last executing test programs:

36.224770622s ago: executing program 1 (id=1179):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYRES8, @ANYRES32, @ANYRES32], &(0x7f0000000000)='GPL\x00', 0x8, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000859727a3209b3947973e251ed6f895f4efffff4f00000100"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01)
write$evdev(r4, &(0x7f0000000540)=[{{0x77359400}, 0x11, 0x9, 0x7}], 0x18)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
connect$unix(r3, 0x0, 0x0)
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x2b, 0x0, 0x0)
landlock_create_ruleset(&(0x7f0000000180)={0x100}, 0x18, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r5}, 0x18)
r6 = memfd_create(&(0x7f0000000500)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F', 0x1)
write$binfmt_script(r6, &(0x7f0000000280)={'#! ', './file0/file0'}, 0x11)
io_uring_register$IORING_UNREGISTER_EVENTFD(0xffffffffffffffff, 0x5, 0x0, 0x0)
execveat(r6, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x0, 0x1000)
openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)

34.693603653s ago: executing program 1 (id=1180):
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1e7d, 0x319c, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x30, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x101, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x10, 0xc}}}}}]}}]}}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff6ffc}]})
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89100a, 0x0)
umount2(&(0x7f0000000000)='./file0/file0\x00', 0x8)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000340)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x6a3, 0x621, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x20, 0xf, [{{0x9, 0x4, 0x0, 0x4, 0x1, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0xb}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x0, 0x0, 0xf1}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0xb, {[@main=@item_4={0x3, 0x0, 0x0, "01ea00"}, @local=@item_4={0x3, 0x2, 0x7755daa0158f5c3a, "19405d04"}, @global=@item_012={0x0, 0x1, 0x1}]}}, 0x0}, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="06000000040000000800000001"], 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000680)={0x0, &(0x7f0000003040)=""/4096, &(0x7f0000000600), &(0x7f0000000640), 0x1, r2}, 0x38)
syz_usb_control_io(r0, &(0x7f0000000000)={0x2c, &(0x7f00000000c0)=ANY=[], 0x0, 0x0, 0x0, 0x0}, 0x0)

31.114774795s ago: executing program 1 (id=1195):
r0 = syz_open_dev$video(&(0x7f0000000000), 0x7, 0x40)
unshare(0x20000400)
r1 = socket(0x40000000015, 0x5, 0x0)
setsockopt$RDS_CONG_MONITOR(r1, 0x114, 0x6, &(0x7f0000000000), 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x2, 0xffffffffffffffff, 0x2, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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", @ANYRES64=r1, @ANYRES8=r1, @ANYRESDEC=r0, @ANYRES16=r0], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$VIDIOC_G_PARM(r0, 0xc0cc5615, &(0x7f0000004f80)={0x5, @output={0x1000, 0x0, {0x2, 0xca}, 0xfffffffa, 0x6}})

30.23927945s ago: executing program 1 (id=1198):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=@newqdisc={0x44, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x14, 0x8002, [@TCA_FQ_PIE_FLOWS={0x8, 0x2, 0xe0ec}, @TCA_FQ_PIE_DQ_RATE_ESTIMATOR={0x55}]}}]}, 0x44}}, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000480)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x297880, 0x0)
mount$bind(&(0x7f0000000280)='./file0\x00', &(0x7f0000002100)='./file0/file0\x00', 0x0, 0x2187017, 0x0)
mount$tmpfs(0x0, &(0x7f0000000140)='./file0/file0\x00', &(0x7f00000001c0), 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x2, 0x3}, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000002000)=""/102400, 0x19000)
socket$alg(0x26, 0x5, 0x0)
r5 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, 0x0}, &(0x7f0000000180)=0x10)
write$bt_hci(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="5300000002"], 0x8)

27.846273512s ago: executing program 1 (id=1208):
ioctl$EVIOCRMFF(0xffffffffffffffff, 0x550c, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$printer(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r0, 0xc4c85512, &(0x7f0000000280)={{0x6, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x800000000000000, 0x0, 0x0, 0xffffffffffffffff, 0xffffffefffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffbfffffff, 0x0, 0x0, 0x0, 0x3, 0x80000000, 0x0, 0x0, 0x0, 0x4, 0x0, 0x6, 0x0, 0x40, 0x0, 0xfffffffffffffffd, 0x100200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x10000, 0x1000, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x7, 0x10000, 0x7785, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000000, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x100, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xc0c0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0xffffffffffeffffc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000]})
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)

27.039163457s ago: executing program 1 (id=1213):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000), 0x8)
prctl$PR_GET_TSC(0x43, &(0x7f0000000040))
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
execve(&(0x7f0000000000)='./file0\x00', &(0x7f0000000340), 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
epoll_create(0x2)
recvmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_udp_encap(r1, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4)
syz_emit_ethernet(0x3a, &(0x7f0000000500)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x2d, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x4e20, 0x18, 0x0, @wg=@data={0x4, 0x0, 0x912}}}}}}, 0x0)
syz_clone(0x28280000, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)

26.311640793s ago: executing program 32 (id=1213):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000), 0x8)
prctl$PR_GET_TSC(0x43, &(0x7f0000000040))
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
execve(&(0x7f0000000000)='./file0\x00', &(0x7f0000000340), 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
epoll_create(0x2)
recvmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_udp_encap(r1, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4)
syz_emit_ethernet(0x3a, &(0x7f0000000500)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x2d, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x4e20, 0x18, 0x0, @wg=@data={0x4, 0x0, 0x912}}}}}}, 0x0)
syz_clone(0x28280000, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)

12.861342051s ago: executing program 0 (id=1248):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
socket$inet6(0xa, 0x80803, 0x87)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x1000000}, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f00000003c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x20001000, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x800, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
madvise(&(0x7f0000a6f000/0x4000)=nil, 0x4000, 0x65)
socket$unix(0x1, 0x1, 0x0)
connect$unix(r3, &(0x7f00000008c0)=@file={0x1, './file0\x00'}, 0x6e)
timer_create(0x1, &(0x7f0000000000)={0x0, 0x0, 0x2, @thr={&(0x7f0000000580), &(0x7f0000000600)="1acf833751be75ed343b0fba097e034bd24f78fe9681803495d2fe8ef2dcbde20c187522e0422ad86c57f52a0b7a7ee614be47fe1c0c62ea2ed26b10f076a19f25c9c3d90a66adc21900956cd74c44aeeee0f235180506c7998005e474c50314cb853c520d7c2677c42a3b6f4e0718e379534992a8eeb5989b473f54d3cbfda3283a07f0e6d65a4567457d210cf11a010f1d6b7da68075bcb97afb9f43"}}, &(0x7f0000bbdffc)=<r6=>0x0)
timer_settime(r6, 0x0, &(0x7f0000000180)={{0x77359400}, {0x0, 0x989680}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="14fff5001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010040000900010073797a30000000000900030073797a310000000084000000060a010400000000000000000100000008000b40000000005c0004802c000180090001007866726d000000001c0002800800024000000004050003000000000008000140000000092c00018008000100636d7000200002800c00038005000100ac000000080001400000000c08000240000000030900010073797a3000000000140000001100010000000000000000000000000a"], 0xf8}}, 0x0)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmmsg(0xffffffffffffffff, &(0x7f0000003e40), 0x0, 0x404c000)
sendmsg$nl_xfrm(r7, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="68020000210001000000000000000000ff020000000000000000000000000001", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000a001000010000000000000008000b00000000002c001300e0000001000000000000000000000000fc0000000000000000000000000000000000000000000000cc0111"], 0x268}}, 0x0)

11.516568508s ago: executing program 0 (id=1250):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"/686], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x3a, 0x10, &(0x7f0000000340), 0xd58495bc, 0x0, 0xffffffffffffffff, 0xffffffffffffff5b, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x42)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000480)={r2, 0x2000012, 0xe, 0x0, &(0x7f0000000c40)="63eced8e46dc3f2ddf33c9e9b986", 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x9}, 0x50)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = syz_open_procfs$pagemap(0x0, &(0x7f0000000000))
ioctl$PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f0000000200)={0x60, 0x3, &(0x7f0000245000/0x2000)=nil, &(0x7f0000994000/0x2000)=nil, 0x100000000000004, 0x0, 0x0, 0x0, 0xc})
r4 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000340)='sched_switch\x00', r5, 0x0, 0xac}, 0x45)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000580)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="340800000e000000b1ee13312d0000400000aa63dbbe4da669012a3dbe8ddbdee15eafde4b261fa05bda251e818902e10900000000000000af518795c3af6615d0074d51ebe9eca0746d59768ed9aedd60a116539457d2600ce7cb34c158677e63f8c120a6cc01c8ea6e9ff123e97b82e375b1e8f70bf5f38b8ed7794bc6814ddbdcc2587184e55a76e490b5cff94bad000000000000e353795c31388f837fb18fc2b4cc4089ef85fc1c554aa3ea672fc4e2bd71d3469c095a71a84166d371eaa09d884370a276501635aa47a630cba1c9b8d29e17c40c3cab4b0ed3b156b7df362f4a1d718d9850f0b08590d6443dd72c1bcbb22f3841e8a2200c46d33213303c40f4fef807bc8660609459f80429558a9c1b5c7c5819", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000380)=ANY=[@ANYBLOB="1400000013000159993dde440113e90005"], 0x14}], 0x1, 0x0, 0x0, 0x24049080}, 0x0)
r7 = syz_open_procfs(r4, &(0x7f0000000280)='fd/3\x00')
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = getpid()
ptrace$ARCH_ENABLE_TAGGED_ADDR(0x1e, r9, 0x6, 0x4002)
socket$inet(0x2, 0x6, 0x1)
write$binfmt_misc(r7, &(0x7f0000000380)="7468d7edfa60a69a1545ac46fd5eba85eea677fbad1bba892ed9eba08d0584b215112ab61e7208e97ac1d3466ce4a3042715f7073ee88aad989c2a90c4eaf100e32b20df1fddfda6df9e69d307e4e44d9e2f09884468fc4b63c16f2b4f0c6f04d77f3f1037122984f2c682c693f21b6cdc7fcba23c59e53abb173a34f8f5757aba3be9a16524ac7244e6045fe118cfeeda686c5f572ccdda4b43521a0b69d7a49f36b33e9b5622962395541c58a03d6074723be2d8bca47f23368afaf82cf206b26504be6e873fb6028c9c1257f88396e6a569fd2963342abc90ffa24d37572bbad0bbd501a62658fcffe623d4", 0xed)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00'})
r10 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TCSETS(r10, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x8, 0x0, 0x0, "0039be0000000000000200"})
socket$inet6_sctp(0xa, 0x1, 0x84)
syz_open_pts(r10, 0x0)
dup3(r8, r5, 0x0)

10.507967214s ago: executing program 0 (id=1253):
r0 = socket$kcm(0x2, 0x7, 0x2)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8916, &(0x7f0000000000)={'dvmrp1\x00', @broadcast})
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000200))
close(0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102392, 0x18ff8)
r3 = fsopen(&(0x7f00000000c0)='udf\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x3, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000180)=[@in={0x2, 0x4e24, @empty}, @in6={0xa, 0x4e21, 0x9c, @local, 0x8}], 0x2c)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r5, 0xc18b, 0xfffffff7, &(0x7f0000000000)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r5, 0x84, 0x17, &(0x7f0000000100)=ANY=[@ANYRES8=r0, @ANYRES8=r2, @ANYRES32=r3, @ANYRES16=r5], 0x9)
fcntl$getown(r2, 0x9)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4040}, 0x0)
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
r7 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x42202)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r7, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00', 0x4})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r7, 0x4040534e, 0x0)
connect$inet6(r6, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x22}}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
socket(0x23, 0x6, 0x0)

9.724286128s ago: executing program 2 (id=1256):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
msync(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x6) (fail_nth: 4)

9.288072886s ago: executing program 2 (id=1257):
add_key(&(0x7f0000000440)='dns_resolver\x00', 0x0, &(0x7f00000004c0)="a079394a04954e2d1523cd274d954f18a7b1235d2023e670955c12e7265fa97c2cfb7ba5f67d4a0f06d00c089c2dbb7034ddf203c4f50b4d19d6ab0b49d345571461f3c9bc2be016252397574e61cd9b5fc6337f92b077112e9d69d5f0d761e584bd5f7a22aa334740193d174c89a6670c1c0a98533ebffcb043f72e876d30dc59b400", 0x83, 0xffffffffffffffff)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x1}, 0xe)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0)
readv(r1, &(0x7f0000000240)=[{&(0x7f00000000c0)=""/15, 0xf}, {&(0x7f0000000180)=""/172, 0x2000022c}], 0x3)
prlimit64(0x0, 0x7, &(0x7f0000000140)={0x8, 0xf}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180))
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
listen(r0, 0xa1)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_io_uring_submit(r3, r4, &(0x7f0000000080)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x8013}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
mount$bpf(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540), 0x80, &(0x7f0000000280)=ANY=[@ANYBLOB="736d61636b66737472616e736d7574653d5efee944eab99038827bfd0d2c00e33e9cc1555923fed1b7adee26d42595d86bd9782129a5cec23b892ad44b5b617d718b5c362a61b90f89ed26b315119f163d52805393f8a70ab22223d9f15f92326c45843305b67e52db560b46af6f2ca07c18b00bced6f1b945edfb381cdceb00513de156a4c108decf21c1dcd83acb0a7a92"])

9.095147762s ago: executing program 2 (id=1258):
r0 = openat$smackfs_load(0xffffff9c, &(0x7f0000002140)='/sys/fs/smackfs/load2\x00', 0x2, 0x0)
r1 = socket$isdn_base(0x22, 0x3, 0x0)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x480, 0x278, 0x111, 0x4b4, 0x278, 0xd4feffff, 0x3b0, 0x20a, 0x278, 0x3b0, 0x278, 0x3, 0x0, {[{{@ipv6={@empty, @empty, [], [], 'ipvlan0\x00', 'vlan0\x00'}, 0x0, 0x238, 0x278, 0x0, {}, [@common=@inet=@policy={{0x158}, {[{@ipv6=@private0, [], @ipv4=@multicast1}, {@ipv6=@ipv4={'\x00', '\xff\xff', @remote}, [], @ipv6=@private2}, {@ipv4=@private, [], @ipv4=@empty}, {@ipv4=@dev, [], @ipv4=@broadcast}], 0xf}}, @common=@unspec=@time={{0x38}, {0x0, 0x0, 0x0, 0x14b2f, 0x0, 0x0, 0x3}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "bab250709f46abd5bde532173c6746623ee609e386a0905c3ef0f3051738"}}}, {{@uncond, 0x0, 0xd0, 0x138, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'syz1\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4e0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000040)={0x1f, 0x0, @any, 0xfffa}, 0xe)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f903", 0x11}], 0x1}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb79100a6c52d922ba2a05dd4242"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
connect$bt_l2cap(r3, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
r5 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPCONNADD(r5, 0x400442c8, &(0x7f00000000c0)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000003004c5fc6f785310cf8763b630f06754e263430df96c38c85d7ac24fe54fca96cd3ad3ab805a3c8d7eacf2001a0512c30300800000000000000c50479f94907dc2dbc7a00ddf2fe0aad42b72d8e87fcc70187984c5c4865344623b51ac3793589448dc723f9e5146703af69dc14daa5a2c5c026b381d751c36aecc7cd19a1880fc97cdb8a1518fc3f1de5b7d07edb0ff30c73cc2b4b12f8b565b8e9165c69eb2f489dc0adeb6a029f4f71c17e7c6dc1a339d078b969df41cd2c7f"])
ioctl$IMSETDEVNAME(r1, 0x80184947, 0x0)
write$smackfs_load(r0, 0x0, 0x11f)
r6 = syz_usb_connect(0x0, 0x32a, &(0x7f0000000000)={{0x12, 0x1, 0x310, 0x12, 0x4f, 0xeb, 0x20, 0xbfd, 0x2, 0xca5, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x318, 0x1, 0x9, 0x0, 0x20, 0x34, [{{0x9, 0x4, 0xd3, 0xb, 0x9, 0x28, 0x9b, 0xcb, 0x40, [@cdc_ecm={{0x5}, {0x5, 0x24, 0x0, 0x7f}, {0xd, 0x24, 0xf, 0x1, 0xf, 0x5, 0x9, 0x4}, [@obex={0x5, 0x24, 0x15, 0x7}]}, @uac_as={[@format_type_ii_discrete={0x9, 0x24, 0x2, 0x2, 0x28, 0x41, 0x96}, @as_header={0x7, 0x24, 0x1, 0xf2, 0xf, 0x5}, @format_type_ii_discrete={0xb, 0x24, 0x2, 0x2, 0x1ff, 0x631d, 0x3, "a576"}, @format_type_i_discrete={0x8, 0x24, 0x2, 0x1, 0x3, 0x1, 0x5, 0x6}, @format_type_i_discrete={0xd, 0x24, 0x2, 0x1, 0x36, 0x3, 0x7, 0x3e, "ee883c6172"}, @format_type_i_continuous={0xc, 0x24, 0x2, 0x1, 0x1, 0x1, 0x6, 0x6, "8726", "c89d"}]}], [{{0x9, 0x5, 0x9, 0x0, 0x8, 0x1, 0x5, 0xff, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x15, 0x82b}]}}, {{0x9, 0x5, 0x2, 0x2, 0x10, 0x9, 0xfb, 0xa8, [@generic={0xce, 0x21, "007f0effae6a4c9f0010f6ae66770c19e10f6bd4035f5ab35bca6b6e12781539db9d5a81329cdcfd17c43f63126eb5bc0ecd8b16ce4c8bcd894e86ed136c1f86bb4aad1eef8b3daeaaccf22de9ddb397eac6177c7107024ffb2555ee248816d147fdeee922043c9a17e52522a43d97d531b8474172bc877bdadc443973cb00f14d24a9782234ccd5940a736862479e8bb8d0ccfe1d3ee1a4578077c8adc7223e14cacd3c24c3f16ec818d6a1a7501fb690e40636779c70ff95f8206ec641034c999e2518ccf96e8d531efbbc"}]}}, {{0x9, 0x5, 0xb, 0x0, 0x40, 0xda, 0x3, 0x7, [@generic={0x6, 0x30, "987114b7"}]}}, {{0x9, 0x5, 0x3, 0x10, 0x400, 0x2, 0x8, 0x80, [@generic={0xea, 0x9, "5698b54e6e2267970890ddc0de250a89ea240af8d1bbfad8fe2b5be0d6aff2a679c947a4c6ce0fcadf48178beeeaa2f00897b3998b4913c54860913756f887dcc4d1d2129d4b35aeca04f3a0881aa9fb93cfb9af44ccac4a986ab98bc6d4ee9c688c8f995e69d59f728ed8b42623fa907d9951fa1e02cfc935a90c32a8819d36a9eb6e2141063f11ff71b766d1200ded2a8e1f3c9f1d3e6b0731e3d38f3ddb6fdeb4dcb1006c3bf20c730edef66c6022d7bd18d1e18463174382cb2a18e00555f11e9985141ce383b5e61e0ffd9fe63cf686f1424df97a054de16f667e062b368c0a094887f602da"}, @generic={0x45, 0x24, "d039b2aae44f42733495686df5881e5a4ecfa0a276b227c14ee348aa8199343267e6b15b584ff84cfe98ff10b5c5c0815ef29d6c39b7758e3bf5b5de0b79befc876c01"}]}}, {{0x9, 0x5, 0xc, 0x1, 0x10, 0x5, 0x0, 0x7, [@generic={0x2, 0x21}]}}, {{0x9, 0x5, 0x1, 0x2, 0x610, 0x8, 0xfe, 0x8, [@generic={0x10, 0x24, "ef4ff1f3ba51980cdbe454b7604e"}]}}, {{0x9, 0x5, 0x4, 0x10, 0x10, 0x6, 0x1, 0x0, [@generic={0x2c, 0x21, "c83e2b561f6828e89db1995c0b554f630891a775a33b14d12a85290cee7763810f6eb6ea0d1adec8e04e"}]}}, {{0x9, 0x5, 0x9, 0x10, 0x8, 0xff, 0x40, 0x9, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x4, 0x5}]}}, {{0x9, 0x5, 0xb, 0x0, 0x200, 0x5, 0x5, 0x5, [@uac_iso={0x7, 0x25, 0x1, 0x81, 0xd8, 0x2}, @uac_iso={0x7, 0x25, 0x1, 0x82, 0x7, 0x81}]}}]}}]}}]}}, &(0x7f0000000780)={0xa, &(0x7f0000000340)={0xa, 0x6, 0x250, 0x5, 0x1, 0xd, 0xff, 0x1}, 0xfe, &(0x7f0000000380)={0x5, 0xf, 0xfe, 0x5, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0x9, 0xa, 0x3, 0x1}, @ssp_cap={0x1c, 0x10, 0xa, 0x7, 0x4, 0x3, 0xf00, 0x40, [0xff0000, 0xf, 0x7ec0, 0xc000]}, @ssp_cap={0x14, 0x10, 0xa, 0x9, 0x2, 0xd, 0xf008, 0x4, [0x3f00, 0xffc0ee]}, @ssp_cap={0x14, 0x10, 0xa, 0x7, 0x2, 0x8, 0xe100, 0x3, [0xff3f00, 0x3f00]}, @generic={0xab, 0x10, 0xa, "c6816e1bbda98c3b9e9f1e8c6b9ee4749a64d3b522b744007456c425202255a66b38a3be605882fb2757953876d4eb69a4d72312742f51c3a6fbbc3c8011eed5fb0030805f4e15acf1958e8027586ec6a05a0bfbfd4b638feca9791af34f869993b2c709e6ef1876e92af6678c6a4334a19dbf05bf47eaa157ac6bc694eacdca6e7500cf15e9041c561374faf495f820314c2a96b6ca322b452e0b75b66b2d9da216fdf9f2eebb96"}]}, 0x8, [{0x50, &(0x7f0000000480)=@string={0x50, 0x3, "c9f6f8ea92c1f6c7aed290afa5ac294268a7dfca666f019c87825d42f8d58e157a1cc2c688df078b6f2ade682a2b9c8f062b8ca47d52cda9e1e155dcc846512ec3a659e06a759b0571085f977178"}}, {0xb6, &(0x7f0000000500)=@string={0xb6, 0x3, "150f0bb067e6ea7bef0c94c92307bd795fff34d81a4a088f2a7ce05e8f01c66caa963b24e4c3239e5e6770632f5a958b0fcd17430fe38d948fb49af346c653ddd2da970a94573dd35daaae0f1f31c0898cfa6c3c40d86885ce1922a8dd6c50f43a9a45c7fd807c61c7b7a690e4fa0b7fc9877307a6cde58f030acb4f0e0499a6fa0814aa09532d2d63be694ddfe78fe285194f9e4a82ee5ed5c80e7ac9a6796ea718ced6ea7f4208ed0a3b0404b68e7b6c5d98f0"}}, {0x3f, &(0x7f00000005c0)=@string={0x3f, 0x3, "653cb42c64ed830f135b8b851370e2a878139d5165881d872cecdf2abff8dcf94119db9e40a243037fb48d5d6713a678333568b5d223d96bf35bccb28e"}}, {0x4e, &(0x7f0000000600)=@string={0x4e, 0x3, "265dce6b9d53e5faef8012bb45ad83fb7164a88c97b2ef66de9b04fdd57101ee9b8ebcccdc497493881cb22d66608f6c4eae6569faf1278851274364fcfd5b1282d8b5f79091e52c352bd5c5"}}, {0x4, &(0x7f0000000680)=@lang_id={0x4, 0x3, 0x42d}}, {0x4, &(0x7f00000006c0)=@lang_id={0x4, 0x3, 0x1409}}, {0x4, &(0x7f0000000700)=@lang_id={0x4, 0x3, 0x2409}}, {0x4, &(0x7f0000000740)=@lang_id={0x4, 0x3, 0x2801}}]})
syz_usb_control_io$uac1(r6, &(0x7f0000000900)={0x14, &(0x7f0000000800)={0x20, 0x21, 0x9c, {0x9c, 0x23, "ae137c51c48f9e6dfbe9b4c57cd61e7ccbb0074fb1ea022a3168fe4fe0b65aa003c6e2ef024bd22b261e39a5f1d45f7ba5cef1d664dd864ad0fe99979b4f6a568ea22215400f0123cad436e3d1f5968356f7543c280f1e24a2d6e2b9152790321bb9cf30b8b0b11a91455b5b83ff257e63e54f56e7f5a1edaf40a8fcf950548ed593d69a6435ccdf24143145d2bd6241dd6c3d51760e0959c5a5"}}, &(0x7f00000008c0)={0x0, 0x3, 0xc, @string={0xc, 0x3, "92e0a834944bd08cb076"}}}, &(0x7f0000000bc0)={0x44, &(0x7f0000000940)={0x0, 0x31, 0xb0, "cc4d9ca08458ce43e6711dd247f90b3b1c67243e9d903ef796794bf56f267dcb05a3f5ec45de5338dac929e3ba37ebc596aac6da37044c08124f60eea1d8acb226001cde1d08aa6d5b02556057aeacc084e682d2017a8e2004ccc7afdae9fb5acac352bf0d5223e44781ab2546925f7f01463a15f593de95514ee6ca19c0c2dde3dcbf7e5b0d039b826e9bd78e7b635e49c38ba8671e66b5721234fbf2174fda55c8204a5198ab889b26685003d306af"}, &(0x7f0000000a00)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000a40)={0x0, 0x8, 0x1, 0x97}, &(0x7f0000000a80)={0x20, 0x81, 0x1, "c5"}, &(0x7f0000000ac0)={0x20, 0x82, 0x1, "89"}, &(0x7f0000000b00)={0x20, 0x83, 0x2, '^K'}, &(0x7f0000000b40)={0x20, 0x84, 0x2, 'D@'}, &(0x7f0000000b80)={0x20, 0x85, 0x3, "d2c25e"}})

8.589693831s ago: executing program 0 (id=1260):
socketpair(0x1, 0x1, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x5, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
io_setup(0x9, &(0x7f0000000280))

7.448835169s ago: executing program 4 (id=1263):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
bind$unix(r2, &(0x7f0000000180)=@file={0x1, './file0\x00'}, 0x6e)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000240), 0x42, 0x0)
read$FUSE(r3, &(0x7f0000006380)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000000100)={0x50, 0x0, r4, {0x7, 0x1f}}, 0x50)
unshare(0x22000400)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x28000000)
syz_fuse_handle_req(r3, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x0, {0x0, 0x9}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0x1)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff"], 0x0)
syz_io_uring_setup(0x4e1, &(0x7f0000000380)={0x0, 0x33f8, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180), &(0x7f00000001c0))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
rseq(&(0x7f0000000280)={0x0, 0x0, 0x0, 0x4}, 0x78, 0xffffffffffffffee, 0x0)
clock_nanosleep(0x2, 0x0, &(0x7f0000000300)={0x0, 0x989680}, 0x0)
r5 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mq_timedsend(r5, &(0x7f0000000080)="783d14ba47b133864c77c9d1acaf4c47a607b3cd1a29b98379df4c0c9a54e47560ffb936af1d91f2335f638996", 0x2d, 0x8, &(0x7f0000000200)={0x77359400})
unshare(0x40000000)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
execveat(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000001c80)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil})

6.272937829s ago: executing program 0 (id=1265):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x2, 0x4, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x1b)
syz_usb_connect(0x5, 0x36, &(0x7f0000002d00)={{0x12, 0x1, 0x201, 0x62, 0x2e, 0xc7, 0x40, 0x499, 0x1055, 0x6f3a, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x3, 0x4, 0xe0, 0x3, [{{0x9, 0x4, 0x65, 0x9, 0x2, 0x1a, 0x1b, 0xf2, 0x3, [], [{{0x9, 0x5, 0x9, 0x2, 0x20, 0xc, 0x8, 0xff}}, {{0x9, 0x5, 0xc, 0x12, 0x40, 0x0, 0x9, 0x9}}]}}]}}]}}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
io_uring_setup(0x5f45, &(0x7f00000001c0)={0x0, 0x0, 0x2})
syz_open_dev$radio(&(0x7f0000002100), 0x2, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000400)='ns/net\x00')
ioctl$NS_GET_NSTYPE(r4, 0x8008b705, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = fsopen(0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x73)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r6, 0x84, 0x18, 0x0, 0x0)
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
close(r7)
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r8, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f0000000480)={0x1, [<r9=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r7, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000040)=[@sndinfo={0x20, 0x84, 0x2, {0x6, 0x4, 0x8, 0x200000b, r9}}], 0x20, 0x6044}, 0x6)
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x6, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018200000", @ANYRES32=r0, @ANYBLOB="0000000000000000690300000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

