x7, 0x9, 0x5, 0x3, 0x9, 0x1, 0x3, 0x6c0, 0xbc45, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x8004, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x0, 0x7fff, 0x0, 0x5, 0x8, 0x4, 0x9, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x10000, 0x3, 0x5, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x1, 0x800003, 0x200, 0x80, 0x3, 0x6, 0x2950bfaf, 0xffe, 0xa2, 0x7, 0x800a9, 0x5, 0x9, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xfffffffa, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce7, 0x9, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x4, 0x7fff, 0xffff, 0x2000a620, 0x2, 0x5, 0x1, 0x2, 0x5, 0xe7, 0x1, 0x16, 0xffffffff, 0x80000003, 0x5, 0x4, 0xc8, 0x9, 0xfffff000, 0x10000, 0x3, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x8, 0x6, 0x226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1e, 0x20000d7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
syz_open_dev$vim2m(0x0, 0x7fffffff, 0x2)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

9m38.032290409s ago: executing program 6 (id=1645):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x24000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000440)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='\x00', 0x89901)

9m35.820381554s ago: executing program 6 (id=1647):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000e4c5ad101d0620c0159c01"], 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000040)={0x44, &(0x7f00000000c0)=ANY=[@ANYRES16=r0, @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)

9m34.887097285s ago: executing program 6 (id=1648):
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000083667d1040206402d14e0102030109021b000100000000090400000190f19c00090584"], 0x0)

9m30.998249551s ago: executing program 38 (id=1648):
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000083667d1040206402d14e0102030109021b000100000000090400000190f19c00090584"], 0x0)

9m30.937082315s ago: executing program 4 (id=1651):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000003c0)={0x0, &(0x7f0000000300), &(0x7f0000000000)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000640)=[r1, 0x0], 0x2})
ioctl$DRM_IOCTL_MODE_LIST_LESSEES(r0, 0xc01064c7, &(0x7f00000002c0)={0x0, 0x0, 0x0})

9m30.492925305s ago: executing program 4 (id=1652):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x4d, 0x6, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x7, 0x3, 0x0, 0x5, 0x24, 0x1, 0x7, 0x3c5b, 0x1, 0x24, 0x6, 0x5, 0x5, 0xffffffff, 0xe661, 0x4, 0x7, 0x5, 0x8, 0x4c74, 0x80000000, 0x40000, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x407, 0x5, 0x3e, 0x8f, 0x4006, 0x6, 0x0, 0x0, 0x4, 0x8, 0x400, 0x80, 0x0, 0x5, 0x7, 0x8, 0x4, 0xfffffffe, 0x40], [0x10000007, 0xf0000000, 0x8000012f, 0x8004, 0x5, 0x6, 0x129432e6, 0xc8, 0xf9, 0xe, 0x2bf, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0xd, 0xea4, 0xffffffff, 0x4, 0x7, 0x7fff, 0x5a7c, 0x420, 0x401, 0x6, 0x0, 0xff, 0x1, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x9, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0xfffffffe, 0x7, 0x9, 0x5, 0x3, 0x9, 0x1, 0x3, 0x6c0, 0xbc45, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x8004, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x0, 0x7fff, 0x0, 0x5, 0x8, 0x4, 0x9, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x10000, 0x3, 0x5, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x1, 0x800003, 0x200, 0x80, 0x3, 0x6, 0x2950bfaf, 0xffe, 0xa2, 0x7, 0x800a9, 0x5, 0x9, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xfffffffa, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce7, 0x9, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x4, 0x7fff, 0xffff, 0x2000a620, 0x2, 0x5, 0x1, 0x2, 0x5, 0xe7, 0x1, 0x16, 0xffffffff, 0x80000003, 0x5, 0x4, 0xc8, 0x9, 0xfffff000, 0x10000, 0x3, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x8, 0x6, 0x226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1e, 0x20000d7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
syz_open_dev$vim2m(0x0, 0x7fffffff, 0x2)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

9m29.659749702s ago: executing program 4 (id=1653):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)={{0x14}, [], {0x14}}, 0x28}}, 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(0xffffffffffffffff, 0x114, 0x7, 0x0, 0x0)
ioctl$sock_ifreq(0xffffffffffffffff, 0x8910, 0x0)
write$binfmt_aout(r0, &(0x7f0000000380)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x81, 0x83, "00000000000000000200ffff00"})
syz_open_pts(r0, 0x0)
r1 = syz_open_pts(r0, 0x88100)
r2 = dup3(r1, r0, 0x0)
read$FUSE(r2, &(0x7f0000001d00)={0x2020}, 0x2020)

9m28.205338392s ago: executing program 4 (id=1654):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$tmpfs(0x0, 0x0, 0x0, 0x24000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000440)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='\x00', 0x89901)

9m27.136931891s ago: executing program 4 (id=1655):
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
shutdown(r0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

9m26.324027804s ago: executing program 4 (id=1656):
r0 = syz_usb_connect$hid(0x5, 0x0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x7, {[@local=@item_4={0x3, 0x2, 0x80fe56492b58452a, "c9a449c7"}, @global=@item_012={0x1, 0x1, 0x2, 'O'}]}}, 0x0}, 0x0)

9m23.283093902s ago: executing program 39 (id=1656):
r0 = syz_usb_connect$hid(0x5, 0x0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x7, {[@local=@item_4={0x3, 0x2, 0x80fe56492b58452a, "c9a449c7"}, @global=@item_012={0x1, 0x1, 0x2, 'O'}]}}, 0x0}, 0x0)

8.924349868s ago: executing program 1 (id=3368):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c0000001000010700000000000000000a0000400600"], 0x1c}}, 0x20000080)

8.130843925s ago: executing program 1 (id=3372):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, 0x0)
write$tun(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="034886dd010000000000140000006000000000280600fe88a43de1a400000000000000027d01ff020000000000000000000000000001000088bed2868a1610e8f515ab"], 0xfdef)

7.231875584s ago: executing program 1 (id=3375):
r0 = syz_open_dev$media(&(0x7f0000000080), 0x34, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r0, 0x80047c05, &(0x7f00000002c0))
ioctl$vim2m_VIDIOC_DQBUF(0xffffffffffffffff, 0xc0585611, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r0, 0x80047c05, &(0x7f0000000100)=<r5=>0xffffffffffffffff)
ioctl$MEDIA_REQUEST_IOC_QUEUE(r5, 0x7c80, 0x0)

6.109865619s ago: executing program 3 (id=3380):
r0 = socket$netlink(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1e000000000000000500"], 0x50)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, 0x0, 0x0)
setsockopt$sock_int(r1, 0x1, 0x8, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x4, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)
syz_emit_ethernet(0x82, &(0x7f0000000340)=ANY=[@ANYBLOB="ffffffff14001804b45adbde0800450000740000000000019078ac1effffff07000000009078e00000e04600000000000000001100000000000000000004830300070300443c0003e00000890000000000000010000004bb1a83d20000ac1414aa00000000ac1414bb000000000000000000000000ac000000000022479569030ca71f2a03ca624152a1db1353d74ae57648909f3c508471ec2464"], 0x0)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x4000841)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x10, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x1, 0x18}]}, &(0x7f0000000080)='GPL\x00'}, 0x90)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$SO_TIMESTAMP(r6, 0x1, 0x3f, &(0x7f0000000040)=0x7f, 0x4)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r7, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x67)
setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f00000005c0)='syz_tun\x00', 0x10)
socket$inet(0x2, 0x2, 0x0)
sendto$inet(r7, 0x0, 0x0, 0x20000844, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x3a, &(0x7f00000000c0)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x64, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x6, 0x10, 0x0, 0x0, 0x0, {[@eol]}}}}}}}, 0x0)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r3, 0x84, 0x79, &(0x7f0000000080)={r5, 0x4000, 0x7}, 0x8)
socket(0x1e, 0x2, 0x0)
r8 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x14, r8, 0x1, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4000040}, 0x4008040)

5.759625992s ago: executing program 8 (id=3382):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c0000001000010700000000000000000a0000400600"], 0x1c}}, 0x20000080)

5.16879512s ago: executing program 3 (id=3385):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, 0x0, 0xfdef)

4.98900243s ago: executing program 8 (id=3386):
r0 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'virt_wifi0\x00', <r1=>0x0})
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x16c}}, 0x24)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000021000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000240)={r3, 0xffffffffffffffff, 0x500}, 0x57)
syz_emit_ethernet(0x56, &(0x7f0000004180)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x20, 0x6, 0x0, @local, @local, {[], {{0x8000, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0x2, 0x100, 0x0, 0x0, {[@sack_perm={0x4, 0x2}, @exp_fastopen={0xfe, 0xa, 0xf989, "f16d73c0e798"}]}}}}}}}}, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote, r1}, 0x14)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)={0x58, 0x0, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffbfff9}}}]}}]}, 0x58}, 0x1, 0x1000000, 0x0, 0x24004000}, 0x24040840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x160, 0x65, 0x2, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x1}, {0x0, 0xb}}, [@TCA_CHAIN={0x8, 0xb, 0x6}, @TCA_RATE={0x6, 0x5, {0x8, 0x81}}, @filter_kind_options=@f_bpf={{0x8}, {0x124, 0x2, [@TCA_BPF_FD={0x8}, @TCA_BPF_NAME={0xc, 0x7, './file0\x00'}, @TCA_BPF_ACT={0x104, 0x1, [@m_simple={0xcc, 0x1e, 0x0, 0x0, {{0xb}, {0xa0, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0x68f6, 0x6, 0x2, 0x8, 0x9}}, @TCA_DEF_DATA={0x9, 0x3, '/-@@\x00'}, @TCA_DEF_DATA={0x3d, 0x3, '\x00\x94\xe4\xe2X\xce\xbar\x069\xf3\xff\x8d\x94\x1ao\xa1,\xa4\xc1\xcc\x1e\x9aS>\a\xd2R\x85\v\x80\xea\x1e\xc8W\xea\x99\xacos\x80\x1d\x8b\xd9`Ewb\xa5&iu@\xfd\x8c\xde\x00'}, @TCA_DEF_DATA={0x1e, 0x3, 'cpuacct.usage_percpu_user\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x0, 0x4a66, 0x4, 0x3, 0x9}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1}}}}, @m_connmark={0x34, 0x15, 0x0, 0x0, {{0xd}, {0x4}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}, @TCA_BPF_FLAGS_GEN={0x8}]}}]}, 0x160}, 0x1, 0x0, 0x0, 0x81}, 0x20000080)
r5 = socket(0x10, 0x803, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000340)={0x0, 0x6}, 0x8)
sendto(r5, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r5, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_COMPAT_GET(r6, &(0x7f0000002840)={0x0, 0x0, &(0x7f0000002800)={&(0x7f0000002780)={0x34, 0x0, 0xb, 0x301, 0x0, 0x0, {0x2, 0x0, 0xa}, [@NFTA_COMPAT_REV={0x8}, @NFTA_COMPAT_TYPE={0x8}, @NFTA_COMPAT_NAME={0xd, 0x1, 'rpfilter\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x4040010)
sendmsg$nl_route_sched(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newtfilter={0x24, 0x11, 0x1, 0x70bd28, 0x2000, {0x0, 0x0, 0x74, r1, {0xfffd, 0x1}, {0x1, 0xfff1}, {0xfff2, 0xd}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x30004804}, 0x4840)
close(0x3)

4.443929604s ago: executing program 2 (id=3387):
socket$kcm(0x10, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2d, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000200)='cpuhp_multi_enter\x00', r0, 0x0, 0x400000000003}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(0x3)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x1004, 0x9}, 0x50)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000002c0)={'batadv_slave_1\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="380000001800010000000000000000000a000000000000000000000008000400", @ANYRES32=r3, @ANYBLOB="06001500070000000c001680080001", @ANYRES64=r2], 0x38}}, 0x10)

4.295818109s ago: executing program 9 (id=3388):
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_KEY(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={0x0}}, 0x0)

4.21120252s ago: executing program 3 (id=3389):
r0 = syz_open_dev$video(&(0x7f0000000000), 0x75, 0x0)
ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r0, 0xc034564b, &(0x7f0000000080)={0x0, 0x35315258, 0xf00, 0x870, 0x0, @stepwise={{0x3bd, 0x7}, {0x4006, 0x38a}, {0x16e0, 0x5}}})

3.726572609s ago: executing program 2 (id=3390):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000280)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000002c0)=ANY=[@ANYBLOB="98000000", @ANYRES16=r2, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r3], 0x98}}, 0x0)

3.656723704s ago: executing program 8 (id=3391):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4820)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), r0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000000), r0)
syz_genetlink_get_family_id$tipc(&(0x7f0000001780), r0)
recvmmsg(r0, &(0x7f00000086c0)=[{{0x0, 0x0, 0x0}, 0x101}, {{0x0, 0x0, &(0x7f0000001700)=[{&(0x7f0000001640)=""/153, 0x99}, {&(0x7f0000001c40)=""/4096, 0x1000}, {&(0x7f0000000340)=""/196, 0xc4}, {0x0}], 0x4}, 0x7}, {{0x0, 0x0, 0x0}, 0x5}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000004c40)=""/4098, 0x1002}, {&(0x7f00000018c0)=""/150, 0x96}, {&(0x7f0000000540)=""/216, 0xd8}, {&(0x7f0000000100)=""/110, 0x6e}, {&(0x7f0000003c40)=""/4092, 0xffc}, {&(0x7f0000001840)=""/96, 0x60}, {&(0x7f0000000640)=""/4096, 0x1000}], 0x7}, 0x80000000}], 0x4, 0x40008062, 0x0)

3.507855715s ago: executing program 9 (id=3392):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x0, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000000000000850000006a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
r3 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r2}, 0x8)
close(r3)
socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

3.499965873s ago: executing program 3 (id=3393):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001700)=ANY=[@ANYBLOB="180000002400110300"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
recvmmsg(r0, &(0x7f00000015c0)=[{{0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000000540)=""/4090, 0xffa}], 0x1}, 0xacd2}], 0x1, 0x10000, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r1, &(0x7f00000005c0)=ANY=[@ANYBLOB="020086dd0300000000003012000060ec970012301100fe8000000000000000000000000000aaff020000000000000000000000000001"], 0xfdef)

2.801929468s ago: executing program 2 (id=3394):
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xa, 0x6, &(0x7f0000000140)=ANY=[@ANYBLOB="05000000000000006b110800000000008510000002000000850000000000000095000000000000009500a50500000000389230606378b65aa92ac1ac2a77cdc867e41e3acbda"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="6000000002060103000000000000000000000004050001000700000013000300686173683a6e65742c696661636500000900020073797a30000000400500040000000000050005000a00000014000780050015000a00000008001240"], 0x60}}, 0x0)

2.695326596s ago: executing program 9 (id=3395):
r0 = socket$netlink(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1e000000000000000500"], 0x50)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, 0x0, 0x0)
setsockopt$sock_int(r1, 0x1, 0x8, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x4, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)
syz_emit_ethernet(0x82, &(0x7f0000000340)=ANY=[@ANYBLOB="ffffffff14001804b45adbde0800450000740000000000019078ac1effffff07000000009078e00000e04600000000000000001100000000000000000004830300070300443c0003e00000890000000000000010000004bb1a83d20000ac1414aa00000000ac1414bb000000000000000000000000ac000000000022479569030ca71f2a03ca624152a1db1353d74ae57648909f3c508471ec2464"], 0x0)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x4000841)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x10, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x1, 0x18}]}, &(0x7f0000000080)='GPL\x00'}, 0x90)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$SO_TIMESTAMP(r6, 0x1, 0x3f, &(0x7f0000000040)=0x7f, 0x4)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r7, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x67)
setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f00000005c0)='syz_tun\x00', 0x10)
socket$inet(0x2, 0x2, 0x0)
sendto$inet(r7, 0x0, 0x0, 0x20000844, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x3a, &(0x7f00000000c0)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x64, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x6, 0x10, 0x0, 0x0, 0x0, {[@eol]}}}}}}}, 0x0)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r3, 0x84, 0x79, &(0x7f0000000080)={r5, 0x4000, 0x7}, 0x8)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000280)={'syzkaller1\x00', &(0x7f0000000740)=@ethtool_drvinfo={0x3, "7c15da7afb0844c8c0b4550d8540cc1fed5e3219101f255f42ceffefc9c2e844", "451ee86e5fbf7f1ec56f8b43ad470b7fc6be8a334e9f24f671ff96571b8ad532", "17c800428089ef455f44307329979d415d48e8763b44a17b3e94f5aa5d68830c", "ac2092f10c174dd065f076da7c5b5b1b053802338cce886df56abf4b08fd9145", "5b1113b90e1a71ab4612d0c40281be217ead5143e6a51f72677e3fdfe7fd1fb1", "6d420ca75b5ec8fcb8e10b15", 0x4, 0x4, 0xf37, 0x10000}})
r8 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x14, r8, 0x1, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4000040}, 0x4008040)

2.628242349s ago: executing program 8 (id=3396):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c0000001000010700000000000000000a0000400600"], 0x1c}}, 0x20000080)

2.551393832s ago: executing program 1 (id=3397):
socket$alg(0x26, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0x4)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000001ffffeb00000000eb658e0d850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
socket$kcm(0x10, 0x3, 0x10)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)

2.440591822s ago: executing program 3 (id=3398):
r0 = socket$netlink(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1e000000000000000500"], 0x50)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, 0x0, 0x0)
setsockopt$sock_int(r1, 0x1, 0x8, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x4, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)
syz_emit_ethernet(0x82, &(0x7f0000000340)=ANY=[@ANYBLOB="ffffffff14001804b45adbde0800450000740000000000019078ac1effffff07000000009078e00000e04600000000000000001100000000000000000004830300070300443c0003e00000890000000000000010000004bb1a83d20000ac1414aa00000000ac1414bb000000000000000000000000ac000000000022479569030ca71f2a03ca624152a1db1353d74ae57648909f3c508471ec2464"], 0x0)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x4000841)
socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x10, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x1, 0x18}]}, &(0x7f0000000080)='GPL\x00'}, 0x90)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$SO_TIMESTAMP(r4, 0x1, 0x3f, &(0x7f0000000040)=0x7f, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x67)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f00000005c0)='syz_tun\x00', 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x20000844, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x3a, &(0x7f00000000c0)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x64, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x6, 0x10, 0x0, 0x0, 0x0, {[@eol]}}}}}}}, 0x0)

2.05113431s ago: executing program 2 (id=3399):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, 0x0, 0xfdef)

1.953652743s ago: executing program 9 (id=3400):
socket$kcm(0x10, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2d, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000200)='cpuhp_multi_enter\x00', r0, 0x0, 0x400000000003}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(0x3)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x1004, 0x9}, 0x50)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000002c0)={'batadv_slave_1\x00'})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="380000001800010000000000000000000a000000000000000000000008000400", @ANYBLOB="06001500070000000c00168008000100", @ANYRES64=r2], 0x38}}, 0x10)

