last executing test programs:

53.947758773s ago: executing program 3 (id=464):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x400141, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
io_setup(0x1, &(0x7f0000000b80)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}]) (async)
io_submit(r2, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])
signalfd4(r1, &(0x7f0000000000), 0x8, 0x800)
ioctl$SIOCAX25GETUID(r1, 0x89e0, &(0x7f00000001c0)={0x3, @default, 0xee00})
ioctl$IOMMU_DESTROY$ioas(r0, 0x3b80, &(0x7f00000000c0)={0x8})
mount(&(0x7f0000000000)=@rnullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000240)='vxfs\x00', 0x20080c4, 0x0)
socket$alg(0x26, 0x5, 0x0) (async)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f00000003c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(serpent)\x00'}, 0x58) (async)
bind$alg(r3, &(0x7f00000003c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(serpent)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, 0x0, 0x0)
r4 = accept4(r3, 0x0, 0x0, 0x80800)
sendmsg$can_j1939(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000300)="04e43cb9f9c577e12a648ef79b0d4c14b768e6a496f80d3164dd638949b56a452986be367fbbc6f67b25d0706490aea39a055fab666a0b30a6e63d9aae15cc5a18fd029c78d55e3e0d23f63c25ee7edfe9", 0x51}, 0x1, 0x0, 0x0, 0x20040800}, 0x20000084)
recvmmsg$unix(r4, &(0x7f0000000b80)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000000)=""/79, 0x4f}, {&(0x7f0000000080)=""/22, 0x16}], 0x2}}], 0x1, 0x0, 0x0)
ioctl$IOMMU_VFIO_IOAS$GET(r0, 0x3b88, &(0x7f0000000100)={0xc}) (async)
ioctl$IOMMU_VFIO_IOAS$GET(r0, 0x3b88, &(0x7f0000000100)={0xc, <r5=>0x0})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f0000000140)={0x48, 0x1, r5, 0x0, 0x0, 0x6}) (async)
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f0000000140)={0x48, 0x1, r5, 0x0, 0x0, 0x6})

53.711915744s ago: executing program 3 (id=467):
r0 = socket(0x8000000010, 0x2, 0x0)
write(r0, &(0x7f00000002c0)="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", 0x1c)

53.678068012s ago: executing program 2 (id=468):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'syzkaller0\x00', <r1=>0x0})
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000240)={r1, 0x2, 0x6, @broadcast}, 0x10)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000000)={r1, 0x1, 0x6, @remote}, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'}) (fail_nth: 5)

53.667479832s ago: executing program 3 (id=469):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0xef, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x118}}, 0x0)

53.308559897s ago: executing program 3 (id=470):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000080)={0x9, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @broadcast}}}, 0x108)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000800)=ANY=[@ANYBLOB="090000000000000002000000e000000200000000000000000000000000a400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000002000000ac1e000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e000000000000000000000000000000000000000000000000000000000000000000020000007f00000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x290)

53.06913771s ago: executing program 3 (id=472):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0x13c, 0x19, 0x1, 0x0, 0x1, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x2000000000}}, [@tmpl={0x84, 0x5, [{{@in6=@local, 0x4d2, 0x33}, 0x0, @in=@empty}, {{@in=@remote, 0x0, 0x32}, 0x0, @in6=@private1, 0x0, 0x5, 0x0, 0x0, 0x0, 0x7000000}]}]}, 0x13c}, 0x1, 0x0, 0x0, 0x1}, 0x0)

53.000101864s ago: executing program 2 (id=473):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="e40000000201010800000000000000000a000000d00001800c000280050001000000000014000180080001000000000008000200000000002c00018014000300ff01000000000000120000000000000114000400090200000000000000000000000000010c00028005000100000000004700028005000100010000000600040000000000060005"], 0xe4}}, 0x0)

52.920936879s ago: executing program 2 (id=475):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0x1fc, 0x19, 0x1, 0x0, 0x1, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x2000000000}}, [@tmpl={0x144, 0x5, [{{@in6=@remote, 0x0, 0x33}, 0x0, @in=@broadcast, 0x0, 0x2, 0x0, 0x0, 0xffffffff, 0x0, 0x40}, {{@in6=@ipv4={'\x00', '\xff\xff', @local}, 0x0, 0x3c}, 0x0, @in6=@dev}, {{@in6=@local, 0x4d2, 0x33}, 0x20, @in=@empty}, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x0, 0x6c}, 0x0, @in=@rand_addr=0x64010101}, {{@in=@remote, 0x0, 0x32}, 0x0, @in6=@private1, 0x0, 0x5}]}]}, 0x1fc}, 0x1, 0x0, 0x0, 0x1}, 0x0)

52.739870247s ago: executing program 2 (id=476):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="500100001000130700000000fcdbdf2520010000000000000000000000000001ac14143d00001a000000000000000000000000004e210002020000003b000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="fc010000000000000000000000000000000000fe32000000fe80000000000000000000000000001b000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000043050000000000000400000000000000ffffffffffffff7f0000000000000000000000000000000000000000000000000000000028bd7000003500000a000400000000000000000060001200726663343130362867636d2861657329290000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000004000"], 0x150}, 0x1, 0x0, 0x0, 0x880}, 0x0)

52.674925258s ago: executing program 3 (id=477):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000000080)={0x3, 'veth1_macvtap\x00', {}, 0x4})
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f00000000c0)={0xd000, 0xe000, 0x1})
r4 = signalfd(r1, &(0x7f0000000100)={[0x3]}, 0x8)
getsockopt$ARPT_SO_GET_ENTRIES(r4, 0x0, 0x61, &(0x7f0000000140)={'filter\x00', 0x16, "17f34449ac87e904eea746728d1f251ef4bab0d1a857"}, &(0x7f0000000180)=0x3a)
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r1, 0x8010671f, &(0x7f00000011c0)={&(0x7f00000001c0)=""/4096, 0x1000})
fstat(r1, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, <r5=>0x0, <r6=>0x0})
r7 = geteuid()
getsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000001280)={{{@in6=@private1, @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in6=@mcast2}}}, &(0x7f0000001380)=0xe8)
setresuid(r5, r7, r8)
syz_genetlink_get_family_id$devlink(&(0x7f00000013c0), r2)
ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000001400)={0xffff1000, 0x107000, 0x1})
bind$alg(r4, &(0x7f0000001440)={0x26, 'skcipher\x00', 0x0, 0x0, 'salsa20-asm\x00'}, 0x58)
r9 = add_key$fscrypt_v1(&(0x7f00000014c0), &(0x7f0000001500)={'fscrypt:', @desc2}, &(0x7f0000001540)={0x0, "6e333b43edc2fd6fc59a0b6b15f608a0cb60e068fb1834bfa6dc7cd0aa3756f923f937a0f098a4ee509942084598eeb6234ab4ccf6c931e6625346d6bc59979e", 0x5355}, 0x48, 0xfffffffffffffffa)
r10 = openat$nci(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
read$nci(r10, &(0x7f0000001600)=""/113, 0x71)
keyctl$instantiate(0xc, r9, 0x0, 0x0, r9)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000001680)={<r11=>0x0, <r12=>0x0, <r13=>0x0}, &(0x7f00000016c0)=0xc)
capset(&(0x7f0000001700)={0x19980330, r11}, &(0x7f0000001740)={0x4, 0x7, 0x3, 0x6, 0x7ff, 0x40})
r14 = openat$nci(0xffffffffffffff9c, &(0x7f0000001780), 0x2, 0x0)
write$nci(r14, &(0x7f00000017c0)=@NCI_OP_CORE_CONN_CREDITS_NTF={0x0, 0x0, 0x3, 0x6, 0x0, {0x3, [{0x4, 0x5}, {0x0, 0x9}, {0x0, 0x3}]}}, 0xa)
syz_genetlink_get_family_id$devlink(&(0x7f0000001800), r4)
socket$nl_xfrm(0x10, 0x3, 0x6)
r15 = openat(r4, &(0x7f0000001840)='./file0\x00', 0x4000, 0x7c)
ioctl$KVM_CAP_STEAL_TIME(r15, 0x4068aea3, &(0x7f0000001880))
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f0000003a80)={0x0, <r16=>0x0})
ioctl$NS_GET_OWNER_UID(r4, 0xb704, &(0x7f0000003ec0)=<r17=>0x0)
syz_fuse_handle_req(r15, &(0x7f0000001900)="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", 0x2000, &(0x7f00000043c0)={&(0x7f0000003900)={0x50, 0x0, 0x7, {0x7, 0x2b, 0x3, 0x8000001, 0x6, 0x100, 0x6, 0xfffffff4, 0x0, 0x0, 0x20, 0x10}}, &(0x7f0000003980)={0x18, 0x0, 0x8, {0xfff}}, &(0x7f00000039c0)={0x18, 0xfffffffffffffff5, 0x18e, {0x390}}, &(0x7f0000003a00)={0x18, 0x0, 0x0, {0x10}}, &(0x7f0000003a40)={0x18, 0x0, 0xdd, {0x7}}, &(0x7f0000003b00)={0x28, 0x0, 0x5, {{0x1, 0x7, 0x2, r16}}}, &(0x7f0000003b40)={0x60, 0x0, 0x5da4, {{0x1, 0x7, 0x5, 0xca, 0x0, 0x7, 0x8, 0xd7}}}, &(0x7f0000003bc0)={0x18, 0xfffffffffffffffe, 0x5, {0xffffff00}}, &(0x7f0000003c00)={0x17, 0xfffffffffffffffe, 0x5238, {'filter\x00'}}, &(0x7f0000003c40)={0x20, 0x0, 0x9}, &(0x7f0000003c80)={0x78, 0x0, 0x3, {0x1c87, 0xe3, 0x0, {0x4, 0xfffffffffffffffb, 0x0, 0x7, 0x6, 0xfffffffffffffffe, 0x8, 0xffffff80, 0xb0, 0x4000, 0x4, r8, r13, 0x7ff, 0x4}}}, &(0x7f0000003d00)={0x90, 0xffffffffffffffda, 0x9, {0x0, 0x2, 0x3, 0xe, 0x7, 0x3, {0x1, 0x100, 0x101, 0x8, 0x8d, 0x5b93, 0xb6e4, 0x7, 0x2, 0x6000, 0x81, r5, r13, 0xe, 0x6d0d}}}, &(0x7f0000003dc0)={0xd8, 0x0, 0x84, [{0x1, 0xb81, 0x9, 0x4, 'skcipher\x00'}, {0x3, 0x0, 0x1, 0x4, '['}, {0x2, 0x8000000000000001, 0x6, 0x7ff, 'logon\x00'}, {0x5, 0xffffffffffff8000, 0x11, 0x4, '/dev/virtual_nci\x00'}, {0x3, 0x2, 0x11, 0xfffffff5, '/dev/virtual_nci\x00'}]}, &(0x7f0000003fc0)={0x160, 0x0, 0x0, [{{0x3, 0x3, 0xfe28, 0x3, 0x7, 0x3ff, {0x2, 0x80000000, 0x7, 0xf5, 0x8000000000000001, 0x3, 0x0, 0x5, 0x5, 0x1000, 0x1, r12, r6, 0xffff, 0x52}}, {0x1, 0x7fffffff, 0x2, 0x6, ',!'}}, {{0x6, 0x2, 0x10, 0xf, 0x3, 0x2c, {0x1, 0x101, 0x789, 0x8, 0x4, 0x100, 0xfffffff9, 0x5, 0x8, 0x8000, 0xd3c286c5, r17, 0x0, 0x81, 0x4}}, {0x6, 0x9, 0x11, 0x9, '/dev/vhost-vsock\x00'}}]}, &(0x7f0000004140)={0xa0, 0x0, 0x2, {{0x1, 0x2, 0x0, 0xaa, 0xb, 0x7ff, {0x0, 0x8, 0x4, 0x1, 0xc, 0x58, 0xe8e, 0x7, 0x4, 0x2000, 0x1, r5, r13, 0x9, 0x5}}, {0x0, 0x2}}}, &(0x7f0000004200)={0x20, 0xfffffffffffffff5, 0xe4d8, {0x8000, 0x0, 0x8001, 0x7}}, &(0x7f0000004280)={0x130, 0x0, 0x7, {0x2, 0x5, 0x0, '\x00', {0x7ff, 0x4, 0x7, 0x3be7, r5, 0x0, 0x8000, '\x00', 0x8, 0x37e6, 0x40, 0x8, {0x3, 0x7}, {0x2, 0x3}, {0x8}, {0xb, 0x9}, 0x6, 0x4, 0x8001, 0x6}}}})

52.658700636s ago: executing program 2 (id=478):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x2a8}, 0x1, 0x0, 0x0, 0x4}, 0x40000)

52.411896056s ago: executing program 2 (id=479):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KDSETLED(r1, 0x4b32, 0x9)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r2, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
r3 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x2000000f5, 0x2)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=r4, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
ioctl$RTC_IRQP_READ(0xffffffffffffffff, 0x8008700b, &(0x7f0000000300))
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000003780), 0x240, 0x0)
dup2(r5, r4)
splice(r0, &(0x7f0000000000)=0x7fff, r5, &(0x7f0000000080)=0x2dfa, 0x9, 0xd)
socketpair(0x22, 0x2, 0x26, &(0x7f00000000c0))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$int_in(r7, 0x5452, &(0x7f0000000040)=0x8001)
r8 = getpgid(0x0)
fcntl$setownex(r7, 0xf, &(0x7f0000000140)={0x2, r8})
sendmmsg$unix(r6, &(0x7f0000006c40)=[{{0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000008c0)='\x00', 0x1}], 0x1}}], 0x1, 0x408b1)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000240)='vfat\x00', 0x200000, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000400)={0xf0f002, 0x5})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)

37.584460668s ago: executing program 32 (id=477):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000000080)={0x3, 'veth1_macvtap\x00', {}, 0x4})
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f00000000c0)={0xd000, 0xe000, 0x1})
r4 = signalfd(r1, &(0x7f0000000100)={[0x3]}, 0x8)
getsockopt$ARPT_SO_GET_ENTRIES(r4, 0x0, 0x61, &(0x7f0000000140)={'filter\x00', 0x16, "17f34449ac87e904eea746728d1f251ef4bab0d1a857"}, &(0x7f0000000180)=0x3a)
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r1, 0x8010671f, &(0x7f00000011c0)={&(0x7f00000001c0)=""/4096, 0x1000})
fstat(r1, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, <r5=>0x0, <r6=>0x0})
r7 = geteuid()
getsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000001280)={{{@in6=@private1, @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in6=@mcast2}}}, &(0x7f0000001380)=0xe8)
setresuid(r5, r7, r8)
syz_genetlink_get_family_id$devlink(&(0x7f00000013c0), r2)
ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000001400)={0xffff1000, 0x107000, 0x1})
bind$alg(r4, &(0x7f0000001440)={0x26, 'skcipher\x00', 0x0, 0x0, 'salsa20-asm\x00'}, 0x58)
r9 = add_key$fscrypt_v1(&(0x7f00000014c0), &(0x7f0000001500)={'fscrypt:', @desc2}, &(0x7f0000001540)={0x0, "6e333b43edc2fd6fc59a0b6b15f608a0cb60e068fb1834bfa6dc7cd0aa3756f923f937a0f098a4ee509942084598eeb6234ab4ccf6c931e6625346d6bc59979e", 0x5355}, 0x48, 0xfffffffffffffffa)
r10 = openat$nci(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
read$nci(r10, &(0x7f0000001600)=""/113, 0x71)
keyctl$instantiate(0xc, r9, 0x0, 0x0, r9)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000001680)={<r11=>0x0, <r12=>0x0, <r13=>0x0}, &(0x7f00000016c0)=0xc)
capset(&(0x7f0000001700)={0x19980330, r11}, &(0x7f0000001740)={0x4, 0x7, 0x3, 0x6, 0x7ff, 0x40})
r14 = openat$nci(0xffffffffffffff9c, &(0x7f0000001780), 0x2, 0x0)
write$nci(r14, &(0x7f00000017c0)=@NCI_OP_CORE_CONN_CREDITS_NTF={0x0, 0x0, 0x3, 0x6, 0x0, {0x3, [{0x4, 0x5}, {0x0, 0x9}, {0x0, 0x3}]}}, 0xa)
syz_genetlink_get_family_id$devlink(&(0x7f0000001800), r4)
socket$nl_xfrm(0x10, 0x3, 0x6)
r15 = openat(r4, &(0x7f0000001840)='./file0\x00', 0x4000, 0x7c)
ioctl$KVM_CAP_STEAL_TIME(r15, 0x4068aea3, &(0x7f0000001880))
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f0000003a80)={0x0, <r16=>0x0})
ioctl$NS_GET_OWNER_UID(r4, 0xb704, &(0x7f0000003ec0)=<r17=>0x0)
syz_fuse_handle_req(r15, &(0x7f0000001900)="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", 0x2000, &(0x7f00000043c0)={&(0x7f0000003900)={0x50, 0x0, 0x7, {0x7, 0x2b, 0x3, 0x8000001, 0x6, 0x100, 0x6, 0xfffffff4, 0x0, 0x0, 0x20, 0x10}}, &(0x7f0000003980)={0x18, 0x0, 0x8, {0xfff}}, &(0x7f00000039c0)={0x18, 0xfffffffffffffff5, 0x18e, {0x390}}, &(0x7f0000003a00)={0x18, 0x0, 0x0, {0x10}}, &(0x7f0000003a40)={0x18, 0x0, 0xdd, {0x7}}, &(0x7f0000003b00)={0x28, 0x0, 0x5, {{0x1, 0x7, 0x2, r16}}}, &(0x7f0000003b40)={0x60, 0x0, 0x5da4, {{0x1, 0x7, 0x5, 0xca, 0x0, 0x7, 0x8, 0xd7}}}, &(0x7f0000003bc0)={0x18, 0xfffffffffffffffe, 0x5, {0xffffff00}}, &(0x7f0000003c00)={0x17, 0xfffffffffffffffe, 0x5238, {'filter\x00'}}, &(0x7f0000003c40)={0x20, 0x0, 0x9}, &(0x7f0000003c80)={0x78, 0x0, 0x3, {0x1c87, 0xe3, 0x0, {0x4, 0xfffffffffffffffb, 0x0, 0x7, 0x6, 0xfffffffffffffffe, 0x8, 0xffffff80, 0xb0, 0x4000, 0x4, r8, r13, 0x7ff, 0x4}}}, &(0x7f0000003d00)={0x90, 0xffffffffffffffda, 0x9, {0x0, 0x2, 0x3, 0xe, 0x7, 0x3, {0x1, 0x100, 0x101, 0x8, 0x8d, 0x5b93, 0xb6e4, 0x7, 0x2, 0x6000, 0x81, r5, r13, 0xe, 0x6d0d}}}, &(0x7f0000003dc0)={0xd8, 0x0, 0x84, [{0x1, 0xb81, 0x9, 0x4, 'skcipher\x00'}, {0x3, 0x0, 0x1, 0x4, '['}, {0x2, 0x8000000000000001, 0x6, 0x7ff, 'logon\x00'}, {0x5, 0xffffffffffff8000, 0x11, 0x4, '/dev/virtual_nci\x00'}, {0x3, 0x2, 0x11, 0xfffffff5, '/dev/virtual_nci\x00'}]}, &(0x7f0000003fc0)={0x160, 0x0, 0x0, [{{0x3, 0x3, 0xfe28, 0x3, 0x7, 0x3ff, {0x2, 0x80000000, 0x7, 0xf5, 0x8000000000000001, 0x3, 0x0, 0x5, 0x5, 0x1000, 0x1, r12, r6, 0xffff, 0x52}}, {0x1, 0x7fffffff, 0x2, 0x6, ',!'}}, {{0x6, 0x2, 0x10, 0xf, 0x3, 0x2c, {0x1, 0x101, 0x789, 0x8, 0x4, 0x100, 0xfffffff9, 0x5, 0x8, 0x8000, 0xd3c286c5, r17, 0x0, 0x81, 0x4}}, {0x6, 0x9, 0x11, 0x9, '/dev/vhost-vsock\x00'}}]}, &(0x7f0000004140)={0xa0, 0x0, 0x2, {{0x1, 0x2, 0x0, 0xaa, 0xb, 0x7ff, {0x0, 0x8, 0x4, 0x1, 0xc, 0x58, 0xe8e, 0x7, 0x4, 0x2000, 0x1, r5, r13, 0x9, 0x5}}, {0x0, 0x2}}}, &(0x7f0000004200)={0x20, 0xfffffffffffffff5, 0xe4d8, {0x8000, 0x0, 0x8001, 0x7}}, &(0x7f0000004280)={0x130, 0x0, 0x7, {0x2, 0x5, 0x0, '\x00', {0x7ff, 0x4, 0x7, 0x3be7, r5, 0x0, 0x8000, '\x00', 0x8, 0x37e6, 0x40, 0x8, {0x3, 0x7}, {0x2, 0x3}, {0x8}, {0xb, 0x9}, 0x6, 0x4, 0x8001, 0x6}}}})

36.544827428s ago: executing program 33 (id=479):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KDSETLED(r1, 0x4b32, 0x9)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r2, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
r3 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x2000000f5, 0x2)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=r4, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
ioctl$RTC_IRQP_READ(0xffffffffffffffff, 0x8008700b, &(0x7f0000000300))
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000003780), 0x240, 0x0)
dup2(r5, r4)
splice(r0, &(0x7f0000000000)=0x7fff, r5, &(0x7f0000000080)=0x2dfa, 0x9, 0xd)
socketpair(0x22, 0x2, 0x26, &(0x7f00000000c0))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$int_in(r7, 0x5452, &(0x7f0000000040)=0x8001)
r8 = getpgid(0x0)
fcntl$setownex(r7, 0xf, &(0x7f0000000140)={0x2, r8})
sendmmsg$unix(r6, &(0x7f0000006c40)=[{{0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000008c0)='\x00', 0x1}], 0x1}}], 0x1, 0x408b1)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000240)='vfat\x00', 0x200000, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000400)={0xf0f002, 0x5})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)

16.609222736s ago: executing program 1 (id=692):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0) (async)
r1 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x102, 0x0)
read$FUSE(r1, &(0x7f0000002240)={0x2020, 0x0, <r2=>0x0}, 0x2020)
writev(r1, &(0x7f0000002140)=[{&(0x7f0000002080)='T01\n', 0x4}], 0x1) (async)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x42, 0x3)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r3, 0x0) (async)
write$FUSE_LSEEK(r1, &(0x7f00000002c0)={0x18, 0xfffffffffffffffe, r2, {0x4}}, 0x18)
r4 = socket$can_raw(0x1d, 0x3, 0x1) (async)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_cpus\x00', 0x275a, 0x0)
sendmmsg$inet6(r5, &(0x7f0000001340), 0x0, 0xc4) (async)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
write$cgroup_subtree(r5, &(0x7f0000000200)=ANY=[@ANYRESDEC, @ANYRESDEC=r6, @ANYRESDEC=r4, @ANYRES8=r5], 0x32600) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r5, 0x0)
getsockopt$CAN_RAW_FILTER(r4, 0x65, 0x1, 0x0, &(0x7f0000000040)) (async)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0) (async)
r8 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x2000000f5, 0x2)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000240)='vfat\x00', 0x200000, 0x0) (async)
r9 = fsopen(&(0x7f0000000000)='binfmt_misc\x00', 0x0)
fsconfig$FSCONFIG_SET_FLAG(r9, 0x0, &(0x7f0000000040)='nolazytime\x00', 0x0, 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0) (async)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000780)='devpts\x00', 0x0, 0x0) (async)
mount$tmpfs(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x820061, &(0x7f0000000200)={[{@uid={'uid', 0x3d, 0xee00}}]}) (async)
ioctl$vim2m_VIDIOC_S_CTRL(r8, 0xc008561c, &(0x7f0000000400)={0xf0f002, 0x5}) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r7, 0x0) (async)
socket(0x10, 0x3, 0x0)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.numa_stat\x00', 0x26e1, 0x0)
close(r10) (async)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{0x0}, {0x0}, {0x0}], 0x3}, 0x4008040)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)