5.485190362s ago: executing program 2 (id=1267):
add_key(&(0x7f0000000440)='dns_resolver\x00', 0x0, &(0x7f00000004c0)="a079394a04954e2d1523cd274d954f18a7b1235d2023e670955c12e7265fa97c2cfb7ba5f67d4a0f06d00c089c2dbb7034ddf203c4f50b4d19d6ab0b49d345571461f3c9bc2be016252397574e61cd9b5fc6337f92b077112e9d69d5f0d761e584bd5f7a22aa334740193d174c89a6670c1c0a98533ebffcb043f72e876d30dc59b400", 0x83, 0xffffffffffffffff)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x1}, 0xe)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0)
readv(r1, &(0x7f0000000240)=[{&(0x7f00000000c0)=""/15, 0xf}, {&(0x7f0000000180)=""/172, 0x2000022c}], 0x3)
prlimit64(0x0, 0x7, &(0x7f0000000140)={0x8, 0xf}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180))
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
listen(r0, 0xa1)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="1800d6000000000000001b6b37fc00f470120c0000000000950000003d6e7cd54acb4ad0834938e9990000000054385d28b59747feef7ced610dc6c2d2744a48a6d83a25d4e3e20cb4f19527a572a635b992a61261816bd6fd5e6b826edaa17c49f0b6530e7721047526463a685f5eee35e17a782d28260862a1f3a88560e54446b6616d82010feecfab087ae478b377f8f19d0a2910df2da90d5d6e813f21aeebe20f1fe87d45e4746edfe139b49cee0d2cb20e34a276b56de5141e1675e1f907191ad6293f671ab597ca2d17c94592e519b5b2f6e2b35ac2f67f73b0662b321a8b3abe1e4cb5f8bd8dcdcd9f3fb899254ad9ba695cdad3a99fc370b4ad1b7df9f606ecf891cef7a66a92e6546f37f3d0c057f8e8d6fbcafc87111a72363d6f1f6932bfb8aab9fc0fcf7c005c25042673b48d618ff0399cd7a4f99fef035ed02ce49def09240cc0ac2cc720ca242168381a682b54d8b22eb73eb77cb4664f76f93f2c742ee6330ee2046ee8dc46767badddae6bba0be994753aee078029ff748488ea451c17687db8c42fc51c0c41b1192f17bd0d"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_io_uring_submit(r3, r4, &(0x7f0000000080)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x8013}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
mount$bpf(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540), 0x80, &(0x7f0000000280)=ANY=[@ANYBLOB="736d61636b66737472616e736d7574653d5efee944eab99038827bfd0d2c00e33e9cc1555923fed1b7adee26d42595d86bd9782129a5cec23b892ad44b5b617d718b5c362a61b90f89ed26b315119f163d52805393f8a70ab22223d9f15f92326c45843305b67e52db560b46af6f2ca07c18b00bced6f1b945edfb381cdceb00513de156a4c108decf21c1dcd83acb0a7a92"])

5.332013116s ago: executing program 2 (id=1268):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000ac0)='/sys/power/sync_on_suspend', 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0xfffd)
ioctl$UI_END_FF_ERASE(r0, 0x400c55cb, &(0x7f0000000140)={0x4, 0xfffffffb, 0x2})
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000500)={&(0x7f00000002c0), &(0x7f0000000440)=""/168, 0xa8})
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r1)
sendmsg$IEEE802154_ADD_IFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)={0x14, r3, 0x1}, 0x14}}, 0x0)
write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESOCT, @ANYRES64=r3], 0x6a)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)={0x5c, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x0}]}]}, 0x5c}}, 0x0)
syz_open_dev$audion(&(0x7f0000000040), 0x1, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="550a00c92caa0500fe93e52f6900000000006111a40000000000953e"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

5.207998788s ago: executing program 5 (id=1269):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xe1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0x5, &(0x7f0000000080)=ANY=[@ANYRESOCT, @ANYRESDEC], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x5, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = creat(&(0x7f0000000280)='./file1\x00', 0x4)
socket(0x10, 0x3, 0x3)
ioctl$BLKFLSBUF(r0, 0x1261, &(0x7f00000003c0)=0x3)
openat$nullb(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
fsopen(0x0, 0x0)
syz_open_dev$MSR(0x0, 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000180)={0x80000020}, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000001a00010000000000000000001c000000000000000000000014", @ANYRES8=0x0, @ANYRES32=r1], 0x30}}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000980), r2)
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYRES32=r1, @ANYRESDEC], 0x28}, 0x1, 0x0, 0x0, 0x8800}, 0x20000000)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x40000000}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x3}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x64}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x2)

4.652201609s ago: executing program 4 (id=1270):
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000006740)=[{{0x0, 0x0, &(0x7f00000056c0)=[{&(0x7f00000024c0)="2ba671ae8107530b978dd82841597ed8f4275ed9e6b9f7b73ee6324ddf688ad9d88125b82afd2e28aef7183086ce0dd4ee880fc56a2ca8b52ef8f5b5f3e475f49b0bcd201fe612703d680fdd1151dd32535b04d4697d472c7750d6c4c197162e9f872253b611b1ca20e79dcf40d1faf58a453f8db9a03fdd351b54ad4e77fa0fda7990bb281079ae7ba3994aef7380e1d6342305e2d12c57379fd12e784f48e4e83217", 0xa3}], 0x1}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000000)={0x3, r2})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="7425000000000004001f00192501"], 0x2574}, 0x1, 0x0, 0x0, 0x6404c490}, 0x2000c042)

4.293811274s ago: executing program 2 (id=1271):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000041436120410e5150e8d5000000010902f98a5c01000000090401001186eee2000905821704"], 0x0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r1, &(0x7f00000006c0)=[{{&(0x7f0000000000)={0xa, 0x40, 0x0, @private0={0xfc, 0x0, '\x00', 0xfe}}, 0x1c, &(0x7f0000000300)}}, {{&(0x7f0000000040)={0xa, 0x4e23, 0xfffffffb, @remote, 0x5}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000140)='.', 0x1}], 0x1}}], 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0a00000004000000090000000a00000000000000", @ANYRES32, @ANYBLOB="009f2e0d00000000b7673e76bd727d3776121f0f88f4713b29eed5ae802b65d1a6baad64a02cff32ae3810b97a8d65de8401d9f814861e5154c40f5a46e4f8cef6237293cbf8cf8496a66d52109073b7c89cf2319975edde21ff60b840f7c16abe25d0c1eb79b0eb2b12e8f39811231ee2e9c2d7065701c388fb21df8c16ae", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
syz_open_dev$tty1(0xc, 0x4, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
add_key$user(0x0, 0x0, 0x0, 0x0, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(r3, 0x890b, &(0x7f0000000240)={0xffffc0fe, 'wg0\x00'})
shutdown(r1, 0x1)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0x4, 0x20}, &(0x7f0000000100)=0xc)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
listen(r1, 0x3)
syz_io_uring_setup(0x178b, &(0x7f0000000180)={0x0, 0x0, 0x13291}, &(0x7f0000000100), &(0x7f00000000c0))
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x804, &(0x7f0000000000)=ANY=[])

4.176128442s ago: executing program 3 (id=1272):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x355040, 0x0) (async, rerun: 32)
syz_open_dev$MSR(&(0x7f0000000000), 0x1, 0x0) (rerun: 32)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xef4)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000400)={0x0, 0xfffffffffffffffc, 0x6, 0xfe, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="672d6a44b036", 0x0, 0xe667, 0x1, 0x0, 0x0}) (async)
openat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x56) (async)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
socket$nl_netfilter(0x10, 0x3, 0xc) (async, rerun: 64)
connect$rxrpc(r2, &(0x7f0000000040)=@in6={0x21, 0x0, 0x2, 0x2, {0xa, 0x0, 0x0, @dev}}, 0x24) (rerun: 64)
r3 = inotify_init1(0x0)
inotify_add_watch(r3, &(0x7f0000000200)='.\x00', 0x10000a0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r4 = inotify_init1(0x0)
inotify_add_watch(r4, &(0x7f0000000040)='./file1\x00', 0x100) (async)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000) (async)
openat$tun(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0) (async, rerun: 64)
r5 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0) (rerun: 64)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000000)='source', &(0x7f0000000100)='::.:\x00', 0x0) (async)
io_uring_register$IORING_UNREGISTER_RING_FDS(0xffffffffffffffff, 0x15, &(0x7f00000003c0)=[{0x3, 0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000080)=""/254, 0xfe}, {&(0x7f0000000180)=""/112, 0x70}, {&(0x7f00000002c0)=""/158, 0x9e}], &(0x7f0000000380)=[0x8, 0x9, 0xda, 0x10001]}], 0x1)

4.175570863s ago: executing program 4 (id=1273):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x7f00)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000003680)={{0x1, 0x0, 0xfffffeee, {0xf000, 0x3000}}, "d07ee5119ea4288a70a2a6bb8068fd95dd041cf5b177a3bffe992dfbbdf959487337b92336ce1de32e7695c411c0bf9f852d2d71192f33001fd51f5b396a55cb98699a09d21648c4cb30d9d7e3e397c7a3c041c76c72385a46c48c5302848c3696facce956952c2a85822ddf20434ccee5806294ed563ff3a972cddf6ef16ddace933d8a5adea40cd3ad40c9873c29368838e815ff59723519154856b2d5cd9cd79a97dc2fa08dada1175817886e5f9e7aa3dca783a44c667a4806826570ec6acb57d65efc313a384e11fb633dee17ee600145f2cb3103384606140021be766fcb7fa029f0513bbb466177ca1068192550bbf4e6f5694aec747a16e27688a988fa595bca1761b8e88a7dbcaeaf97a8b7b53058b1faf880dd6f1b6eb4c7beb0582b4007f1a67dbb352407adbe1456bf762c94fd825b9419d74f63cdeb6c6976de1890d773f0c8088d2bd48a838cf5b87f5ddf926352960fb978874b0f175acfa55ddfe84de3fc9f75b58bf7a35f33d3c43ed5e3224e92751fa1b43f94f64b681163ef1360a3f3bb7403afc67a188b2104b45c5814aaa9e218552498bf85f4b221d9acc32a331f5f8c109cc9f335ff4e418ab30b54b99d5376cd928c431fc8211fcbaf64716afdc4b6d0417e04d5723e4675d282b36bef3a3a19e855029ec7c33830a6df19332b63e9d8a0f22d96ac230c67657a4e7f7afab91dc0ce751b68980e5a4f6d9d6d9b98802ba9d8576640eea61b8c308a1745df61560e56108bececa3016d93246fdc8b768634e8319b1ffde103c07378f8f4927baba05e992a4b5af0958a7e495e7ce53f7917451d15a963ca14f5cdc4563775688b6533a4b97e0f84b0a33c30077b20805c1f42cc7815efada97ad59ac486bc9e0ee386b49cb97b47fbf8f919f06c75a49636795054b5ebee3e91602c90d7f4db49220affe56d56b96e4f662b2bf36dae482ffc7ba21cbc55e21b73309d6b7aa5509defcb77c236e43b579c61eae5c8d8f8fa71ad876b96069f2e4352c8aaf16e299d21edf5434c0cd9b25cdc9210fb0de759b1dd3fc7fe4c7118bbde72a5617dff21f7a5036448fba7fe41aaee0c289cd076d757e47b0713b236f6f141ba0112c9312b3ec853aabafdf1eb2cbb517d2d7352725f557214d27d9a340af0128fc960a4ea64c933b0d8dd226b6e024471aaac8a7074b2a8695ab990fabba5bf315d246fbfe4260f1fffe54814e33b6235c5b4095437298858909bcbd40a8a286d1bedb06b7b1775bce0a5bca19b0a5c2fa8dbf87b55ae0a43c5086422e5bacb94047e150451f5996420b0d4a697f59decb49900b2b9c13aade536933e14d672c21a35cb68572c3de02f3147414eff4b8674b91f7aebf35f056a8d388f67f8ef7cfaf6b28fe745831ef41def1839791647016932c70685752851327f1837d2f1e9d8f93443eefed2317119c8152ca451a5d3aeb253fb484283f52e5db9f61f059ad3c217a860ee0571d254483501b00699208c7fa5571cf58b9715c954115bc2db0af28361938bb95ced7370c8cbb6141ef62fdbf369dfc4eccd98ab9886d79a52cbf91a27dd0f4b29940492e860fb94654dea54fad6290570760e3b59a0cf28053732472dc313b5fedfc583fc702a880971dc61286370aaf167810455cce7654dc4325a41d9d1944abcdc4d81378f1e96a8f94cd95b886a01f086e379601504219d57d531ba34e1ba0905785fb629c61f6b940a652cdee9dbef12b7fcde087b92816db3386a5769049ba00788e31de4ddbb8b56de1fbe3a5e671728effda7cfd0b650cf5df2faf22470812efbbb548e47cbf36c64e05a7877820f08948ceedb35e12a4a143ee0101a7bf0a00a4062b50c39020669700adf739a6f75352a45fd1373d3e85c3867170373f0c7a794d8590f4c22ae62d438ec365b0f6a15cb2ffe0fc6f57185e1760761bd4370027c01dfad0502f00b6898115df3c530d0b0b4a64e623fd580b528a733e4c881cf5843a975a97f92a7833527887c79fa8eec82b9526a15c6c5f2972083ce8aec735810580ffa4ea2cef4823aee044dd70927f7c07bba18b930006aa86ae7399ac6b4c24bc9d6a6ab0c5b428d7255d4d983eadf97e10c1b00867da29ac981acb453073a37236e7ae808e7759b2e0cffc3ec43afb1e95cd090a7d4b9225a0e3cbebfe49b93846ab603891e2da7d85a04bf42d12d16a97c965bc4911d3ba7a9ca505794d8744fef00a436089de67aa8b480070230dfb002eb91edaff428d4908a87afae418dff7ca59aefe1ad8f6935f309fe7985c2310881659c60a66a5e50242497ba1cd5d2bd79496ccd23f9fd901afc6622829cb3701caa50f96e09e3b23bfa3181b74ec7dae2e42c9caab43e49ae1d922a1a1eb3682de026323d9215fcec42c54401a1af81450830a4b784ed1c7922734bf3632409147680dd3fabcef296353705bb5c0e650e12905a05db1e7923923a96ddc783fc1ed46e2010416c37d9d149ad73e808bd6e4464f62893024a8501803b6c88fc55c8bbc1da7cbf580b5a81fb7c61455ae3a8aaec303fba12e0f2b51ed5e8bd31db40e8bdbd00e7b1ddd364766c974d813d86fc88a27bf82bba60c62e5f0f6af6bda3390f8e72a2811baf3d6325e70d9a3b59cab1abe95290ecb87985567e1243504c038de9d4d100ea64eec45208cd8d2474e646f7d81eed6d59b8b0859552b6fc088d874cde3e75ee30243dc9d88ed5b577851a5bd9e2a453287025777fcac19ac33e1c94b4ad272f1055b16b842a6bd6168fb45f1f74ed2467020df5431068a5f2cbeaa6ac1841308c7c9f752aa06927f91fdf18ef9d9e942367e5ecac0abf4d3b8fc7b80238c0e7faf2ea7d3f5271028fc558a44799bde63168becc67c5531e843336fb16ab618d37f95a91937b824bf896b044146bc3a5e264a8f23ddd00729cd9aa56d9a9a24b7ab96ae021b193d8874d43ff4b723d86b7564e550378599c3e0c7a2b3d447ad76eb4cd699733d970a5ab218429a1af81df9c8013d6d16a6bcb019f6ace4461cdaa785d20ea027cfa53d521bb91ad2c04aaa6c0f268b14924803977633280c7b7beb14c88fae542b7a13e96253259e72b6e37276da88891c14664340e84ae732edbd71e67047e476735b220ca231de31a380ece372db632ec3cb3ef5ac97ec41148febd2acb15cde1ee5e990ea0aaa95c2df39e2111dd1185d14a194e22d34fda8f54e99d3a73e5a231682c726d40816e048c1d059bf3bb9ee2b5f895365d95aa28f6adbf6e16469926b4d8ee7f04c7dbafaa444df5b88596c17874f0efe35e5ada1a69634f4b430f852d33b032f823c5deb54f47a7a4adb1adf56d5440b7a917580004c13e0b36c8e0a203a2be3f8fffd9efef3af19389a12c67859d4381ac0a02da18e25931b41216b731de25e1245482c84d45de1cddbce2109322a3428bff692012573fe9efd02109dbf35c5d3a287dec105cf3f1a2e5f0b1cc08c7b4759766d25d0f7b42c3ea8bf8101e61159a2ba7602e9c7947cf936ac39bf59b24084709fd61d704bbdba7d282aac778b7ec1dcaf984527c8112d56e75ab774d1598d9816abc77b0e693880beca5f330c626774ab5cb6967fb0ea8e14efce120947092c3b6f8a22f07cad22e971418092481fcad36ecf0cfd6bc3864115b8507c13554584f1f6fee5ee07eb6a091638d8e7781c1c006166e0f987f9f4de535e9f3df1db8c9328e9a19a73c76059ab4edfe9eda7f16cc6b869229bafb179d194e20ccc6f9338183b673de8138ddab9a0907278f6eaacc55bf59a450ebc10e0b88c82d9f0deca86ff771f46509250fde94e0c94256b77616d099862ddc9b341838d634a9dc4b55a88fcc6248901135f6aa76365433e7e534e0e5ae8eec2a63df62c3e244a40481189ff54122698c7e2da2c829b2eec9efc9894ee05be04ae6dd48406eaace17827e38bf38b414059aded0343e0711a8d864ff41a8d9ed40fb2aa1a3f4014f691cd0e8af62445a021820ff03afa8a192ee255862f306851df1de96ce36cafb6a60b7069db7aa96fd1ffb2fb01e6247f770304dffe4b1c8d0eeb336dd6806d6ab5d418953b1cae7cbbf53766b61e4aad5cfce8255b78af26f9bd11283a9c7d12cd63b82cd2b506fd4061d1e16fc7c713d80763c3b0aa0faadcd9b7d676101aad80e1ca00369297e1f714003ab8d0b545c335014a522a25a767950963ef821425b79b521076166d0df3ef358c7d60d99cc85463c186e8faf16af79785680382e4cc93f6594f8c4461e0988c08717640df24a5f357db22432fcae21702dc792d201212fb3791e0165bb3d433a8268ec96df73766fdba42965e00e619246cba5d96eb853a7c22c340700000000000000627d069517b743cd07f6f7b444074bb9a50269f2e03309c58930e56a9583eb00c37fbcdd391972261f41756c10c8899fcd036e2017e088ef9e6ec31f795d55b3bba214c53c98fc9318e4ade0e7e6fd259aa277fed54c27e5210787a5f6937f56fdbe1da5113f059061ca590ddf536a55cb91ac6ed41cb9c0418b115b29f5e823c1b0ee7c2b3982087763545b34e2c945d587ebce69bbe299a7f52b674f351977370fc700474bc15d7e6ef98c14258ecf401a4f3bba1a9aa76c5ab0b8819fe6efe3fba1899909e5e48554299150ee272451b56142d12ae2bb4942db430239701d494917f2c939a6fb9d98d4751a6f2c4537ec870342d223343a9bd7b8d8c99aff8cbfa298395551185f35dec120228073a1e496a58b59d9ac5986249a7c6db9398395cbf341c08ee910700e2daa042dba1846fef59c72ce872bba2046a14fcf9a47a5686d62bfba76309a9865c26e5fa41dd872fc749fdc57953105ace4978f9eb788c8d061c853ad0313e51e732c5d7bc05e752443c8e99b8e81c688befdb5b14c3cc2f96eb8ce8290303e483992fcbece1ff278d0dc036ad437b6cbc695c7741ba4556e242146d40843c73deaf8fceba40e4a4acd739b3031848b17a210a1ff0dc1908b77c4bb94543af52e1fe2a090c8f217428d02336303f7952c3ddefa7c81850676e7f4cc3d32c3937281fa5ab279c3fe39f92ba077dadb8c2c3df17cc511bd33c41cb161d24aea154f0f5902c94b56fe072d321a983668bd9f4838878e66ec44cb233d7d0ca908a794c844ff8b3ba4c57f6c5fc2f3a54db448b013f0c4998bbc6ed0409b3368391cb28c6df4a909fff90f308ff38c758ff7d8a2920bc221236d89b3b76de44e8ce649b32f5135a0217ba9036a8edddee97d7ba15f2c21fb7d3cae3eb6ef09dd03eed650489c83b5ba5dd9daf7a86cf0544fb8a58e46b860e3e42e10cd6f1c4f81179eb2c3ba611793a32abb4c0768db90e8bdd1694efaa9c2b45c89d203fdfb8b926b6a0d666d91b93065a83184fc2065961f2308056241b66f427c0f0aabc75852c90f0624cf036d537032ca8d73325d2ae2a79a7292c240c34584bb881fe5d468a051cbc0bde061f9eddfb758cd2dfba296eef549e5c4ede097111216a0ec60f90e8d6f5dd843c82e15f505f8c74e854ba9cd386249d552978eb8135a5f8c79c3ceb8dd5828b0218ffe40f375d6cf3ff2f47c276c8169ab98336582a852c1535018fb2306aca6b8c9f9e38d64c66a722762b76c69d4ca6c14bd6992549e4eec17287fce194467f972d9200c3d1ac4fd4a8f2620e2e4281d28c099946ed90789ba122705326390d3e058ceed24044e542efb36416272eadf6304f30efa0b7bc1ae5be92fe50e591ee6f725726e917ec113506920beb2aa53b39f1d76b31500", "cfb220c7d481332f3f1f8079dfe27e23185fd67a407358db7892789f96b7fa9b14daa48617a10d8a91b820ecbaa470ec0bb1f3cbce7f70ec70b19a4cad082229c2788f8611d7dc306d9a45761a97828c36ed87ebde5d4a3e1609c1422a8ae2f7cca428ebdb0dd38b90b9598a353b18a600bf35a369e6e3e5abb0a1c5c0c0e48e014e7ef1b7d768b3c5657f1adfbb7ff2985082b16c99eb83ec3660990dcf1106efa6b7f8a4798fec811c2c85faec0235c83b7093b3d02367421abc40a554e0b0d7fc1bcaece4222c594f8d20e368fe625ca433c75486fe5c94103cd17291349ee12b877602936688666f82ecd8f4f83d50bb1650e08b96cd25ad147c4c956c98649806a3736d072c8d97c6e3a46a7c18535df8d828b86662400d8e9cc861fa1dd5dc193892d3168396c499e07b279fb76c7e289f2fd955691363bc1de74536dc571817615c88b0d594a136966c129e424ccb7ef1c7c7461eac7ca5f03d72ea4c9c3d1156ee4cb1bb70e097357588b5c49f6716bbae1bd118104b42786f09a3b9f7cb80f383cadfd0c462096ff2bb637b7cf79764b6a4b7ffc5d87c1f063fb48e7f08ad5af534c70079f12f28e8921abbd4280801cdf6101ea494768b1274afd0eea5939843d56022a83590920fe446d52dfe699c33977d5592dbf7e0e236b8175d7faae06e0c50f7402174023ce4b996564e945c416fa823f2f9c3213ac50b20bd1fd55bb8d9fe70ee31ea2f404ae0fcbf857bebcc9196c8c622059fea2e248e4058905b69fb98be312d3193ea1d8ff653173e8c2371371b77a5bea45b3cd6fba19b6336f94ec04c8f86d24e9ca959874577d7ca0baf3c4ff30b554bc3ccc06df46d925373fbf7863e2cf684d3bc9603ab72b851ca4728294de87f2dec6f23ca9e43ed2e5cbba662d13137fc1ce0f6ae6aeb974f72f4b750825fafb67715e425f40c7da83b92d4249a0a4e96b789cceb7b07f38cb83f72dd09ba345ab3cb8ae760fc14e40ea182a0d7fe1facc62a1ab0902349fd7e27bb0cd349fb5053f4734823abf020739b4b43bb11f5d69b61295068df31177959903c2ea1bb82d24eeaa93d0d4738d5d15b2a401e7ebe0d3cfbd45b2db2882cdb41408aaa718f8320fbb7f9da4f68d0eebeef175442e807e9908132731fe5e268582dcf6dffa4251ebb7121db8e412089fa9d8af9919799547a26b6b8eb44c28f1ce5f9a3021fe30841be204c1b4b3813dccae6baeef9b53fe413cbec46bb0cd95d3793cdc9bfe6cdd96ce0c4aa4a25e1cbbeeee6c9fa558b279048c7e31d07b125bac68d4e1f4253bd4dc7824cf3d722c94cf2b8f61bc8155731f072fd447082b181a13ffb8c08a1d568298c5de2d969fae2bea070a9e2688f294e76b8c200dfb993ec19778eb56ae3127c1116ccc85ef8806fdcb9ee0cb66ff03fbb0fa6c52b9b101b3830fc1650efa859163a264b4059092e5dc9a415ec09bfd1460f142fe5ef00beb6aa9032bd0de97aefc6f65e8cfeea761b3d8174caf528b6627682ff4d4450cb0f34251fc000ed01dd538ef13260984f44703b89dfb511bfb538d0b1c8aded964e1bcc5ca57437468b14a31ec0000a17e4d24369c40500449c37e7dccedba3eceb59d827dace246b5c48afb6a5988e64c560b3dc76c32d831f51cdbc5cfc4364ac8b25372b87c92bacfedc6bc8feb44098dbebc89cda03c59e4c58a31372bd574704b9e788834b9f83c6703f6709efad97c4ce499ea580dae1de282a019247cb3dce5c1906322e6d3ca5157ea6428bc42416936fac194efe136089c07faf7adf1e923003f1dc63fcbc634b389a4f351a6acee785e23c6bb04ca2f265be1e634362b87c6f9fd369bbe62a1db6b286c7ffde6370bb4d6e9e0cc3ec451e1a99d134726c9075e71319d3a683e91e4b900061c0e6d086481069cd32f4cde7816f8e3a0ac6428a7488f31f06ee0da10df3ed0c150d29085879d064f914407f60018bb588735663647bfeda930407d69abef3f72fd461c2b85b00988b412a180fd267fc646a86d297e7e40912607157b6fa873df6442579b1523d8117f0c06c87adf75843b8bff30a5bfb4fe1e9846b7fdd58774641baf9cc9c4e38e53ed24a9d9e9dbc7657aa9b220a8545852b0409f5c0812e953823e841967bf55059acc7a4600818134359e72cfae0d04a0738ac8acca133d6395a455b22cdd6f901d4cdea1cf17415f7d7895a4b65f80d2f7c5c60a0dc04b40c9ae5ffc922e074a82afd704673e1766d19db9f60eab0238fb4a3169a08aded607847e5d752d4e24c4914b95bac3892bcfc2076f16a7f07583f0d418b9dec03afdb2e93335a392e1b1ef2910eb2a4b6a63fe61641f3c02bef73cd7e4a77a6f30ae821598c3160511603541bea89022b54f321c2a55cdeeb19335d78a821ab6ca0f36588a9a79a41e2123905a491d658c2a1caeee998c995bb0f816c92c5dc2b862183f80b9f9786c9c5524723c944d11f6894c7f008ab8194f577e22c03631d2a33205f508ea49653e7600639242dbaba704f700ac227f32dc575c559a0a1f4fe0cf6c22fbf7e1ca2ab4b1e4724e8379021e3c9a7c1509c6a413bd7d9c98938e440762eda2546d636597defa86c1ad31126a1182d365f858927d140fb0a97f80adcc5f4ed5efe11ac503453917a263f1d64692348d30f382e85e464ef7616067a42df5de1a1b622fabefe2ca4ceffa4801f7a02fdef40644cd1d079590d900727628d54b44db7ac700d8d664f7eea12837fcf347360d8e43a354fe51b4c49e8fcda3c322b738ed2b800b5cc06e22c72af2a67ee7bc8ae894e841f2cf2b0a7e381caf944bf4e91ded63b6f82f7474e4f81e986fff7e5339b8e9f60103a1af81833e120f0c88893ecabac044a4a2867cda4fdcb084459a00507aa9e5a8e761a72df3322a1ae8cd918b4994c23bdb1e459b4f21651bd7fa067a00e2a2877bf6b29f289ed8018e0a78f6fb4ded9749640e0e37f6381b320ab72da404f3d70d60152f6fa6738932387b83250cb3148141edb52f109bfd4bda8054959db01f4c550609a63c08cf01ecd110cfc6f0055638c0dde039d2ac2daafe59e561f9f08a8830c3f661e4325de63e98f4a4216ec3b83fd200201ed3f647147611424286ffc6c4a8aca64a6874743242d4feeaa9153de06e51c512d9cab7ae712c6424069f3e5db4ddebe9b48b5f6caa741162edf97674d2368e03a387f798151a4b9b9fa9e3a5838a343133158364a9fe3bb4b9a3c464c0c54a4c64ca774ad200925ac6bf59508c10a8574afde9b821741af43ec64cedc13aa220b39772195283506dfe899dd6a7b37eb21f154056a2df3564ef2bb918a928651de88c3613b84e7960bddd7b46b1304deb30f57b6fe5a3b4788629e91bcc2456a72fabb16b47da71624d2e9081de748b3387f52da4bb094782326dcfde0827e2d674e41bb375247d349cade9c704e5431785009b0e53f1b45c70b237c9432e07e4c7a8464ed11608a3d2184338dd9e6f6ef4b3d751e979667b6a3953c89aff4eead7a978071a912b3de21a85a5849c57933cf53cd74a610f3e60f699766fbc7e0bb8a891a429c77bb6f3b6f9f8eb0b1bd9588ef2ce98fdf0a0838e4b0bed807d8b673093c717feec8d697e32542274887d039db7a2daed5d52c8e9767443229f8003c5d67e907376ea2f393484fa70deee159cb56f8d097b8fe2f36e95f540137e20725f0940a8d049068ead4c46bb3771a671bb00de88931e03445a55868de0c220db05cbda9f996d5fe7c1070efe5e718fed4d4cb4ecacad3d6b643bc0ffe9a71b720ba7b5adbbdefe29106ef6a6ffe4547f5d02bec312147df0abe80efb2d5e598fc7c8b268e58b59e0d75728e9a18126f013c963ddc92d251405f857fe3a5cbacf443be7772975b7bf4f6d7ed6f80dfcc47a88c6d19120942adb5385be6ef3c0d7e396bcac5affc8f9276d6cd1a0b069aed72a98cde8ea7aabe6cc091b19efcfaf9368dfeb3087a05a42e3b893dae5ffeb72e6ac06e995a2a75ea0b5f7876247bb4c38cf3f0153f1f7473b522f1c440b632270e2b1d654d3a5ae16cb788482760d34ca79c8951b29c628e21029715683a3e6f8f77c5d89ecdae37e0190f79c4c1dbc9d0160e359cd6c94d6662ed53bb01a83374ff593c823acc59241b11f020902069fc0054a9b26cb320bef4fb1f8cc5bd8ae76eb029afab731b9876bc4e8708a8315512823cff1f9375d284ce66e53d4efad6c76d17bb532fc938b8f80c13ce86b5ba3e540164bc5a5d47cd321c241d8740f453ef95bd3878d578561ad6ce20877ffbd44062dce8df1d048d8d5e4045be647886108cbb1f0b26a8b74b66858afedb830a161bb02bde4c46a688a0ea3a7018ce24666aab0f422ede2f78ea29f77e28d87c744cba0285ce33d0d9ac45774829699de6d725a9b6db6e7d03ad4ec9d075c386e68ca0bcd9e9911d741ed0168cbddb87a7918a964d206629da4e887277b0ef7d3f9c7082f3f15f29a0dfb39f3b0877a5ec3ac4343e0d808f5aee8f1869923aab6dfc3016821c013109f34aece6183994b853d0e9561375c02cdd26b1b55194757341929a8038864cedd6b5a3b8b51ade44637044c4ebddb190f173969a0ca4cf5d42153763a0b91da0110ae7a25204850927d81b00176d4568a3d444d8029bd010df784e3f673fe855601ec4f1b26b2df58841e6a65f0db66373f63cc14a8b07dfc52ac9957eb542d05ed687c79519609de96df18b63cb294b534ddf7d2e8f41bcc1e5a006191c4db057b6709f0a96f18e7e8f67b8be2a19c015b9c4b0b3f42e4de366b71f8da8888809473c3c7a02a1158e375f29997a43bc7118ca4d1abb8f8f21972fc589aaa3d73a4d40a1e1705e169ac6e56cff50d89fc45b6863c8fc67bb2b5939a7f33072539ba4c24077be5711ba368bf7efd4897931531d388eb5c2e56bef337777150dd59518652145c9594e110e41d2615196c6b197916c88cc2814e13a3a922b4ecb044bf31cc90e0bfe0ce07de29188bbcb0ec1a12b509f52582fbb948c3cbe0c6964f46991cec0704bfac08aec6ad8ddfc36dc68c7f547c5ee6af4a8d55c79e3dc1c49b045379811f81e9a185a92cd37ae4ee32c5d3c82d36d6202a6c84fd231fe467071d42072827fd77afa5d757e6f37247f783ef09bdfd7536b666e84bc4bb878005b7829293a04ba090272dec844f4ef0e934617c08518bdc6b915ac6f3f03e4a6ab88e21c3f21f93b31d95ea3b9228e0031cb69795de5abd19c4cb4a0cf2984e53ca391cc66e33ee0d510151670331fa264753704fea5e4b1760f74890c49a74a47e0da13155c5470013d53dea0f05b5e088f1511c209f5be940232318af2757951d399e32eb862d915784713baa8ba93645caf04ba78fa3cf600ff92b9c5be58ad87438a340bac00a5ea9fb17e39478ba61fe36335e48d8c5a0b25f024cbd2ec7f217d0f260951da396dc13a2a74cd90df4b52db686e3b34d27cfa4cebd7bf59cbcfaf4007dc943a1da6e0bd1799a21ab449d7bb42935e50c839c5b567c59742436af15bc8d46095520dcd9273ae2b6f3c1cc2b4311ac9e5d297f0940b1552c5955adb302022022bb7457978998b56328629b7725dfbe3dedb37f37af0697a4471d1d6ff6bec633a38540adeba903f3eaaec5785fbb3c6a598f49dbd9ff93c67dea1ef39a614331b119fa8efccc8bac01595fb95a2a57eec9fc6c6fe82782aa89ea971866fd9a3bca4010182092ab6d1e2b49b964be9e3bb13bd6b77850e435f55a5d46e5bcb3330c7edefd31c33f61275e516"})

