last executing test programs:

22m32.997637522s ago: executing program 32 (id=49):
pipe2(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = memfd_create(&(0x7f00000002c0)='\x103q}2\x9a\xce\xaf\x03\x86\xe7\xc0\x14\x8f^\xd5\xfd\xa9\r\xac7A\x94\xeb\xcd\t\x00\x90k\xd6\x05\r\x84\x87\x1c\b\x8c`\xea\x13A\x90m\xb6&\xd0\x9daA\xc5\xb8_\xd4\x18,\f\xd4s\xb2\x99/\xc0\x9a\xf2_\xdb\xc0\x8b\x19\x17\xb7Rvd\xcb:\b\xeeC0\xa3\xa6\xcf\x00\x00\xac\xc5h&+\t\x98\'\xfd|\x11\x99\xa2*6{\xd2C>2\x0e\"\xbc\xda\xee\xb0\xd8\xbf\xaf)\xf58c\x189K\x82\xd1(\xceY*\xcb\x9b\xbdn\x8e\x98m\x10L\xec\xfdWF\x7fj\x19\xb8<\xd2\x9d\xf0\xe9Qy\xe32\xed\x16f\xfe&\x1a\xdb\xeb\xad\xaaE\b\xa9\xf8\xa9s\xc4d\xd4\x03\xf1\xb7xO\x99\x804m[Ai\x13\x02\xf0\x84c2s\xd5P\t`\x9b\x12&\x8cx\x8eg\x9d\xe6g', 0x0)
ftruncate(r2, 0x7)
splice(r2, 0x0, r1, 0x0, 0x100002, 0x9)
pipe2$9p(&(0x7f0000000180)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
tee(r0, r4, 0x81, 0xb)
vmsplice(r3, &(0x7f0000000140)=[{&(0x7f00000000c0)="6404733134642d", 0x7}], 0x1, 0x6)

20m32.924630373s ago: executing program 33 (id=893):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x89f1, &(0x7f0000000340)={'ip6tnl0\x00', &(0x7f00000001c0)=@ethtool_stats={0x1d, 0x2, [0x0, 0x9]}})
r2 = creat(&(0x7f0000000140)='./file0\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f00000000c0)=0x40000000)
syz_usb_connect$uac3(0x0, 0x9c, &(0x7f00000000c0)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x40, 0x41e, 0x3020, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x8a, 0x3, 0x1, 0xff, 0xc0, 0x10, {0x8, 0xb, 0x0, 0x2, 0x1, 0x1, 0x30, 0x7}, {{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x30, 0x0, {{0xa, 0x24, 0x1, 0x10, 0x26, 0x7}, [@output_terminal={0x13, 0x24, 0x3, 0xff, 0x401, 0x6, 0x6, 0x2, 0x3, 0x5, 0x7f, 0x80}, @feature_unit={0x9, 0x24, 0x7, 0x2, 0x4, [0x8]}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x30, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x20, 0x40, 0xd4, 0x4, {0xa, 0x25, 0x25, 0x6, 0x1, 0x4}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x30, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x210, 0xfa, 0xa, 0x2, {0xa, 0x25, 0x25, 0x0, 0x5, 0x9}}}}}}}}]}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a3200000000140000001100"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000f80)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2, 0x0, 0x3}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x7}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_TYPE={0x8}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x64}, 0x1, 0x0, 0x0, 0x800}, 0x4040000)

19m15.87601082s ago: executing program 34 (id=1445):
socket$igmp6(0xa, 0x3, 0x2)
socket$l2tp(0x2, 0x2, 0x73)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x1, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001000010700000000000000000a000800060001003a00000008000a00", @ANYRES32=r1], 0x24}}, 0x0)

18m25.201086566s ago: executing program 6 (id=1799):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close(0x3)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000a80)=ANY=[], 0x658}, 0x1, 0x0, 0x0, 0x4801}, 0x4040005)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000003440)=ANY=[], 0x1304}, 0x1, 0x0, 0x0, 0x20000811}, 0x0)

18m24.973176331s ago: executing program 6 (id=1801):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002000), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000002040), &(0x7f0000002080)='./file0\x00', 0x4000, &(0x7f0000002300)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x89901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r3, 0x0, 0xffffffffffffff9c, &(0x7f0000000340)='./file0/../file0/../file0/../file0/file0\x00', 0x4)

18m23.908017169s ago: executing program 6 (id=1805):
r0 = socket(0x10, 0x803, 0x4)
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x1, 0x803, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r1, 0x2458a}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_FAIL_OVER_MAC={0x5, 0xd, 0x1}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000044}, 0x4000040)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002280)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x300}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_LINK={0x8, 0x1, r1}]}}}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0x44}}, 0x884)

18m23.488431699s ago: executing program 6 (id=1807):
socketpair$unix(0x1, 0x3, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x2008c0, 0x0)
r0 = fsopen(&(0x7f0000000180)='proc\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x1)
fchdir(r1)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0xa82, 0x0)
write$cgroup_int(r2, &(0x7f0000000040)=0x900, 0x12)

18m23.32661096s ago: executing program 35 (id=1807):
socketpair$unix(0x1, 0x3, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x2008c0, 0x0)
r0 = fsopen(&(0x7f0000000180)='proc\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x1)
fchdir(r1)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0xa82, 0x0)
write$cgroup_int(r2, &(0x7f0000000040)=0x900, 0x12)

13m41.982660276s ago: executing program 36 (id=3213):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f00003b6000/0x4000)=nil, &(0x7f0000ff8000/0x8000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r1 = io_uring_setup(0x1e64, &(0x7f0000000040)={0x0, 0xe5fb, 0xc000, 0x7fff, 0x65})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xfff0}, {0xe, 0xffff}}}, 0x24}}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)
write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)

13m9.071107077s ago: executing program 37 (id=3294):
r0 = socket(0x10, 0x3, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000180), 0x20000, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="400000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001800128008000100707070000c00028008000100", @ANYRES32=r1], 0x40}}, 0x80)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
rename(&(0x7f0000000000)='./file0\x00', 0x0)
r2 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r2, &(0x7f0000000040)={0x2a, 0x1, 0xfffffffe}, 0xc)
r3 = socket$qrtr(0x2a, 0x2, 0x0)
recvmmsg(r2, &(0x7f0000000ac0)=[{{0x0, 0xff2c, 0x0}, 0x1}], 0x40, 0x2, 0x0)
connect$qrtr(r3, &(0x7f0000000040)={0x2a, 0x1, 0x4000}, 0xc)

12m49.958439089s ago: executing program 38 (id=3310):
ioctl$MEDIA_IOC_ENUM_LINKS(0xffffffffffffffff, 0xc0287c02, &(0x7f0000005400)={0x80000000, 0x0, 0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
openat$dlm_control(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000080)=@req3={0x8000, 0x200, 0x80, 0x20000, 0x0, 0x0, 0x8}, 0x1c)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0xc3072, 0xffffffffffffffff, 0x200000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mmap(&(0x7f0000568000/0x2000)=nil, 0x1000000, 0x0, 0x11, r0, 0x0)

12m38.190754909s ago: executing program 5 (id=3370):
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f000000a7c0)={0x2020}, 0x2020)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000340)={0x0, ""/256, 0x0, <r1=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$sndctrl(0x0, 0xe26, 0x101400)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
openat$cgroup_devices(0xffffffffffffffff, &(0x7f0000003040)='devices.allow\x00', 0x2, 0x0)
sendmmsg$unix(r0, &(0x7f0000004440), 0x0, 0x4000040)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000005500)={0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000340)={r1, 0x0, "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", "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"})
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000006740)={0x2020}, 0x2020)

12m36.826537534s ago: executing program 5 (id=3373):
r0 = userfaultfd(0x1)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x4ffe6, 0x0)
r1 = socket(0x10, 0x803, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x100, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x8c, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x0, r7, {0x5, 0x10}, {}, {0x9, 0xffff}}, [@filter_kind_options=@f_matchall={{0xd}, {0x58, 0x2, [@TCA_MATCHALL_ACT={0x54, 0x2, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0x40, 0x8, 0x30000000, 0x8}, 0x2, r7}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

12m36.235492726s ago: executing program 5 (id=3374):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xf, 0xf}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000008c0)=@newqdisc={0x34, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r6, {0xffff}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400dc}, 0x0)

12m35.558312488s ago: executing program 5 (id=3375):
accept$inet6(0xffffffffffffffff, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x1)
r0 = socket(0x1e, 0x4, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x40101, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
fsetxattr$trusted_overlay_upper(r0, 0x0, &(0x7f0000000180)={0x0, 0xfb, 0x4a, 0xeb57ea44d4d91bab, 0xc, "326cf951d351093247b7626e22e85a82", "f4bb1fc92fe78535906adc45ee30b8c846edd16e7e89083602909cb5fd9b93331bdf1e2b6aeb9e9bfc34d7b811198eabed267fe592"}, 0x4a, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
write$tun(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000886301000000feff1400"], 0x76)
syz_kvm_setup_cpu$x86(r3, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x42, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

12m34.341459042s ago: executing program 5 (id=3377):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006300)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x34014c40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000001d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x0, {0x0, 0x1a}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x78, 0x0, 0x6, {0x8, 0xfffffffe, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3966, 0x1, 0x8000, 0xfffffffc, r2, r3, 0x1, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x80101, 0x101)
write$tcp_congestion(r4, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
dup2(r4, r0)
write$FUSE_NOTIFY_POLL(r0, &(0x7f0000000100)={0xfffffffffffffeab, 0x1, 0x0, {0x2}}, 0xffffffe8)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x2}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

12m27.935728253s ago: executing program 5 (id=3390):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone(0x668c7400, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xc)
setxattr$trusted_overlay_redirect(0x0, &(0x7f0000000340), 0x0, 0x0, 0x2)
r2 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
write$sysctl(r2, &(0x7f0000000580)='1\x00', 0x2)
syz_emit_ethernet(0x3e, &(0x7f0000000080)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x30}, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010100, @local}, @time_exceeded={0xb, 0x0, 0x0, 0x3, 0x2c, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @private, @local}}}}}}, 0x0)
syz_usb_connect$hid(0x2, 0x36, 0x0, 0x0)
write$sysctl(r2, &(0x7f00000000c0)='2\x00', 0x2)

12m13.2281157s ago: executing program 39 (id=3388):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, 0x0, 0x4c000)
close(0xffffffffffffffff)
socket$kcm(0x29, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x20004040)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
shutdown(r2, 0x0)
recvmmsg(r2, &(0x7f0000005000)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=""/19, 0x13}, 0x3}], 0x4000169, 0x60, 0x0)

12m12.589759839s ago: executing program 40 (id=3390):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone(0x668c7400, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xc)
setxattr$trusted_overlay_redirect(0x0, &(0x7f0000000340), 0x0, 0x0, 0x2)
r2 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
write$sysctl(r2, &(0x7f0000000580)='1\x00', 0x2)
syz_emit_ethernet(0x3e, &(0x7f0000000080)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x30}, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010100, @local}, @time_exceeded={0xb, 0x0, 0x0, 0x3, 0x2c, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @private, @local}}}}}}, 0x0)
syz_usb_connect$hid(0x2, 0x36, 0x0, 0x0)
write$sysctl(r2, &(0x7f00000000c0)='2\x00', 0x2)

12m9.821138192s ago: executing program 1 (id=3419):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
mmap$binder(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x10000000000)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000580)="b3185d7bb56f70f003360fa8bf71ac3086aedebf6fff904f92849a7a07395ee7f0e4cb1d78001c08a0ab73ffcf5ad07693727980eea946e6cba1723e81bfa5c3688803c8a124dcb27df7938e7ddfdd52"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000004a40)={0x44, 0x0, &(0x7f0000000240)=[@transaction={0x40406301, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0}}, @register_looper], 0x0, 0x0, 0x0})

12m9.581733464s ago: executing program 1 (id=3420):
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0xa2)
fcntl$setsig(r0, 0xa, 0x13)
fcntl$setlease(r0, 0x400, 0x0)
timer_create(0x7, &(0x7f00000000c0)={0x0, 0x12}, &(0x7f0000000280)=<r1=>0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = getpid()
syz_clone(0x648e7000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone3(&(0x7f0000000680)={0x40004000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$setownex(r2, 0xf, &(0x7f0000000100)={0x2, r3})
ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f00000001c0)=<r4=>0x0)
fcntl$setown(r0, 0x8, r4)
timer_settime(r1, 0x0, &(0x7f0000000200)={{0x77359400}, {0x0, 0x1c9c380}}, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)

12m4.805817678s ago: executing program 1 (id=3425):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000480)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0xf, 0x8, 0x2, 0x80000000, 0x6, 0xc, 0x33c, 0x6c7, 0x3}}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000200)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r3, {0x0, 0x10}, {0xffff, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_pie={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000100)=0x4207, 0x4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'syzkaller0\x00', <r5=>0x0})
sendto$packet(r4, &(0x7f00000002c0)="05031400d3fc220000004788031c09102c28", 0xfdef, 0x4, &(0x7f0000000140)={0x11, 0x86dd, r5, 0x1, 0x0, 0x6, @multicast}, 0x14)

12m3.036400861s ago: executing program 1 (id=3431):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[])
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x84000, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='mountinfo\x00')
sendfile(r3, r3, &(0x7f0000000000)=0x2eb4, 0x2000007ff)

12m1.879053693s ago: executing program 1 (id=3434):
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x101081, 0x0)
ioctl$SOUND_PCM_READ_RATE(r0, 0x80045002, &(0x7f0000000040))
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000000)={0x1, 0x0, [{0x0, 0x4, 0x0, 0x0, @msi={0x0, 0xc0000000, 0x6, 0x6}}]})
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000100)={0x0, &(0x7f0000000280)=[@code={0xa, 0x5a, {"0f380a669766ba6100b000ee2309c0da00008c000000ba000000000f30c4827941fac4e1f96e42e46505e7ee1921b9500b00000f328fe9209b7ce100c403790cdeb8010000000f01d9"}}], 0x5a})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f00000000c0)={0x3})
ioctl$KVM_SET_PIT2(r2, 0x4070aea0, &(0x7f0000000140)={[{0x1, 0xc, 0x6, 0x3, 0x6, 0x2, 0x42, 0x9, 0x1, 0x4, 0x2, 0x3, 0x3}, {0x1, 0x7, 0x7, 0x0, 0x8, 0x7, 0x49, 0xff, 0x2, 0x1, 0x9, 0xf, 0x20000000006}, {0x2, 0x5, 0x5, 0x84, 0x8, 0x7, 0xfd, 0x40, 0x5, 0x3, 0x4, 0x3, 0x80000000000}], 0xf87})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

12m1.328488941s ago: executing program 1 (id=3436):
socket$rds(0x15, 0x5, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/profiling', 0x101a02, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x5, 0x84)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=@deltaction={0x14, 0x31, 0x8, 0x70bd26, 0x25dfdbfb}, 0x14}}, 0x0)
r0 = socket$rxrpc(0x21, 0x2, 0xa)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000007000010010ab4be68e8da23507000000", @ANYRES32=r3, @ANYBLOB="100001800400", @ANYRES8=r0], 0x28}}, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