1.741218933s ago: executing program 8 (id=3401):
r0 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'virt_wifi0\x00', <r1=>0x0})
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x16c}}, 0x24)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000021000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000240)={r3, 0xffffffffffffffff, 0x500}, 0x57)
syz_emit_ethernet(0x56, &(0x7f0000004180)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x20, 0x6, 0x0, @local, @local, {[], {{0x8000, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0x2, 0x100, 0x0, 0x0, {[@sack_perm={0x4, 0x2}, @exp_fastopen={0xfe, 0xa, 0xf989, "f16d73c0e798"}]}}}}}}}}, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote, r1}, 0x14)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)={0x58, 0x0, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffbfff9}}}]}}]}, 0x58}, 0x1, 0x1000000, 0x0, 0x24004000}, 0x24040840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x160, 0x65, 0x2, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x1}, {0x0, 0xb}}, [@TCA_CHAIN={0x8, 0xb, 0x6}, @TCA_RATE={0x6, 0x5, {0x8, 0x81}}, @filter_kind_options=@f_bpf={{0x8}, {0x124, 0x2, [@TCA_BPF_FD={0x8}, @TCA_BPF_NAME={0xc, 0x7, './file0\x00'}, @TCA_BPF_ACT={0x104, 0x1, [@m_simple={0xcc, 0x1e, 0x0, 0x0, {{0xb}, {0xa0, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0x68f6, 0x6, 0x2, 0x8, 0x9}}, @TCA_DEF_DATA={0x9, 0x3, '/-@@\x00'}, @TCA_DEF_DATA={0x3d, 0x3, '\x00\x94\xe4\xe2X\xce\xbar\x069\xf3\xff\x8d\x94\x1ao\xa1,\xa4\xc1\xcc\x1e\x9aS>\a\xd2R\x85\v\x80\xea\x1e\xc8W\xea\x99\xacos\x80\x1d\x8b\xd9`Ewb\xa5&iu@\xfd\x8c\xde\x00'}, @TCA_DEF_DATA={0x1e, 0x3, 'cpuacct.usage_percpu_user\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x0, 0x4a66, 0x4, 0x3, 0x9}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1}}}}, @m_connmark={0x34, 0x15, 0x0, 0x0, {{0xd}, {0x4}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}, @TCA_BPF_FLAGS_GEN={0x8}]}}]}, 0x160}, 0x1, 0x0, 0x0, 0x81}, 0x20000080)
r5 = socket(0x10, 0x803, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000340)={0x0, 0x6}, 0x8)
sendto(r5, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r5, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_COMPAT_GET(r6, &(0x7f0000002840)={0x0, 0x0, &(0x7f0000002800)={&(0x7f0000002780)={0x34, 0x0, 0xb, 0x301, 0x0, 0x0, {0x2, 0x0, 0xa}, [@NFTA_COMPAT_REV={0x8}, @NFTA_COMPAT_TYPE={0x8}, @NFTA_COMPAT_NAME={0xd, 0x1, 'rpfilter\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x4040010)
sendmsg$nl_route_sched(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newtfilter={0x24, 0x11, 0x1, 0x70bd28, 0x2000, {0x0, 0x0, 0x74, r1, {0xfffd, 0x1}, {0x1, 0xfff1}, {0xfff2, 0xd}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x30004804}, 0x4840)
close(0x3)

1.663967938s ago: executing program 1 (id=3402):
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_KEY(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={0x0}}, 0x0)

1.603789692s ago: executing program 3 (id=3403):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x3e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$vim2m(&(0x7f00000001c0), 0x7fffffff, 0x2)
r3 = socket(0x10, 0x2, 0x81)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f00000000c0)={'ip6tnl0\x00', &(0x7f00000009c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @mcast2, @empty}})
r4 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r4, 0xc0205648, &(0x7f00000001c0)={0x0, 0x7, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0xf0f041, 0x0, '\x00', @p_u8=&(0x7f0000000100)=0x4}})
openat$random(0xffffffffffffff9c, 0x0, 0x400, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000400)="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", 0x3a5, 0x0, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r7=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=ANY=[@ANYBLOB="7000000010000304000080000000000000007400", @ANYRES32=r7, @ANYBLOB="0000000003120100500012800b000100627269646765000040000280080005000100000006002700000000000800010015000800050025000000000008000400000000000c002e00"], 0x70}, 0x1, 0x0, 0x0, 0x800}, 0x40)
r8 = syz_init_net_socket$ax25(0x3, 0x3, 0xce)
setsockopt$ax25_int(r8, 0x101, 0x9, &(0x7f0000000700)=0x9, 0x4)
r9 = socket$inet6(0xa, 0x2, 0x3a)
r10 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
preadv(r10, &(0x7f0000000680)=[{&(0x7f0000001a00)=""/4096, 0x1000}], 0x1, 0x300000, 0x6)
setsockopt$inet6_int(r9, 0x29, 0x4e, 0x0, 0x0)

1.030587935s ago: executing program 9 (id=3404):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000280)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000002c0)=ANY=[@ANYBLOB="98000000", @ANYRES16=r2, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r3], 0x98}}, 0x0)

1.027994328s ago: executing program 2 (id=3405):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x0, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000000000000850000006a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
r3 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r2}, 0x8)
close(r3)
socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

939.701384ms ago: executing program 1 (id=3406):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4820)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), r0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000000), r0)
syz_genetlink_get_family_id$tipc(&(0x7f0000001780), r0)
recvmmsg(r0, &(0x7f00000086c0)=[{{0x0, 0x0, 0x0}, 0x101}, {{0x0, 0x0, &(0x7f0000001700)=[{&(0x7f0000001640)=""/153, 0x99}, {&(0x7f0000001c40)=""/4096, 0x1000}, {&(0x7f0000000340)=""/196, 0xc4}, {0x0}], 0x4}, 0x7}, {{0x0, 0x0, 0x0}, 0x5}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000004c40)=""/4098, 0x1002}, {&(0x7f00000018c0)=""/150, 0x96}, {&(0x7f0000000540)=""/216, 0xd8}, {&(0x7f0000000100)=""/110, 0x6e}, {&(0x7f0000003c40)=""/4092, 0xffc}, {&(0x7f0000001840)=""/96, 0x60}, {&(0x7f0000000640)=""/4096, 0x1000}], 0x7}, 0x80000000}], 0x4, 0x40008062, 0x0)

99.974814ms ago: executing program 9 (id=3407):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000003c0), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000340)={'wpan1\x00', <r3=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000600)={0x48, r1, 0x1, 0x70bd29, 0x0, {}, [@NL802154_ATTR_SEC_DEVKEY={0x2c, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_ID={0x14, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0202}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x400}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x48}, 0x1, 0x0, 0x0, 0x24000000}, 0x50)

96.164831ms ago: executing program 2 (id=3408):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001700)=ANY=[@ANYBLOB="180000002400110300"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
recvmmsg(r0, &(0x7f00000015c0)=[{{0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000000540)=""/4090, 0xffa}], 0x1}, 0xacd2}], 0x1, 0x10000, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r1, &(0x7f00000005c0)=ANY=[@ANYBLOB="020086dd0300000000003012000060ec970012301100fe8000000000000000000000000000aaff020000000000000000000000000001"], 0xfdef)

0s ago: executing program 8 (id=3409):
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xa, 0x6, &(0x7f0000000140)=ANY=[@ANYBLOB="05000000000000006b110800000000008510000002000000850000000000000095000000000000009500a50500000000389230606378b65aa92ac1ac2a77cdc867e41e3acbda"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="6000000002060103000000000000000000000004050001000700000013000300686173683a6e65742c696661636500000900020073797a30000000400500040000000000050005000a00000014000780050015000a00000008001240"], 0x60}}, 0x0)

kernel console output (not intermixed with test programs):