4.095797291s ago: executing program 5 (id=1274):
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000000)=ANY=[], 0x50)
r0 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000003b00), r0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
syz_emit_ethernet(0x7a, &(0x7f0000000040)={@link_local, @dev, @val={@void}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f53a04", 0x40, 0x3a, 0x0, @remote, @mcast2, {[], @param_prob={0x2, 0x2, 0x0, 0x500, {0x0, 0x6, "508359", 0x0, 0x33, 0x0, @private1, @mcast1={0xff, 0x0, '\x00', 0x0}, [@hopopts={0x3a, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0xd}]}]}}}}}}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x34e, &(0x7f0000000780)={@local, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00cd04", 0x318, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x5a, 0x1, 0x0, 0x0, [{0x3, 0xa, "a78c000005dc8080a2030003004003493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34060600000000000000dac15084dbaf736b41e5af0502"}, {0x0, 0x2000000000000199, "000005000000000026000400"}, {0x0, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf3915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c61bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee4df24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x0, 0xb, "17dcea468000000000054740a5d4901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2bce9ac946a3f0e2bc4000091394c02bcfbbb7d71138537d68e2d2c6393a9f3cc271a9ff09a48b5b303f4f0"}, {0xe, 0x7, "b8a3e10000a3e1100000006f00ffc0ffff00000000600000ff0bc0fe000000000000000000000000d9a0274400"/55}, {0x0, 0xc, "5e14ccb44d2d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d260600aa89c8f267d76ece1c9f6ae2e1eb3d8bf9c6ab2642c4808298e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c"}]}}}}}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000001300)={0x0, 0x0, &(0x7f00000012c0)={&(0x7f0000001100)={0x18, 0x0, 0x1, 0x201, 0x0, 0x0, {0x1, 0x0, 0x9}, [@CTA_TUPLE_REPLY={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4048080}, 0x4000000)

3.937157106s ago: executing program 3 (id=1275):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)

3.881641316s ago: executing program 5 (id=1276):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
r5 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @mcast2, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x0, 0x0, 0x0, 0x50}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
r6 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r6, &(0x7f00000001c0)={0xa, 0x4e21, 0x0, @loopback}, 0x1c)
getsockname$llc(0xffffffffffffffff, 0x0, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f0000000240))
sendmsg(r6, &(0x7f00000000c0)={0x0, 0x953a, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xfff2}], 0x1, 0x0, 0x3300, 0x2c}, 0x44004)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000001c40)=ANY=[@ANYBLOB="85000000a800000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000140)={0x3, 0x4, 0x4, 0xa, 0x0, r0, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

3.796142715s ago: executing program 4 (id=1277):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1400000004000000040000801200000000000000a724135a704960453efdfee955d9caae70e17ebcd2c3b55ed3096ff7f1a92f11795835da2692789cb913b053f6180fece05f007bfa8d023e5b72e8e5715ce516f6ee95e51a02f908dc674c6e26211f0c16a1", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x200000, 0x0)
bind$netrom(r2, &(0x7f0000000100)={{0x3, @null, 0x8}, [@bcast, @bcast, @null, @default, @bcast, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x1000)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r1, r0, 0x26, 0x0, 0x0, @void, @value}, 0x10)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000040)={@map=r1, 0x26, 0x0, 0x0, &(0x7f0000001440)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40)

3.665979268s ago: executing program 3 (id=1278):
add_key(&(0x7f0000000440)='dns_resolver\x00', 0x0, &(0x7f00000004c0)="a079394a04954e2d1523cd274d954f18a7b1235d2023e670955c12e7265fa97c2cfb7ba5f67d4a0f06d00c089c2dbb7034ddf203c4f50b4d19d6ab0b49d345571461f3c9bc2be016252397574e61cd9b5fc6337f92b077112e9d69d5f0d761e584bd5f7a22aa334740193d174c89a6670c1c0a98533ebffcb043f72e876d30dc59b400", 0x83, 0xffffffffffffffff)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x1}, 0xe)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0)
readv(r1, &(0x7f0000000240)=[{&(0x7f00000000c0)=""/15, 0xf}, {&(0x7f0000000180)=""/172, 0x2000022c}], 0x3)
prlimit64(0x0, 0x7, &(0x7f0000000140)={0x8, 0xf}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180))
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
listen(r0, 0xa1)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_io_uring_submit(r3, r4, &(0x7f0000000080)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x8013}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
mount$bpf(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540), 0x80, &(0x7f0000000280)=ANY=[@ANYBLOB="736d61636b66737472616e736d7574653d5efee944eab99038827bfd0d2c00e33e9cc1555923fed1b7adee26d42595d86bd9782129a5cec23b892ad44b5b617d718b5c362a61b90f89ed26b315119f163d52805393f8a70ab22223d9f15f92326c45843305b67e52db560b46af6f2ca07c18b00bced6f1b945edfb381cdceb00513de156a4c108decf21c1dcd83acb0a7a92"])

3.561212781s ago: executing program 4 (id=1279):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000027c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000f000000850000005000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='sys_exit\x00', r0}, 0x10)
kexec_load(0x1000, 0x0, 0x0, 0xb0000)
r1 = socket$igmp(0x2, 0x3, 0x2)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e20, @local}, 0x10)
r2 = openat$binfmt_register(0xffffff9c, &(0x7f0000000000), 0x1, 0x0)
write$binfmt_register(r2, &(0x7f0000000040)={0x3a, 'syz1', 0x3a, 'M', 0x3a, 0x800, 0x3a, '^-!]\\x}&', 0x3a, '-\'[\':.(:#', 0x3a, './file0'}, 0x38)
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000480)=ANY=[@ANYBLOB="12010000020000402505a1a440000102030109025c000201000000090400000102060000052406000105240000000d240f0100000000000000000006241a000000090581030002000000090401"], 0x0)

2.771554245s ago: executing program 3 (id=1280):
socket$alg(0x26, 0x5, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$MSR(0x0, 0xea9, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$6lowpan_enable(r1, &(0x7f00000000c0)='0', 0x1)
sendmsg$802154_dgram(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000ac0)="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", 0x229}, 0x1, 0x0, 0x0, 0x10}, 0x40100c1)
r2 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
setsockopt$inet6_IPV6_RTHDR(0xffffffffffffffff, 0x3a, 0x39, 0x0, 0x18)
read$FUSE(r2, 0x0, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000180)={0x42}, 0x10)
r3 = inotify_init1(0x0)
inotify_add_watch(r3, &(0x7f0000000000)='.\x00', 0x50007a2)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0900001804000000080000004000000042000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000220000000400"/28], 0x50)
r4 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
write$binfmt_elf32(r4, &(0x7f0000000040)=ANY=[], 0x69)
close(r4)
execve(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000200)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0xb, 0x0}, 0x20008080)
socket$rds(0x15, 0x5, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

2.614829137s ago: executing program 5 (id=1281):
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioctl$SYNC_IOC_MERGE(0xffffffffffffffff, 0xc0303e03, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x40000006)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000ab4000000060a01040000000000000000020000280900010073797a30000000000900020073797a320000000088000480100001800c000100636f756e7465720014000180090001006d6173710000000004000280600001800a0001006c696d6974000000500002800c000140000000000000000808000440000000010c00014000000000000080010c00024000000000000000090800034000000fba0c00024000"], 0xdc}}, 0x0) (fail_nth: 13)
socket$kcm(0x2, 0xa, 0x2)
write$tun(0xffffffffffffffff, &(0x7f0000000780)={@val={0x6f01, 0x800}, @val={0x1, 0x0, 0x0, 0x0, 0x20}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x16, 0x24, 0x67, 0x0, 0x0, 0x21, 0x0, @multicast2, @multicast2}, {{0x4e21, 0x4e21, 0x4, 0x1, 0x5, 0x0, 0x0, 0x9, 0x0, "d762ce", 0xa, "f122f1"}}}}}, 0x32)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000900), r3)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$nl_netfilter(0x10, 0x3, 0xc)

2.546995224s ago: executing program 0 (id=1282):
r0 = syz_usb_connect(0x5, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x9, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x10}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_usb_control_io(r0, 0x0, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)={@local, @empty, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "fca33f", 0x0, 0x73, 0x0, @dev, @local}}}}, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000780)={0x84, &(0x7f00000004c0)=ANY=[@ANYBLOB="00000100000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f00000000c0)={0x10000000})
bind$alg(r2, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'crc32c\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5", 0x4)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c0000001800dd8d00000000000000000200000000000005000000000600150001000000280016802400010000000000000000000004010020000000000000000000000000000000000001"], 0x4c}}, 0x0)
r5 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
setsockopt(0xffffffffffffffff, 0x84, 0x81, &(0x7f0000000280)="1a0000000200", 0x6)
ioctl$EVIOCGMASK(r5, 0x5b01, 0x0)
syz_usb_connect$hid(0x4, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x10, 0x1b96, 0x3, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0xad, 0x80, 0xb3, [{{0x9, 0x4, 0x0, 0x5, 0x1, 0x3, 0x1, 0x0, 0x40, {0x9, 0x21, 0x7f, 0x7, 0x1, {0x22, 0xbf3}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x4, 0xaf, 0x48}}}}}]}}]}}, 0x0)

1.084040641s ago: executing program 5 (id=1283):
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000380)=0x1b, 0x4)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x28aba, 0x4, 0x200004, 0x804, 0x4, 0xf, 0x120000, 0x7f, 0x0, 0x8, 0x8000000000000001, 0x2, 0x0, 0x101, 0x6, 0x1], 0xffff1000, 0x141200})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x3, 0x20, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2})
ioctl$KVM_RUN(r2, 0xae80, 0xfeff)

424.301827ms ago: executing program 3 (id=1284):
socket$kcm(0x10, 0x2, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000c18000)="ad", 0x1) (async, rerun: 64)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) (rerun: 64)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) (async)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
mprotect(&(0x7f000021f000/0x4000)=nil, 0x4000, 0x6) (async, rerun: 64)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async, rerun: 64)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async, rerun: 64)
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='net/ip6_mr_vif\x00') (rerun: 64)
preadv(r0, &(0x7f0000003400)=[{&(0x7f0000001f00)=""/83, 0x53}], 0x1, 0x37, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) (async, rerun: 64)
landlock_add_rule$LANDLOCK_RULE_NET_PORT(0xffffffffffffffff, 0x2, 0x0, 0x0) (async, rerun: 64)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r2, &(0x7f0000000000), 0x10)
sendmsg$can_bcm(r2, 0x0, 0x0) (async, rerun: 64)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0) (rerun: 64)
socketpair$unix(0x1, 0x5, 0x0, 0x0) (async, rerun: 64)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) (rerun: 64)
ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000000)=ANY=[]) (async)
ioctl$SCSI_IOCTL_START_UNIT(r3, 0x5)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f0000000400)={0xc, 0x0, <r5=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r4, 0x3b85, &(0x7f0000000140)={0x28, 0x6, r5, 0x0, &(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x800}) (async)
ioctl$IOMMU_IOAS_MAP$PAGES(r4, 0x3b85, &(0x7f0000000000)={0x28, 0x4, r5, 0x0, &(0x7f00004f9000/0x3000)=nil, 0x3000}) (async, rerun: 64)
ioctl$IOMMU_IOAS_COPY(r4, 0x3b83, &(0x7f0000000040)={0x28, 0x5, r5, r5, 0x3, 0xfffffffffffffffa, 0x3fff}) (rerun: 64)

340.760466ms ago: executing program 5 (id=1285):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="000000008de28c2d231362303000005500001000794d98e8fca4a3cfacbe5be08780bc8e91a240baa835269470c280b71c7e84b88c7bc291a8bf232e462d647a2127a64b5119abdf1d28da59bd4cc307b097bb1e515963", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f0000000580)={&(0x7f0000000540)=""/56, 0x112d000, 0xc00, 0x3, 0x2}, 0x20)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x4000080)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r4)
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
close(0xffffffffffffffff)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x4d0, 0x2e0, 0x940c, 0x3002, 0x2e0, 0x2c0, 0x400, 0x3d8, 0x3d8, 0x400, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x298, 0x2e0, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x200000, 0x0, 0x1, 0x0, 'syz1\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0xb3c738a26429eda, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@initdev={0xac, 0x1e, 0x80, 0x0}, 'virt_wifi0\x00', {0x6dbf}}}}, {{@uncond, 0x0, 0xf0, 0x120, 0x0, {}, [@common=@dst={{0x48}, {0x0, 0x0, 0x1, [0xc1, 0x3ff, 0x1000, 0x9, 0x9, 0x6, 0x7ff, 0x8, 0x945, 0x1, 0x6, 0x9, 0x632, 0x8, 0x3], 0x5}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x0, 0x4, 0x1}, {0xffffffffffffffff, 0x3, 0x6}, 0x5, 0x1}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x530)

63.795526ms ago: executing program 4 (id=1286):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000040))
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000080))
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
r2 = timerfd_create(0x0, 0x0)
r3 = syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x200000, 0x10100}, &(0x7f0000000180)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r3, 0x2def, 0x4000, 0x0, 0x0, 0x0)
timerfd_settime(r2, 0x3, &(0x7f0000000040)={{}, {0x77359400}}, 0x0)
clock_settime(0x0, &(0x7f0000003c80)={0x77359400})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74, 0x4})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000a00)={0x800034d, 0x0, [{0xeeee0000, 0x1000, &(0x7f0000001600)=""/4096}, {0x2000, 0xcb, &(0x7f0000000740)=""/203}, {0xffff1000, 0xea, &(0x7f0000000840)=""/234}, {0x3000, 0x0, &(0x7f00000002c0)=""/63}, {0xd000, 0x0, &(0x7f0000002600)=""/4096}, {0x80a0000, 0x0, &(0x7f0000000940)=""/184}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f00000003c0)=0x1)
r6 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r6, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_KICK(r6, 0x4008af20, &(0x7f0000000500)={0x1})
syz_open_dev$MSR(0x0, 0x0, 0x0)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="0c010000100013070000000000000000ff02000000000000010000000000000000000000000000000100"/57, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="ffffffff0000000000000000000000000000000032000000ac1414aa00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000200000000000000000000001c001c00"/196], 0x10c}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
io_uring_enter(0xffffffffffffffff, 0x800610e, 0xeea1, 0x1, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
r8 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
bind$llc(r8, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x81, 0x42}, 0x10)
connect$llc(r8, &(0x7f0000000040)={0x1a, 0x331, 0x0, 0x0, 0xe, 0x81, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}}, 0x10)

0s ago: executing program 3 (id=1287):
r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x24000, 0x0)
setsockopt$netrom_NETROM_T1(r0, 0x103, 0x1, &(0x7f0000000040)=0x1, 0x4)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x2)
r2 = syz_open_dev$loop(&(0x7f0000000080), 0x9, 0x2480)
ioctl$IOC_PR_PREEMPT(r2, 0x401870cb, &(0x7f00000000c0)={0x6, 0xf, 0x3b, 0x10001})
acct(&(0x7f0000000100)='./file0\x00')
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000140)=<r3=>0x0)
r4 = syz_open_procfs(r3, &(0x7f0000000180)='fd/4\x00')
syz_open_dev$dri(&(0x7f00000001c0), 0xffff, 0x40e002)
syz_kvm_setup_cpu$x86(r0, r4, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000200)="bad104edb8950d8ed8b800008ee00f0766b93608000066b80100000066ba000000000f30baf80c66b8600e488466efbafc0cb80068ef66b9290000000f32f20f08ba4200b037ee260f01c2", 0x4b}], 0x1, 0x3, &(0x7f00000002c0), 0x0)
r5 = syz_open_dev$vcsn(&(0x7f0000000300), 0xa24, 0x2000)
sendmsg$nl_route(r5, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)=@ipv4_getrule={0x1c, 0x22, 0x20, 0x70bd26, 0x25dfdbfb, {0x2, 0x80, 0x14, 0x45, 0x3a, 0x0, 0x0, 0x4, 0x20000}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r0, 0x4018aee1, &(0x7f0000000440)=@attr_pvtime_ipa={0x0, 0x1, 0x1, 0x9e79})
clock_gettime(0x0, &(0x7f0000000480)={<r6=>0x0, <r7=>0x0})
write$evdev(r1, &(0x7f00000004c0)=[{{}, 0x1, 0x5, 0xa609}, {{r6, r7/1000+10000}, 0x11, 0x8000, 0x1}, {{0x0, 0x2710}, 0x0, 0x9, 0x7}], 0x48)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000580), 0xffffffffffffffff)
sendmsg$NLBL_MGMT_C_VERSION(r8, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x30, r9, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @empty}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @private=0xa010100}]}, 0x30}}, 0x881)
r10 = syz_genetlink_get_family_id$tipc(&(0x7f00000006c0), r0)
sendmsg$TIPC_CMD_SET_NETID(r0, &(0x7f0000000780)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x24, r10, 0x100, 0x70bd2c, 0x25dfdbfe, {{}, {}, {0x8, 0x2, 0xfffffffb}}, ["", "", "", "", "", "", ""]}, 0x24}}, 0xc014)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000007c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
ioctl$SNDRV_TIMER_IOCTL_START(r5, 0x54a0)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000000800)=0x3, 0x2)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000840), 0x400000, 0x0)
setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000880)={0xe, 0x8208, 0x9, 0x2}, 0x10)
socket$inet6(0xa, 0x3, 0x5)
r12 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000900), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r8, 0x8933, &(0x7f0000000940)={'wpan4\x00', <r13=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r8, &(0x7f0000000a00)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x3c, r12, 0x20, 0x70bd27, 0x25dfdbff, {}, [@IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0x8}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0x5}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0x94}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r13}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4}, 0x4)
ioctl$sock_ifreq(r11, 0x8936, &(0x7f0000000a40)={'vxcan1\x00', @ifru_hwaddr=@multicast})

kernel console output (not intermixed with test programs):