16.488150556s ago: executing program 1 (id=694):
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$BLKCRYPTOIMPORTKEY(r0, 0xc0401289, &(0x7f0000000100)={&(0x7f0000000000)="9e0575bb945facc0c98f316c9cf314de9f8d237349cfded62355456c78d8c9a4fb7b570d09cf971b038f9f740c871573", 0x30, &(0x7f00000000c0)=""/42, 0x2a})
mount(&(0x7f0000000080)=@rnullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000240)='hfs\x00', 0x2208080, 0x0)

16.454536997s ago: executing program 1 (id=696):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000080)={0x9, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @broadcast}}}, 0x108)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000800)=ANY=[@ANYBLOB="090000000000000002000000e0000002000000000000000000000000000088000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000002000000ac1e000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e000000000000000000000000000000000000000000000000000000000000000000020000007f00000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x290)

16.379875084s ago: executing program 1 (id=697):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
syz_usb_connect$hid(0x6, 0x36, &(0x7f0000000380)=ANY=[], 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0x2, 0x300)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x8000)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$can_raw(0x1d, 0x3, 0x1)
socket$tipc(0x1e, 0x5, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$kcm(0x10, 0x3, 0x0)
syz_usb_connect(0x4, 0x24, &(0x7f00000001c0)=ANY=[], 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
socket$inet(0x2, 0x80001, 0x84)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000009a40)={&(0x7f0000000b40)=ANY=[@ANYBLOB="140000001000010000000000000000000000200a20000000000a01010000000000000000010000040900010073797a30000000002c000000030a01080000000000000000010000000900030073797a32000000000900010073797a300000000050000000060a010400000000000000000100000008000b40000000000900010073797a30000000002800048024000180090001006d6574610000000014000280080001400000001208000240000000", @ANYRES32=r0], 0xc4}, 0x1, 0x0, 0x0, 0x4000}, 0x800)

16.026365428s ago: executing program 0 (id=702):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="14000000100001000000000000ffffffec00000a5c000000180a0500000000000000000002000000300003802cf5038014000100776732000000000000000000000000001400010076657468315f746f5f627269646765000900020073797a30000000f50900010073797a300000000014000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x24040089}, 0x20008000)

15.965126275s ago: executing program 0 (id=703):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0xef, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x118}}, 0x0)

15.863281347s ago: executing program 0 (id=704):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="500100001000130700000000fcdbdf2520010000000000000000000000000001ac14143d000000000000000010000000000000004e210002020000003b000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="fc010000000000000000000000000000000000fe32000000fe80000000000000000000000000001b000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000043050000000000000400000000000000ffffffffffffff7f0000000000000000000000000000000000000000000000000000000028bd7000003500000a000400000000000000000060001200726663343130362867636d2861657329290000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000004000"], 0x150}, 0x1, 0x0, 0x0, 0x880}, 0x0)

15.859474007s ago: executing program 0 (id=705):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000080)={0x9, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @broadcast}}}, 0x108)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000800)=ANY=[@ANYBLOB="090000000000000002000000e00000020000000000000000000000000000a4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000002000000ac1e000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e000000000000000000000000000000000000000000000000000000000000000000020000007f00000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x290)

15.810390021s ago: executing program 0 (id=706):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7902})
write$cgroup_devices(r0, &(0x7f0000000600)=ANY=[@ANYBLOB="25030f003fff94", @ANYRES16], 0xffdd)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa02, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000001, 0x12, r1, 0x45809000)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e4, &(0x7f0000000140))

15.711989859s ago: executing program 1 (id=707):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r2 = dup(r1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x180000f, 0x13, r2, 0x1000)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
clock_nanosleep(0x0, 0x1, &(0x7f00000001c0), 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
pipe2$9p(&(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r6, &(0x7f0000000300)=ANY=[], 0x15)
r7 = dup(r6)
write$FUSE_BMAP(r7, &(0x7f0000000140)={0x18, 0x0, 0x0, {0x4}}, 0x18)
write$FUSE_DIRENTPLUS(r7, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r7, &(0x7f0000000480)={0x18}, 0x18)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r6, 0x4018f50b, &(0x7f0000000100)={0x1, 0xe, 0x4})
write$FUSE_INIT(r7, &(0x7f0000000600)={0x50, 0x0, 0x0, {0x7, 0x29, 0x3, 0x0, 0x4, 0x53b, 0x7, 0x0, 0x0, 0x0, 0xa0, 0x200}}, 0x50)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x80, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r7}})
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0xe0543, 0x101)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000001, 0x12, r0, 0x45809000)

15.711734361s ago: executing program 0 (id=708):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e60, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r2 = socket$inet6(0xa, 0x5, 0x0) (async)
r3 = socket$inet(0x2, 0x2, 0x0)
r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$nci(r4, 0x0, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x20, &(0x7f0000000740)={@multicast2, @loopback}, 0xc) (async)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) (async)
write(r0, &(0x7f0000000000)="fb196dec69a10b2284f761", 0xb)

15.555413669s ago: executing program 1 (id=709):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000001e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a0b040000000000000000020000002c0004802800018008000100666962001c0002800800014000000000080002400000000108000340000000160900010073797a30000000000900020073797a32"], 0x80}}, 0x0)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
r2 = syz_open_dev$video4linux(&(0x7f00000000c0), 0x3, 0x480)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r3=>r2, {0x3}}, './file0\x00'})
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000200), 0x4000000008002, 0x0)
sendfile(r4, r1, 0x0, 0x203)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
ioctl$TUNATTACHFILTER(r5, 0x401054d5, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x5, 0x9, 0x7, 0x3ff}, {0x8, 0x5, 0xd8, 0xffffffff}, {0x1, 0xb, 0x81, 0xffffffff}]})

41.455814ms ago: executing program 34 (id=708):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e60, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r2 = socket$inet6(0xa, 0x5, 0x0) (async)
r3 = socket$inet(0x2, 0x2, 0x0)
r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$nci(r4, 0x0, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x20, &(0x7f0000000740)={@multicast2, @loopback}, 0xc) (async)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) (async)
write(r0, &(0x7f0000000000)="fb196dec69a10b2284f761", 0xb)

0s ago: executing program 35 (id=709):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000001e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a0b040000000000000000020000002c0004802800018008000100666962001c0002800800014000000000080002400000000108000340000000160900010073797a30000000000900020073797a32"], 0x80}}, 0x0)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001140), 0xa00, 0x0)
r2 = syz_open_dev$video4linux(&(0x7f00000000c0), 0x3, 0x480)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r3=>r2, {0x3}}, './file0\x00'})
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000200), 0x4000000008002, 0x0)
sendfile(r4, r1, 0x0, 0x203)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
ioctl$TUNATTACHFILTER(r5, 0x401054d5, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x5, 0x9, 0x7, 0x3ff}, {0x8, 0x5, 0xd8, 0xffffffff}, {0x1, 0xb, 0x81, 0xffffffff}]})

kernel console output (not intermixed with test programs):