1 - 0
[ 1304.279997][   T42] usb 3-1: USB disconnect, device number 40
[ 1304.322520][T13450] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1304.780540][T13450] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1304.815945][T13450] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1304.860319][T13450] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1304.896540][T13450] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1307.133228][T13489] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2190'.
[ 1307.959724][T13499] fuse: Bad value for 'fd'
[ 1308.114330][T13502] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1308.381401][T13502] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1308.755355][T13502] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1309.071779][T13502] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1309.416625][T13523] warning: `syz.1.2202' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[ 1309.518758][T13502] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1309.553647][T13502] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1309.600175][T13502] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1309.637754][T13502] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1311.931498][T13550] fuse: Bad value for 'fd'
[ 1313.301166][T13570] netdevsim netdevsim8 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1313.433168][T13570] netdevsim netdevsim8 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1313.643908][T13570] netdevsim netdevsim8 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1313.851984][T13570] netdevsim netdevsim8 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1314.285547][T13570] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1314.321326][T13570] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1314.356794][T13570] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1314.398991][T13570] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1314.915634][T13594] fuse: Bad value for 'fd'
[ 1316.884442][T13619] team0: Device gtp0 is of different type
[ 1318.976232][T13638] netdevsim netdevsim8 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1319.071853][T13645] fuse: Bad value for 'fd'
[ 1319.211492][T13638] netdevsim netdevsim8 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1319.591500][T13638] netdevsim netdevsim8 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1319.810737][T13638] netdevsim netdevsim8 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1320.174743][T13638] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1320.220335][T13638] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1320.257788][T13638] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1320.293725][T13638] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1320.306298][ T1896] usb 10-1: new high-speed USB device number 26 using dummy_hcd
[ 1320.493484][ T1896] usb 10-1: Using ep0 maxpacket: 32
[ 1320.532342][ T1896] usb 10-1: config index 0 descriptor too short (expected 156, got 27)
[ 1320.541531][ T1896] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1320.552576][ T1896] usb 10-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1320.564524][ T1896] usb 10-1: config 0 interface 0 altsetting 191 has 0 endpoint descriptors, different from the interface descriptor's value: 144
[ 1320.578633][ T1896] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1320.678405][ T1896] usb 10-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1320.690257][ T1896] usb 10-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1320.699930][ T1896] usb 10-1: Product: syz
[ 1320.705405][ T1896] usb 10-1: Manufacturer: syz
[ 1320.710507][ T1896] usb 10-1: SerialNumber: syz
[ 1320.838123][ T1896] usb 10-1: config 0 descriptor??
[ 1320.901768][ T1896] ldusb 10-1:0.0: Interrupt in endpoint not found
[ 1322.900941][ T1604] usb 10-1: USB disconnect, device number 26
[ 1324.105547][T13688] fuse: Bad value for 'fd'
[ 1327.047873][ T1604] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[ 1327.271737][ T1604] usb 3-1: Using ep0 maxpacket: 32
[ 1327.334687][ T1604] usb 3-1: config index 0 descriptor too short (expected 156, got 27)
[ 1327.343602][ T1604] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1327.354128][ T1604] usb 3-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1327.366155][ T1604] usb 3-1: config 0 interface 0 altsetting 191 has 0 endpoint descriptors, different from the interface descriptor's value: 144
[ 1327.385693][ T1604] usb 3-1: config 0 interface 0 has no altsetting 0
[ 1327.635924][ T1604] usb 3-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1327.646054][ T1604] usb 3-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1327.655163][ T1604] usb 3-1: Product: syz
[ 1327.659617][ T1604] usb 3-1: Manufacturer: syz
[ 1327.664739][ T1604] usb 3-1: SerialNumber: syz
[ 1327.716859][T13738] fuse: Invalid rootmode
[ 1327.838212][ T1604] usb 3-1: config 0 descriptor??
[ 1327.923134][ T1604] ldusb 3-1:0.0: Interrupt in endpoint not found
[ 1329.436698][T13746] netlink: 'syz.9.2266': attribute type 1 has an invalid length.
[ 1329.785744][ T1604] usb 3-1: USB disconnect, device number 41
[ 1330.263226][ T5851] usb 9-1: new high-speed USB device number 42 using dummy_hcd
[ 1330.451273][ T5851] usb 9-1: device descriptor read/64, error -71
[ 1330.704814][ T5851] usb 9-1: new high-speed USB device number 43 using dummy_hcd
[ 1330.916131][ T5851] usb 9-1: device descriptor read/64, error -71
[ 1331.036741][ T5851] usb usb9-port1: attempt power cycle
[ 1331.404153][ T5851] usb 9-1: new high-speed USB device number 44 using dummy_hcd
[ 1331.435195][T13775] fuse: Invalid rootmode
[ 1331.457936][ T5851] usb 9-1: device descriptor read/8, error -71
[ 1331.747292][ T5851] usb 9-1: new high-speed USB device number 45 using dummy_hcd
[ 1331.821905][ T5851] usb 9-1: device descriptor read/8, error -71
[ 1331.981511][ T5851] usb usb9-port1: unable to enumerate USB device
[ 1332.694229][ T1604] usb 3-1: new high-speed USB device number 42 using dummy_hcd
[ 1332.741111][T13792] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1332.963606][ T1604] usb 3-1: Using ep0 maxpacket: 32
[ 1332.996945][T13784] kvm: pic: single mode not supported
[ 1332.997475][T13784] kvm: pic: non byte read
[ 1333.026928][ T1604] usb 3-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[ 1333.037105][ T1604] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1333.174403][ T1604] usb 3-1: config 0 descriptor??
[ 1333.263460][ T1604] gspca_main: sunplus-2.14.0 probing 041e:400b
[ 1333.950153][ T1604] gspca_sunplus: reg_r err -32
[ 1333.955829][ T1604] sunplus 3-1:0.0: probe with driver sunplus failed with error -32
[ 1334.264451][ T1604] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[ 1334.427875][T13803] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2283'.
[ 1334.470367][ T1604] usb 2-1: Using ep0 maxpacket: 8
[ 1334.519205][ T1604] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[ 1334.528117][ T1604] usb 2-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[ 1334.538986][ T1604] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1334.553470][ T1604] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1335.433475][ T1604] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[ 1335.610865][ T1896] usb 3-1: USB disconnect, device number 42
[ 1335.643890][ T1604] usb 4-1: Using ep0 maxpacket: 32
[ 1335.686197][ T1604] usb 4-1: config 0 has an invalid interface number: 67 but max is 0
[ 1335.695012][ T1604] usb 4-1: config 0 has no interface number 0
[ 1335.745961][ T1604] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[ 1335.756061][ T1604] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1335.764544][ T1604] usb 4-1: Product: syz
[ 1335.769010][ T1604] usb 4-1: Manufacturer: syz
[ 1335.778933][ T1604] usb 4-1: SerialNumber: syz
[ 1335.846332][ T1604] usb 4-1: config 0 descriptor??
[ 1335.866890][ T1604] smsc95xx v2.0.0
[ 1336.295944][ T1604] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[ 1336.309583][ T1604] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1336.527550][ T1604] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32
[ 1336.539922][ T1604] smsc95xx 4-1:0.67: probe with driver smsc95xx failed with error -32
[ 1336.997186][T13830] fuse: Invalid rootmode
[ 1337.087845][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[ 1337.095133][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[ 1337.376488][ T1604] usb 2-1: USB disconnect, device number 37
[ 1338.685000][ T1896] usb 4-1: USB disconnect, device number 34
[ 1339.165052][ T1604] usb 3-1: new high-speed USB device number 43 using dummy_hcd
[ 1339.344196][ T1604] usb 3-1: device descriptor read/64, error -71
[ 1339.653303][ T1604] usb 3-1: new high-speed USB device number 44 using dummy_hcd
[ 1339.849146][ T1604] usb 3-1: device descriptor read/64, error -71
[ 1339.978056][ T1604] usb usb3-port1: attempt power cycle
[ 1340.320979][T13869] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2298'.
[ 1340.403111][ T1604] usb 3-1: new high-speed USB device number 45 using dummy_hcd
[ 1340.474391][ T1604] usb 3-1: device descriptor read/8, error -71
[ 1340.760261][ T1604] usb 3-1: new high-speed USB device number 46 using dummy_hcd
[ 1340.825107][ T1604] usb 3-1: device descriptor read/8, error -71
[ 1340.938114][ T1604] usb usb3-port1: unable to enumerate USB device
[ 1340.987727][T13877] fuse: Bad value for 'rootmode'
[ 1341.195194][T13885] netlink: 4768 bytes leftover after parsing attributes in process `syz.1.2303'.
[ 1342.072467][T13895] overlayfs: missing 'lowerdir'
[ 1342.264242][ T1896] usb 9-1: new high-speed USB device number 46 using dummy_hcd
[ 1342.493776][ T1896] usb 9-1: Using ep0 maxpacket: 32
[ 1342.517156][ T1896] usb 9-1: config 0 has an invalid interface number: 67 but max is 0
[ 1342.526879][ T1896] usb 9-1: config 0 has no interface number 0
[ 1342.622474][ T1896] usb 9-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[ 1342.637346][ T1896] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1342.647819][ T1896] usb 9-1: Product: syz
[ 1342.652326][ T1896] usb 9-1: Manufacturer: syz
[ 1342.657483][ T1896] usb 9-1: SerialNumber: syz
[ 1342.786431][ T1896] usb 9-1: config 0 descriptor??
[ 1342.832299][ T1896] smsc95xx v2.0.0
[ 1343.215841][ T1604] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[ 1343.334166][ T1896] smsc95xx 9-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[ 1343.348088][ T1896] smsc95xx 9-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1343.383555][ T1604] usb 2-1: device descriptor read/64, error -71
[ 1343.614660][ T1896] smsc95xx 9-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32
[ 1343.627073][ T1896] smsc95xx 9-1:0.67: probe with driver smsc95xx failed with error -32
[ 1343.673302][ T1604] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[ 1343.893544][ T1604] usb 2-1: device descriptor read/64, error -71
[ 1344.021613][ T1604] usb usb2-port1: attempt power cycle
[ 1344.463853][ T1604] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[ 1344.513941][T13922] fuse: Bad value for 'rootmode'
[ 1344.539092][ T1604] usb 2-1: device descriptor read/8, error -71
[ 1344.843302][ T1604] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[ 1344.917605][ T1604] usb 2-1: device descriptor read/8, error -71
[ 1345.040365][ T1604] usb usb2-port1: unable to enumerate USB device
[ 1345.354184][ T5851] usb 9-1: USB disconnect, device number 46
[ 1345.513230][ T1896] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[ 1345.678470][T13938] netlink: 4768 bytes leftover after parsing attributes in process `syz.2.2319'.
[ 1345.690298][ T1896] usb 4-1: device descriptor read/64, error -71
[ 1345.781641][T13941] overlayfs: missing 'lowerdir'
[ 1345.955758][ T1896] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[ 1346.161014][ T1896] usb 4-1: device descriptor read/64, error -71
[ 1346.284751][ T1896] usb usb4-port1: attempt power cycle
[ 1346.693826][ T1896] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[ 1346.759925][ T1896] usb 4-1: device descriptor read/8, error -71
[ 1347.043867][ T1896] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[ 1347.101197][ T1896] usb 4-1: device descriptor read/8, error -71
[ 1347.224815][ T1896] usb usb4-port1: unable to enumerate USB device
[ 1347.683569][T13963] tipc: Started in network mode
[ 1347.689441][T13963] tipc: Node identity ac1414aa, cluster identity 4711
[ 1347.700903][T13963] tipc: Enabled bearer <udp:s>, priority 10
[ 1347.935304][T13956] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1348.196014][T13965] kvm: pic: single mode not supported
[ 1348.196541][T13965] kvm: pic: non byte read
[ 1348.345213][T13965] kvm: pic: non byte read
[ 1348.355850][T13965] kvm: pic: non byte read
[ 1348.813257][ T1896] tipc: Node number set to 2886997162
[ 1348.891269][T13972] fuse: Bad value for 'rootmode'
[ 1349.963635][ T1604] usb 10-1: new high-speed USB device number 27 using dummy_hcd
[ 1350.219887][ T1604] usb 10-1: Using ep0 maxpacket: 32
[ 1350.275383][ T1604] usb 10-1: config 0 has an invalid interface number: 67 but max is 0
[ 1350.285762][ T1604] usb 10-1: config 0 has no interface number 0
[ 1350.371320][ T1604] usb 10-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[ 1350.382159][ T1604] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1350.391222][ T1604] usb 10-1: Product: syz
[ 1350.395923][ T1604] usb 10-1: Manufacturer: syz
[ 1350.401329][ T1604] usb 10-1: SerialNumber: syz
[ 1350.455390][T13989] overlayfs: missing 'lowerdir'
[ 1350.513851][ T1604] usb 10-1: config 0 descriptor??
[ 1350.557781][ T1604] smsc95xx v2.0.0
[ 1351.037104][ T1604] smsc95xx 10-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[ 1351.050166][ T1604] smsc95xx 10-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1351.307581][ T1604] smsc95xx 10-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32
[ 1351.321281][ T1604] smsc95xx 10-1:0.67: probe with driver smsc95xx failed with error -32
[ 1352.174049][ T1604] usb 9-1: new high-speed USB device number 47 using dummy_hcd
[ 1352.397461][ T1604] usb 9-1: no configurations
[ 1352.402418][ T1604] usb 9-1: can't read configurations, error -22
[ 1352.504485][T14012] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2340'.
[ 1352.583646][ T1604] usb 9-1: new high-speed USB device number 48 using dummy_hcd
[ 1352.779748][ T1604] usb 9-1: no configurations
[ 1352.784820][ T1604] usb 9-1: can't read configurations, error -22
[ 1352.824357][ T1604] usb usb9-port1: attempt power cycle
[ 1353.097275][   T42] usb 10-1: USB disconnect, device number 27
[ 1353.247030][ T1604] usb 9-1: new high-speed USB device number 49 using dummy_hcd
[ 1353.301582][ T1604] usb 9-1: no configurations
[ 1353.306791][ T1604] usb 9-1: can't read configurations, error -22
[ 1353.434045][T14018] fuse: Unknown parameter 'use00000000000000000000'
[ 1353.483526][ T1604] usb 9-1: new high-speed USB device number 50 using dummy_hcd
[ 1353.538557][ T1604] usb 9-1: no configurations
[ 1353.544980][ T1604] usb 9-1: can't read configurations, error -22
[ 1353.565080][ T1604] usb usb9-port1: unable to enumerate USB device
[ 1353.834001][T14017] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1354.079993][T14017] kvm: pic: single mode not supported
[ 1354.080765][T14017] kvm: pic: non byte read
[ 1355.157110][T14038] overlayfs: missing 'lowerdir'
[ 1355.963734][ T1896] usb 9-1: new high-speed USB device number 51 using dummy_hcd
[ 1355.987517][T14051] netlink: 72 bytes leftover after parsing attributes in process `syz.1.2352'.
[ 1356.161791][ T1896] usb 9-1: Using ep0 maxpacket: 32
[ 1356.210278][ T1896] usb 9-1: config index 0 descriptor too short (expected 156, got 27)
[ 1356.219371][ T1896] usb 9-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1356.232661][ T1896] usb 9-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1356.244850][ T1896] usb 9-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1356.259553][T14058] fuse: Unknown parameter 'use00000000000000000000'
[ 1356.271135][ T1896] usb 9-1: config 0 interface 0 has no altsetting 0
[ 1356.325444][T14059] netlink: 4768 bytes leftover after parsing attributes in process `syz.3.2353'.
[ 1356.522642][ T1896] usb 9-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1356.532522][ T1896] usb 9-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1356.541730][ T1896] usb 9-1: Product: syz
[ 1356.546409][ T1896] usb 9-1: Manufacturer: syz
[ 1356.551591][ T1896] usb 9-1: SerialNumber: syz
[ 1356.574908][ T5851] usb 10-1: new high-speed USB device number 28 using dummy_hcd
[ 1356.712110][ T1896] usb 9-1: config 0 descriptor??
[ 1356.781150][ T1896] ldusb 9-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1356.813749][ T5851] usb 10-1: Using ep0 maxpacket: 8
[ 1356.854076][ T5851] usb 10-1: no configurations
[ 1356.859342][ T5851] usb 10-1: can't read configurations, error -22
[ 1356.926305][ T1896] ldusb 9-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1357.094843][ T5851] usb 10-1: new high-speed USB device number 29 using dummy_hcd
[ 1357.313358][ T5851] usb 10-1: Using ep0 maxpacket: 8
[ 1357.348856][ T5851] usb 10-1: no configurations
[ 1357.354306][ T5851] usb 10-1: can't read configurations, error -22
[ 1357.396947][ T5851] usb usb10-port1: attempt power cycle
[ 1357.794231][ T5851] usb 10-1: new high-speed USB device number 30 using dummy_hcd
[ 1357.846055][ T5851] usb 10-1: Using ep0 maxpacket: 8
[ 1357.863841][ T5851] usb 10-1: no configurations
[ 1357.869033][ T5851] usb 10-1: can't read configurations, error -22
[ 1358.063641][ T5851] usb 10-1: new high-speed USB device number 31 using dummy_hcd
[ 1358.147933][ T5851] usb 10-1: Using ep0 maxpacket: 8
[ 1358.173398][ T5851] usb 10-1: no configurations
[ 1358.178623][ T5851] usb 10-1: can't read configurations, error -22
[ 1358.223127][ T5851] usb usb10-port1: unable to enumerate USB device
[ 1358.645923][ T1604] usb 9-1: USB disconnect, device number 51
[ 1358.691815][ T1604] ldusb 9-1:0.0: LD USB Device #0 now disconnected
[ 1359.243116][ T1604] usb 3-1: new high-speed USB device number 47 using dummy_hcd
[ 1359.456776][ T1604] usb 3-1: no configurations
[ 1359.461751][ T1604] usb 3-1: can't read configurations, error -22
[ 1359.630190][T14092] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2363'.
[ 1359.676661][ T1604] usb 3-1: new high-speed USB device number 48 using dummy_hcd
[ 1359.917192][ T1604] usb 3-1: no configurations
[ 1359.922159][ T1604] usb 3-1: can't read configurations, error -22
[ 1359.983434][ T1604] usb usb3-port1: attempt power cycle
[ 1360.015940][T14092] veth9: entered promiscuous mode
[ 1360.027173][T14092] bridge3: port 1(veth9) entered blocking state
[ 1360.035033][T14092] bridge3: port 1(veth9) entered disabled state
[ 1360.049351][T14092] veth9: entered allmulticast mode
[ 1360.378985][ T1604] usb 3-1: new high-speed USB device number 49 using dummy_hcd
[ 1360.465291][ T1604] usb 3-1: no configurations
[ 1360.473334][ T1604] usb 3-1: can't read configurations, error -22
[ 1360.528657][T14098] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2366'.
[ 1360.543568][T14099] overlayfs: missing 'lowerdir'
[ 1360.653496][ T1604] usb 3-1: new high-speed USB device number 50 using dummy_hcd
[ 1360.771581][ T1604] usb 3-1: no configurations
[ 1360.777148][ T1604] usb 3-1: can't read configurations, error -22
[ 1360.806955][ T1604] usb usb3-port1: unable to enumerate USB device
[ 1361.010457][T14104] fuse: Unknown parameter 'use00000000000000000000'
[ 1361.307399][T14110] netlink: 4768 bytes leftover after parsing attributes in process `syz.3.2368'.
[ 1361.608498][T14113] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2369'.
[ 1364.154808][ T1604] usb 3-1: new high-speed USB device number 51 using dummy_hcd
[ 1364.336685][ T1604] usb 3-1: Using ep0 maxpacket: 32
[ 1364.386364][ T1604] usb 3-1: config index 0 descriptor too short (expected 156, got 27)
[ 1364.395326][ T1604] usb 3-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1364.407361][ T1604] usb 3-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1364.419033][ T1604] usb 3-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid wMaxPacketSize 0
[ 1364.429422][ T1604] usb 3-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1364.443660][ T1604] usb 3-1: config 0 interface 0 has no altsetting 0
[ 1364.562326][T14146] overlayfs: missing 'lowerdir'
[ 1364.580924][ T1604] usb 3-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1364.590797][ T1604] usb 3-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1364.599860][ T1604] usb 3-1: Product: syz