: stop threads
[  372.423107][ T7184] usb 4-1: USB disconnect, device number 23
[  372.478678][   T53] vhci_hcd: release socket
[  372.497824][   T53] vhci_hcd: disconnect device
[  373.558309][  T975] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  373.750157][  T975] usb 1-1: Using ep0 maxpacket: 16
[  373.757271][  T975] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  373.815609][  T975] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  373.870162][  T975] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  373.888044][  T975] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  373.896631][  T975] usb 1-1: Product: syz
[  374.042366][  T975] usb 1-1: Manufacturer: syz
[  374.052977][  T975] usb 1-1: SerialNumber: syz
[  374.101868][  T975] usb 1-1: config 0 descriptor??
[  374.125217][ T8885] dlm: no local IP address has been set
[  374.130842][ T8885] dlm: cannot start dlm midcomms -107
[  374.786888][  T975] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  374.796818][  T975] em28xx 1-1:0.0: Audio interface 0 found (Vendor Class)
[  374.827866][ T7184] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  374.835698][    T8] vhci_hcd: vhci_device speed not set
[  374.919300][ T8888] ipt_REJECT: TCP_RESET invalid for non-tcp
[  375.022288][ T7184] usb 4-1: Using ep0 maxpacket: 32
[  375.094950][ T7184] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[  375.141692][ T7184] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  375.150355][ T7184] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[  375.195975][ T7184] usb 4-1: config 1 has no interface number 0
[  375.202132][ T7184] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  375.284566][ T7184] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  375.298778][ T7184] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  375.309521][ T7184] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  375.423967][  T975] em28xx 1-1:0.0: chip ID is em2860
[  375.454534][ T8900] FAULT_INJECTION: forcing a failure.
[  375.454534][ T8900] name failslab, interval 1, probability 0, space 0, times 0
[  375.791867][ T8900] CPU: 0 UID: 0 PID: 8900 Comm: syz.2.840 Not tainted 6.14.0-rc2-syzkaller-00041-g4dc1d1bec898 #0
[  375.791897][ T8900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  375.791907][ T8900] Call Trace:
[  375.791913][ T8900]  <TASK>
[  375.791920][ T8900]  dump_stack_lvl+0x241/0x360
[  375.791948][ T8900]  ? __pfx_dump_stack_lvl+0x10/0x10
[  375.791985][ T8900]  should_fail_ex+0x40a/0x550
[  375.792008][ T8900]  should_failslab+0xac/0x100
[  375.792029][ T8900]  kmem_cache_alloc_node_noprof+0x77/0x380
[  375.792049][ T8900]  ? __alloc_skb+0x1c3/0x440
[  375.792074][ T8900]  __alloc_skb+0x1c3/0x440
[  375.792100][ T8900]  ? __pfx___alloc_skb+0x10/0x10
[  375.792124][ T8900]  ? netlink_autobind+0xd6/0x2f0
[  375.792139][ T8900]  ? netlink_autobind+0x2b0/0x2f0
[  375.792159][ T8900]  netlink_sendmsg+0x638/0xcb0
[  375.792185][ T8900]  ? __pfx_netlink_sendmsg+0x10/0x10
[  375.792200][ T8900]  ? __import_iovec+0x1a6/0x870
[  375.792227][ T8900]  ? __pfx_netlink_sendmsg+0x10/0x10
[  375.792242][ T8900]  __sock_sendmsg+0x221/0x270
[  375.792263][ T8900]  ____sys_sendmsg+0x52a/0x7e0
[  375.792287][ T8900]  ? __pfx_____sys_sendmsg+0x10/0x10
[  375.792302][ T8900]  ? __fget_files+0x2a/0x410
[  375.792325][ T8900]  ? __fget_files+0x2a/0x410
[  375.792353][ T8900]  __sys_sendmsg+0x269/0x350
[  375.792367][ T8900]  ? finish_task_switch+0x1e5/0x870
[  375.792393][ T8900]  ? __pfx___sys_sendmsg+0x10/0x10
[  375.792408][ T8900]  ? __schedule+0x18c4/0x4c40
[  375.792457][ T8900]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  375.792478][ T8900]  ? do_syscall_64+0x100/0x230
[  375.792509][ T8900]  ? do_syscall_64+0xb6/0x230
[  375.792533][ T8900]  do_syscall_64+0xf3/0x230
[  375.792553][ T8900]  ? clear_bhb_loop+0x35/0x90
[  375.792577][ T8900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.792598][ T8900] RIP: 0033:0x7fa80db8cde9
[  375.792612][ T8900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  375.792626][ T8900] RSP: 002b:00007fa80e95b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  375.792643][ T8900] RAX: ffffffffffffffda RBX: 00007fa80dda6080 RCX: 00007fa80db8cde9
[  375.792655][ T8900] RDX: 0000000000000000 RSI: 0000400000000480 RDI: 0000000000000004
[  375.792665][ T8900] RBP: 00007fa80e95b090 R08: 0000000000000000 R09: 0000000000000000
[  375.792675][ T8900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  375.792685][ T8900] R13: 0000000000000001 R14: 00007fa80dda6080 R15: 00007ffd941213d8
[  375.792710][ T8900]  </TASK>
[  376.055156][ T7184] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[  376.062155][ T7184] snd_usb_pod 4-1:1.1: set_interface failed
[  376.068979][ T7184] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[  376.076386][ T7184] snd_usb_pod 4-1:1.1: probe with driver snd_usb_pod failed with error -71
[  376.087234][ T8870] xt_CT: You must specify a L4 protocol and not use inversions on it
[  376.122938][ T7184] usb 4-1: USB disconnect, device number 24
[  377.316987][  T975] em28xx 1-1:0.0: Config register raw data: 0xfffffffb
[  377.325593][  T975] em28xx 1-1:0.0: AC97 chip type couldn't be determined
[  377.333138][  T975] em28xx 1-1:0.0: No AC97 audio processor
[  378.328370][ T8936] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  379.573621][ T8949] dlm: no local IP address has been set
[  379.579340][ T8949] dlm: cannot start dlm midcomms -107
[  379.944708][ T8950] netlink: 8 bytes leftover after parsing attributes in process `syz.4.849'.
[  380.425609][    T8] usb 1-1: USB disconnect, device number 25
[  380.438657][    T8] em28xx 1-1:0.0: Disconnecting em28xx
[  380.480396][    T8] em28xx 1-1:0.0: Freeing device
[  382.114203][ T8967] dvmrp0: entered allmulticast mode
[  382.798210][ T8970] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  382.804340][ T8970] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  382.915854][ T8970] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  382.921891][ T8970] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  383.208304][ T8970] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  383.215636][ T8970] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  383.512273][ T8970] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  383.518256][ T8970] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  383.630897][ T8987] openvswitch: netlink: ufid size 95 bytes exceeds the range (1, 16)
[  384.271331][ T8990] bridge_slave_0: left allmulticast mode
[  384.277048][ T8990] bridge_slave_0: left promiscuous mode
[  384.329839][ T8990] bridge0: port 1(bridge_slave_0) entered disabled state
[  384.367095][ T8990] bridge_slave_1: left allmulticast mode
[  384.372794][ T8990] bridge_slave_1: left promiscuous mode
[  384.421326][ T8990] bridge0: port 2(bridge_slave_1) entered disabled state
[  384.741438][ T8990] bond0: (slave bond_slave_0): Releasing backup interface
[  384.986155][ T5842] Bluetooth: hci1: command 0x0406 tx timeout
[  385.007325][ T8990] bond_slave_0: left allmulticast mode
[  385.013015][ T8990] bond_slave_0: left promiscuous mode
[  385.053147][ T8990] bond0: (slave bond_slave_1): Releasing backup interface
[  385.072529][ T5842] Bluetooth: hci2: command 0x0406 tx timeout
[  385.115672][ T8990] bond_slave_1: left allmulticast mode
[  385.146839][ T8990] bond_slave_1: left promiscuous mode
[  385.193145][ T8990] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  385.232787][ T8990] batman_adv: batadv0: Removing interface: batadv_slave_0
[  385.275963][ T8990] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  385.283427][ T8990] batman_adv: batadv0: Removing interface: batadv_slave_1
[  385.375975][ T9013] netlink: 'syz.4.861': attribute type 10 has an invalid length.
[  385.414545][ T5842] Bluetooth: hci3: command 0x0406 tx timeout
[  385.670190][ T5842] Bluetooth: hci4: command 0x0405 tx timeout
[  385.799926][ T8990] batman_adv: batadv0: Interface deactivated: wlan0
[  385.946434][ T8990] batman_adv: batadv0: Removing interface: wlan0
[  386.221607][ T9021] netlink: 40 bytes leftover after parsing attributes in process `syz.4.867'.
[  386.563269][ T9033] netlink: 'syz.0.868': attribute type 7 has an invalid length.
[  387.557810][ T5842] Bluetooth: hci1: command 0x0406 tx timeout
[  387.563500][ T9039] netlink: 8 bytes leftover after parsing attributes in process `syz.1.870'.
[  387.564425][ T5842] Bluetooth: hci2: command 0x0406 tx timeout
[  387.626603][ T5842] Bluetooth: hci3: command 0x0406 tx timeout
[  387.885030][ T5842] Bluetooth: hci4: command 0x0405 tx timeout
[  388.147221][ T9043] FAULT_INJECTION: forcing a failure.
[  388.147221][ T9043] name failslab, interval 1, probability 0, space 0, times 0
[  388.346456][ T9043] CPU: 1 UID: 0 PID: 9043 Comm: syz.4.872 Not tainted 6.14.0-rc2-syzkaller-00041-g4dc1d1bec898 #0
[  388.346473][ T9043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  388.346480][ T9043] Call Trace:
[  388.346484][ T9043]  <TASK>
[  388.346489][ T9043]  dump_stack_lvl+0x241/0x360
[  388.346509][ T9043]  ? __pfx_dump_stack_lvl+0x10/0x10
[  388.346523][ T9043]  ? __pfx__printk+0x10/0x10
[  388.346537][ T9043]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  388.346551][ T9043]  ? __pfx___might_resched+0x10/0x10
[  388.346563][ T9043]  should_fail_ex+0x40a/0x550
[  388.346577][ T9043]  should_failslab+0xac/0x100
[  388.346589][ T9043]  kmem_cache_alloc_node_noprof+0x77/0x380
[  388.346601][ T9043]  ? __alloc_skb+0x1c3/0x440
[  388.346632][ T9043]  __alloc_skb+0x1c3/0x440
[  388.346648][ T9043]  ? __pfx___alloc_skb+0x10/0x10
[  388.346662][ T9043]  ? netlink_autobind+0xd6/0x2f0
[  388.346671][ T9043]  ? netlink_autobind+0x2b0/0x2f0
[  388.346683][ T9043]  netlink_sendmsg+0x638/0xcb0
[  388.346698][ T9043]  ? __pfx_netlink_sendmsg+0x10/0x10
[  388.346713][ T9043]  ? __pfx_netlink_sendmsg+0x10/0x10
[  388.346721][ T9043]  __sock_sendmsg+0x221/0x270
[  388.346735][ T9043]  ____sys_sendmsg+0x52a/0x7e0
[  388.346749][ T9043]  ? __pfx_____sys_sendmsg+0x10/0x10
[  388.346757][ T9043]  ? __fget_files+0x2a/0x410
[  388.346770][ T9043]  ? __fget_files+0x2a/0x410
[  388.346786][ T9043]  __sys_sendmsg+0x269/0x350
[  388.346797][ T9043]  ? __pfx___sys_sendmsg+0x10/0x10
[  388.346813][ T9043]  ? do_sys_openat2+0x17a/0x1d0
[  388.346837][ T9043]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  388.346850][ T9043]  ? do_syscall_64+0x100/0x230
[  388.346864][ T9043]  ? do_syscall_64+0xb6/0x230
[  388.346877][ T9043]  do_syscall_64+0xf3/0x230
[  388.346889][ T9043]  ? clear_bhb_loop+0x35/0x90
[  388.346904][ T9043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.346916][ T9043] RIP: 0033:0x7ffb2758cde9
[  388.346925][ T9043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  388.346933][ T9043] RSP: 002b:00007ffb283ea038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  388.346944][ T9043] RAX: ffffffffffffffda RBX: 00007ffb277a5fa0 RCX: 00007ffb2758cde9
[  388.346951][ T9043] RDX: 0000000000000000 RSI: 0000400000000280 RDI: 0000000000000005
[  388.346957][ T9043] RBP: 00007ffb283ea090 R08: 0000000000000000 R09: 0000000000000000
[  388.346962][ T9043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  388.346968][ T9043] R13: 0000000000000000 R14: 00007ffb277a5fa0 R15: 00007fff12591508
[  388.346984][ T9043]  </TASK>
[  388.405500][ T9051] netlink: 8 bytes leftover after parsing attributes in process `syz.3.874'.
[  388.683968][ T9052] netlink: 100 bytes leftover after parsing attributes in process `syz.1.875'.
[  388.722504][    T8] usb 1-1: new low-speed USB device number 26 using dummy_hcd
[  388.900364][    T8] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  389.370719][    T8] usb 1-1: config 179 has no interface number 0
[  389.378566][    T8] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 8
[  389.408567][    T8] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 14385, setting to 8
[  389.494283][  T975] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  389.530473][    T8] usb 1-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  389.709046][    T8] usb 1-1: config 179 interface 65 has no altsetting 0
[  389.721997][  T975] usb 3-1: Using ep0 maxpacket: 32
[  389.762876][  T975] usb 3-1: config index 0 descriptor too short (expected 35577, got 27)
[  389.803994][  T975] usb 3-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  389.861749][    T8] usb 1-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  389.875178][  T975] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 92
[  389.935820][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  389.963199][  T975] usb 3-1: config 1 has no interface number 0
[  390.009843][ T9045] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  390.010109][  T975] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  390.017818][ T9045] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  390.032511][  T975] usb 3-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  390.053506][  T975] usb 3-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  390.062771][  T975] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  390.065689][    T8] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input14
[  390.078081][ T9056] Cannot find set identified by id 65534 to match
[  390.124002][  T975] snd_usb_pod 3-1:1.1: Line 6 Pocket POD found
[  390.192582][ T5185] input input14: unable to receive magic message: -110
[  390.280462][ T5185] input input14: unable to receive magic message: -32
[  390.315272][ T5185] input input14: unable to receive magic message: -32
[  390.373679][    C0] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -1
[  390.389074][ T9063] FAULT_INJECTION: forcing a failure.
[  390.389074][ T9063] name failslab, interval 1, probability 0, space 0, times 0
[  390.411644][ T5185] input input14: unable to receive magic message: -32
[  390.438915][ T9045] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  390.440237][ T9045] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  390.445039][ T5825] usb 1-1: USB disconnect, device number 26
[  390.445054][    C0] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  390.445382][    C0] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  390.461520][ T5825] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  390.476802][  T975] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now attached
[  390.502435][ T9063] CPU: 0 UID: 0 PID: 9063 Comm: syz.1.879 Not tainted 6.14.0-rc2-syzkaller-00041-g4dc1d1bec898 #0
[  390.502458][ T9063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  390.502468][ T9063] Call Trace:
[  390.502475][ T9063]  <TASK>
[  390.502483][ T9063]  dump_stack_lvl+0x241/0x360
[  390.502514][ T9063]  ? __pfx_dump_stack_lvl+0x10/0x10
[  390.502538][ T9063]  ? __pfx__printk+0x10/0x10
[  390.502563][ T9063]  ? fs_reclaim_acquire+0x93/0x130
[  390.502581][ T9063]  ? __pfx___might_resched+0x10/0x10
[  390.502603][ T9063]  should_fail_ex+0x40a/0x550
[  390.502627][ T9063]  should_failslab+0xac/0x100
[  390.502649][ T9063]  __kmalloc_noprof+0xdd/0x4c0
[  390.502669][ T9063]  ? tomoyo_encode+0x26f/0x540
[  390.502689][ T9063]  tomoyo_encode+0x26f/0x540
[  390.502711][ T9063]  tomoyo_realpath_from_path+0x59e/0x5e0
[  390.502737][ T9063]  tomoyo_path_number_perm+0x236/0x860
[  390.502759][ T9063]  ? __lock_acquire+0x1397/0x2100
[  390.502781][ T9063]  ? tomoyo_path_number_perm+0x206/0x860
[  390.502805][ T9063]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  390.502862][ T9063]  ? __fget_files+0x2a/0x410
[  390.502886][ T9063]  ? __fget_files+0x2a/0x410
[  390.502911][ T9063]  security_file_ioctl+0xc6/0x2a0
[  390.502934][ T9063]  __se_sys_ioctl+0x46/0x170
[  390.502953][ T9063]  do_syscall_64+0xf3/0x230
[  390.502974][ T9063]  ? clear_bhb_loop+0x35/0x90
[  390.502998][ T9063]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.503018][ T9063] RIP: 0033:0x7fb511d8cde9
[  390.503039][ T9063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  390.503053][ T9063] RSP: 002b:00007fb512ba8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  390.503071][ T9063] RAX: ffffffffffffffda RBX: 00007fb511fa5fa0 RCX: 00007fb511d8cde9
[  390.503083][ T9063] RDX: 0000400000000100 RSI: 0000000000005412 RDI: 0000000000000004
[  390.503094][ T9063] RBP: 00007fb512ba8090 R08: 0000000000000000 R09: 0000000000000000
[  390.503104][ T9063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  390.503115][ T9063] R13: 0000000000000000 R14: 00007fb511fa5fa0 R15: 00007ffc5291f048
[  390.503141][ T9063]  </TASK>
[  390.503158][ T9063] ERROR: Out of memory at tomoyo_realpath_from_path.
[  391.561291][ T5825] snd_usb_pod 3-1:1.1: line6_send_raw_message_async_part: usb_submit_urb failed (-22)
[  391.977682][ T9077] netlink: 20 bytes leftover after parsing attributes in process `syz.4.883'.
[  392.130551][ T9077] vlan2: entered promiscuous mode
[  392.446649][ T9077] ip6gretap0: entered promiscuous mode
[  392.777098][ T9082] netlink: 8 bytes leftover after parsing attributes in process `syz.1.885'.
[  392.876894][ T9086] Cannot find set identified by id 65534 to match
[  393.017601][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  393.024034][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  393.076560][ T9089] netlink: 96 bytes leftover after parsing attributes in process `syz.1.887'.
[  393.700898][ T5825] usb 3-1: USB disconnect, device number 29
[  393.707774][ T5825] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now disconnected
[  394.783345][ T9107] netlink: 28 bytes leftover after parsing attributes in process `syz.0.890'.
[  394.794669][ T9107] netlink: 28 bytes leftover after parsing attributes in process `syz.0.890'.
[  394.950548][ T9107] FAULT_INJECTION: forcing a failure.
[  394.950548][ T9107] name failslab, interval 1, probability 0, space 0, times 0
[  394.963536][ T9107] CPU: 0 UID: 0 PID: 9107 Comm: syz.0.890 Not tainted 6.14.0-rc2-syzkaller-00041-g4dc1d1bec898 #0
[  394.963559][ T9107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  394.963570][ T9107] Call Trace:
[  394.963576][ T9107]  <TASK>
[  394.963583][ T9107]  dump_stack_lvl+0x241/0x360
[  394.963604][ T9107]  ? __pfx_dump_stack_lvl+0x10/0x10
[  394.963626][ T9107]  should_fail_ex+0x40a/0x550
[  394.963639][ T9107]  should_failslab+0xac/0x100
[  394.963652][ T9107]  kmem_cache_alloc_node_noprof+0x77/0x380
[  394.963665][ T9107]  ? __alloc_skb+0x1c3/0x440
[  394.963680][ T9107]  __alloc_skb+0x1c3/0x440
[  394.963695][ T9107]  ? __pfx___alloc_skb+0x10/0x10
[  394.963708][ T9107]  ? smack_socket_getpeersec_dgram+0x1b0/0x410
[  394.963727][ T9107]  netlink_sendmsg+0x638/0xcb0
[  394.963743][ T9107]  ? __pfx_netlink_sendmsg+0x10/0x10
[  394.963758][ T9107]  ? __pfx_netlink_sendmsg+0x10/0x10
[  394.963766][ T9107]  __sock_sendmsg+0x221/0x270
[  394.963779][ T9107]  ____sys_sendmsg+0x52a/0x7e0
[  394.963793][ T9107]  ? __pfx_____sys_sendmsg+0x10/0x10
[  394.963801][ T9107]  ? __fget_files+0x2a/0x410
[  394.963815][ T9107]  ? __fget_files+0x2a/0x410
[  394.963830][ T9107]  __sys_sendmmsg+0x36a/0x720
[  394.963845][ T9107]  ? __pfx___sys_sendmmsg+0x10/0x10
[  394.963860][ T9107]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  394.963878][ T9107]  ? __schedule+0x1a75/0x4c40
[  394.963899][ T9107]  ? __pfx___schedule+0x10/0x10
[  394.963910][ T9107]  ? irqentry_exit+0x63/0x90
[  394.963921][ T9107]  ? lockdep_hardirqs_on+0x99/0x150
[  394.963941][ T9107]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  394.963965][ T9107]  __x64_sys_sendmmsg+0xa0/0xb0
[  394.963976][ T9107]  do_syscall_64+0xf3/0x230
[  394.963988][ T9107]  ? clear_bhb_loop+0x35/0x90
[  394.964003][ T9107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  394.964015][ T9107] RIP: 0033:0x7f3d20f8cde9
[  394.964024][ T9107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  394.964032][ T9107] RSP: 002b:00007f3d21d50038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  394.964043][ T9107] RAX: ffffffffffffffda RBX: 00007f3d211a6080 RCX: 00007f3d20f8cde9
[  394.964049][ T9107] RDX: 040000000000009f RSI: 00004000000002c0 RDI: 0000000000000005
[  394.964056][ T9107] RBP: 00007f3d21d50090 R08: 0000000000000000 R09: 0000000000000000
[  394.964062][ T9107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  394.964067][ T9107] R13: 0000000000000000 R14: 00007f3d211a6080 R15: 00007ffe6a6d8138
[  394.964081][ T9107]  </TASK>
[  397.777822][ T9124] netlink: 516 bytes leftover after parsing attributes in process `syz.3.897'.
[  397.910865][    T8] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  397.941834][  T975] usb 2-1: new full-speed USB device number 21 using dummy_hcd
[  398.296585][  T975] usb 2-1: config 0 has an invalid interface number: 50 but max is 0
[  398.329159][  T975] usb 2-1: config 0 has no interface number 0
[  398.329294][    T8] usb 5-1: Using ep0 maxpacket: 16
[  398.340326][  T975] usb 2-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  398.344325][ T9127] netlink: 8 bytes leftover after parsing attributes in process `syz.0.898'.
[  398.357187][  T975] usb 2-1: config 0 interface 50 altsetting 0 endpoint 0x82 has invalid maxpacket 1023, setting to 64
[  398.678084][    T8] usb 5-1: config 0 has an invalid interface number: 214 but max is 0
[  398.687786][    T8] usb 5-1: config 0 has no interface number 0
[  398.696500][    T8] usb 5-1: config 0 interface 214 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 22
[  398.725695][    T8] usb 5-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[  398.746121][    T8] usb 5-1: New USB device strings: Mfr=26, Product=2, SerialNumber=3
[  398.789413][    T8] usb 5-1: Product: syz
[  398.793626][    T8] usb 5-1: Manufacturer: syz
[  398.808555][  T975] usb 2-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  398.829433][  T975] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  398.836173][    T8] usb 5-1: SerialNumber: syz
[  398.840039][  T975] usb 2-1: Product: syz
[  398.847225][  T975] usb 2-1: Manufacturer: syz
[  398.860036][  T975] usb 2-1: SerialNumber: syz
[  398.872181][  T975] usb 2-1: config 0 descriptor??
[  398.872216][    T8] usb 5-1: config 0 descriptor??
[  398.891251][ T9123] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  399.043009][  T975] yurex 2-1:0.50: USB YUREX device now attached to Yurex #0
[  399.045981][ T9115] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  399.407607][ T5875] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  399.433498][ T7184] usb 2-1: USB disconnect, device number 21
[  399.440377][ T9123] yurex 2-1:0.50: yurex_write - failed to send bulk msg, error -19
[  399.454838][ T7184] yurex 2-1:0.50: USB YUREX #0 now disconnected
[  399.468220][   T29] kauditd_printk_skb: 14 callbacks suppressed
[  399.468235][   T29] audit: type=1326 audit(1739473171.115:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9128 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  399.495903][    C1] vkms_vblank_simulate: vblank timer overrun
[  399.513373][   T29] audit: type=1326 audit(1739473171.115:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9128 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  399.559177][   T29] audit: type=1326 audit(1739473171.115:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9128 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  399.559694][ T9115] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  399.585618][ T5875] usb 4-1: Using ep0 maxpacket: 16
[  399.594833][   T29] audit: type=1326 audit(1739473171.115:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9128 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  399.632253][ T9115] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  399.633605][ T5875] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  399.689094][ T5875] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  399.702793][   T29] audit: type=1326 audit(1739473171.115:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9128 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  399.731414][   T29] audit: type=1326 audit(1739473171.115:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9128 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  399.754932][   T29] audit: type=1326 audit(1739473171.115:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9128 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  399.755105][ T5875] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  399.786454][   T29] audit: type=1326 audit(1739473171.115:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9128 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  399.808195][ T5875] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  399.818116][ T5875] usb 4-1: Product: syz
[  399.823299][ T5875] usb 4-1: Manufacturer: syz
[  399.828996][   T29] audit: type=1326 audit(1739473171.115:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9128 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  399.851782][ T5875] usb 4-1: SerialNumber: syz
[  399.895659][    T8] usbtouchscreen 5-1:0.214: probe with driver usbtouchscreen failed with error -71
[  399.942090][    T8] usb 5-1: USB disconnect, device number 20
[  400.019974][   T29] audit: type=1326 audit(1739473171.115:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9128 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  400.263275][  T975] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  400.263447][ T5875] usb 4-1: 0:2 : does not exist
[  400.286633][ T9143] Invalid source name
[  400.434777][ T5875] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[  400.462879][ T9143] pimreg: entered allmulticast mode
[  400.487466][  T975] usb 1-1: device descriptor read/64, error -71
[  400.488137][ T9144] pimreg: left allmulticast mode
[  400.765405][  T975] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  400.790946][ T5875] usb 4-1: USB disconnect, device number 25
[  400.982497][ T5990] udevd[5990]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  401.000503][  T975] usb 1-1: device descriptor read/64, error -71
[  401.170104][  T975] usb usb1-port1: attempt power cycle
[  401.588837][  T975] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  402.402835][  T975] usb 1-1: device descriptor read/8, error -71
[  402.622160][ T9166] netlink: 8 bytes leftover after parsing attributes in process `syz.3.911'.
[  403.914026][ T9175] netlink: 8 bytes leftover after parsing attributes in process `syz.4.913'.
[  404.788091][ T9183] dccp_invalid_packet: P.Data Offset(10) too large
[  405.094330][ T9193] netlink: 68 bytes leftover after parsing attributes in process `syz.1.920'.
[  405.406309][ T7184] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  405.709438][ T7184] usb 1-1: config 36 interface 0 altsetting 0 has an endpoint descriptor with address 0x31, changing to 0x1
[  405.749223][ T7184] usb 1-1: config 36 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 13364, setting to 64
[  405.780184][ T7184] usb 1-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=26.29
[  405.789392][ T7184] usb 1-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[  405.805269][ T9199] Option '�'M�O��' to dns_resolver key: bad/missing value
[  405.835138][ T7184] usb 1-1: Manufacturer: syz
[  405.867305][ T7184] usb 1-1: SerialNumber: syz
[  409.244908][ T9229] netlink: 8 bytes leftover after parsing attributes in process `syz.3.930'.
[  409.529396][ T7184] usbhid 1-1:36.0: couldn't find an input interrupt endpoint
[  409.724416][ T7184] usb 1-1: USB disconnect, device number 31
[  410.618672][ T9237] netlink: 'syz.1.932': attribute type 10 has an invalid length.
[  411.053345][   T29] kauditd_printk_skb: 20 callbacks suppressed
[  411.053364][   T29] audit: type=1326 audit(1739473181.947:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9240 comm="syz.0.934" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3d20f8cde9 code=0x0
[  411.110514][ T9244] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  411.339162][ T9250] Option '�'M�O��' to dns_resolver key: bad/missing value
[  411.405826][ T9254] sctp: [Deprecated]: syz.0.938 (pid 9254) Use of struct sctp_assoc_value in delayed_ack socket option.
[  411.405826][ T9254] Use struct sctp_sack_info instead
[  411.489211][ T9254] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method
[  411.528553][ T9253] [U] ^C
[  411.602377][   T29] audit: type=1800 audit(1739473182.461:258): pid=9263 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.0.941" name="file1" dev="tmpfs" ino=979 res=0 errno=0
[  411.700630][ T9252] netlink: 24 bytes leftover after parsing attributes in process `syz.4.939'.
[  411.938514][ T9271] netlink: 8 bytes leftover after parsing attributes in process `syz.0.943'.
[  411.994686][ T7184] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  412.044057][ T5876] usb 5-1: new full-speed USB device number 21 using dummy_hcd
[  412.493943][ T7184] usb 4-1: Using ep0 maxpacket: 16
[  412.503921][ T5876] usb 5-1: device descriptor read/64, error -71
[  412.801504][ T7184] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  412.867165][ T5876] usb 5-1: new full-speed USB device number 22 using dummy_hcd
[  412.907720][ T7184] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  412.937871][ T9276] netlink: 8 bytes leftover after parsing attributes in process `syz.2.944'.
[  412.947660][ T9276] netlink: 4 bytes leftover after parsing attributes in process `syz.2.944'.
[  412.956766][ T9276] nbd: socks must be embedded in a SOCK_ITEM attr
[  413.049030][ T5876] usb 5-1: device descriptor read/64, error -71
[  413.051078][ T7184] usb 4-1: New USB device found, idVendor=0408, idProduct=3001, bcdDevice= 0.00
[  413.069294][ T7184] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  413.083219][ T7184] usb 4-1: config 0 descriptor??
[  413.233506][ T5876] usb usb5-port1: attempt power cycle
[  414.118314][ T5876] usb 5-1: new full-speed USB device number 23 using dummy_hcd
[  414.123078][ T7184] hid-generic 0003:0408:3001.0005: hidraw0: USB HID v0.00 Device [HID 0408:3001] on usb-dummy_hcd.3-1/input0
[  414.227360][ T5876] usb 5-1: device descriptor read/8, error -71
[  414.330726][ T7184] usb 4-1: USB disconnect, device number 26
[  414.540495][ T5876] usb 5-1: new full-speed USB device number 24 using dummy_hcd
[  414.584392][ T5876] usb 5-1: device descriptor read/8, error -71
[  414.721468][ T5876] usb usb5-port1: unable to enumerate USB device
[  414.777930][ T9299] netlink: 112 bytes leftover after parsing attributes in process `syz.1.953'.
[  414.816217][ T9299] netlink: 112 bytes leftover after parsing attributes in process `syz.1.953'.