92.828052][ T5830] veth0_macvtap: entered promiscuous mode
[   92.844245][ T5830] veth1_macvtap: entered promiscuous mode
[   92.861624][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0
[   92.882293][ T5833] veth0_vlan: entered promiscuous mode
[   92.916310][ T5833] veth1_vlan: entered promiscuous mode
[   92.942514][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0
[   92.974779][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.004440][ T5838] veth0_vlan: entered promiscuous mode
[   93.011084][ T5830] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.022729][ T5830] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.037288][ T5830] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.046226][ T5830] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.106959][ T5826] veth0_vlan: entered promiscuous mode
[   93.128753][ T5838] veth1_vlan: entered promiscuous mode
[   93.156393][ T5833] veth0_macvtap: entered promiscuous mode
[   93.175477][ T5826] veth1_vlan: entered promiscuous mode
[   93.206945][ T5833] veth1_macvtap: entered promiscuous mode
[   93.272662][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.287382][ T5826] veth0_macvtap: entered promiscuous mode
[   93.300778][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.302418][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.327864][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.336412][ T5838] veth0_macvtap: entered promiscuous mode
[   93.347467][ T5838] veth1_macvtap: entered promiscuous mode
[   93.358720][ T5833] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.368196][ T5833] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.377586][ T5833] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.386699][ T5833] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.410167][ T5826] veth1_macvtap: entered promiscuous mode
[   93.452793][  T772] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.461225][  T772] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.479232][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.507607][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.519705][ T5826] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.536869][ T5826] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.548021][ T5826] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.557594][ T5826] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.578518][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.626514][ T5830] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   93.657329][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.689988][ T5838] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.705507][ T5838] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.722800][ T5838] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.744757][ T5838] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.801266][ T5917] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   93.821243][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.844048][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.922023][ T5917] syzkaller1: entered promiscuous mode
[   93.927692][ T5917] syzkaller1: entered allmulticast mode
[   93.944306][ T1161] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.963868][ T1161] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.087759][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.095921][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.134961][   T51] Bluetooth: hci0: command tx timeout
[   94.214610][  T772] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.215544][   T51] Bluetooth: hci1: command tx timeout
[   94.222487][  T772] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.228171][   T51] Bluetooth: hci2: command tx timeout
[   94.315028][  T772] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.315894][ T5922] netlink: 'syz.3.4': attribute type 12 has an invalid length.
[   94.322907][  T772] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.374043][ T5924] netlink: 'syz.2.5': attribute type 12 has an invalid length.
[   94.393598][  T772] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.401497][  T772] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.413038][ T5925] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   94.453682][   T51] Bluetooth: hci3: command tx timeout
[   94.771973][ T5934] syzkaller1: entered promiscuous mode
[   94.792784][ T5895] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   94.801147][ T5934] syzkaller1: entered allmulticast mode
[   94.993700][ T5895] usb 4-1: Using ep0 maxpacket: 32
[   95.022208][ T5895] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[   95.060333][ T5895] usb 4-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=33.f9
[   95.091163][ T5895] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.121990][ T5895] usb 4-1: Product: syz
[   95.135539][ T5895] usb 4-1: Manufacturer: syz
[   95.155257][ T5895] usb 4-1: SerialNumber: syz
[   95.180269][ T5895] usb 4-1: config 0 descriptor??
[   95.227194][ T5895] input: KB Gear Tablet as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input5
[   95.238230][ T5937] syzkaller0: entered allmulticast mode
[   95.248691][ T5937] syzkaller0: entered promiscuous mode
[   95.299919][ T5937] syzkaller0 (unregistering): left promiscuous mode
[   95.318858][ T5937] syzkaller0 (unregistering): left allmulticast mode
[   95.463637][ T5927] syz.3.6 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   96.033815][ T5915] usb 4-1: USB disconnect, device number 2
[   96.083184][    T9] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   96.213660][   T51] Bluetooth: hci0: command tx timeout
[   96.256491][    T9] usb 1-1: Using ep0 maxpacket: 16
[   96.274596][    T9] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[   96.293986][   T51] Bluetooth: hci1: command tx timeout
[   96.299501][   T51] Bluetooth: hci2: command tx timeout
[   96.306719][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[   96.327338][    T9] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[   96.337026][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   96.346278][    T9] usb 1-1: Product: syz
[   96.350582][    T9] usb 1-1: Manufacturer: syz
[   96.355719][    T9] usb 1-1: SerialNumber: syz
[   96.369936][    T9] usb 1-1: config 0 descriptor??
[   96.381091][    T9] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[   96.391768][    T9] em28xx 1-1:0.0: Audio interface 0 found (Vendor Class)
[   96.533829][   T51] Bluetooth: hci3: command tx timeout
[   96.819837][ T5946] netlink: 44 bytes leftover after parsing attributes in process `syz.1.12'.
[   96.844890][ T5946] netlink: 43 bytes leftover after parsing attributes in process `syz.1.12'.
[   96.873214][ T5946] netlink: 'syz.1.12': attribute type 5 has an invalid length.
[   96.877384][ T5950] random: crng reseeded on system resumption
[   96.889156][ T5946] netlink: 43 bytes leftover after parsing attributes in process `syz.1.12'.
[   96.987614][    T9] em28xx 1-1:0.0: unknown em28xx chip ID (0)
[   97.025000][    T9] em28xx 1-1:0.0: Config register raw data: 0xfffffffb
[   97.039580][ T5955] netlink: 'syz.3.13': attribute type 12 has an invalid length.
[   97.050996][ T5950] binder: 5945:5950 ioctl c018620c 0 returned -14
[   97.139404][ T5959] syzkaller1: entered promiscuous mode
[   97.145298][ T5959] syzkaller1: entered allmulticast mode
[   97.273325][    T9] em28xx 1-1:0.0: AC97 chip type couldn't be determined
[   97.280387][    T9] em28xx 1-1:0.0: No AC97 audio processor
[   97.569672][ T5976] syzkaller0: entered allmulticast mode
[   97.712554][ T5975] netlink: 56 bytes leftover after parsing attributes in process `syz.1.16'.
[   97.842370][ T5975] syzkaller0 (unregistering): left allmulticast mode
[   98.073288][ T5836] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   98.156651][ T5994] syzkaller1: entered promiscuous mode
[   98.162300][ T5994] syzkaller1: entered allmulticast mode
[   98.253299][ T5836] usb 3-1: Using ep0 maxpacket: 32
[   98.274753][ T5836] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[   98.297801][ T5836] usb 3-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=33.f9
[   98.309344][ T5836] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   98.323302][ T5836] usb 3-1: Product: syz
[   98.327550][ T5836] usb 3-1: Manufacturer: syz
[   98.332277][ T5836] usb 3-1: SerialNumber: syz
[   98.354007][ T5836] usb 3-1: config 0 descriptor??
[   98.376513][ T5836] input: KB Gear Tablet as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input6
[   98.445343][ T5999] netlink: 20 bytes leftover after parsing attributes in process `syz.1.24'.
[   98.729614][ T5915] usb 1-1: USB disconnect, device number 2
[   98.749272][ T5915] em28xx 1-1:0.0: Disconnecting em28xx
[   98.781625][ T5915] em28xx 1-1:0.0: Freeing device
[   98.801574][ T5162] usb 3-1: USB disconnect, device number 2
[   99.024838][ T5888] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   99.036470][ T6008] syzkaller0: entered allmulticast mode
[   99.047498][ T6008] syzkaller0 (unregistering): left allmulticast mode
[   99.196891][ T5888] usb 2-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice=f6.00
[   99.206284][ T5888] usb 2-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[   99.214936][ T5888] usb 2-1: Product: syz
[   99.219165][ T5888] usb 2-1: SerialNumber: syz
[   99.230822][ T5888] usb 2-1: config 0 descriptor??
[   99.495433][ T5915] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   99.524476][ T5915] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   99.674972][ T6022] exFAT-fs (rnullb0): invalid boot record signature
[   99.717318][ T6022] exFAT-fs (rnullb0): failed to read boot sector
[   99.749890][ T6022] exFAT-fs (rnullb0): failed to recognize exfat type
[   99.925392][ T6029] netlink: 44 bytes leftover after parsing attributes in process `syz.3.32'.
[   99.953375][ T6029] netlink: 43 bytes leftover after parsing attributes in process `syz.3.32'.
[   99.962360][ T6029] netlink: 'syz.3.32': attribute type 5 has an invalid length.
[   99.991958][ T6029] netlink: 43 bytes leftover after parsing attributes in process `syz.3.32'.
[  100.029017][ T5888] hso 2-1:0.0: Failed to find BULK IN ep
[  100.082975][ T6033] netlink: 'syz.0.34': attribute type 12 has an invalid length.
[  100.377272][ T6044] syzkaller0: entered allmulticast mode
[  100.390692][ T6046] /dev/nullb0: Can't open blockdev
[  100.461525][ T6044] syzkaller0 (unregistering): left allmulticast mode
[  100.524816][ T6044] FAULT_INJECTION: forcing a failure.
[  100.524816][ T6044] name failslab, interval 1, probability 0, space 0, times 1
[  100.559357][ T6044] CPU: 1 UID: 0 PID: 6044 Comm: syz.0.37 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) 
[  100.559386][ T6044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  100.559405][ T6044] Call Trace:
[  100.559413][ T6044]  <TASK>
[  100.559421][ T6044]  dump_stack_lvl+0x189/0x250
[  100.559455][ T6044]  ? __pfx____ratelimit+0x10/0x10
[  100.559485][ T6044]  ? __pfx_dump_stack_lvl+0x10/0x10
[  100.559525][ T6044]  ? __pfx__printk+0x10/0x10
[  100.559555][ T6044]  ? __pfx___might_resched+0x10/0x10
[  100.559576][ T6044]  ? fs_reclaim_acquire+0x7d/0x100
[  100.559618][ T6044]  should_fail_ex+0x414/0x560
[  100.559649][ T6044]  should_failslab+0xa8/0x100
[  100.559685][ T6044]  __kmalloc_cache_noprof+0x70/0x3d0
[  100.559709][ T6044]  ? kobject_uevent_env+0x27c/0x8c0
[  100.559737][ T6044]  kobject_uevent_env+0x27c/0x8c0
[  100.559762][ T6044]  ? up_write+0x1c4/0x420
[  100.559794][ T6044]  __kobject_del+0xd2/0x300
[  100.559812][ T6044]  ? kobject_put+0x237/0x480
[  100.559834][ T6044]  kobject_put+0x243/0x480
[  100.559861][ T6044]  netdev_queue_update_kobjects+0x5db/0x6c0
[  100.559904][ T6044]  netdev_unregister_kobject+0x11f/0x450
[  100.559942][ T6044]  unregister_netdevice_many_notify+0x1d52/0x2320
[  100.559989][ T6044]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  100.560054][ T6044]  unregister_netdevice_queue+0x33c/0x380
[  100.560087][ T6044]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  100.560114][ T6044]  ? sysfs_remove_group+0x236/0x2c0
[  100.560138][ T6044]  ? br_dev_delete+0xda/0x100
[  100.560163][ T6044]  br_del_bridge+0xb6/0xf0
[  100.560185][ T6044]  br_ioctl_stub+0x6c1/0xc80
[  100.560211][ T6044]  ? trace_contention_end+0x39/0x120
[  100.560239][ T6044]  ? __pfx_br_ioctl_stub+0x10/0x10
[  100.560271][ T6044]  ? sock_ioctl+0x4b4/0x790
[  100.560308][ T6044]  ? __lock_acquire+0xab9/0xd20
[  100.560347][ T6044]  ? __pfx_br_ioctl_stub+0x10/0x10
[  100.560370][ T6044]  sock_ioctl+0x4d8/0x790
[  100.560402][ T6044]  ? __pfx_sock_ioctl+0x10/0x10
[  100.560432][ T6044]  ? __fget_files+0x2a/0x420
[  100.560460][ T6044]  ? __fget_files+0x3a0/0x420
[  100.560488][ T6044]  ? __fget_files+0x2a/0x420
[  100.560521][ T6044]  ? bpf_lsm_file_ioctl+0x9/0x20
[  100.560542][ T6044]  ? __pfx_sock_ioctl+0x10/0x10
[  100.560571][ T6044]  __se_sys_ioctl+0xfc/0x170
[  100.560599][ T6044]  do_syscall_64+0xfa/0x3b0
[  100.560625][ T6044]  ? lockdep_hardirqs_on+0x9c/0x150
[  100.560655][ T6044]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.560675][ T6044]  ? clear_bhb_loop+0x60/0xb0
[  100.560700][ T6044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.560719][ T6044] RIP: 0033:0x7f24de98e929
[  100.560744][ T6044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.560760][ T6044] RSP: 002b:00007f24df84b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  100.560782][ T6044] RAX: ffffffffffffffda RBX: 00007f24debb5fa0 RCX: 00007f24de98e929
[  100.560796][ T6044] RDX: 0000200000000040 RSI: 00000000000089a1 RDI: 0000000000000004
[  100.560809][ T6044] RBP: 00007f24df84b090 R08: 0000000000000000 R09: 0000000000000000
[  100.560821][ T6044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  100.560832][ T6044] R13: 0000000000000000 R14: 00007f24debb5fa0 R15: 00007ffe81c5e0b8
[  100.560864][ T6044]  </TASK>
[  101.098390][ T5162] usb 2-1: USB disconnect, device number 2
[  101.136892][ T6053] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  101.282694][ T6056] netlink: 'syz.1.41': attribute type 12 has an invalid length.
[  101.327840][ T6062] netlink: 'syz.0.44': attribute type 12 has an invalid length.
[  101.745101][ T6074] syzkaller0: entered allmulticast mode
[  101.756036][ T6074] syzkaller0 (unregistering): left allmulticast mode
[  101.784559][ T5888] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  101.853211][ T5915] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  101.913038][ T6076] netlink: 9 bytes leftover after parsing attributes in process `syz.2.50'.
[  101.926963][ T6076] gretap0: entered promiscuous mode
[  101.937878][ T6076] netlink: 5 bytes leftover after parsing attributes in process `syz.2.50'.
[  101.948354][ T6076] 0{X功: renamed from gretap0
[  101.957739][ T5888] usb 4-1: config 0 has no interfaces?
[  101.964994][ T6076] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  101.983906][ T5888] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  101.993025][ T5888] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  102.007773][ T5888] usb 4-1: SerialNumber: syz
[  102.017478][ T5888] usb 4-1: config 0 descriptor??
[  102.050990][ T5915] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  102.080846][ T5915] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  102.098453][ T5915] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  102.121757][ T5915] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  102.132084][ T5915] usb 1-1: SerialNumber: syz
[  102.211109][ T6083] syzkaller1: entered promiscuous mode
[  102.224563][ T6083] syzkaller1: entered allmulticast mode
[  102.246912][ T5836] usb 4-1: USB disconnect, device number 3
[  102.386294][ T5915] usb 1-1: 0:2 : does not exist
[  102.392793][ T5915] usb 1-1: unit 5: unexpected type 0x0a
[  102.441192][ T5915] usb 1-1: USB disconnect, device number 3
[  102.463393][ T5888] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  102.626992][ T5888] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  102.638204][ T5888] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  102.649650][ T5888] usb 2-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[  102.658778][ T5888] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.672109][ T5888] usb 2-1: config 0 descriptor??
[  102.882750][ T6089] netlink: 44 bytes leftover after parsing attributes in process `syz.3.54'.
[  102.917682][ T6091] netlink: 'syz.2.55': attribute type 10 has an invalid length.
[  102.927627][ T6091] netlink: 40 bytes leftover after parsing attributes in process `syz.2.55'.
[  102.972769][ T6091] team0: Failed to send port change of device geneve0 via netlink (err -105)
[  102.994102][ T6091] team0: Failed to send options change via netlink (err -105)
[  103.001677][ T6091] team0: Port device geneve0 added
[  103.088688][ T5888] hid (null): nested delimiters
[  103.100420][ T6096] netlink: 44 bytes leftover after parsing attributes in process `syz.0.56'.
[  103.110268][ T5888] hid-led 0003:27B8:01ED.0002: nested delimiters
[  103.125071][ T5888] hid-led 0003:27B8:01ED.0002: item 0 1 2 10 parsing failed
[  103.133822][ T6096] netlink: 43 bytes leftover after parsing attributes in process `syz.0.56'.
[  103.136561][ T5888] hid-led 0003:27B8:01ED.0002: probe with driver hid-led failed with error -22
[  103.142645][ T6096] netlink: 'syz.0.56': attribute type 5 has an invalid length.
[  103.188162][ T6096] netlink: 43 bytes leftover after parsing attributes in process `syz.0.56'.
[  103.284797][ T6098] syzkaller0: entered allmulticast mode
[  103.294921][ T6085] /dev/rnullb0: Can't open blockdev
[  103.298162][ T6098] syzkaller0 (unregistering): left allmulticast mode
[  103.307111][ T5836] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  103.321639][ T5162] usb 2-1: USB disconnect, device number 3
[  103.494882][ T5836] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  103.515665][ T5836] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  103.540894][ T5836] usb 4-1: config 0 descriptor??
[  103.556032][ T5836] cp210x 4-1:0.0: cp210x converter detected
[  103.611097][ T6101] syzkaller1: entered promiscuous mode
[  103.622271][ T6101] syzkaller1: entered allmulticast mode
[  103.632176][ T6103] netlink: 'syz.2.60': attribute type 12 has an invalid length.
[  103.830048][ T6108] netlink: 'syz.2.63': attribute type 12 has an invalid length.
[  103.984472][ T5836] cp210x 4-1:0.0: failed to get vendor val 0x000e size 3: -32
[  104.024557][ T6115] netlink: 9 bytes leftover after parsing attributes in process `syz.0.65'.
[  104.025474][ T6114] trusted_key: syz.2.64 sent an empty control message without MSG_MORE.
[  104.048789][ T5836] usb 4-1: cp210x converter now attached to ttyUSB0
[  104.068612][ T6115] gretap0: entered promiscuous mode
[  104.095878][ T6115] netlink: 5 bytes leftover after parsing attributes in process `syz.0.65'.
[  104.134460][ T6115] 0{X功: renamed from gretap0
[  104.152008][ T6115] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  104.380197][ T5836] usb 4-1: USB disconnect, device number 4
[  104.426983][ T5836] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  104.502391][ T5836] cp210x 4-1:0.0: device disconnected
[  104.519417][ T6125] syzkaller0: entered promiscuous mode
[  104.580292][ T6125] syzkaller0 (unregistering): left promiscuous mode
[  104.797749][ T6139] UDF-fs: warning (device rnullb0): udf_load_vrs: No VRS found
[  104.805695][ T6139] UDF-fs: Scanning with blocksize 4096 failed
[  104.923365][ T5162] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  104.983335][  T847] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  105.087295][ T5162] usb 2-1: config 0 has no interfaces?
[  105.095635][ T5162] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  105.106536][ T5162] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  105.115037][ T5162] usb 2-1: SerialNumber: syz
[  105.122110][ T5162] usb 2-1: config 0 descriptor??
[  105.153421][  T847] usb 1-1: Using ep0 maxpacket: 16
[  105.160293][  T847] usb 1-1: config 8 has an invalid interface number: 223 but max is 0
[  105.169110][  T847] usb 1-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[  105.180298][  T847] usb 1-1: config 8 has no interface number 0
[  105.186867][  T847] usb 1-1: config 8 interface 223 altsetting 2 bulk endpoint 0xC has invalid maxpacket 32
[  105.201729][  T847] usb 1-1: config 8 interface 223 altsetting 2 endpoint 0x7 has invalid wMaxPacketSize 0
[  105.223138][  T847] usb 1-1: config 8 interface 223 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  105.250924][  T847] usb 1-1: config 8 interface 223 has no altsetting 0
[  105.268487][  T847] usb 1-1: New USB device found, idVendor=aeda, idProduct=7458, bcdDevice=2d.4d
[  105.277954][  T847] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  105.286112][  T847] usb 1-1: Product: syz
[  105.290415][  T847] usb 1-1: Manufacturer: syz
[  105.295132][  T847] usb 1-1: SerialNumber: syz
[  105.327727][ T6138] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  105.342272][ T5895] usb 2-1: USB disconnect, device number 4
[  105.552614][ T6148] =======================================================
[  105.552614][ T6148] WARNING: The mand mount option has been deprecated and
[  105.552614][ T6148]          and is ignored by this kernel. Remove the mand
[  105.552614][ T6148]          option from the mount to silence this warning.
[  105.552614][ T6148] =======================================================
[  105.573696][  T847] usb 1-1: USB disconnect, device number 4
[  105.640877][ T6152] netlink: 44 bytes leftover after parsing attributes in process `syz.3.79'.
[  105.831438][ T6156] netlink: 'syz.3.81': attribute type 5 has an invalid length.
[  105.972806][ T6160] netlink: 'syz.3.83': attribute type 12 has an invalid length.
[  106.009073][ T6162] syzkaller1: entered promiscuous mode
[  106.014817][ T6162] syzkaller1: entered allmulticast mode
[  106.094767][ T6164] netlink: 'syz.3.85': attribute type 12 has an invalid length.
[  106.346928][ T6176] gretap0: entered promiscuous mode
[  106.399916][ T6178] MTD: Attempt to mount non-MTD device "/dev/rnullb0"
[  106.416232][ T6178] cramfs: wrong magic
[  106.425819][ T6179] 0{X功: renamed from gretap0
[  106.491493][ T6179] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  106.582220][ T6183] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  106.715444][   T30] audit: type=1326 audit(1750648701.002:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6186 comm="syz.0.94" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f24de98e929 code=0x0
[  106.753594][ T5162] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  106.906066][ T5162] usb 4-1: Using ep0 maxpacket: 16
[  106.914473][ T5895] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  106.938770][ T5162] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  106.959265][ T5162] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  106.969887][ T5162] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  106.982923][ T5162] usb 4-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  106.992237][ T5162] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.008832][ T5162] usb 4-1: config 0 descriptor??
[  107.095916][ T5895] usb 2-1: too many configurations: 9, using maximum allowed: 8
[  107.110392][ T5895] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  107.119882][ T5895] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  107.134886][ T5895] usb 2-1: config 0 interface 0 has no altsetting 0
[  107.143043][ T5895] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  107.156995][ T5895] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  107.168420][ T5895] usb 2-1: config 0 interface 0 has no altsetting 0
[  107.177505][ T5895] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  107.187152][ T5895] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  107.198561][ T5895] usb 2-1: config 0 interface 0 has no altsetting 0
[  107.211018][ T5895] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  107.273274][ T5895] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  107.293172][ T5895] usb 2-1: config 0 interface 0 has no altsetting 0