[ 1364.604397][ T1604] usb 3-1: Manufacturer: syz
[ 1364.609333][ T1604] usb 3-1: SerialNumber: syz
[ 1364.621146][ T1604] usb 3-1: config 0 descriptor??
[ 1364.656711][ T1604] ldusb 3-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1364.699847][ T1604] ldusb 3-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1364.935831][T14151] fuse: Unknown parameter 'user_i00000000000000000000'
[ 1365.529533][T14155] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2381'.
[ 1365.578382][T14159] netlink: 4768 bytes leftover after parsing attributes in process `syz.3.2382'.
[ 1366.876286][ T5851] usb 3-1: USB disconnect, device number 51
[ 1366.920827][ T5851] ldusb 3-1:0.0: LD USB Device #0 now disconnected
[ 1367.638425][T14184] bond_slave_0: entered promiscuous mode
[ 1367.644801][T14184] bond_slave_1: entered promiscuous mode
[ 1367.651587][T14184] vlan2: entered promiscuous mode
[ 1367.657256][T14184] bond0: entered promiscuous mode
[ 1368.293580][ T5851] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[ 1368.475835][ T5851] usb 4-1: Using ep0 maxpacket: 32
[ 1368.486736][T14197] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1368.496090][T14197] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1368.507727][ T5851] usb 4-1: config 0 has an invalid interface number: 184 but max is 0
[ 1368.521499][ T5851] usb 4-1: config 0 has no interface number 0
[ 1368.528100][ T5851] usb 4-1: config 0 interface 184 has no altsetting 0
[ 1368.603939][ T5851] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1368.614924][ T5851] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1368.624405][ T5851] usb 4-1: Product: syz
[ 1368.628882][ T5851] usb 4-1: Manufacturer: syz
[ 1368.634584][ T5851] usb 4-1: SerialNumber: syz
[ 1368.722683][T14201] fuse: Unknown parameter 'user_i00000000000000000000'
[ 1368.736406][ T5851] usb 4-1: config 0 descriptor??
[ 1368.779753][ T5851] smsc75xx v1.0.0
[ 1369.229206][ T5851] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32
[ 1369.241240][ T5851] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -32
[ 1369.252998][ T5851] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[ 1369.270674][ T5851] smsc75xx 4-1:0.184: probe with driver smsc75xx failed with error -32
[ 1369.702349][T14213] netlink: 4768 bytes leftover after parsing attributes in process `syz.9.2396'.
[ 1369.862074][ T1604] usb 3-1: new high-speed USB device number 52 using dummy_hcd
[ 1370.001214][T14221] netlink: 'syz.8.2398': attribute type 3 has an invalid length.
[ 1370.010479][T14221] netlink: 16 bytes leftover after parsing attributes in process `syz.8.2398'.
[ 1370.095383][ T1604] usb 3-1: Using ep0 maxpacket: 8
[ 1370.116558][ T1604] usb 3-1: no configurations
[ 1370.121520][ T1604] usb 3-1: can't read configurations, error -22
[ 1370.354087][ T1604] usb 3-1: new high-speed USB device number 53 using dummy_hcd
[ 1370.553320][ T1604] usb 3-1: Using ep0 maxpacket: 8
[ 1370.567598][ T1604] usb 3-1: no configurations
[ 1370.572709][ T1604] usb 3-1: can't read configurations, error -22
[ 1370.620346][ T1604] usb usb3-port1: attempt power cycle
[ 1371.023433][ T1604] usb 3-1: new high-speed USB device number 54 using dummy_hcd
[ 1371.087206][ T1604] usb 3-1: Using ep0 maxpacket: 8
[ 1371.113692][ T1604] usb 3-1: no configurations
[ 1371.118646][ T1604] usb 3-1: can't read configurations, error -22
[ 1371.296955][ T1604] usb 3-1: new high-speed USB device number 55 using dummy_hcd
[ 1371.393934][ T5851] usb 4-1: USB disconnect, device number 39
[ 1371.395124][ T1604] usb 3-1: Using ep0 maxpacket: 8
[ 1371.463379][ T1604] usb 3-1: no configurations
[ 1371.468323][ T1604] usb 3-1: can't read configurations, error -22
[ 1371.503550][ T1604] usb usb3-port1: unable to enumerate USB device
[ 1372.723276][T14252] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1372.732626][T14252] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1372.773592][T14255] fuse: Unknown parameter 'user_i00000000000000000000'
[ 1373.985663][T14268] netlink: 4768 bytes leftover after parsing attributes in process `syz.8.2411'.
[ 1375.083197][ T1604] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[ 1375.407860][ T1604] usb 2-1: Using ep0 maxpacket: 32
[ 1375.421883][ T1604] usb 2-1: config 0 has an invalid interface number: 184 but max is 0
[ 1375.431678][ T1604] usb 2-1: config 0 has no interface number 0
[ 1375.438363][ T1604] usb 2-1: config 0 interface 184 has no altsetting 0
[ 1375.517526][ T1604] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1375.527161][ T1604] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1375.535747][ T1604] usb 2-1: Product: syz
[ 1375.540626][ T1604] usb 2-1: Manufacturer: syz
[ 1375.546123][ T1604] usb 2-1: SerialNumber: syz
[ 1375.565076][T14286] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2416'.
[ 1375.585714][ T1604] usb 2-1: config 0 descriptor??
[ 1375.626186][ T1604] smsc75xx v1.0.0
[ 1376.104461][ T1604] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32
[ 1376.116133][ T1604] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -32
[ 1376.131505][ T1604] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[ 1376.144337][ T1604] smsc75xx 2-1:0.184: probe with driver smsc75xx failed with error -32
[ 1377.530220][T14306] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1377.539762][T14306] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1378.000498][T14312] fuse: Unknown parameter 'user_id00000000000000000000'
[ 1378.030637][ T5855] kworker/0:4 (5855) used greatest stack depth: 4472 bytes left
[ 1378.187902][ T1604] usb 2-1: USB disconnect, device number 42
[ 1378.935140][T14319] netlink: 64 bytes leftover after parsing attributes in process `syz.8.2422'.
[ 1380.143078][T14332] netlink: 4768 bytes leftover after parsing attributes in process `syz.8.2427'.
[ 1380.571815][T14341] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2430'.
[ 1381.094006][T14346] overlayfs: missing 'lowerdir'
[ 1382.171376][T14352] DRBG: could not allocate CTR cipher TFM handle: ctr(aes)
[ 1382.988177][T14375] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2440'.
[ 1383.993105][T14396] netlink: 4768 bytes leftover after parsing attributes in process `syz.2.2445'.
[ 1385.137883][T14412] overlayfs: missing 'lowerdir'
[ 1387.548650][T14451] bridge4: entered promiscuous mode
[ 1387.554452][T14451] bridge4: entered allmulticast mode
[ 1387.571886][T14451] team0: Port device bridge4 added
[ 1388.346753][T14458] overlayfs: missing 'lowerdir'
[ 1389.665521][T14478] netlink: 40 bytes leftover after parsing attributes in process `syz.9.2471'.
[ 1390.625744][T14491] fuse: Bad value for 'fd'
[ 1391.033318][T14500] overlayfs: missing 'workdir'
[ 1391.444788][T14503] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2479'.
[ 1391.735080][T14503] veth3: entered promiscuous mode
[ 1392.203141][ T5851] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[ 1392.423094][ T5851] usb 2-1: Using ep0 maxpacket: 32
[ 1392.444746][ T5851] usb 2-1: config index 0 descriptor too short (expected 156, got 27)
[ 1392.453818][ T5851] usb 2-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1392.465348][ T5851] usb 2-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1392.477254][ T5851] usb 2-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1392.491172][ T5851] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1392.685273][ T5851] usb 2-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1392.696418][ T5851] usb 2-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1392.705404][ T5851] usb 2-1: Product: syz
[ 1392.715818][ T5851] usb 2-1: Manufacturer: syz
[ 1392.720724][ T5851] usb 2-1: SerialNumber: syz
[ 1392.838394][ T5851] usb 2-1: config 0 descriptor??
[ 1392.891028][ T5851] ldusb 2-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1392.972132][ T5851] ldusb 2-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1393.634540][T14535] fuse: Invalid rootmode
[ 1394.445480][T14545] overlayfs: missing 'workdir'
[ 1394.883896][ T1604] usb 2-1: USB disconnect, device number 43
[ 1394.928272][ T1604] ldusb 2-1:0.0: LD USB Device #0 now disconnected
[ 1396.881038][T14582] fuse: Invalid rootmode
[ 1398.528271][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[ 1398.535830][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[ 1407.868565][T14737] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2559'.
[ 1410.855168][T14781] netlink: 'syz.1.2573': attribute type 4 has an invalid length.
[ 1411.279000][T14788] 9pnet_fd: Insufficient options for proto=fd
[ 1414.233085][ T1604] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[ 1414.462015][ T1604] usb 4-1: Using ep0 maxpacket: 16
[ 1414.514197][ T1604] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1414.615293][ T1604] usb 4-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1414.629269][ T1604] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1414.639437][ T1604] usb 4-1: Product: syz
[ 1414.644087][ T1604] usb 4-1: Manufacturer: syz
[ 1414.649242][ T1604] usb 4-1: SerialNumber: syz
[ 1414.769933][ T1604] usb 4-1: config 0 descriptor??
[ 1414.875346][T14840] netlink: 996 bytes leftover after parsing attributes in process `syz.8.2595'.
[ 1417.168407][ T5851] usb 4-1: USB disconnect, device number 40
[ 1418.224511][T14888] netlink: 996 bytes leftover after parsing attributes in process `syz.9.2609'.
[ 1418.962079][T14897] netlink: 'syz.1.2613': attribute type 11 has an invalid length.
[ 1419.553651][ T1896] usb 10-1: new high-speed USB device number 32 using dummy_hcd
[ 1419.779740][ T1896] usb 10-1: config index 0 descriptor too short (expected 23569, got 27)
[ 1419.789947][ T1896] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1419.851838][ T1896] usb 10-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 1419.863251][ T1896] usb 10-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 1419.871796][ T1896] usb 10-1: Manufacturer: syz
[ 1419.996964][ T1896] usb 10-1: config 0 descriptor??
[ 1420.513428][ T1896] rc_core: IR keymap rc-hauppauge not found
[ 1420.519825][ T1896] Registered IR keymap rc-empty
[ 1420.527094][ T1896] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/rc/rc0
[ 1420.541382][ T1896] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/rc/rc0/input46
[ 1420.816927][    C0] igorplugusb 10-1:0.0: Error: urb status = -32
[ 1421.024552][T11333] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[ 1421.056562][ T1604] usb 10-1: USB disconnect, device number 32
[ 1421.245676][T11333] usb 4-1: Using ep0 maxpacket: 16
[ 1421.265453][T11333] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1421.370562][T11333] usb 4-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1421.384835][T11333] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1421.394734][T11333] usb 4-1: Product: syz
[ 1421.399207][T11333] usb 4-1: Manufacturer: syz
[ 1421.404682][T11333] usb 4-1: SerialNumber: syz
[ 1421.435637][T11333] usb 4-1: config 0 descriptor??
[ 1422.270629][T14938] netlink: 996 bytes leftover after parsing attributes in process `syz.9.2625'.
[ 1422.731709][T14943] fuse: Unknown parameter 'user_i00000000000000000000'
[ 1423.669917][T14949] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1424.071509][ T1604] usb 4-1: USB disconnect, device number 41
[ 1424.574886][T11333] usb 10-1: new high-speed USB device number 33 using dummy_hcd
[ 1424.823264][T11333] usb 10-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1424.833581][T11333] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1424.926946][T11333] usb 10-1: config 0 descriptor??
[ 1424.951333][T11333] cp210x 10-1:0.0: cp210x converter detected
[ 1425.177317][ T1604] usb 9-1: new high-speed USB device number 52 using dummy_hcd
[ 1425.218720][T11333] cp210x 10-1:0.0: failed to get vendor val 0x370b size 1: -32
[ 1425.227005][T11333] cp210x 10-1:0.0: querying part number failed
[ 1425.275744][T11333] usb 10-1: cp210x converter now attached to ttyUSB0
[ 1425.401181][ T1604] usb 9-1: config index 0 descriptor too short (expected 23569, got 27)
[ 1425.410287][ T1604] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1425.472946][ T1604] usb 9-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 1425.487153][ T1604] usb 9-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 1425.497497][ T1604] usb 9-1: Manufacturer: syz
[ 1425.533174][ T1604] usb 9-1: config 0 descriptor??
[ 1425.908307][T14991] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[ 1425.973675][ T1604] rc_core: IR keymap rc-hauppauge not found
[ 1425.979935][ T1604] Registered IR keymap rc-empty
[ 1426.000964][ T1604] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/rc/rc0
[ 1426.016056][ T1604] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/rc/rc0/input47
[ 1426.116364][    C1] igorplugusb 9-1:0.0: Error: urb status = -32
[ 1426.166159][T14994] fuse: Unknown parameter 'user_i00000000000000000000'
[ 1426.348400][ T1604] usb 9-1: USB disconnect, device number 52
[ 1427.688714][T11333] usb 10-1: USB disconnect, device number 33
[ 1427.755815][T11333] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1427.765683][T11333] cp210x 10-1:0.0: device disconnected
[ 1428.327729][T15015] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2646'.
[ 1428.502314][T15012] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1428.883476][T11333] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[ 1429.113819][T11333] usb 4-1: Using ep0 maxpacket: 8
[ 1429.191882][T11333] usb 4-1: unable to read config index 0 descriptor/start: -61
[ 1429.200670][T11333] usb 4-1: can't read configurations, error -61
[ 1429.423756][T11333] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[ 1429.633085][T11333] usb 4-1: Using ep0 maxpacket: 8
[ 1429.758009][T11333] usb 4-1: unable to read config index 0 descriptor/start: -61
[ 1429.766772][T11333] usb 4-1: can't read configurations, error -61
[ 1429.835596][T11333] usb usb4-port1: attempt power cycle
[ 1429.989054][T15037] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[ 1430.245084][T15043] fuse: Unknown parameter 'user_id00000000000000000000'
[ 1430.254176][T11333] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[ 1430.323280][T11333] usb 4-1: Using ep0 maxpacket: 8
[ 1430.356251][T11333] usb 4-1: unable to read config index 0 descriptor/start: -61
[ 1430.364702][T11333] usb 4-1: can't read configurations, error -61
[ 1430.484131][ T1604] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[ 1430.538528][T11333] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[ 1430.606472][T11333] usb 4-1: Using ep0 maxpacket: 8
[ 1430.668575][T11333] usb 4-1: unable to read config index 0 descriptor/start: -61
[ 1430.676894][T11333] usb 4-1: can't read configurations, error -61
[ 1430.688121][T11333] usb usb4-port1: unable to enumerate USB device
[ 1430.731325][ T1604] usb 2-1: config index 0 descriptor too short (expected 23569, got 27)
[ 1430.740458][ T1604] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1430.785011][ T1604] usb 2-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 1430.795115][ T1604] usb 2-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 1430.808198][ T1604] usb 2-1: Manufacturer: syz
[ 1430.889045][ T1604] usb 2-1: config 0 descriptor??
[ 1431.279262][T11333] usb 9-1: new high-speed USB device number 53 using dummy_hcd
[ 1431.293890][ T1604] rc_core: IR keymap rc-hauppauge not found
[ 1431.300376][ T1604] Registered IR keymap rc-empty
[ 1431.307471][ T1604] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[ 1431.327787][ T1604] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input48
[ 1431.509235][T11333] usb 9-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1431.524267][T11333] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1431.554884][    C1] igorplugusb 2-1:0.0: Error: urb status = -32
[ 1431.641737][T11333] usb 9-1: config 0 descriptor??
[ 1431.705370][ T1604] usb 2-1: USB disconnect, device number 44
[ 1431.738814][T11333] cp210x 9-1:0.0: cp210x converter detected
[ 1431.901903][T11333] cp210x 9-1:0.0: failed to get vendor val 0x370b size 1: -32
[ 1431.910194][T11333] cp210x 9-1:0.0: querying part number failed
[ 1431.984046][T11333] usb 9-1: cp210x converter now attached to ttyUSB0
[ 1432.754843][T15070] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2661'.
[ 1434.058643][T15084] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[ 1434.308242][T11333] usb 9-1: USB disconnect, device number 53
[ 1434.380761][T11333] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1434.395124][T11333] cp210x 9-1:0.0: device disconnected
[ 1434.501162][T15086] fuse: Unknown parameter 'user_id00000000000000000000'
[ 1435.775611][T15106] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2674'.
[ 1435.968372][T11333] usb 9-1: new high-speed USB device number 54 using dummy_hcd
[ 1436.002126][T15106] veth3: entered promiscuous mode
[ 1436.176608][T11333] usb 9-1: config index 0 descriptor too short (expected 23569, got 27)
[ 1436.185678][T11333] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1436.255143][T15110] 8021q: VLANs not supported on vcan0
[ 1436.269438][T11333] usb 9-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 1436.279766][T11333] usb 9-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 1436.288380][T11333] usb 9-1: Manufacturer: syz
[ 1436.360230][T11333] usb 9-1: config 0 descriptor??
[ 1436.997118][T11333] rc_core: IR keymap rc-hauppauge not found
[ 1437.003718][T11333] Registered IR keymap rc-empty
[ 1437.010551][T11333] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/rc/rc0
[ 1437.025333][T11333] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/rc/rc0/input49
[ 1437.276871][    C0] igorplugusb 9-1:0.0: Error: urb status = -32
[ 1437.428098][ T1604] usb 9-1: USB disconnect, device number 54
[ 1437.676440][T15125] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2679'.
[ 1437.686424][T15125] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2679'.
[ 1437.696080][T15125] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2679'.
[ 1437.914166][T15128] netlink: 160 bytes leftover after parsing attributes in process `syz.2.2680'.
[ 1437.924842][T15128] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[ 1439.395009][T15146] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2686'.
[ 1439.758592][T15153] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2687'.
[ 1439.807361][T15152] 8021q: VLANs not supported on vcan0
[ 1440.106139][T15158] veth5: entered promiscuous mode
[ 1441.079535][T15171] fuse: Bad value for 'fd'
[ 1441.454603][T15180] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1441.536435][T15178] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2696'.
[ 1441.548047][T15178] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2696'.
[ 1441.568077][T15178] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2696'.
[ 1442.827306][T15194] 8021q: VLANs not supported on vcan0
[ 1443.131020][T15200] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2703'.
[ 1444.041981][T15213] fuse: Bad value for 'fd'
[ 1444.536258][T15218] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2709'.
[ 1444.545699][T15218] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2709'.
[ 1444.555342][T15218] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2709'.
[ 1446.378898][T15244] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2719'.
[ 1446.510626][T15247] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2718'.
[ 1446.806925][T15252] fuse: Invalid rootmode
[ 1447.817068][T15263] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2725'.
[ 1447.826794][T15263] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2725'.
[ 1447.837111][T15263] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2725'.
[ 1447.935595][T15263] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2725'.
[ 1447.945210][T15263] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2725'.
[ 1449.241440][T15286] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2734'.
[ 1449.787165][T15290] fuse: Invalid rootmode
[ 1449.976069][T15295] fuse: Unknown parameter '0x0000000000000003'
[ 1450.415622][T15299] netlink: 4768 bytes leftover after parsing attributes in process `syz.8.2738'.
[ 1452.075253][T15320] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2747'.
[ 1452.774973][T15328] fuse: Invalid rootmode
[ 1452.981911][T15338] netlink: 72 bytes leftover after parsing attributes in process `syz.8.2751'.
[ 1453.817340][T15350] netlink: 28 bytes leftover after parsing attributes in process `syz.9.2757'.
[ 1453.829930][T15350] netlink: 28 bytes leftover after parsing attributes in process `syz.9.2757'.