[  415.073514][ T9305] netlink: 8 bytes leftover after parsing attributes in process `syz.0.954'.
[  415.776586][ T9321] dvmrp0: entered allmulticast mode
[  416.437872][ T5876] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  416.639748][ T5876] usb 3-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  416.740176][ T5876] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  416.869541][ T5876] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  416.973394][ T5876] usb 3-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  416.995719][ T5876] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  416.995812][ T5876] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  417.083845][ T9327] netlink: 8 bytes leftover after parsing attributes in process `syz.4.962'.
[  417.125026][ T5876] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  417.142403][ T5876] usb 3-1: invalid MIDI out EP 0
[  417.431544][   T29] audit: type=1326 audit(1739473187.915:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9308 comm="syz.2.956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  417.444622][ T5876] snd-usb-audio 3-1:27.0: probe with driver snd-usb-audio failed with error -22
[  418.009801][   T29] audit: type=1326 audit(1739473188.401:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9308 comm="syz.2.956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  418.489991][ T5824] udevd[5824]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  418.521337][   T29] audit: type=1326 audit(1739473188.934:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9308 comm="syz.2.956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  418.559609][   T29] audit: type=1326 audit(1739473188.934:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9308 comm="syz.2.956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  418.596620][   T29] audit: type=1326 audit(1739473189.000:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9308 comm="syz.2.956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  418.860146][ T9337] virt_wifi0 speed is unknown, defaulting to 1000
[  418.894945][   T29] audit: type=1326 audit(1739473189.056:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9308 comm="syz.2.956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  418.987882][   T29] audit: type=1326 audit(1739473189.056:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9308 comm="syz.2.956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  419.064175][   T29] audit: type=1326 audit(1739473189.056:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9308 comm="syz.2.956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  419.085818][   T29] audit: type=1326 audit(1739473189.056:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9308 comm="syz.2.956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  419.332649][ T9361] netlink: 'syz.1.969': attribute type 1 has an invalid length.
[  419.925439][ T9361] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[  419.973811][ T9356] netlink: 8 bytes leftover after parsing attributes in process `syz.3.970'.
[  420.008346][   T29] audit: type=1326 audit(1739473190.319:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9308 comm="syz.2.956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  421.203194][    T8] usb 3-1: USB disconnect, device number 30
[  421.348053][ T9378] netlink: 8 bytes leftover after parsing attributes in process `syz.0.975'.
[  421.726247][ T9386] netlink: 8 bytes leftover after parsing attributes in process `syz.4.978'.
[  422.097959][ T9389] kAFS: unable to lookup cell '/S�jˡ8'
[  423.303352][ T9393] netlink: 44 bytes leftover after parsing attributes in process `syz.1.981'.
[  424.890294][ T9406] netlink: 'syz.2.985': attribute type 8 has an invalid length.
[  426.462457][ T9426] netlink: 8 bytes leftover after parsing attributes in process `syz.2.991'.
[  427.174535][ T9432] infiniband syz0: set down
[  427.179353][ T9432] infiniband syz0: added bond0
[  427.452333][ T9432] RDS/IB: syz0: added
[  427.456948][ T9432] smc: adding ib device syz0 with port count 1
[  427.463299][ T9432] smc:    ib device syz0 port 1 has pnetid 
[  428.075092][ T9437] netlink: 24 bytes leftover after parsing attributes in process `syz.4.993'.
[  428.084124][ T9437] netlink: 56 bytes leftover after parsing attributes in process `syz.4.993'.
[  428.093110][ T9437] netlink: 'syz.4.993': attribute type 10 has an invalid length.
[  428.107447][ T9439] netlink: 32 bytes leftover after parsing attributes in process `syz.2.994'.
[  429.202292][ T7184] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  429.355697][   T29] kauditd_printk_skb: 1 callbacks suppressed
[  429.355713][   T29] audit: type=1804 audit(1739473199.065:270): pid=9449 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.2.997" name="/newroot/206/file0" dev="tmpfs" ino=1156 res=1 errno=0
[  429.389940][ T9449] mmap: syz.2.997 (9449) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  429.402495][ T7184] usb 5-1: Using ep0 maxpacket: 8
[  429.439172][ T7184] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  429.472744][ T7184] usb 5-1: New USB device found, idVendor=258a, idProduct=0033, bcdDevice= 0.00
[  429.523976][ T7184] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  429.551495][ T7184] usb 5-1: config 0 descriptor??
[  429.726405][ T5875] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  429.785112][ T9455] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1000'.
[  430.039554][ T7184] glorious 0003:258A:0033.0006: unknown main item tag 0x0
[  430.047388][ T7184] glorious 0003:258A:0033.0006: unknown main item tag 0x0
[  430.061464][ T7184] glorious 0003:258A:0033.0006: unknown main item tag 0x0
[  430.061585][ T5875] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  430.079147][ T7184] glorious 0003:258A:0033.0006: unknown main item tag 0x0
[  430.086349][ T7184] glorious 0003:258A:0033.0006: unknown main item tag 0x0
[  430.094197][ T7184] glorious 0003:258A:0033.0006: unknown main item tag 0x0
[  430.103583][ T7184] glorious 0003:258A:0033.0006: unknown main item tag 0x0
[  430.110831][ T7184] glorious 0003:258A:0033.0006: unknown main item tag 0x0
[  430.118540][ T7184] glorious 0003:258A:0033.0006: unknown main item tag 0x0
[  430.126248][ T7184] glorious 0003:258A:0033.0006: unknown main item tag 0x0
[  430.133910][ T7184] glorious 0003:258A:0033.0006: unknown main item tag 0x0
[  430.141287][ T5875] usb 3-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=83.9c
[  430.151032][ T5875] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  430.162256][ T5875] usb 3-1: Product: syz
[  430.167394][ T7184] glorious 0003:258A:0033.0006: hidraw0: USB HID v0.0b Device [Glorious Model D] on usb-dummy_hcd.4-1/input0
[  430.179229][ T5875] usb 3-1: Manufacturer: syz
[  430.183882][ T5875] usb 3-1: SerialNumber: syz
[  430.197437][ T5875] usb 3-1: config 0 descriptor??
[  430.210986][ T5875] ims_pcu 3-1:0.0: probe with driver ims_pcu failed with error -22
[  430.263445][ T9447] netlink: 'syz.4.996': attribute type 20 has an invalid length.
[  430.346572][ T5878] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  430.490204][ T5876] usb 3-1: USB disconnect, device number 31
[  430.656681][ T5878] usb 1-1: Using ep0 maxpacket: 32
[  430.702698][ T5878] usb 1-1: config index 0 descriptor too short (expected 35577, got 27)
[  430.786029][ T5878] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  430.794540][ T9458] x_tables: ip6_tables: socket match: used from hooks FORWARD, but only valid from PREROUTING/INPUT
[  430.812282][ T5878] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92
[  430.812373][ T5878] usb 1-1: config 1 has no interface number 0
[  430.812644][ T5878] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  430.812733][ T5878] usb 1-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  430.812899][ T5878] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  430.812987][ T5878] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  430.848933][ T5878] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found
[  431.205799][ T9462] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1002'.
[  431.216429][ T9462] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1002'.
[  431.225884][ T9462] nbd: socks must be embedded in a SOCK_ITEM attr
[  431.548950][ T5875] usb 5-1: USB disconnect, device number 25
[  431.791516][ T5878] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now attached
[  431.922831][ T9471] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  433.093999][ T5878] snd_usb_pod 1-1:1.1: line6_send_raw_message_async_part: usb_submit_urb failed (-22)
[  433.126935][ T9481] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1007'.
[  433.727882][ T9471] hsr0: entered promiscuous mode
[  435.303899][ T9497] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1011'.
[  436.354363][ T5875] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  436.490567][ T9506] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1015'.
[  436.565175][ T5875] usb 2-1: Using ep0 maxpacket: 16
[  436.591078][ T5875] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  436.610988][ T5875] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  436.664700][ T5875] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  436.711142][ T5875] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  436.766911][ T5875] usb 2-1: config 0 descriptor??
[  438.657291][ T5875] usbhid 2-1:0.0: can't add hid device: -71
[  438.663305][ T5875] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  438.693218][ T5876] usb 1-1: USB disconnect, device number 32
[  438.744975][ T5876] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected
[  438.902492][ T5875] usb 2-1: USB disconnect, device number 22
[  438.918226][ T9523] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1019'.
[  439.363604][ T9529] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1020'.
[  440.238297][ T9533] input: syz0 as /devices/virtual/input/input16
[  441.616116][ T9536] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1023'.
[  442.823226][  T977] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  443.014596][  T977] usb 3-1: Using ep0 maxpacket: 32
[  443.023439][  T977] usb 3-1: config index 0 descriptor too short (expected 35577, got 27)
[  443.047149][  T977] usb 3-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  443.072432][  T977] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 92
[  443.090608][  T977] usb 3-1: config 1 has no interface number 0
[  443.107734][  T977] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  443.235995][ T9574] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1035'.
[  443.556799][  T977] usb 3-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  443.570151][  T977] usb 3-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  443.579833][  T977] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  443.580545][ T5842] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  443.598741][  T977] snd_usb_pod 3-1:1.1: Line 6 Pocket POD found
[  443.648967][ T9575] overlay: ./file0 is not a directory
[  443.956313][  T977] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now attached
[  443.977671][    T8] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  444.149657][    T8] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  444.164350][    T8] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  444.175320][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  444.208575][    T8] usb 2-1: config 0 descriptor??
[  444.242838][    T8] pwc: Askey VC010 type 2 USB webcam detected.
[  444.362427][  T977] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[  444.557702][  T977] usb 1-1: config 0 has an invalid interface number: 106 but max is 0
[  444.566961][  T977] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  444.577634][  T977] usb 1-1: config 0 has no interface number 0
[  444.583923][  T977] usb 1-1: config 0 interface 106 altsetting 0 endpoint 0x1 has invalid maxpacket 14129, setting to 64
[  444.595760][  T977] usb 1-1: config 0 interface 106 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 6
[  444.609921][  T977] usb 1-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=df.bb
[  444.619784][  T977] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  444.635416][  T977] usb 1-1: config 0 descriptor??
[  444.660720][  T977] usb 1-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  444.688703][    T8] pwc: recv_control_msg error -32 req 02 val 2b00
[  444.700106][    T8] pwc: recv_control_msg error -32 req 02 val 2700
[  444.710838][    T8] pwc: recv_control_msg error -32 req 02 val 2c00
[  444.714200][ T9577] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  444.724789][ T9577] IPv6: NLM_F_CREATE should be set when creating new route
[  444.762716][    T8] pwc: recv_control_msg error -32 req 04 val 1000
[  444.788203][    T8] pwc: recv_control_msg error -32 req 04 val 1300
[  444.798269][    T8] pwc: recv_control_msg error -32 req 04 val 1400
[  444.806844][    T8] pwc: recv_control_msg error -32 req 02 val 2000
[  444.815311][    T8] pwc: recv_control_msg error -32 req 02 val 2100
[  444.824212][    T8] pwc: recv_control_msg error -32 req 04 val 1500
[  444.835902][    T8] pwc: recv_control_msg error -32 req 02 val 2500
[  444.864434][   T12] usb 1-1: Failed to submit usb control message: -71
[  444.864736][  T977] usb 1-1: USB disconnect, device number 33
[  444.871824][   T12] usb 1-1: unable to send the bmi data to the device: -71
[  444.930357][   T12] usb 1-1: unable to get target info from device
[  444.969350][   T12] usb 1-1: could not get target info (-71)
[  444.994802][   T12] usb 1-1: could not probe fw (-71)
[  445.099425][ T5875] snd_usb_pod 3-1:1.1: line6_send_raw_message_async_part: usb_submit_urb failed (-22)
[  445.292991][    T8] pwc: recv_control_msg error -71 req 02 val 2900
[  445.327248][    T8] pwc: recv_control_msg error -71 req 02 val 2800
[  445.351411][    T8] pwc: recv_control_msg error -71 req 04 val 1100
[  445.365284][ T5842] Bluetooth: hci4: unexpected event for opcode 0x042c
[  445.379335][    T8] pwc: recv_control_msg error -71 req 04 val 1200
[  445.405884][    T8] pwc: Registered as video103.
[  445.422802][    T8] input: PWC snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/input/input17
[  445.474033][    T8] usb 2-1: USB disconnect, device number 23
[  445.699489][ T9594] wlan0 speed is unknown, defaulting to 1000
[  445.706354][ T9594] wlan0 speed is unknown, defaulting to 1000
[  445.724758][ T9594] wlan0 speed is unknown, defaulting to 1000
[  446.050261][ T9594] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  446.272310][ T9594] wlan0 speed is unknown, defaulting to 1000
[  446.312558][ T9594] wlan0 speed is unknown, defaulting to 1000
[  446.354079][ T9594] wlan0 speed is unknown, defaulting to 1000
[  446.377588][ T9594] wlan0 speed is unknown, defaulting to 1000
[  446.402737][ T9594] wlan0 speed is unknown, defaulting to 1000
[  446.626352][ T9601] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1042'.
[  447.138615][ T5825] usb 3-1: USB disconnect, device number 32
[  447.158386][ T5825] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now disconnected
[  448.361338][ T9610] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1045'.
[  448.682282][ T9624] pimreg: entered allmulticast mode
[  448.801002][ T9623] dvmrp0: left allmulticast mode
[  448.807258][ T9623] pimreg: left allmulticast mode
[  451.558568][ T9639] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1052'.
[  451.898478][ T5825] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[  452.240790][ T5878] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  452.722051][ T5825] usb 1-1: Using ep0 maxpacket: 32
[  452.747714][ T5825] usb 1-1: config index 0 descriptor too short (expected 35577, got 27)
[  452.761673][ T5825] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  452.782763][ T5825] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92
[  453.202910][ T5825] usb 1-1: config 1 has no interface number 0
[  453.209213][ T5878] usb 3-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  453.220519][ T5825] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  453.393694][ T9660] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1060'.
[  453.403226][ T9660] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1060'.
[  453.677059][ T5878] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  453.706876][ T5825] usb 1-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  453.732945][ T5878] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  453.753954][ T5825] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  453.765379][ T5878] usb 3-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  453.778485][ T5825] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  453.786890][ T5878] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  453.804523][ T5825] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found
[  453.810906][ T5878] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  453.980465][ T5878] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  453.988411][ T5878] usb 3-1: invalid MIDI out EP 0
[  454.330266][ T9668] netlink: 'syz.1.1062': attribute type 10 has an invalid length.
[  454.514707][   T29] audit: type=1326 audit(1739473222.600:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9649 comm="syz.2.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  455.012932][   T29] audit: type=1326 audit(1739473222.600:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9649 comm="syz.2.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  455.079847][ T5878] snd-usb-audio 3-1:27.0: probe with driver snd-usb-audio failed with error -22
[  455.113500][   T29] audit: type=1326 audit(1739473222.656:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9649 comm="syz.2.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  455.162330][ T9669] virt_wifi0 speed is unknown, defaulting to 1000
[  455.210157][ T5825] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now attached
[  455.226099][ T5828] udevd[5828]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:27.0/sound/card4/controlC4/../uevent} for writing: No such file or directory
[  455.243008][   T29] audit: type=1326 audit(1739473222.656:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9649 comm="syz.2.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  456.071660][   T29] audit: type=1326 audit(1739473222.656:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9649 comm="syz.2.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  456.231500][   T29] audit: type=1326 audit(1739473223.105:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9649 comm="syz.2.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  456.303776][ T5825] snd_usb_pod 1-1:1.1: line6_send_raw_message_async_part: usb_submit_urb failed (-22)
[  456.380634][   T29] audit: type=1326 audit(1739473223.198:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9649 comm="syz.2.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  456.436229][   T29] audit: type=1326 audit(1739473223.198:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9649 comm="syz.2.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  456.484846][   T29] audit: type=1400 audit(1739473223.264:279): lsm=SMACK fn=smack_task_movememory action=denied subject="y" object="_" requested=w pid=9671 comm="syz.3.1063" opid=9671 ocomm="syz.3.1063"
[  456.560130][ T5875] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  456.585927][ T9688] Invalid source name
[  456.603591][ T9688] pimreg: entered allmulticast mode
[  456.613425][ T9688] pimreg: left allmulticast mode
[  457.097994][   T29] audit: type=1326 audit(1739473223.282:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9674 comm="syz.1.1064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb511d8cde9 code=0x7ffc0000
[  457.138009][ T5825] usb 3-1: USB disconnect, device number 33
[  457.205462][ T9669] wlan0 speed is unknown, defaulting to 1000
[  457.266063][ T5875] usb 2-1: device descriptor read/64, error -71
[  457.553886][ T5875] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  457.746259][ T5875] usb 2-1: device descriptor read/64, error -71
[  457.890300][ T5875] usb usb2-port1: attempt power cycle
[  458.078170][ T5825] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[  458.516687][ T5825] usb 3-1: Using ep0 maxpacket: 32
[  458.590229][ T5825] usb 3-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  458.620566][ T5825] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  458.701742][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  458.708199][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  458.715232][ T5825] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  458.774699][ T5825] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  458.801179][ T5825] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  458.835925][ T5825] usb 3-1: Product: syz
[  458.979780][ T5825] usb 3-1: Manufacturer: ࠄ
[  458.984565][ T5825] usb 3-1: SerialNumber: syz
[  459.615288][ T9710] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1072'.
[  459.649532][ T5878] usb 1-1: USB disconnect, device number 34
[  459.658036][ T5878] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected
[  459.799431][ T9718] netlink: 'syz.4.1074': attribute type 10 has an invalid length.
[  460.349803][ T5825] usb 3-1: 0:2 : does not exist
[  460.538095][ T5825] usb 3-1: USB disconnect, device number 34
[  461.052542][ T9730] dvmrp0: entered allmulticast mode
[  461.687319][ T9733] netlink: 'syz.4.1079': attribute type 3 has an invalid length.
[  461.722232][ T9733] netlink: 'syz.4.1079': attribute type 3 has an invalid length.
[  462.205780][ T5990] udevd[5990]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  462.334073][ T9744] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1083'.
[  462.623199][ T5875] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  463.098805][ T9759] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1085'.
[  463.369684][ T5875] usb 4-1: Using ep0 maxpacket: 8
[  463.384081][ T5875] usb 4-1: config 63 has too many interfaces: 254, using maximum allowed: 32
[  463.412505][ T5875] usb 4-1: config 63 has 1 interface, different from the descriptor's value: 254
[  463.454137][ T5875] usb 4-1: config 63 has no interface number 0
[  463.476879][ T5875] usb 4-1: config 63 interface 19 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  463.514008][ T5875] usb 4-1: config 63 interface 19 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  463.524948][ T5875] usb 4-1: New USB device found, idVendor=2201, idProduct=012c, bcdDevice=3f.e0
[  463.609577][ T9763] netlink: 'syz.1.1086': attribute type 11 has an invalid length.
[  463.617894][ T9763] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1086'.
[  463.946909][ T5875] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  464.473287][ T5875] usb 4-1: probing VID:PID(2201:012C)   
[  464.490371][ T5875] usb 4-1: vub300 testing BULK OUT EndPoint(0) 02
[  464.498122][ T5875] usb 4-1: Could not find two sets of bulk-in/out endpoint pairs
[  464.536682][ T5875] vub300 4-1:63.19: probe with driver vub300 failed with error -22
[  464.918638][ T5878] usb 4-1: USB disconnect, device number 27
[  465.400359][ T9781] dvmrp0: entered allmulticast mode
[  466.199277][ T9783] FAULT_INJECTION: forcing a failure.
[  466.199277][ T9783] name failslab, interval 1, probability 0, space 0, times 0
[  466.284810][ T9783] CPU: 1 UID: 0 PID: 9783 Comm: syz.0.1093 Not tainted 6.14.0-rc2-syzkaller-00041-g4dc1d1bec898 #0
[  466.284837][ T9783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  466.284847][ T9783] Call Trace:
[  466.284854][ T9783]  <TASK>
[  466.284861][ T9783]  dump_stack_lvl+0x241/0x360
[  466.284893][ T9783]  ? __pfx_dump_stack_lvl+0x10/0x10
[  466.284916][ T9783]  ? __pfx__printk+0x10/0x10
[  466.284933][ T9783]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  466.284946][ T9783]  ? __pfx___might_resched+0x10/0x10
[  466.284961][ T9783]  should_fail_ex+0x40a/0x550
[  466.284975][ T9783]  should_failslab+0xac/0x100
[  466.284988][ T9783]  kmem_cache_alloc_node_noprof+0x77/0x380
[  466.285000][ T9783]  ? __alloc_skb+0x1c3/0x440
[  466.285017][ T9783]  __alloc_skb+0x1c3/0x440
[  466.285032][ T9783]  ? __pfx___alloc_skb+0x10/0x10
[  466.285048][ T9783]  ? netlink_ack_tlv_len+0x6e/0x200
[  466.285064][ T9783]  netlink_ack+0x145/0xa50
[  466.285079][ T9783]  ? __pfx___might_resched+0x10/0x10
[  466.285094][ T9783]  netlink_rcv_skb+0x262/0x430
[  466.285108][ T9783]  ? __pfx_genl_rcv_msg+0x10/0x10
[  466.285121][ T9783]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  466.285149][ T9783]  genl_rcv+0x28/0x40
[  466.285159][ T9783]  netlink_unicast+0x7f6/0x990
[  466.285176][ T9783]  ? __pfx_netlink_unicast+0x10/0x10
[  466.285188][ T9783]  ? __virt_addr_valid+0x45f/0x530
[  466.285201][ T9783]  ? __phys_addr_symbol+0x2f/0x70
[  466.285218][ T9783]  ? __check_object_size+0x47a/0x730
[  466.285232][ T9783]  netlink_sendmsg+0x8e4/0xcb0
[  466.285248][ T9783]  ? __pfx_netlink_sendmsg+0x10/0x10
[  466.285264][ T9783]  ? __pfx_netlink_sendmsg+0x10/0x10
[  466.285272][ T9783]  __sock_sendmsg+0x221/0x270
[  466.285286][ T9783]  ____sys_sendmsg+0x52a/0x7e0
[  466.285300][ T9783]  ? __pfx_____sys_sendmsg+0x10/0x10
[  466.285308][ T9783]  ? __fget_files+0x2a/0x410
[  466.285322][ T9783]  ? __fget_files+0x2a/0x410
[  466.285338][ T9783]  __sys_sendmsg+0x269/0x350
[  466.285349][ T9783]  ? __pfx___sys_sendmsg+0x10/0x10
[  466.285365][ T9783]  ? do_sys_openat2+0x17a/0x1d0
[  466.285391][ T9783]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  466.285404][ T9783]  ? do_syscall_64+0x100/0x230
[  466.285419][ T9783]  ? do_syscall_64+0xb6/0x230
[  466.285432][ T9783]  do_syscall_64+0xf3/0x230
[  466.285444][ T9783]  ? clear_bhb_loop+0x35/0x90
[  466.285459][ T9783]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  466.285471][ T9783] RIP: 0033:0x7f3d20f8cde9
[  466.285481][ T9783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  466.285489][ T9783] RSP: 002b:00007f3d21d71038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  466.285500][ T9783] RAX: ffffffffffffffda RBX: 00007f3d211a5fa0 RCX: 00007f3d20f8cde9
[  466.285507][ T9783] RDX: 0000000004040000 RSI: 0000400000000100 RDI: 0000000000000004
[  466.285513][ T9783] RBP: 00007f3d21d71090 R08: 0000000000000000 R09: 0000000000000000
[  466.285518][ T9783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  466.285524][ T9783] R13: 0000000000000000 R14: 00007f3d211a5fa0 R15: 00007ffe6a6d8138
[  466.285538][ T9783]  </TASK>
[  466.363077][ T9791] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1095'.
[  466.471127][ T9787] mmap: syz.4.1096 (9787): VmData 37597184 exceed data ulimit 8. Update limits or use boot option ignore_rlimit_data.
[  467.105180][ T9792] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1094'.
[  467.912978][  T975] usb 4-1: new low-speed USB device number 28 using dummy_hcd
[  468.041513][ T5875] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  468.137527][  T975] usb 4-1: device descriptor read/64, error -71
[  468.223033][ T5875] usb 3-1: Using ep0 maxpacket: 16
[  468.240922][ T5875] usb 3-1: config 0 has an invalid interface number: 8 but max is 0
[  468.260807][ T5875] usb 3-1: config 0 has no interface number 0
[  468.276148][ T5875] usb 3-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  468.323015][ T5875] usb 3-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  468.345716][ T5875] usb 3-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  468.358805][ T5875] usb 3-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  468.381297][ T5875] usb 3-1: Product: syz
[  468.392651][ T5875] usb 3-1: SerialNumber: syz
[  468.410191][ T5875] usb 3-1: config 0 descriptor??
[  468.436985][  T975] usb 4-1: new low-speed USB device number 29 using dummy_hcd
[  468.437721][ T5875] cm109 3-1:0.8: invalid payload size 0, expected 4
[  468.464639][ T5875] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.8/input/input19
[  468.575794][  T975] usb 4-1: device descriptor read/64, error -71
[  468.668676][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[  468.704959][  T975] usb usb4-port1: attempt power cycle
[  468.821966][ T5875] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  469.072392][ T9820] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1103'.
[  469.095887][  T975] usb 4-1: new low-speed USB device number 30 using dummy_hcd
[  469.112150][ T5875] usb 5-1: Using ep0 maxpacket: 16
[  469.373141][ T5875] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[  469.381293][ T5875] usb 5-1: config 0 has no interface number 0
[  469.389524][ T5875] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  469.411562][  T975] usb 4-1: device descriptor read/8, error -71
[  469.427087][ T5875] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  469.440793][ T5875] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  469.451449][ T5875] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  469.460567][ T5875] usb 5-1: Product: syz
[  469.466114][ T5875] usb 5-1: SerialNumber: syz
[  469.475867][ T5875] usb 5-1: config 0 descriptor??
[  469.480103][ T5878] usb 3-1: USB disconnect, device number 35
[  469.481186][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  469.493653][    C0] cm109 3-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  469.512043][ T5875] cm109 5-1:0.8: invalid payload size 0, expected 4
[  469.521129][ T5878] cm109 3-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  469.522203][ T5875] input: CM109 USB driver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.8/input/input20
[  469.698378][  T975] usb 4-1: new low-speed USB device number 31 using dummy_hcd
[  469.756494][  T975] usb 4-1: device descriptor read/8, error -71
[  469.804356][    C0] cm109 5-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[  469.891078][  T975] usb usb4-port1: unable to enumerate USB device
[  470.380068][ T9825] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1104'.
[  470.733100][    C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  470.742025][    C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  470.749190][    C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  470.756318][    C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  470.764059][    C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  470.771379][    C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  470.778558][    C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  470.785698][    C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  470.792824][    C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  470.800052][    T8] usb 5-1: USB disconnect, device number 26