[  107.301480][ T5895] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  107.311182][ T5895] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  107.322715][ T5895] usb 2-1: config 0 interface 0 has no altsetting 0
[  107.331075][ T5895] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  107.342718][ T5895] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  107.355616][ T5895] usb 2-1: config 0 interface 0 has no altsetting 0
[  107.363742][ T5895] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  107.372852][ T5895] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  107.384228][ T5895] usb 2-1: config 0 interface 0 has no altsetting 0
[  107.392231][ T5895] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  107.421473][ T5895] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  107.433030][ T5895] usb 2-1: config 0 interface 0 has no altsetting 0
[  107.466015][ T5162] shield 0003:0955:7214.0003: unknown main item tag 0x0
[  107.476118][ T5895] usb 2-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  107.485717][ T5162] shield 0003:0955:7214.0003: unknown main item tag 0x0
[  107.492749][ T5162] shield 0003:0955:7214.0003: unknown main item tag 0x0
[  107.500962][ T5895] usb 2-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  107.501196][ T6202] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  107.509798][ T5895] usb 2-1: Product: syz
[  107.509818][ T5895] usb 2-1: Manufacturer: syz
[  107.509834][ T5895] usb 2-1: SerialNumber: syz
[  107.511778][ T5162] shield 0003:0955:7214.0003: unknown main item tag 0x0
[  107.540849][ T5895] usb 2-1: config 0 descriptor??
[  107.548348][ T6203] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  107.555050][ T5162] shield 0003:0955:7214.0003: unknown main item tag 0x0
[  107.566181][ T5895] yurex 2-1:0.0: USB YUREX device now attached to Yurex #0
[  107.590013][ T5162] input: HID 0955:7214 Haptics as /devices/virtual/input/input8
[  107.705765][ T5162] shield 0003:0955:7214.0003: Registered Thunderstrike controller
[  107.718973][ T5162] shield 0003:0955:7214.0003: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.3-1/input0
[  107.792186][ T5162] usb 4-1: USB disconnect, device number 5
[  107.804667][ T5895] shield 0003:0955:7214.0003: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  107.834265][ T6185] syz.1.93 uses obsolete (PF_INET,SOCK_PACKET)
[  107.845747][ T5895] shield 0003:0955:7214.0003: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  107.879988][ T6185] NILFS (rnullb0): couldn't find nilfs on the device
[  107.892412][ T5895] shield 0003:0955:7214.0003: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  107.930373][ T5895] shield 0003:0955:7214.0003: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  108.118266][  T847] usb 2-1: USB disconnect, device number 5
[  108.139519][  T847] yurex 2-1:0.0: USB YUREX #0 now disconnected
[  108.242610][ T6216] syzkaller0: entered allmulticast mode
[  108.253052][ T6216] syzkaller0 (unregistering): left allmulticast mode
[  108.353205][ T5895] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  108.555789][ T5895] usb 1-1: config 0 has no interfaces?
[  108.564662][ T5895] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  108.586705][ T5895] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  108.607660][ T5895] usb 1-1: SerialNumber: syz
[  108.630631][ T5895] usb 1-1: config 0 descriptor??
[  108.764973][ T6223] __nla_validate_parse: 7 callbacks suppressed
[  108.764992][ T6223] netlink: 72 bytes leftover after parsing attributes in process `syz.1.107'.
[  108.878230][ T5162] usb 1-1: USB disconnect, device number 5
[  109.088278][ T6226] netlink: 'syz.3.108': attribute type 12 has an invalid length.
[  109.093425][ T5895] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  109.231565][ T6230] netlink: 'syz.3.110': attribute type 12 has an invalid length.
[  109.265549][ T5895] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[  109.297370][ T5895] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  109.329456][ T5895] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 1024, setting to 64
[  109.356305][ T6234] netlink: 20 bytes leftover after parsing attributes in process `syz.2.112'.
[  109.377763][ T5895] usb 2-1: New USB device found, idVendor=2040, idProduct=1605, bcdDevice= a.94
[  109.378886][ T6234] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  109.396375][ T5895] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.409422][ T5895] usb 2-1: config 0 descriptor??
[  109.425789][ T5895] em28xx 2-1:0.0: error: skipping audio endpoint 0x83, because it uses bulk transfers !
[  109.546761][ T6237] netlink: 932 bytes leftover after parsing attributes in process `syz.3.113'.
[  109.622379][ T6223] macvlan1: entered allmulticast mode
[  109.655710][ T5895] usb 2-1: USB disconnect, device number 6
[  109.791412][ T6248] netlink: 44 bytes leftover after parsing attributes in process `syz.2.118'.
[  109.800838][ T6248] netlink: 43 bytes leftover after parsing attributes in process `syz.2.118'.
[  109.811250][ T6248] netlink: 'syz.2.118': attribute type 5 has an invalid length.
[  109.820129][ T6248] netlink: 43 bytes leftover after parsing attributes in process `syz.2.118'.
[  109.886356][ T6250] Invalid source name
[  109.890531][ T6250] UBIFS error (pid: 6250): cannot open "./file0", error -22
[  110.002859][ T6254] netlink: 'syz.2.121': attribute type 12 has an invalid length.
[  110.072055][ T6256] netlink: 'syz.2.122': attribute type 12 has an invalid length.
[  110.191343][ T6260] netlink: 40 bytes leftover after parsing attributes in process `syz.2.124'.
[  110.406234][ T6263] syzkaller0: entered allmulticast mode
[  110.432772][ T6263] syzkaller0 (unregistering): left allmulticast mode
[  110.487791][ T6263] FAULT_INJECTION: forcing a failure.
[  110.487791][ T6263] name failslab, interval 1, probability 0, space 0, times 0
[  110.515556][ T6263] CPU: 1 UID: 0 PID: 6263 Comm: syz.0.125 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) 
[  110.515584][ T6263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  110.515596][ T6263] Call Trace:
[  110.515604][ T6263]  <TASK>
[  110.515612][ T6263]  dump_stack_lvl+0x189/0x250
[  110.515641][ T6263]  ? __pfx____ratelimit+0x10/0x10
[  110.515671][ T6263]  ? __pfx_dump_stack_lvl+0x10/0x10
[  110.515694][ T6263]  ? __pfx__printk+0x10/0x10
[  110.515721][ T6263]  ? __pfx___might_resched+0x10/0x10
[  110.515748][ T6263]  should_fail_ex+0x414/0x560
[  110.515778][ T6263]  should_failslab+0xa8/0x100
[  110.515806][ T6263]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  110.515831][ T6263]  ? __alloc_skb+0x112/0x2d0
[  110.515858][ T6263]  __alloc_skb+0x112/0x2d0
[  110.515896][ T6263]  alloc_uevent_skb+0x7d/0x230
[  110.515925][ T6263]  kobject_uevent_net_broadcast+0x184/0x560
[  110.515955][ T6263]  kobject_uevent_env+0x55b/0x8c0
[  110.515979][ T6263]  ? up_write+0x1c4/0x420
[  110.516009][ T6263]  __kobject_del+0xd2/0x300
[  110.516027][ T6263]  ? kobject_put+0x237/0x480
[  110.516050][ T6263]  kobject_put+0x243/0x480
[  110.516075][ T6263]  netdev_queue_update_kobjects+0x5db/0x6c0
[  110.516117][ T6263]  netdev_unregister_kobject+0x11f/0x450
[  110.516153][ T6263]  unregister_netdevice_many_notify+0x1d52/0x2320
[  110.516199][ T6263]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  110.516261][ T6263]  unregister_netdevice_queue+0x33c/0x380
[  110.516294][ T6263]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  110.516320][ T6263]  ? sysfs_remove_group+0x236/0x2c0
[  110.516342][ T6263]  ? br_dev_delete+0xda/0x100
[  110.516365][ T6263]  br_del_bridge+0xb6/0xf0
[  110.516386][ T6263]  br_ioctl_stub+0x6c1/0xc80
[  110.516409][ T6263]  ? trace_contention_end+0x39/0x120
[  110.516435][ T6263]  ? __pfx_br_ioctl_stub+0x10/0x10
[  110.516464][ T6263]  ? sock_ioctl+0x4b4/0x790
[  110.516498][ T6263]  ? __lock_acquire+0xab9/0xd20
[  110.516532][ T6263]  ? __pfx_br_ioctl_stub+0x10/0x10
[  110.516553][ T6263]  sock_ioctl+0x4d8/0x790
[  110.516583][ T6263]  ? __pfx_sock_ioctl+0x10/0x10
[  110.516611][ T6263]  ? __fget_files+0x2a/0x420
[  110.516637][ T6263]  ? __fget_files+0x3a0/0x420
[  110.516664][ T6263]  ? __fget_files+0x2a/0x420
[  110.516694][ T6263]  ? bpf_lsm_file_ioctl+0x9/0x20
[  110.516714][ T6263]  ? __pfx_sock_ioctl+0x10/0x10
[  110.516741][ T6263]  __se_sys_ioctl+0xfc/0x170
[  110.516767][ T6263]  do_syscall_64+0xfa/0x3b0
[  110.516785][ T6263]  ? lockdep_hardirqs_on+0x9c/0x150
[  110.516813][ T6263]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.516831][ T6263]  ? clear_bhb_loop+0x60/0xb0
[  110.516854][ T6263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.516881][ T6263] RIP: 0033:0x7f24de98e929
[  110.516898][ T6263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.516913][ T6263] RSP: 002b:00007f24df84b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  110.516933][ T6263] RAX: ffffffffffffffda RBX: 00007f24debb5fa0 RCX: 00007f24de98e929
[  110.516947][ T6263] RDX: 0000200000000040 RSI: 00000000000089a1 RDI: 0000000000000004
[  110.516958][ T6263] RBP: 00007f24df84b090 R08: 0000000000000000 R09: 0000000000000000
[  110.516969][ T6263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  110.516980][ T6263] R13: 0000000000000000 R14: 00007f24debb5fa0 R15: 00007ffe81c5e0b8
[  110.517010][ T6263]  </TASK>
[  111.004301][ T6270] syzkaller1: entered promiscuous mode
[  111.010199][ T6270] syzkaller1: entered allmulticast mode
[  111.031551][ T6278] netlink: 9 bytes leftover after parsing attributes in process `syz.3.129'.
[  111.078807][ T6278] gretap0: entered promiscuous mode
[  111.085615][ T6281] netlink: 5 bytes leftover after parsing attributes in process `syz.3.129'.
[  111.112447][ T6281] 0{X功: renamed from gretap0
[  111.120178][ T6281] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  111.486292][ T6291] netlink: 'syz.3.134': attribute type 12 has an invalid length.
[  111.556975][ T6292] /dev/rnullb0: Can't open blockdev
[  111.575782][ T6296] netlink: 20 bytes leftover after parsing attributes in process `syz.1.136'.
[  111.610877][ T6296] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  111.883184][ T5915] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  112.043189][  T847] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  112.074023][ T5915] usb 4-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[  112.087559][ T5915] usb 4-1: config 2 has 1 interface, different from the descriptor's value: 4
[  112.122260][ T5915] usb 4-1: New USB device found, idVendor=0403, idProduct=da71, bcdDevice= 6.1f
[  112.131982][ T5915] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.143240][ T5915] usb 4-1: Product: syz
[  112.147476][ T5915] usb 4-1: Manufacturer: syz
[  112.152107][ T5915] usb 4-1: SerialNumber: syz
[  112.173287][ T5895] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  112.196674][  T847] usb 3-1: config 0 has no interfaces?
[  112.203657][  T847] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  112.212804][  T847] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  112.221484][  T847] usb 3-1: SerialNumber: syz
[  112.234302][  T847] usb 3-1: config 0 descriptor??
[  112.348445][ T5895] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  112.359734][ T5895] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  112.370131][ T5895] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.384305][ T5895] usb 2-1: config 0 descriptor??
[  112.417911][ T5915] usb 4-1: NDI device with a latency value of 1
[  112.437169][ T5915] ftdi_sio 4-1:2.0: FTDI USB Serial Device converter detected
[  112.479007][  T847] usb 3-1: USB disconnect, device number 3
[  112.500805][ T5915] ftdi_sio ttyUSB0: unknown device type: 0x61f
[  112.526812][ T5915] usb 4-1: USB disconnect, device number 6
[  112.549207][ T5915] ftdi_sio 4-1:2.0: device disconnected
[  112.802464][ T5895] keytouch 0003:0926:3333.0004: fixing up Keytouch IEC report descriptor
[  112.819406][ T5895] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.0004/input/input9
[  112.935418][ T5895] keytouch 0003:0926:3333.0004: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0
[  113.196836][ T6320] syzkaller1: entered promiscuous mode
[  113.202698][ T6320] syzkaller1: entered allmulticast mode
[  113.367973][ T5915] usb 2-1: USB disconnect, device number 7
[  113.451930][ T6327] netlink: 'syz.0.146': attribute type 12 has an invalid length.
[  113.661375][ T6336] netlink: 'syz.2.150': attribute type 12 has an invalid length.
[  113.779873][ T6342] netlink: 'syz.3.151': attribute type 12 has an invalid length.
[  113.862653][ T6347] syzkaller1: entered promiscuous mode
[  113.882502][ T6347] syzkaller1: entered allmulticast mode
[  114.237648][ T6361] syzkaller1: entered promiscuous mode
[  114.247700][ T6361] syzkaller1: entered allmulticast mode
[  114.578598][ T6376] __nla_validate_parse: 1 callbacks suppressed
[  114.578636][ T6376] netlink: 44 bytes leftover after parsing attributes in process `syz.1.166'.
[  114.605562][ T6380] syzkaller1: entered promiscuous mode
[  114.621370][ T6380] syzkaller1: entered allmulticast mode
[  114.690451][ T6384] tipc: Started in network mode
[  114.699172][ T6384] tipc: Node identity ac14140f, cluster identity 4711
[  114.708165][ T6384] tipc: New replicast peer: 255.255.255.255
[  114.715660][ T6384] tipc: Enabled bearer <udp:syz2>, priority 10
[  114.956839][ T6395] netlink: 20 bytes leftover after parsing attributes in process `syz.1.171'.
[  114.961253][ T6393] fuse: Bad value for 'user_id'
[  114.978161][ T6393] fuse: Bad value for 'user_id'
[  114.983473][ T6395] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  114.989724][ T6393] netlink: 'syz.3.170': attribute type 12 has an invalid length.
[  115.217951][ T6401] netlink: 'syz.1.173': attribute type 12 has an invalid length.
[  115.452795][ T6404] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  115.576739][ T6409] kvm: pic: level sensitive irq not supported
[  115.576991][ T6409] kvm: pic: non byte read
[  115.615170][ T6409] kvm: pic: level sensitive irq not supported
[  115.615301][ T6409] kvm: pic: non byte read
[  115.703456][ T6409] kvm: pic: level sensitive irq not supported
[  115.703540][ T6409] kvm: pic: non byte read
[  115.724271][ T6409] kvm: pic: level sensitive irq not supported
[  115.724352][ T6409] kvm: pic: non byte read
[  115.755929][ T6409] kvm: pic: level sensitive irq not supported
[  115.756014][ T6409] kvm: pic: non byte read
[  115.767972][ T6409] kvm: pic: level sensitive irq not supported
[  115.768088][ T6409] kvm: pic: non byte read
[  115.779937][ T6409] kvm: pic: level sensitive irq not supported
[  115.780010][ T6409] kvm: pic: non byte read
[  115.791209][ T6409] kvm: pic: level sensitive irq not supported
[  115.791304][ T6409] kvm: pic: non byte read
[  115.818233][ T6409] kvm: pic: level sensitive irq not supported
[  115.818314][ T6409] kvm: pic: non byte read
[  115.836670][    T9] tipc: Node number set to 2886997007
[  115.861773][ T6409] kvm: pic: level sensitive irq not supported
[  115.861918][ T6409] kvm: pic: non byte read
[  115.929858][ T6419] netlink: 'syz.3.180': attribute type 12 has an invalid length.
[  116.080713][ T6423] process 'syz.3.182' launched './file2' with NULL argv: empty string added
[  116.130825][ T6423] FAT-fs (rnullb0): bogus number of reserved sectors
[  116.158105][ T6423] FAT-fs (rnullb0): Can't find a valid FAT filesystem
[  116.359540][ T6434] syzkaller1: entered promiscuous mode
[  116.388092][ T6434] syzkaller1: entered allmulticast mode
[  116.638241][ T5915] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  116.661604][ T6446] netlink: 20 bytes leftover after parsing attributes in process `syz.3.191'.
[  116.672701][ T6446] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  116.745633][ T6448] XFS (rnullb0): Invalid superblock magic number
[  116.804239][ T5915] usb 3-1: Using ep0 maxpacket: 8
[  116.813889][ T5915] usb 3-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  116.823044][ T5915] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  116.831582][ T5915] usb 3-1: Product: syz
[  116.836418][ T5915] usb 3-1: Manufacturer: syz
[  116.842291][ T5915] usb 3-1: SerialNumber: syz
[  116.873388][ T5895] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  116.883734][ T5915] usb 3-1: config 0 descriptor??
[  116.898914][ T5915] gspca_main: se401-2.14.0 probing 047d:5003
[  117.033238][ T5895] usb 1-1: Using ep0 maxpacket: 16
[  117.047183][ T5895] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  117.069213][ T5895] usb 1-1: New USB device found, idVendor=07d0, idProduct=4101, bcdDevice=ec.5c
[  117.080441][ T5895] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  117.088995][ T5895] usb 1-1: Product: syz
[  117.099516][ T5895] usb 1-1: Manufacturer: syz
[  117.104583][ T5895] usb 1-1: SerialNumber: syz
[  117.112381][ T5895] usb 1-1: config 0 descriptor??
[  117.121893][ T5895] cypress_m8 1-1:0.0: Nokia CA-42 V2 Adapter converter detected
[  117.137914][ T5895] nokiaca42v2 ttyUSB0: required endpoint is missing
[  117.307776][ T5915] gspca_se401: Bayer format not supported!
[  117.329091][ T6443] netlink: 16 bytes leftover after parsing attributes in process `syz.0.190'.
[  117.351397][ T5895] usb 1-1: USB disconnect, device number 6
[  117.376102][ T5895] cypress_m8 1-1:0.0: device disconnected
[  117.518054][ T6437] overlay: Unknown parameter 'rootcontext'
[  117.536364][ T5915] usb 3-1: USB disconnect, device number 4
[  117.651304][ T6475] netlink: 44 bytes leftover after parsing attributes in process `syz.1.201'.
[  117.661697][ T6475] netlink: 43 bytes leftover after parsing attributes in process `syz.1.201'.
[  117.671813][ T6475] netlink: 'syz.1.201': attribute type 5 has an invalid length.
[  117.679909][ T6475] netlink: 43 bytes leftover after parsing attributes in process `syz.1.201'.
[  118.249579][ T6494] syzkaller1: entered promiscuous mode
[  118.255812][ T6494] syzkaller1: entered allmulticast mode
[  118.316297][ T6500] syzkaller1: entered promiscuous mode
[  118.317357][ T6502] syz.3.212: attempt to access beyond end of device
[  118.317357][ T6502] loop3: rw=0, sector=0, nr_sectors = 1 limit=0
[  118.321948][ T6500] syzkaller1: entered allmulticast mode
[  118.444513][ T6504] netlink: 20 bytes leftover after parsing attributes in process `syz.2.214'.
[  118.457373][ T6506] syzkaller0: entered allmulticast mode
[  118.457428][ T6504] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  118.481477][ T6506] syzkaller0 (unregistering): left allmulticast mode
[  118.496301][ T5915] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  118.547831][ T6508] MTD: Attempt to mount non-MTD device "/dev/nbd1"
[  118.564102][ T6506] FAULT_INJECTION: forcing a failure.
[  118.564102][ T6506] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  118.578562][ T6510] netlink: 44 bytes leftover after parsing attributes in process `syz.2.216'.
[  118.581436][ T6508] cramfs: wrong magic
[  118.588098][ T6506] CPU: 0 UID: 0 PID: 6506 Comm: syz.3.213 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) 
[  118.588131][ T6506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  118.588150][ T6506] Call Trace:
[  118.588160][ T6506]  <TASK>
[  118.588169][ T6506]  dump_stack_lvl+0x189/0x250
[  118.588215][ T6506]  ? __pfx____ratelimit+0x10/0x10
[  118.588252][ T6506]  ? __pfx_dump_stack_lvl+0x10/0x10
[  118.588278][ T6506]  ? __pfx__printk+0x10/0x10
[  118.588320][ T6506]  should_fail_ex+0x414/0x560
[  118.588361][ T6506]  _copy_to_user+0x31/0xb0
[  118.588387][ T6506]  simple_read_from_buffer+0xe1/0x170
[  118.588425][ T6506]  proc_fail_nth_read+0x1df/0x250
[  118.588452][ T6506]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  118.588478][ T6506]  ? rw_verify_area+0x258/0x650
[  118.588505][ T6506]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  118.588529][ T6506]  vfs_read+0x1fd/0x980
[  118.588565][ T6506]  ? __pfx___mutex_lock+0x10/0x10
[  118.588587][ T6506]  ? __pfx_vfs_read+0x10/0x10
[  118.588617][ T6506]  ? __fget_files+0x2a/0x420
[  118.588657][ T6506]  ? __fget_files+0x3a0/0x420
[  118.588687][ T6506]  ? __fget_files+0x2a/0x420
[  118.588731][ T6506]  ksys_read+0x145/0x250
[  118.588764][ T6506]  ? __pfx_ksys_read+0x10/0x10
[  118.588788][ T6506]  ? rcu_is_watching+0x15/0xb0
[  118.588821][ T6506]  ? do_syscall_64+0xbe/0x3b0
[  118.588847][ T6506]  do_syscall_64+0xfa/0x3b0
[  118.588867][ T6506]  ? lockdep_hardirqs_on+0x9c/0x150
[  118.588912][ T6506]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.588934][ T6506]  ? clear_bhb_loop+0x60/0xb0
[  118.588961][ T6506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.588982][ T6506] RIP: 0033:0x7f9a08f8d33c
[  118.589009][ T6506] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  118.589028][ T6506] RSP: 002b:00007f9a09e55030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  118.589055][ T6506] RAX: ffffffffffffffda RBX: 00007f9a091b5fa0 RCX: 00007f9a08f8d33c
[  118.589071][ T6506] RDX: 000000000000000f RSI: 00007f9a09e550a0 RDI: 0000000000000005
[  118.589086][ T6506] RBP: 00007f9a09e55090 R08: 0000000000000000 R09: 0000000000000000
[  118.589099][ T6506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  118.589112][ T6506] R13: 0000000000000000 R14: 00007f9a091b5fa0 R15: 00007ffccd9aaec8
[  118.589147][ T6506]  </TASK>
[  118.684449][ T5915] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  118.852625][ T5915] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  118.862925][ T5915] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.874516][ T5915] usb 1-1: config 0 descriptor??
[  119.289835][ T5915] keytouch 0003:0926:3333.0005: fixing up Keytouch IEC report descriptor
[  119.324349][ T5915] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0926:3333.0005/input/input10
[  119.445000][ T5915] keytouch 0003:0926:3333.0005: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0
[  119.454597][ T6518] fuse: Unknown parameter 'g9嬻揎N]r00000000000000000000'
[  119.816256][ T5836] usb 1-1: USB disconnect, device number 7
[  120.316848][ T6536] netlink: 44 bytes leftover after parsing attributes in process `syz.3.226'.
[  120.326641][ T6536] netlink: 43 bytes leftover after parsing attributes in process `syz.3.226'.
[  120.336466][ T6536] netlink: 'syz.3.226': attribute type 5 has an invalid length.
[  120.366192][ T6536] netlink: 43 bytes leftover after parsing attributes in process `syz.3.226'.
[  120.458353][ T6541] netlink: 9 bytes leftover after parsing attributes in process `syz.1.227'.
[  120.486630][ T6541] netlink: 5 bytes leftover after parsing attributes in process `syz.1.227'.
[  120.509985][ T6541] 1{X功: renamed from 
30{X功
[  120.547805][ T6541] A link change request failed with some changes committed already. Interface 
31{X功 may have been left with an inconsistent configuration, please check.
[  120.719011][ T6547] ntfs3(rnullb0): Primary boot signature is not NTFS.
[  120.758291][ T6547] ntfs3(rnullb0): Alternative boot signature is not NTFS.
[  121.183553][ T5915] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  121.240911][ T6571] netlink: 44 bytes leftover after parsing attributes in process `syz.3.241'.
[  121.251531][ T6571] netlink: 43 bytes leftover after parsing attributes in process `syz.3.241'.
[  121.261397][ T6571] netlink: 'syz.3.241': attribute type 5 has an invalid length.
[  121.270203][ T6571] netlink: 43 bytes leftover after parsing attributes in process `syz.3.241'.
[  121.339141][ T5915] usb 3-1: config 0 has no interfaces?
[  121.346221][ T5915] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  121.369909][ T5915] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  121.401204][ T5915] usb 3-1: SerialNumber: syz
[  121.420646][ T5915] usb 3-1: config 0 descriptor??
[  121.474593][ T6576] syzkaller1: entered promiscuous mode
[  121.483036][ T6576] syzkaller1: entered allmulticast mode
[  121.573949][ T6580] netlink: 9 bytes leftover after parsing attributes in process `syz.3.245'.
[  121.589411][ T6580] netlink: 5 bytes leftover after parsing attributes in process `syz.3.245'.
[  121.599858][ T6580] 1{X功: renamed from 
30{X功
[  121.611857][ T6580] A link change request failed with some changes committed already. Interface 
31{X功 may have been left with an inconsistent configuration, please check.
[  121.649629][ T5915] usb 3-1: USB disconnect, device number 5