12m0.197089251s ago: executing program 41 (id=3436):
socket$rds(0x15, 0x5, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/profiling', 0x101a02, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x5, 0x84)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=@deltaction={0x14, 0x31, 0x8, 0x70bd26, 0x25dfdbfb}, 0x14}}, 0x0)
r0 = socket$rxrpc(0x21, 0x2, 0xa)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000007000010010ab4be68e8da23507000000", @ANYRES32=r3, @ANYBLOB="100001800400", @ANYRES8=r0], 0x28}}, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

11m39.237762298s ago: executing program 0 (id=3463):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x22, &(0x7f0000000040)={0x0, 0x0, 0x8000, 0x2})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x100000a, 0x204031, 0xffffffffffffffff, 0x1bf5f000)
pipe(&(0x7f00000007c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
vmsplice(r2, &(0x7f0000000140)=[{&(0x7f00000001c0)='2', 0x1}], 0x1, 0x1)
close(r2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000400)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$sock_int(r4, 0x1, 0x200000010, &(0x7f0000000000)=0x9, 0x4)
sendto$unix(r3, &(0x7f0000000340)=',d', 0x2, 0xd1, 0x0, 0x0)
recvfrom$unix(r4, 0x0, 0x0, 0x10102, 0x0, 0x0)
splice(r1, 0x0, r2, 0x0, 0xfffd, 0x0)

11m36.069842996s ago: executing program 0 (id=3457):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x542, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000240))
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x1, 0x2}, 0x28)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
sendmsg$OSF_MSG_ADD(0xffffffffffffffff, &(0x7f0000000fc0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, 0x0}, 0x2000)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e20, 0x800000f, @private1, 0x14}, 0x1c, 0x0, 0x50}, 0x4044000)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x1800)
setrlimit(0xf, &(0x7f0000000000)={0x1, 0x5})
getpeername(0xffffffffffffffff, &(0x7f0000000240)=@ethernet={0x0, @remote}, &(0x7f0000000080)=0xfffffeb1)

11m35.976956821s ago: executing program 6 (id=3410):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000340)="71e67a15cdf0311cfcf33a52a7d86bd1", 0x20)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000ff2000/0x1000)=nil, &(0x7f0000ff8000/0x8000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r2 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89d, 0xc000, 0xa, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xfff0}, {0xe, 0xffff}}}, 0x24}}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000004540)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000500)="f4c1", 0x2}], 0x1, 0x0, 0x0, 0x44000}], 0x1, 0x40010)

11m34.668535484s ago: executing program 6 (id=3459):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x1)
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r2, 0x4020aed2, &(0x7f0000000000)={0x30000, 0x600000, 0x8})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r3, &(0x7f0000000640)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmsg$unix(r3, &(0x7f00000000c0)={&(0x7f0000000200)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x303de1f53b11ae}, 0x20008840)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x1d, &(0x7f0000000080)=0x7, 0x4)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x44fb, 0x4)
recvmmsg(r3, &(0x7f0000000c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=""/57, 0x39}, 0x8}], 0x3ffffffffffff2e, 0x1000400000de, 0x0)

11m33.588331237s ago: executing program 0 (id=3461):
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1/file3\x00', 0x0)
r0 = landlock_create_ruleset(&(0x7f0000000040)={0x2, 0x3, 0x3}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x6)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x5)
landlock_restrict_self(r0, 0x5)
landlock_restrict_self(r0, 0x1)
r1 = landlock_create_ruleset(&(0x7f00000001c0)={0x2fbd, 0x1}, 0x18, 0x0)
landlock_restrict_self(r1, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file3\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x2)

11m32.730496535s ago: executing program 0 (id=3466):
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYRES16, @ANYBLOB="050000000000000000", @ANYBLOB="3d000e0080000000ffffffffffff080211000000ffffffffffff0000feffffffffffffff070001000406f0027f0006a7000c"], 0x70}, 0x1, 0x0, 0x0, 0x20004090}, 0x0)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d7", 0x6, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x20042, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6gre0\x00', 0x800})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

11m31.609237049s ago: executing program 0 (id=3470):
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x4080)
pipe2$9p(0x0, 0x4000)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
ioprio_set$pid(0x2, 0x0, 0x4000)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = open(0x0, 0x1850c2, 0x14c)
sendfile(0xffffffffffffffff, r0, 0x0, 0x80001d00c0d1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x4000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
madvise(&(0x7f00001c1000/0x3000)=nil, 0x40000, 0x9)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
ioctl$BTRFS_IOC_ENCODED_WRITE(0xffffffffffffffff, 0x40809440, &(0x7f0000001540)={0x0, 0x0, 0x7e21, 0x0, 0x1, 0x2, 0x0, 0x5, 0x80000101})

11m27.908721636s ago: executing program 0 (id=3477):
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000580)={0x0, <r0=>0x0}, 0x8)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={0xffffffffffffffff, 0x0, 0x25, 0x4, @val=@tracing={r0}}, 0x20)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x40000d0)
write$rfkill(r1, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
r3 = landlock_create_ruleset(&(0x7f0000000040)={0x2, 0x3, 0x3}, 0x18, 0x0)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x24004045)
io_uring_setup(0x647, &(0x7f0000000040)={0x0, 0x188d, 0xc000, 0x20000a, 0x35})
landlock_restrict_self(r3, 0x9)
socket$inet6_udp(0xa, 0x2, 0x0)

11m19.549476049s ago: executing program 42 (id=3459):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x1)
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r2, 0x4020aed2, &(0x7f0000000000)={0x30000, 0x600000, 0x8})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r3, &(0x7f0000000640)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmsg$unix(r3, &(0x7f00000000c0)={&(0x7f0000000200)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x303de1f53b11ae}, 0x20008840)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x1d, &(0x7f0000000080)=0x7, 0x4)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x44fb, 0x4)
recvmmsg(r3, &(0x7f0000000c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=""/57, 0x39}, 0x8}], 0x3ffffffffffff2e, 0x1000400000de, 0x0)

11m12.578532888s ago: executing program 43 (id=3477):
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000580)={0x0, <r0=>0x0}, 0x8)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={0xffffffffffffffff, 0x0, 0x25, 0x4, @val=@tracing={r0}}, 0x20)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x40000d0)
write$rfkill(r1, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
r3 = landlock_create_ruleset(&(0x7f0000000040)={0x2, 0x3, 0x3}, 0x18, 0x0)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x24004045)
io_uring_setup(0x647, &(0x7f0000000040)={0x0, 0x188d, 0xc000, 0x20000a, 0x35})
landlock_restrict_self(r3, 0x9)
socket$inet6_udp(0xa, 0x2, 0x0)

1m3.170416238s ago: executing program 7 (id=4899):
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket(0x1, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r2, &(0x7f0000000180), &(0x7f00000000c0)=@tcp6=r1}, 0x20)
sendmmsg$unix(r1, &(0x7f0000001680), 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
fsetxattr(0xffffffffffffffff, &(0x7f0000000240)=@known='user.incfs.id\x00', 0x0, 0x0, 0x0)
fremovexattr(0xffffffffffffffff, &(0x7f00000000c0)=@known='user.incfs.id\x00')
r3 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r4 = openat$binfmt(0xffffffffffffff9c, r3, 0x42, 0x1ff)
close(r4)
execveat$binfmt(0xffffffffffffff9c, r3, 0x0, 0x0, 0x0)
r5 = openat$binfmt(0xffffffffffffff9c, r3, 0x2, 0x0)
close(r5)
execveat$binfmt(0xffffffffffffff9c, r3, 0x0, 0x0, 0x0)
execveat$binfmt(0xffffffffffffff9c, r3, &(0x7f00000004c0)={[&(0x7f0000000000)='\x00', &(0x7f00000003c0)=')!}\x00']}, 0x0, 0x1000)

1m2.202709492s ago: executing program 7 (id=4900):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setitimer(0x2, &(0x7f0000000580)={{0x77359400}, {0x0, 0xea60}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4814)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_usb_connect(0x0, 0x5f, 0x0, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x24}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r3, &(0x7f0000000200)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newtfilter={0x6c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0xfffa}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x3c, 0x2, [@TCA_FLOWER_ACT={0x38, 0x3, [@m_connmark={0x34, 0x1, 0x0, 0x0, {{0xd}, {0x4}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}]}, 0x6c}}, 0x24000000)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

58.309159754s ago: executing program 7 (id=4908):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x1, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x7, 0x4008031, 0xffffffffffffffff, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000300)=[&(0x7f0000000080)={0x0, 0x0, 0x8, 0x1, 0x0, r2, 0x0, 0x0, 0x3}])
ioctl(0xffffffffffffffff, 0xb8, &(0x7f0000000000)="15e0185428227964d1")
r3 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x40300, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000340)={0x1fe, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r5, 0x4090ae82, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

57.007842187s ago: executing program 7 (id=4912):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000080)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x80000006, 0x0, 0x4, 0x5}]}, 0x10)
syz_emit_ethernet(0x42, &(0x7f00000001c0)=ANY=[@ANYBLOB="0180c2000001aaaaaaaaaaaa0806000186dd06100001aaaaaaaaaaaafc000000000000000000000000000001aaaaaaaaaabbff030000000000000000000000000001"], 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2800fbffff0901010000000000000000010000030900010073797a3100000000080002400000000240000000030a010400000000000000000100ffff0900030073797a310000000014000480080002400000000008000140000000010900010073797a3100000000140000001100010000000000000000000500000a"], 0x90}, 0x1, 0x0, 0x0, 0x2000c091}, 0x800)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r3, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x808000, 0x4, 0x20300, 0xfc}, 0x1c)
setsockopt$packet_int(r3, 0x107, 0xc, &(0x7f0000000000)=0x7c, 0x4)
syz_usb_connect$uac1(0x0, 0xac, 0x0, 0x0)
r4 = socket$inet(0x2, 0x3, 0x2)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000140)='bridge0\x00', 0x10)
sendto$inet(r4, 0x0, 0x0, 0x800, &(0x7f0000000000)={0x2, 0x4e22, @multicast1}, 0x10)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0xd, 0x0, 0x7ffffffd}]})
r6 = dup2(r0, r5)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={0x0}, 0x1, 0x0, 0x0, 0x4008091}, 0x24000000)
sendmsg$nl_generic(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000094c0)=ANY=[@ANYBLOB="8c45000043000701fefffffffcdbdf25017c000004004580744501"], 0x458c}, 0x1, 0x0, 0x0, 0xc004}, 0x48000)
sendmsg$nl_generic(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="3811000043000701fefffffffcdbdf25027c000004004580201101"], 0x1138}, 0x1, 0x0, 0x0, 0x10}, 0xc000)
close_range(r6, 0xffffffffffffffff, 0x0)

54.876117998s ago: executing program 7 (id=4918):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
socket$inet6(0xa, 0x3, 0x3a)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x6, 0xa, 0x3, 0x0, 0x9, 0x4, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
unshare(0x8040480)
ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, &(0x7f0000000100)={0xa00})
fsopen(0x0, 0x0)
socket(0x2b, 0xa, 0x7)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r3=>0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newqdisc={0x6c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0xffffffffffffffd8}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x6c}}, 0x0)
timer_settime(r3, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
syz_80211_inject_frame(&(0x7f0000000040)=@broadcast, &(0x7f00000000c0)=ANY=[@ANYRESHEX=r3], 0x3a)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x17)

52.608155755s ago: executing program 7 (id=4924):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0xc, 0x8001, 0x0, 0x9, 0x4f, 0x8, 0xfa11, 0x1}, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
kexec_load(0x0, 0x0, 0x0, 0x0)
r2 = socket(0x40000000015, 0x5, 0x0)
connect$inet6(r2, 0x0, 0x0)
mprotect(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x1)
fsopen(0x0, 0x1)
fchdir(0xffffffffffffffff)
openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x8880, 0x85)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CAP_HYPERV_ENLIGHTENED_VMCS(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0xa3, 0x0, 0xfffffffffffffffe})
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000380)={[0x1, 0x9, 0x4, 0x1, 0x102000000000002, 0x80000009, 0x400002004c8, 0x10001, 0x100000000003, 0xffffffff, 0xffffffffffffffff, 0x7fffffffffffffff, 0xd0b, 0x4, 0x2000000000000003, 0x50fd24f7], 0x60000, 0xc42d4})
r3 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440)={'syz', 0x3}, &(0x7f0000000340), 0xf2, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000200)={r3, r3, r3}, 0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={'sha224\x00'}})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"/2944], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x4a)

37.528763868s ago: executing program 44 (id=4924):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0xc, 0x8001, 0x0, 0x9, 0x4f, 0x8, 0xfa11, 0x1}, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
kexec_load(0x0, 0x0, 0x0, 0x0)
r2 = socket(0x40000000015, 0x5, 0x0)
connect$inet6(r2, 0x0, 0x0)
mprotect(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x1)
fsopen(0x0, 0x1)
fchdir(0xffffffffffffffff)
openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x8880, 0x85)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CAP_HYPERV_ENLIGHTENED_VMCS(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0xa3, 0x0, 0xfffffffffffffffe})
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000380)={[0x1, 0x9, 0x4, 0x1, 0x102000000000002, 0x80000009, 0x400002004c8, 0x10001, 0x100000000003, 0xffffffff, 0xffffffffffffffff, 0x7fffffffffffffff, 0xd0b, 0x4, 0x2000000000000003, 0x50fd24f7], 0x60000, 0xc42d4})
r3 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440)={'syz', 0x3}, &(0x7f0000000340), 0xf2, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000200)={r3, r3, r3}, 0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={'sha224\x00'}})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"/2944], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x4a)

16.395491356s ago: executing program 9 (id=4988):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3f0, 0x220, 0x220, 0x110, 0x308, 0x308, 0x308, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0xffffff00, 0x1, 0x0, {@empty, {[0x0, 0x0, 0xff]}}, {@mac=@local}, 0x0, 0x7, 0x2, 0x0, 0x800, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00', {}, {}, 0x0, 0x180}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @loopback, @broadcast, 0x6, 0xfffffffe}}}, {{@arp={@initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010101, 0x0, 0x0, 0x0, 0xfd, {}, {@empty, {[0x0, 0x0, 0x0, 0x0, 0x0, 0xff]}}, 0x9, 0x4, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00', {}, {}, 0x0, 0xc}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@dev={'\xaa\xaa\xaa\xaa\xaa', 0x3b}, @broadcast, @dev={0xac, 0x14, 0x14, 0x12}, 0x1}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0x9}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x440)
r1 = add_key$fscrypt_provisioning(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000440)=ANY=[@ANYBLOB="01"], 0x48, 0xfffffffffffffffd)
mknod$loop(&(0x7f00000190c0)='./file0\x00', 0xfff, 0x0)
execve(&(0x7f0000019100)='./file0\x00', 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
r4 = socket$igmp6(0xa, 0x3, 0x2)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x4e21, 0x8, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x37}}, 0xe}, 0x1c)
connect$inet6(r4, &(0x7f0000000100)={0xa, 0x4e21, 0xfffbfff6, @mcast2, 0xfffff000}, 0x1c)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e20, 0xffffffff, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10001}, 0x1c)
bind$inet6(r2, &(0x7f0000000200)={0xa, 0x4e22, 0x2, @mcast1, 0x4}, 0x60)
r5 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000010d804dd0000000000000109022400018000000009040000010300000009210500000122050009058103"], 0x0)
syz_usb_control_io(r5, 0x0, 0x0)
syz_usb_control_io$hid(r5, &(0x7f0000000240)={0x24, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="002205"], 0x0}, 0x0)
ioctl$I2C_SMBUS(0xffffffffffffffff, 0x720, &(0x7f0000000140)={0x0, 0x6, 0x5, &(0x7f00000002c0)={0x0, "79b8142115db2c05f171f5306cef4870ae7ef9335b6e140c0afd2077a025abe98e"}})
keyctl$revoke(0x3, r1)
r6 = socket$can_raw(0x1d, 0x3, 0x1)
recvmsg$can_raw(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000240)=""/230, 0xe6}], 0x1, &(0x7f0000000480)=""/4096, 0x1000}, 0x2040)