[  470.805966][    C0] cm109 5-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  470.835332][    T8] cm109 5-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  470.851955][ T9829] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1109'.
[  471.474770][ T9839] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1112'.
[  471.483780][ T9839] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1112'.
[  471.492619][ T9839] nbd: socks must be embedded in a SOCK_ITEM attr
[  471.580438][    T8] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[  471.733823][ T9844] netlink: 'syz.1.1114': attribute type 11 has an invalid length.
[  471.742101][ T9844] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1114'.
[  472.082329][    T8] usb 3-1: Using ep0 maxpacket: 32
[  472.134573][ T9845] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1113'.
[  472.135992][    T8] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  472.215580][    T8] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 2
[  472.250694][    T8] usb 3-1: config 0 interface 0 altsetting 245 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  472.271783][ T9850] FAULT_INJECTION: forcing a failure.
[  472.271783][ T9850] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  472.299652][    T8] usb 3-1: too many endpoints for config 0 interface 0 altsetting 191: 162, using maximum allowed: 30
[  472.328328][ T9850] CPU: 0 UID: 0 PID: 9850 Comm: syz.3.1116 Not tainted 6.14.0-rc2-syzkaller-00041-g4dc1d1bec898 #0
[  472.328352][ T9850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  472.328363][ T9850] Call Trace:
[  472.328369][ T9850]  <TASK>
[  472.328376][ T9850]  dump_stack_lvl+0x241/0x360
[  472.328408][ T9850]  ? __pfx_dump_stack_lvl+0x10/0x10
[  472.328432][ T9850]  ? __pfx__printk+0x10/0x10
[  472.328456][ T9850]  ? __pfx_lock_release+0x10/0x10
[  472.328484][ T9850]  should_fail_ex+0x40a/0x550
[  472.328508][ T9850]  _copy_from_user+0x2d/0xb0
[  472.328527][ T9850]  iommufd_vfio_ioctl+0x1c5/0x1850
[  472.328551][ T9850]  ? tomoyo_path_number_perm+0x679/0x860
[  472.328575][ T9850]  ? tomoyo_path_number_perm+0x679/0x860
[  472.328603][ T9850]  ? __pfx_iommufd_vfio_ioctl+0x10/0x10
[  472.328627][ T9850]  ? tomoyo_path_number_perm+0x6f9/0x860
[  472.328650][ T9850]  ? tomoyo_path_number_perm+0x206/0x860
[  472.328673][ T9850]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  472.328701][ T9850]  ? vfs_write+0x7fa/0xd10
[  472.328731][ T9850]  iommufd_fops_ioctl+0x13b/0x5a0
[  472.328753][ T9850]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  472.328788][ T9850]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  472.328810][ T9850]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  472.328831][ T9850]  __se_sys_ioctl+0xf5/0x170
[  472.328850][ T9850]  do_syscall_64+0xf3/0x230
[  472.328871][ T9850]  ? clear_bhb_loop+0x35/0x90
[  472.328895][ T9850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.328915][ T9850] RIP: 0033:0x7fa52698cde9
[  472.328929][ T9850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  472.328943][ T9850] RSP: 002b:00007fa5277fa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  472.328962][ T9850] RAX: ffffffffffffffda RBX: 00007fa526ba5fa0 RCX: 00007fa52698cde9
[  472.328975][ T9850] RDX: 0000400000000000 RSI: 0000000000003b72 RDI: 0000000000000003
[  472.328985][ T9850] RBP: 00007fa5277fa090 R08: 0000000000000000 R09: 0000000000000000
[  472.328995][ T9850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  472.329006][ T9850] R13: 0000000000000000 R14: 00007fa526ba5fa0 R15: 00007ffd7bc9e2c8
[  472.329032][ T9850]  </TASK>
[  472.334978][    T8] usb 3-1: config 0 interface 0 altsetting 191 has 0 endpoint descriptors, different from the interface descriptor's value: 162
[  472.538874][ T9852] virt_wifi0 speed is unknown, defaulting to 1000
[  472.669288][ T9853] virt_wifi0 speed is unknown, defaulting to 1000
[  472.752308][    T8] usb 3-1: config 0 interface 0 has no altsetting 0
[  472.855854][    T8] usb 3-1: config 0 interface 0 has no altsetting 1
[  472.971522][    T8] usb 3-1: New USB device found, idVendor=0582, idProduct=0016, bcdDevice=8e.57
[  473.136952][    T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  473.153191][    T8] usb 3-1: Product: syz
[  473.155709][ T9858] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1119'.
[  473.183933][    T8] usb 3-1: Manufacturer: syz
[  473.189391][    T8] usb 3-1: SerialNumber: syz
[  473.312125][    T8] usb 3-1: config 0 descriptor??
[  473.433076][    T8] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  473.447397][    T8] usb 3-1: selecting invalid altsetting 0
[  473.662149][ T9837] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  473.681790][ T9837] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  473.719156][ T9837] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1111'.
[  473.779745][ T9852] wlan0 speed is unknown, defaulting to 1000
[  474.086047][ T9853] wlan0 speed is unknown, defaulting to 1000
[  474.192347][ T9872] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1121'.
[  474.891387][ T5875] usb 3-1: USB disconnect, device number 36
[  475.057781][ T9882] 9pnet_fd: Insufficient options for proto=fd
[  476.401751][ T9896] misc userio: Invalid payload size
[  477.169062][ T9899] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1130'.
[  477.811511][ T9909] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1132'.
[  478.124954][ T9915] netlink: 188 bytes leftover after parsing attributes in process `syz.3.1135'.
[  478.134093][ T9915] netlink: 'syz.3.1135': attribute type 1 has an invalid length.
[  478.363943][ T9917] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1136'.
[  478.747806][ T9924] FAULT_INJECTION: forcing a failure.
[  478.747806][ T9924] name failslab, interval 1, probability 0, space 0, times 0
[  478.760983][ T9924] CPU: 0 UID: 0 PID: 9924 Comm: syz.4.1138 Not tainted 6.14.0-rc2-syzkaller-00041-g4dc1d1bec898 #0
[  478.761005][ T9924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  478.761015][ T9924] Call Trace:
[  478.761021][ T9924]  <TASK>
[  478.761028][ T9924]  dump_stack_lvl+0x241/0x360
[  478.761060][ T9924]  ? __pfx_dump_stack_lvl+0x10/0x10
[  478.761084][ T9924]  ? __pfx__printk+0x10/0x10
[  478.761108][ T9924]  ? __kmalloc_node_noprof+0xb9/0x4d0
[  478.761131][ T9924]  ? __pfx___might_resched+0x10/0x10
[  478.761154][ T9924]  should_fail_ex+0x40a/0x550
[  478.761177][ T9924]  should_failslab+0xac/0x100
[  478.761199][ T9924]  __kmalloc_node_noprof+0xe1/0x4d0
[  478.761218][ T9924]  ? irqentry_exit+0x63/0x90
[  478.761237][ T9924]  ? alloc_slab_obj_exts+0x3a/0xa0
[  478.761261][ T9924]  alloc_slab_obj_exts+0x3a/0xa0
[  478.761280][ T9924]  __memcg_slab_post_alloc_hook+0x319/0x7e0
[  478.761310][ T9924]  ? __memcg_slab_post_alloc_hook+0xb/0x7e0
[  478.761338][ T9924]  kmem_cache_alloc_node_noprof+0x288/0x380
[  478.761358][ T9924]  ? __alloc_skb+0x1c3/0x440
[  478.761390][ T9924]  __alloc_skb+0x1c3/0x440
[  478.761417][ T9924]  ? __pfx___alloc_skb+0x10/0x10
[  478.761440][ T9924]  ? kasan_save_track+0x51/0x80
[  478.761455][ T9924]  ? kasan_save_free_info+0x40/0x50
[  478.761475][ T9924]  ? __kasan_slab_free+0x59/0x70
[  478.761491][ T9924]  ? kmem_cache_free+0x195/0x410
[  478.761509][ T9924]  ? unix_dgram_sendmsg+0x72f/0x1df0
[  478.761528][ T9924]  ? __sock_sendmsg+0x221/0x270
[  478.761546][ T9924]  ? ____sys_sendmsg+0x52a/0x7e0
[  478.761565][ T9924]  alloc_skb_with_frags+0xc3/0x820
[  478.761581][ T9924]  ? validate_chain+0x11e/0x5920
[  478.761615][ T9924]  sock_alloc_send_pskb+0x91a/0xa60
[  478.761649][ T9924]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  478.761666][ T9924]  ? mark_lock+0x9a/0x360
[  478.761691][ T9924]  ? smack_socket_getpeersec_dgram+0x306/0x410
[  478.761723][ T9924]  unix_dgram_sendmsg+0x5f1/0x1df0
[  478.761746][ T9924]  ? smack_socket_sendmsg+0x178/0x540
[  478.761771][ T9924]  ? __pfx_smack_socket_sendmsg+0x10/0x10
[  478.761800][ T9924]  ? tomoyo_socket_sendmsg_permission+0x288/0x420
[  478.761826][ T9924]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  478.761850][ T9924]  ? __import_iovec+0x3a8/0x870
[  478.761870][ T9924]  ? unix_seqpacket_sendmsg+0x110/0x1e0
[  478.761893][ T9924]  ? __pfx_unix_seqpacket_sendmsg+0x10/0x10
[  478.761913][ T9924]  __sock_sendmsg+0x221/0x270
[  478.761935][ T9924]  ____sys_sendmsg+0x52a/0x7e0
[  478.761965][ T9924]  ? __pfx_____sys_sendmsg+0x10/0x10
[  478.761987][ T9924]  ? __sys_sendmmsg+0x392/0x720
[  478.762004][ T9924]  ? __might_fault+0xaa/0x120
[  478.762031][ T9924]  __sys_sendmmsg+0x36a/0x720
[  478.762058][ T9924]  ? __pfx___sys_sendmmsg+0x10/0x10
[  478.762087][ T9924]  ? __schedule+0x18c4/0x4c40
[  478.762125][ T9924]  ? __pfx___schedule+0x10/0x10
[  478.762146][ T9924]  ? __pfx_lock_release+0x10/0x10
[  478.762175][ T9924]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  478.762197][ T9924]  ? preempt_schedule+0xe1/0xf0
[  478.762215][ T9924]  ? preempt_schedule_common+0x84/0xd0
[  478.762235][ T9924]  ? preempt_schedule+0xe1/0xf0
[  478.762263][ T9924]  ? preempt_schedule_thunk+0x1a/0x30
[  478.762294][ T9924]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  478.762316][ T9924]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  478.762337][ T9924]  ? do_syscall_64+0x100/0x230
[  478.762362][ T9924]  __x64_sys_sendmmsg+0xa0/0xb0
[  478.762381][ T9924]  do_syscall_64+0xf3/0x230
[  478.762401][ T9924]  ? clear_bhb_loop+0x35/0x90
[  478.762425][ T9924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  478.762445][ T9924] RIP: 0033:0x7ffb2758cde9
[  478.762460][ T9924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  478.762474][ T9924] RSP: 002b:00007ffb283a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  478.762492][ T9924] RAX: ffffffffffffffda RBX: 00007ffb277a6160 RCX: 00007ffb2758cde9
[  478.762504][ T9924] RDX: 0400000000000159 RSI: 0000400000001c00 RDI: 0000000000000004
[  478.762515][ T9924] RBP: 00007ffb283a8090 R08: 0000000000000000 R09: 0000000000000000
[  478.762525][ T9924] R10: 0000000000040840 R11: 0000000000000246 R12: 0000000000000001
[  478.762536][ T9924] R13: 0000000000000000 R14: 00007ffb277a6160 R15: 00007fff12591508
[  478.762562][ T9924]  </TASK>
[  479.174401][    C0] vkms_vblank_simulate: vblank timer overrun
[  479.621223][ T9933] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1140'.
[  479.853023][ T9940] netlink: 'syz.4.1142': attribute type 2 has an invalid length.
[  479.860953][ T9940] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1142'.
[  481.629031][ T9949] netlink: 'syz.0.1143': attribute type 11 has an invalid length.
[  481.637004][ T9949] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1143'.
[  481.805489][ T9959] netlink: 194488 bytes leftover after parsing attributes in process `syz.1.1147'.
[  482.305230][ T9964] Option '�'M�O��' to dns_resolver key: bad/missing value
[  483.267469][ T9969] Invalid source name
[  483.346629][ T9969] pimreg: entered allmulticast mode
[  483.468830][ T9969] dvmrp0: left allmulticast mode
[  483.704035][ T9969] pimreg: left allmulticast mode
[  483.852301][ T9977] IPVS: set_ctl: invalid protocol: 41 172.20.20.28:20001
[  483.869162][ T9977] Non-string source
[  483.876556][ T9971] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1151'.
[  485.156976][ T5875] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  485.291424][T10001] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1158'.
[  485.296269][ T5875] usb 4-1: device descriptor read/64, error -71
[  485.465072][T10006] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1159'.
[  485.925321][ T5875] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  486.065852][ T5875] usb 4-1: device descriptor read/64, error -71
[  486.206420][ T5875] usb usb4-port1: attempt power cycle
[  486.546846][ T5878] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  486.589588][ T5875] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  486.664918][ T5875] usb 4-1: device descriptor read/8, error -71
[  486.739978][ T5878] usb 2-1: Using ep0 maxpacket: 32
[  486.758734][   T29] kauditd_printk_skb: 81 callbacks suppressed
[  486.758750][   T29] audit: type=1326 audit(1739473252.766:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10007 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d20f8cde9 code=0x7ffc0000
[  486.758842][ T5878] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  486.765212][   T29] audit: type=1326 audit(1739473252.776:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10007 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d20f8cde9 code=0x7ffc0000
[  486.792309][ T5878] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  486.820212][   T29] audit: type=1326 audit(1739473252.813:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10007 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7f3d20f8cde9 code=0x7ffc0000
[  486.837137][ T5878] usb 2-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  486.869254][ T5878] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  486.882943][   T29] audit: type=1326 audit(1739473252.813:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10007 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d20f8cde9 code=0x7ffc0000
[  486.893377][ T5878] usb 2-1: config 0 descriptor??
[  486.926590][   T29] audit: type=1326 audit(1739473252.813:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10007 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d20f8cde9 code=0x7ffc0000
[  486.952508][   T29] audit: type=1326 audit(1739473252.860:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10007 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3d20f8cde9 code=0x7ffc0000
[  486.980339][   T29] audit: type=1326 audit(1739473252.860:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10007 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d20f8cde9 code=0x7ffc0000
[  487.002736][   T29] audit: type=1326 audit(1739473252.860:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10007 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d20f8cde9 code=0x7ffc0000
[  487.024677][ T5875] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[  487.033198][   T29] audit: type=1326 audit(1739473252.860:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10007 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3d20f8cde9 code=0x7ffc0000
[  487.055519][ T5875] usb 4-1: device descriptor read/8, error -71
[  487.062042][   T29] audit: type=1326 audit(1739473252.860:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10007 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d20f8cde9 code=0x7ffc0000
[  487.120673][T10014] Option '�'M�O��' to dns_resolver key: bad/missing value
[  487.177777][ T5875] usb usb4-port1: unable to enumerate USB device
[  487.353354][ T5878] ft260 0003:0403:6030.0007: unknown main item tag 0x0
[  487.567245][ T5878] ft260 0003:0403:6030.0007: chip code: 0000 0000
[  487.789121][ T5878] ft260 0003:0403:6030.0007: failed to retrieve system status
[  487.797934][ T5878] ft260 0003:0403:6030.0007: probe with driver ft260 failed with error -32
[  489.396691][    T9] IPVS: starting estimator thread 0...
[  489.443914][ T5875] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  489.518809][T10046] IPVS: using max 28 ests per chain, 67200 per kthread
[  489.615328][ T5875] usb 4-1: Using ep0 maxpacket: 16
[  489.625625][ T5875] usb 4-1: config 0 has an invalid interface number: 8 but max is 0
[  489.634549][T10049] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1171'.
[  489.666186][ T5875] usb 4-1: config 0 has no interface number 0
[  489.682716][ T5875] usb 4-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  489.700781][ T5875] usb 4-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  489.714040][ T5875] usb 4-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  489.724134][ T5875] usb 4-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  489.739263][ T5875] usb 4-1: Product: syz
[  489.749310][ T5875] usb 4-1: SerialNumber: syz
[  489.788114][ T5875] usb 4-1: config 0 descriptor??
[  489.799415][ T5875] cm109 4-1:0.8: invalid payload size 0, expected 4
[  489.813582][ T5875] input: CM109 USB driver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.8/input/input21
[  490.165423][    C0] cm109 4-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[  490.306439][T10055] Option '�'M�O��' to dns_resolver key: bad/missing value
[  490.695674][T10061] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1176'.
[  490.731725][ T5875] usb 2-1: USB disconnect, device number 27
[  491.295455][    C1] cm109_urb_ctl_callback: 2 callbacks suppressed
[  491.295477][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  491.295876][    T8] usb 4-1: USB disconnect, device number 36
[  491.301856][    C1] cm109 4-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  492.340750][    T8] cm109 4-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  492.867494][   T25] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  493.720204][   T25] usb 2-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[  493.729318][   T25] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  493.767568][   T25] usb 2-1: config 0 descriptor??
[  494.031102][T10094] Option '�'M�O��' to dns_resolver key: bad/missing value
[  494.239110][T10076] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  494.255147][T10076] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  494.596901][   T25] usbhid 2-1:0.0: can't add hid device: -71
[  494.603632][   T25] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  494.613909][   T25] usb 2-1: USB disconnect, device number 28
[  496.891490][T10129] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1198'.
[  496.900926][T10131] Option '�'M�O��' to dns_resolver key: bad/missing value
[  496.956062][T10136] FAULT_INJECTION: forcing a failure.
[  496.956062][T10136] name failslab, interval 1, probability 0, space 0, times 0
[  496.969017][T10136] CPU: 0 UID: 0 PID: 10136 Comm: syz.4.1199 Not tainted 6.14.0-rc2-syzkaller-00041-g4dc1d1bec898 #0
[  496.969044][T10136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  496.969053][T10136] Call Trace:
[  496.969059][T10136]  <TASK>
[  496.969066][T10136]  dump_stack_lvl+0x241/0x360
[  496.969097][T10136]  ? __pfx_dump_stack_lvl+0x10/0x10
[  496.969119][T10136]  ? __pfx__printk+0x10/0x10
[  496.969138][T10136]  ? unwind_get_return_address+0x4d/0x90
[  496.969159][T10136]  ? arch_stack_walk+0xfd/0x150
[  496.969188][T10136]  should_fail_ex+0x40a/0x550
[  496.969211][T10136]  should_failslab+0xac/0x100
[  496.969231][T10136]  ? radix_tree_node_alloc+0x8b/0x3c0
[  496.969249][T10136]  kmem_cache_alloc_noprof+0x70/0x380
[  496.969270][T10136]  radix_tree_node_alloc+0x8b/0x3c0
[  496.969290][T10136]  idr_get_free+0x296/0xab0
[  496.969314][T10136]  idr_alloc_u32+0x195/0x330
[  496.969334][T10136]  ? __pfx_idr_alloc_u32+0x10/0x10
[  496.969356][T10136]  ? __pfx_lock_acquire+0x10/0x10
[  496.969374][T10136]  idr_alloc_cyclic+0x106/0x300
[  496.969393][T10136]  ? __pfx_idr_alloc_cyclic+0x10/0x10
[  496.969407][T10136]  ? __radix_tree_preload+0x71c/0x860
[  496.969420][T10136]  ? __radix_tree_preload+0x80/0x860
[  496.969434][T10136]  ? btf_new_fd+0x654/0xd30
[  496.969455][T10136]  btf_new_fd+0x673/0xd30
[  496.969476][T10136]  ? __pfx_btf_new_fd+0x10/0x10
[  496.969495][T10136]  ? bpf_btf_load+0xcf/0x1a0
[  496.969511][T10136]  __sys_bpf+0x6ef/0x810
[  496.969525][T10136]  ? __pfx___sys_bpf+0x10/0x10
[  496.969547][T10136]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  496.969565][T10136]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  496.969580][T10136]  ? do_syscall_64+0x100/0x230
[  496.969600][T10136]  __x64_sys_bpf+0x7c/0x90
[  496.969613][T10136]  do_syscall_64+0xf3/0x230
[  496.969629][T10136]  ? clear_bhb_loop+0x35/0x90
[  496.969647][T10136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  496.969663][T10136] RIP: 0033:0x7ffb2758cde9
[  496.969675][T10136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  496.969685][T10136] RSP: 002b:00007ffb283ea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  496.969699][T10136] RAX: ffffffffffffffda RBX: 00007ffb277a5fa0 RCX: 00007ffb2758cde9
[  496.969709][T10136] RDX: 0000000000000028 RSI: 0000400000001780 RDI: 0000000000000012
[  496.969717][T10136] RBP: 00007ffb283ea090 R08: 0000000000000000 R09: 0000000000000000
[  496.969724][T10136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  496.969731][T10136] R13: 0000000000000001 R14: 00007ffb277a5fa0 R15: 00007fff12591508
[  496.969751][T10136]  </TASK>
[  497.225532][    C0] vkms_vblank_simulate: vblank timer overrun
[  498.834346][T10143] ip6tnl1: entered promiscuous mode
[  498.839659][T10143] ip6tnl1: entered allmulticast mode
[  499.028269][T10145] netlink: 'syz.2.1202': attribute type 11 has an invalid length.
[  499.036198][T10145] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1202'.
[  499.393565][T10159] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1207'.
[  499.851826][T10161] netlink: 2 bytes leftover after parsing attributes in process `syz.2.1209'.
[  500.296371][T10169] Option '�'M�O��' to dns_resolver key: bad/missing value
[  500.449221][ T3499] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  500.599243][ T3499] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  500.784720][ T3499] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  500.808141][ T3499] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  500.938383][ T3499] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  500.949120][ T3499] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  500.980080][T10183] netlink: 'syz.3.1216': attribute type 1 has an invalid length.
[  500.989047][T10183] ieee802154 phy0 wpan0: encryption failed: -22
[  501.034340][ T3499] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  501.058906][ T3499] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  501.108655][ T5829] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  501.119597][ T5829] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  501.127872][ T5829] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  501.137956][ T5829] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  501.147110][ T5829] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  501.158484][ T5829] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  501.205901][T10185] virt_wifi0 speed is unknown, defaulting to 1000
[  501.342780][   T25] usb 3-1: new low-speed USB device number 37 using dummy_hcd
[  501.397444][ T3499] bridge_slave_1: left allmulticast mode
[  501.418713][ T3499] bridge_slave_1: left promiscuous mode
[  501.441266][ T3499] bridge0: port 2(bridge_slave_1) entered disabled state
[  501.483266][ T3499] bridge_slave_0: left allmulticast mode
[  501.488979][ T3499] bridge_slave_0: left promiscuous mode
[  501.505860][ T3499] bridge0: port 1(bridge_slave_0) entered disabled state
[  501.559967][   T25] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  501.577736][   T25] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  501.613414][   T25] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  501.640761][   T25] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  501.663995][    T9] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  501.675082][   T25] usb 3-1: Product: 鞄뾼Ȍ받赒펩䑅Ｄ坽构퀒폲ႊ퉐씜㦘䣱끠⠐㭌꿨咰䲠䒌紸褳誸᢫㸙㑎ꆞ睼艢쐐믏䑫崠攱࿅띹鍗寮硊㡜ᛃ睖욋欵ꆳ裡暶ཷ肈鞠坎쑭࡛芚䟋匥㞠綼ഺꉱ갼э輊ୈ鳓댇䛀啱
[  501.723296][   T25] usb 3-1: Manufacturer: ဉ
[  501.740144][   T25] usb 3-1: SerialNumber: 哒㑕◳䥁퍡۔갮ᇸ눤ద㬍坪⪯殎騞᫭冘쾄棉쌨␈먩ᣁ黸㟵똋涎둟慗᲌♆䒕誼᠛陮滋流徿朻纩ᵪ侇ﹾ뉦㦡됍騬缗뼡ђ泼篘矫篿т┎乭쫧팿䌐㝆牚鯗᧵놽ٕ깱驵ᝬ䯲⯀䤰ꦩ಍什覑쎑賔崳笮蜚븊ැư族죣휩י횉ਔశ迃ꕼ謞啤䤐撫⻙秓ꘟ㙊
[  501.836904][    T9] usb 5-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  501.846414][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  501.877759][    T9] usb 5-1: config 0 descriptor??
[  501.926774][ T5878] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  501.978279][ T3499] dvmrp0 (unregistering): left allmulticast mode
[  502.091047][ T5878] usb 4-1: Using ep0 maxpacket: 32
[  502.102733][ T5878] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[  502.103284][T10193] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  502.114267][ T5878] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  502.128393][T10193] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  502.137734][ T5878] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[  502.147265][ T5878] usb 4-1: config 1 has no interface number 0
[  502.153453][ T5878] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  502.166753][ T5878] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  502.181864][ T5878] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  502.208564][ T5878] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  502.326811][T10212] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1218'.
[  502.333356][ T5878] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[  503.325413][ T5878] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now attached
[  503.343282][ T5842] Bluetooth: hci0: command tx timeout
[  503.368043][   T25] usb 3-1: 0:2 : does not exist
[  503.499996][   T25] usb 3-1: USB disconnect, device number 37
[  503.676815][ T3499] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  503.695416][ T3499] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  503.707031][ T3499] bond0 (unregistering): Released all slaves
[  503.727779][T10185] wlan0 speed is unknown, defaulting to 1000
[  503.762569][  T975] usb 4-1: USB disconnect, device number 37
[  504.013518][ T5990] udevd[5990]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card4/controlC4/../uevent} for writing: No such file or directory
[  504.087153][  T975] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[  504.087548][    T9] [drm] vendor descriptor length:b9 data:00 00 00 00 00 00 00 00 00 00 00
[  504.119020][    T9] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor
[  504.341198][    T9] [drm:udl_init] *ERROR* Selecting channel failed
[  504.372367][    T9] [drm] Initialized udl 0.0.1 for 5-1:0.0 on minor 2
[  504.379197][    T9] [drm] Initialized udl on minor 2
[  504.387508][    T9] udl 5-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  504.443766][    T9] udl 5-1:0.0: [drm] Cannot find any crtc or sizes
[  504.484584][    T8] udl 5-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  504.507259][    T9] usb 5-1: USB disconnect, device number 27
[  504.527227][    T8] udl 5-1:0.0: [drm] Cannot find any crtc or sizes
[  504.918324][T10236] Option '�'M�O��' to dns_resolver key: bad/missing value
[  505.053358][T10241] IPVS: set_ctl: invalid protocol: 47 224.0.0.2:0
[  505.252766][T10185] chnl_net:caif_netlink_parms(): no params data found
[  505.383975][  T975] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  505.565481][ T5842] Bluetooth: hci0: command tx timeout
[  505.586053][ T3499] hsr_slave_0: left promiscuous mode
[  505.597394][  T975] usb 5-1: Using ep0 maxpacket: 16
[  505.609077][  T975] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[  505.617187][  T975] usb 5-1: config 0 has no interface number 0
[  505.641179][  T975] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  505.665862][ T3499] hsr_slave_1: left promiscuous mode
[  505.685254][  T975] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  505.690679][ T3499] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  505.702657][ T3499] batman_adv: batadv0: Removing interface: batadv_slave_0
[  505.730458][  T975] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  505.740376][ T3499] batman_adv: batadv0: Removing interface: batadv_slave_1
[  505.755737][  T975] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  505.785443][  T975] usb 5-1: Product: syz
[  505.797967][  T975] usb 5-1: SerialNumber: syz
[  505.803667][ T3499] veth1_macvtap: left promiscuous mode
[  505.818578][  T975] usb 5-1: config 0 descriptor??
[  505.823219][ T3499] veth0_macvtap: left promiscuous mode
[  505.830452][ T3499] veth1_vlan: left promiscuous mode
[  505.840090][  T975] cm109 5-1:0.8: invalid payload size 0, expected 4
[  505.854065][  T975] input: CM109 USB driver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.8/input/input22
[  505.854225][ T3499] veth0_vlan: left promiscuous mode
[  505.924482][T10229] tipc: Can't bind to reserved service type 2
[  506.062118][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[  506.459705][ T3499] pimreg (unregistering): left allmulticast mode
[  507.319266][T10270] slcan: can't register candev
[  507.326498][T10270] Falling back ldisc for ptm0.
[  507.790241][ T5842] Bluetooth: hci0: command tx timeout
[  507.807849][ T3499] team0 (unregistering): Port device team_slave_1 removed
[  507.858809][ T3499] team0 (unregistering): Port device team_slave_0 removed
[  508.359459][T10229] IPv6: Can't replace route, no match found
[  508.471063][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  508.478449][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  508.485722][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  508.492875][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  508.500038][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  508.507182][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  508.514322][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  508.522664][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  508.536947][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  508.544264][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  508.607714][  T975] usb 5-1: USB disconnect, device number 28
[  508.613739][    C1] cm109 5-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  508.756118][T10185] bridge0: port 1(bridge_slave_0) entered blocking state
[  508.781511][T10185] bridge0: port 1(bridge_slave_0) entered disabled state
[  508.804741][  T975] cm109 5-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  508.881433][T10185] bridge_slave_0: entered allmulticast mode
[  508.928914][T10185] bridge_slave_0: entered promiscuous mode
[  509.200485][T10185] bridge0: port 2(bridge_slave_1) entered blocking state
[  509.262732][T10185] bridge0: port 2(bridge_slave_1) entered disabled state
[  509.306548][T10185] bridge_slave_1: entered allmulticast mode