[ 1453.845285][T15350] netlink: 'syz.9.2757': attribute type 4 has an invalid length.
[ 1454.085342][T15352] netlink: 4768 bytes leftover after parsing attributes in process `syz.8.2758'.
[ 1455.704308][T11333] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[ 1455.913117][T11333] usb 2-1: Using ep0 maxpacket: 16
[ 1455.943679][T11333] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1456.011129][T11333] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1456.021044][T11333] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1456.029598][T11333] usb 2-1: Product: syz
[ 1456.034522][T11333] usb 2-1: Manufacturer: syz
[ 1456.039467][T11333] usb 2-1: SerialNumber: syz
[ 1456.127639][T11333] usb 2-1: config 0 descriptor??
[ 1456.161041][T11333] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1456.171029][T11333] em28xx 2-1:0.0: DVB interface 0 found: bulk
[ 1456.657099][T15382] netlink: 72 bytes leftover after parsing attributes in process `syz.3.2768'.
[ 1456.847140][T11333] em28xx 2-1:0.0: unknown em28xx chip ID (0)
[ 1457.288639][T11333] em28xx 2-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[ 1457.297536][T11333] em28xx 2-1:0.0: board has no eeprom
[ 1457.655843][T11333] em28xx 2-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[ 1457.665213][T11333] em28xx 2-1:0.0: dvb set to bulk mode.
[ 1457.673456][ T5851] em28xx 2-1:0.0: Binding DVB extension
[ 1457.774955][T11333] usb 2-1: USB disconnect, device number 45
[ 1457.783661][T11333] em28xx 2-1:0.0: Disconnecting em28xx
[ 1458.227218][ T5851] em28xx 2-1:0.0: Registering input extension
[ 1458.295798][T11333] em28xx 2-1:0.0: Closing input extension
[ 1458.386180][T11333] em28xx 2-1:0.0: Freeing device
[ 1458.862044][T15411] netlink: 'syz.9.2778': attribute type 4 has an invalid length.
[ 1459.970490][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[ 1459.977677][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[ 1461.223102][ T1604] usb 9-1: new high-speed USB device number 55 using dummy_hcd
[ 1461.407877][ T1604] usb 9-1: Using ep0 maxpacket: 16
[ 1461.461862][ T1604] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1461.476451][T15452] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2792'.
[ 1461.513453][ T1604] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1461.527647][ T1604] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1461.537473][ T1604] usb 9-1: Product: syz
[ 1461.542084][ T1604] usb 9-1: Manufacturer: syz
[ 1461.547105][ T1604] usb 9-1: SerialNumber: syz
[ 1461.649026][ T1604] usb 9-1: config 0 descriptor??
[ 1461.713559][ T1604] em28xx 9-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1461.729881][ T1604] em28xx 9-1:0.0: DVB interface 0 found: bulk
[ 1462.488238][ T1604] em28xx 9-1:0.0: unknown em28xx chip ID (0)
[ 1463.013434][ T1604] em28xx 9-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[ 1463.022349][ T1604] em28xx 9-1:0.0: board has no eeprom
[ 1463.358488][T15472] 8021q: VLANs not supported on vcan0
[ 1463.376107][ T1604] em28xx 9-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[ 1463.384487][ T1604] em28xx 9-1:0.0: dvb set to bulk mode.
[ 1463.393035][   T42] em28xx 9-1:0.0: Binding DVB extension
[ 1463.512078][T11333] usb 9-1: USB disconnect, device number 55
[ 1463.520744][T11333] em28xx 9-1:0.0: Disconnecting em28xx
[ 1463.944421][   T42] em28xx 9-1:0.0: Registering input extension
[ 1463.988805][T11333] em28xx 9-1:0.0: Closing input extension
[ 1464.057127][T11333] em28xx 9-1:0.0: Freeing device
[ 1465.185350][T15495] lo speed is unknown, defaulting to 1000
[ 1465.191962][T15495] lo speed is unknown, defaulting to 1000
[ 1465.200727][T15495] lo speed is unknown, defaulting to 1000
[ 1465.230024][T15495] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[ 1465.278409][T15495] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[ 1465.362407][T15497] fuse: Unknown parameter 'fd0x0000000000000003'
[ 1465.458639][T15495] lo speed is unknown, defaulting to 1000
[ 1465.468513][T15495] lo speed is unknown, defaulting to 1000
[ 1465.478131][T15495] lo speed is unknown, defaulting to 1000
[ 1465.487572][T15495] lo speed is unknown, defaulting to 1000
[ 1465.497436][T15495] lo speed is unknown, defaulting to 1000
[ 1465.714209][T15501] netlink: 'syz.2.2809': attribute type 4 has an invalid length.
[ 1465.833382][T15502] netlink: 328 bytes leftover after parsing attributes in process `syz.3.2810'.
[ 1466.749560][T15510] 8021q: VLANs not supported on vcan0
[ 1467.363497][   T42] usb 10-1: new high-speed USB device number 34 using dummy_hcd
[ 1467.573940][   T42] usb 10-1: Using ep0 maxpacket: 16
[ 1467.626149][   T42] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1467.702461][   T42] usb 10-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1467.712349][   T42] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1467.722480][   T42] usb 10-1: Product: syz
[ 1467.727321][   T42] usb 10-1: Manufacturer: syz
[ 1467.732310][   T42] usb 10-1: SerialNumber: syz
[ 1467.841908][   T42] usb 10-1: config 0 descriptor??
[ 1467.896338][   T42] em28xx 10-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1467.906534][   T42] em28xx 10-1:0.0: DVB interface 0 found: bulk
[ 1468.544169][   T42] em28xx 10-1:0.0: unknown em28xx chip ID (0)
[ 1468.683701][T15537] netlink: 328 bytes leftover after parsing attributes in process `syz.3.2823'.
[ 1468.978807][T15543] netlink: 'syz.1.2824': attribute type 4 has an invalid length.
[ 1468.991080][   T42] em28xx 10-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[ 1469.006871][   T42] em28xx 10-1:0.0: board has no eeprom
[ 1469.362482][   T42] em28xx 10-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[ 1469.373849][   T42] em28xx 10-1:0.0: dvb set to bulk mode.
[ 1469.382030][ T1604] em28xx 10-1:0.0: Binding DVB extension
[ 1469.489498][T11333] usb 10-1: USB disconnect, device number 34
[ 1469.500220][T11333] em28xx 10-1:0.0: Disconnecting em28xx
[ 1470.006724][ T1604] em28xx 10-1:0.0: Registering input extension
[ 1470.095600][T11333] em28xx 10-1:0.0: Closing input extension
[ 1470.184750][T11333] em28xx 10-1:0.0: Freeing device
[ 1470.485278][T15559] syz.1.2828: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1470.505287][T15559] CPU: 1 UID: 0 PID: 15559 Comm: syz.1.2828 Not tainted 6.16.0-rc3-syzkaller-00306-gaaf724ed6926 #0 PREEMPT(undef) 
[ 1470.505484][T15559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1470.505629][T15559] Call Trace:
[ 1470.505710][T15559]  <TASK>
[ 1470.505779][T15559]  __dump_stack+0x26/0x30
[ 1470.506144][T15559]  dump_stack_lvl+0x1df/0x270
[ 1470.506364][T15559]  dump_stack+0x1e/0x25
[ 1470.506549][T15559]  warn_alloc+0x470/0x690
[ 1470.506840][T15559]  ? kmsan_get_metadata+0xfb/0x160
[ 1470.507122][T15559]  __vmalloc_node_range_noprof+0x133/0x2360
[ 1470.507358][T15559]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1470.507602][T15559]  ? should_fail_ex+0x45/0x8a0
[ 1470.507844][T15559]  ? kmsan_get_metadata+0xfb/0x160
[ 1470.508043][T15559]  ? kmsan_get_metadata+0xfb/0x160
[ 1470.508272][T15559]  ? kmsan_get_metadata+0xfb/0x160
[ 1470.508497][T15559]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1470.508728][T15559]  ? kmsan_get_metadata+0xfb/0x160
[ 1470.508961][T15559]  vmalloc_user_noprof+0xce/0x140
[ 1470.509155][T15559]  ? xskq_create+0x11d/0x290
[ 1470.509458][T15559]  xskq_create+0x11d/0x290
[ 1470.509654][T15559]  xsk_init_queue+0xfd/0x1d0
[ 1470.509842][T15559]  xsk_setsockopt+0x873/0xc30
[ 1470.510049][T15559]  do_sock_setsockopt+0x4d9/0x820
[ 1470.510318][T15559]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1470.510503][T15559]  __ia32_sys_setsockopt+0x2ac/0x4a0
[ 1470.510712][T15559]  ia32_sys_call+0x41fa/0x42c0
[ 1470.510878][T15559]  __do_fast_syscall_32+0xb0/0x150
[ 1470.511106][T15559]  do_fast_syscall_32+0x38/0x80
[ 1470.511288][T15559]  do_SYSENTER_32+0x1f/0x30
[ 1470.511459][T15559]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1470.511693][T15559] RIP: 0023:0xf710e539
[ 1470.511843][T15559] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1470.511995][T15559] RSP: 002b:00000000f50dd55c EFLAGS: 00000206 ORIG_RAX: 000000000000016e
[ 1470.512164][T15559] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000000000011b
[ 1470.512286][T15559] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[ 1470.512394][T15559] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1470.512499][T15559] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1470.512607][T15559] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1470.512748][T15559]  </TASK>
[ 1470.760740][T15559] Mem-Info:
[ 1470.766356][T15559] active_anon:4834 inactive_anon:0 isolated_anon:0
[ 1470.766356][T15559]  active_file:2141 inactive_file:40285 isolated_file:0
[ 1470.766356][T15559]  unevictable:768 dirty:72 writeback:0
[ 1470.766356][T15559]  slab_reclaimable:2920 slab_unreclaimable:24033
[ 1470.766356][T15559]  mapped:29584 shmem:1399 pagetables:1520
[ 1470.766356][T15559]  sec_pagetables:0 bounce:0
[ 1470.766356][T15559]  kernel_misc_reclaimable:0
[ 1470.766356][T15559]  free:366808 free_pcp:11045 free_cma:0
[ 1470.812414][T15559] Node 0 active_anon:19404kB inactive_anon:0kB active_file:8424kB inactive_file:160940kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:118184kB dirty:288kB writeback:0kB shmem:4060kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4816kB pagetables:5628kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1470.851816][T15559] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:152kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:32kB pagetables:452kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1470.886254][T15559] Node 0 DMA free:4096kB boost:0kB min:164kB low:204kB high:244kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:4096kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1470.917786][T15559] lowmem_reserve[]: 0 930 1243 1243 1243
[ 1470.924958][T15559] Node 0 DMA32 free:531644kB boost:0kB min:36868kB low:46084kB high:55300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:3456kB inactive_anon:0kB active_file:3400kB inactive_file:83644kB unevictable:0kB writepending:164kB present:3129332kB managed:952960kB mlocked:0kB bounce:0kB free_pcp:31072kB local_pcp:18080kB free_cma:0kB
[ 1470.964311][T15559] lowmem_reserve[]: 0 0 312 312 312
[ 1470.970406][T15559] Node 0 Normal free:22084kB boost:4096kB min:17100kB low:20348kB high:23596kB reserved_highatomic:0KB free_highatomic:0KB active_anon:15752kB inactive_anon:0kB active_file:5024kB inactive_file:77296kB unevictable:1536kB writepending:124kB present:1048580kB managed:320456kB mlocked:0kB bounce:0kB free_pcp:13112kB local_pcp:5480kB free_cma:0kB
[ 1471.003839][T15559] lowmem_reserve[]: 0 0 0 0 0
[ 1471.009322][T15559] Node 1 Normal free:909408kB boost:0kB min:40064kB low:50080kB high:60096kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:987204kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1471.047539][T15559] lowmem_reserve[]: 0 0 0 0 0
[ 1471.055322][T15559] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 1*4096kB (M) = 4096kB
[ 1471.069968][T15559] Node 0 DMA32: 1457*4kB (UME) 789*8kB (UME) 477*16kB (UME) 260*32kB (UME) 114*64kB (UME) 77*128kB (UME) 40*256kB (UM) 16*512kB (UM) 15*1024kB (UE) 9*2048kB (UME) 106*4096kB (UM) = 531644kB
[ 1471.091779][T15559] Node 0 Normal: 491*4kB (UME) 557*8kB (UME) 325*16kB (UME) 91*32kB (UME) 46*64kB (UME) 24*128kB (UME) 4*256kB (UE) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 22084kB
[ 1471.111306][T15559] Node 1 Normal: 18*4kB (UME) 23*8kB (UME) 22*16kB (UME) 30*32kB (UME) 21*64kB (UME) 14*128kB (UME) 12*256kB (UM) 5*512kB (U) 2*1024kB (ME) 4*2048kB (UM) 217*4096kB (UM) = 909408kB
[ 1471.135587][T15559] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1471.150723][T15559] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1471.162400][T15559] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1471.172598][T15559] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1471.183080][T15559] 43809 total pagecache pages
[ 1471.188067][T15559] 0 pages in swap cache
[ 1471.192496][T15559] Free swap  = 124996kB
[ 1471.197162][T15559] Total swap = 124996kB
[ 1471.201589][T15559] 2097051 pages RAM
[ 1471.205944][T15559] 0 pages HighMem/MovableOnly
[ 1471.211310][T15559] 1530872 pages reserved
[ 1471.216224][T15559] 0 pages cma reserved
[ 1471.803101][T15561] Bluetooth: MGMT ver 1.23
[ 1471.856289][T15555] Bluetooth: hci0: Opcode 0x0c03 failed: -112
[ 1473.213504][T15586] netlink: 'syz.3.2838': attribute type 4 has an invalid length.
[ 1473.234418][T15582] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1473.243842][T15582] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1473.574602][T15582] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1473.610959][T15582] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1473.943413][   T49] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[ 1474.241927][T15582] netdevsim netdevsim9 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1474.253100][T15582] netdevsim netdevsim9 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1474.263278][T15582] netdevsim netdevsim9 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1474.272609][T15582] netdevsim netdevsim9 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1475.213268][T11333] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[ 1475.503279][T11333] usb 2-1: Using ep0 maxpacket: 16
[ 1475.557305][T11333] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1475.635271][T11333] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1475.645001][T11333] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1475.657519][T11333] usb 2-1: Product: syz
[ 1475.662019][T11333] usb 2-1: Manufacturer: syz
[ 1475.668521][T11333] usb 2-1: SerialNumber: syz
[ 1475.775083][T11333] usb 2-1: config 0 descriptor??
[ 1475.840838][T11333] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1475.851068][T11333] em28xx 2-1:0.0: DVB interface 0 found: bulk
[ 1476.516337][T11333] em28xx 2-1:0.0: unknown em28xx chip ID (0)
[ 1476.972560][T11333] em28xx 2-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[ 1476.987956][T11333] em28xx 2-1:0.0: board has no eeprom
[ 1477.324251][T11333] em28xx 2-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[ 1477.332519][T11333] em28xx 2-1:0.0: dvb set to bulk mode.
[ 1477.340818][ T5851] em28xx 2-1:0.0: Binding DVB extension
[ 1477.489716][ T1604] usb 2-1: USB disconnect, device number 46
[ 1477.501018][ T1604] em28xx 2-1:0.0: Disconnecting em28xx
[ 1477.805367][T15640] !
: renamed from dummy0 (while UP)
[ 1477.956589][ T5851] em28xx 2-1:0.0: Registering input extension
[ 1478.000573][ T1604] em28xx 2-1:0.0: Closing input extension
[ 1478.122009][ T1604] em28xx 2-1:0.0: Freeing device
[ 1478.268071][T15649] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2852'.
[ 1478.279553][T15649] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2852'.
[ 1478.290424][T15649] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2852'.
[ 1478.449688][T15654] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2852'.
[ 1478.459685][T15654] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2852'.
[ 1480.535244][T15660] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1480.544259][T15660] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1482.010638][T15660] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1482.040929][T15660] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1483.123739][T15660] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1483.136185][T15660] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1483.148947][T15660] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1483.159732][T15660] netdevsim netdevsim1 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1485.063978][T15782] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2862'.
[ 1486.549068][T15801] netlink: 240 bytes leftover after parsing attributes in process `syz.2.2863'.
[ 1486.903559][T15808] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1488.439256][T15828] 8021q: VLANs not supported on vcan0
[ 1489.387009][T15843] netlink: 240 bytes leftover after parsing attributes in process `syz.3.2880'.
[ 1489.397456][T15843] netlink: 80 bytes leftover after parsing attributes in process `syz.3.2880'.
[ 1490.999952][T15867] 8021q: VLANs not supported on vcan0
[ 1492.018025][T15881] netlink: 240 bytes leftover after parsing attributes in process `syz.8.2892'.
[ 1492.028705][T15881] netlink: 80 bytes leftover after parsing attributes in process `syz.8.2892'.
[ 1493.120880][ T1604] usb 9-1: new high-speed USB device number 56 using dummy_hcd
[ 1493.335189][ T1604] usb 9-1: Using ep0 maxpacket: 16
[ 1493.362344][ T1604] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1493.438588][ T1604] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1493.448470][ T1604] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1493.457169][ T1604] usb 9-1: Product: syz
[ 1493.461618][ T1604] usb 9-1: Manufacturer: syz
[ 1493.466701][ T1604] usb 9-1: SerialNumber: syz
[ 1493.536496][ T1604] usb 9-1: config 0 descriptor??
[ 1493.578123][ T1604] em28xx 9-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1493.588079][ T1604] em28xx 9-1:0.0: DVB interface 0 found: bulk
[ 1494.207174][ T1604] em28xx 9-1:0.0: unknown em28xx chip ID (0)
[ 1494.316102][T15909] 8021q: VLANs not supported on vcan0
[ 1494.883672][ T1604] em28xx 9-1:0.0: read from i2c device at 0xa0 failed with unknown error (status=65)
[ 1494.894929][ T1604] em28xx 9-1:0.0: board has no eeprom
[ 1495.105245][T15916] syz.3.2902: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1495.127271][T15916] CPU: 0 UID: 0 PID: 15916 Comm: syz.3.2902 Not tainted 6.16.0-rc3-syzkaller-00306-gaaf724ed6926 #0 PREEMPT(undef) 
[ 1495.127465][T15916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1495.127570][T15916] Call Trace:
[ 1495.127634][T15916]  <TASK>
[ 1495.127697][T15916]  __dump_stack+0x26/0x30
[ 1495.127925][T15916]  dump_stack_lvl+0x1df/0x270
[ 1495.128133][T15916]  dump_stack+0x1e/0x25
[ 1495.128323][T15916]  warn_alloc+0x470/0x690
[ 1495.128574][T15916]  ? kmsan_get_metadata+0xfb/0x160
[ 1495.128824][T15916]  __vmalloc_node_range_noprof+0x133/0x2360
[ 1495.129057][T15916]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1495.129304][T15916]  ? should_fail_ex+0x45/0x8a0
[ 1495.129495][T15916]  ? kmsan_get_metadata+0xfb/0x160
[ 1495.129723][T15916]  ? kmsan_get_metadata+0xfb/0x160
[ 1495.129968][T15916]  ? kmsan_get_metadata+0xfb/0x160
[ 1495.130186][T15916]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1495.130426][T15916]  ? kmsan_get_metadata+0xfb/0x160
[ 1495.130657][T15916]  vmalloc_user_noprof+0xce/0x140
[ 1495.130847][T15916]  ? xskq_create+0x11d/0x290
[ 1495.131055][T15916]  xskq_create+0x11d/0x290
[ 1495.131245][T15916]  xsk_init_queue+0xfd/0x1d0
[ 1495.131423][T15916]  xsk_setsockopt+0x873/0xc30
[ 1495.131619][T15916]  do_sock_setsockopt+0x4d9/0x820
[ 1495.131796][T15916]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1495.131980][T15916]  __ia32_sys_setsockopt+0x2ac/0x4a0
[ 1495.132183][T15916]  ia32_sys_call+0x41fa/0x42c0
[ 1495.132334][T15916]  __do_fast_syscall_32+0xb0/0x150
[ 1495.132527][T15916]  do_fast_syscall_32+0x38/0x80
[ 1495.132691][T15916]  do_SYSENTER_32+0x1f/0x30
[ 1495.132881][T15916]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1495.133083][T15916] RIP: 0023:0xf7f33539
[ 1495.133198][T15916] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1495.133341][T15916] RSP: 002b:00000000f503555c EFLAGS: 00000206 ORIG_RAX: 000000000000016e
[ 1495.133497][T15916] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000000000011b
[ 1495.133604][T15916] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[ 1495.133704][T15916] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1495.133801][T15916] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1495.133906][T15916] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1495.134044][T15916]  </TASK>
[ 1495.381762][T15916] Mem-Info:
[ 1495.386967][T15916] active_anon:4815 inactive_anon:0 isolated_anon:0
[ 1495.386967][T15916]  active_file:2141 inactive_file:40295 isolated_file:0
[ 1495.386967][T15916]  unevictable:768 dirty:72 writeback:0
[ 1495.386967][T15916]  slab_reclaimable:2912 slab_unreclaimable:24089
[ 1495.386967][T15916]  mapped:29561 shmem:1398 pagetables:1577
[ 1495.386967][T15916]  sec_pagetables:0 bounce:0
[ 1495.386967][T15916]  kernel_misc_reclaimable:0
[ 1495.386967][T15916]  free:365578 free_pcp:12098 free_cma:0