[  121.662358][ T6583] netlink: 'syz.0.246': attribute type 12 has an invalid length.
[  121.817963][ T6588] exFAT-fs (rnullb0): invalid boot record signature
[  121.824898][ T6588] exFAT-fs (rnullb0): failed to read boot sector
[  121.831435][ T6588] exFAT-fs (rnullb0): failed to recognize exfat type
[  122.352865][ T6612] qnx4: no qnx4 filesystem (no root dir).
[  122.629653][ T6623] netlink: 'syz.2.263': attribute type 5 has an invalid length.
[  122.709891][ T6626] UDF-fs: warning (device rnullb0): udf_load_vrs: No VRS found
[  122.719518][ T6626] UDF-fs: Scanning with blocksize 4096 failed
[  122.798093][ T6628] syzkaller1: entered promiscuous mode
[  122.824151][ T6628] syzkaller1: entered allmulticast mode
[  122.840325][ T6632] exFAT-fs (rnullb0): invalid boot record signature
[  122.844467][ T6630] netlink: 'syz.2.266': attribute type 12 has an invalid length.
[  122.847252][ T6632] exFAT-fs (rnullb0): failed to read boot sector
[  122.861394][ T6632] exFAT-fs (rnullb0): failed to recognize exfat type
[  122.962622][ T6634] 1{X功: renamed from 
30{X功
[  122.979156][ T6634] A link change request failed with some changes committed already. Interface 
31{X功 may have been left with an inconsistent configuration, please check.
[  123.104019][ T5162] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  123.203543][ T6643] exFAT-fs (rnullb0): invalid boot record signature
[  123.210328][ T6643] exFAT-fs (rnullb0): failed to read boot sector
[  123.219579][ T6643] exFAT-fs (rnullb0): failed to recognize exfat type
[  123.283343][ T5162] usb 1-1: Using ep0 maxpacket: 8
[  123.292500][ T5895] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  123.312389][ T5162] usb 1-1: unable to get BOS descriptor or descriptor too short
[  123.338314][ T5162] usb 1-1: unable to read config index 0 descriptor/start: -71
[  123.352461][ T5162] usb 1-1: can't read configurations, error -71
[  123.443734][ T5895] usb 4-1: Using ep0 maxpacket: 32
[  123.455086][ T5895] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  123.471201][ T5895] usb 4-1: New USB device found, idVendor=044f, idProduct=b304, bcdDevice= 0.00
[  123.481210][ T5895] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  123.481880][ T6650] tmpfs: Bad value for 'mpol'
[  123.503268][ T5895] usb 4-1: config 0 descriptor??
[  123.755498][  T847] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  123.883450][ T5900] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  123.916821][  T847] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  123.938731][  T847] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  123.953478][  T847] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  123.974478][  T847] usb 2-1: config 0 descriptor??
[  124.048316][ T5900] usb 3-1: config 0 has no interfaces?
[  124.065916][ T5900] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  124.091317][ T5900] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  124.112692][ T5900] usb 3-1: SerialNumber: syz
[  124.131458][ T6636] netlink: 'syz.3.269': attribute type 12 has an invalid length.
[  124.145637][ T5900] usb 3-1: config 0 descriptor??
[  124.154088][ T5895] usbhid 4-1:0.0: can't add hid device: -71
[  124.160269][ T5895] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  124.190211][ T5895] usb 4-1: USB disconnect, device number 7
[  124.309261][ T6665] UDF-fs: warning (device rnullb0): udf_load_vrs: No VRS found
[  124.317823][ T6665] UDF-fs: Scanning with blocksize 4096 failed
[  124.395374][ T5162] usb 3-1: USB disconnect, device number 6
[  124.416006][  T847] keytouch 0003:0926:3333.0006: fixing up Keytouch IEC report descriptor
[  124.470495][  T847] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.0006/input/input11
[  124.627763][  T847] keytouch 0003:0926:3333.0006: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0
[  124.933450][    T9] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  124.948546][ T5162] usb 2-1: USB disconnect, device number 8
[  125.031138][ T6687] netlink: 'syz.2.286': attribute type 12 has an invalid length.
[  125.143251][    T9] usb 1-1: Using ep0 maxpacket: 8
[  125.157943][    T9] usb 1-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a
[  125.177918][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.178419][ T6689] syzkaller0: entered promiscuous mode
[  125.197553][ T6689] syzkaller0 (unregistering): left promiscuous mode
[  125.198468][    T9] usb 1-1: Product: syz
[  125.212408][    T9] usb 1-1: Manufacturer: syz
[  125.219801][    T9] usb 1-1: SerialNumber: syz
[  125.231324][    T9] usb 1-1: config 0 descriptor??
[  125.245803][    T9] gspca_main: sq930x-2.14.0 probing 2770:930c
[  125.381842][ T6694] __nla_validate_parse: 5 callbacks suppressed
[  125.381865][ T6694] netlink: 9 bytes leftover after parsing attributes in process `syz.2.288'.
[  125.410033][ T6694] netlink: 5 bytes leftover after parsing attributes in process `syz.2.288'.
[  125.419740][ T6694] 0{X功: renamed from 
31{X功
[  125.427622][ T6694] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  125.768262][ T6675] syzkaller1: entered promiscuous mode
[  125.782295][ T6675] syzkaller1: entered allmulticast mode
[  125.877831][    T9] gspca_sq930x: ucbus_write failed -71
[  126.123514][    T9] gspca_sq930x: Sensor ov9630 not yet treated
[  126.145474][    T9] sq930x 1-1:0.0: probe with driver sq930x failed with error -22
[  126.170651][    T9] usb 1-1: USB disconnect, device number 10
[  126.272671][ T6730] syzkaller0: entered promiscuous mode
[  126.286786][ T6730] syzkaller0 (unregistering): left promiscuous mode
[  126.646433][ T6745] netlink: 12 bytes leftover after parsing attributes in process `syz.0.301'.
[  126.713245][ T5162] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  126.736859][ T5900] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  126.781256][ T6753] netlink: 'syz.0.303': attribute type 12 has an invalid length.
[  126.896500][ T5162] usb 2-1: config 0 has no interfaces?
[  126.906633][ T5162] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  126.917517][ T5162] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  126.929594][ T5900] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  126.941750][ T5162] usb 2-1: SerialNumber: syz
[  126.947252][ T5900] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  126.959728][ T5162] usb 2-1: config 0 descriptor??
[  126.964911][ T5900] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.995146][ T5900] usb 3-1: config 0 descriptor??
[  127.073224][ T5895] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  127.190344][    T9] usb 2-1: USB disconnect, device number 9
[  127.229683][ T5895] usb 4-1: New USB device found, idVendor=6189, idProduct=182d, bcdDevice= 1.73
[  127.240363][ T5895] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.248535][ T5895] usb 4-1: Product: syz
[  127.252782][ T5895] usb 4-1: Manufacturer: syz
[  127.259660][ T5895] usb 4-1: SerialNumber: syz
[  127.269650][ T5895] usb 4-1: config 0 descriptor??
[  127.414069][ T5900] keytouch 0003:0926:3333.0007: fixing up Keytouch IEC report descriptor
[  127.429422][ T5900] input: HID 0926:3333 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:0926:3333.0007/input/input12
[  127.528631][ T5900] keytouch 0003:0926:3333.0007: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.2-1/input0
[  127.681175][ T5895] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  127.734588][ T5895] asix 4-1:0.0: probe with driver asix failed with error -71
[  127.759112][ T5895] usb 4-1: USB disconnect, device number 8
[  127.882745][ T6770] syzkaller0: entered allmulticast mode
[  127.901543][ T6770] syzkaller0 (unregistering): left allmulticast mode
[  127.971964][ T5888] usb 3-1: USB disconnect, device number 7
[  128.147324][ T6778] netlink: 20 bytes leftover after parsing attributes in process `syz.1.313'.
[  128.156944][ T6778] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  128.279946][ T6782] netlink: 'syz.1.314': attribute type 12 has an invalid length.
[  128.386574][ T6784] netlink: 44 bytes leftover after parsing attributes in process `syz.3.315'.
[  128.455638][ T6787] netlink: 44 bytes leftover after parsing attributes in process `syz.0.316'.
[  128.464789][ T6787] netlink: 43 bytes leftover after parsing attributes in process `syz.0.316'.
[  128.475384][ T6787] netlink: 'syz.0.316': attribute type 5 has an invalid length.
[  128.484079][ T6787] netlink: 43 bytes leftover after parsing attributes in process `syz.0.316'.
[  128.647744][ T6789] syzkaller1: entered promiscuous mode
[  128.659577][ T6791] MTD: Attempt to mount non-MTD device "/dev/rnullb0"
[  128.667731][ T6789] syzkaller1: entered allmulticast mode
[  128.689406][ T6791] VFS: Can't find a romfs filesystem on dev rnullb0.
[  128.689406][ T6791] 
[  128.892134][ T6800] syzkaller0: entered allmulticast mode
[  128.984842][ T6800] syzkaller0 (unregistering): left allmulticast mode
[  129.448741][ T6826] binder: 6823:6826 ioctl c0306201 200000000640 returned -22
[  129.466932][ T6822] syzkaller1: entered promiscuous mode
[  129.474063][ T6822] syzkaller1: entered allmulticast mode
[  129.575463][ T5895] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  129.716070][ T6835] netlink: 44 bytes leftover after parsing attributes in process `syz.1.334'.
[  129.726219][ T6835] netlink: 43 bytes leftover after parsing attributes in process `syz.1.334'.
[  129.736250][ T6835] netlink: 'syz.1.334': attribute type 5 has an invalid length.
[  129.744214][ T5895] usb 1-1: Using ep0 maxpacket: 16
[  129.755639][ T5895] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  129.767481][ T5895] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  129.789949][ T5895] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  129.799255][ T5895] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  129.807426][ T5895] usb 1-1: Product: syz
[  129.811638][ T5895] usb 1-1: Manufacturer: syz
[  129.822390][ T5895] usb 1-1: SerialNumber: syz
[  129.846111][ T5895] usb 1-1: config 0 descriptor??
[  129.857213][ T5895] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  129.870468][ T5895] em28xx 1-1:0.0: Audio interface 0 found (Vendor Class)
[  129.942808][ T6839] syzkaller0: entered allmulticast mode
[  129.954253][ T6839] syzkaller0 (unregistering): left allmulticast mode
[  130.006931][ T6841] netlink: 'syz.2.337': attribute type 12 has an invalid length.
[  130.130549][ T6845] 0{X功: renamed from 
31{X功
[  130.139799][ T6845] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  130.313564][ T5895] em28xx 1-1:0.0: unknown em28xx chip ID (0)
[  130.325688][ T5895] em28xx 1-1:0.0: Config register raw data: 0xfffffffb
[  130.352413][ T6851] syzkaller1: entered promiscuous mode
[  130.356798][ T5895] em28xx 1-1:0.0: AC97 chip type couldn't be determined
[  130.372490][ T6851] syzkaller1: entered allmulticast mode
[  130.383176][ T5895] em28xx 1-1:0.0: No AC97 audio processor
[  130.434160][ T5895] usb 1-1: USB disconnect, device number 11
[  130.464726][ T5895] em28xx 1-1:0.0: Disconnecting em28xx
[  130.479535][ T5895] em28xx 1-1:0.0: Freeing device
[  130.652412][ T6862] syzkaller0: entered allmulticast mode
[  130.659041][ T6862] syzkaller0: entered promiscuous mode
[  130.665742][ T6860] syzkaller0: left promiscuous mode
[  130.672149][ T6860] syzkaller0: left allmulticast mode
[  130.763909][ T6867] syzkaller1: entered promiscuous mode
[  130.769635][ T6867] syzkaller1: entered allmulticast mode
[  130.781980][  T847] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  130.929791][ T6874] __nla_validate_parse: 3 callbacks suppressed
[  130.929811][ T6874] netlink: 44 bytes leftover after parsing attributes in process `syz.1.353'.
[  130.943957][  T847] usb 3-1: Using ep0 maxpacket: 32
[  130.947003][ T6874] netlink: 43 bytes leftover after parsing attributes in process `syz.1.353'.
[  130.954890][  T847] usb 3-1: config 0 has an invalid interface number: 85 but max is 0
[  130.963281][ T6874] netlink: 'syz.1.353': attribute type 5 has an invalid length.
[  130.973523][  T847] usb 3-1: config 0 has no interface number 0
[  130.981222][ T6874] netlink: 43 bytes leftover after parsing attributes in process `syz.1.353'.
[  130.991078][  T847] usb 3-1: config 0 interface 85 has no altsetting 0
[  131.006993][  T847] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  131.017253][  T847] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  131.029564][  T847] usb 3-1: Product: syz
[  131.034419][  T847] usb 3-1: Manufacturer: syz
[  131.049729][  T847] usb 3-1: SerialNumber: syz
[  131.060912][  T847] usb 3-1: config 0 descriptor??
[  131.085898][  T847] appletouch 3-1:0.85: Could not find int-in endpoint
[  131.102818][  T847] appletouch 3-1:0.85: probe with driver appletouch failed with error -5
[  131.123814][  T847] usbhid 3-1:0.85: couldn't find an input interrupt endpoint
[  131.281999][ T6859] qnx4: no qnx4 filesystem (no root dir).
[  131.294550][ T6883] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  131.307340][ T6884] qnx4: no qnx4 filesystem (no root dir).
[  131.340985][ T6883] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  131.368195][ T5900] usb 3-1: USB disconnect, device number 8
[  131.602394][ T6886] syzkaller0: entered allmulticast mode
[  131.609353][ T6886] syzkaller0: entered promiscuous mode
[  131.615588][ T6885] syzkaller0: left promiscuous mode
[  131.622685][ T6885] syzkaller0: left allmulticast mode
[  131.687022][ T6888] netlink: 20 bytes leftover after parsing attributes in process `syz.0.358'.
[  131.697115][ T6888] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  131.784544][ T6890] netlink: 'syz.1.359': attribute type 12 has an invalid length.
[  131.864104][ T6896] capability: warning: `syz.0.361' uses deprecated v2 capabilities in a way that may be insecure
[  131.870005][ T6894] netlink: 9 bytes leftover after parsing attributes in process `syz.1.362'.
[  131.879602][ T6896] [U] 
[  131.886863][ T6896] [U] K{�
[  131.889932][ T6896] [U] 鋞 �1��聤狥烨膄藠頯G蔎鐦躦鲦楟萶振/黰C�
[  131.890826][ T6894] netlink: 5 bytes leftover after parsing attributes in process `syz.1.362'.
[  131.896908][ T6896] [U] t炟�/,潂埬湱媕��蕔8钍�'o1徿"�7-顐JQ�K�猴q�5c%"�H12枽Y搫墳�蔢蚡垈�杓`+雏(封�!(辂閦'鄑Xln�I甮舑枲包莪穚鍉�7�!懻�"�惊(�5圤b囃僇�
[  131.896931][ T6896] [U] 眐\&梷6�6淴頗X��舻勌�.`竌�$�40|隙縼9傍蕤�蟄傭4嶔洚Vbz灭}蘷訫擳簬鞶燒桅r�4��
[  131.896962][ T6896] [U] ".h6"謐銍[泬J�4缲I�n[Z(晞C|T隴z{佲3焎=花x铘炿咁4遷�)\T慩J�廠H{q;旃鰐郧+嫤鱣龛�甦�.藗�>y瀽鏖wUh刦N棊澢hl]S�2娗賊g%奜�&z)�饸'╬ul俖<�	⒇皦虍藻`冶T�窿溞塔;_�"(憉{7j溈2X �/�'葙c烟鮅憨老H�c澱碁V�=崙Ai�%w糆s� R殶j婎渻�攇瞒r凉怼hI
槩渁镬6-鶧忷Vㄡ i"n妯 Asc~4联�8c�*璒O5/��J殈骇梫K+墝3枨Y)幑M案鎣短yq娼�DTr�
Otpem%f资ej虯5�訲_-X~燸aa蹅驑絨��
[  131.897034][ T6896] [U] 	+亀塆?]Ｓ'a:	悔)�
矬檽' B>t/欦<'鑅�'柤h�.+]e�.�-煽���%麒>2`禴U�8F.�6づ3��+薃韭劙g3觩麦6:峖0缽t殍v�'E鮰紑YC塶�䌷烯辬鑀j�;鎆嗞赳麘8!\鶇窤厥�2粒$鸬櫬�wi.顽#娙/Bai�伳`疳4j掫d�y@�z匋gW�5丝B�蒂湢N髖"vI2
[  131.897059][ T6896] [U] 鬞K5竧琘J玄�9��c�$br烲鶱ul饵9w三蛗�G�"蕛�%曲蛾C澃逗q钯
 熐3嬈qN^HP*杰$	�.�7y颖�2�
[  131.897077][ T6896] [U] �?仼�h*倭��3頋7荛嵕^#Q�"0~�傪(閛颴L宐�,'v钣=嬢隒蘏珔扜係掇0曋倠賎槢炠嚐�=1(�罹欦p#�2DO*蓛
[  131.897103][ T6896] [U] ﹕箵g��捕摌Gu性d-{笝�|&搹疅燅�2�汱辌_!`ㄍoz芝冻%>阹穸�w飮龓Ss翲"A4�O.歒氽鋸凴T远孊赱+/<<R廈伿漉|肖e帪眼爾V96#�亭軎j篣�%
s851儛�s怭报\?q獆L彺QX�0翶�1or纱2〗|贮d諪�炕鶒谒2迶枿�0�錒晑C[/せ摕px^艰o
[  131.899534][ T6896] [U] 重浄��(J判洉埸xz�;溄庇�貪_够翟*3�3呥5竆儀m弛U崏AK!aQ`咚;F饡岻+中VUH屦耺�j炒品�踆腸z嫾�)_鐭�	魬�&�觥�醓莤to容阓� �:�庾%嗖P�兹C霾倅�+_淉鹽U飉槂偏C�!KJ�7羞g=b�
[  132.055845][ T6896] [U] 俳�F�%�XA俾l�2r*g岒VW$�黬	鉇槢F哆澐+9蛣Vi褐椉k倬�1}_┾
幞%胷6剷(]摝/煻鴲艡Y芎寝h悚军�r grn/塬�#!阣冫��%捋薉-{�$U扆T布�$:mtr訣嶤1V塂~钊];[標谛鱯q�瘻�(祀e,X�8�"�
骛G燏�2@T8灳�騼囵�鄑8.Rc+腀岁p噓�
p攭级C眹�'鍎yL�-Ss1E?�7覱嚙靆]麦c斺�H]kr]Rkq軉濜荩OTc羝x定�4橬�	诚&濁趮娪@�:m7邁�+擶*哿杧M>>棥{q②�
_舱滾X8蔝勄仡{餤稠鴲)��7?藃R;�c遰爃撞冢�花�1�>)㎝膬鈮蟭Р�(烨a蠞剗9汾ャJ*M褱ツ～'L梗q	�DW��=�絴q�	厦啓W;5尜沤�!馾B竫`椐�/髀E乣痞M���"鋅
[  132.102855][ T6896] [U] {;�酯沦榑坥2)�o疀.2蠾2瓴y鉿_  HP媳淪狣瓖:]倇�┰萱杞
[  132.111373][ T6896] [U] I,�>求�	钯5�1聍^1騈4痮嵌�'0�?謷i�9w.颻.禬奱紛峍埍`)裐鎐6Gi庸瞐滑XL[健F�*礼O�W)+嚽'\n�
[K@央狞2缜瑬p"^`翂�	
[  132.124921][ T6896] [U] 22綋譬宣﹛?0;3u�
[  132.129156][ T6896] [U] 逌�
鎹髎Obx�8�W�4釕(饉/�宽K�U炪詵oQ薳+稧�-y礸Y_
�>v④���3.h劣橾蛣�2憯)橠�,	懩	﨑~譫�+�w;A\楩
P绳葮|$��)�
K貝I抽猩�k馳T^R忘櫟撍A=�#栜�	蓓咚ae⿶t�1肺莜4K�.e"R赟|馃纒�捔:曺>p檯r�"z夲#P!楰Y"泒闷F縉84兣h薇暼s邫太%Dlw賛娌�
[  132.154107][ T6896] [U] [猍'xn�'谗�寇,mrΛ/灇溾1D=!D巟91B�
w缁R條f厓芀欷Z蹶#燻鞈l貨溁譩~錷以�
[  132.163410][ T6896] [U] 橪�>侎乨+坉棶�"5庩�漢3<�ㄅiR=F^攆峮躞芾壙�璿埙淒罯IO�:U�>諽�
[  132.172022][ T6896] [U] 'B�6v�20充风灔纷��"t8褅9艶W潔]羰潇⿳
[  132.178190][ T6896] [U] �72䦃锫胾﨏6欘蟿I]8c�郇QSk乊揞I依夤 縷V'跿V/g�$[� 9kh`�"鼞}�馵^=��0�]姐%铺俆搳灩谾靇v�4C蛤�
[  132.190524][ T6896] [U] �ec�
[  132.193658][ T6896] [U] 彈攟偸�<漕:^�3$7nK~�-橜鳓?煐/mtl穪劬�I�w璎@g~t貃贶P�+�$猨p|�庣I跼i髰pm� �穀� 鷶8靦�修V炠�齐,�l�,�
[  132.218124][ T6894] 1{X功: renamed from 
30{X功
[  132.271676][ T6894] A link change request failed with some changes committed already. Interface 
31{X功 may have been left with an inconsistent configuration, please check.
[  132.370034][ T6899] syzkaller1: entered promiscuous mode
[  132.385517][ T6899] syzkaller1: entered allmulticast mode
[  132.576396][ T6910] netlink: 44 bytes leftover after parsing attributes in process `syz.0.367'.
[  132.658858][ T6912] syzkaller0: entered allmulticast mode
[  132.673382][ T5895] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  132.686299][ T6914] batadv_slave_0: entered promiscuous mode
[  132.696949][ T6912] syzkaller0: entered promiscuous mode
[  132.706289][ T6914] vxfs: WRONG superblock magic 00000000 at 1
[  132.712913][ T6914] vxfs: WRONG superblock magic 00000000 at 8
[  132.718347][ T6911] syzkaller0: left promiscuous mode
[  132.724200][ T6914] vxfs: can't find superblock.
[  132.730295][ T6911] syzkaller0: left allmulticast mode
[  132.748338][ T6905] [U] 圞铁埘�)0哪輣湿羒P'韋篁渮谵r���@B�]�5菔{始�'�8迤嚬UTqUd
签;7愍0c[勩y柤萗CΧ回癿獧L�8扵呁毼5除齬x仚娥W� xげ髈QhVi'8湧�匧�
[  132.766516][ T6913] batadv_slave_0: left promiscuous mode
[  132.855822][ T5895] usb 3-1: config 0 has no interfaces?
[  132.862930][ T5895] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  132.876495][ T5895] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  132.901522][ T5895] usb 3-1: SerialNumber: syz
[  132.917887][ T5895] usb 3-1: config 0 descriptor??
[  133.018971][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  133.025744][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  133.133251][ T5895] usb 3-1: USB disconnect, device number 9
[  133.140992][ T6930] Zero length message leads to an empty skb
[  133.611852][ T6938] netlink: 20 bytes leftover after parsing attributes in process `syz.0.377'.
[  133.623207][ T6938] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  133.798980][ T6944] netlink: 'syz.3.380': attribute type 12 has an invalid length.
[  133.988909][ T6953] netlink: 9 bytes leftover after parsing attributes in process `syz.1.383'.
[  134.022063][ T6953] netlink: 5 bytes leftover after parsing attributes in process `syz.1.383'.
[  134.055927][ T6953] 0{X功: renamed from 
31{X功
[  134.072435][ T6953] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  134.095454][ T6957] gfs2: not a GFS2 filesystem
[  134.249058][ T6965] ntfs3(rnullb0): Primary boot signature is not NTFS.
[  134.258200][ T6965] ntfs3(rnullb0): Alternative boot signature is not NTFS.
[  134.321938][ T6967] syzkaller0: entered allmulticast mode
[  134.333023][ T6967] syzkaller0: entered promiscuous mode
[  134.349454][ T6967] syzkaller0 (unregistering): left promiscuous mode
[  134.370917][ T6967] syzkaller0 (unregistering): left allmulticast mode
[  134.817880][ T6985] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  134.998030][ T6995] netlink: 'syz.0.399': attribute type 12 has an invalid length.
[  135.071376][ T6997] hfs: can't find a HFS filesystem on dev rnullb0
[  135.083388][ T5836] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  135.285947][ T5836] usb 2-1: config 0 has no interfaces?
[  135.305678][ T5836] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  135.320561][ T5836] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  135.331165][ T7005] ./file0: Can't lookup blockdev
[  135.332928][ T5836] usb 2-1: SerialNumber: syz
[  135.352351][ T5836] usb 2-1: config 0 descriptor??
[  135.419556][ T7007] netlink: 'syz.3.404': attribute type 5 has an invalid length.
[  135.480428][ T7009] 0{X功: renamed from 
31{X功
[  135.488179][ T7009] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  135.573010][ T7011] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  135.579440][ T5895] usb 2-1: USB disconnect, device number 10
[  135.593013][ T7011] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  135.814564][ T5836] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  135.850982][ T7017] EXT4-fs (rnullb0): VFS: Can't find ext4 filesystem
[  135.861766][ T7016] EXT4-fs (rnullb0): VFS: Can't find ext4 filesystem
[  136.005011][ T5836] usb 4-1: Using ep0 maxpacket: 8
[  136.032223][ T5836] usb 4-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  136.053603][ T5836] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  136.077754][ T5836] pvrusb2: Hardware description: Terratec Grabster AV400
[  136.085121][ T5836] pvrusb2: **********
[  136.089171][ T5836] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  136.099453][ T5836] pvrusb2: Important functionality might not be entirely working.
[  136.110267][ T5836] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  136.138227][ T7025] syzkaller0: entered promiscuous mode
[  136.158268][ T5836] pvrusb2: **********
[  136.164849][ T7025] syzkaller0 (unregistering): left promiscuous mode
[  136.252314][ T7033] __nla_validate_parse: 9 callbacks suppressed
[  136.252335][ T7033] netlink: 20 bytes leftover after parsing attributes in process `syz.0.415'.
[  136.270734][ T7033] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  136.283739][ T2345] pvrusb2: Invalid write control endpoint
[  136.445608][ T2345] pvrusb2: Invalid write control endpoint
[  136.451547][ T2345] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  136.503928][ T2345] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  136.518922][ T2345] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  136.546055][ T7041] netlink: 'syz.2.418': attribute type 12 has an invalid length.
[  136.563758][ T2345] pvrusb2: Device being rendered inoperable
[  136.580261][ T2345] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  136.600348][ T2345] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  136.631664][ T7011] pvrusb2: Attempted to execute control transfer when device not ok
[  136.655602][ T2345] pvrusb2: Attached sub-driver cx25840
[  136.665647][ T7011] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  136.675047][ T2345] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  136.687757][ T7011] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  136.698675][ T2345] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  136.803770][ T5836] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  136.963335][ T5836] usb 1-1: Using ep0 maxpacket: 8
[  136.975321][ T5836] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  136.988442][ T5836] usb 1-1: config 0 has no interface number 0
[  137.000887][ T5836] usb 1-1: New USB device found, idVendor=10c4, idProduct=eac1, bcdDevice=70.2f
[  137.017701][ T5836] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  137.036267][ T5836] usb 1-1: Product: syz
[  137.043544][ T5836] usb 1-1: Manufacturer: syz
[  137.049917][ T5836] usb 1-1: SerialNumber: syz
[  137.063882][ T5836] usb 1-1: config 0 descriptor??
[  137.077619][ T5836] usb 1-1: selecting invalid altsetting 2
[  137.093153][ T5836] i2c-cp2615 1-1:0.1: probe with driver i2c-cp2615 failed with error -22
[  137.111171][ T7054] netlink: 44 bytes leftover after parsing attributes in process `syz.2.424'.
[  137.136024][ T7054] netlink: 43 bytes leftover after parsing attributes in process `syz.2.424'.
[  137.169601][ T7054] netlink: 'syz.2.424': attribute type 5 has an invalid length.
[  137.179214][ T7054] netlink: 43 bytes leftover after parsing attributes in process `syz.2.424'.
[  137.234291][ T7056] netlink: 9 bytes leftover after parsing attributes in process `syz.1.425'.
[  137.258824][ T7056] netlink: 5 bytes leftover after parsing attributes in process `syz.1.425'.
[  137.268912][ T7056] 1{X功: renamed from 
30{X功
[  137.285130][ T7056] A link change request failed with some changes committed already. Interface 
31{X功 may have been left with an inconsistent configuration, please check.
[  137.330481][ T7060] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  137.340237][ T7060] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  137.383425][ T5836] usb 1-1: USB disconnect, device number 12