13.394070189s ago: executing program 9 (id=4993):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @remote}, 0x10)
r1 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
readv(r3, &(0x7f00000001c0)=[{0x0}, {&(0x7f00000000c0)=""/212, 0xd4}, {0x0}], 0x3)
personality(0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
creat(0x0, 0x82)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f00000034c0)={0x2020}, 0xcac)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r6=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000880)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002cbd7040010000000f00000005002e00c838000008000300", @ANYRES32=r6, @ANYBLOB="05002f0000000000"], 0x2c}}, 0x18)

12.96474202s ago: executing program 4 (id=4995):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), 0xffffffffffffffff)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$EXT4_IOC_MIGRATE(r0, 0x6609)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000003c0), 0x123e00, 0x0)
openat$rfkill(0xffffffffffffff9c, 0x0, 0x801, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0x40305839, &(0x7f0000000000)=ANY=[])
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$sock_timeval(r4, 0x1, 0x2, 0x0, 0x48)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), r6)
sendmsg$TIPC_NL_MON_SET(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002a40)={0x20, r7, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}]}]}, 0x20}}, 0x0)
r8 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0)
sendfile(r8, r5, &(0x7f00000000c0)=0x58, 0x5)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000002740)={&(0x7f0000000140)={0x34, r1, 0x301, 0x0, 0x0, {0x4e}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)

12.830157298s ago: executing program 8 (id=4996):
ioctl$XFS_IOC_PATH_TO_FSHANDLE(0xffffffffffffffff, 0xc0385868, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x24600, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x20080, 0x0)
r1 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000001340))
syz_usb_connect$lan78xx(0x5, 0x0, 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f0000000180)=0x6f)
write$dsp(r1, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000140)=0x4)
read$dsp(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0)
r2 = dup2(r0, r0)
read$FUSE(r2, &(0x7f00000063c0)={0x2020}, 0x2020)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x1, &(0x7f00000001c0)=@gcm_256={{0x304}, "6ae04425ace3f60c", "acba84f0a6731f234db1cc7f3f382ad796bd667cb12ea99509873931d2873103", "0f9dafb4", "ec3fff9afd96e6c0"}, 0x38)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r3)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000200)={0x0, 0x90}, 0x1, 0x0, 0x0, 0x404c004}, 0x80)
sendmsg$NL80211_CMD_DEL_KEY(0xffffffffffffffff, 0x0, 0x8804)

11.985103575s ago: executing program 3 (id=4997):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f00000003c0)={0x0, 0x0, 0x80800})
r1 = getpid()
syz_pidfd_open(r1, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000200))
ioctl$VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f0000000080)=0x200000000)
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000040)=0x1)
r3 = dup2(r2, r2)
read$FUSE(r3, 0x0, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, &(0x7f0000000000)=0x5)
close(0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(r1, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
openat$vimc2(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
openat$dsp1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x1ff, 0x7d, 0x0, 0x8000, 0x4, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r4, 0xffffffffffffffff, 0x0)

11.145233532s ago: executing program 3 (id=4998):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$KVM_GET_MSRS_sys(0xffffffffffffffff, 0xc008ae88, &(0x7f00000003c0)={0x1, 0x0, [{0x8b, 0x0, 0x8}]})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x0)
readv(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x6, 0x0, 0x0)
sendmsg$nl_route(r3, 0x0, 0x0)
r4 = syz_open_dev$vim2m(&(0x7f0000000100), 0xa7e, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f0000000040)={0x8, 0x1, 0x1})
sendmsg$inet(0xffffffffffffffff, 0x0, 0x4814)
ioctl$FE_SET_FRONTEND_TUNE_MODE(r0, 0x6f51, &(0x7f00000000c0))
ioctl$vim2m_VIDIOC_STREAMOFF(r4, 0x40045612, &(0x7f0000000000)=0x1)
getdents64(r0, &(0x7f0000001f00)=""/4093, 0xffd)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)

10.024205754s ago: executing program 4 (id=5000):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x5, 0x9, 0x6, 0x0, 0xb49, 0x9, 0x8, 0x7fd, 0x3}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
unshare(0x62040200)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4040000)
unshare(0x2000000)
openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000300)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58)
ioctl$IOMMU_HWPT_GET_DIRTY_BITMAP(0xffffffffffffffff, 0x3b8c, &(0x7f0000000200)={0x30, 0x0, 0x0, 0x0, 0x6, 0xfff, 0x5, &(0x7f00000005c0)=""/219})
r4 = io_uring_setup(0x1bfb, &(0x7f0000000040)={0x0, 0x970, 0x200, 0x0, 0x396, 0x0, r2})
sendmsg$DEVLINK_CMD_PORT_UNSPLIT(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES16=0x0], 0x14}, 0x1, 0x2}, 0x0)
io_uring_enter(r4, 0x8ae, 0x6933, 0x17, 0x0, 0xeffd)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r5 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0x3f}], 0x1, &(0x7f0000000380)=[@op={0x18}], 0x18}], 0x1, 0x40800)
recvmsg$can_bcm(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000000100)=""/3, 0x3}, {&(0x7f0000000680)=""/112, 0xfffffef2}], 0x2}, 0x10150)

9.58516421s ago: executing program 2 (id=5001):
r0 = socket$l2tp(0x2, 0x2, 0x73)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000600), 0x4)
r2 = userfaultfd(0x80801)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x430})
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0xf0ffffff)
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001200)={0x64, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'bitmap:ip,mac\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0x18, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @local}}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x21}]}]}, 0x64}}, 0x0)
ioctl$UFFDIO_COPY(r2, 0xc028aa03, &(0x7f00000000c0)={&(0x7f0000800000/0x800000)=nil, &(0x7f000022a000/0x4000)=nil, 0x800000})
getsockname$l2tp(r0, &(0x7f0000000000)={0x2, 0x0, @private}, &(0x7f0000000040)=0x10)
sendto(r0, 0x0, 0x0, 0x8000, &(0x7f00000001c0)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x80)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
ptrace$cont(0x19, r4, 0x14, 0xb)
kexec_load(0x9, 0x7, &(0x7f0000000780)=[{&(0x7f0000001280)="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", 0x1000, 0x7, 0x8}, {&(0x7f0000000340)="01783ca10ff51e4192fae67c1ae8f03f993b1be3d26d781d33dcf8e7074e6d63c07101ed7dc1c6b69016a19d6bfabd0bbf676fe225a268faa23778d15a0ea7d787d7166410a85ae774250138ded0486dc0e03ea9a061a5c86056c5602dd44328f70827b12ee4909a", 0x68, 0x6, 0x3}, {&(0x7f00000002c0)="f8", 0x1, 0xdb, 0x3}, {&(0x7f00000003c0)="3336686bacb1fc3ca9b74fc91b8f3331ec6fd3703b9b57585b5772ebf58803d22b584dfb4524836c3132abcd829ce2f1a3ba3db33511d9e704e1ce6909344bc184e6823cf68347433c397620eecf66d6efacb9e14b8a07c3041d9963c8b0b5ac1e436bfcf8fdf9acc55913a0f1fa9bdba2a24f8a2186845d183ab43f2a4f87a6d78b6d555f8dd272d90595c98b06a3fd5b55f493539db84b44c715641a33ccd05000a6778c3db7354daa569d5cd0722b565bb7a7d6e10dea90535b72b8796fa6a6381608566412f4ffc1138674b3b9", 0xcf, 0x3, 0x2}, {&(0x7f00000004c0)="b1a65a027abd59db6db5777c0a61ade0c7cc31acdca651422b675e430616fef34ae583b35adb5ff88e31cde3dbb97c5139723ee1d1487a83f929", 0x3a, 0xfffffffffffffffc, 0xd}, {&(0x7f0000000500)="2759d5130f6501a4f67af9fc2b30547763e4ec8b5279cec33cce7b332ddd8ef840df6e66dc833e0867affca4ef70b9a349d09b6d491b3ecf83b9df653f908593adec365d8d82f2277419d0055ec459d176a6ce0f372056f991bd05f9174148f50c7217b5e1ccce0df6611eb5cc53b8f3c471f069406bb7fd144ba0205b9ff6854e57cfaf0a7b9a1f1ea3e8004a9044cacd6c29358c1dcc1436b7d9de892b515f64c789cd52f302fedef4267a", 0xac, 0x7, 0x7}, {&(0x7f00000005c0), 0x0, 0x10000, 0x6}], 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000100), 0xffffffffffffffff)
openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000140), 0xa001, 0x0)

9.584403273s ago: executing program 8 (id=5002):
socket$inet_sctp(0x2, 0x1, 0x84)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_io_uring_setup(0x4fae, &(0x7f00000002c0)={0x0, 0xce85, 0x4, 0x2, 0xf2}, &(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000440))
io_uring_register$IORING_REGISTER_RESTRICTIONS(r3, 0xb, &(0x7f0000000480)=[@ioring_restriction_sqe_flags_allowed={0x2, 0xc}, @ioring_restriction_register_op={0x0, 0x1c}, @ioring_restriction_sqe_flags_required={0x3, 0xe}, @ioring_restriction_register_op={0x0, 0xd}, @ioring_restriction_sqe_op={0x1, 0xa}, @ioring_restriction_sqe_flags_allowed={0x2, 0x14}, @ioring_restriction_sqe_flags_allowed={0x2, 0x1d}], 0x7)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000004ec0)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="2000000005143101"], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x4004050)
mkdir(&(0x7f00000000c0)='./cgroup/../file0\x00', 0x88c64d537be67eeb)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/mdstat\x00', 0x0, 0x0)
preadv(r6, &(0x7f00000015c0)=[{&(0x7f0000001900)=""/4085, 0xff5}], 0x1, 0xf2, 0x207fff)

8.105627539s ago: executing program 9 (id=5003):
unshare(0x6a040000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x940d, 0x0, 0x9, 0x0, 0xfffffdffffffffff, 0xfa11, 0xffffffff}, 0x0)
io_setup(0x7ed, &(0x7f0000000040))
syz_emit_ethernet(0xc2, 0x0, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vxcan0\x00'})
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
socket$igmp(0x2, 0x3, 0x2)
syz_emit_vhci(&(0x7f0000000280)=@HCI_EVENT_PKT={0x4, @hci_ev_disconn_complete={{0x5, 0x4}, {0x5, 0xc8, 0x8}}}, 0x7)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000740)=@newsa={0x140, 0x1a, 0x1, 0xfffffffe, 0x100, {{@in=@multicast2, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x71c, 0x4e23, 0x5, 0xa, 0x0, 0x20, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, {0x0, 0x1000000000000192, 0x9ba3, 0xffff, 0x8251c, 0x5, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0xfffffffe, 0x3fc}, 0x80, 0x3505, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @replay_thresh={0x8, 0xb, 0x7f}]}, 0x140}}, 0x844)
socket$kcm(0xa, 0x2, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r3, &(0x7f0000000440)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x1, @remote}, 0xa}}, 0x26)

8.105167228s ago: executing program 2 (id=5004):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r0, 0x65, 0x4, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f00000001c0)=@filter={'filter\x00', 0x42, 0x4, 0x328, 0xffffffff, 0x0, 0xf8, 0x1b8, 0xffffffff, 0xffffffff, 0x2d8, 0x2d8, 0x2d8, 0xffffffff, 0x4, 0x0, {[{{@ip={@empty, @loopback, 0x0, 0x0, 'veth0_to_batadv\x00', 'wlan0\x00', {}, {}, 0x11}, 0x0, 0xd0, 0xf8, 0x0, {0x100000000000000}, [@common=@inet=@l2tp={{0x30}, {0x40000, 0x0, 0x2, 0x0, 0xc}}, @common=@unspec=@connmark={{0x30}}]}, @REJECT={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x8}}}, {{@uncond, 0x0, 0xc0, 0x100, 0x0, {}, [@common=@osf={{0x50}, {'syz0\x00', 0x0, 0x9}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x388)
socket$can_bcm(0x1d, 0x2, 0x2)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x121002, 0x0)
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r4=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4048000)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={<r5=>0x0, 0x3c, &(0x7f0000000180)=[@in={0x2, 0x0, @rand_addr=0x64010101}, @in6={0xa, 0x4e23, 0x7, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x401}, @in={0x2, 0x4e24, @rand_addr=0x64010102}]}, &(0x7f0000000440)=0x10)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x74, &(0x7f0000000080)={r5, 0x10, 0x10, 0xaf9, 0x40000}, &(0x7f00000010c0)=0x18)
socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x5}}}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0xeb62}]}, 0x40}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000640)=@newtfilter={0x2c, 0x2c, 0x400, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0x3, 0x9}, {0x0, 0xc}, {0x8, 0x10}}, [@TCA_RATE={0x6, 0x5, {0x4, 0x4}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x2008c014)
r7 = semget$private(0x0, 0x6, 0x0)
semtimedop(r7, &(0x7f0000000400)=[{0x0, 0x4, 0x1800}], 0x1, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
semop(r7, &(0x7f0000000040)=[{0x2, 0xe5c, 0x800}, {0x4, 0x2, 0xc6113a37ea3604e5}, {0x4, 0xa4c0}], 0x3)
semctl$GETZCNT(r7, 0x0, 0xf, 0x0)