[ 1495.438027][T15916] Node 0 active_anon:19260kB inactive_anon:0kB active_file:8424kB inactive_file:160980kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:118128kB dirty:288kB writeback:0kB shmem:4056kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:5280kB pagetables:5856kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1495.475483][T15916] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:116kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:32kB pagetables:452kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1495.509289][T15916] Node 0 DMA free:4096kB boost:0kB min:164kB low:204kB high:244kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:4096kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1495.543892][T15916] lowmem_reserve[]: 0 930 1243 1243 1243
[ 1495.550447][T15916] Node 0 DMA32 free:528376kB boost:0kB min:36868kB low:46084kB high:55300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:3468kB inactive_anon:0kB active_file:3400kB inactive_file:83644kB unevictable:0kB writepending:212kB present:3129332kB managed:952960kB mlocked:0kB bounce:0kB free_pcp:34272kB local_pcp:13624kB free_cma:0kB
[ 1495.553149][ T1604] em28xx 9-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[ 1495.584647][T15916] lowmem_reserve[]:
[ 1495.592063][ T1604] em28xx 9-1:0.0: dvb set to bulk mode.
[ 1495.602377][T15916]  0 0 312 312 312
[ 1495.607194][T15916] Node 0 Normal free:20432kB boost:4096kB min:17100kB low:20348kB high:23596kB reserved_highatomic:0KB free_highatomic:0KB active_anon:15856kB inactive_anon:0kB active_file:5024kB inactive_file:77336kB unevictable:1536kB writepending:76kB present:1048580kB managed:320456kB mlocked:0kB bounce:0kB free_pcp:13984kB local_pcp:7836kB free_cma:0kB
[ 1495.633813][   T42] em28xx 9-1:0.0: Binding DVB extension
[ 1495.644763][T15916] lowmem_reserve[]: 0 0 0 0 0
[ 1495.651776][T15916] Node 1 Normal free:909408kB boost:0kB min:40064kB low:50080kB high:60096kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:987204kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1495.686651][T15916] lowmem_reserve[]: 0 0 0 0 0
[ 1495.692247][T15916] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 1*4096kB (M) = 4096kB
[ 1495.706739][T15916] Node 0 DMA32: 1452*4kB (UME) 755*8kB (UME) 447*16kB (UME) 140*32kB (UME) 89*64kB (UME) 76*128kB (UME) 38*256kB (UM) 19*512kB (UM) 15*1024kB (UE) 10*2048kB (UME) 106*4096kB (UM) = 528376kB
[ 1495.733533][T15916] Node 0 Normal: 328*4kB (UME) 580*8kB (UME) 303*16kB (UME) 75*32kB (ME) 40*64kB (UME) 24*128kB (UME) 4*256kB (UE) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 20368kB
[ 1495.754229][T15916] Node 1 Normal: 18*4kB (UME) 23*8kB (UME) 22*16kB (UME) 30*32kB (UME) 21*64kB (UME) 14*128kB (UME) 12*256kB (UM) 5*512kB (U) 2*1024kB (ME) 4*2048kB (UM) 217*4096kB (UM) = 909408kB
[ 1495.775473][T15916] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1495.785676][T15916] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1495.795759][T15916] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1495.806134][T15916] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1495.816203][T15916] 43819 total pagecache pages
[ 1495.821245][T15916] 0 pages in swap cache
[ 1495.830227][T15916] Free swap  = 124996kB
[ 1495.836520][T15916] Total swap = 124996kB
[ 1495.840972][T15916] 2097051 pages RAM
[ 1495.845325][T15916] 0 pages HighMem/MovableOnly
[ 1495.850609][T15916] 1530872 pages reserved
[ 1495.855546][T15916] 0 pages cma reserved
[ 1495.929880][ T1604] usb 9-1: USB disconnect, device number 56
[ 1495.938587][ T1604] em28xx 9-1:0.0: Disconnecting em28xx
[ 1496.253716][   T42] em28xx 9-1:0.0: Registering input extension
[ 1496.284493][ T1604] em28xx 9-1:0.0: Closing input extension
[ 1496.345990][ T1604] em28xx 9-1:0.0: Freeing device
[ 1496.524020][T15918] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 1497.435068][T15941] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2909'.
[ 1498.328221][T15956] 8021q: VLANs not supported on vcan0
[ 1499.433218][ T1604] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[ 1499.656780][ T1604] usb 4-1: Using ep0 maxpacket: 16
[ 1499.727473][ T1604] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1499.805243][ T1604] usb 4-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1499.815208][ T1604] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1499.825839][ T1604] usb 4-1: Product: syz
[ 1499.830328][ T1604] usb 4-1: Manufacturer: syz
[ 1499.839834][ T1604] usb 4-1: SerialNumber: syz
[ 1499.938427][ T1604] usb 4-1: config 0 descriptor??
[ 1499.984327][ T1604] em28xx 4-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1499.994683][ T1604] em28xx 4-1:0.0: DVB interface 0 found: bulk
[ 1500.677453][ T1604] em28xx 4-1:0.0: unknown em28xx chip ID (0)
[ 1500.727710][T15983] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2924'.
[ 1501.306495][ T1604] em28xx 4-1:0.0: read from i2c device at 0xa0 failed with unknown error (status=65)
[ 1501.316910][ T1604] em28xx 4-1:0.0: board has no eeprom
[ 1501.690459][T15994] 8021q: VLANs not supported on vcan0
[ 1501.823283][ T1604] em28xx 4-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[ 1501.831640][ T1604] em28xx 4-1:0.0: dvb set to bulk mode.
[ 1501.840546][   T42] em28xx 4-1:0.0: Binding DVB extension
[ 1501.920253][ T1604] usb 4-1: USB disconnect, device number 46
[ 1501.929376][ T1604] em28xx 4-1:0.0: Disconnecting em28xx
[ 1502.327951][   T42] em28xx 4-1:0.0: Registering input extension
[ 1502.393247][ T1604] em28xx 4-1:0.0: Closing input extension
[ 1502.459488][ T1604] em28xx 4-1:0.0: Freeing device
[ 1503.218033][T16015] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2934'.
[ 1503.927280][T16015] Bluetooth: hci0: Opcode 0x0401 failed: -4
[ 1504.973741][ T5851] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[ 1505.181819][ T5851] usb 2-1: Using ep0 maxpacket: 32
[ 1505.209591][ T5851] usb 2-1: config 0 has an invalid interface number: 67 but max is 0
[ 1505.220582][ T5851] usb 2-1: config 0 has no interface number 0
[ 1505.323844][ T1604] usb 10-1: new high-speed USB device number 35 using dummy_hcd
[ 1505.362456][ T5851] usb 2-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[ 1505.373148][ T5851] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1505.381523][ T5851] usb 2-1: Product: syz
[ 1505.386297][ T5851] usb 2-1: Manufacturer: syz
[ 1505.391284][ T5851] usb 2-1: SerialNumber: syz
[ 1505.515866][ T5851] usb 2-1: config 0 descriptor??
[ 1505.533252][ T1604] usb 10-1: Using ep0 maxpacket: 16
[ 1505.557655][ T5851] smsc95xx v2.0.0
[ 1505.571671][ T1604] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1505.634396][ T1604] usb 10-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1505.644642][ T1604] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1505.655699][ T1604] usb 10-1: Product: syz
[ 1505.660931][ T1604] usb 10-1: Manufacturer: syz
[ 1505.666270][ T1604] usb 10-1: SerialNumber: syz
[ 1505.814708][ T1604] usb 10-1: config 0 descriptor??
[ 1505.845111][ T1604] em28xx 10-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1505.855485][ T1604] em28xx 10-1:0.0: DVB interface 0 found: bulk
[ 1506.019089][ T5851] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[ 1506.030603][ T5851] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1506.555516][ T1604] em28xx 10-1:0.0: unknown em28xx chip ID (0)
[ 1506.886711][ T5851] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32
[ 1506.902477][ T5851] smsc95xx 2-1:0.67: probe with driver smsc95xx failed with error -32
[ 1507.230122][ T1604] em28xx 10-1:0.0: read from i2c device at 0xa0 failed with unknown error (status=65)
[ 1507.246364][ T1604] em28xx 10-1:0.0: board has no eeprom
[ 1507.693800][ T1604] em28xx 10-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[ 1507.705114][ T1604] em28xx 10-1:0.0: dvb set to bulk mode.
[ 1507.715376][   T42] em28xx 10-1:0.0: Binding DVB extension
[ 1507.743515][T16063] netlink: 'syz.3.2950': attribute type 13 has an invalid length.
[ 1507.752223][T16063] netlink: 'syz.3.2950': attribute type 17 has an invalid length.
[ 1507.760759][T16063] netlink: 'syz.3.2950': attribute type 27 has an invalid length.
[ 1507.802444][ T1604] usb 10-1: USB disconnect, device number 35
[ 1507.817211][ T1604] em28xx 10-1:0.0: Disconnecting em28xx
[ 1507.980373][T16067] netlink: 36 bytes leftover after parsing attributes in process `syz.8.2951'.
[ 1508.232376][   T42] em28xx 10-1:0.0: Registering input extension
[ 1508.283034][ T1604] em28xx 10-1:0.0: Closing input extension
[ 1508.308861][T16071] 8021q: VLANs not supported on vcan0
[ 1508.375652][ T1604] em28xx 10-1:0.0: Freeing device
[ 1508.455409][ T5851] usb 2-1: USB disconnect, device number 47
[ 1508.745908][T16067] Bluetooth: hci0: Opcode 0x0401 failed: -4
[ 1511.334080][ T5851] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[ 1511.374649][ T1604] usb 3-1: new high-speed USB device number 56 using dummy_hcd
[ 1511.378034][T16106] bridge0: entered promiscuous mode
[ 1511.394568][T16106] vlan2: entered promiscuous mode
[ 1511.597823][ T5851] usb 2-1: Using ep0 maxpacket: 32
[ 1511.613294][ T1604] usb 3-1: Using ep0 maxpacket: 16
[ 1511.628026][ T5851] usb 2-1: config 0 has an invalid interface number: 67 but max is 0
[ 1511.636908][ T5851] usb 2-1: config 0 has no interface number 0
[ 1511.646130][ T1604] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1511.681643][ T5851] usb 2-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[ 1511.691526][ T5851] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1511.703974][ T5851] usb 2-1: Product: syz
[ 1511.705649][ T1604] usb 3-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1511.708371][ T5851] usb 2-1: Manufacturer: syz
[ 1511.708496][ T5851] usb 2-1: SerialNumber: syz
[ 1511.717969][ T1604] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1511.718132][ T1604] usb 3-1: Product: syz
[ 1511.718251][ T1604] usb 3-1: Manufacturer: syz
[ 1511.718373][ T1604] usb 3-1: SerialNumber: syz
[ 1511.789565][ T1604] usb 3-1: config 0 descriptor??
[ 1511.857895][ T1604] em28xx 3-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1511.867933][ T1604] em28xx 3-1:0.0: DVB interface 0 found: bulk
[ 1511.904990][ T5851] usb 2-1: config 0 descriptor??
[ 1511.965830][ T5851] smsc95xx v2.0.0
[ 1512.398174][ T5851] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[ 1512.411222][ T5851] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1512.486982][ T1604] em28xx 3-1:0.0: unknown em28xx chip ID (0)
[ 1513.157715][T16119] netlink: 72 bytes leftover after parsing attributes in process `syz.8.2970'.
[ 1513.157973][ T1604] em28xx 3-1:0.0: read from i2c device at 0xa0 failed with unknown error (status=65)
[ 1513.180535][ T1604] em28xx 3-1:0.0: board has no eeprom
[ 1513.254879][ T5851] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32
[ 1513.268010][ T5851] smsc95xx 2-1:0.67: probe with driver smsc95xx failed with error -32
[ 1513.643927][ T1604] em28xx 3-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[ 1513.652360][ T1604] em28xx 3-1:0.0: dvb set to bulk mode.
[ 1513.674278][   T42] em28xx 3-1:0.0: Binding DVB extension
[ 1513.732067][ T1604] usb 3-1: USB disconnect, device number 56
[ 1513.744957][ T1604] em28xx 3-1:0.0: Disconnecting em28xx
[ 1514.088928][   T42] em28xx 3-1:0.0: Registering input extension
[ 1514.139374][ T1604] em28xx 3-1:0.0: Closing input extension
[ 1514.210896][ T1604] em28xx 3-1:0.0: Freeing device
[ 1514.792450][ T1604] usb 2-1: USB disconnect, device number 48
[ 1514.895582][T16144] netlink: 180 bytes leftover after parsing attributes in process `syz.2.2978'.
[ 1515.108150][T16146] vlan2: entered promiscuous mode
[ 1515.114007][T16146] bridge0: entered promiscuous mode
[ 1516.000364][T16159] netlink: 72 bytes leftover after parsing attributes in process `syz.8.2983'.
[ 1517.114169][ T1604] usb 3-1: new high-speed USB device number 57 using dummy_hcd
[ 1517.324751][ T1604] usb 3-1: Using ep0 maxpacket: 16
[ 1517.345079][   T42] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[ 1517.396407][ T1604] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1517.452322][ T1604] usb 3-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1517.462591][ T1604] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1517.471170][ T1604] usb 3-1: Product: syz
[ 1517.476022][ T1604] usb 3-1: Manufacturer: syz
[ 1517.480942][ T1604] usb 3-1: SerialNumber: syz
[ 1517.584382][   T42] usb 2-1: Using ep0 maxpacket: 32
[ 1517.594784][ T1604] usb 3-1: config 0 descriptor??
[ 1517.615536][ T1604] em28xx 3-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1517.625509][ T1604] em28xx 3-1:0.0: DVB interface 0 found: bulk
[ 1517.648826][   T42] usb 2-1: config 0 has an invalid interface number: 67 but max is 0
[ 1517.658632][   T42] usb 2-1: config 0 has no interface number 0
[ 1517.764280][   T42] usb 2-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[ 1517.774416][   T42] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1517.783116][   T42] usb 2-1: Product: syz
[ 1517.787821][   T42] usb 2-1: Manufacturer: syz
[ 1517.793117][   T42] usb 2-1: SerialNumber: syz
[ 1517.859183][   T42] usb 2-1: config 0 descriptor??
[ 1517.887506][   T42] smsc95xx v2.0.0
[ 1518.254828][ T1604] em28xx 3-1:0.0: unknown em28xx chip ID (0)
[ 1518.366571][T16185] vlan2: entered promiscuous mode
[ 1518.404231][   T42] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[ 1518.416364][   T42] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1518.899844][ T1604] em28xx 3-1:0.0: read from i2c device at 0xa0 failed with unknown error (status=65)
[ 1518.911258][ T1604] em28xx 3-1:0.0: board has no eeprom
[ 1519.267019][   T42] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32
[ 1519.283483][   T42] smsc95xx 2-1:0.67: probe with driver smsc95xx failed with error -32
[ 1519.383923][ T1604] em28xx 3-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[ 1519.392393][ T1604] em28xx 3-1:0.0: dvb set to bulk mode.
[ 1519.403772][   T42] em28xx 3-1:0.0: Binding DVB extension
[ 1519.455109][ T1604] usb 3-1: USB disconnect, device number 57
[ 1519.463585][ T1604] em28xx 3-1:0.0: Disconnecting em28xx
[ 1519.843561][   T42] em28xx 3-1:0.0: Registering input extension
[ 1519.878275][ T1604] em28xx 3-1:0.0: Closing input extension
[ 1519.958607][ T1604] em28xx 3-1:0.0: Freeing device
[ 1520.482035][T16211] syz.9.3000: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1520.499871][T16211] CPU: 1 UID: 0 PID: 16211 Comm: syz.9.3000 Not tainted 6.16.0-rc3-syzkaller-00306-gaaf724ed6926 #0 PREEMPT(undef) 
[ 1520.500065][T16211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1520.500169][T16211] Call Trace:
[ 1520.500234][T16211]  <TASK>
[ 1520.500298][T16211]  __dump_stack+0x26/0x30
[ 1520.500509][T16211]  dump_stack_lvl+0x1df/0x270
[ 1520.500732][T16211]  dump_stack+0x1e/0x25
[ 1520.500913][T16211]  warn_alloc+0x470/0x690
[ 1520.501159][T16211]  ? kmsan_get_metadata+0xfb/0x160
[ 1520.501402][T16211]  __vmalloc_node_range_noprof+0x133/0x2360
[ 1520.501622][T16211]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1520.501875][T16211]  ? should_fail_ex+0x45/0x8a0
[ 1520.502064][T16211]  ? kmsan_get_metadata+0xfb/0x160
[ 1520.502290][T16211]  ? kmsan_get_metadata+0xfb/0x160
[ 1520.502511][T16211]  ? kmsan_get_metadata+0xfb/0x160
[ 1520.502736][T16211]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1520.502984][T16211]  ? kmsan_get_metadata+0xfb/0x160
[ 1520.503223][T16211]  vmalloc_user_noprof+0xce/0x140
[ 1520.503424][T16211]  ? xskq_create+0x11d/0x290
[ 1520.503622][T16211]  xskq_create+0x11d/0x290
[ 1520.503826][T16211]  xsk_init_queue+0xfd/0x1d0
[ 1520.504008][T16211]  xsk_setsockopt+0x873/0xc30
[ 1520.504205][T16211]  do_sock_setsockopt+0x4d9/0x820
[ 1520.504379][T16211]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1520.504567][T16211]  __ia32_sys_setsockopt+0x2ac/0x4a0
[ 1520.504784][T16211]  ia32_sys_call+0x41fa/0x42c0
[ 1520.504943][T16211]  __do_fast_syscall_32+0xb0/0x150
[ 1520.505139][T16211]  do_fast_syscall_32+0x38/0x80
[ 1520.505306][T16211]  do_SYSENTER_32+0x1f/0x30
[ 1520.505458][T16211]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1520.505670][T16211] RIP: 0023:0xf70be539
[ 1520.505797][T16211] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1520.505946][T16211] RSP: 002b:00000000f508d55c EFLAGS: 00000206 ORIG_RAX: 000000000000016e
[ 1520.506096][T16211] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000000000011b
[ 1520.506210][T16211] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[ 1520.506305][T16211] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1520.506395][T16211] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1520.506489][T16211] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1520.506627][T16211]  </TASK>
[ 1520.750950][T16211] Mem-Info:
[ 1520.755258][T16211] active_anon:4885 inactive_anon:0 isolated_anon:0
[ 1520.755258][T16211]  active_file:2141 inactive_file:40303 isolated_file:0
[ 1520.755258][T16211]  unevictable:768 dirty:45 writeback:0
[ 1520.755258][T16211]  slab_reclaimable:2913 slab_unreclaimable:24142
[ 1520.755258][T16211]  mapped:29646 shmem:1398 pagetables:1569
[ 1520.755258][T16211]  sec_pagetables:0 bounce:0
[ 1520.755258][T16211]  kernel_misc_reclaimable:0
[ 1520.755258][T16211]  free:365967 free_pcp:11539 free_cma:0
[ 1520.803408][T16211] Node 0 active_anon:19540kB inactive_anon:0kB active_file:8424kB inactive_file:161012kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:118452kB dirty:180kB writeback:0kB shmem:4056kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:5296kB pagetables:5892kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1520.840694][T16211] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:132kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:32kB pagetables:452kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1520.875102][T16211] Node 0 DMA free:4096kB boost:0kB min:164kB low:204kB high:244kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:4096kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1520.905066][T16211] lowmem_reserve[]: 0 930 1243 1243 1243
[ 1520.914033][T16211] Node 0 DMA32 free:528376kB boost:0kB min:36868kB low:46084kB high:55300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:3396kB inactive_anon:0kB active_file:3400kB inactive_file:83644kB unevictable:0kB writepending:160kB present:3129332kB managed:952960kB mlocked:0kB bounce:0kB free_pcp:34408kB local_pcp:20772kB free_cma:0kB
[ 1520.947458][T16211] lowmem_reserve[]: 0 0 312 312 312
[ 1520.954003][T16211] Node 0 Normal free:21988kB boost:4096kB min:17100kB low:20348kB high:23596kB reserved_highatomic:0KB free_highatomic:0KB active_anon:16400kB inactive_anon:0kB active_file:5024kB inactive_file:77368kB unevictable:1536kB writepending:36kB present:1048580kB managed:320456kB mlocked:0kB bounce:0kB free_pcp:11464kB local_pcp:5384kB free_cma:0kB
[ 1520.987282][T16211] lowmem_reserve[]: 0 0 0 0 0
[ 1520.993077][T16211] Node 1 Normal free:909408kB boost:0kB min:40064kB low:50080kB high:60096kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:987204kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1521.027952][T16211] lowmem_reserve[]: 0 0 0 0 0
[ 1521.034436][T16211] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 1*4096kB (M) = 4096kB
[ 1521.048224][T16211] Node 0 DMA32: 1452*4kB (UME) 755*8kB (UME) 447*16kB (UME) 140*32kB (UME) 89*64kB (UME) 76*128kB (UME) 38*256kB (UM) 19*512kB (UM) 15*1024kB (UE) 10*2048kB (UME) 106*4096kB (UM) = 528376kB
[ 1521.070507][T16211] Node 0 Normal: 631*4kB (UME) 611*8kB (UME) 327*16kB (UME) 76*32kB (ME) 38*64kB (UME) 23*128kB (UME) 4*256kB (UE) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 21988kB
[ 1521.090035][T16211] Node 1 Normal: 18*4kB (UME) 23*8kB (UME) 22*16kB (UME) 30*32kB (UME) 21*64kB (UME) 14*128kB (UME) 12*256kB (UM) 5*512kB (U) 2*1024kB (ME) 4*2048kB (UM) 217*4096kB (UM) = 909408kB
[ 1521.111377][T16211] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1521.124095][T16211] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1521.135248][T16211] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1521.146037][T16211] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1521.156213][T16211] 43828 total pagecache pages
[ 1521.161148][T16211] 0 pages in swap cache
[ 1521.165888][T16211] Free swap  = 124996kB
[ 1521.170334][T16211] Total swap = 124996kB
[ 1521.175035][T16211] 2097051 pages RAM
[ 1521.179093][T16211] 0 pages HighMem/MovableOnly
[ 1521.184272][T16211] 1530872 pages reserved
[ 1521.188762][T16211] 0 pages cma reserved
[ 1521.226301][ T5851] usb 2-1: USB disconnect, device number 49