[  137.624354][    T9] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  137.784784][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  137.796076][    T9] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  137.805220][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  137.816789][    T9] usb 2-1: config 0 descriptor??
[  138.108302][ T7082] netlink: 424 bytes leftover after parsing attributes in process `syz.2.434'.
[  138.118926][ T7082] netlink: 20 bytes leftover after parsing attributes in process `syz.2.434'.
[  138.207289][ T7084] Bluetooth: MGMT ver 1.23
[  138.213691][ T7084] syzkaller0: entered allmulticast mode
[  138.219879][ T7084] syzkaller0: entered promiscuous mode
[  138.231522][ T7084] syzkaller0 (unregistering): left promiscuous mode
[  138.238318][ T7084] syzkaller0 (unregistering): left allmulticast mode
[  138.251282][    T9] keytouch 0003:0926:3333.0008: fixing up Keytouch IEC report descriptor
[  138.271570][    T9] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.0008/input/input13
[  138.380807][    T9] keytouch 0003:0926:3333.0008: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0
[  138.632803][    T9] usb 4-1: USB disconnect, device number 9
[  138.757463][ T7093] netlink: 'syz.2.438': attribute type 12 has an invalid length.
[  138.780536][ T5836] usb 2-1: USB disconnect, device number 11
[  139.005057][ T7097] syzkaller0: entered allmulticast mode
[  139.019064][ T7097] syzkaller0: entered promiscuous mode
[  139.037822][ T7097] syzkaller0 (unregistering): left promiscuous mode
[  139.046219][ T7097] syzkaller0 (unregistering): left allmulticast mode
[  139.392822][ T7111] syzkaller0: entered allmulticast mode
[  139.401446][ T7111] syzkaller0: entered promiscuous mode
[  139.411730][ T7111] FAULT_INJECTION: forcing a failure.
[  139.411730][ T7111] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  139.429873][ T7111] CPU: 1 UID: 0 PID: 7111 Comm: syz.2.445 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) 
[  139.429903][ T7111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  139.429916][ T7111] Call Trace:
[  139.429923][ T7111]  <TASK>
[  139.429931][ T7111]  dump_stack_lvl+0x189/0x250
[  139.429959][ T7111]  ? __pfx____ratelimit+0x10/0x10
[  139.429990][ T7111]  ? __pfx_dump_stack_lvl+0x10/0x10
[  139.430012][ T7111]  ? __pfx__printk+0x10/0x10
[  139.430034][ T7111]  ? __might_fault+0xb0/0x130
[  139.430070][ T7111]  should_fail_ex+0x414/0x560
[  139.430100][ T7111]  _copy_from_user+0x2d/0xb0
[  139.430129][ T7111]  br_ioctl_stub+0x2f6/0xc80
[  139.430154][ T7111]  ? trace_contention_end+0x39/0x120
[  139.430183][ T7111]  ? __pfx_br_ioctl_stub+0x10/0x10
[  139.430214][ T7111]  ? sock_ioctl+0x4b4/0x790
[  139.430250][ T7111]  ? __lock_acquire+0xab9/0xd20
[  139.430284][ T7111]  ? __pfx_br_ioctl_stub+0x10/0x10
[  139.430304][ T7111]  sock_ioctl+0x4d8/0x790
[  139.430335][ T7111]  ? __pfx_sock_ioctl+0x10/0x10
[  139.430364][ T7111]  ? __fget_files+0x2a/0x420
[  139.430392][ T7111]  ? __fget_files+0x3a0/0x420
[  139.430419][ T7111]  ? __fget_files+0x2a/0x420
[  139.430451][ T7111]  ? bpf_lsm_file_ioctl+0x9/0x20
[  139.430472][ T7111]  ? __pfx_sock_ioctl+0x10/0x10
[  139.430500][ T7111]  __se_sys_ioctl+0xfc/0x170
[  139.430526][ T7111]  do_syscall_64+0xfa/0x3b0
[  139.430545][ T7111]  ? lockdep_hardirqs_on+0x9c/0x150
[  139.430574][ T7111]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.430593][ T7111]  ? clear_bhb_loop+0x60/0xb0
[  139.430617][ T7111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.430635][ T7111] RIP: 0033:0x7ff9b6d8e929
[  139.430653][ T7111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.430669][ T7111] RSP: 002b:00007ff9b7bf4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  139.430689][ T7111] RAX: ffffffffffffffda RBX: 00007ff9b6fb5fa0 RCX: 00007ff9b6d8e929
[  139.430703][ T7111] RDX: 0000200000000040 RSI: 00000000000089a1 RDI: 0000000000000004
[  139.430715][ T7111] RBP: 00007ff9b7bf4090 R08: 0000000000000000 R09: 0000000000000000
[  139.430727][ T7111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  139.430737][ T7111] R13: 0000000000000000 R14: 00007ff9b6fb5fa0 R15: 00007ffcb075e4d8
[  139.430767][ T7111]  </TASK>
[  139.430993][ T7110] syzkaller0: left promiscuous mode
[  139.673647][ T7110] syzkaller0: left allmulticast mode
[  139.733511][ T5895] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  139.886316][ T5895] usb 1-1: Using ep0 maxpacket: 32
[  139.908749][ T5895] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  139.931915][ T5895] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  139.942283][ T5895] usb 1-1: New USB device found, idVendor=0925, idProduct=8866, bcdDevice= 0.00
[  139.951510][ T5895] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  139.970690][ T5895] usb 1-1: config 0 descriptor??
[  139.989898][ T7125] syzkaller0: entered allmulticast mode
[  140.064221][  T847] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  140.143243][    T9] usb 3-1: new full-speed USB device number 10 using dummy_hcd
[  140.223219][  T847] usb 4-1: Using ep0 maxpacket: 16
[  140.230285][  T847] usb 4-1: config 0 has an invalid interface number: 225 but max is 0
[  140.238791][ T5915] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  140.246483][  T847] usb 4-1: config 0 has no interface number 0
[  140.252632][  T847] usb 4-1: New USB device found, idVendor=05ac, idProduct=1202, bcdDevice=72.0c
[  140.261963][  T847] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  140.274188][  T847] apple-mfi-fastcharge 4-1: config 0 descriptor??
[  140.284788][  T847] usb-storage 4-1:0.225: USB Mass Storage device detected
[  140.299378][    T9] usb 3-1: unable to get BOS descriptor or descriptor too short
[  140.309377][  T847] usb-storage 4-1:0.225: Quirks match for vid 05ac pid 1202: 10
[  140.320258][    T9] usb 3-1: not running at top speed; connect to a high speed hub
[  140.330610][    T9] usb 3-1: config 6 has an invalid interface number: 150 but max is 0
[  140.339441][    T9] usb 3-1: config 6 has an invalid interface association descriptor of length 2, skipping
[  140.363135][    T9] usb 3-1: config 6 has no interface number 0
[  140.369329][    T9] usb 3-1: config 6 interface 150 altsetting 3 endpoint 0x6 has an invalid bInterval 0, changing to 4
[  140.388247][    T9] usb 3-1: config 6 interface 150 has no altsetting 0
[  140.398840][    T9] usb 3-1: New USB device found, idVendor=12d1, idProduct=76d8, bcdDevice=5d.76
[  140.401840][ T5895] smartjoyplus 0003:0925:8866.0009: item fetching failed at offset 4/5
[  140.408654][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  140.430156][ T5915] usb 2-1: Using ep0 maxpacket: 16
[  140.431301][ T5895] smartjoyplus 0003:0925:8866.0009: parse failed
[  140.443045][    T9] usb 3-1: Product: syz
[  140.444573][ T5895] smartjoyplus 0003:0925:8866.0009: probe with driver smartjoyplus failed with error -22
[  140.463478][ T5915] usb 2-1: unable to get BOS descriptor or descriptor too short
[  140.471415][    T9] usb 3-1: Manufacturer: syz
[  140.477044][    T9] usb 3-1: SerialNumber: syz
[  140.481805][ T5915] usb 2-1: config 1 has an invalid interface number: 231 but max is 1
[  140.496156][ T5915] usb 2-1: config 1 has an invalid interface number: 129 but max is 1
[  140.507422][ T5915] usb 2-1: config 1 has no interface number 0
[  140.513955][ T5915] usb 2-1: config 1 has no interface number 1
[  140.515270][ T7118] netlink: 12 bytes leftover after parsing attributes in process `syz.3.449'.
[  140.520717][ T5915] usb 2-1: config 1 interface 231 has no altsetting 0
[  140.549061][ T5915] usb 2-1: config 1 interface 129 has no altsetting 0
[  140.565838][ T5915] usb 2-1: string descriptor 0 read error: -22
[  140.572434][ T5915] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice=5c.f5
[  140.581789][ T5915] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  140.622377][  T847] usb 1-1: USB disconnect, device number 13
[  140.739654][    T9] usb 3-1: USB disconnect, device number 10
[  140.882820][ T7130] syzkaller0: entered promiscuous mode
[  141.007181][ T7132] syzkaller0 (unregistering): left promiscuous mode
[  141.085095][ T7132] syzkaller0 (unregistering): left allmulticast mode
[  141.769094][ T5915] usbtest 2-1:1.231: couldn't get endpoints, -71
[  141.812249][ T5915] usbtest 2-1:1.231: probe with driver usbtest failed with error -71
[  141.863193][ T5915] usbtest 2-1:1.129: couldn't get endpoints, -22
[  141.869724][ T5915] usbtest 2-1:1.129: probe with driver usbtest failed with error -22
[  141.911071][ T5915] usb 2-1: USB disconnect, device number 12
[  141.940230][ T7139] netlink: 'syz.2.455': attribute type 12 has an invalid length.
[  142.489004][ T7152] netlink: 44 bytes leftover after parsing attributes in process `syz.1.459'.
[  142.498535][ T7152] netlink: 43 bytes leftover after parsing attributes in process `syz.1.459'.
[  142.507877][ T7152] netlink: 'syz.1.459': attribute type 5 has an invalid length.
[  142.515845][ T7152] netlink: 43 bytes leftover after parsing attributes in process `syz.1.459'.
[  142.875490][ T5895] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  142.948487][ T5836] apple-mfi-fastcharge 4-1: USB disconnect, device number 10
[  143.061549][ T5895] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  143.082936][ T5895] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  143.095071][ T5895] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.118002][ T5895] usb 2-1: config 0 descriptor??
[  143.128565][ T7165] netlink: 44 bytes leftover after parsing attributes in process `syz.2.465'.
[  143.351280][ T7173] syzkaller0: entered allmulticast mode
[  143.358167][ T7173] syzkaller0: entered promiscuous mode
[  143.368505][ T7173] FAULT_INJECTION: forcing a failure.
[  143.368505][ T7173] name failslab, interval 1, probability 0, space 0, times 0
[  143.381739][ T7173] CPU: 0 UID: 0 PID: 7173 Comm: syz.2.468 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) 
[  143.381769][ T7173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  143.381781][ T7173] Call Trace:
[  143.381789][ T7173]  <TASK>
[  143.381797][ T7173]  dump_stack_lvl+0x189/0x250
[  143.381826][ T7173]  ? __pfx____ratelimit+0x10/0x10
[  143.381858][ T7173]  ? __pfx_dump_stack_lvl+0x10/0x10
[  143.381880][ T7173]  ? __pfx__printk+0x10/0x10
[  143.381908][ T7173]  ? atomic_notifier_call_chain+0x26/0x180
[  143.381930][ T7173]  ? atomic_notifier_call_chain+0x26/0x180
[  143.381957][ T7173]  should_fail_ex+0x414/0x560
[  143.381988][ T7173]  should_failslab+0xa8/0x100
[  143.382018][ T7173]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  143.382045][ T7173]  ? __alloc_skb+0x112/0x2d0
[  143.382067][ T7173]  ? rht_lock+0xff/0x220
[  143.382090][ T7173]  __alloc_skb+0x112/0x2d0
[  143.382120][ T7173]  fdb_notify+0xa6/0x160
[  143.382153][ T7173]  fdb_delete+0xec4/0x1160
[  143.382188][ T7173]  ? fdb_delete+0x39a/0x1160
[  143.382217][ T7173]  ? __pfx_fdb_delete+0x10/0x10
[  143.382251][ T7173]  ? br_fdb_delete_by_port+0x3b/0x310
[  143.382284][ T7173]  br_fdb_delete_by_port+0x24a/0x310
[  143.382323][ T7173]  br_dev_delete+0xa9/0x100
[  143.382348][ T7173]  br_del_bridge+0xb6/0xf0
[  143.382371][ T7173]  br_ioctl_stub+0x6c1/0xc80
[  143.382396][ T7173]  ? trace_contention_end+0x39/0x120
[  143.382425][ T7173]  ? __pfx_br_ioctl_stub+0x10/0x10
[  143.382469][ T7173]  ? sock_ioctl+0x4b4/0x790
[  143.382507][ T7173]  ? __lock_acquire+0xab9/0xd20
[  143.382546][ T7173]  ? __pfx_br_ioctl_stub+0x10/0x10
[  143.382569][ T7173]  sock_ioctl+0x4d8/0x790
[  143.382616][ T7173]  ? __pfx_sock_ioctl+0x10/0x10
[  143.382645][ T7173]  ? __fget_files+0x2a/0x420
[  143.382674][ T7173]  ? __fget_files+0x3a0/0x420
[  143.382701][ T7173]  ? __fget_files+0x2a/0x420
[  143.382734][ T7173]  ? bpf_lsm_file_ioctl+0x9/0x20
[  143.382754][ T7173]  ? __pfx_sock_ioctl+0x10/0x10
[  143.382783][ T7173]  __se_sys_ioctl+0xfc/0x170
[  143.382810][ T7173]  do_syscall_64+0xfa/0x3b0
[  143.382828][ T7173]  ? lockdep_hardirqs_on+0x9c/0x150
[  143.382858][ T7173]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.382876][ T7173]  ? clear_bhb_loop+0x60/0xb0
[  143.382899][ T7173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.382917][ T7173] RIP: 0033:0x7ff9b6d8e929
[  143.382933][ T7173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.382949][ T7173] RSP: 002b:00007ff9b7bf4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  143.382972][ T7173] RAX: ffffffffffffffda RBX: 00007ff9b6fb5fa0 RCX: 00007ff9b6d8e929
[  143.382986][ T7173] RDX: 0000200000000040 RSI: 00000000000089a1 RDI: 0000000000000004
[  143.382998][ T7173] RBP: 00007ff9b7bf4090 R08: 0000000000000000 R09: 0000000000000000
[  143.383010][ T7173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.383021][ T7173] R13: 0000000000000000 R14: 00007ff9b6fb5fa0 R15: 00007ffcb075e4d8
[  143.383050][ T7173]  </TASK>
[  143.705668][ T5895] keytouch 0003:0926:3333.000A: fixing up Keytouch IEC report descriptor
[  143.751061][ T7173] syzkaller0 (unregistering): left promiscuous mode
[  143.763403][ T5895] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.000A/input/input14
[  143.764047][ T7173] syzkaller0 (unregistering): left allmulticast mode
[  143.845387][ T7179] syzkaller0: entered allmulticast mode
[  143.851678][ T7179] syzkaller0: entered promiscuous mode
[  143.860181][ T7176] syzkaller0: left promiscuous mode
[  143.878717][ T7176] syzkaller0: left allmulticast mode
[  143.942285][ T5895] keytouch 0003:0926:3333.000A: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0
[  143.966649][ T7181] netlink: 44 bytes leftover after parsing attributes in process `syz.2.473'.
[  143.975753][ T7181] netlink: 43 bytes leftover after parsing attributes in process `syz.2.473'.
[  143.987909][ T7181] netlink: 'syz.2.473': attribute type 5 has an invalid length.
[  143.995685][ T7181] netlink: 43 bytes leftover after parsing attributes in process `syz.2.473'.
[  144.236980][ T5895] usb 2-1: USB disconnect, device number 13
[  144.319860][ T7189] fido_id[7189]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/report_descriptor': No such file or directory
[  144.396882][ T7194] netlink: 424 bytes leftover after parsing attributes in process `syz.2.478'.
[  144.427093][ T7194] netlink: 20 bytes leftover after parsing attributes in process `syz.2.478'.
[  144.524223][ T7199] capability: warning: `syz.3.477' uses 32-bit capabilities (legacy support in use)
[  144.722879][ T7209] delete_channel: no stack
[  144.760475][ T7209] delete_channel: no stack
[  144.786833][ T7209] FAT-fs (nullb0): bogus number of reserved sectors
[  144.801320][ T7209] FAT-fs (nullb0): Can't find a valid FAT filesystem
[  145.373286][    T9] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  145.398679][ T7206] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  145.408816][ T7206] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  145.445810][ T7206] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  145.481121][ T7236] netlink: 9 bytes leftover after parsing attributes in process `syz.0.485'.
[  145.483193][ T7206] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  145.500783][ T7236] 1{X功: renamed from 
30{X功
[  145.522458][ T7236] A link change request failed with some changes committed already. Interface 
31{X功 may have been left with an inconsistent configuration, please check.
[  145.546061][ T7206] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  145.552358][ T7206] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  145.564654][    T9] usb 2-1: Using ep0 maxpacket: 16
[  145.601525][    T9] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  145.626492][    T9] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  145.637688][ T7206] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  145.673245][ T7206] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  145.681468][    T9] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  145.711767][    T9] usb 2-1: Manufacturer: syz
[  145.736575][    T9] usb 2-1: config 0 descriptor??
[  145.979133][ T5895] usb 2-1: USB disconnect, device number 14
[  146.433335][ T5895] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  146.518947][ T7269] netlink: 'syz.1.491': attribute type 29 has an invalid length.
[  146.528560][ T7269] netlink: 'syz.1.491': attribute type 29 has an invalid length.
[  146.542006][ T7269] netlink: 'syz.1.491': attribute type 29 has an invalid length.
[  146.550456][ T7269] netlink: 'syz.1.491': attribute type 29 has an invalid length.
[  146.612675][ T5895] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  146.631484][ T5895] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  146.646664][ T5895] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  146.666532][ T5895] usb 1-1: config 0 descriptor??
[  147.052515][ T7289] syzkaller1: entered promiscuous mode
[  147.061769][ T7289] syzkaller1: entered allmulticast mode
[  147.089355][ T5895] keytouch 0003:0926:3333.000B: fixing up Keytouch IEC report descriptor
[  147.122733][ T5895] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0926:3333.000B/input/input15
[  147.264620][ T5895] keytouch 0003:0926:3333.000B: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0
[  147.634161][ T5895] usb 1-1: USB disconnect, device number 14
[  148.163587][ T7320] __nla_validate_parse: 4 callbacks suppressed
[  148.163607][ T7320] netlink: 9 bytes leftover after parsing attributes in process `syz.1.499'.
[  148.198688][ T7320] netlink: 5 bytes leftover after parsing attributes in process `syz.1.499'.
[  148.223543][ T7320] 0{X功: renamed from 
31{X功
[  148.258178][ T7320] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  148.508314][ T7333] syzkaller0: entered allmulticast mode
[  148.520740][ T7333] syzkaller0: entered promiscuous mode
[  148.539151][ T7333] FAULT_INJECTION: forcing a failure.
[  148.539151][ T7333] name failslab, interval 1, probability 0, space 0, times 0
[  148.578269][ T7333] CPU: 1 UID: 0 PID: 7333 Comm: syz.1.502 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) 
[  148.578314][ T7333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  148.578326][ T7333] Call Trace:
[  148.578334][ T7333]  <TASK>
[  148.578342][ T7333]  dump_stack_lvl+0x189/0x250
[  148.578371][ T7333]  ? __pfx____ratelimit+0x10/0x10
[  148.578402][ T7333]  ? __pfx_dump_stack_lvl+0x10/0x10
[  148.578425][ T7333]  ? __pfx__printk+0x10/0x10
[  148.578453][ T7333]  ? __pfx___might_resched+0x10/0x10
[  148.578475][ T7333]  ? fs_reclaim_acquire+0x7d/0x100
[  148.578508][ T7333]  should_fail_ex+0x414/0x560
[  148.578539][ T7333]  should_failslab+0xa8/0x100
[  148.578566][ T7333]  __kmalloc_cache_noprof+0x70/0x3d0
[  148.578589][ T7333]  ? netdevice_event+0x3a1/0x8a0
[  148.578619][ T7333]  netdevice_event+0x3a1/0x8a0
[  148.578648][ T7333]  ? __up_read+0x280/0x680
[  148.578672][ T7333]  ? __pfx_netdevice_event+0x10/0x10
[  148.578694][ T7333]  ? __pfx_del_netdev_ips+0x10/0x10
[  148.578716][ T7333]  ? __pfx_pass_all_filter+0x10/0x10
[  148.578757][ T7333]  notifier_call_chain+0x1b3/0x3e0
[  148.578790][ T7333]  unregister_netdevice_many_notify+0x15d8/0x2320
[  148.578836][ T7333]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  148.578869][ T7333]  ? __lock_acquire+0xab9/0xd20
[  148.578915][ T7333]  unregister_netdevice_queue+0x33c/0x380
[  148.578947][ T7333]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  148.578973][ T7333]  ? sysfs_remove_group+0x236/0x2c0
[  148.578996][ T7333]  ? br_dev_delete+0xda/0x100
[  148.579019][ T7333]  br_del_bridge+0xb6/0xf0
[  148.579042][ T7333]  br_ioctl_stub+0x6c1/0xc80
[  148.579066][ T7333]  ? trace_contention_end+0x39/0x120
[  148.579093][ T7333]  ? __pfx_br_ioctl_stub+0x10/0x10
[  148.579125][ T7333]  ? sock_ioctl+0x4b4/0x790
[  148.579172][ T7333]  ? __lock_acquire+0xab9/0xd20
[  148.579208][ T7333]  ? __pfx_br_ioctl_stub+0x10/0x10
[  148.579229][ T7333]  sock_ioctl+0x4d8/0x790
[  148.579260][ T7333]  ? __pfx_sock_ioctl+0x10/0x10
[  148.579316][ T7333]  ? __fget_files+0x2a/0x420
[  148.579345][ T7333]  ? __fget_files+0x3a0/0x420
[  148.579372][ T7333]  ? __fget_files+0x2a/0x420
[  148.579405][ T7333]  ? bpf_lsm_file_ioctl+0x9/0x20
[  148.579426][ T7333]  ? __pfx_sock_ioctl+0x10/0x10
[  148.579455][ T7333]  __se_sys_ioctl+0xfc/0x170
[  148.579483][ T7333]  do_syscall_64+0xfa/0x3b0
[  148.579501][ T7333]  ? lockdep_hardirqs_on+0x9c/0x150
[  148.579530][ T7333]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.579550][ T7333]  ? clear_bhb_loop+0x60/0xb0
[  148.579575][ T7333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.579594][ T7333] RIP: 0033:0x7fcb2898e929
[  148.579612][ T7333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.579628][ T7333] RSP: 002b:00007fcb297c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  148.579650][ T7333] RAX: ffffffffffffffda RBX: 00007fcb28bb5fa0 RCX: 00007fcb2898e929
[  148.579687][ T7333] RDX: 0000200000000040 RSI: 00000000000089a1 RDI: 0000000000000004
[  148.579699][ T7333] RBP: 00007fcb297c5090 R08: 0000000000000000 R09: 0000000000000000
[  148.579711][ T7333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  148.579722][ T7333] R13: 0000000000000000 R14: 00007fcb28bb5fa0 R15: 00007ffe20ba07b8
[  148.579755][ T7333]  </TASK>
[  148.908107][ T7333] syzkaller0 (unregistering): left promiscuous mode
[  148.914862][ T7333] syzkaller0 (unregistering): left allmulticast mode
[  149.064360][ T7341] exFAT-fs (rnullb0): invalid boot record signature
[  149.071060][ T7341] exFAT-fs (rnullb0): failed to read boot sector
[  149.077924][ T7341] exFAT-fs (rnullb0): failed to recognize exfat type
[  149.350191][ T7352] FAT-fs (rnullb0): bogus number of reserved sectors
[  149.357310][ T7352] FAT-fs (rnullb0): Can't find a valid FAT filesystem
[  149.643427][    T9] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  149.793332][    T9] usb 2-1: device descriptor read/64, error -71
[  150.005306][ T5895] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  150.033305][    T9] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  150.163234][    T9] usb 2-1: device descriptor read/64, error -71
[  150.169387][ T5895] usb 1-1: config 0 has no interfaces?
[  150.176186][ T5895] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  150.185478][ T5895] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  150.193553][ T5895] usb 1-1: SerialNumber: syz
[  150.200588][ T5895] usb 1-1: config 0 descriptor??
[  150.274751][    T9] usb usb2-port1: attempt power cycle
[  150.412219][ T5880] usb 1-1: USB disconnect, device number 15
[  150.613356][    T9] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  150.634054][    T9] usb 2-1: device descriptor read/8, error -71
[  150.873337][    T9] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  150.893946][    T9] usb 2-1: device descriptor read/8, error -71
[  151.003852][    T9] usb usb2-port1: unable to enumerate USB device
[  151.762828][ T7367] veth1_to_team: entered allmulticast mode
[  151.840508][ T7366] veth1_to_team: left allmulticast mode
[  152.007893][ T7377] netlink: 20 bytes leftover after parsing attributes in process `syz.0.515'.
[  152.019107][ T7377] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  152.249947][ T7380] FAT-fs (rnullb0): bogus number of reserved sectors
[  152.260388][ T7380] FAT-fs (rnullb0): Can't find a valid FAT filesystem
[  152.436880][ T7389] netlink: 9 bytes leftover after parsing attributes in process `syz.1.520'.
[  152.449245][ T7389] netlink: 5 bytes leftover after parsing attributes in process `syz.1.520'.
[  152.459586][ T7389] 1{X功: renamed from 
30{X功
[  152.467905][ T7389] A link change request failed with some changes committed already. Interface 
31{X功 may have been left with an inconsistent configuration, please check.
[  152.550374][ T7392] veth1_to_team: entered allmulticast mode
[  152.659660][ T7391] veth1_to_team: left allmulticast mode
[  152.663289][    T9] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  152.825315][    T9] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  152.835781][    T9] usb 1-1: config 220 has 1 interface, different from the descriptor's value: 3
[  152.845220][    T9] usb 1-1: config 220 interface 0 has no altsetting 0