8.098105662s ago: executing program 8 (id=5005):
socket$kcm(0xa, 0x2, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r2=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x77359400}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000280)={0x0, <r3=>0x0})
ioctl$DRM_IOCTL_GEM_OPEN(r1, 0xc010640b, &(0x7f0000000340)={r3})
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_open_dev$vim2m(&(0x7f0000000100), 0x2, 0x2)
socket$vsock_stream(0x28, 0x1, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
pselect6(0x40, &(0x7f00000000c0)={0x0, 0x2, 0xffffffffffffffff, 0x9, 0xfffffffffffffdf3, 0xfffffffffffffffd, 0x1}, 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x4, 0x0, 0x1136f858, 0x0, 0xffffffffffffffff}, 0x0, 0x0)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f00000002c0)=@req3={0x10000, 0x1, 0x100, 0x100, 0xe, 0x0, 0x3}, 0x1c)
sendmmsg(r0, &(0x7f0000000880)=[{{&(0x7f0000000080)=@qipcrtr={0x2a, 0x3, 0x4000}, 0x80, 0x0}}, {{&(0x7f0000000180)=@hci={0x1f, 0xffffffffffffffff, 0x2}, 0x80, 0x0, 0x0, &(0x7f0000000900)=ANY=[@ANYBLOB='\x00\x00\x00\x00'], 0x10}}], 0x2, 0x45)
r4 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000040)={0x5, 0x5, 0x30000, 0x2000, &(0x7f0000ffc000/0x2000)=nil})
timer_settime(r2, 0x1, &(0x7f0000000200)={{}, {0x77359400}}, &(0x7f0000000240))

8.097649431s ago: executing program 4 (id=5013):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$IPSET_CMD_GET_BYNAME(r1, 0x0, 0x4000)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
sendmsg$NFNL_MSG_ACCT_NEW(r1, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
socket$kcm(0x10, 0x400000002, 0x0)
r4 = socket(0x1e, 0x4, 0x0)
shutdown(r4, 0x1)
ioctl$FS_IOC_GETFSSYSFSPATH(0xffffffffffffffff, 0x80811501, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x2adc0, 0x1c1}, 0x18)
r5 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0)
write$binfmt_register(r5, &(0x7f0000000040)={0x3a, 'syz3', 0x3a, 'E', 0x3a, 0x9, 0x3a, 'M', 0x3a, '^', 0x3a, './file0', 0x3a, [0x46]}, 0x2a)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x101240, 0x10a)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000000706010800000000000000000000000005000100060000"], 0x1c}, 0x1, 0x0, 0x0, 0x14}, 0x0)

8.097318072s ago: executing program 3 (id=5006):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x48)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
r2 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_OPTION$IOMMU_OPTION_RLIMIT_MODE(r2, 0x3b87, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0x0, 0xffffffff}, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f00006ef000/0x4000)=nil, 0x4000, 0x9, 0x10, 0xffffffffffffffff, 0x8000000)
r3 = syz_open_dev$vim2m(&(0x7f0000000200), 0x3, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f00000003c0)={0x2007f, 0x0, 0x1, 0x0, 0x7})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c000000020601010000000000000000000000000900020073797a3000000000050001000600000005000500000000000500040000000000140007800800114000000000050015007a8537350d000300686173683a6d6163"], 0x5c}}, 0x4000)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_NODES(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, r6, 0x1, 0x70bd27, 0x25dfdbfb}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x880)
r7 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TIOCGPGRP(r7, 0x540f, &(0x7f0000000140))
openat$nullb(0xffffffffffffff9c, &(0x7f00000001c0), 0x185802, 0x0)
r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x8, 0x3, 0x2c8, 0x120, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x1f8, 0xffffffff, 0xffffffff, 0x1f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'syzkaller0\x00', 'dvmrp1\x00', {}, {}, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x100, 0x120, 0x0, {}, [@common=@unspec=@cluster={{0x30}, {0x7, 0x4, 0x9}}, @inet=@rpfilter={{0x28}, {0x9}}]}, @unspec=@NOTRACK={0x20}}, {{@uncond, 0x0, 0xa8, 0xd8}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x0, 0x0, 0x0, 0x2}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x328)
add_key(&(0x7f0000000040)='rxrpc\x00', 0x0, &(0x7f0000000180)="0000000000000002ff69000000000001000000c000000006000200861fa72e5b01504104bfeacdd5a9007d167c71e3b8a93aa64d957a684161c833020a6da888c7a56843a85f3a078c97d542ed1fbf069ca713670adf7d9fb6d2600fd9c1981fe9f095cfe9d2fe1e1e34f6096bf02543747b2c792890f07c0da0fa25e6101062e6c9176a70e41698814a213711764f88495994cfd8a57c1e13f6b5298e7ab3a2bfb58dde34d58536633c27882e51ced17d67999b0009446100"/212, 0xd4, 0xffffffffffffffff)

7.413938387s ago: executing program 8 (id=5007):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001400)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f00000013c0)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x8000, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
add_key$user(&(0x7f0000000040), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$KEYCTL_WATCH_KEY(0x20, 0x0, 0xffffffffffffffff, 0x2a)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=@getlink={0x1c, 0x12, 0x321, 0x70bd21, 0x8000, {0x7}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'veth1_vlan\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x200000c1}, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r2, 0x400455c8, 0x4)
rseq(0x0, 0x4b, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r4 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
read$FUSE(r4, &(0x7f00000093c0)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r4, &(0x7f0000004200)={0x50, 0x0, r5, {0x7, 0x1f, 0x0, 0x2022012, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}}, 0x50)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)

7.084595099s ago: executing program 2 (id=5008):
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet(0x2, 0x4000000000000001, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6(0xa, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
socket(0x10, 0x3, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$kcm(0x29, 0x5, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
socket$unix(0x1, 0x1, 0x0)
socket$unix(0x1, 0x5, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000000)=ANY=[@ANYRES64, @ANYRES8=r0], 0x20)

6.782183446s ago: executing program 2 (id=5009):
syz_open_procfs(0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000580)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0xbc3d, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
unshare(0xe060400)
r3 = memfd_create(0x0, 0x3)
unshare(0x2c060000)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000340)={{0xfffffffe, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x2, 0x4, 0x0, 0x0, 0x0, 'syz1\x00', 0x0})
semget$private(0x0, 0x1, 0xb5ad9a7247a3f9a4)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/input/devices\x00', 0x0, 0x0)
r5 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f0000000640)={0xb0000004})
ftruncate(r3, 0x6)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(0xffffffffffffffff, 0xc1105518, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19, 0x0, 0xffffffffffffffff, 0x54}, 0x42)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r6, 0x0, 0xe80, 0x0, &(0x7f0000000280)="61df718305a35997984d4763fcac", 0x0, 0xe697, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

6.080037398s ago: executing program 3 (id=5010):
socket$kcm(0x29, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x0, 0x8, 0x81, 0x0, 0x9, 0xfffffffffffffffd, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040))
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[], 0x3c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000280)={0x1c, 0x2, 0x1, 0x301, 0x0, 0x0, {0x2, 0x0, 0x4}, [@CTA_ZONE={0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20048001}, 0x4048814)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
getsockopt$TIPC_DEST_DROPPABLE(r4, 0x10f, 0x81, &(0x7f0000000180), &(0x7f00000001c0)=0x4)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=@acquire={0x128, 0x17, 0x1, 0x0, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0xfe, 0x0}}, 0x4d4}, @in=@remote, {@in6=@dev={0xfe, 0x80, '\x00', 0x15}, @in6=@local, 0x0, 0x0, 0x0, 0x6}, {{@in=@local, @in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x0, 0x0, 0x4e22, 0x0, 0x2, 0x0, 0xa0}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x3}, 0x4, 0x6e6bbf, 0x1}, 0xfffffffe}}, 0x128}}, 0x20004040)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x40, 0x7, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x3}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x1}]}, 0x40}, 0x1, 0x0, 0x0, 0x4040}, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, &(0x7f0000000000))
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)={0x5c, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11, 0x1, 0x0, 0x1}, @IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0xffff}]}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}]}, 0x5c}, 0x1, 0x0, 0x0, 0x84}, 0x0)

5.772262092s ago: executing program 9 (id=5011):
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$RTC_UIE_ON(0xffffffffffffffff, 0x7003)
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0xffffffffffffff6b, 0x0, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x3, 0x8, 0x8001, 0x0, 0xb, 0x8000000000000000, 0x6, 0xfa11, 0xffffffff}, 0x0)
r3 = syz_open_dev$radio(&(0x7f0000000580), 0x2, 0x2)
connect$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x0, 0x1, @remote, 0x7}, 0x1c)
ioctl$VIDIOC_S_TUNER(r3, 0x4054561e, &(0x7f0000000040)={0xffffffff, "a055babd9b8c29abbdd772a44c5518bc1661222efc50f8f5555dcf4617da81d7", 0x5, 0x80, 0x3, 0x6, 0x2, 0x4, 0xff7ffff9, 0x5})
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000de2000/0x4000)=nil, 0x4000, 0x10)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r4, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00', 0x511e36599023629, 0x100040, 0x1b35, 0x8, 0x2, 0x2, 0x0, 0x0, 0x1, 0x1})
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x4e0, 0x348, 0x18c, 0x203, 0x0, 0x19030000, 0x410, 0x2e0, 0x2e0, 0x410, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x6}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xa8, 0xc8}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x540)
sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, 0x0, 0x4000840)
writev(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
move_pages(0x0, 0x1, &(0x7f0000000080)=[&(0x7f000008c000/0x3000)=nil], &(0x7f0000002640)=[0x1], &(0x7f0000002240), 0x0)

5.651265371s ago: executing program 4 (id=5012):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', <r1=>0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0xd1, 0x0, 0x0, @loopback, @multicast1}}}})
r2 = syz_open_dev$radio(&(0x7f0000000080), 0x2, 0x2)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r2, 0x40305652, &(0x7f00000002c0)={0x0, 0x1})
ioctl$XFS_IOC_GETVERSION(r2, 0x80087601, &(0x7f0000000000))
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f5, &(0x7f0000000200)={'syztnl0\x00', &(0x7f0000000140)={'erspan0\x00', <r3=>r1, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @dev={0xac, 0x14, 0x14, 0x91}, @multicast2}}}})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'erspan0\x00', <r6=>0x0})
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
ioctl$FS_IOC_GETFLAGS(0xffffffffffffffff, 0x80086601, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000380)={'syztnl0\x00', &(0x7f0000000300)={'ip6tnl0\x00', <r7=>r3, 0x29, 0x6, 0x0, 0x2, 0x6, @mcast2, @local, 0x10, 0x40, 0x4, 0x10001}})
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000780)={&(0x7f00000005c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x79, 0x79, 0xa, [@datasec={0x9, 0x8, 0x0, 0xf, 0x1, [{0x5, 0xfd179edd, 0x9}, {0x5, 0xee, 0x4}, {0x4, 0x2, 0x1f0}, {0x1, 0x4, 0x2}, {0x1, 0xfff, 0x4}, {0x1, 0x4, 0x33c}, {0x5, 0x2, 0x152b}, {0x5, 0xffff, 0xe7c}], '8'}, @typedef={0x7, 0x0, 0x0, 0x8, 0x5}]}, {0x0, [0x5f, 0x5f, 0x2e, 0x5f, 0x5f, 0x0, 0x30, 0x0]}}, &(0x7f00000006c0)=""/172, 0x9e, 0xac, 0x0, 0x7, 0x10000}, 0x28)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x7, '\x00', r7, r8, 0x0, 0x3, 0x5}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007a00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
r9 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x42002, 0x0)
fallocate(r9, 0x11, 0x600, 0x7c000)
sendto$packet(r5, &(0x7f00000000c0)="3f03fe7f0302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c153cfdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r6, 0x1, 0x0, 0x6, @multicast}, 0x14)
unshare(0x24060400)
r10 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
pwritev(r10, 0x0, 0x0, 0x20000, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f00000000c0)={'syztnl0\x00', &(0x7f0000000240)={'tunl0\x00', r1, 0x700, 0x7800, 0xffff, 0x8001, {{0x5, 0x4, 0x0, 0x28, 0x14, 0x68, 0x0, 0x10, 0x4, 0x0, @local, @initdev={0xac, 0x1e, 0x0, 0x0}}}}})

5.261004771s ago: executing program 2 (id=5014):
modify_ldt$write2(0x11, &(0x7f0000000200)={0x7, 0x100000, 0x4000, 0x0, 0x3, 0x1, 0x1, 0x1}, 0x10)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
r2 = syz_open_dev$loop(&(0x7f0000000280), 0xffff, 0x14f600)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a30000000009c000000090a010400000000000000000700000308000a40000000000900020073797a"], 0xe4}, 0x1, 0x0, 0x0, 0x8001}, 0x20010840)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x2, 0x3, 0x0, 0x3, 0x12, 0x0, 0x70bd2c, 0x25dfdbfc, [@sadb_key={0x3, 0x9, 0x80, 0x0, "1cdc0dca1d9f68846960e56de42944af"}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @loopback, 0x2}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x7, 0xc}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @loopback, 0x7}}, @sadb_x_nat_t_type={0x1, 0x14, 0x7}]}, 0x90}, 0x1, 0x7}, 0x0)
modify_ldt$write(0x1, &(0x7f0000000140)={0x3, 0x20001000, 0x1000, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_misc(r4, &(0x7f0000000040), 0xe09)
modify_ldt$write(0x1, &(0x7f0000000100)={0x28, 0x20001000, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x10)
r5 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFBR(r5, 0x8940, &(0x7f00000002c0)=@add_del={0x3, &(0x7f0000000240)='macvlan0\x00'})
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f00000002c0)={r4, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x9, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00000000170000000400", "f4bd000000801900", [0x100000000, 0x8000000000000000]}})
ioctl$KVM_CAP_X86_BUS_LOCK_EXIT(r0, 0x4068aea3, &(0x7f0000000000)={0xc1, 0x0, 0x3})
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r6, &(0x7f00000001c0)={0x2, 0x4e22, @local}, 0x10)
r7 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="120100008e88052086800095d89301020301090212000100000000090401"], 0x0)
syz_usb_control_io(r7, 0x0, &(0x7f0000000780)={0x84, &(0x7f00000002c0)={0x0, 0x10}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
connect$inet(r6, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x71, &(0x7f00000008c0)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x2, 0x63, 0xfffd, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x8, 0x10, 0x0, 0x0, 0x2d9, {[@timestamp={0x8, 0xa, 0x29, 0xfffffaa4}]}}, {"b03cd43733f12be37260d966141dd1a3e8b0c2a705d7e52dbb4fb4da1afb191ebd48102be97316c4aec36b4dff23bc"}}}}}}, 0x0)
ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f0000000240)={0x666666666666763})

5.189723114s ago: executing program 8 (id=5015):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
r3 = syz_open_dev$video4linux(&(0x7f0000000540), 0x10000fc3, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r3, 0xc040564a, &(0x7f00000000c0)={0x0, 0x0, 0x100f, 0x2220, 0x5, 0x4000c251, 0x7f, 0x1})
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r4, &(0x7f0000004100)={0x2020}, 0x2020)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[], 0x40}, 0x1, 0x0, 0x0, 0x80}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'bridge0\x00', <r6=>0x0})
socket(0x400000000010, 0x3, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='smaps\x00')
read$FUSE(r7, &(0x7f0000002640)={0x2020}, 0x2020)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4800000010000104000000000007000000000000", @ANYRES32=r6], 0x48}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x3, 0x9, @mcast1, 0xfffffffa}, 0x1c)