[ 1521.432534][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[ 1521.439644][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[ 1522.449456][ T1604] IPVS: starting estimator thread 0...
[ 1522.540887][T16231] netlink: 'syz.2.3006': attribute type 1 has an invalid length.
[ 1522.569213][T16233] IPVS: using max 192 ests per chain, 9600 per kthread
[ 1524.403220][ T1604] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[ 1524.604236][ T1604] usb 3-1: Using ep0 maxpacket: 16
[ 1524.652245][T16262] netlink: 16 bytes leftover after parsing attributes in process `syz.8.3013'.
[ 1524.673531][ T1604] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1524.734133][ T1604] usb 3-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1524.744779][ T1604] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1524.753430][ T1604] usb 3-1: Product: syz
[ 1524.757892][ T1604] usb 3-1: Manufacturer: syz
[ 1524.763151][ T1604] usb 3-1: SerialNumber: syz
[ 1524.902944][ T1604] usb 3-1: config 0 descriptor??
[ 1524.949064][ T1604] em28xx 3-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1524.959285][ T1604] em28xx 3-1:0.0: DVB interface 0 found: bulk
[ 1525.606173][ T1604] em28xx 3-1:0.0: unknown em28xx chip ID (0)
[ 1526.268553][ T1604] em28xx 3-1:0.0: read from i2c device at 0xa0 failed with unknown error (status=65)
[ 1526.279018][ T1604] em28xx 3-1:0.0: board has no eeprom
[ 1526.756550][ T1604] em28xx 3-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[ 1526.771492][ T1604] em28xx 3-1:0.0: dvb set to bulk mode.
[ 1526.783657][   T42] em28xx 3-1:0.0: Binding DVB extension
[ 1526.855039][ T1604] usb 3-1: USB disconnect, device number 58
[ 1526.863627][ T1604] em28xx 3-1:0.0: Disconnecting em28xx
[ 1527.343447][   T42] em28xx 3-1:0.0: Registering input extension
[ 1527.371417][ T1604] em28xx 3-1:0.0: Closing input extension
[ 1527.458326][ T1604] em28xx 3-1:0.0: Freeing device
[ 1527.923308][T16308] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3027'.
[ 1529.993351][T16301] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1532.440087][T16367] netlink: 24 bytes leftover after parsing attributes in process `syz.8.3046'.
[ 1533.038790][T16378] netlink: 32 bytes leftover after parsing attributes in process `syz.9.3049'.
[ 1534.027887][T16394] netlink: 1624 bytes leftover after parsing attributes in process `syz.1.3053'.
[ 1535.956409][T16424] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3063'.
[ 1536.178297][T16428] netlink: 'syz.8.3064': attribute type 34 has an invalid length.
[ 1536.754619][T16437] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[ 1538.221480][T16459] netlink: 72 bytes leftover after parsing attributes in process `syz.9.3075'.
[ 1538.726263][T16464] lo speed is unknown, defaulting to 1000
[ 1539.098342][T16469] netlink: 'syz.8.3078': attribute type 34 has an invalid length.
[ 1539.457545][T16473] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3080'.
[ 1539.467097][T16473] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3080'.
[ 1540.517374][T16486] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3084'.
[ 1541.324307][T16498] netlink: 72 bytes leftover after parsing attributes in process `syz.9.3089'.
[ 1542.243340][T16508] netlink: 'syz.9.3092': attribute type 34 has an invalid length.
[ 1542.831363][T16514] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3094'.
[ 1542.840964][T16514] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3094'.
[ 1544.033240][ T1604] usb 3-1: new high-speed USB device number 59 using dummy_hcd
[ 1544.164869][T16531] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3099'.
[ 1544.284627][ T1604] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1544.294227][ T1604] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1544.363109][ T1604] usb 3-1: config 0 descriptor??
[ 1544.414709][ T1604] cp210x 3-1:0.0: cp210x converter detected
[ 1544.819839][ T1604] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -32
[ 1544.839942][ T1604] cp210x 3-1:0.0: failed to get vendor val 0x370c size 73: -121
[ 1544.848347][ T1604] cp210x 3-1:0.0: GPIO initialisation failed: -121
[ 1544.902161][ T1604] usb 3-1: cp210x converter now attached to ttyUSB0
[ 1545.063248][ T1604] usb 3-1: USB disconnect, device number 59
[ 1545.104824][ T1604] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1545.116402][ T1604] cp210x 3-1:0.0: device disconnected
[ 1545.636051][T16545] netlink: 'syz.3.3106': attribute type 34 has an invalid length.
[ 1546.242270][T16552] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3108'.
[ 1546.256972][T16552] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3108'.
[ 1546.878510][T16563] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.3110'.
[ 1547.119774][T16563] netlink: 'syz.1.3110': attribute type 3 has an invalid length.
[ 1548.359418][ T1604] usb 3-1: new high-speed USB device number 60 using dummy_hcd
[ 1548.577415][ T1604] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1548.587351][ T1604] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1548.659623][ T1604] usb 3-1: config 0 descriptor??
[ 1548.729594][ T1604] cp210x 3-1:0.0: cp210x converter detected
[ 1549.148990][ T1604] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -32
[ 1549.191892][ T1604] cp210x 3-1:0.0: failed to get vendor val 0x370c size 73: -121
[ 1549.200358][ T1604] cp210x 3-1:0.0: GPIO initialisation failed: -121
[ 1549.310029][ T1604] usb 3-1: cp210x converter now attached to ttyUSB0
[ 1549.370653][T11333] usb 3-1: USB disconnect, device number 60
[ 1549.384510][T16588] sctp: failed to load transform for md5: -2
[ 1549.391663][T16591] sctp: failed to load transform for md5: -2
[ 1549.444695][T11333] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1549.454303][T11333] cp210x 3-1:0.0: device disconnected
[ 1549.764222][ T1604] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[ 1549.963143][ T1604] usb 2-1: Using ep0 maxpacket: 32
[ 1550.017936][ T1604] usb 2-1: config 0 has an invalid interface number: 184 but max is 0
[ 1550.027002][ T1604] usb 2-1: config 0 has no interface number 0
[ 1550.033725][ T1604] usb 2-1: config 0 interface 184 has no altsetting 0
[ 1550.121827][ T1604] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1550.131611][ T1604] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1550.140220][ T1604] usb 2-1: Product: syz
[ 1550.144785][ T1604] usb 2-1: Manufacturer: syz
[ 1550.149795][ T1604] usb 2-1: SerialNumber: syz
[ 1550.249565][ T1604] usb 2-1: config 0 descriptor??
[ 1550.289938][ T1604] smsc75xx v1.0.0
[ 1551.020715][T16617] bridge0: entered promiscuous mode
[ 1551.028349][T16617] vlan2: entered promiscuous mode
[ 1551.059056][ T1604] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[ 1551.070474][ T1604] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1551.345456][ T1604] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000010: -32
[ 1551.357220][ T1604] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read HW_CFG: -32
[ 1551.367286][ T1604] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -32
[ 1551.378368][ T1604] smsc75xx 2-1:0.184: probe with driver smsc75xx failed with error -32
[ 1551.436035][T16620] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.3129'.
[ 1551.562529][T16621] netlink: 'syz.3.3129': attribute type 3 has an invalid length.
[ 1552.806915][ T1604] usb 2-1: USB disconnect, device number 50
[ 1553.823378][T11333] usb 4-1: new high-speed USB device number 47 using dummy_hcd
[ 1554.068223][T11333] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1554.078232][T11333] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1554.147002][T11333] usb 4-1: config 0 descriptor??
[ 1554.174264][T16655] veth5: entered promiscuous mode
[ 1554.201233][T11333] cp210x 4-1:0.0: cp210x converter detected
[ 1554.410438][T16656] vlan2: entered promiscuous mode
[ 1554.416157][T16656] bridge0: entered promiscuous mode
[ 1554.597646][T11333] cp210x 4-1:0.0: failed to get vendor val 0x000e size 3: -32
[ 1554.656000][T11333] cp210x 4-1:0.0: failed to get vendor val 0x370c size 73: -121
[ 1554.665176][T11333] cp210x 4-1:0.0: GPIO initialisation failed: -121
[ 1554.767143][T11333] usb 4-1: cp210x converter now attached to ttyUSB0
[ 1554.835152][T11333] usb 4-1: USB disconnect, device number 47
[ 1554.901083][T11333] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1554.915481][T11333] cp210x 4-1:0.0: device disconnected
[ 1555.128038][T16663] lo speed is unknown, defaulting to 1000
[ 1555.598000][T16671] netlink: 'syz.2.3144': attribute type 3 has an invalid length.
[ 1555.958181][T16675] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3145'.
[ 1556.403088][T11333] usb 10-1: new high-speed USB device number 36 using dummy_hcd
[ 1556.573499][T11333] usb 10-1: Using ep0 maxpacket: 32
[ 1556.601743][T16684] netlink: 'syz.2.3148': attribute type 13 has an invalid length.
[ 1556.603122][T11333] usb 10-1: config 0 has an invalid interface number: 184 but max is 0
[ 1556.620652][T11333] usb 10-1: config 0 has no interface number 0
[ 1556.627525][T11333] usb 10-1: config 0 interface 184 has no altsetting 0
[ 1556.843805][T11333] usb 10-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1556.858217][T11333] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1556.868917][T11333] usb 10-1: Product: syz
[ 1556.873655][T11333] usb 10-1: Manufacturer: syz
[ 1556.878666][T11333] usb 10-1: SerialNumber: syz
[ 1556.971666][T11333] usb 10-1: config 0 descriptor??
[ 1557.011879][T11333] smsc75xx v1.0.0
[ 1557.604289][T16684] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1557.613489][T16684] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1557.913068][T16684] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1557.950946][T16684] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1557.987779][T11333] smsc75xx 10-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[ 1557.999432][T11333] smsc75xx 10-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1558.268795][T11333] smsc75xx 10-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000010: -32
[ 1558.281084][T11333] smsc75xx 10-1:0.184 (unnamed net_device) (uninitialized): Failed to read HW_CFG: -32
[ 1558.297210][T11333] smsc75xx 10-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -32
[ 1558.310123][T11333] smsc75xx 10-1:0.184: probe with driver smsc75xx failed with error -32
[ 1558.646013][T16684] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1558.657376][T16684] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1558.667035][T16684] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1558.677013][T16684] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1558.784611][T16704] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3153'.
[ 1559.783085][ T1604] usb 10-1: USB disconnect, device number 36
[ 1560.268006][T16715] veth5: entered promiscuous mode
[ 1560.425841][T16714] vlan2: entered promiscuous mode
[ 1560.501256][T16307] usb 9-1: new high-speed USB device number 57 using dummy_hcd
[ 1560.703216][T16307] usb 9-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1560.713009][T16307] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1560.784592][T16307] usb 9-1: config 0 descriptor??
[ 1560.843513][T16307] cp210x 9-1:0.0: cp210x converter detected
[ 1561.268321][T16307] cp210x 9-1:0.0: failed to get vendor val 0x000e size 3: -32
[ 1561.394123][T16307] cp210x 9-1:0.0: failed to get vendor val 0x370c size 73: -121
[ 1561.402194][T16307] cp210x 9-1:0.0: GPIO initialisation failed: -121
[ 1561.434252][T16307] usb 9-1: cp210x converter now attached to ttyUSB0
[ 1561.505310][T16733] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3160'.
[ 1561.539825][ T1604] usb 9-1: USB disconnect, device number 57
[ 1561.575498][ T1604] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1561.585255][ T1604] cp210x 9-1:0.0: device disconnected
[ 1563.421754][T16759] netlink: 'syz.8.3166': attribute type 13 has an invalid length.
[ 1564.414676][T16759] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1564.423689][T16759] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1564.923804][T16759] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1564.959681][T16759] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1565.604946][T16759] netdevsim netdevsim8 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1565.614446][T16759] netdevsim netdevsim8 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1565.624098][T16759] netdevsim netdevsim8 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1565.633614][T16759] netdevsim netdevsim8 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1566.195636][ T1604] lo speed is unknown, defaulting to 1000
[ 1566.201966][ T1604] syz1: Port: 1 Link DOWN
[ 1566.256586][T16773] vlan2: entered promiscuous mode
[ 1566.773808][T16789] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3174'.
[ 1568.898799][T16822] netlink: 'syz.9.3187': attribute type 13 has an invalid length.
[ 1569.517734][ T1604] usb 9-1: new high-speed USB device number 58 using dummy_hcd
[ 1569.572551][T16830] vlan2: entered promiscuous mode
[ 1569.736132][ T1604] usb 9-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1569.746213][ T1604] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1569.805322][ T1604] usb 9-1: config 0 descriptor??
[ 1569.840848][ T1604] cp210x 9-1:0.0: cp210x converter detected
[ 1569.992550][T16835] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3189'.
[ 1570.385217][ T1604] cp210x 9-1:0.0: failed to get vendor val 0x000e size 3: -32
[ 1570.417408][ T1604] cp210x 9-1:0.0: failed to get vendor val 0x370c size 73: -121
[ 1570.428224][ T1604] cp210x 9-1:0.0: GPIO initialisation failed: -121
[ 1570.483846][ T1604] usb 9-1: cp210x converter now attached to ttyUSB0
[ 1570.619262][ T5851] usb 9-1: USB disconnect, device number 58
[ 1570.668755][ T5851] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1570.680678][ T5851] cp210x 9-1:0.0: device disconnected
[ 1572.065999][T15688] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1572.074491][T15688] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1572.760811][T16874] vlan2: entered promiscuous mode
[ 1573.168295][T16858] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1573.185817][T16858] bond0: (slave bond1): Enslaving as an active interface with an up link
[ 1573.224720][T16881] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3203'.
[ 1574.733315][ T1604] usb 9-1: new high-speed USB device number 59 using dummy_hcd
[ 1574.987073][ T1604] usb 9-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1574.997180][ T1604] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1575.057634][ T1604] usb 9-1: config 0 descriptor??
[ 1575.101425][ T1604] cp210x 9-1:0.0: cp210x converter detected
[ 1575.301688][T16907] lo: entered allmulticast mode
[ 1575.520861][ T7422] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1575.529879][ T7422] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1575.580996][ T1604] cp210x 9-1:0.0: failed to get vendor val 0x000e size 3: -32
[ 1575.610433][ T1604] cp210x 9-1:0.0: failed to get vendor val 0x370c size 73: -121
[ 1575.619071][ T1604] cp210x 9-1:0.0: GPIO initialisation failed: -121
[ 1575.704329][ T1604] usb 9-1: cp210x converter now attached to ttyUSB0
[ 1575.813593][ T1604] usb 9-1: USB disconnect, device number 59
[ 1575.870328][ T1604] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1575.880381][ T1604] cp210x 9-1:0.0: device disconnected
[ 1576.390271][T16920] vlan2: entered promiscuous mode
[ 1576.603584][T16924] netlink: 96 bytes leftover after parsing attributes in process `syz.2.3217'.
[ 1578.294504][T16946] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3224'.
[ 1578.304572][T16946] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1578.312064][T16946] IPv6: NLM_F_CREATE should be set when creating new route
[ 1579.320614][T16965] warn_alloc: 1 callbacks suppressed
[ 1579.320726][T16965] syz.1.3228: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1579.343868][T16965] CPU: 0 UID: 0 PID: 16965 Comm: syz.1.3228 Not tainted 6.16.0-rc3-syzkaller-00306-gaaf724ed6926 #0 PREEMPT(undef) 
[ 1579.344093][T16965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1579.344212][T16965] Call Trace:
[ 1579.344276][T16965]  <TASK>
[ 1579.344342][T16965]  __dump_stack+0x26/0x30
[ 1579.344573][T16965]  dump_stack_lvl+0x1df/0x270
[ 1579.344795][T16965]  dump_stack+0x1e/0x25
[ 1579.344997][T16965]  warn_alloc+0x470/0x690
[ 1579.345289][T16965]  ? kmsan_get_metadata+0xfb/0x160
[ 1579.345534][T16965]  __vmalloc_node_range_noprof+0x133/0x2360
[ 1579.345762][T16965]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1579.346014][T16965]  ? should_fail_ex+0x45/0x8a0
[ 1579.346203][T16965]  ? kmsan_get_metadata+0xfb/0x160
[ 1579.346475][T16965]  ? kmsan_get_metadata+0xfb/0x160
[ 1579.346704][T16965]  ? kmsan_get_metadata+0xfb/0x160
[ 1579.346929][T16965]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1579.347192][T16965]  ? kmsan_get_metadata+0xfb/0x160
[ 1579.347425][T16965]  vmalloc_user_noprof+0xce/0x140
[ 1579.347627][T16965]  ? xskq_create+0x11d/0x290
[ 1579.347838][T16965]  xskq_create+0x11d/0x290
[ 1579.348033][T16965]  xsk_init_queue+0xfd/0x1d0
[ 1579.348246][T16965]  xsk_setsockopt+0x873/0xc30
[ 1579.348445][T16965]  do_sock_setsockopt+0x4d9/0x820
[ 1579.348619][T16965]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1579.348814][T16965]  __ia32_sys_setsockopt+0x2ac/0x4a0
[ 1579.349009][T16965]  ia32_sys_call+0x41fa/0x42c0
[ 1579.349159][T16965]  __do_fast_syscall_32+0xb0/0x150
[ 1579.349348][T16965]  do_fast_syscall_32+0x38/0x80
[ 1579.349521][T16965]  do_SYSENTER_32+0x1f/0x30
[ 1579.349696][T16965]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1579.349901][T16965] RIP: 0023:0xf710e539
[ 1579.350019][T16965] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1579.350169][T16965] RSP: 002b:00000000f50bc55c EFLAGS: 00000206 ORIG_RAX: 000000000000016e
[ 1579.350329][T16965] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000000000011b
[ 1579.350449][T16965] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[ 1579.350555][T16965] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1579.350653][T16965] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1579.350761][T16965] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1579.350897][T16965]  </TASK>
[ 1579.350960][T16965] Mem-Info:
[ 1579.608352][T16965] active_anon:4823 inactive_anon:0 isolated_anon:0
[ 1579.608352][T16965]  active_file:2141 inactive_file:40331 isolated_file:0
[ 1579.608352][T16965]  unevictable:768 dirty:24 writeback:0
[ 1579.608352][T16965]  slab_reclaimable:2920 slab_unreclaimable:73169
[ 1579.608352][T16965]  mapped:29595 shmem:1432 pagetables:1574
[ 1579.608352][T16965]  sec_pagetables:0 bounce:0
[ 1579.608352][T16965]  kernel_misc_reclaimable:0
[ 1579.608352][T16965]  free:317893 free_pcp:10595 free_cma:0
[ 1579.654942][T16965] Node 0 active_anon:19360kB inactive_anon:0kB active_file:8424kB inactive_file:161124kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:118428kB dirty:96kB writeback:0kB shmem:4328kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:5344kB pagetables:5844kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1579.690574][T16965] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:88kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:32kB pagetables:452kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1579.726378][T16965] Node 0 DMA free:4096kB boost:0kB min:164kB low:204kB high:244kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:4096kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1579.756892][T16965] lowmem_reserve[]: 0 930 1243 1243 1243
[ 1579.763493][T16965] Node 0 DMA32 free:335512kB boost:0kB min:36868kB low:46084kB high:55300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:3284kB inactive_anon:0kB active_file:3400kB inactive_file:83644kB unevictable:0kB writepending:80kB present:3129332kB managed:952960kB mlocked:0kB bounce:0kB free_pcp:31280kB local_pcp:13480kB free_cma:0kB
[ 1579.798734][T16965] lowmem_reserve[]: 0 0 312 312 312
[ 1579.805641][T16965] Node 0 Normal free:22556kB boost:4096kB min:17100kB low:20348kB high:23596kB reserved_highatomic:0KB free_highatomic:0KB active_anon:16296kB inactive_anon:0kB active_file:5024kB inactive_file:77480kB unevictable:1536kB writepending:16kB present:1048580kB managed:320456kB mlocked:0kB bounce:0kB free_pcp:10724kB local_pcp:5256kB free_cma:0kB
[ 1579.839083][T16965] lowmem_reserve[]: 0 0 0 0 0
[ 1579.844877][T16965] Node 1 Normal free:909408kB boost:0kB min:40064kB low:50080kB high:60096kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:987204kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1579.876990][T16965] lowmem_reserve[]: 0 0 0 0 0