[  152.856803][    T9] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  152.866139][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  152.874890][    T9] usb 1-1: Product: syz
[  152.879093][    T9] usb 1-1: Manufacturer: syz
[  152.883845][    T9] usb 1-1: SerialNumber: syz
[  153.013716][ T5915] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  153.108637][    T9] usb 1-1: USB disconnect, device number 16
[  153.187700][ T5915] usb 2-1: config 0 has no interfaces?
[  153.197357][ T5915] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  153.206627][ T5915] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  153.214739][ T5915] usb 2-1: SerialNumber: syz
[  153.221613][ T5915] usb 2-1: config 0 descriptor??
[  153.434339][    T9] usb 2-1: USB disconnect, device number 19
[  153.690084][ T7398] netlink: 12 bytes leftover after parsing attributes in process `syz.0.525'.
[  160.425601][ T7408] syzkaller0: entered allmulticast mode
[  160.441892][ T7408] syzkaller0: entered promiscuous mode
[  160.464531][ T7406] syzkaller0: left promiscuous mode
[  160.485984][ T7406] syzkaller0: left allmulticast mode
[  160.763280][ T7416] netlink: 44 bytes leftover after parsing attributes in process `syz.1.534'.
[  160.772233][ T7416] netlink: 43 bytes leftover after parsing attributes in process `syz.1.534'.
[  160.781429][ T7416] netlink: 'syz.1.534': attribute type 5 has an invalid length.
[  160.789598][ T7416] netlink: 43 bytes leftover after parsing attributes in process `syz.1.534'.
[  161.223216][ T5836] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  161.385012][ T5836] usb 1-1: config 0 has no interfaces?
[  161.391637][ T5836] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  161.400852][ T5836] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  161.408989][ T5836] usb 1-1: SerialNumber: syz
[  161.422690][ T5836] usb 1-1: config 0 descriptor??
[  161.634782][ T5880] usb 1-1: USB disconnect, device number 17
[  162.081039][ T7454] sg_write: data in/out 1760/14 bytes for SCSI command 0x0-- guessing data in;
[  162.081039][ T7454]    program syz.1.550 not setting count and/or reply_len properly
[  162.234359][ T7458] netlink: 20 bytes leftover after parsing attributes in process `syz.1.553'.
[  162.243598][ T7458] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  162.713368][ T5836] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  162.874774][ T5836] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  162.885973][ T5836] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  162.895251][ T5836] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.906237][ T5836] usb 1-1: config 0 descriptor??
[  163.298864][ T7478] syzkaller0: entered allmulticast mode
[  163.305241][ T7478] syzkaller0: entered promiscuous mode
[  163.314751][ T7478] syzkaller0 (unregistering): left promiscuous mode
[  163.321465][ T7478] syzkaller0 (unregistering): left allmulticast mode
[  163.330692][ T5836] keytouch 0003:0926:3333.000C: fixing up Keytouch IEC report descriptor
[  163.347438][ T5836] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0926:3333.000C/input/input16
[  163.465521][ T5836] keytouch 0003:0926:3333.000C: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0
[  163.862585][ T5899] usb 1-1: USB disconnect, device number 18
[  163.923772][    T9] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  164.084928][    T9] usb 2-1: config 0 has no interfaces?
[  164.091622][    T9] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  164.101027][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  164.109241][    T9] usb 2-1: SerialNumber: syz
[  164.116390][    T9] usb 2-1: config 0 descriptor??
[  164.330932][    T9] usb 2-1: USB disconnect, device number 20
[  164.750403][ T7498] syzkaller0: entered allmulticast mode
[  164.759066][ T7498] netlink: 408 bytes leftover after parsing attributes in process `syz.0.570'.
[  164.768281][ T7498] tipc: Started in network mode
[  164.773602][ T7498] tipc: Node identity fe800000000000000000000000000026, cluster identity 4711
[  164.782943][ T7498] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  164.794972][ T7498] syzkaller0: entered promiscuous mode
[  165.033201][ T5899] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  165.123207][ T5915] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  165.183236][ T5899] usb 1-1: Using ep0 maxpacket: 32
[  165.190475][ T5899] usb 1-1: config 0 has an invalid interface number: 231 but max is 0
[  165.199724][ T5899] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  165.210924][ T5899] usb 1-1: config 0 has no interface number 0
[  165.217607][ T5899] usb 1-1: config 0 interface 231 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 5
[  165.232979][ T5899] usb 1-1: New USB device found, idVendor=d024, idProduct=5e5a, bcdDevice=16.a9
[  165.242133][ T5899] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  165.250460][ T5899] usb 1-1: Product: syz
[  165.254749][ T5899] usb 1-1: Manufacturer: syz
[  165.259458][ T5899] usb 1-1: SerialNumber: syz
[  165.266735][ T5899] usb 1-1: config 0 descriptor??
[  165.274870][ T5899] usb-storage 1-1:0.231: USB Mass Storage device detected
[  165.296456][ T5915] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  165.307570][ T5915] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  165.317062][ T5915] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  165.330510][ T5915] usb 2-1: config 0 descriptor??
[  165.480835][ T5899] usb 1-1: USB disconnect, device number 19
[  165.485518][ T7497] syzkaller0: left promiscuous mode
[  165.495578][ T7497] syzkaller0: left allmulticast mode
[  165.755897][ T5915] keytouch 0003:0926:3333.000D: fixing up Keytouch IEC report descriptor
[  165.768156][ T5915] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.000D/input/input17
[  165.858527][ T5915] keytouch 0003:0926:3333.000D: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0
[  166.273332][ T5880] usb 2-1: USB disconnect, device number 21
[  166.433149][ T5915] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  166.593405][ T5915] usb 1-1: Using ep0 maxpacket: 8
[  166.602067][ T5915] usb 1-1: config index 0 descriptor too short (expected 74, got 45)
[  166.610414][ T5915] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[  166.621809][ T5915] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  166.631973][ T5915] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 30768, setting to 1024
[  166.643320][ T5915] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  166.653513][ T5915] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  166.666660][ T5915] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  166.675868][ T5915] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.889645][ T5915] usb 1-1: usb_control_msg returned -32
[  166.890940][ T7509] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  166.903851][ T5915] usbtmc 1-1:16.0: can't read capabilities
[  166.922759][ T7509] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  166.949493][ T7509] FAT-fs (rnullb0): bogus number of reserved sectors
[  166.958941][ T7509] FAT-fs (rnullb0): Can't find a valid FAT filesystem
[  167.224270][ T7528] syzkaller0: entered allmulticast mode
[  167.230562][ T7528] syzkaller0: entered promiscuous mode
[  167.242688][ T7528] syzkaller0 (unregistering): left promiscuous mode
[  167.249453][ T7528] syzkaller0 (unregistering): left allmulticast mode
[  167.979505][ T7536] netlink: 4 bytes leftover after parsing attributes in process `syz.1.585'.
[  168.528237][ T7559] syzkaller1: entered promiscuous mode
[  168.534235][ T7559] syzkaller1: entered allmulticast mode
[  169.052667][ T7563] syzkaller0: entered allmulticast mode
[  169.199984][ T7564] syzkaller0: left allmulticast mode
[  169.214289][ T5899] usb 1-1: USB disconnect, device number 20
[  169.685964][ T7581] netlink: 44 bytes leftover after parsing attributes in process `syz.1.604'.
[  169.695062][ T7581] netlink: 43 bytes leftover after parsing attributes in process `syz.1.604'.
[  169.705792][ T7581] netlink: 'syz.1.604': attribute type 5 has an invalid length.
[  169.714869][ T7581] netlink: 43 bytes leftover after parsing attributes in process `syz.1.604'.
[  170.128458][ T7598] netlink: 44 bytes leftover after parsing attributes in process `syz.0.611'.
[  170.140267][ T7598] netlink: 43 bytes leftover after parsing attributes in process `syz.0.611'.
[  170.149862][ T7598] netlink: 'syz.0.611': attribute type 5 has an invalid length.
[  170.157762][ T7598] netlink: 43 bytes leftover after parsing attributes in process `syz.0.611'.
[  170.230356][ T7600] netlink: 'syz.0.612': attribute type 12 has an invalid length.
[  170.603239][ T5900] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  170.741428][ T7610] trusted_key: encrypted_key: insufficient parameters specified
[  170.752617][ T7610] trusted_key: encrypted_key: insufficient parameters specified
[  170.776179][ T5900] usb 1-1: config 4 has an invalid interface number: 210 but max is 0
[  170.792144][ T5900] usb 1-1: config 4 has no interface number 0
[  170.799300][ T5900] usb 1-1: config 4 interface 210 has no altsetting 0
[  170.809070][ T5900] usb 1-1: New USB device found, idVendor=2c7c, idProduct=0191, bcdDevice=6e.27
[  170.818549][ T5900] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  170.829108][ T5900] usb 1-1: Product: syz
[  170.833666][ T5900] usb 1-1: Manufacturer: syz
[  170.838307][ T5900] usb 1-1: SerialNumber: syz
[  170.908958][ T7614] netlink: 44 bytes leftover after parsing attributes in process `syz.1.619'.
[  170.918935][ T7614] netlink: 43 bytes leftover after parsing attributes in process `syz.1.619'.
[  170.928803][ T7614] netlink: 'syz.1.619': attribute type 5 has an invalid length.
[  170.936777][ T7614] netlink: 43 bytes leftover after parsing attributes in process `syz.1.619'.
[  171.041741][ T7618] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  171.086442][ T5900] usb 1-1: USB disconnect, device number 21
[  171.934127][ T7638] netlink: 'syz.1.630': attribute type 5 has an invalid length.
[  172.639864][ T7644] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  172.909327][ T7653] syzkaller1: entered promiscuous mode
[  172.915127][ T7653] syzkaller1: entered allmulticast mode
[  173.196579][ T7667] MTD: Attempt to mount non-MTD device "/dev/rnullb0"
[  173.209398][ T7667] cramfs: wrong magic
[  173.254232][ T7669] __nla_validate_parse: 5 callbacks suppressed
[  173.254248][ T7669] netlink: 20 bytes leftover after parsing attributes in process `syz.1.643'.
[  173.270057][ T7669] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  173.817831][ T7687] FAULT_INJECTION: forcing a failure.
[  173.817831][ T7687] name failslab, interval 1, probability 0, space 0, times 0
[  173.834293][ T7687] CPU: 0 UID: 0 PID: 7687 Comm: syz.0.650 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) 
[  173.834324][ T7687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  173.834340][ T7687] Call Trace:
[  173.834346][ T7687]  <TASK>
[  173.834353][ T7687]  dump_stack_lvl+0x189/0x250
[  173.834374][ T7687]  ? __pfx____ratelimit+0x10/0x10
[  173.834398][ T7687]  ? __pfx_dump_stack_lvl+0x10/0x10
[  173.834415][ T7687]  ? __pfx__printk+0x10/0x10
[  173.834433][ T7687]  ? __pfx___might_resched+0x10/0x10
[  173.834450][ T7687]  ? fs_reclaim_acquire+0x7d/0x100
[  173.834474][ T7687]  should_fail_ex+0x414/0x560
[  173.834496][ T7687]  should_failslab+0xa8/0x100
[  173.834517][ T7687]  __kmalloc_noprof+0xcb/0x4f0
[  173.834535][ T7687]  ? alloc_pipe_info+0x1fd/0x4d0
[  173.834558][ T7687]  alloc_pipe_info+0x1fd/0x4d0
[  173.834580][ T7687]  splice_direct_to_actor+0xa5d/0xcc0
[  173.834603][ T7687]  ? aa_file_perm+0x11f/0xed0
[  173.834620][ T7687]  ? aa_file_perm+0x3e7/0xed0
[  173.834643][ T7687]  ? __lock_acquire+0xab9/0xd20
[  173.834658][ T7687]  ? __pfx_direct_splice_actor+0x10/0x10
[  173.834678][ T7687]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  173.834700][ T7687]  ? __pfx_aa_file_perm+0x10/0x10
[  173.834721][ T7687]  do_splice_direct+0x181/0x270
[  173.834743][ T7687]  ? __pfx_do_splice_direct+0x10/0x10
[  173.834771][ T7687]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  173.834794][ T7687]  ? bpf_lsm_file_permission+0x9/0x20
[  173.834809][ T7687]  ? security_file_permission+0x75/0x290
[  173.834831][ T7687]  ? rw_verify_area+0x258/0x650
[  173.834852][ T7687]  do_sendfile+0x4da/0x7e0
[  173.834866][ T7687]  ? __pfx_vfs_write+0x10/0x10
[  173.834888][ T7687]  ? __pfx_do_sendfile+0x10/0x10
[  173.834902][ T7687]  ? __fget_files+0x3a0/0x420
[  173.834931][ T7687]  __se_sys_sendfile64+0x13e/0x190
[  173.834955][ T7687]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  173.834981][ T7687]  ? do_syscall_64+0xbe/0x3b0
[  173.834998][ T7687]  do_syscall_64+0xfa/0x3b0
[  173.835010][ T7687]  ? lockdep_hardirqs_on+0x9c/0x150
[  173.835032][ T7687]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.835047][ T7687]  ? clear_bhb_loop+0x60/0xb0
[  173.835064][ T7687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.835079][ T7687] RIP: 0033:0x7f24de98e929
[  173.835092][ T7687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.835104][ T7687] RSP: 002b:00007f24df84b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  173.835120][ T7687] RAX: ffffffffffffffda RBX: 00007f24debb5fa0 RCX: 00007f24de98e929
[  173.835131][ T7687] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004
[  173.835139][ T7687] RBP: 00007f24df84b090 R08: 0000000000000000 R09: 0000000000000000
[  173.835148][ T7687] R10: 0000000000000203 R11: 0000000000000246 R12: 0000000000000001
[  173.835156][ T7687] R13: 0000000000000000 R14: 00007f24debb5fa0 R15: 00007ffe81c5e0b8
[  173.835178][ T7687]  </TASK>
[  174.354666][ T7691] FAT-fs (rnullb0): bogus number of reserved sectors
[  174.361630][ T7691] FAT-fs (rnullb0): Can't find a valid FAT filesystem
[  174.480411][ T7699] netlink: 44 bytes leftover after parsing attributes in process `syz.0.654'.
[  174.489649][ T7699] netlink: 43 bytes leftover after parsing attributes in process `syz.0.654'.
[  174.502125][ T7699] netlink: 'syz.0.654': attribute type 5 has an invalid length.
[  174.510941][ T7699] netlink: 43 bytes leftover after parsing attributes in process `syz.0.654'.
[  174.701066][ T7710] netlink: 44 bytes leftover after parsing attributes in process `syz.0.658'.
[  174.854569][ T7718] vxfs: WRONG superblock magic 00000000 at 1
[  174.861662][ T7718] vxfs: WRONG superblock magic 00000000 at 8
[  174.869875][ T7718] vxfs: can't find superblock.
[  175.023677][ T5880] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  175.185309][ T5880] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  175.196319][ T5880] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  175.205726][ T5880] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  175.216077][ T5880] usb 1-1: config 0 descriptor??
[  175.489598][ T7722] netlink: 'syz.1.664': attribute type 6 has an invalid length.
[  175.543532][ T7724] netlink: 44 bytes leftover after parsing attributes in process `syz.1.665'.
[  175.552601][ T7724] netlink: 43 bytes leftover after parsing attributes in process `syz.1.665'.
[  175.562308][ T7724] netlink: 'syz.1.665': attribute type 5 has an invalid length.
[  175.570277][ T7724] netlink: 43 bytes leftover after parsing attributes in process `syz.1.665'.
[  175.627105][ T7726] netlink: 9 bytes leftover after parsing attributes in process `syz.1.666'.
[  175.630664][ T5880] keytouch 0003:0926:3333.000E: fixing up Keytouch IEC report descriptor
[  175.641517][ T7726] netlink: 25 bytes leftover after parsing attributes in process `syz.1.666'.
[  175.657367][ T7726] 1{X功: left promiscuous mode
[  175.662478][ T7726] 1{X功: entered allmulticast mode
[  175.669595][ T5880] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0926:3333.000E/input/input19
[  175.780129][ T5880] keytouch 0003:0926:3333.000E: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0
[  175.973310][ T5915] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  176.123241][ T5915] usb 2-1: Using ep0 maxpacket: 32
[  176.129959][ T5915] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[  176.138522][ T5915] usb 2-1: config 0 has no interface number 0
[  176.148853][ T5915] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  176.158984][ T5915] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  176.162223][ T5899] usb 1-1: USB disconnect, device number 22
[  176.174215][ T5915] usb 2-1: Product: syz
[  176.178445][ T5915] usb 2-1: Manufacturer: syz
[  176.183978][ T5915] usb 2-1: SerialNumber: syz
[  176.204640][ T5915] usb 2-1: config 0 descriptor??
[  176.227878][ T5915] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  176.418592][ T5915] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  176.431590][ T5915] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  176.821775][ T7728] overlayfs: missing 'lowerdir'
[  176.832738][    C0] usb 2-1: qt2_read_bulk_callback - non-zero urb status: -71
[  176.841937][ T5880] usb 2-1: USB disconnect, device number 22
[  176.867813][ T5880] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  176.886549][ T5880] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  176.900983][ T5880] quatech2 2-1:0.51: device disconnected
[  177.323610][ T7740] loop6: detected capacity change from 0 to 524287999
[  177.365347][ T7662] Buffer I/O error on dev loop6, logical block 65535999, async page read
[  177.431485][ T7740] FAT-fs (rnullb0): bogus number of reserved sectors
[  177.442038][ T7740] FAT-fs (rnullb0): Can't find a valid FAT filesystem
[  177.476542][ T7743] warning: `syz.1.673' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  177.505305][ T7743] syzkaller0: entered allmulticast mode
[  177.523564][ T7743] syzkaller0: entered promiscuous mode
[  177.546985][ T7743] syzkaller0 (unregistering): left promiscuous mode
[  177.565486][ T7743] syzkaller0 (unregistering): left allmulticast mode
[  178.543492][ T5880] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  178.695254][ T5880] usb 1-1: config 0 has no interfaces?
[  178.701884][ T5880] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  178.711170][ T5880] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  178.719272][ T5880] usb 1-1: SerialNumber: syz
[  178.726722][ T5880] usb 1-1: config 0 descriptor??
[  178.832426][ T7766] __nla_validate_parse: 3 callbacks suppressed
[  178.832442][ T7766] netlink: 9 bytes leftover after parsing attributes in process `syz.1.682'.
[  178.850228][ T7766] 1{X功: entered promiscuous mode
[  178.855908][ T7766] 1{X功: left allmulticast mode
[  178.864481][ T7766] netlink: 5 bytes leftover after parsing attributes in process `syz.1.682'.
[  178.873463][ T7766] 0{X功: renamed from 
31{X功
[  178.880535][ T7766] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  178.940866][ T5899] usb 1-1: USB disconnect, device number 23
[  179.040002][ T7772] overlay: Unknown parameter 'euid<00000000000000000000'
[  179.097832][ T7774] syzkaller0: entered allmulticast mode
[  179.106181][ T7774] syzkaller0: entered promiscuous mode
[  179.121961][ T7773] syzkaller0: left promiscuous mode
[  179.128344][ T7773] syzkaller0: left allmulticast mode
[  179.463251][ T5899] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  179.613236][ T5899] usb 2-1: Using ep0 maxpacket: 8
[  179.679829][ T7786] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  179.690668][ T7786] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  179.704047][ T5899] usb 2-1: unable to get BOS descriptor or descriptor too short
[  179.724179][ T5899] usb 2-1: unable to read config index 0 descriptor/start: -71
[  179.731897][ T5899] usb 2-1: can't read configurations, error -71
[  180.261899][ T7788] netlink: 9 bytes leftover after parsing attributes in process `syz.1.690'.
[  180.273004][ T7788] netlink: 5 bytes leftover after parsing attributes in process `syz.1.690'.
[  180.285399][ T7788] 1{X功: renamed from 
30{X功
[  180.300786][ T7788] A link change request failed with some changes committed already. Interface 
31{X功 may have been left with an inconsistent configuration, please check.
[  180.510527][ T7800] netlink: 44 bytes leftover after parsing attributes in process `syz.0.695'.
[  180.519608][ T7800] netlink: 43 bytes leftover after parsing attributes in process `syz.0.695'.
[  180.532872][ T7800] netlink: 'syz.0.695': attribute type 5 has an invalid length.
[  180.541136][ T7800] netlink: 43 bytes leftover after parsing attributes in process `syz.0.695'.
[  180.635904][ T7806] netlink: 20 bytes leftover after parsing attributes in process `syz.0.698'.
[  180.647019][ T7806] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  180.761429][ T7810] UDF-fs: warning (device rnullb0): udf_load_vrs: No VRS found
[  180.769384][ T7810] UDF-fs: Scanning with blocksize 4096 failed
[  180.956778][ T7818] netlink: 44 bytes leftover after parsing attributes in process `syz.0.702'.
[  181.340682][   T30] audit: type=1800 audit(1750648775.632:3): pid=7829 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.707" name="/" dev="9p" ino=2 res=0 errno=0
[  194.457306][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  194.463891][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  255.896923][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  255.903449][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  308.373214][   T31] INFO: task kworker/0:2:847 blocked for more than 143 seconds.
[  308.380938][   T31]       Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0
[  308.391827][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  308.400710][   T31] task:kworker/0:2     state:D stack:21032 pid:847   tgid:847   ppid:2      task_flags:0x4208060 flags:0x00004000
[  308.412965][   T31] Workqueue: events rfkill_global_led_trigger_worker
[  308.419769][   T31] Call Trace:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  308.423341][   T31]  <TASK>
[  308.428803][   T31]  __schedule+0x16f5/0x4d00
[  308.433807][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  308.439253][   T31]  ? schedule+0x165/0x360
[  308.443732][   T31]  ? __pfx___schedule+0x10/0x10
[  308.448678][   T31]  ? schedule+0x91/0x360
[  308.453142][   T31]  schedule+0x165/0x360
[  308.457358][   T31]  schedule_preempt_disabled+0x13/0x30
[  308.462882][   T31]  __mutex_lock+0x724/0xe80
[  308.467537][   T31]  ? look_up_lock_class+0x74/0x170
[  308.472714][   T31]  ? __mutex_lock+0x51b/0xe80
[  308.477818][   T31]  ? rfkill_global_led_trigger_worker+0x27/0xd0
[  308.533838][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  308.538965][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  308.566909][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  308.572739][   T31]  rfkill_global_led_trigger_worker+0x27/0xd0
[  308.591291][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  308.597480][   T31]  process_scheduled_works+0xae1/0x17b0
[  308.603611][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[  308.609679][   T31]  worker_thread+0x8a0/0xda0
[  308.614837][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  308.621246][   T31]  ? __kthread_parkme+0x7b/0x200
[  308.626743][   T31]  kthread+0x70e/0x8a0
[  308.630883][   T31]  ? __pfx_worker_thread+0x10/0x10
[  308.636642][   T31]  ? __pfx_kthread+0x10/0x10
[  308.641293][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  308.646699][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  308.651952][   T31]  ? __pfx_kthread+0x10/0x10
[  308.656618][   T31]  ret_from_fork+0x3fc/0x770
[  308.661252][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  308.666522][   T31]  ? __switch_to_asm+0x39/0x70
[  308.671349][   T31]  ? __switch_to_asm+0x33/0x70
[  308.676264][   T31]  ? __pfx_kthread+0x10/0x10
[  308.680899][   T31]  ret_from_fork_asm+0x1a/0x30
[  308.685832][   T31]  </TASK>
[  308.689003][   T31] INFO: task syz.3.477:7193 blocked for more than 143 seconds.
[  308.696726][   T31]       Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0
[  308.704436][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  308.713206][   T31] task:syz.3.477       state:D stack:25096 pid:7193  tgid:7193  ppid:5833   task_flags:0x400040 flags:0x00004004
[  308.725225][   T31] Call Trace:
[  308.728539][   T31]  <TASK>
[  308.731482][   T31]  __schedule+0x16f5/0x4d00