4.643105633s ago: executing program 9 (id=5016):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
r2 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000008c0), 0x80800, 0x0)
ioctl$PTP_ENABLE_PPS(r2, 0xc4c03d16, 0x1)
dup3(r1, r1, 0x80000)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0xfffffffffffffffe, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x10)
r3 = fsopen(&(0x7f0000000040)='sysfs\x00', 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge0\x00'})
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
fsopen(&(0x7f0000000180)='ntfs3\x00', 0x0)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
syz_usb_connect(0x0, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000a8afb5086d04b3082a6d0000000409021200"], 0x0)
close_range(r4, r5, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001b00)=ANY=[@ANYBLOB="1c0000001e000103020000200000000001000000080001"], 0x1c}, 0x1, 0x0, 0x0, 0x81}, 0x4004000)

4.268222466s ago: executing program 3 (id=5017):
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0xe, 0x2010, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0xa, 0x8000, 0x0, 0x9, 0x1, 0xfffffdffffffffff, 0xfa0f, 0xffffffff}, 0x0)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a00"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000380)={0xc, 0x0, <r4=>0x0})
shmat(0x0, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
lstat(&(0x7f0000000240)='./file0\x00', 0x0)
r5 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_fuse_handle_req(r5, 0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000380)={0x50, 0x0, 0x2, {0x7, 0x2b, 0x0, 0x20000, 0x0, 0x3, 0x4, 0x7, 0x0, 0x0, 0x1, 0x9}}, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x18, 0x0, 0xcd, {0x3}}, 0x0, 0x0, 0x0, &(0x7f00000005c0)={0x11, 0x0, 0xd77, {'\x00'}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, 0x0)
r6 = gettid()
shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000440)={{0x2, 0xee00, 0x0, 0x0, 0x0, 0x40}, 0xff, 0x9, 0x3, 0x7, 0x0, r6, 0x1})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="440000001500010000000000000000000a00000004"], 0x44}}, 0x0)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r2, 0x3ba0, &(0x7f0000000040)={0x48, 0x2, r4, 0x0, <r7=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_REPLACE(r2, 0x3ba0, &(0x7f0000000180)={0x48, 0x12, r7, 0x0, r4})
socket$nl_route(0x10, 0x3, 0x0)

3.865289277s ago: executing program 4 (id=5018):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$IMADDTIMER(0xffffffffffffffff, 0x80044940, &(0x7f0000000080)=0x14)
ioctl$IMADDTIMER(0xffffffffffffffff, 0x80044940, &(0x7f0000000100)=0xf4240)
ioctl$IMDELTIMER(0xffffffffffffffff, 0x80044941, &(0x7f0000000280)=0x2252648c528f075a)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = add_key(&(0x7f0000000000)='big_key\x00', 0x0, &(0x7f00000002c0)="1d", 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r2, &(0x7f0000002300)=""/4108, 0x100c)
r3 = epoll_create1(0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000200)={0x10})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), r5)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="01002dbd7000fedbdf2531"], 0x2c}, 0x1, 0x0, 0x0, 0x2004c890}, 0x2000c800)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010300000000000000000100fffe0900010073797a300000000040000000030a010200000000000000000100000014000480080002400000000008000140000000000900010073797a30400000000900030073797a31000000004c000000060a010400000000000000000100000008000b40000000000900010073797a3000000000240004802000018007000100727400001400028008000140000000080800024000000004140000001100010000000000000000000000000a"], 0xd4}, 0x1, 0x0, 0x0, 0x1}, 0x8367e6869b17611b)
r8 = syz_open_dev$video(0x0, 0x485, 0x40000)
ioctl$VIDIOC_S_SELECTION(r8, 0xc040565f, &(0x7f0000000040)={0x9, 0x100, 0x0, {0xfffffffd, 0x4, 0xb, 0x8001}})

3.563957256s ago: executing program 8 (id=5019):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
arch_prctl$ARCH_SHSTK_UNLOCK(0x5004, 0x3)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000080), 0x800, &(0x7f00000003c0)=ANY=[])
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r2, &(0x7f0000004100)={0x2020}, 0x2020)
syz_usb_connect(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000014da2108ab1204000000000000010902240001b30000040904410c17ff5d810009050f1f05e13f0000090583"], 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x40}}, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000680)={'bridge0\x00'})
socket(0x400000000010, 0x3, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='smaps\x00')
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='\v'], 0x48)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001980)={0x1, 0x3, &(0x7f00000013c0)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000040)={r6, 0x108, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffcd, 0xffffffffffffff2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
read$FUSE(r5, &(0x7f0000002640)={0x2020}, 0x2020)

1.596864785s ago: executing program 3 (id=5020):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_io_uring_setup(0x118d7, &(0x7f0000000040)={0x0, 0xe472, 0x2, 0x0, 0x25a}, 0x0, 0x0, &(0x7f0000000000))
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket(0x840000000002, 0x3, 0xfa)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x4004850)
sendmsg$NFT_BATCH(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d00)=ANY=[@ANYBLOB="140000001000010000000000000000000220000a3c000000120a09080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000"], 0x64}, 0x1, 0x0, 0x0, 0x5}, 0x0)
getsockname$inet(r2, 0x0, &(0x7f0000002280))
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x5, 0x9, 0x6, 0x0, 0xb49, 0x9, 0x8, 0x2, 0x3}, 0x0)
getresuid(&(0x7f0000000100), 0x0, 0x0)
lstat(&(0x7f00000003c0)='./file0/file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[], 0x50)
unshare(0x62040200)
syz_usb_connect(0x0, 0x4a, &(0x7f0000000080)=ANY=[@ANYBLOB="120100005520f010402038b14201040000010902"], 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000003, 0x50032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x12, 0x6, &(0x7f0000000700)=ANY=[@ANYRESHEX=r4], 0x0, 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

1.507587425s ago: executing program 4 (id=5021):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x0, 0x8, 0x8001, 0x0, 0x2, 0x7, 0xfffffe0001000001, 0xfa11, 0xffffffff}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="180000002500010324bd7002ffdbdf09010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x4008}, 0x0)
recvmsg(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000001700)=""/4108, 0x100c}], 0x1}, 0x2000)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(0xffffffffffffffff, 0x3ba0, &(0x7f0000000100)={0x48})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@ipv6_newaddr={0x34, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x0, 0x0, r4}, [@IFA_LOCAL={0x14, 0x2, @ipv4}, @IFA_FLAGS={0x8, 0x8, 0x100}]}, 0x34}}, 0x0)
socket(0x10, 0x803, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r6, 0x10e, 0x4, &(0x7f0000000100)=0x9, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r6)
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, 0xffffffffffffffff, 0x100000000)

1.450535331s ago: executing program 2 (id=5022):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r2, 0x3ba0, &(0x7f0000000200)={0x48})
r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$FBIO_WAITFORVSYNC(r3, 0x40044620, 0x0)
socket(0x1e, 0x1, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000005c0)=ANY=[], 0x12c}, 0x1, 0x0, 0x0, 0x24000000}, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x4)
writev(r5, &(0x7f0000000300)=[{&(0x7f00000005c0)}], 0x1)
syz_usb_connect(0x1, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e40010203030902240001a82300000904000002ca744d0009"], &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
getsockname$unix(r1, &(0x7f0000000140)=@abs, &(0x7f00000003c0)=0x6e)
r6 = landlock_create_ruleset(0x0, 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a70000000060a0b0400000000000000000200000044000480400001800a0001006d6174636800000030000280080002400000000118000300c6a41d106c720000f5ffffff2fad0a4883cdbba10a0001006f776e65720000000900010073797a30000000000900020073797a32"], 0x98}}, 0x4048010)
landlock_restrict_self(r6, 0x0)
fsopen(&(0x7f0000000100)='hugetlbfs\x00', 0x0)

0s ago: executing program 9 (id=5023):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x40801)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
ioctl$EVIOCSFF(r2, 0x40304580, &(0x7f00000003c0)={0x55, 0x8000, 0xfffd, {0x0, 0x1}, {0x4f, 0x2}, @cond=[{0x1ff, 0x5388, 0x6f5, 0x800, 0xc7, 0x2}, {0xffff, 0x5, 0x1, 0x46, 0x6, 0xfd}]})
r3 = syz_open_dev$video(0x0, 0x0, 0x82341)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
chroot(&(0x7f0000000200)='./file0\x00')
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000100)=0xdf9f, 0x12)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
sendto$inet(r4, &(0x7f0000000300)="ab", 0x1, 0x40000, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r4, 0x84, 0xf, &(0x7f00000003c0)={0x0, @in={{0x2, 0x4e22, @local}}, 0x7fff, 0xfff, 0xfffffffb, 0x5, 0x2}, &(0x7f0000000040)=0x98)
capset(&(0x7f0000a31000)={0x20080522}, 0x0)
ioctl$VIDIOC_G_CROP(r3, 0xc014563b, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f00000002c0)={0x6, 0x8, 0xfd5, 0x7fffffffffffffff, 0x4, 0x7ff})
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000e000207368a2103ea5648d9000003002807"], 0x14}, 0x1, 0x0, 0x0, 0x40000040}, 0x24004004)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, 0x0)
set_mempolicy_home_node(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3, 0x0)
ioctl$TUNSETOWNER(0xffffffffffffffff, 0x400454cc, 0x0)
write$char_usb(r2, &(0x7f0000000040)="e2", 0x2250)
ioctl$TCSETSF(r1, 0x5404, &(0x7f00000005c0)={0x70, 0x101, 0x0, 0x595f314c, 0x19, "00e47903e5951edc064af900"})

kernel console output (not intermixed with test programs):