[  509.322158][ T5878] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  509.352551][T10185] bridge_slave_1: entered promiscuous mode
[  509.433189][T10300] Option '�'M�O��' to dns_resolver key: bad/missing value
[  509.463724][T10185] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  509.507711][ T5878] usb 4-1: Using ep0 maxpacket: 32
[  509.518906][ T5878] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[  509.530861][T10185] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  509.533655][ T5878] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  509.568729][ T5878] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[  509.634318][T10307] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1236'.
[  509.659258][ T3499] IPVS: stop unused estimator thread 0...
[  509.676832][ T5878] usb 4-1: config 1 has no interface number 0
[  509.691324][T10185] team0: Port device team_slave_0 added
[  509.704228][ T5878] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  509.746357][T10185] team0: Port device team_slave_1 added
[  509.755171][ T5878] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  509.804048][ T5878] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  509.832464][ T5878] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  509.892420][ T5878] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[  509.912925][T10185] batman_adv: batadv0: Adding interface: batadv_slave_0
[  509.925015][T10185] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  509.981346][T10185] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  510.006490][T10185] batman_adv: batadv0: Adding interface: batadv_slave_1
[  510.023375][ T5842] Bluetooth: hci0: command tx timeout
[  510.024509][T10185] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  510.496139][ T5878] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now attached
[  511.185405][ T5878] usb 4-1: USB disconnect, device number 38
[  511.194218][ T5878] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[  511.202380][T10185] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  511.355355][T10185] hsr_slave_0: entered promiscuous mode
[  511.368977][T10185] hsr_slave_1: entered promiscuous mode
[  511.377865][T10185] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  511.388263][T10185] Cannot create hsr debugfs directory
[  511.616353][  T975] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  511.732424][T10185] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  511.800296][T10185] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  511.819815][  T975] usb 5-1: Using ep0 maxpacket: 16
[  511.832120][  T975] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[  511.846970][T10185] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  511.851150][  T975] usb 5-1: config 0 has no interface number 0
[  511.869755][T10185] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  511.871847][  T975] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  511.932261][  T975] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  511.969281][  T975] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  511.978557][  T975] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  512.022440][  T975] usb 5-1: Product: syz
[  512.026651][  T975] usb 5-1: SerialNumber: syz
[  512.054210][  T975] usb 5-1: config 0 descriptor??
[  512.100039][  T975] cm109 5-1:0.8: invalid payload size 0, expected 4
[  512.130898][  T975] input: CM109 USB driver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.8/input/input23
[  512.164608][T10185] 8021q: adding VLAN 0 to HW filter on device bond0
[  512.230959][T10185] 8021q: adding VLAN 0 to HW filter on device team0
[  512.332109][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[  512.419794][  T286] bridge0: port 1(bridge_slave_0) entered blocking state
[  512.427001][  T286] bridge0: port 1(bridge_slave_0) entered forwarding state
[  512.757718][  T286] bridge0: port 2(bridge_slave_1) entered blocking state
[  512.764941][  T286] bridge0: port 2(bridge_slave_1) entered forwarding state
[  513.762219][T10352] netlink: 'syz.2.1243': attribute type 15 has an invalid length.
[  513.842930][    C0] cm109_urb_ctl_callback: 348 callbacks suppressed
[  513.842954][    C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  513.851449][  T975] usb 5-1: USB disconnect, device number 29
[  513.856428][    C0] cm109 5-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  513.890320][T10317] delete_channel: no stack
[  513.950591][T10185] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  513.992737][  T975] cm109 5-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  514.054109][T10369] Option '�'M�O��' to dns_resolver key: bad/missing value
[  514.861496][T10386] netlink: 536 bytes leftover after parsing attributes in process `syz.0.1248'.
[  515.583471][T10185] 8021q: adding VLAN 0 to HW filter on device batadv0
[  516.411569][T10400] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1252'.
[  516.555253][   T25] usb 4-1: new full-speed USB device number 39 using dummy_hcd
[  516.782629][   T25] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  516.814252][   T25] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFC, changing to 0x8C
[  516.854659][ T5829] Bluetooth: hci0: command 0x0405 tx timeout
[  516.878366][   T25] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8C has an invalid bInterval 0, changing to 10
[  516.911022][   T25] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8C has invalid maxpacket 212, setting to 64
[  516.923076][   T25] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  516.946153][   T25] usb 4-1: New USB device found, idVendor=045e, idProduct=0284, bcdDevice=a4.8f
[  516.967608][T10185] veth0_vlan: entered promiscuous mode
[  516.972258][   T25] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  516.981130][   T25] usb 4-1: Product: syz
[  516.985843][   T25] usb 4-1: Manufacturer: syz
[  516.990467][   T25] usb 4-1: SerialNumber: syz
[  517.006378][   T25] usb 4-1: config 0 descriptor??
[  517.024069][T10399] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  517.045555][T10185] veth1_vlan: entered promiscuous mode
[  517.102411][T10185] veth0_macvtap: entered promiscuous mode
[  517.116172][T10185] veth1_macvtap: entered promiscuous mode
[  517.183540][T10185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  517.210813][T10185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  517.226380][T10185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  517.258717][   T25] rc_core: IR keymap rc-xbox-dvd not found
[  517.264709][T10185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  517.281523][   T25] Registered IR keymap rc-empty
[  517.302959][   T25] rc rc0: syz syz as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  517.319485][T10185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  517.341900][   T25] input: syz syz as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input24
[  517.361265][T10185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  517.410324][T10185] batman_adv: batadv0: Interface activated: batadv_slave_0
[  517.477505][T10185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  517.503905][   T29] kauditd_printk_skb: 6 callbacks suppressed
[  517.503920][   T29] audit: type=1326 audit(1739473281.520:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10430 comm="syz.2.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  517.515277][T10432] FAULT_INJECTION: forcing a failure.
[  517.515277][T10432] name failslab, interval 1, probability 0, space 0, times 0
[  517.549576][T10185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  517.568474][ T5878] usb 4-1: USB disconnect, device number 39
[  517.574486][    C1] xbox_remote 4-1:0.0: xbox_remote_irq_in: usb_submit_urb()=-19
[  517.581660][T10432] CPU: 0 UID: 0 PID: 10432 Comm: syz.2.1256 Not tainted 6.14.0-rc2-syzkaller-00041-g4dc1d1bec898 #0
[  517.581681][T10432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  517.581691][T10432] Call Trace:
[  517.581697][T10432]  <TASK>
[  517.581704][T10432]  dump_stack_lvl+0x241/0x360
[  517.581735][T10432]  ? __pfx_dump_stack_lvl+0x10/0x10
[  517.581758][T10432]  ? __pfx__printk+0x10/0x10
[  517.581780][T10432]  ? __kmalloc_cache_noprof+0x48/0x390
[  517.581802][T10432]  ? __pfx___might_resched+0x10/0x10
[  517.581817][T10432]  ? audit_log_format+0xdb/0x130
[  517.581835][T10432]  should_fail_ex+0x40a/0x550
[  517.581857][T10432]  should_failslab+0xac/0x100
[  517.581878][T10432]  __kmalloc_cache_noprof+0x70/0x390
[  517.581896][T10432]  ? audit_log_d_path+0xbb/0x310
[  517.581909][T10432]  ? audit_log_n_string+0x397/0x5f0
[  517.581935][T10432]  audit_log_d_path+0xbb/0x310
[  517.581952][T10432]  ? get_mm_exe_file+0x1c/0x170
[  517.581969][T10432]  audit_log_d_path_exe+0x42/0x70
[  517.581988][T10432]  audit_log_task+0x254/0x320
[  517.582012][T10432]  ? __pfx_audit_log_task+0x10/0x10
[  517.582034][T10432]  ? __pfx___cant_migrate+0x10/0x10
[  517.582056][T10432]  audit_seccomp+0x7b/0x1f0
[  517.582094][T10432]  __seccomp_filter+0xb38/0x1fe0
[  517.582124][T10432]  ? vfs_write+0x7fa/0xd10
[  517.582142][T10432]  ? __pfx___seccomp_filter+0x10/0x10
[  517.582163][T10432]  ? do_sys_openat2+0x17a/0x1d0
[  517.582185][T10432]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  517.582205][T10432]  ? __fget_files+0x2a/0x410
[  517.582238][T10432]  ? __fget_files+0x2a/0x410
[  517.582271][T10432]  ? __secure_computing+0x125/0x370
[  517.582296][T10432]  syscall_trace_enter+0xa8/0x150
[  517.582318][T10432]  do_syscall_64+0xcc/0x230
[  517.582339][T10432]  ? clear_bhb_loop+0x35/0x90
[  517.582363][T10432]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  517.582383][T10432] RIP: 0033:0x7fa80db8cde9
[  517.582397][T10432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  517.582418][T10432] RSP: 002b:00007fa80e97c038 EFLAGS: 00000246 ORIG_RAX: 000000000000001a
[  517.582436][T10432] RAX: ffffffffffffffda RBX: 00007fa80dda5fa0 RCX: 00007fa80db8cde9
[  517.582447][T10432] RDX: 0000000000000006 RSI: 0000000000002000 RDI: 0000400000ffd000
[  517.582458][T10432] RBP: 00007fa80e97c090 R08: 0000000000000000 R09: 0000000000000000
[  517.582468][T10432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  517.582478][T10432] R13: 0000000000000000 R14: 00007fa80dda5fa0 R15: 00007ffd941213d8
[  517.582501][T10432]  </TASK>
[  517.720676][T10185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  517.741900][   T29] audit: type=1326 audit(1739473281.520:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10430 comm="syz.2.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa80db8b750 code=0x7ffc0000
[  517.786010][T10185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  517.844467][T10434] Option '�'M�O��' to dns_resolver key: bad/missing value
[  517.848527][   T29] audit: type=1326 audit(1739473281.520:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10430 comm="syz.2.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa80db8b89f code=0x7ffc0000
[  517.955749][   T29] audit: type=1326 audit(1739473281.520:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10430 comm="syz.2.1256" exe="<no_memory>" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  517.998917][T10185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  518.013475][T10185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  518.014983][   T29] audit: type=1326 audit(1739473281.605:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10430 comm="syz.2.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fa80db8b7fc code=0x7ffc0000
[  518.055141][T10185] batman_adv: batadv0: Interface activated: batadv_slave_1
[  518.138753][   T29] audit: type=1326 audit(1739473281.605:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10430 comm="syz.2.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa80db8b89f code=0x7ffc0000
[  518.171176][T10185] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  518.214293][T10185] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  518.241516][   T29] audit: type=1326 audit(1739473281.605:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10430 comm="syz.2.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fa80db8ba4a code=0x7ffc0000
[  518.259171][T10185] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  518.295418][   T29] audit: type=1326 audit(1739473281.605:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10430 comm="syz.2.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  518.333878][T10185] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  518.345290][   T29] audit: type=1326 audit(1739473281.605:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10430 comm="syz.2.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa80db8cde9 code=0x7ffc0000
[  518.447526][ T5825] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[  518.545952][T10452] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1259'.
[  518.659004][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  518.677521][ T5825] usb 3-1: Using ep0 maxpacket: 32
[  518.698202][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  518.719861][ T5825] usb 3-1: config 9 has an invalid interface number: 211 but max is 0
[  518.727547][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  518.737030][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  518.746774][ T5825] usb 3-1: config 9 has no interface number 0
[  518.752894][ T5825] usb 3-1: config 9 interface 211 altsetting 11 bulk endpoint 0x2 has invalid maxpacket 16
[  518.803834][ T5825] usb 3-1: config 9 interface 211 altsetting 11 endpoint 0x3 has invalid maxpacket 1024, setting to 64
[  518.853880][ T5825] usb 3-1: config 9 interface 211 altsetting 11 endpoint 0x1 has invalid maxpacket 1552, setting to 1024
[  518.908680][ T5825] usb 3-1: config 9 interface 211 altsetting 11 bulk endpoint 0x1 has invalid maxpacket 1024
[  518.950042][ T5825] usb 3-1: config 9 interface 211 altsetting 11 has a duplicate endpoint with address 0x9, skipping
[  518.998660][ T5825] usb 3-1: config 9 interface 211 altsetting 11 has a duplicate endpoint with address 0xB, skipping
[  519.002298][T10462] Invalid logical block size (16777216)
[  519.094267][ T5825] usb 3-1: config 9 interface 211 has no altsetting 0
[  519.176418][ T5825] usb 3-1: Dual-Role OTG device on HNP port
[  519.236205][ T5825] usb 3-1: New USB device found, idVendor=0bfd, idProduct=0002, bcdDevice= c.a5
[  519.364622][ T5825] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  519.466625][ T5825] usb 3-1: Product: 㱥Ⲵྃ嬓薋瀓꣢፸冝补蜝⫟隆᥁黛ꉀ̓둿嶍፧碦㔳땨⏒毙寳닌
[  519.566442][ T5825] usb 3-1: Manufacturer: ༕뀋篪೯즔ܣ禽｟䨚輈簪廠Ə泆險␻쏤鸣杞捰娯讕촏䌗钍뒏왆ગ垔팽꩝ྮㄟ觀戴㱬蕨᧎ꠢ泝騺읅能慼럇邦﫤缋蟉ݳ춦迥ਃ俋Ўꚙࣺꨔ匉ⴭ빣䵩ᦅ鹏艊廮죕税ꛉ湹ᢧ훎翪ࡂ૭л똄箎嵬
[  519.818032][ T5825] usb 3-1: SerialNumber: 崦
[  519.826882][T10443] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  520.502673][    T8] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  520.510351][ T5875] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  520.627169][ T5825] kvaser_usb 3-1:9.211: error -ENODEV: Cannot get usb endpoint(s)
[  520.703368][    T8] usb 6-1: Using ep0 maxpacket: 16
[  520.728131][    T8] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  520.740654][T10482] overlayfs: missing 'lowerdir'
[  520.746006][ T5875] usb 5-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  520.767733][    T8] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  520.780241][ T5875] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  520.799486][ T5875] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  520.809959][ T5875] usb 5-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  520.811944][    T8] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  520.842188][ T5875] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  520.862601][    T8] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  520.870800][ T5875] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  520.880539][    T9] usb 3-1: USB disconnect, device number 38
[  520.902794][    T8] usb 6-1: Product: syz
[  520.909663][    T8] usb 6-1: Manufacturer: syz
[  520.915489][    T8] usb 6-1: SerialNumber: syz
[  520.923388][ T5875] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  520.946402][ T5875] usb 5-1: invalid MIDI out EP 0
[  521.026731][ T5875] snd-usb-audio 5-1:27.0: probe with driver snd-usb-audio failed with error -22
[  521.071517][ T5828] udevd[5828]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  521.140265][   T29] audit: type=1326 audit(1739473284.925:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10469 comm="syz.4.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb2758cde9 code=0x7ffc0000
[  521.187744][    T8] usb 6-1: 0:2 : does not exist
[  521.196705][    T8] usb 6-1: 5:0: failed to get current value for ch 0 (-22)
[  521.258270][    T8] usb 6-1: USB disconnect, device number 2
[  521.264305][  T977] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[  521.410213][T10497] wlan0 speed is unknown, defaulting to 1000
[  521.444489][  T977] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  521.456820][  T977] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  521.472326][  T977] usb 4-1: Product: syz
[  521.477074][  T977] usb 4-1: Manufacturer: syz
[  521.481879][  T977] usb 4-1: SerialNumber: syz
[  521.499174][  T977] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  521.508451][ T5990] udevd[5990]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  521.636056][T10508] Option '�'M�O��' to dns_resolver key: bad/missing value
[  521.666069][    T8] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  522.129407][T10522] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1269'.
[  522.287450][ T5875] usb 4-1: USB disconnect, device number 40
[  522.373419][ T5825] usb 5-1: USB disconnect, device number 30
[  522.852151][    T8] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[  522.881386][    T8] ath9k_htc: Failed to initialize the device
[  522.914122][ T5875] usb 4-1: ath9k_htc: USB layer deinitialized
[  523.068967][T10542] IPv6: addrconf: prefix option has invalid lifetime
[  523.157957][    T9] usb 3-1: new high-speed USB device number 39 using dummy_hcd
[  523.369053][    T9] usb 3-1: Using ep0 maxpacket: 32
[  523.415819][    T9] usb 3-1: config index 0 descriptor too short (expected 35577, got 27)
[  523.477889][T10559] Option '�'M�O��' to dns_resolver key: bad/missing value
[  523.488149][    T9] usb 3-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  523.518898][    T9] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 92
[  524.284561][    T9] usb 3-1: config 1 has no interface number 0
[  524.291039][    T9] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  524.325506][    T9] usb 3-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  524.349057][    T9] usb 3-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  524.378310][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  524.405163][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  524.426826][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  524.462369][    T9] snd_usb_pod 3-1:1.1: Line 6 Pocket POD found
[  524.637457][  T975] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  524.803989][T10579] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1281'.
[  524.815512][T10579] FAULT_INJECTION: forcing a failure.
[  524.815512][T10579] name failslab, interval 1, probability 0, space 0, times 0
[  524.828612][T10579] CPU: 1 UID: 0 PID: 10579 Comm: syz.5.1281 Not tainted 6.14.0-rc2-syzkaller-00041-g4dc1d1bec898 #0
[  524.828635][T10579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  524.828645][T10579] Call Trace:
[  524.828651][T10579]  <TASK>
[  524.828658][T10579]  dump_stack_lvl+0x241/0x360
[  524.828687][T10579]  ? __pfx_dump_stack_lvl+0x10/0x10
[  524.828710][T10579]  ? __pfx__printk+0x10/0x10
[  524.828744][T10579]  should_fail_ex+0x40a/0x550
[  524.828767][T10579]  should_failslab+0xac/0x100
[  524.828788][T10579]  __kmalloc_node_noprof+0xe1/0x4d0
[  524.828808][T10579]  ? __kvmalloc_node_noprof+0x72/0x190
[  524.828835][T10579]  __kvmalloc_node_noprof+0x72/0x190
[  524.828858][T10579]  nf_hook_entries_grow+0x288/0x720
[  524.828890][T10579]  __nf_register_net_hook+0x278/0x8d0
[  524.828924][T10579]  nf_register_net_hook+0xb0/0x190
[  524.828955][T10579]  nf_register_net_hooks+0x41/0x1a0
[  524.828980][T10579]  nf_ct_netns_do_get+0x3b0/0x630
[  524.829004][T10579]  ? __pfx_nf_ct_netns_do_get+0x10/0x10
[  524.829025][T10579]  ? nf_tables_newrule+0x1864/0x2980
[  524.829039][T10579]  ? nf_ct_netns_get+0x10/0xb0
[  524.829061][T10579]  ? __sanitizer_cov_trace_switch+0xe/0x120
[  524.829088][T10579]  nf_tables_newrule+0x1857/0x2980
[  524.829116][T10579]  ? __pfx_nf_tables_newrule+0x10/0x10
[  524.829147][T10579]  ? __nla_parse+0x40/0x60
[  524.829171][T10579]  nfnetlink_rcv+0x14e3/0x2ab0
[  524.829223][T10579]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  524.829240][T10579]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  524.829273][T10579]  ? rcu_preempt_deferred_qs_irqrestore+0x8c4/0xca0
[  524.829326][T10579]  ? rcu_read_unlock_special+0x497/0x570
[  524.829345][T10579]  ? netlink_deliver_tap+0x2e/0x1b0
[  524.829359][T10579]  ? skb_clone+0x240/0x390
[  524.829376][T10579]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  524.829411][T10579]  ? __rcu_read_unlock+0xa1/0x110
[  524.829433][T10579]  netlink_unicast+0x7f6/0x990
[  524.829462][T10579]  ? __pfx_netlink_unicast+0x10/0x10
[  524.829481][T10579]  ? __virt_addr_valid+0x45f/0x530
[  524.829503][T10579]  ? __phys_addr_symbol+0x2f/0x70
[  524.829522][T10579]  ? __check_object_size+0x47a/0x730
[  524.829545][T10579]  netlink_sendmsg+0x8e4/0xcb0
[  524.829572][T10579]  ? __pfx_netlink_sendmsg+0x10/0x10
[  524.829604][T10579]  ? __pfx_netlink_sendmsg+0x10/0x10
[  524.829618][T10579]  __sock_sendmsg+0x221/0x270
[  524.829642][T10579]  ____sys_sendmsg+0x52a/0x7e0
[  524.829666][T10579]  ? __pfx_____sys_sendmsg+0x10/0x10
[  524.829680][T10579]  ? __fget_files+0x2a/0x410
[  524.829701][T10579]  ? __fget_files+0x2a/0x410
[  524.829728][T10579]  __sys_sendmsg+0x269/0x350
[  524.829749][T10579]  ? __pfx___sys_sendmsg+0x10/0x10
[  524.829792][T10579]  ? __might_fault+0xaa/0x120
[  524.829815][T10579]  ? __pfx_lock_release+0x10/0x10
[  524.829845][T10579]  ? rcu_is_watching+0x15/0xb0
[  524.829866][T10579]  ? trace_sys_enter+0x25/0x120
[  524.829891][T10579]  do_syscall_64+0xf3/0x230
[  524.829913][T10579]  ? clear_bhb_loop+0x35/0x90
[  524.829943][T10579]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  524.829963][T10579] RIP: 0033:0x7fd60178cde9
[  524.829977][T10579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  524.829991][T10579] RSP: 002b:00007fd602668038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  524.830008][T10579] RAX: ffffffffffffffda RBX: 00007fd6019a6080 RCX: 00007fd60178cde9
[  524.830020][T10579] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000000000000006
[  524.830029][T10579] RBP: 00007fd602668090 R08: 0000000000000000 R09: 0000000000000000
[  524.830039][T10579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  524.830048][T10579] R13: 0000000000000000 R14: 00007fd6019a6080 R15: 00007ffe65be40b8
[  524.830076][T10579]  </TASK>
[  525.622598][  T975] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  525.642367][  T975] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  525.675720][  T975] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  525.685148][  T975] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  525.685303][  T975] usb 5-1: Product: syz
[  525.685441][  T975] usb 5-1: Manufacturer: syz
[  525.685594][  T975] usb 5-1: SerialNumber: syz
[  526.130226][    T9] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now attached
[  526.138208][  T975] usb 5-1: bad CDC descriptors
[  526.422325][  T975] usb 5-1: USB disconnect, device number 31
[  526.827077][T10596] xt_recent: Unsupported userspace flags (000000da)
[  526.890970][    T8] usb 3-1: USB disconnect, device number 39
[  526.907705][    T8] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now disconnected
[  527.072485][T10600] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1286'.
[  639.336800][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  639.336836][    C0] rcu: 	1-...!: (1 ticks this GP) idle=0d14/1/0x4000000000000000 softirq=38661/38661 fqs=0
[  639.337583][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=39393, q=458 ncpus=2)
[  639.337612][    C0] Sending NMI from CPU 0 to CPUs 1:
[  639.337648][    C1] NMI backtrace for cpu 1
[  639.337661][    C1] CPU: 1 UID: 0 PID: 10600 Comm: syz.4.1286 Not tainted 6.14.0-rc2-syzkaller-00041-g4dc1d1bec898 #0
[  639.337679][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  639.337689][    C1] RIP: 0010:kasan_check_range+0x82/0x290
[  639.337716][    C1] Code: 01 00 00 00 00 fc ff df 4f 8d 3c 31 4c 89 fd 4c 29 dd 48 83 fd 10 7f 29 48 85 ed 0f 84 3e 01 00 00 4c 89 cd 48 f7 d5 48 01 dd <41> 80 3b 00 0f 85 c9 01 00 00 49 ff c3 48 ff c5 75 ee e9 1e 01 00
[  639.337728][    C1] RSP: 0018:ffffc90000a18a70 EFLAGS: 00000086
[  639.337744][    C1] RAX: 0000000000000001 RBX: 1ffffffff34d6250 RCX: ffffffff819c1382
[  639.337754][    C1] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffffff9a6b1280
[  639.337764][    C1] RBP: ffffffffffffffff R08: ffffffff9a6b1283 R09: 1ffffffff34d6250
[  639.337776][    C1] R10: dffffc0000000000 R11: fffffbfff34d6250 R12: ffffffff9a6b1280
[  639.337787][    C1] R13: 1ffff92000143160 R14: dffffc0000000001 R15: fffffbfff34d6251
[  639.337798][    C1] FS:  00007ffb283ea6c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  639.337811][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  639.337822][    C1] CR2: 0000000000000000 CR3: 000000007dd4e000 CR4: 00000000003526f0
[  639.337835][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  639.337843][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  639.337853][    C1] Call Trace:
[  639.337859][    C1]  <NMI>
[  639.337867][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  639.337886][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  639.337907][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  639.337923][    C1]  ? nmi_handle+0x2a/0x5a0
[  639.337951][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  639.337968][    C1]  ? nmi_handle+0x14f/0x5a0
[  639.337987][    C1]  ? nmi_handle+0x2a/0x5a0
[  639.338008][    C1]  ? kasan_check_range+0x82/0x290
[  639.338025][    C1]  ? default_do_nmi+0x63/0x160
[  639.338041][    C1]  ? exc_nmi+0x123/0x1f0
[  639.338056][    C1]  ? end_repeat_nmi+0xf/0x53
[  639.338080][    C1]  ? do_raw_spin_lock+0x142/0x370
[  639.338096][    C1]  ? kasan_check_range+0x82/0x290
[  639.338114][    C1]  ? kasan_check_range+0x82/0x290
[  639.338132][    C1]  ? kasan_check_range+0x82/0x290
[  639.338150][    C1]  </NMI>
[  639.338154][    C1]  <IRQ>
[  639.338169][    C1]  do_raw_spin_lock+0x142/0x370
[  639.338187][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  639.338204][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  639.338224][    C1]  _raw_spin_lock_irqsave+0xe1/0x120
[  639.338242][    C1]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[  639.338264][    C1]  debug_object_deactivate+0x158/0x390
[  639.338283][    C1]  ? advance_sched+0xa02/0xca0
[  639.338299][    C1]  ? __pfx_debug_object_deactivate+0x10/0x10
[  639.338323][    C1]  debug_deactivate+0x1b/0x220
[  639.338346][    C1]  __hrtimer_run_queues+0x305/0xd30
[  639.338375][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  639.338396][    C1]  ? sched_clock+0x4a/0x70
[  639.338412][    C1]  ? read_tsc+0x9/0x20
[  639.338427][    C1]  ? ktime_get_update_offsets_now+0x38e/0x3b0
[  639.338449][    C1]  hrtimer_interrupt+0x403/0xa40
[  639.338481][    C1]  __sysvec_apic_timer_interrupt+0x110/0x420
[  639.338503][    C1]  sysvec_apic_timer_interrupt+0xa1/0xc0
[  639.338522][    C1]  </IRQ>
[  639.338527][    C1]  <TASK>
[  639.338532][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  639.338554][    C1] RIP: 0010:console_flush_all+0x996/0xeb0
[  639.338571][    C1] Code: 48 21 c3 0f 85 16 02 00 00 e8 b6 8e 20 00 4c 8b 7c 24 10 4d 85 f6 75 07 e8 a7 8e 20 00 eb 06 e8 a0 8e 20 00 fb 48 8b 5c 24 18 <48> 8b 44 24 30 42 80 3c 28 00 74 08 48 89 df e8 66 a0 84 00 4c 8b
[  639.338584][    C1] RSP: 0018:ffffc9000bcaeca0 EFLAGS: 00000287
[  639.338597][    C1] RAX: ffffffff819ec0a0 RBX: ffffffff8f172b58 RCX: 0000000000080000
[  639.338608][    C1] RDX: ffffc90005459000 RSI: 0000000000003205 RDI: 0000000000003206
[  639.338618][    C1] RBP: ffffc9000bcaee50 R08: ffffffff819ec077 R09: 1ffffffff2858d08
[  639.338630][    C1] R10: dffffc0000000000 R11: fffffbfff2858d09 R12: ffffffff8f172b00
[  639.338641][    C1] R13: dffffc0000000000 R14: 0000000000000200 R15: ffffc9000bcaeea0
[  639.338655][    C1]  ? console_flush_all+0x967/0xeb0
[  639.338670][    C1]  ? console_flush_all+0x990/0xeb0
[  639.338691][    C1]  ? console_flush_all+0x1a3/0xeb0
[  639.338709][    C1]  ? __pfx_console_flush_all+0x10/0x10
[  639.338727][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  639.338750][    C1]  ? is_printk_cpu_sync_owner+0x32/0x40
[  639.338767][    C1]  ? printk_get_console_flush_type+0x1fe/0x4f0
[  639.338792][    C1]  console_unlock+0x14f/0x3b0
[  639.338814][    C1]  ? __pfx_console_unlock+0x10/0x10
[  639.338839][    C1]  ? is_printk_cpu_sync_owner+0x32/0x40
[  639.338857][    C1]  ? printk_get_console_flush_type+0x1fe/0x4f0
[  639.338881][    C1]  vprintk_emit+0x730/0xa10
[  639.338904][    C1]  ? __pfx_vprintk_emit+0x10/0x10
[  639.338926][    C1]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  639.338944][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  639.338962][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  639.338980][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  639.339003][    C1]  _printk+0xd5/0x120
[  639.339025][    C1]  ? __nla_validate_parse+0x2660/0x3090
[  639.339046][    C1]  ? __pfx__printk+0x10/0x10
[  639.339072][    C1]  __nla_validate_parse+0x282e/0x3090
[  639.339092][    C1]  ? netlink_deliver_tap+0x19d/0x1b0
[  639.339106][    C1]  ? netlink_unicast+0x7c4/0x990
[  639.339126][    C1]  ? netlink_sendmsg+0x8e4/0xcb0
[  639.339140][    C1]  ? __sock_sendmsg+0x221/0x270
[  639.339163][    C1]  ? __sys_sendmsg+0x269/0x350
[  639.339183][    C1]  ? __pfx___nla_validate_parse+0x10/0x10
[  639.339206][    C1]  ? __pfx_validate_chain+0x10/0x10
[  639.339227][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  639.339246][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  639.339269][    C1]  ? rcu_is_watching+0x15/0xb0