[  308.736085][   T31]  ? __lock_acquire+0xab9/0xd20
[  308.740984][   T31]  ? schedule+0x165/0x360
[  308.745590][   T31]  ? __pfx___schedule+0x10/0x10
[  308.750545][   T31]  ? schedule+0x91/0x360
[  308.754903][   T31]  schedule+0x165/0x360
[  308.759100][   T31]  schedule_preempt_disabled+0x13/0x30
[  308.764658][   T31]  __mutex_lock+0x724/0xe80
[  308.769194][   T31]  ? kobject_put+0x43f/0x480
[  308.773854][   T31]  ? __mutex_lock+0x51b/0xe80
[  308.778567][   T31]  ? rfkill_unregister+0xc8/0x220
[  308.783689][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  308.788758][   T31]  ? __pfx_device_del+0x10/0x10
[  308.793675][   T31]  rfkill_unregister+0xc8/0x220
[  308.798545][   T31]  nfc_unregister_device+0x96/0x2a0
[  308.803836][   T31]  ? __pfx_virtual_ncidev_close+0x10/0x10
[  308.809620][   T31]  virtual_ncidev_close+0x56/0x90
[  308.814717][   T31]  __fput+0x44c/0xa70
[  308.818747][   T31]  task_work_run+0x1d1/0x260
[  308.823469][   T31]  ? __pfx_task_work_run+0x10/0x10
[  308.828741][   T31]  ? exit_to_user_mode_loop+0x40/0x110
[  308.834272][   T31]  exit_to_user_mode_loop+0xec/0x110
[  308.839592][   T31]  do_syscall_64+0x2bd/0x3b0
[  308.844272][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.850388][   T31]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  308.856777][   T31]  ? clear_bhb_loop+0x60/0xb0
[  308.861515][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.867516][   T31] RIP: 0033:0x7f9a08f8e929
[  308.871975][   T31] RSP: 002b:00007ffccd9ab028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  308.880502][   T31] RAX: 0000000000000000 RBX: 00007f9a091b7ba0 RCX: 00007f9a08f8e929
[  308.888587][   T31] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  308.896675][   T31] RBP: 00007f9a091b7ba0 R08: 0000000000000238 R09: 0000001ecd9ab31f
[  308.904746][   T31] R10: 00007f9a091b7ac0 R11: 0000000000000246 R12: 000000000002371c
[  308.912839][   T31] R13: 00007f9a091b6080 R14: ffffffffffffffff R15: 00007ffccd9ab140
[  308.920921][   T31]  </TASK>
[  308.924048][   T31] INFO: task syz.3.477:7195 blocked for more than 143 seconds.
[  308.931617][   T31]       Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0
[  308.939455][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  308.948207][   T31] task:syz.3.477       state:D stack:25656 pid:7195  tgid:7193  ppid:5833   task_flags:0x400140 flags:0x00004006
[  308.960240][   T31] Call Trace:
[  308.963775][   T31]  <TASK>
[  308.966740][   T31]  __schedule+0x16f5/0x4d00
[  308.971291][   T31]  ? __lock_acquire+0xab9/0xd20
[  308.976232][   T31]  ? schedule+0x165/0x360
[  308.980614][   T31]  ? __pfx___schedule+0x10/0x10
[  308.985592][   T31]  ? schedule+0x91/0x360
[  308.989892][   T31]  schedule+0x165/0x360
[  308.994144][   T31]  schedule_preempt_disabled+0x13/0x30
[  308.999653][   T31]  __mutex_lock+0x724/0xe80
[  309.004259][   T31]  ? kobject_put+0x43f/0x480
[  309.008893][   T31]  ? __mutex_lock+0x51b/0xe80
[  309.013662][   T31]  ? rfkill_unregister+0xc8/0x220
[  309.018739][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  309.023852][   T31]  ? __pfx_device_del+0x10/0x10
[  309.028741][   T31]  rfkill_unregister+0xc8/0x220
[  309.033687][   T31]  nfc_unregister_device+0x96/0x2a0
[  309.038923][   T31]  ? __pfx_virtual_ncidev_close+0x10/0x10
[  309.044748][   T31]  virtual_ncidev_close+0x56/0x90
[  309.049812][   T31]  __fput+0x44c/0xa70
[  309.053866][   T31]  task_work_run+0x1d1/0x260
[  309.058508][   T31]  ? __pfx_task_work_run+0x10/0x10
[  309.063728][   T31]  get_signal+0x11ed/0x1340
[  309.068268][   T31]  ? task_work_add+0x377/0x420
[  309.073299][   T31]  ? __pfx_vfs_read+0x10/0x10
[  309.078022][   T31]  arch_do_signal_or_restart+0x9a/0x750
[  309.083660][   T31]  ? __pfx___fput_deferred+0x10/0x10
[  309.088978][   T31]  ? __fget_files+0x2a/0x420
[  309.093792][   T31]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  309.100008][   T31]  ? exit_to_user_mode_loop+0x40/0x110
[  309.105591][   T31]  exit_to_user_mode_loop+0x75/0x110
[  309.110930][   T31]  do_syscall_64+0x2bd/0x3b0
[  309.115600][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  309.120851][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.126995][   T31]  ? clear_bhb_loop+0x60/0xb0
[  309.131691][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.137647][   T31] RIP: 0033:0x7f9a08f8e929
[  309.142094][   T31] RSP: 002b:00007f9a09e55038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  309.150612][   T31] RAX: fffffffffffffff2 RBX: 00007f9a091b5fa0 RCX: 00007f9a08f8e929
[  309.158659][   T31] RDX: 0000000000000071 RSI: 0000200000001600 RDI: 0000000000000006
[  309.166715][   T31] RBP: 00007f9a09010b39 R08: 0000000000000000 R09: 0000000000000000
[  309.174745][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  309.182732][   T31] R13: 0000000000000000 R14: 00007f9a091b5fa0 R15: 00007ffccd9aaec8
[  309.190958][   T31]  </TASK>
[  309.194059][   T31] INFO: task syz.2.479:7206 blocked for more than 144 seconds.
[  309.201626][   T31]       Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0
[  309.213173][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  309.221898][   T31] task:syz.2.479       state:D stack:24312 pid:7206  tgid:7200  ppid:5830   task_flags:0x400040 flags:0x00004006
[  309.234145][   T31] Call Trace:
[  309.237491][   T31]  <TASK>
[  309.240462][   T31]  __schedule+0x16f5/0x4d00
[  309.245162][   T31]  ? __lock_acquire+0xab9/0xd20
[  309.250072][   T31]  ? schedule+0x165/0x360
[  309.254789][   T31]  ? __pfx___schedule+0x10/0x10
[  309.259717][   T31]  ? schedule+0x91/0x360
[  309.264283][   T31]  schedule+0x165/0x360
[  309.268581][   T31]  schedule_preempt_disabled+0x13/0x30
[  309.274363][   T31]  __mutex_lock+0x724/0xe80
[  309.278910][   T31]  ? __lock_acquire+0xab9/0xd20
[  309.284057][   T31]  ? __mutex_lock+0x51b/0xe80
[  309.288779][   T31]  ? nfc_rfkill_set_block+0x50/0x2e0
[  309.294519][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  309.299605][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  309.304902][   T31]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  309.310870][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  309.317292][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[  309.323108][   T31]  nfc_rfkill_set_block+0x50/0x2e0
[  309.328264][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[  309.339226][   T31]  rfkill_set_block+0x1cf/0x440
[  309.346110][   T31]  rfkill_fop_write+0x44b/0x570
[  309.351032][   T31]  ? common_file_perm+0x199/0x200
[  309.356444][   T31]  ? __pfx_rfkill_fop_write+0x10/0x10
[  309.361889][   T31]  ? security_file_permission+0x70/0x290
[  309.369005][   T31]  ? rw_verify_area+0x258/0x650
[  309.373973][   T31]  ? __pfx_rfkill_fop_write+0x10/0x10
[  309.379395][   T31]  vfs_write+0x27b/0xa90
[  309.383746][   T31]  ? __pfx_vfs_write+0x10/0x10
[  309.388552][   T31]  ? __fget_files+0x2a/0x420
[  309.393239][   T31]  ? __fget_files+0x2a/0x420
[  309.397879][   T31]  ? __fget_files+0x3a0/0x420
[  309.402571][   T31]  ? __fget_files+0x2a/0x420
[  309.407418][   T31]  ksys_write+0x145/0x250
[  309.411804][   T31]  ? __pfx_ksys_write+0x10/0x10
[  309.416746][   T31]  ? rcu_is_watching+0x15/0xb0
[  309.421573][   T31]  ? do_syscall_64+0xbe/0x3b0
[  309.426364][   T31]  do_syscall_64+0xfa/0x3b0
[  309.430930][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  309.436233][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.442378][   T31]  ? clear_bhb_loop+0x60/0xb0
[  309.447161][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.453192][   T31] RIP: 0033:0x7ff9b6d8e929
[  309.457655][   T31] RSP: 002b:00007ff9b7bd3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  309.466337][   T31] RAX: ffffffffffffffda RBX: 00007ff9b6fb6080 RCX: 00007ff9b6d8e929
[  309.474481][   T31] RDX: 0000000000000008 RSI: 0000200000000080 RDI: 0000000000000005
[  309.482508][   T31] RBP: 00007ff9b6e10b39 R08: 0000000000000000 R09: 0000000000000000
[  309.490593][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  309.498646][   T31] R13: 0000000000000000 R14: 00007ff9b6fb6080 R15: 00007ffcb075e4d8
[  309.506698][   T31]  </TASK>
[  309.509773][   T31] INFO: task syz-executor:7402 blocked for more than 144 seconds.
[  309.517853][   T31]       Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0
[  309.525588][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  309.534435][   T31] task:syz-executor    state:D stack:28008 pid:7402  tgid:7402  ppid:1      task_flags:0x400040 flags:0x00004000
[  309.546561][   T31] Call Trace:
[  309.549883][   T31]  <TASK>
[  309.552831][   T31]  __schedule+0x16f5/0x4d00
[  309.557604][   T31]  ? __lock_acquire+0xab9/0xd20
[  309.562497][   T31]  ? schedule+0x165/0x360
[  309.566908][   T31]  ? __pfx___schedule+0x10/0x10
[  309.571811][   T31]  ? schedule+0x91/0x360
[  309.576481][   T31]  schedule+0x165/0x360
[  309.580696][   T31]  schedule_preempt_disabled+0x13/0x30
[  309.586475][   T31]  __mutex_lock+0x724/0xe80
[  309.591148][   T31]  ? __mutex_lock+0x51b/0xe80
[  309.596000][   T31]  ? rfkill_register+0x37/0x8e0
[  309.600906][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  309.606039][   T31]  ? __raw_spin_lock_init+0x45/0x100
[  309.611392][   T31]  ? __init_waitqueue_head+0xa9/0x150
[  309.616910][   T31]  ? device_initialize+0x24b/0x440
[  309.622067][   T31]  rfkill_register+0x37/0x8e0
[  309.627013][   T31]  hci_register_dev+0x3f5/0x890
[  309.631919][   T31]  vhci_create_device+0x39c/0x6e0
[  309.637055][   T31]  vhci_write+0x3ce/0x4a0
[  309.641433][   T31]  vfs_write+0x548/0xa90
[  309.645757][   T31]  ? __pfx_vhci_write+0x10/0x10
[  309.650654][   T31]  ? __pfx_vfs_write+0x10/0x10
[  309.655580][   T31]  ? count_memcg_event_mm+0x21/0x260
[  309.660975][   T31]  ksys_write+0x145/0x250
[  309.665471][   T31]  ? __pfx_ksys_write+0x10/0x10
[  309.670472][   T31]  ? do_syscall_64+0xbe/0x3b0
[  309.675260][   T31]  do_syscall_64+0xfa/0x3b0
[  309.679800][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  309.685171][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.691298][   T31]  ? clear_bhb_loop+0x60/0xb0
[  309.696083][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.702019][   T31] RIP: 0033:0x7f5dff58d3a0
[  309.706540][   T31] RSP: 002b:00007ffe04a0b5f8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001
[  309.715059][   T31] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f5dff58d3a0
[  309.723133][   T31] RDX: 0000000000000002 RSI: 00007ffe04a0b60a RDI: 00000000000000ca
[  309.731252][   T31] RBP: 00007f5dff7b6738 R08: 0000000000000000 R09: 00007f5e002ed6c0
[  309.739531][   T31] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[  309.747599][   T31] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  309.755692][   T31]  </TASK>
[  309.758862][   T31] INFO: task syz-executor:7418 blocked for more than 144 seconds.
[  309.766991][   T31]       Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0
[  309.774778][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  309.783532][   T31] task:syz-executor    state:D stack:26040 pid:7418  tgid:7418  ppid:1      task_flags:0x400040 flags:0x00004000
[  309.795584][   T31] Call Trace:
[  309.798895][   T31]  <TASK>
[  309.801845][   T31]  __schedule+0x16f5/0x4d00
[  309.806496][   T31]  ? __lock_acquire+0xab9/0xd20
[  309.811512][   T31]  ? schedule+0x165/0x360
[  309.815966][   T31]  ? __pfx___schedule+0x10/0x10
[  309.820876][   T31]  ? schedule+0x91/0x360
[  309.825239][   T31]  schedule+0x165/0x360
[  309.829451][   T31]  schedule_preempt_disabled+0x13/0x30
[  309.835011][   T31]  __mutex_lock+0x724/0xe80
[  309.839552][   T31]  ? __mutex_lock+0x51b/0xe80
[  309.844513][   T31]  ? rfkill_register+0x37/0x8e0
[  309.849441][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  309.854607][   T31]  ? __raw_spin_lock_init+0x45/0x100
[  309.859946][   T31]  ? __init_waitqueue_head+0xa9/0x150
[  309.865444][   T31]  ? device_initialize+0x24b/0x440
[  309.870609][   T31]  rfkill_register+0x37/0x8e0
[  309.875437][   T31]  hci_register_dev+0x3f5/0x890
[  309.880360][   T31]  vhci_create_device+0x39c/0x6e0
[  309.885519][   T31]  vhci_write+0x3ce/0x4a0
[  309.889914][   T31]  vfs_write+0x548/0xa90
[  309.894274][   T31]  ? __pfx_vhci_write+0x10/0x10
[  309.899172][   T31]  ? __pfx_vfs_write+0x10/0x10
[  309.904039][   T31]  ? count_memcg_event_mm+0x21/0x260
[  309.909450][   T31]  ksys_write+0x145/0x250
[  309.913918][   T31]  ? __pfx_ksys_write+0x10/0x10
[  309.918815][   T31]  ? do_syscall_64+0xbe/0x3b0
[  309.923604][   T31]  do_syscall_64+0xfa/0x3b0
[  309.928149][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  309.933461][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.939648][   T31]  ? clear_bhb_loop+0x60/0xb0
[  309.944425][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.950356][   T31] RIP: 0033:0x7f4e4358d3a0
[  309.955046][   T31] RSP: 002b:00007ffc5dec3d48 EFLAGS: 00000202 ORIG_RAX: 0000000000000001
[  309.963602][   T31] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f4e4358d3a0
[  309.971614][   T31] RDX: 0000000000000002 RSI: 00007ffc5dec3d5a RDI: 00000000000000ca
[  309.979690][   T31] RBP: 00007f4e437b6738 R08: 0000000000000000 R09: 00007f4e442ed6c0
[  309.987762][   T31] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[  309.995831][   T31] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  310.003918][   T31]  </TASK>
[  310.007012][   T31] 
[  310.007012][   T31] Showing all locks held in the system:
[  310.014844][   T31] 1 lock held by khungtaskd/31:
[  310.019719][   T31]  #0: ffffffff8e33ee60 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  310.029696][   T31] 3 locks held by kworker/0:2/847:
[  310.034895][   T31]  #0: ffff88801a880d48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  310.045969][   T31]  #1: ffffc90003657bc0 ((work_completion)(&rfkill_global_led_trigger_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  310.059658][   T31]  #2: ffffffff8f9fd0e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_global_led_trigger_worker+0x27/0xd0
[  310.071262][   T31] 1 lock held by syslogd/5183:
[  310.076128][   T31]  #0: ffff8880b8739f98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  310.086160][   T31] 2 locks held by getty/5589:
[  310.090863][   T31]  #0: ffff88814c9c30a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  310.100733][   T31]  #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[  310.110940][   T31] 2 locks held by syz.3.477/7193:
[  310.116055][   T31]  #0: ffff88805d079100 (&dev->mutex){....}-{4:4}, at: nfc_unregister_device+0x63/0x2a0
[  310.125902][   T31]  #1: ffffffff8f9fd0e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xc8/0x220
[  310.136160][   T31] 2 locks held by syz.3.477/7195:
[  310.141230][   T31]  #0: ffff88805e98b100 (&dev->mutex){....}-{4:4}, at: nfc_unregister_device+0x63/0x2a0
[  310.151167][   T31]  #1: ffffffff8f9fd0e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xc8/0x220
[  310.161435][   T31] 2 locks held by syz.2.479/7206:
[  310.166559][   T31]  #0: ffffffff8f9fd0e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_fop_write+0x191/0x570
[  310.176907][   T31]  #1: ffff88805d079100 (&dev->mutex){....}-{4:4}, at: nfc_rfkill_set_block+0x50/0x2e0
[  310.186659][   T31] 2 locks held by syz-executor/7402:
[  310.191971][   T31]  #0: ffff888079d80118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6e0
[  310.202116][   T31]  #1: ffffffff8f9fd0e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x37/0x8e0
[  310.212155][   T31] 2 locks held by syz-executor/7418:
[  310.217520][   T31]  #0: ffff8880535a3918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device+0x34/0x6e0
[  310.227771][   T31]  #1: ffffffff8f9fd0e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x37/0x8e0
[  310.237998][   T31] 3 locks held by syz.0.708/7830:
[  310.243091][   T31]  #0: ffffffff8ebd4588 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  310.251617][   T31]  #1: ffff88803397c100 (&dev->mutex){....}-{4:4}, at: nfc_register_device+0xa1/0x320
[  310.261311][   T31]  #2: ffffffff8f9fd0e8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x37/0x8e0
[  310.271426][   T31] 1 lock held by syz.1.709/7838:
[  310.276472][   T31]  #0: ffffffff8ebd4588 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  310.285194][   T31] 1 lock held by syz-executor/7846:
[  310.290429][   T31]  #0: ffffffff8ebd4588 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  310.299040][   T31] 1 lock held by syz-executor/7847:
[  310.304318][   T31]  #0: ffffffff8ebd4588 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  310.312847][   T31] 1 lock held by syz-executor/7849:
[  310.318135][   T31]  #0: ffffffff8ebd4588 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  310.326739][   T31] 1 lock held by syz-executor/7851:
[  310.331944][   T31]  #0: ffffffff8ebd4588 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  310.340513][   T31] 1 lock held by syz-executor/7858:
[  310.345776][   T31]  #0: ffffffff8ebd4588 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  310.354401][   T31] 1 lock held by syz-executor/7859:
[  310.359625][   T31]  #0: ffffffff8ebd4588 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  310.368480][   T31] 1 lock held by syz-executor/7861:
[  310.375504][   T31]  #0: ffffffff8ebd4588 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  310.385159][   T31] 1 lock held by syz-executor/7863:
[  310.390429][   T31]  #0: ffffffff8ebd4588 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  310.399222][   T31] 
[  310.401587][   T31] =============================================
[  310.401587][   T31] 
[  310.410187][   T31] NMI backtrace for cpu 0
[  310.410205][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) 
[  310.410230][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  310.410242][   T31] Call Trace:
[  310.410250][   T31]  <TASK>
[  310.410259][   T31]  dump_stack_lvl+0x189/0x250
[  310.410285][   T31]  ? __wake_up_klogd+0xd9/0x110
[  310.410316][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  310.410346][   T31]  ? __pfx__printk+0x10/0x10
[  310.410381][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[  310.410412][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  310.410436][   T31]  ? _printk+0xcf/0x120
[  310.410462][   T31]  ? __pfx__printk+0x10/0x10
[  310.410487][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  310.410521][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  310.410551][   T31]  watchdog+0xfee/0x1030
[  310.410573][   T31]  ? watchdog+0x1de/0x1030
[  310.410601][   T31]  kthread+0x70e/0x8a0
[  310.410632][   T31]  ? __pfx_watchdog+0x10/0x10
[  310.410650][   T31]  ? __pfx_kthread+0x10/0x10
[  310.410679][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  310.410707][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  310.410735][   T31]  ? __pfx_kthread+0x10/0x10
[  310.410763][   T31]  ret_from_fork+0x3fc/0x770
[  310.410786][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  310.410810][   T31]  ? __switch_to_asm+0x39/0x70
[  310.410835][   T31]  ? __switch_to_asm+0x33/0x70
[  310.410860][   T31]  ? __pfx_kthread+0x10/0x10
[  310.410889][   T31]  ret_from_fork_asm+0x1a/0x30
[  310.410932][   T31]  </TASK>
[  310.410940][   T31] Sending NMI from CPU 0 to CPUs 1:
[  310.568636][    C1] NMI backtrace for cpu 1
[  310.568655][    C1] CPU: 1 UID: 0 PID: 13 Comm: kworker/u8:1 Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) 
[  310.568677][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  310.568689][    C1] Workqueue: events_unbound toggle_allocation_gate
[  310.568717][    C1] RIP: 0010:task_non_contending+0x0/0xf10
[  310.568737][    C1] Code: 89 e7 e8 03 bb 89 00 48 ba 00 00 00 00 00 fc ff df e9 d7 fd ff ff 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <55> 41 57 41 56 41 55 41 54 53 48 83 ec 58 48 89 fb 48 bd 00 00 00
[  310.568752][    C1] RSP: 0018:ffffc900001275d8 EFLAGS: 00000082
[  310.568766][    C1] RAX: dffffc0000000000 RBX: ffff8880b873a970 RCX: dffffc0000000000
[  310.568779][    C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff8880b873a970
[  310.568791][    C1] RBP: ffff8880b8739f80 R08: ffffffff8fc22df7 R09: 1ffffffff1f845be
[  310.568804][    C1] R10: dffffc0000000000 R11: fffffbfff1f845bf R12: 0000000000000000
[  310.568816][    C1] R13: 1ffff110170e740b R14: ffff8880b873a988 R15: dffffc0000000000
[  310.568829][    C1] FS:  0000000000000000(0000) GS:ffff888125b1c000(0000) knlGS:0000000000000000
[  310.568843][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  310.568855][    C1] CR2: 00005570852c6000 CR3: 000000000e138000 CR4: 00000000003526f0
[  310.568871][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  310.568881][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  310.568891][    C1] Call Trace:
[  310.568899][    C1]  <TASK>
[  310.568905][    C1]  dl_server_stop+0x43/0x90
[  310.568925][    C1]  dequeue_entities+0xfa0/0x1510
[  310.568950][    C1]  ? do_raw_spin_lock+0x121/0x290
[  310.568981][    C1]  dequeue_task_fair+0x205/0x580
[  310.569006][    C1]  __schedule+0x5a7/0x4d00
[  310.569038][    C1]  ? do_raw_spin_lock+0x121/0x290
[  310.569061][    C1]  ? schedule+0x165/0x360
[  310.569085][    C1]  ? __lock_acquire+0xab9/0xd20
[  310.569101][    C1]  ? __pfx___schedule+0x10/0x10
[  310.569133][    C1]  ? schedule+0x91/0x360
[  310.569157][    C1]  schedule+0x165/0x360
[  310.569181][    C1]  toggle_allocation_gate+0x159/0x240
[  310.569203][    C1]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  310.569224][    C1]  ? __pfx_autoremove_wake_function+0x10/0x10
[  310.569252][    C1]  ? process_scheduled_works+0x9ef/0x17b0
[  310.569271][    C1]  ? process_scheduled_works+0x9ef/0x17b0
[  310.569290][    C1]  process_scheduled_works+0xae1/0x17b0
[  310.569324][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  310.569350][    C1]  worker_thread+0x8a0/0xda0
[  310.569383][    C1]  kthread+0x70e/0x8a0
[  310.569413][    C1]  ? __pfx_worker_thread+0x10/0x10
[  310.569431][    C1]  ? __pfx_kthread+0x10/0x10
[  310.569455][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  310.569478][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  310.569503][    C1]  ? __pfx_kthread+0x10/0x10
[  310.569526][    C1]  ret_from_fork+0x3fc/0x770
[  310.569544][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  310.569564][    C1]  ? __switch_to_asm+0x39/0x70
[  310.569586][    C1]  ? __switch_to_asm+0x33/0x70
[  310.569606][    C1]  ? __pfx_kthread+0x10/0x10
[  310.569629][    C1]  ret_from_fork_asm+0x1a/0x30
[  310.569660][    C1]  </TASK>
[  310.570700][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  310.883569][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc2-syzkaller-00378-gb67ec639010f #0 PREEMPT(full) 
[  310.895390][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  310.905488][   T31] Call Trace:
[  310.908789][   T31]  <TASK>
[  310.911737][   T31]  dump_stack_lvl+0x99/0x250
[  310.916351][   T31]  ? __asan_memcpy+0x40/0x70
[  310.920956][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  310.926173][   T31]  ? __pfx__printk+0x10/0x10
[  310.930812][   T31]  panic+0x2db/0x790
[  310.934752][   T31]  ? __pfx_panic+0x10/0x10
[  310.939178][   T31]  ? nmi_backtrace_stall_check+0x433/0x440
[  310.945000][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  310.950396][   T31]  ? nmi_trigger_cpumask_backtrace+0x2b6/0x300
[  310.956576][   T31]  watchdog+0x102d/0x1030
[  310.960972][   T31]  ? watchdog+0x1de/0x1030
[  310.965410][   T31]  kthread+0x70e/0x8a0
[  310.969511][   T31]  ? __pfx_watchdog+0x10/0x10
[  310.974201][   T31]  ? __pfx_kthread+0x10/0x10
[  310.978820][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  310.984046][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  310.989280][   T31]  ? __pfx_kthread+0x10/0x10
[  310.993891][   T31]  ret_from_fork+0x3fc/0x770
[  310.998526][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  311.003651][   T31]  ? __switch_to_asm+0x39/0x70
[  311.008426][   T31]  ? __switch_to_asm+0x33/0x70
[  311.013220][   T31]  ? __pfx_kthread+0x10/0x10
[  311.017833][   T31]  ret_from_fork_asm+0x1a/0x30
[  311.022624][   T31]  </TASK>
[  311.025993][   T31] Kernel Offset: disabled
[  311.030351][   T31] Rebooting in 86400 seconds..