uest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[ 1154.594027][    T9] usb 5-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1155.046992][T21455] syzkaller0: entered promiscuous mode
[ 1155.079039][T21455] syzkaller0: entered allmulticast mode
[ 1155.227470][T21455] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1155.279790][T21455] tipc: Resetting bearer <eth:syzkaller0>
[ 1155.336933][T21454] tipc: Resetting bearer <eth:syzkaller0>
[ 1155.437326][T21454] tipc: Disabling bearer <eth:syzkaller0>
[ 1155.607182][T21462] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[ 1155.614259][T21462] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 1155.740987][T21462] vhci_hcd vhci_hcd.0: Device attached
[ 1155.924053][   T10] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[ 1155.967533][  T989] usb 39-1: new low-speed USB device number 2 using vhci_hcd
[ 1156.061470][    T9] dvb_usb_rtl28xxu 5-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[ 1156.120834][   T10] usb 4-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[ 1156.140009][    T9] usb 5-1: USB disconnect, device number 75
[ 1156.189196][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1156.241866][   T10] usb 4-1: Product: syz
[ 1156.265628][   T10] usb 4-1: Manufacturer: syz
[ 1156.290348][   T10] usb 4-1: SerialNumber: syz
[ 1156.550904][T21463] vhci_hcd: connection closed
[ 1156.611538][  T145] vhci_hcd vhci_hcd.3: stop threads
[ 1156.685097][  T989] usb 39-1: device descriptor read/64, error -71
[ 1156.698142][  T145] vhci_hcd vhci_hcd.3: release socket
[ 1156.731564][   T10] rtl8150 4-1:1.0: couldn't reset the device
[ 1156.767835][  T145] vhci_hcd vhci_hcd.3: disconnect device
[ 1156.781075][   T10] rtl8150 4-1:1.0: probe with driver rtl8150 failed with error -5
[ 1156.800595][T21476] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1156.851401][   T10] usb 4-1: USB disconnect, device number 45
[ 1156.894373][  T989] vhci_hcd vhci_hcd.3: vhci_device speed not set
[ 1157.079155][T21480] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1157.524769][T21486] binder: 21484:21486 ioctl c0306201 200000000600 returned -14
[ 1159.414632][T21511] binder_alloc: 21510: binder_alloc_buf, no vma
[ 1159.522011][T21514] binder_alloc: 21510: binder_alloc_buf, no vma
[ 1161.534069][  T803] usb 5-1: new high-speed USB device number 76 using dummy_hcd
[ 1161.631262][T21543] netlink: 64 bytes leftover after parsing attributes in process `syz.3.4320'.
[ 1161.794257][  T803] usb 5-1: New USB device found, idVendor=133e, idProduct=0815, bcdDevice= 0.40
[ 1161.804127][  T803] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1161.835233][  T803] usb 5-1: Product: syz
[ 1161.897016][  T803] usb 5-1: Manufacturer: syz
[ 1161.927115][  T803] usb 5-1: SerialNumber: syz
[ 1162.460162][  T803] snd-usb-audio 5-1:1.0: probe with driver snd-usb-audio failed with error -22
[ 1162.547274][  T803] usb 5-1: USB disconnect, device number 76
[ 1163.602767][T21560] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1163.651408][T21560] syzkaller0: entered promiscuous mode
[ 1163.698745][T21560] syzkaller0: entered allmulticast mode
[ 1163.923374][T21563] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1163.970621][T21563] 8021q: adding VLAN 0 to HW filter on device team0
[ 1164.030130][T21563] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1164.251082][T21570] tipc: Resetting bearer <eth:syzkaller0>
[ 1164.274689][T21557] tipc: Resetting bearer <eth:syzkaller0>
[ 1164.403737][T21557] tipc: Disabling bearer <eth:syzkaller0>
[ 1164.784025][  T803] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[ 1164.944163][  T803] usb 4-1: device descriptor read/64, error -71
[ 1165.144421][ T5912] usb 8-1: new high-speed USB device number 31 using dummy_hcd
[ 1165.194978][  T803] usb 4-1: new high-speed USB device number 47 using dummy_hcd
[ 1165.267142][T21585] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1165.315473][ T5912] usb 8-1: Using ep0 maxpacket: 8
[ 1165.332265][ T5912] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1165.349418][  T803] usb 4-1: device descriptor read/64, error -71
[ 1165.361430][ T5912] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1165.381006][ T5912] usb 8-1: New USB device found, idVendor=0079, idProduct=0006, bcdDevice= 0.00
[ 1165.392579][ T5912] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1165.406838][ T5912] usb 8-1: config 0 descriptor??
[ 1165.468013][  T803] usb usb4-port1: attempt power cycle
[ 1165.490778][T21590] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4332'.
[ 1165.834660][  T803] usb 4-1: new high-speed USB device number 48 using dummy_hcd
[ 1165.875240][  T803] usb 4-1: device descriptor read/8, error -71
[ 1166.126691][  T803] usb 4-1: new high-speed USB device number 49 using dummy_hcd
[ 1166.191474][  T803] usb 4-1: device descriptor read/8, error -71
[ 1166.356891][  T803] usb usb4-port1: unable to enumerate USB device
[ 1166.707544][ T5912] dragonrise 0003:0079:0006.0025: item fetching failed at offset 2/41
[ 1166.768011][ T5912] dragonrise 0003:0079:0006.0025: parse failed
[ 1166.784164][T21602] syzkaller0: entered promiscuous mode
[ 1166.795887][T21602] syzkaller0: entered allmulticast mode
[ 1166.808326][ T5912] dragonrise 0003:0079:0006.0025: probe with driver dragonrise failed with error -22
[ 1166.833707][T21602] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4337'.
[ 1166.860395][T21602] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4337'.
[ 1166.937758][   T10] usb 8-1: USB disconnect, device number 31
[ 1167.419878][T21607] tipc: Failed to remove unknown binding: 66,1,1/0:3009991130/3009991132
[ 1167.454702][T21609] syzkaller0: entered promiscuous mode
[ 1167.478403][T21609] syzkaller0: entered allmulticast mode
[ 1167.824529][T21617] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1167.860740][T21617] syzkaller0: entered promiscuous mode
[ 1167.883578][T21617] syzkaller0: entered allmulticast mode
[ 1167.894257][  T803] usb 5-1: new high-speed USB device number 77 using dummy_hcd
[ 1168.036963][T21620] tipc: Resetting bearer <eth:syzkaller0>
[ 1168.051017][T21616] tipc: Resetting bearer <eth:syzkaller0>
[ 1168.097729][  T803] usb 5-1: Using ep0 maxpacket: 16
[ 1168.114307][  T803] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1168.147592][T21616] tipc: Disabling bearer <eth:syzkaller0>
[ 1168.156079][  T803] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1168.179371][  T803] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1168.189859][  T803] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1168.200750][  T803] usb 5-1: Product: syz
[ 1168.212346][  T803] usb 5-1: Manufacturer: syz
[ 1168.218226][  T803] usb 5-1: SerialNumber: syz
[ 1168.241332][  T803] usb 5-1: 0:2 : does not exist
[ 1168.572037][T21627] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1168.889973][T21635] xt_cgroup: xt_cgroup: no path or classid specified
[ 1169.502437][T21644] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1169.674083][   T10] usb 8-1: new high-speed USB device number 32 using dummy_hcd
[ 1169.693997][  T803] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[ 1169.834787][  T803] usb 3-1: device descriptor read/64, error -71
[ 1169.865186][   T10] usb 8-1: Using ep0 maxpacket: 32
[ 1169.886921][   T10] usb 8-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b
[ 1169.920759][   T10] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1169.950051][   T10] usb 8-1: Product: syz
[ 1169.969573][   T10] usb 8-1: Manufacturer: syz
[ 1169.987599][   T10] usb 8-1: SerialNumber: syz
[ 1170.009069][   T10] usb 8-1: config 0 descriptor??
[ 1170.094033][  T803] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[ 1170.248591][   T10] peak_usb 8-1:0.0 can0: unable to request usb[type=0 value=1] err=-71
[ 1170.254013][  T803] usb 3-1: device descriptor read/64, error -71
[ 1170.295580][   T10] peak_usb 8-1:0.0: unable to read PCAN-USB Pro firmware info (err -71)
[ 1170.417757][  T803] usb usb3-port1: attempt power cycle
[ 1170.418051][   T10] peak_usb 8-1:0.0: probe with driver peak_usb failed with error -71
[ 1170.497225][   T10] usb 8-1: USB disconnect, device number 32
[ 1170.794477][  T803] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[ 1170.824686][  T803] usb 3-1: device descriptor read/8, error -71
[ 1171.062768][   T10] usb 5-1: USB disconnect, device number 77
[ 1171.080118][  T803] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[ 1171.154970][  T803] usb 3-1: device descriptor read/8, error -71
[ 1171.284907][  T803] usb usb3-port1: unable to enumerate USB device
[ 1171.614026][  T803] usb 9-1: new high-speed USB device number 41 using dummy_hcd
[ 1171.767756][T21671] ipip0: entered promiscuous mode
[ 1171.787671][T21671] ipip0: entered allmulticast mode
[ 1171.806184][  T803] usb 9-1: Using ep0 maxpacket: 32
[ 1171.841269][  T803] usb 9-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[ 1171.881636][  T803] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1171.933135][  T803] usb 9-1: config 0 descriptor??
[ 1171.999418][  T803] as10x_usb: device has been detected
[ 1172.030398][  T803] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[ 1172.172613][  T803] usb 9-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)...
[ 1173.230146][  T803] as10x_usb: error during firmware upload part1
[ 1173.286537][  T803] Registered device nBox DVB-T Dongle
[ 1174.126675][T21686] RDS: rds_bind could not find a transport for ::e0:0:0:0:1, load rds_tcp or rds_rdma?
[ 1174.252954][T21683] kvm: kvm [21682]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0xff9e00007008
[ 1174.297342][T21683] kvm: kvm [21682]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[ 1174.345816][T21683] kvm: kvm [21682]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0xfff000007100
[ 1174.362931][T21683] kvm: kvm [21682]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[ 1174.379948][T21695] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[ 1174.454002][  T803] usb 5-1: new high-speed USB device number 78 using dummy_hcd
[ 1174.464398][T21696] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4363'.
[ 1174.563994][T18608] usb 8-1: new high-speed USB device number 33 using dummy_hcd
[ 1174.651307][  T803] usb 5-1: config 2 has an invalid interface number: 174 but max is 0
[ 1174.680255][  T803] usb 5-1: config 2 has no interface number 0
[ 1174.710542][  T803] usb 5-1: config 2 interface 174 altsetting 0 has an endpoint descriptor with address 0x9E, changing to 0x8E
[ 1174.728058][T18608] usb 8-1: Using ep0 maxpacket: 32
[ 1174.764369][T18608] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[ 1174.784662][  T803] usb 5-1: config 2 interface 174 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 1023
[ 1174.827583][T18608] usb 8-1: config 0 has no interface number 0
[ 1174.856037][T18608] usb 8-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=93.d8
[ 1174.870046][  T803] usb 5-1: config 2 interface 174 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 255
[ 1174.900378][T18608] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1174.929173][  T803] usb 5-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=22.7e
[ 1174.940880][T18608] usb 8-1: Product: syz
[ 1174.960850][T18608] usb 8-1: Manufacturer: syz
[ 1174.970142][  T803] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1174.982956][T18608] usb 8-1: SerialNumber: syz
[ 1175.009620][  T803] usb 5-1: Product: syz
[ 1175.023221][T18608] usb 8-1: config 0 descriptor??
[ 1175.040252][  T803] usb 5-1: Manufacturer: syz
[ 1175.062657][T18608] usb 8-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[ 1175.073674][  T803] usb 5-1: SerialNumber: syz
[ 1175.113366][T21686] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1175.136386][T18608] usb 8-1: selecting invalid altsetting 1
[ 1175.162093][T21686] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1175.175894][T18608] usb 8-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[ 1175.223330][T18608] usb 8-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1175.249238][T18608] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[ 1175.268558][T18608] usb 8-1: media controller created
[ 1175.381365][T18608] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1175.655001][  T803] usb 5-1: probing VID:PID(0424:012C)   
[ 1175.691853][  T803] usb 5-1: vub300 testing BULK IN EndPoint(0) 8E
[ 1175.717143][  T803] usb 5-1: vub300 testing BULK IN EndPoint(1) 82
[ 1175.727166][  T803] usb 5-1: Could not find two sets of bulk-in/out endpoint pairs
[ 1175.760908][  T803] vub300 5-1:2.174: probe with driver vub300 failed with error -22
[ 1175.812101][  T803] usb 5-1: USB disconnect, device number 78
[ 1176.268000][   T10] usb 9-1: USB disconnect, device number 41
[ 1176.314252][T21693] usb 8-1: dvb_usb_ce6230: usb_control_msg() failed=-110
[ 1176.399274][T18608] usb 8-1: dvb_usb_ce6230: usb_control_msg() failed=-32
[ 1176.437869][T18608] zl10353_read_register: readreg error (reg=127, ret==-32)
[ 1176.851764][   T10] Unregistered device nBox DVB-T Dongle
[ 1176.861565][   T10] as10x_usb: device has been disconnected
[ 1177.086360][T21718] netlink: 76 bytes leftover after parsing attributes in process `syz.4.4379'.
[ 1177.134172][T21718] syzkaller0: entered promiscuous mode
[ 1177.159531][T21718] syzkaller0: entered allmulticast mode
[ 1177.196857][T21718] tc action pedit 'at' offset 65537 out of bounds
[ 1177.205522][T21718] tc action pedit 'at' offset 65537 out of bounds
[ 1177.212353][T21718] tc action pedit 'at' offset 65537 out of bounds
[ 1177.218823][T21718] tc action pedit 'at' offset 65537 out of bounds
[ 1177.225829][T21718] tc action pedit 'at' offset 65537 out of bounds
[ 1177.232258][T21718] tc action pedit 'at' offset 65537 out of bounds
[ 1177.238833][T21718] tc action pedit 'at' offset 65537 out of bounds
[ 1177.245400][T21718] tc action pedit 'at' offset 65537 out of bounds
[ 1177.251875][T21718] tc action pedit 'at' offset 65537 out of bounds
[ 1177.258379][T21718] tc action pedit 'at' offset 65537 out of bounds
[ 1177.264901][T21718] 0: reclassify loop, rule prio 0, protocol 800
[ 1177.509793][T18608] usb 8-1: USB disconnect, device number 33
[ 1177.523452][ T1310] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.550310][ T1310] ieee802154 phy1 wpan1: encryption failed: -22
[ 1179.478986][T21749] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4376'.
[ 1180.359406][T21752] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4377'.
[ 1181.364388][T18608] usb 5-1: new high-speed USB device number 79 using dummy_hcd
[ 1181.524032][T18608] usb 5-1: Using ep0 maxpacket: 8
[ 1181.535496][T18608] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[ 1181.578757][T18608] usb 5-1: config 0 has no interface number 0
[ 1181.617763][T18608] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1181.700459][T18608] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 1181.786910][T18608] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1181.827077][T18608] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1181.879477][T18608] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1181.905093][T18608] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1181.931401][T18608] usb 5-1: config 0 descriptor??
[ 1181.958186][T18608] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 1182.551312][   T10] usb 5-1: USB disconnect, device number 79
[ 1182.603313][   T10] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[ 1183.119140][T21794] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1187.656866][T21845] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1188.333057][T21856] syzkaller0: entered promiscuous mode
[ 1188.347620][T21856] syzkaller0: entered allmulticast mode
[ 1188.864429][T21868] syzkaller0: entered promiscuous mode
[ 1188.880633][T21868] syzkaller0: entered allmulticast mode
[ 1189.781095][T21878] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1191.501567][T21891] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1192.626273][T21905] trusted_key: encrypted_key: insufficient parameters specified
[ 1195.009487][T21933] syz.2.4424: vmalloc error: size 70368744185856, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz2,mems_allowed=0-1
[ 1195.094798][T21933] CPU: 0 UID: 0 PID: 21933 Comm: syz.2.4424 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1195.094826][T21933] Tainted: [L]=SOFTLOCKUP
[ 1195.094832][T21933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1195.094842][T21933] Call Trace:
[ 1195.094847][T21933]  <TASK>
[ 1195.094855][T21933]  dump_stack_lvl+0xe8/0x150
[ 1195.094882][T21933]  warn_alloc+0x249/0x340
[ 1195.094901][T21933]  ? __pfx_warn_alloc+0x10/0x10
[ 1195.094927][T21933]  __vmalloc_node_range_noprof+0x132/0x1750
[ 1195.094950][T21933]  ? __mutex_trylock_common+0x158/0x260
[ 1195.094967][T21933]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 1195.094985][T21933]  ? trace_contention_end+0x3d/0x140
[ 1195.095000][T21933]  ? __mutex_lock+0x319/0x1550
[ 1195.095024][T21933]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1195.095037][T21933]  ? tomoyo_path_number_perm+0x219/0x630
[ 1195.095053][T21933]  ? dvb_demux_do_ioctl+0x320/0x540
[ 1195.095075][T21933]  ? __pfx___mutex_lock+0x10/0x10
[ 1195.095093][T21933]  ? dvb_dmxdev_set_buffer_size+0xbe/0x1f0
[ 1195.095113][T21933]  vmalloc_noprof+0xb2/0xe0
[ 1195.095127][T21933]  ? dvb_dmxdev_set_buffer_size+0xbe/0x1f0