[  639.339294][    C1]  ? safesetid_security_capable+0xb2/0x1d0
[  639.339317][    C1]  __nla_parse+0x40/0x60
[  639.339337][    C1]  xfrm_user_rcv_msg+0x6fe/0xc20
[  639.339359][    C1]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  639.339392][    C1]  ? __mutex_trylock_common+0x183/0x2e0
[  639.339415][    C1]  ? __pfx___might_resched+0x10/0x10
[  639.339433][    C1]  ? __pfx___mutex_trylock_common+0x10/0x10
[  639.339460][    C1]  netlink_rcv_skb+0x1e3/0x430
[  639.339484][    C1]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  639.339502][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  639.339538][    C1]  xfrm_netlink_rcv+0x79/0x90
[  639.339555][    C1]  netlink_unicast+0x7f6/0x990
[  639.339580][    C1]  ? __pfx_netlink_unicast+0x10/0x10
[  639.339600][    C1]  ? __virt_addr_valid+0x45f/0x530
[  639.339621][    C1]  ? __phys_addr_symbol+0x2f/0x70
[  639.339640][    C1]  ? __check_object_size+0x47a/0x730
[  639.339661][    C1]  netlink_sendmsg+0x8e4/0xcb0
[  639.339682][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  639.339703][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  639.339717][    C1]  __sock_sendmsg+0x221/0x270
[  639.339737][    C1]  ____sys_sendmsg+0x52a/0x7e0
[  639.339756][    C1]  ? __pfx_____sys_sendmsg+0x10/0x10
[  639.339769][    C1]  ? __fget_files+0x2a/0x410
[  639.339790][    C1]  ? __fget_files+0x2a/0x410
[  639.339814][    C1]  __sys_sendmsg+0x269/0x350
[  639.339830][    C1]  ? __pfx___sys_sendmsg+0x10/0x10
[  639.339865][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  639.339885][    C1]  ? do_syscall_64+0x100/0x230
[  639.339906][    C1]  ? do_syscall_64+0xb6/0x230
[  639.339927][    C1]  do_syscall_64+0xf3/0x230
[  639.339947][    C1]  ? clear_bhb_loop+0x35/0x90
[  639.339969][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  639.339990][    C1] RIP: 0033:0x7ffb2758cde9
[  639.340003][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  639.340016][    C1] RSP: 002b:00007ffb283ea038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  639.340030][    C1] RAX: ffffffffffffffda RBX: 00007ffb277a5fa0 RCX: 00007ffb2758cde9
[  639.340042][    C1] RDX: 0000000000000000 RSI: 0000400000000040 RDI: 0000000000000009
[  639.340051][    C1] RBP: 00007ffb2760e2a0 R08: 0000000000000000 R09: 0000000000000000
[  639.340060][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  639.340070][    C1] R13: 0000000000000000 R14: 00007ffb277a5fa0 R15: 00007fff12591508
[  639.340087][    C1]  </TASK>
[  639.340641][    C0] rcu: rcu_preempt kthread timer wakeup didn't happen for 10501 jiffies! g39393 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[  639.340663][    C0] rcu: 	Possible timer handling issue on cpu=1 timer-softirq=30102
[  639.340675][    C0] rcu: rcu_preempt kthread starved for 10502 jiffies! g39393 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1
[  639.340695][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  639.340706][    C0] rcu: RCU grace-period kthread stack dump:
[  639.340715][    C0] task:rcu_preempt     state:I stack:25072 pid:17    tgid:17    ppid:2      task_flags:0x208040 flags:0x00004000
[  639.340767][    C0] Call Trace:
[  639.340775][    C0]  <TASK>
[  639.340787][    C0]  __schedule+0x18bc/0x4c40
[  639.340812][    C0]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  639.340851][    C0]  ? __pfx___schedule+0x10/0x10
[  639.340876][    C0]  ? __pfx_lock_release+0x10/0x10
[  639.340905][    C0]  ? __pfx___mod_timer+0x10/0x10
[  639.340926][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  639.340952][    C0]  ? schedule+0x90/0x320
[  639.340973][    C0]  schedule+0x14b/0x320
[  639.340997][    C0]  schedule_timeout+0x15a/0x290
[  639.341017][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  639.341038][    C0]  ? __pfx_process_timeout+0x10/0x10
[  639.341072][    C0]  ? prepare_to_swait_event+0x330/0x350
[  639.341097][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  639.341122][    C0]  rcu_gp_fqs_loop+0x2df/0x1330
[  639.341145][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  639.341171][    C0]  ? rcu_gp_init+0x1256/0x1630
[  639.341200][    C0]  ? __pfx_rcu_gp_init+0x10/0x10
[  639.341222][    C0]  ? __pfx_rcu_watching_snap_save+0x10/0x10
[  639.341248][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  639.341270][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  639.341299][    C0]  ? finish_swait+0xd4/0x1e0
[  639.341320][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  639.341345][    C0]  rcu_gp_kthread+0xa7/0x3b0
[  639.341371][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  639.341394][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  639.341424][    C0]  ? __kthread_parkme+0x169/0x1d0
[  639.341449][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  639.341474][    C0]  kthread+0x7a9/0x920
[  639.341496][    C0]  ? __pfx_kthread+0x10/0x10
[  639.341521][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  639.341546][    C0]  ? __pfx_kthread+0x10/0x10
[  639.341567][    C0]  ? __pfx_kthread+0x10/0x10
[  639.341593][    C0]  ? __pfx_kthread+0x10/0x10
[  639.341615][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  639.341635][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  639.341657][    C0]  ? __pfx_kthread+0x10/0x10
[  639.341682][    C0]  ret_from_fork+0x4b/0x80
[  639.341702][    C0]  ? __pfx_kthread+0x10/0x10
[  639.341725][    C0]  ret_from_fork_asm+0x1a/0x30
[  639.341760][    C0]  </TASK>
[  790.567174][    C0] watchdog: BUG: soft lockup - CPU#0 stuck for 263s! [kworker/u8:6:993]
[  790.567203][    C0] Modules linked in:
[  790.567214][    C0] irq event stamp: 4911690
[  790.567221][    C0] hardirqs last  enabled at (4911689): [<ffffffff8bee18e3>] irqentry_exit+0x63/0x90
[  790.567254][    C0] hardirqs last disabled at (4911690): [<ffffffff8bedf4ee>] sysvec_apic_timer_interrupt+0xe/0xc0
[  790.567279][    C0] softirqs last  enabled at (4911680): [<ffffffff8181b4e7>] __irq_exit_rcu+0xf7/0x220
[  790.567299][    C0] softirqs last disabled at (4911657): [<ffffffff8181b4e7>] __irq_exit_rcu+0xf7/0x220
[  790.567322][    C0] CPU: 0 UID: 0 PID: 993 Comm: kworker/u8:6 Not tainted 6.14.0-rc2-syzkaller-00041-g4dc1d1bec898 #0
[  790.567341][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  790.567354][    C0] Workqueue: writeback wb_workfn (flush-8:0)
[  790.567380][    C0] RIP: 0010:smp_call_function_many_cond+0x1ba4/0x2d30
[  790.567407][    C0] Code: 03 84 c0 75 7e 45 8b 65 00 44 89 e6 83 e6 01 31 ff e8 b0 e8 0b 00 41 83 e4 01 4c 8b 64 24 68 75 07 e8 60 e4 0b 00 eb 41 f3 90 <48> b8 00 00 00 00 00 fc ff df 0f b6 04 03 84 c0 75 11 41 f7 45 00
[  790.567421][    C0] RSP: 0018:ffffc90003ae5f20 EFLAGS: 00000293
[  790.567435][    C0] RAX: ffffffff81b36b05 RBX: 1ffff110170e88c9 RCX: ffff8880267b0000
[  790.567448][    C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  790.567459][    C0] RBP: ffffc90003ae6120 R08: ffffffff81b36ad0 R09: 1ffffffff20346ce
[  790.567471][    C0] R10: dffffc0000000000 R11: ffffffff816921d0 R12: ffff8880b863f9c8
[  790.567484][    C0] R13: ffff8880b8744648 R14: ffff8880b863f9c0 R15: 0000000000000001
[  790.567496][    C0] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  790.567510][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  790.567522][    C0] CR2: 000000110c2e9c2a CR3: 0000000079c10000 CR4: 00000000003526f0
[  790.567536][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  790.567546][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  790.567557][    C0] Call Trace:
[  790.567565][    C0]  <IRQ>
[  790.567574][    C0]  ? watchdog_timer_fn+0x75b/0x960
[  790.567600][    C0]  ? __pfx_watchdog_timer_fn+0x10/0x10
[  790.567624][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  790.567645][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  790.567674][    C0]  ? __pfx_watchdog_timer_fn+0x10/0x10
[  790.567697][    C0]  ? __hrtimer_run_queues+0x551/0xd30
[  790.567739][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  790.567762][    C0]  ? sched_clock+0x4a/0x70
[  790.567781][    C0]  ? read_tsc+0x9/0x20
[  790.567797][    C0]  ? ktime_get_update_offsets_now+0x38e/0x3b0
[  790.567824][    C0]  ? hrtimer_interrupt+0x403/0xa40
[  790.567877][    C0]  ? __sysvec_apic_timer_interrupt+0x110/0x420
[  790.567905][    C0]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[  790.567925][    C0]  </IRQ>
[  790.567931][    C0]  <TASK>
[  790.567938][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  790.567966][    C0]  ? __pfx_native_send_call_func_single_ipi+0x10/0x10
[  790.567992][    C0]  ? smp_call_function_many_cond+0x1b90/0x2d30
[  790.568016][    C0]  ? smp_call_function_many_cond+0x1bc5/0x2d30
[  790.568044][    C0]  ? smp_call_function_many_cond+0x1ba4/0x2d30
[  790.568070][    C0]  ? mark_lock+0x9a/0x360
[  790.568097][    C0]  ? __lock_acquire+0x1397/0x2100
[  790.568117][    C0]  ? __pfx_should_flush_tlb+0x10/0x10
[  790.568162][    C0]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  790.568195][    C0]  ? rcu_is_watching+0x15/0xb0
[  790.568219][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[  790.568241][    C0]  ? __pfx_should_flush_tlb+0x10/0x10
[  790.568266][    C0]  on_each_cpu_cond_mask+0x3f/0x80
[  790.568293][    C0]  flush_tlb_mm_range+0x42d/0x710
[  790.568324][    C0]  ? __pfx_flush_tlb_mm_range+0x10/0x10
[  790.568348][    C0]  ? page_ext_get+0x1d6/0x2a0
[  790.568374][    C0]  ptep_clear_flush+0x11a/0x170
[  790.568401][    C0]  page_vma_mkclean_one+0x58a/0x9a0
[  790.568431][    C0]  ? __pfx_page_vma_mkclean_one+0x10/0x10
[  790.568452][    C0]  ? __lock_acquire+0x1397/0x2100
[  790.568492][    C0]  page_mkclean_one+0x272/0x350
[  790.568513][    C0]  ? __pfx_page_mkclean_one+0x10/0x10
[  790.568537][    C0]  ? __pfx_down_read_trylock+0x10/0x10
[  790.568562][    C0]  ? __lock_acquire+0x1397/0x2100
[  790.568585][    C0]  ? vma_interval_tree_iter_first+0x234/0x260
[  790.568607][    C0]  ? __pfx_page_mkclean_one+0x10/0x10
[  790.568627][    C0]  rmap_walk_file+0x502/0x780
[  790.568658][    C0]  folio_mkclean+0x252/0x370
[  790.568678][    C0]  ? __pfx_folio_mkclean+0x10/0x10
[  790.568697][    C0]  ? __pfx_page_mkclean_one+0x10/0x10
[  790.568714][    C0]  ? __pfx_invalid_mkclean_vma+0x10/0x10
[  790.568732][    C0]  ? filemap_get_folios_tag+0x1bd/0x770
[  790.568754][    C0]  ? folio_mapping+0x17f/0x250
[  790.568773][    C0]  folio_clear_dirty_for_io+0x219/0x950
[  790.568804][    C0]  ? __pfx_folio_clear_dirty_for_io+0x10/0x10
[  790.568839][    C0]  ? filemap_get_folios_tag+0x1bd/0x770
[  790.568863][    C0]  mpage_submit_folio+0x84/0x340
[  790.568893][    C0]  mpage_process_page_bufs+0x6d1/0x9d0
[  790.568922][    C0]  ? folio_wait_writeback+0xd1/0x100
[  790.568949][    C0]  mpage_prepare_extent_to_map+0xecb/0x1860
[  790.568974][    C0]  ? kasan_save_track+0x3f/0x80
[  790.568989][    C0]  ? __kasan_slab_alloc+0x66/0x80
[  790.569006][    C0]  ? kmem_cache_alloc_noprof+0x1d9/0x380
[  790.569049][    C0]  ? __pfx_mpage_prepare_extent_to_map+0x10/0x10
[  790.569099][    C0]  ? rcu_is_watching+0x15/0xb0
[  790.569124][    C0]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  790.569154][    C0]  ext4_do_writepages+0xc2a/0x3df0
[  790.569199][    C0]  ? validate_chain+0x11e/0x5920
[  790.569240][    C0]  ? __pfx_ext4_do_writepages+0x10/0x10
[  790.569262][    C0]  ? validate_chain+0x11e/0x5920
[  790.569313][    C0]  ? rcu_read_lock_any_held+0xb7/0x160
[  790.569345][    C0]  ext4_writepages+0x213/0x3c0
[  790.569373][    C0]  ? __pfx_ext4_writepages+0x10/0x10
[  790.569410][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  790.569431][    C0]  ? __pfx_ext4_writepages+0x10/0x10
[  790.569458][    C0]  do_writepages+0x35f/0x880
[  790.569490][    C0]  ? __pfx_do_writepages+0x10/0x10
[  790.569525][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  790.569546][    C0]  ? writeback_sb_inodes+0x595/0x1360
[  790.569563][    C0]  ? __pfx_lock_release+0x10/0x10
[  790.569582][    C0]  ? do_raw_spin_lock+0x14f/0x370
[  790.569599][    C0]  ? unwind_next_frame+0x193b/0x22d0
[  790.569629][    C0]  __writeback_single_inode+0x14f/0x10d0
[  790.569646][    C0]  ? wbc_attach_and_unlock_inode+0x561/0x580
[  790.569673][    C0]  writeback_sb_inodes+0x820/0x1360
[  790.569688][    C0]  ? mark_lock+0x9a/0x360
[  790.569738][    C0]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  790.569790][    C0]  ? __pfx_move_expired_inodes+0x10/0x10
[  790.569808][    C0]  ? do_raw_spin_lock+0x14f/0x370
[  790.569837][    C0]  __writeback_inodes_wb+0x11b/0x260
[  790.569862][    C0]  wb_writeback+0x427/0xb80
[  790.569885][    C0]  ? queue_io+0x2f1/0x5a0
[  790.569902][    C0]  ? __pfx_wb_writeback+0x10/0x10
[  790.569943][    C0]  wb_workfn+0xb94/0x1080
[  790.569985][    C0]  ? __pfx_wb_workfn+0x10/0x10
[  790.570020][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  790.570044][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  790.570076][    C0]  ? process_scheduled_works+0x976/0x1840
[  790.570095][    C0]  process_scheduled_works+0xa66/0x1840
[  790.570139][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  790.570166][    C0]  ? assign_work+0x364/0x3d0
[  790.570189][    C0]  worker_thread+0x870/0xd30
[  790.570221][    C0]  ? __kthread_parkme+0x169/0x1d0
[  790.570244][    C0]  ? __pfx_worker_thread+0x10/0x10
[  790.570263][    C0]  kthread+0x7a9/0x920
[  790.570283][    C0]  ? __pfx_kthread+0x10/0x10
[  790.570307][    C0]  ? __pfx_worker_thread+0x10/0x10
[  790.570326][    C0]  ? __pfx_kthread+0x10/0x10
[  790.570345][    C0]  ? __pfx_kthread+0x10/0x10
[  790.570370][    C0]  ? __pfx_kthread+0x10/0x10
[  790.570389][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  790.570408][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  790.570429][    C0]  ? __pfx_kthread+0x10/0x10
[  790.570451][    C0]  ret_from_fork+0x4b/0x80
[  790.570470][    C0]  ? __pfx_kthread+0x10/0x10
[  790.570491][    C0]  ret_from_fork_asm+0x1a/0x30
[  790.570525][    C0]  </TASK>
[  790.570532][    C0] Sending NMI from CPU 0 to CPUs 1:
[  790.570561][    C1] NMI backtrace for cpu 1
[  790.570570][    C1] CPU: 1 UID: 0 PID: 10600 Comm: syz.4.1286 Not tainted 6.14.0-rc2-syzkaller-00041-g4dc1d1bec898 #0
[  790.570590][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  790.570599][    C1] RIP: 0010:debug_deactivate+0x7a/0x220
[  790.570622][    C1] Code: 36 1a 90 be 08 00 00 00 e8 b3 7f 76 00 31 db 48 0f a3 2d 89 52 6d 0e 40 0f 92 c5 0f 92 c3 bf 02 00 00 00 89 de e8 46 6e 12 00 <31> ff 89 de e8 3d 6e 12 00 40 84 ed 74 10 e8 43 27 f8 ff 84 c0 74
[  790.570635][    C1] RSP: 0018:ffffc90000a18d20 EFLAGS: 00000006
[  790.570647][    C1] RAX: 0000000000010000 RBX: 0000000000000001 RCX: ffffffff81ace3dd
[  790.570658][    C1] RDX: ffff888025c4bc00 RSI: 0000000000000001 RDI: 0000000000000002
[  790.570668][    C1] RBP: 0000000000000001 R08: ffffffff81ace3fa R09: 1ffffffff20346ce
[  790.570678][    C1] R10: dffffc0000000000 R11: fffffbfff20346cf R12: 1ffff110170e58eb
[  790.570689][    C1] R13: dffffc0000000000 R14: ffff8880212ca340 R15: ffff8880b872c700
[  790.570701][    C1] FS:  00007ffb283ea6c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  790.570713][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  790.570723][    C1] CR2: 0000000000000000 CR3: 000000007dd4e000 CR4: 00000000003526f0
[  790.570736][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  790.570745][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  790.570755][    C1] Call Trace:
[  790.570760][    C1]  <NMI>
[  790.570767][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  790.570787][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  790.570807][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  790.570823][    C1]  ? nmi_handle+0x2a/0x5a0
[  790.570849][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  790.570866][    C1]  ? nmi_handle+0x14f/0x5a0
[  790.570885][    C1]  ? nmi_handle+0x2a/0x5a0
[  790.570906][    C1]  ? debug_deactivate+0x7a/0x220
[  790.570927][    C1]  ? kasan_check_range+0x82/0x290
[  790.570944][    C1]  ? default_do_nmi+0x63/0x160
[  790.570960][    C1]  ? exc_nmi+0x123/0x1f0
[  790.570974][    C1]  ? end_repeat_nmi+0xf/0x53
[  790.570997][    C1]  ? debug_deactivate+0x7a/0x220
[  790.571018][    C1]  ? debug_deactivate+0x5d/0x220
[  790.571041][    C1]  ? debug_deactivate+0x7a/0x220
[  790.571063][    C1]  ? debug_deactivate+0x7a/0x220
[  790.571086][    C1]  ? debug_deactivate+0x7a/0x220
[  790.571108][    C1]  </NMI>
[  790.571113][    C1]  <IRQ>
[  790.571119][    C1]  __hrtimer_run_queues+0x305/0xd30
[  790.571149][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  790.571169][    C1]  ? sched_clock+0x4a/0x70
[  790.571184][    C1]  ? read_tsc+0x9/0x20
[  790.571198][    C1]  ? ktime_get_update_offsets_now+0x38e/0x3b0
[  790.571220][    C1]  hrtimer_interrupt+0x403/0xa40
[  790.571252][    C1]  __sysvec_apic_timer_interrupt+0x110/0x420
[  790.571274][    C1]  sysvec_apic_timer_interrupt+0xa1/0xc0
[  790.571293][    C1]  </IRQ>
[  790.571299][    C1]  <TASK>
[  790.571304][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  790.571325][    C1] RIP: 0010:console_flush_all+0x996/0xeb0
[  790.571341][    C1] Code: 48 21 c3 0f 85 16 02 00 00 e8 b6 8e 20 00 4c 8b 7c 24 10 4d 85 f6 75 07 e8 a7 8e 20 00 eb 06 e8 a0 8e 20 00 fb 48 8b 5c 24 18 <48> 8b 44 24 30 42 80 3c 28 00 74 08 48 89 df e8 66 a0 84 00 4c 8b
[  790.571353][    C1] RSP: 0018:ffffc9000bcaeca0 EFLAGS: 00000287
[  790.571366][    C1] RAX: ffffffff819ec0a0 RBX: ffffffff8f172b58 RCX: 0000000000080000
[  790.571377][    C1] RDX: ffffc90005459000 RSI: 0000000000003205 RDI: 0000000000003206
[  790.571388][    C1] RBP: ffffc9000bcaee50 R08: ffffffff819ec077 R09: 1ffffffff2858d08
[  790.571399][    C1] R10: dffffc0000000000 R11: fffffbfff2858d09 R12: ffffffff8f172b00
[  790.571411][    C1] R13: dffffc0000000000 R14: 0000000000000200 R15: ffffc9000bcaeea0
[  790.571424][    C1]  ? console_flush_all+0x967/0xeb0
[  790.571439][    C1]  ? console_flush_all+0x990/0xeb0
[  790.571460][    C1]  ? console_flush_all+0x1a3/0xeb0
[  790.571479][    C1]  ? __pfx_console_flush_all+0x10/0x10
[  790.571496][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  790.571519][    C1]  ? is_printk_cpu_sync_owner+0x32/0x40
[  790.571536][    C1]  ? printk_get_console_flush_type+0x1fe/0x4f0
[  790.571562][    C1]  console_unlock+0x14f/0x3b0
[  790.571591][    C1]  ? __pfx_console_unlock+0x10/0x10
[  790.571616][    C1]  ? is_printk_cpu_sync_owner+0x32/0x40
[  790.571634][    C1]  ? printk_get_console_flush_type+0x1fe/0x4f0
[  790.571658][    C1]  vprintk_emit+0x730/0xa10
[  790.571681][    C1]  ? __pfx_vprintk_emit+0x10/0x10
[  790.571703][    C1]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  790.571721][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  790.571740][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  790.571758][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  790.571781][    C1]  _printk+0xd5/0x120
[  790.571804][    C1]  ? __nla_validate_parse+0x2660/0x3090
[  790.571826][    C1]  ? __pfx__printk+0x10/0x10
[  790.571853][    C1]  __nla_validate_parse+0x282e/0x3090
[  790.571872][    C1]  ? netlink_deliver_tap+0x19d/0x1b0
[  790.571887][    C1]  ? netlink_unicast+0x7c4/0x990
[  790.571907][    C1]  ? netlink_sendmsg+0x8e4/0xcb0
[  790.571920][    C1]  ? __sock_sendmsg+0x221/0x270
[  790.571938][    C1]  ? __sys_sendmsg+0x269/0x350
[  790.571959][    C1]  ? __pfx___nla_validate_parse+0x10/0x10
[  790.571980][    C1]  ? __pfx_validate_chain+0x10/0x10
[  790.572001][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  790.572021][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  790.572044][    C1]  ? rcu_is_watching+0x15/0xb0
[  790.572067][    C1]  ? safesetid_security_capable+0xb2/0x1d0
[  790.572091][    C1]  __nla_parse+0x40/0x60
[  790.572111][    C1]  xfrm_user_rcv_msg+0x6fe/0xc20
[  790.572132][    C1]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  790.572165][    C1]  ? __mutex_trylock_common+0x183/0x2e0
[  790.572188][    C1]  ? __pfx___might_resched+0x10/0x10
[  790.572205][    C1]  ? __pfx___mutex_trylock_common+0x10/0x10
[  790.572233][    C1]  netlink_rcv_skb+0x1e3/0x430
[  790.572257][    C1]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  790.572274][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  790.572310][    C1]  xfrm_netlink_rcv+0x79/0x90
[  790.572326][    C1]  netlink_unicast+0x7f6/0x990
[  790.572351][    C1]  ? __pfx_netlink_unicast+0x10/0x10
[  790.572371][    C1]  ? __virt_addr_valid+0x45f/0x530
[  790.572391][    C1]  ? __phys_addr_symbol+0x2f/0x70
[  790.572410][    C1]  ? __check_object_size+0x47a/0x730
[  790.572431][    C1]  netlink_sendmsg+0x8e4/0xcb0
[  790.572452][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  790.572472][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  790.572486][    C1]  __sock_sendmsg+0x221/0x270
[  790.572506][    C1]  ____sys_sendmsg+0x52a/0x7e0
[  790.572525][    C1]  ? __pfx_____sys_sendmsg+0x10/0x10
[  790.572538][    C1]  ? __fget_files+0x2a/0x410
[  790.572559][    C1]  ? __fget_files+0x2a/0x410
[  790.572586][    C1]  __sys_sendmsg+0x269/0x350
[  790.572602][    C1]  ? __pfx___sys_sendmsg+0x10/0x10
[  790.572637][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  790.572656][    C1]  ? do_syscall_64+0x100/0x230
[  790.572678][    C1]  ? do_syscall_64+0xb6/0x230
[  790.572698][    C1]  do_syscall_64+0xf3/0x230
[  790.572718][    C1]  ? clear_bhb_loop+0x35/0x90
[  790.572740][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  790.572759][    C1] RIP: 0033:0x7ffb2758cde9
[  790.572773][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  790.572785][    C1] RSP: 002b:00007ffb283ea038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  790.572800][    C1] RAX: ffffffffffffffda RBX: 00007ffb277a5fa0 RCX: 00007ffb2758cde9
[  790.572810][    C1] RDX: 0000000000000000 RSI: 0000400000000040 RDI: 0000000000000009
[  790.572820][    C1] RBP: 00007ffb2760e2a0 R08: 0000000000000000 R09: 0000000000000000
[  790.572829][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  790.572837][    C1] R13: 0000000000000000 R14: 00007ffb277a5fa0 R15: 00007fff12591508
[  790.572855][    C1]  </TASK>
[  790.573573][    C0] Kernel panic - not syncing: softlockup: hung tasks
[  790.573587][    C0] CPU: 0 UID: 0 PID: 993 Comm: kworker/u8:6 Tainted: G             L     6.14.0-rc2-syzkaller-00041-g4dc1d1bec898 #0
[  790.573610][    C0] Tainted: [L]=SOFTLOCKUP
[  790.573617][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  790.573629][    C0] Workqueue: writeback wb_workfn (flush-8:0)
[  790.573658][    C0] Call Trace:
[  790.573666][    C0]  <IRQ>
[  790.573674][    C0]  dump_stack_lvl+0x241/0x360
[  790.573701][    C0]  ? __pfx_vprintk_emit+0x10/0x10
[  790.573729][    C0]  ? __pfx_dump_stack_lvl+0x10/0x10
[  790.573756][    C0]  ? __pfx__printk+0x10/0x10
[  790.573788][    C0]  ? vscnprintf+0x5d/0x90
[  790.573810][    C0]  panic+0x349/0x880
[  790.573844][    C0]  ? watchdog_timer_fn+0x914/0x960
[  790.573868][    C0]  ? __pfx_panic+0x10/0x10
[  790.573898][    C0]  ? irq_work_queue+0xd1/0x150
[  790.573918][    C0]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  790.573940][    C0]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  790.573966][    C0]  watchdog_timer_fn+0x957/0x960
[  790.573992][    C0]  ? __pfx_watchdog_timer_fn+0x10/0x10
[  790.574017][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  790.574039][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  790.574068][    C0]  ? __pfx_watchdog_timer_fn+0x10/0x10
[  790.574092][    C0]  __hrtimer_run_queues+0x551/0xd30
[  790.574135][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  790.574159][    C0]  ? sched_clock+0x4a/0x70
[  790.574179][    C0]  ? read_tsc+0x9/0x20
[  790.574196][    C0]  ? ktime_get_update_offsets_now+0x38e/0x3b0
[  790.574224][    C0]  hrtimer_interrupt+0x403/0xa40
[  790.574272][    C0]  __sysvec_apic_timer_interrupt+0x110/0x420
[  790.574299][    C0]  sysvec_apic_timer_interrupt+0xa1/0xc0
[  790.574321][    C0]  </IRQ>
[  790.574327][    C0]  <TASK>
[  790.574335][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  790.574359][    C0] RIP: 0010:smp_call_function_many_cond+0x1ba4/0x2d30
[  790.574386][    C0] Code: 03 84 c0 75 7e 45 8b 65 00 44 89 e6 83 e6 01 31 ff e8 b0 e8 0b 00 41 83 e4 01 4c 8b 64 24 68 75 07 e8 60 e4 0b 00 eb 41 f3 90 <48> b8 00 00 00 00 00 fc ff df 0f b6 04 03 84 c0 75 11 41 f7 45 00
[  790.574401][    C0] RSP: 0018:ffffc90003ae5f20 EFLAGS: 00000293
[  790.574416][    C0] RAX: ffffffff81b36b05 RBX: 1ffff110170e88c9 RCX: ffff8880267b0000
[  790.574430][    C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  790.574441][    C0] RBP: ffffc90003ae6120 R08: ffffffff81b36ad0 R09: 1ffffffff20346ce
[  790.574455][    C0] R10: dffffc0000000000 R11: ffffffff816921d0 R12: ffff8880b863f9c8
[  790.574469][    C0] R13: ffff8880b8744648 R14: ffff8880b863f9c0 R15: 0000000000000001
[  790.574486][    C0]  ? __pfx_native_send_call_func_single_ipi+0x10/0x10
[  790.574514][    C0]  ? smp_call_function_many_cond+0x1b90/0x2d30
[  790.574539][    C0]  ? smp_call_function_many_cond+0x1bc5/0x2d30
[  790.574570][    C0]  ? mark_lock+0x9a/0x360
[  790.574597][    C0]  ? __lock_acquire+0x1397/0x2100
[  790.574618][    C0]  ? __pfx_should_flush_tlb+0x10/0x10
[  790.574662][    C0]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  790.574696][    C0]  ? rcu_is_watching+0x15/0xb0
[  790.574721][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[  790.574745][    C0]  ? __pfx_should_flush_tlb+0x10/0x10
[  790.574772][    C0]  on_each_cpu_cond_mask+0x3f/0x80
[  790.574799][    C0]  flush_tlb_mm_range+0x42d/0x710
[  790.574835][    C0]  ? __pfx_flush_tlb_mm_range+0x10/0x10
[  790.574861][    C0]  ? page_ext_get+0x1d6/0x2a0
[  790.574888][    C0]  ptep_clear_flush+0x11a/0x170
[  790.574915][    C0]  page_vma_mkclean_one+0x58a/0x9a0
[  790.574946][    C0]  ? __pfx_page_vma_mkclean_one+0x10/0x10
[  790.574969][    C0]  ? __lock_acquire+0x1397/0x2100
[  790.575009][    C0]  page_mkclean_one+0x272/0x350
[  790.575031][    C0]  ? __pfx_page_mkclean_one+0x10/0x10
[  790.575056][    C0]  ? __pfx_down_read_trylock+0x10/0x10
[  790.575082][    C0]  ? __lock_acquire+0x1397/0x2100
[  790.575107][    C0]  ? vma_interval_tree_iter_first+0x234/0x260
[  790.575128][    C0]  ? __pfx_page_mkclean_one+0x10/0x10
[  790.575149][    C0]  rmap_walk_file+0x502/0x780
[  790.575180][    C0]  folio_mkclean+0x252/0x370
[  790.575201][    C0]  ? __pfx_folio_mkclean+0x10/0x10
[  790.575221][    C0]  ? __pfx_page_mkclean_one+0x10/0x10
[  790.575240][    C0]  ? __pfx_invalid_mkclean_vma+0x10/0x10
[  790.575259][    C0]  ? filemap_get_folios_tag+0x1bd/0x770
[  790.575281][    C0]  ? folio_mapping+0x17f/0x250
[  790.575301][    C0]  folio_clear_dirty_for_io+0x219/0x950
[  790.575332][    C0]  ? __pfx_folio_clear_dirty_for_io+0x10/0x10
[  790.575363][    C0]  ? filemap_get_folios_tag+0x1bd/0x770
[  790.575388][    C0]  mpage_submit_folio+0x84/0x340
[  790.575417][    C0]  mpage_process_page_bufs+0x6d1/0x9d0
[  790.575448][    C0]  ? folio_wait_writeback+0xd1/0x100
[  790.575476][    C0]  mpage_prepare_extent_to_map+0xecb/0x1860
[  790.575502][    C0]  ? kasan_save_track+0x3f/0x80
[  790.575518][    C0]  ? __kasan_slab_alloc+0x66/0x80
[  790.575536][    C0]  ? kmem_cache_alloc_noprof+0x1d9/0x380
[  790.575579][    C0]  ? __pfx_mpage_prepare_extent_to_map+0x10/0x10
[  790.575629][    C0]  ? rcu_is_watching+0x15/0xb0
[  790.575655][    C0]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  790.575687][    C0]  ext4_do_writepages+0xc2a/0x3df0
[  790.575731][    C0]  ? validate_chain+0x11e/0x5920
[  790.575773][    C0]  ? __pfx_ext4_do_writepages+0x10/0x10
[  790.575796][    C0]  ? validate_chain+0x11e/0x5920
[  790.575851][    C0]  ? rcu_read_lock_any_held+0xb7/0x160
[  790.575883][    C0]  ext4_writepages+0x213/0x3c0
[  790.575912][    C0]  ? __pfx_ext4_writepages+0x10/0x10
[  790.575949][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  790.575971][    C0]  ? __pfx_ext4_writepages+0x10/0x10
[  790.575999][    C0]  do_writepages+0x35f/0x880
[  790.576031][    C0]  ? __pfx_do_writepages+0x10/0x10
[  790.576068][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  790.576090][    C0]  ? writeback_sb_inodes+0x595/0x1360
[  790.576108][    C0]  ? __pfx_lock_release+0x10/0x10
[  790.576128][    C0]  ? do_raw_spin_lock+0x14f/0x370
[  790.576146][    C0]  ? unwind_next_frame+0x193b/0x22d0
[  790.576176][    C0]  __writeback_single_inode+0x14f/0x10d0
[  790.576194][    C0]  ? wbc_attach_and_unlock_inode+0x561/0x580
[  790.576223][    C0]  writeback_sb_inodes+0x820/0x1360
[  790.576239][    C0]  ? mark_lock+0x9a/0x360
[  790.576289][    C0]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  790.576341][    C0]  ? __pfx_move_expired_inodes+0x10/0x10
[  790.576360][    C0]  ? do_raw_spin_lock+0x14f/0x370
[  790.576385][    C0]  __writeback_inodes_wb+0x11b/0x260
[  790.576412][    C0]  wb_writeback+0x427/0xb80
[  790.576435][    C0]  ? queue_io+0x2f1/0x5a0
[  790.576453][    C0]  ? __pfx_wb_writeback+0x10/0x10
[  790.576494][    C0]  wb_workfn+0xb94/0x1080
[  790.576537][    C0]  ? __pfx_wb_workfn+0x10/0x10
[  790.576572][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  790.576596][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  790.576629][    C0]  ? process_scheduled_works+0x976/0x1840
[  790.576649][    C0]  process_scheduled_works+0xa66/0x1840
[  790.576693][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  790.576721][    C0]  ? assign_work+0x364/0x3d0
[  790.576746][    C0]  worker_thread+0x870/0xd30
[  790.576779][    C0]  ? __kthread_parkme+0x169/0x1d0
[  790.576802][    C0]  ? __pfx_worker_thread+0x10/0x10
[  790.576823][    C0]  kthread+0x7a9/0x920
[  790.576849][    C0]  ? __pfx_kthread+0x10/0x10
[  790.576873][    C0]  ? __pfx_worker_thread+0x10/0x10
[  790.576894][    C0]  ? __pfx_kthread+0x10/0x10
[  790.576914][    C0]  ? __pfx_kthread+0x10/0x10
[  790.576940][    C0]  ? __pfx_kthread+0x10/0x10
[  790.576961][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  790.576981][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  790.577003][    C0]  ? __pfx_kthread+0x10/0x10
[  790.577027][    C0]  ret_from_fork+0x4b/0x80
[  790.577047][    C0]  ? __pfx_kthread+0x10/0x10
[  790.577070][    C0]  ret_from_fork_asm+0x1a/0x30
[  790.577103][    C0]  </TASK>
[  791.699572][    C0] Shutting down cpus with NMI
[  791.699833][    C0] Kernel Offset: disabled