[ 1579.882468][T16965] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 1*4096kB (M) = 4096kB
[ 1579.897343][T16965] Node 0 DMA32: 1452*4kB (UME) 755*8kB (UME) 447*16kB (UME) 285*32kB (UME) 113*64kB (UME) 57*128kB (UME) 32*256kB (UM) 20*512kB (UM) 16*1024kB (UE) 10*2048kB (UME) 58*4096kB (M) = 335512kB
[ 1579.919766][T16965] Node 0 Normal: 504*4kB (UME) 639*8kB (UME) 346*16kB (UME) 88*32kB (UME) 44*64kB (UME) 20*128kB (UME) 3*256kB (UE) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 22136kB
[ 1579.939284][T16965] Node 1 Normal: 18*4kB (UME) 23*8kB (UME) 22*16kB (UME) 30*32kB (UME) 21*64kB (UME) 14*128kB (UME) 12*256kB (UM) 5*512kB (U) 2*1024kB (ME) 4*2048kB (UM) 217*4096kB (UM) = 909408kB
[ 1579.960070][T16965] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1579.970268][T16965] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1579.980135][T16965] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1579.990326][T16965] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1580.001577][T16965] 43985 total pagecache pages
[ 1580.007043][T16965] 0 pages in swap cache
[ 1580.011442][T16965] Free swap  = 124996kB
[ 1580.016117][T16965] Total swap = 124996kB
[ 1580.020652][T16965] 2097051 pages RAM
[ 1580.025019][T16965] 0 pages HighMem/MovableOnly
[ 1580.030415][T16965] 1530872 pages reserved
[ 1580.035247][T16965] 0 pages cma reserved
[ 1580.580005][T16974] vlan2: entered promiscuous mode
[ 1582.877046][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[ 1582.884042][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[ 1583.306513][T17010] netlink: 28 bytes leftover after parsing attributes in process `syz.9.3245'.
[ 1583.489863][T17010] veth5: entered promiscuous mode
[ 1584.008220][T17023] vlan2: entered promiscuous mode
[ 1584.013845][T17023] bridge0: entered promiscuous mode
[ 1584.424965][T17026] netlink: 'syz.9.3248': attribute type 1 has an invalid length.
[ 1585.135576][T17035] lo speed is unknown, defaulting to 1000
[ 1585.324549][T17037] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1586.371779][T17044] mpoa:mpoad_close: (<unknown>) going down
[ 1586.853897][ T5851] usb 9-1: new low-speed USB device number 60 using dummy_hcd
[ 1587.099352][ T5851] usb 9-1: config 0 has an invalid interface number: 1 but max is 0
[ 1587.108074][ T5851] usb 9-1: config 0 has no interface number 0
[ 1587.114879][ T5851] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 1587.126547][ T5851] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[ 1587.138274][ T5851] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1587.147977][ T5851] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1587.346007][ T5851] usb 9-1: config 0 descriptor??
[ 1587.354541][T17060] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 1587.405398][ T5851] iowarrior 9-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[ 1587.600201][T17070] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3258'.
[ 1587.766955][T17070] veth7: entered promiscuous mode
[ 1587.928679][T17073] vlan2: entered promiscuous mode
[ 1588.240534][ T5851] usb 9-1: USB disconnect, device number 60
[ 1588.643382][T17082] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3262'.
[ 1589.933693][ T5851] usb 2-1: new low-speed USB device number 51 using dummy_hcd
[ 1590.154501][ T5851] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1590.180278][ T5851] usb 2-1: config 1 interface 0 altsetting 210 endpoint 0x81 has invalid maxpacket 512, setting to 8
[ 1590.191981][ T5851] usb 2-1: config 1 interface 0 altsetting 210 endpoint 0x82 is Bulk; changing to Interrupt
[ 1590.202757][ T5851] usb 2-1: config 1 interface 0 altsetting 210 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1590.213841][ T5851] usb 2-1: config 1 interface 0 has no altsetting 0
[ 1590.311196][T17104] futex_wake_op: syz.9.3271 tries to shift op by -1; fix this program
[ 1590.344304][ T5851] usb 2-1: string descriptor 0 read error: -22
[ 1590.351534][ T5851] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1590.361395][ T5851] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1590.438376][T17098] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1590.459584][T17098] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1590.527699][ T5851] cdc_acm 2-1:1.0: Control and data interfaces are not separated!
[ 1590.625416][T17110] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3273'.
[ 1590.733316][T17110] veth5: entered promiscuous mode
[ 1590.876088][T17115] vlan2: entered promiscuous mode
[ 1591.679452][ T5851] usb 2-1: USB disconnect, device number 51
[ 1591.860042][   T49] Bluetooth: hci1: unexpected event for opcode 0x2024
[ 1591.871085][T17123] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3276'.
[ 1592.195014][ T1604] usb 9-1: new high-speed USB device number 61 using dummy_hcd
[ 1592.363812][ T1604] usb 9-1: Using ep0 maxpacket: 8
[ 1592.398701][ T1604] usb 9-1: config 0 has an invalid interface number: 52 but max is 0
[ 1592.408496][ T1604] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1592.419224][ T1604] usb 9-1: config 0 has no interface number 0
[ 1592.426297][ T1604] usb 9-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 7
[ 1592.437862][ T1604] usb 9-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1592.451315][ T1604] usb 9-1: config 0 interface 52 has no altsetting 0
[ 1592.491374][   T42] usb 2-1: new high-speed USB device number 52 using dummy_hcd
[ 1592.551026][ T1604] usb 9-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00
[ 1592.560840][ T1604] usb 9-1: New USB device strings: Mfr=22, Product=0, SerialNumber=0
[ 1592.569429][ T1604] usb 9-1: Manufacturer: syz
[ 1592.602937][ T1604] usb 9-1: config 0 descriptor??
[ 1592.708042][   T42] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1592.718083][   T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1592.737551][   T42] usb 2-1: config 0 descriptor??
[ 1592.756544][   T42] cp210x 2-1:0.0: cp210x converter detected
[ 1592.875903][ T1604] input: syz as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.52/input/input60
[ 1593.134378][   T49] Bluetooth: hci0: SCO packet for unknown connection handle 201
[ 1593.135234][ T5851] usb 9-1: USB disconnect, device number 61
[ 1593.137779][    C1] synaptics_usb 9-1:0.52: synusb_irq - usb_submit_urb failed with result: -19
[ 1593.244133][   T42] cp210x 2-1:0.0: failed to get vendor val 0x000e size 3: -32
[ 1593.297986][   T42] cp210x 2-1:0.0: failed to get vendor val 0x370c size 73: -121
[ 1593.306526][   T42] cp210x 2-1:0.0: GPIO initialisation failed: -121
[ 1593.464200][   T42] usb 2-1: cp210x converter now attached to ttyUSB0
[ 1593.544000][   T42] usb 2-1: USB disconnect, device number 52
[ 1593.678986][   T42] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1593.689058][   T42] cp210x 2-1:0.0: device disconnected
[ 1598.581286][T17157] 8021q: VLANs not supported on vcan0
[ 1599.364854][T17166] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3291'.
[ 1599.374896][T17166] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1599.399968][T17167] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3290'.
[ 1600.408349][T17180] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3294'.
[ 1600.571929][ T5851] usb 2-1: new low-speed USB device number 53 using dummy_hcd
[ 1600.811309][ T5851] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[ 1600.820093][ T5851] usb 2-1: config 0 has no interface number 0
[ 1600.827357][ T5851] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 1600.839072][ T5851] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[ 1600.851089][ T5851] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1600.860690][ T5851] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1600.911750][ T5851] usb 2-1: config 0 descriptor??
[ 1600.921285][T17181] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1600.992091][ T5851] iowarrior 2-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[ 1601.380206][ T5851] usb 2-1: USB disconnect, device number 53
[ 1601.393611][T17192] netlink: 'syz.3.3298': attribute type 13 has an invalid length.
[ 1602.212927][T17192] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1602.221774][T17192] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1602.610341][T17192] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1602.644939][T17192] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1602.955372][T17203] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3302'.
[ 1603.217380][T17192] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1603.227369][T17192] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1603.237145][T17192] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1603.248049][T17192] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1603.859916][T17209] input: syz0 as /devices/virtual/input/input61
[ 1604.060629][T17200] 8021q: VLANs not supported on vcan0
[ 1604.522025][T17215] netlink: 'syz.2.3304': attribute type 13 has an invalid length.
[ 1604.917606][T17222] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3305'.
[ 1606.604071][   T42] usb 4-1: new low-speed USB device number 48 using dummy_hcd
[ 1606.868284][   T42] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[ 1606.876931][   T42] usb 4-1: config 0 has no interface number 0
[ 1606.883675][   T42] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 1606.895328][   T42] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[ 1606.906850][   T42] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1606.916572][   T42] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1607.050314][   T42] usb 4-1: config 0 descriptor??
[ 1607.059500][T17246] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1607.136187][   T42] iowarrior 4-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[ 1607.400866][   T42] usb 4-1: USB disconnect, device number 48
[ 1607.592977][T17258] netlink: 'syz.8.3317': attribute type 13 has an invalid length.
[ 1608.534714][T17270] netlink: 'syz.1.3320': attribute type 13 has an invalid length.
[ 1608.803095][   T42] usb 10-1: new low-speed USB device number 37 using dummy_hcd
[ 1609.035103][   T42] usb 10-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1609.045436][   T42] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1609.152320][   T42] usb 10-1: config 0 descriptor??
[ 1609.620234][T17288] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3323'.
[ 1611.596373][   T42] asix 10-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[ 1611.609591][   T42] asix 10-1:0.0: probe with driver asix failed with error -71
[ 1611.667920][   T42] usb 10-1: USB disconnect, device number 37
[ 1611.831350][T17305] 8021q: VLANs not supported on vcan0
[ 1612.134997][T17309] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3330'.
[ 1612.595020][T17314] netlink: 'syz.1.3331': attribute type 13 has an invalid length.
[ 1612.955777][T17319] lo speed is unknown, defaulting to 1000
[ 1613.467810][T17326] netlink: 'syz.8.3335': attribute type 13 has an invalid length.
[ 1613.799459][T17335] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3336'.
[ 1615.195494][T11333] usb 4-1: new high-speed USB device number 49 using dummy_hcd
[ 1615.429117][T11333] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1615.439245][T11333] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1615.518260][T11333] usb 4-1: config 0 descriptor??
[ 1615.554978][T11333] cp210x 4-1:0.0: cp210x converter detected
[ 1615.671499][T17361] netlink: 28 bytes leftover after parsing attributes in process `syz.8.3342'.
[ 1615.682522][T17359] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3344'.
[ 1615.702371][T17361] NILFS (loop8): device size too small
[ 1615.766550][T17363] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3342'.
[ 1615.790304][T17363] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3342'.
[ 1616.063788][T11333] cp210x 4-1:0.0: failed to get vendor val 0x000e size 3: -32
[ 1616.103638][T11333] cp210x 4-1:0.0: failed to get vendor val 0x370c size 73: -121
[ 1616.112106][T11333] cp210x 4-1:0.0: GPIO initialisation failed: -121
[ 1616.184695][T11333] usb 4-1: cp210x converter now attached to ttyUSB0
[ 1616.359580][T11333] usb 4-1: USB disconnect, device number 49
[ 1616.425779][T11333] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1616.435238][T11333] cp210x 4-1:0.0: device disconnected
[ 1616.915301][T17371] netlink: 'syz.2.3346': attribute type 13 has an invalid length.
[ 1618.836706][T17387] netlink: 'syz.2.3352': attribute type 13 has an invalid length.
[ 1619.604865][T17397] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3353'.
[ 1619.769933][T17399] 8021q: VLANs not supported on vcan0
[ 1619.833764][T17401] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3356'.
[ 1620.744085][   T42] usb 2-1: new high-speed USB device number 54 using dummy_hcd
[ 1620.779828][T17411] netlink: 'syz.3.3359': attribute type 13 has an invalid length.
[ 1621.038989][   T42] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1621.048775][   T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1621.126070][   T42] usb 2-1: config 0 descriptor??
[ 1621.165218][   T42] cp210x 2-1:0.0: cp210x converter detected
[ 1621.679043][   T42] cp210x 2-1:0.0: failed to get vendor val 0x000e size 3: -32
[ 1621.733481][   T42] cp210x 2-1:0.0: failed to get vendor val 0x370c size 73: -121
[ 1621.741767][   T42] cp210x 2-1:0.0: GPIO initialisation failed: -121
[ 1621.801547][   T42] usb 2-1: cp210x converter now attached to ttyUSB0
[ 1621.917864][   T42] usb 2-1: USB disconnect, device number 54
[ 1621.987141][   T42] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1621.996725][   T42] cp210x 2-1:0.0: device disconnected
[ 1623.385598][T17432] netlink: 'syz.9.3366': attribute type 13 has an invalid length.
[ 1624.446437][T17444] netlink: 'syz.3.3371': attribute type 13 has an invalid length.
[ 1624.713831][T17452] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3370'.
[ 1626.275238][T17471] netlink: 124 bytes leftover after parsing attributes in process `syz.3.3377'.
[ 1626.981899][T17478] netlink: 'syz.3.3380': attribute type 13 has an invalid length.
[ 1627.875472][T17487] netlink: 'syz.9.3384': attribute type 13 has an invalid length.
[ 1628.233363][T17495] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3386'.
[ 1629.496298][T17509] netlink: 124 bytes leftover after parsing attributes in process `syz.2.3390'.
[ 1630.385967][T17521] netlink: 'syz.9.3395': attribute type 13 has an invalid length.
[ 1630.711228][T17528] netlink: 'syz.3.3398': attribute type 13 has an invalid length.
[ 1631.243134][T17533] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3400'.
[ 1631.645541][T17544] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3401'.
[ 1632.124611][T17549] netlink: 124 bytes leftover after parsing attributes in process `syz.9.3404'.
[ 1632.687837][ T5446] =====================================================
[ 1632.695464][ T5446] BUG: KMSAN: kernel-infoleak in _copy_to_iter+0xf0e/0x33f0
[ 1632.706711][ T5446]  _copy_to_iter+0xf0e/0x33f0
[ 1632.711646][ T5446]  __skb_datagram_iter+0x196/0x12c0
[ 1632.720374][ T5446]  skb_copy_datagram_iter+0x5b/0x1e0
[ 1632.726103][ T5446]  netlink_recvmsg+0x4bb/0xfe0
[ 1632.731214][ T5446]  sock_recvmsg+0x2df/0x390
[ 1632.736149][ T5446]  sock_read_iter+0x2c8/0x360
[ 1632.741664][ T5446]  vfs_read+0x85a/0xf00
[ 1632.746371][ T5446]  __x64_sys_read+0x1fb/0x4d0
[ 1632.751366][ T5446]  x64_sys_call+0x39db/0x3db0
[ 1632.756582][ T5446]  do_syscall_64+0xd9/0x210
[ 1632.761343][ T5446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1632.767604][ T5446] 
[ 1632.770092][ T5446] Local variable buf created at:
[ 1632.775834][ T5446]  tomoyo_path_number_perm+0xff/0x7d0
[ 1632.781534][ T5446]  tomoyo_file_ioctl+0x3d/0x50
[ 1632.788668][ T5446] 
[ 1632.791186][ T5446] Bytes 60-63 of 64 are uninitialized
[ 1632.796974][ T5446] Memory access of size 64 starts at ffff88813e8e23c0
[ 1632.804137][ T5446] Data copied to user address 00007ffe61cf5240
[ 1632.810479][ T5446] 
[ 1632.813117][ T5446] CPU: 1 UID: 101 PID: 5446 Comm: dhcpcd Not tainted 6.16.0-rc3-syzkaller-00306-gaaf724ed6926 #0 PREEMPT(undef) 
[ 1632.825439][ T5446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1632.836131][ T5446] =====================================================
[ 1632.843393][ T5446] Disabling lock debugging due to kernel taint
[ 1632.849726][ T5446] Kernel panic - not syncing: kmsan.panic set ...
[ 1632.856416][ T5446] CPU: 1 UID: 101 PID: 5446 Comm: dhcpcd Tainted: G    B               6.16.0-rc3-syzkaller-00306-gaaf724ed6926 #0 PREEMPT(undef) 
[ 1632.870200][ T5446] Tainted: [B]=BAD_PAGE
[ 1632.874518][ T5446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1632.884766][ T5446] Call Trace:
[ 1632.888196][ T5446]  <TASK>
[ 1632.891286][ T5446]  __dump_stack+0x26/0x30
[ 1632.895976][ T5446]  dump_stack_lvl+0x53/0x270
[ 1632.900830][ T5446]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1632.906950][ T5446]  dump_stack+0x1e/0x25
[ 1632.911362][ T5446]  panic+0x4bd/0xd50
[ 1632.915579][ T5446]  kmsan_report+0x31c/0x320
[ 1632.920446][ T5446]  ? kmsan_internal_check_memory+0x1e1/0x230
[ 1632.926710][ T5446]  ? kmsan_copy_to_user+0xf1/0x190
[ 1632.932176][ T5446]  ? _copy_to_iter+0xf0e/0x33f0
[ 1632.937254][ T5446]  ? __skb_datagram_iter+0x196/0x12c0
[ 1632.943293][ T5446]  ? skb_copy_datagram_iter+0x5b/0x1e0
[ 1632.948993][ T5446]  ? netlink_recvmsg+0x4bb/0xfe0
[ 1632.954414][ T5446]  ? sock_recvmsg+0x2df/0x390
[ 1632.959526][ T5446]  ? sock_read_iter+0x2c8/0x360
[ 1632.964796][ T5446]  ? vfs_read+0x85a/0xf00
[ 1632.969475][ T5446]  ? __x64_sys_read+0x1fb/0x4d0
[ 1632.974783][ T5446]  ? x64_sys_call+0x39db/0x3db0
[ 1632.979909][ T5446]  ? do_syscall_64+0xd9/0x210
[ 1632.984844][ T5446]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1632.991169][ T5446]  ? kernel_text_address+0x10e/0x1a0
[ 1632.996785][ T5446]  ? kmsan_get_metadata+0xfb/0x160
[ 1633.002366][ T5446]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1633.008504][ T5446]  ? do_syscall_64+0xc1/0x210
[ 1633.013411][ T5446]  ? filter_irq_stacks+0x49/0x190
[ 1633.018742][ T5446]  ? stack_depot_save_flags+0x35/0x7b0
[ 1633.024732][ T5446]  ? kmsan_get_metadata+0xfb/0x160
[ 1633.030225][ T5446]  ? kmsan_get_metadata+0xfb/0x160
[ 1633.035623][ T5446]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1633.041837][ T5446]  kmsan_internal_check_memory+0x1e1/0x230
[ 1633.048062][ T5446]  kmsan_copy_to_user+0xf1/0x190
[ 1633.053360][ T5446]  _copy_to_iter+0xf0e/0x33f0
[ 1633.058391][ T5446]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1633.065270][ T5446]  ? kmsan_get_metadata+0xfb/0x160
[ 1633.070773][ T5446]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1633.076888][ T5446]  ? kmsan_get_metadata+0xfb/0x160
[ 1633.082304][ T5446]  ? __pfx_kmsan_internal_set_shadow_origin+0x1/0x10
[ 1633.089281][ T5446]  ? kmsan_get_metadata+0xfb/0x160
[ 1633.094787][ T5446]  __skb_datagram_iter+0x196/0x12c0
[ 1633.100239][ T5446]  ? __pfx_simple_copy_to_iter+0x10/0x10
[ 1633.106265][ T5446]  skb_copy_datagram_iter+0x5b/0x1e0
[ 1633.111795][ T5446]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1633.117929][ T5446]  netlink_recvmsg+0x4bb/0xfe0
[ 1633.122993][ T5446]  ? __pfx_netlink_recvmsg+0x10/0x10
[ 1633.128526][ T5446]  sock_recvmsg+0x2df/0x390
[ 1633.133313][ T5446]  sock_read_iter+0x2c8/0x360
[ 1633.138287][ T5446]  vfs_read+0x85a/0xf00
[ 1633.142743][ T5446]  ? __pfx_sock_read_iter+0x10/0x10
[ 1633.148239][ T5446]  __x64_sys_read+0x1fb/0x4d0
[ 1633.153222][ T5446]  x64_sys_call+0x39db/0x3db0
[ 1633.158184][ T5446]  do_syscall_64+0xd9/0x210
[ 1633.162932][ T5446]  ? clear_bhb_loop+0x40/0x90
[ 1633.167856][ T5446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1633.173998][ T5446] RIP: 0033:0x7fca49460407
[ 1633.178610][ T5446] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[ 1633.198576][ T5446] RSP: 002b:00007ffe61cf51e0 EFLAGS: 00000202 ORIG_RAX: 0000000000000000
[ 1633.207405][ T5446] RAX: ffffffffffffffda RBX: 00007fca493d6740 RCX: 00007fca49460407
[ 1633.215609][ T5446] RDX: 0000000000000800 RSI: 00007ffe61cf5240 RDI: 0000000000000009
[ 1633.223951][ T5446] RBP: 00007ffe61cf5b30 R08: 0000000000000000 R09: 0000000000000000
[ 1633.232211][ T5446] R10: 0000000000000000 R11: 0000000000000202 R12: 20c49ba5e353f7cf
[ 1633.240471][ T5446] R13: 00007ffe61cf5240 R14: 000000000000029c R15: 000000000000003b
[ 1633.248673][ T5446]  </TASK>
[ 1633.252362][ T5446] Kernel Offset: disabled
[ 1633.257410][ T5446] Rebooting in 86400 seconds..