[ 1195.095147][T21933]  dvb_dmxdev_set_buffer_size+0xbe/0x1f0
[ 1195.095174][T21933]  dvb_demux_do_ioctl+0x45d/0x540
[ 1195.095195][T21933]  dvb_usercopy+0x199/0x2e0
[ 1195.095214][T21933]  ? __pfx_dvb_demux_do_ioctl+0x10/0x10
[ 1195.095232][T21933]  ? __pfx_dvb_usercopy+0x10/0x10
[ 1195.095257][T21933]  ? __fget_files+0x3a0/0x420
[ 1195.095275][T21933]  ? __fget_files+0x2a/0x420
[ 1195.095295][T21933]  ? __pfx_dvb_demux_ioctl+0x10/0x10
[ 1195.095313][T21933]  dvb_demux_ioctl+0x29/0x40
[ 1195.095339][T21933]  __se_sys_ioctl+0xfc/0x170
[ 1195.095354][T21933]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1195.095368][T21933]  do_syscall_64+0x15f/0xf80
[ 1195.095384][T21933]  ? trace_irq_disable+0x3b/0x140
[ 1195.095411][T21933]  ? clear_bhb_loop+0x40/0x90
[ 1195.095433][T21933]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1195.095445][T21933] RIP: 0033:0x7fc9b379c819
[ 1195.095459][T21933] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1195.095470][T21933] RSP: 002b:00007fc9b4592028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1195.095486][T21933] RAX: ffffffffffffffda RBX: 00007fc9b3a15fa0 RCX: 00007fc9b379c819
[ 1195.095495][T21933] RDX: 0000400000002000 RSI: 0000000000006f2d RDI: 0000000000000004
[ 1195.095504][T21933] RBP: 00007fc9b3832c91 R08: 0000000000000000 R09: 0000000000000000
[ 1195.095512][T21933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1195.095520][T21933] R13: 00007fc9b3a16038 R14: 00007fc9b3a15fa0 R15: 00007fc9b3b3fa48
[ 1195.095541][T21933]  </TASK>
[ 1195.100919][T21933] Mem-Info:
[ 1195.463800][T21933] active_anon:18420 inactive_anon:0 isolated_anon:0
[ 1195.463800][T21933]  active_file:21896 inactive_file:40487 isolated_file:0
[ 1195.463800][T21933]  unevictable:771 dirty:270 writeback:0
[ 1195.463800][T21933]  slab_reclaimable:9296 slab_unreclaimable:126679
[ 1195.463800][T21933]  mapped:41356 shmem:6026 pagetables:2008
[ 1195.463800][T21933]  sec_pagetables:0 bounce:0
[ 1195.463800][T21933]  kernel_misc_reclaimable:0
[ 1195.463800][T21933]  free:1245012 free_pcp:12126 free_cma:0
[ 1195.728186][T21933] Node 0 active_anon:71880kB inactive_anon:0kB active_file:87508kB inactive_file:161752kB unevictable:1548kB isolated(anon):0kB isolated(file):0kB mapped:165684kB dirty:1080kB writeback:0kB shmem:22868kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:14944kB pagetables:7688kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[ 1195.913647][T21933] Node 1 active_anon:0kB inactive_anon:0kB active_file:76kB inactive_file:196kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:40kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[ 1196.020569][T21933] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1196.178514][T21933] lowmem_reserve[]: 0 2491 2491 2491 2491
[ 1196.191955][T21933] Node 0 DMA32 free:1019844kB boost:0kB min:34180kB low:42724kB high:51268kB reserved_highatomic:0KB free_highatomic:0KB active_anon:73756kB inactive_anon:0kB active_file:87508kB inactive_file:161752kB unevictable:1548kB writepending:1128kB zspages:0kB present:3129332kB managed:2551108kB mlocked:12kB bounce:0kB free_pcp:46032kB local_pcp:24016kB free_cma:0kB
[ 1196.266359][T21933] lowmem_reserve[]: 0 0 0 0 0
[ 1196.280476][T21933] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:596kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1196.473337][T21933] lowmem_reserve[]: 0 0 0 0 0
[ 1196.658208][   T30] audit: type=1326 audit(1776601602.656:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21946 comm="syz.8.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1196.681401][T21933] Node 1 Normal free:3942896kB boost:0kB min:55712kB low:69640kB high:83568kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:76kB inactive_file:196kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:4256kB local_pcp:160kB free_cma:0kB
[ 1196.800664][T21947] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4428'.
[ 1196.813044][   T30] audit: type=1326 audit(1776601602.666:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21946 comm="syz.8.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1196.849202][T21947] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4428'.
[ 1196.858363][T21933] lowmem_reserve[]: 0 0 0 0 0
[ 1196.869596][T21933] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1196.905432][   T30] audit: type=1326 audit(1776601602.726:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21946 comm="syz.8.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1196.929324][T21933] Node 0 DMA32: 7655*4kB (UME) 5171*8kB (UME) 3285*16kB (UME) 1038*32kB (UME) 998*64kB (UME) 766*128kB (UME) 536*256kB (UME) 241*512kB (UME) 125*1024kB (UME) 1*2048kB (E) 77*4096kB (UM) = 1025732kB
[ 1196.983918][T21933] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 1196.998787][   T30] audit: type=1326 audit(1776601602.726:775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21946 comm="syz.8.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1197.044296][   T30] audit: type=1326 audit(1776601602.736:776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21946 comm="syz.8.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1197.070253][T21933] Node 1 Normal: 2*4kB (M) 9*8kB (UM) 4*16kB (UM) 1*32kB (M) 9*64kB (UM) 8*128kB (UM) 5*256kB (UM) 5*512kB (UM) 3*1024kB (M) 3*2048kB (UM) 959*4096kB (UM) = 3942896kB
[ 1197.092773][T21933] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1197.104791][   T30] audit: type=1326 audit(1776601602.766:777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21946 comm="syz.8.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1197.127970][T21933] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1197.137830][T21933] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1197.153802][   T30] audit: type=1326 audit(1776601602.766:778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21946 comm="syz.8.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1197.185378][T21933] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1197.199382][T21933] 65607 total pagecache pages
[ 1197.207147][T21933] 0 pages in swap cache
[ 1197.211750][T21933] Free swap  = 124996kB
[ 1197.217822][   T30] audit: type=1326 audit(1776601602.776:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21946 comm="syz.8.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1197.254025][T21933] Total swap = 124996kB
[ 1197.291667][T21933] 2097051 pages RAM
[ 1197.300887][T21933] 0 pages HighMem/MovableOnly
[ 1197.347394][T21933] 427510 pages reserved
[ 1197.366638][   T30] audit: type=1326 audit(1776601602.776:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21946 comm="syz.8.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1197.391815][T21933] 0 pages cma reserved
[ 1197.509765][   T30] audit: type=1326 audit(1776601602.776:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21946 comm="syz.8.4428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1198.196203][T21965] netlink: 'syz.3.4432': attribute type 10 has an invalid length.
[ 1198.323530][T21971] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4431'.
[ 1198.491410][T21978] batman_adv: batadv0: Local translation table size (128) exceeds maximum packet size (-320); Ignoring new local tt entry: 00:00:00:00:00:00
[ 1199.135304][T21985] loop4: detected capacity change from 0 to 7
[ 1199.360201][    C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1199.369926][    C1] buffer_io_error: 8 callbacks suppressed
[ 1199.369946][    C1] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1199.403009][T21984] trusted_key: encrypted_key: master key parameter 'usez' is invalid
[ 1199.427102][    C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1199.436551][    C1] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1199.447760][    C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1199.457295][    C1] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1199.504788][    C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1199.514135][    C1] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1199.527672][    C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1199.537053][    C0] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1199.547784][    C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1199.557151][    C0] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1199.566132][    C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1199.575422][    C0] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1199.586449][T21985] ldm_validate_partition_table(): Disk read failed.
[ 1199.594506][    C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1199.603796][    C1] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1199.621218][    C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1199.630745][    C1] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1199.646518][    C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1199.655772][    C0] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1199.665908][T21985] Dev loop4: unable to read RDB block 0
[ 1199.678307][T21985]  loop4: unable to read partition table
[ 1199.723041][T21985] loop4: partition table beyond EOD, truncated
[ 1199.742545][T21985] loop_reread_partitions: partition scan of loop4 (úùƒå¡™‰ü�¾CêjÌ–ã¢P=Ã	) failed (rc=-5)
[ 1202.210222][  T989] hid_parser_main: 30 callbacks suppressed
[ 1202.210241][  T989] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[ 1202.367763][  T989] hid-generic 0000:0000:0000.0026: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1203.623993][ T5939] usb 4-1: new high-speed USB device number 50 using dummy_hcd
[ 1203.828778][ T5939] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1203.868767][ T5939] usb 4-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.00
[ 1203.931089][ T5939] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1203.984529][ T5939] usb 4-1: config 0 descriptor??
[ 1204.356467][ T5939] usb 4-1: USB disconnect, device number 50
[ 1204.549579][T22037] loop6: detected capacity change from 0 to 2640
[ 1204.636386][T22037] buffer_io_error: 10 callbacks suppressed
[ 1204.636401][T22037] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1204.776113][T22037] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1204.864764][T22037] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1204.937690][T22037] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1204.982178][T22037] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1205.074624][T22037] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1205.129255][T22037] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1205.177128][T22037] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1205.221024][T22037] ldm_validate_partition_table(): Disk read failed.
[ 1205.261462][T22037] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1205.329370][T22037] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1205.361471][T22037] Dev loop6: unable to read RDB block 0
[ 1205.392153][T22037]  loop6: unable to read partition table
[ 1205.416504][T22037] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[ 1206.314661][ T5912] usb 4-1: new high-speed USB device number 51 using dummy_hcd
[ 1206.504248][ T5912] usb 4-1: Using ep0 maxpacket: 8
[ 1206.530720][ T5912] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1206.567283][ T5912] usb 4-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[ 1206.611971][ T5912] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1206.660817][ T5912] usb 4-1: config 0 descriptor??
[ 1206.718972][ T5912] gspca_main: vc032x-2.14.0 probing 046d:0892
[ 1207.883784][T22076] netlink: 'syz.7.4457': attribute type 13 has an invalid length.
[ 1207.952842][T22077] netlink: 'syz.7.4457': attribute type 10 has an invalid length.
[ 1208.147991][ T5912] usb 4-1: USB disconnect, device number 51
[ 1208.630367][T22088] netlink: set zone limit has 4 unknown bytes
[ 1209.504753][  T989] usb 4-1: new high-speed USB device number 52 using dummy_hcd
[ 1209.676402][  T989] usb 4-1: Using ep0 maxpacket: 32
[ 1209.683410][  T989] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1209.697115][  T989] usb 4-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[ 1209.743095][  T989] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1209.751439][  T989] usb 4-1: Product: syz
[ 1209.760269][  T989] usb 4-1: Manufacturer: syz
[ 1209.766424][  T989] usb 4-1: SerialNumber: syz
[ 1209.774621][  T989] usb 4-1: config 0 descriptor??
[ 1209.785775][  T989] cdc_ether 4-1:0.0: Descriptor too short
[ 1209.795579][  T989] usb 4-1: unsupported MDLM descriptors
[ 1209.984808][T22095] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4461'.
[ 1209.998957][  T989] usb 4-1: USB disconnect, device number 52
[ 1210.363958][ T5939] usb 3-1: new full-speed USB device number 33 using dummy_hcd
[ 1210.526807][ T5939] usb 3-1: New USB device found, idVendor=0c45, idProduct=6280, bcdDevice=d5.fc
[ 1210.536144][ T5939] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1210.554810][ T5939] gspca_main: gspca_sn9c20x-2.14.0 probing 0c45:6280
[ 1210.765454][T22106] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1210.803801][T22106] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1211.086834][ T5939] gspca_sn9c20x: Write register 1001 failed -71
[ 1211.136603][ T5939] gspca_sn9c20x: Device initialization failed
[ 1211.161964][ T5939] gspca_sn9c20x 3-1:252.0: probe with driver gspca_sn9c20x failed with error -71
[ 1211.215467][ T5939] usb 3-1: USB disconnect, device number 33
[ 1211.762722][T22130] netlink: 40 bytes leftover after parsing attributes in process `syz.7.4469'.
[ 1212.702667][T22148] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1212.768667][T22151] sch_tbf: burst 6281 is lower than device lo mtu (65550) !
[ 1212.865204][T22151] netlink: 36 bytes leftover after parsing attributes in process `syz.4.4475'.
[ 1213.361353][T22155] batadv_slave_1: entered promiscuous mode
[ 1213.426817][T22154] batadv_slave_1: left promiscuous mode
[ 1213.616479][T22157] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1213.888782][T22163] tipc: Failed to remove unknown binding: 66,1,1/0:2505762259/2505762261
[ 1215.607200][T22172] syzkaller0: entered promiscuous mode
[ 1215.651680][T22172] syzkaller0: entered allmulticast mode
[ 1215.700713][T22172] tc action pedit offset must be on 32 bit boundaries
[ 1215.709919][T22172] tc action pedit offset must be on 32 bit boundaries
[ 1215.716916][T22172] tc action pedit offset must be on 32 bit boundaries
[ 1215.723924][T22172] tc action pedit offset must be on 32 bit boundaries
[ 1215.730728][T22172] tc action pedit offset must be on 32 bit boundaries
[ 1215.737534][T22172] tc action pedit offset must be on 32 bit boundaries
[ 1215.744494][T22172] tc action pedit offset must be on 32 bit boundaries
[ 1215.751287][T22172] tc action pedit offset must be on 32 bit boundaries
[ 1215.758176][T22172] tc action pedit offset must be on 32 bit boundaries
[ 1215.765068][T22172] tc action pedit offset must be on 32 bit boundaries
[ 1215.771933][T22172] 0: reclassify loop, rule prio 0, protocol 800
[ 1216.589661][T22186] trusted_key: encrypted_key: insufficient parameters specified
[ 1216.757184][T22183] netlink: zone id is out of range
[ 1216.961684][T22189] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1217.436471][T22183] netlink: set zone limit has 4 unknown bytes
[ 1218.115779][T22200] ipvlan2: entered promiscuous mode
[ 1218.146415][T22200] ipvlan2: entered allmulticast mode
[ 1218.171606][T22200] bond0: entered allmulticast mode
[ 1218.192090][T22200] bond_slave_0: entered allmulticast mode
[ 1218.247426][T22200] bond_slave_1: entered allmulticast mode
[ 1218.368725][T22200] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[ 1218.411225][T22200] team0: Device ipvlan2 failed to register rx_handler
[ 1218.536876][T22205] bridge0: port 3(syz_tun) entered blocking state
[ 1218.584212][T22205] bridge0: port 3(syz_tun) entered disabled state
[ 1218.691060][T22205] syz_tun: entered allmulticast mode
[ 1218.919349][T22205] syz_tun: entered promiscuous mode
[ 1219.131658][T22205] bridge0: port 3(syz_tun) entered blocking state
[ 1219.140772][T22205] bridge0: port 3(syz_tun) entered forwarding state
[ 1220.011336][T22225] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4493'.
[ 1223.366582][ T5939] usb 4-1: new full-speed USB device number 53 using dummy_hcd
[ 1223.556904][ T5939] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1223.572077][ T5939] usb 4-1: config 0 has no interfaces?
[ 1223.583709][ T5939] usb 4-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[ 1223.596497][ T5939] usb 4-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[ 1223.610323][ T5939] usb 4-1: Product: syz
[ 1223.617131][ T5939] usb 4-1: Manufacturer: syz
[ 1223.630532][ T5939] usb 4-1: SerialNumber: syz
[ 1223.708136][ T5939] usb 4-1: config 0 descriptor??
[ 1223.833431][T22262] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1223.944997][ T5939] usb 4-1: USB disconnect, device number 53
[ 1224.123712][T22273] netlink: 'syz.4.4504': attribute type 4 has an invalid length.
[ 1224.147494][T22273] netlink: 'syz.4.4504': attribute type 4 has an invalid length.
[ 1224.293988][ T5912] usb 9-1: new high-speed USB device number 42 using dummy_hcd
[ 1224.447617][ T5912] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1224.484631][ T5912] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1224.525769][ T5912] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1224.575109][ T5912] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1224.617705][ T5912] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1224.667495][ T5912] usb 9-1: config 0 descriptor??
[ 1225.362345][ T5912] plantronics 0003:047F:FFFF.0027: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.8-1/input0
[ 1226.039473][ T5939] usb 9-1: USB disconnect, device number 42
[ 1226.250665][T22300] =======================================================
[ 1226.250665][T22300] WARNING: The mand mount option has been deprecated and
[ 1226.250665][T22300]          and is ignored by this kernel. Remove the mand
[ 1226.250665][T22300]          option from the mount to silence this warning.
[ 1226.250665][T22300] =======================================================
[ 1226.949691][T22313] syzkaller0: entered promiscuous mode
[ 1226.977381][T22313] syzkaller0: entered allmulticast mode
[ 1227.237936][T22321] binder: BINDER_SET_CONTEXT_MGR already set
[ 1227.278575][T22321] binder: 22320:22321 ioctl 4018620d 200000004a80 returned -16
[ 1228.012009][T22330] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1228.385671][T22335] pim6reg: entered allmulticast mode
[ 1228.914023][  T989] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[ 1229.086018][  T989] usb 3-1: config 1 has an invalid interface number: 188 but max is 0
[ 1229.114993][  T989] usb 3-1: config 1 has an invalid descriptor of length 102, skipping remainder of the config
[ 1229.130235][  T989] usb 3-1: config 1 has no interface number 0
[ 1229.146265][  T989] usb 3-1: config 1 interface 188 altsetting 209 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1229.185983][  T989] usb 3-1: config 1 interface 188 has no altsetting 0
[ 1229.198775][  T989] usb 3-1: New USB device found, idVendor=2040, idProduct=7200, bcdDevice=5b.6b
[ 1229.209615][  T989] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1229.219722][  T989] usb 3-1: Product: syz
[ 1229.225462][  T989] usb 3-1: Manufacturer: syz
[ 1229.230534][  T989] usb 3-1: SerialNumber: syz
[ 1229.262978][  T989] usb 3-1: Audio class v2/v3 interfaces need an interface association
[ 1229.515095][  T989] snd-usb-audio 3-1:1.188: probe with driver snd-usb-audio failed with error -22
[ 1229.529030][T22350] syzkaller0: entered promiscuous mode
[ 1229.537554][T22350] syzkaller0: entered allmulticast mode
[ 1229.549859][  T989] usb 3-1: USB disconnect, device number 34
[ 1229.614045][ T5939] usb 9-1: new high-speed USB device number 43 using dummy_hcd
[ 1229.627951][T19507] udevd[19507]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.188/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1229.811375][ T5939] usb 9-1: too many configurations: 36, using maximum allowed: 8
[ 1229.859354][ T5939] usb 9-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1229.893143][ T5939] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1229.926122][ T5939] usb 9-1: Product: syz
[ 1229.938356][ T5939] usb 9-1: Manufacturer: syz
[ 1229.957066][ T5939] usb 9-1: SerialNumber: syz
[ 1229.986749][ T5939] usb 9-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1230.043235][   T10] usb 9-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1230.481522][  T803] usb 9-1: USB disconnect, device number 43
[ 1230.600421][T22363] kvm: kvm [22360]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x1000000f0
[ 1230.665159][T22363] kvm: kvm [22360]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[ 1231.209159][   T10] ath9k_htc 9-1:1.0: ath9k_htc: Target is unresponsive
[ 1231.282867][T22374] netlink: 32 bytes leftover after parsing attributes in process `syz.8.4533'.
[ 1231.304408][   T10] ath9k_htc: Failed to initialize the device
[ 1231.360842][  T803] usb 9-1: ath9k_htc: USB layer deinitialized
[ 1231.400403][T22376] netlink: 32 bytes leftover after parsing attributes in process `syz.8.4533'.
[ 1231.525252][   T30] kauditd_printk_skb: 21 callbacks suppressed
[ 1231.525275][   T30] audit: type=1326 audit(1776601637.516:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22373 comm="syz.8.4533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1231.568556][T22375] batman_adv: batadv0: Adding interface: macvtap1
[ 1231.592431][T22375] batman_adv: batadv0: The MTU of interface macvtap1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1231.701475][   T30] audit: type=1326 audit(1776601637.516:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22373 comm="syz.8.4533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1231.735799][T22375] batman_adv: batadv0: Not using interface macvtap1 (retrying later): interface not active
[ 1231.863415][   T30] audit: type=1326 audit(1776601637.526:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22373 comm="syz.8.4533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1231.999754][   T30] audit: type=1326 audit(1776601637.526:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22373 comm="syz.8.4533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1232.094749][   T30] audit: type=1326 audit(1776601637.526:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22373 comm="syz.8.4533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1232.214220][   T30] audit: type=1326 audit(1776601637.536:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22373 comm="syz.8.4533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1232.322099][   T30] audit: type=1326 audit(1776601637.536:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22373 comm="syz.8.4533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1232.374448][   T30] audit: type=1326 audit(1776601637.536:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22373 comm="syz.8.4533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f500539c819 code=0x7ffc0000
[ 1233.234032][T18608] usb 9-1: new full-speed USB device number 44 using dummy_hcd
[ 1233.436755][T18608] usb 9-1: config 0 has an invalid interface number: 128 but max is 0
[ 1233.436778][T18608] usb 9-1: config 0 has no interface number 0
[ 1233.447049][T18608] usb 9-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1233.447073][T18608] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1233.447086][T18608] usb 9-1: Product: syz
[ 1233.447096][T18608] usb 9-1: Manufacturer: syz
[ 1233.447106][T18608] usb 9-1: SerialNumber: syz
[ 1233.504812][T18608] usb 9-1: config 0 descriptor??
[ 1233.943482][T18608] usb 9-1: Firmware: major: 0, minor: 0, hardware type: ATUSB (1)
[ 1233.960206][T18608] usb 9-1: Firmware version (0.0) predates our first public release.
[ 1234.002794][T18608] usb 9-1: Please update to version 0.2 or newer
[ 1235.423537][T18608] usb 9-1: USB disconnect, device number 44
[ 1236.083623][   T30] audit: type=1326 audit(1776601642.086:811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22422 comm="syz.7.4545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac80f9c819 code=0x7ffc0000
[ 1236.161691][   T30] audit: type=1326 audit(1776601642.126:812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22422 comm="syz.7.4545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac80f9c819 code=0x7ffc0000
[ 1236.831142][T22436] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4548'.
[ 1237.537162][T22440] binder: BINDER_SET_CONTEXT_MGR already set
[ 1237.584382][T22440] binder: 22439:22440 ioctl 4018620d 200000004a80 returned -16
[ 1238.084193][T18608] usb 5-1: new high-speed USB device number 80 using dummy_hcd
[ 1238.318190][T18608] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1238.377002][T18608] usb 5-1: New USB device found, idVendor=1199, idProduct=b000, bcdDevice=e5.38
[ 1238.428421][T18608] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1238.492242][T18608] usb 5-1: Product: syz
[ 1238.525923][T18608] usb 5-1: Manufacturer: syz
[ 1238.562989][T18608] usb 5-1: SerialNumber: syz
[ 1238.619861][T18608] usb 5-1: config 0 descriptor??
[ 1238.961918][ T1310] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.968366][ T1310] ieee802154 phy1 wpan1: encryption failed: -22
[ 1239.958923][T18608] usb 5-1: USB disconnect, device number 80
[ 1241.274207][ T5912] usb 5-1: new high-speed USB device number 81 using dummy_hcd
[ 1241.453972][ T5912] usb 5-1: Using ep0 maxpacket: 32
[ 1241.542035][ T5912] usb 5-1: config 0 has no interfaces?
[ 1241.571944][ T5912] usb 5-1: New USB device found, idVendor=05ac, idProduct=030a, bcdDevice= 0.40
[ 1241.590349][ T5912] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1241.599548][ T5912] usb 5-1: Product: syz
[ 1241.631088][ T5912] usb 5-1: Manufacturer: syz
[ 1241.642047][ T5912] usb 5-1: SerialNumber: syz
[ 1241.717788][ T5912] usb 5-1: config 0 descriptor??
[ 1242.292419][ T5912] usb 5-1: USB disconnect, device number 81
[ 1243.317093][T22490] dummy0: entered promiscuous mode
[ 1243.346240][T22490] dummy0: left promiscuous mode
[ 1244.624044][  T803] usb 4-1: new high-speed USB device number 54 using dummy_hcd
[ 1244.806206][  T803] usb 4-1: Using ep0 maxpacket: 32
[ 1244.848983][  T803] usb 4-1: config 0 has an invalid interface number: 196 but max is 0
[ 1244.878312][  T803] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1244.909595][  T803] usb 4-1: config 0 has no interface number 0
[ 1244.931153][  T803] usb 4-1: config 0 interface 196 altsetting 1 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1245.049724][  T803] usb 4-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 0
[ 1245.090194][  T803] usb 4-1: config 0 interface 196 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1245.167826][  T803] usb 4-1: config 0 interface 196 has no altsetting 0
[ 1245.212912][  T803] usb 4-1: New USB device found, idVendor=05ac, idProduct=7700, bcdDevice=eb.3a
[ 1245.264719][  T803] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1245.303159][  T803] usb 4-1: Product: syz
[ 1245.308331][  T803] usb 4-1: Manufacturer: syz
[ 1245.314028][  T803] usb 4-1: SerialNumber: syz
[ 1245.327856][  T803] usb 4-1: config 0 descriptor??
[ 1245.609337][T22524] netlink: 'syz.3.4570': attribute type 3 has an invalid length.
[ 1245.649567][T22524] netlink: 'syz.3.4570': attribute type 3 has an invalid length.
[ 1245.668745][T22524] netlink: 'syz.3.4570': attribute type 3 has an invalid length.
[ 1245.702848][T22524] netlink: 'syz.3.4570': attribute type 3 has an invalid length.
[ 1245.721011][T22524] netlink: 'syz.3.4570': attribute type 3 has an invalid length.
[ 1245.744913][T22524] netlink: 'syz.3.4570': attribute type 3 has an invalid length.
[ 1245.760641][T22524] netlink: 'syz.3.4570': attribute type 3 has an invalid length.
[ 1245.773763][T22524] netlink: 'syz.3.4570': attribute type 3 has an invalid length.
[ 1245.785034][T22524] netlink: 'syz.3.4570': attribute type 3 has an invalid length.
[ 1245.799701][T22524] netlink: 'syz.3.4570': attribute type 3 has an invalid length.
[ 1245.925456][  T803] ipheth 4-1:0.196: Unable to find endpoints
[ 1245.995010][  T803] usb 4-1: USB disconnect, device number 54
[ 1247.008183][T22557] IPVS: set_ctl: invalid protocol: 1 0.0.0.0:0
[ 1247.749659][T22569] binder: 22568:22569 ioctl 4018620d 0 returned -22
[ 1252.712898][T22628] fuse: Unknown parameter './file0'
[ 1254.974979][T22642] binder: 22639:22642 ioctl 4018620d 0 returned -22
[ 1255.413979][  T803] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[ 1255.767357][  T803] usb 3-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1255.777432][  T803] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1255.792552][  T803] usb 3-1: Product: syz
[ 1255.797624][  T803] usb 3-1: Manufacturer: syz
[ 1255.802640][  T803] usb 3-1: SerialNumber: syz
[ 1256.035695][  T803] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPROTO
[ 1256.056054][  T803] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): lan78xx_setup_irq_domain() failed : -71
[ 1256.107167][  T803] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1256.142707][  T803] lan78xx 3-1:1.0: probe with driver lan78xx failed with error -71
[ 1256.211661][  T803] usb 3-1: USB disconnect, device number 35
[ 1256.237307][T22660] x_tables: duplicate underflow at hook 4
[ 1256.544500][  T989] usb 4-1: new high-speed USB device number 55 using dummy_hcd
[ 1256.714609][  T989] usb 4-1: Using ep0 maxpacket: 16
[ 1256.823129][  T989] usb 4-1: config 128 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1256.830727][T22666] validate_nla: 43 callbacks suppressed
[ 1256.830746][T22666] netlink: 'syz.2.4608': attribute type 4 has an invalid length.
[ 1256.915007][  T989] usb 4-1: config 128 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1256.962386][  T989] usb 4-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[ 1256.984383][  T989] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1257.620872][  T989] mcp2221 0003:04D8:00DD.0028: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.3-1/input0
[ 1258.934212][   T10] usb 4-1: reset high-speed USB device number 55 using dummy_hcd
[ 1261.591676][  T989] usb 4-1: USB disconnect, device number 55
[ 1261.944999][ T5829] usb 9-1: new high-speed USB device number 45 using dummy_hcd
[ 1262.144188][ T5829] usb 9-1: Using ep0 maxpacket: 16
[ 1262.178587][ T5829] usb 9-1: New USB device found, idVendor=0db0, idProduct=5581, bcdDevice=f9.22
[ 1262.220757][ T5829] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1262.259541][ T5829] usb 9-1: Product: syz
[ 1262.272355][ T5829] usb 9-1: Manufacturer: syz
[ 1262.285967][ T5829] usb 9-1: SerialNumber: syz
[ 1262.577949][ T5829] usb 9-1: dvb_usb_v2: found a 'MSI Mega Sky 55801 DVB-T USB2.0' in warm state
[ 1262.630025][ T5829] usb 9-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1262.696155][ T5829] dvbdev: DVB: registering new adapter (MSI Mega Sky 55801 DVB-T USB2.0)
[ 1262.721322][ T5829] usb 9-1: media controller created
[ 1262.803155][ T5829] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1263.085097][ T5829] zl10353_read_register: readreg error (reg=127, ret==-71)
[ 1263.386678][ T5829] dvb_usb_gl861 9-1:157.0: probe with driver dvb_usb_gl861 failed with error -5
[ 1263.430785][ T5829] usb 9-1: USB disconnect, device number 45
[ 1263.484028][T18608] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[ 1263.686129][T18608] usb 3-1: Using ep0 maxpacket: 32
[ 1263.720109][T18608] usb 3-1: config 0 has an invalid interface number: 89 but max is 0
[ 1263.754851][T18608] usb 3-1: config 0 has no interface number 0
[ 1263.781582][T18608] usb 3-1: config 0 interface 89 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1263.847286][T18608] usb 3-1: config 0 interface 89 has no altsetting 0
[ 1263.890837][T18608] usb 3-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4a
[ 1263.923374][T18608] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1263.952747][T18608] usb 3-1: Product: syz
[ 1263.960898][T18608] usb 3-1: Manufacturer: syz
[ 1263.972213][T18608] usb 3-1: SerialNumber: syz
[ 1263.993146][T18608] usb 3-1: config 0 descriptor??
[ 1264.013561][T18608] em28xx 3-1:0.89: New device syz syz @ 480 Mbps (0ccd:10af, interface 89, class 89)
[ 1264.037003][T18608] em28xx 3-1:0.89: Video interface 89 found:
[ 1264.232405][T22719] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1264.272212][T22719] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1264.861055][T18608] em28xx 3-1:0.89: unknown em28xx chip ID (0)
[ 1265.294344][T18608] em28xx 3-1:0.89: reading from i2c device at 0xa0 failed (error=-5)
[ 1265.330100][T18608] em28xx 3-1:0.89: board has no eeprom
[ 1265.414008][T18608] em28xx 3-1:0.89: Identified as Terratec Grabby (card=67)
[ 1265.438728][T18608] em28xx 3-1:0.89: analog set to bulk mode.
[ 1265.464355][  T803] em28xx 3-1:0.89: Registering V4L2 extension
[ 1265.497735][T18608] usb 3-1: USB disconnect, device number 36
[ 1265.545889][T18608] em28xx 3-1:0.89: Disconnecting em28xx
[ 1265.705975][  T803] em28xx 3-1:0.89: Config register raw data: 0xffffffed
[ 1265.746245][  T803] em28xx 3-1:0.89: AC97 chip type couldn't be determined
[ 1265.764251][  T989] usb 9-1: new high-speed USB device number 46 using dummy_hcd
[ 1265.794841][  T803] em28xx 3-1:0.89: No AC97 audio processor
[ 1265.986086][  T989] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[ 1266.008990][  T989] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[ 1266.020060][  T989] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[ 1266.057145][  T989] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[ 1266.081774][  T989] usb 9-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[ 1266.091631][  T803] usb 3-1: Decoder not found
[ 1266.115586][  T803] em28xx 3-1:0.89: failed to create media graph
[ 1266.141986][  T803] em28xx 3-1:0.89: V4L2 device video103 deregistered
[ 1266.228328][T22745] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1266.295471][  T989] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1266.330553][T22746] syzkaller0: entered promiscuous mode
[ 1266.370868][  T803] em28xx 3-1:0.89: Registering snapshot button...
[ 1266.379099][T22746] syzkaller0: entered allmulticast mode
[ 1266.410009][  T989] usb 9-1: config 0 descriptor??
[ 1266.630085][  T803] input: em28xx snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.89/input/input72
[ 1266.767525][  T989] hdpvr 9-1:0.0: unexpected answer of status request, len 0
[ 1266.860219][  T803] em28xx 3-1:0.89: Remote control support is not available for this card.
[ 1266.869528][T22746] tipc: Resetting bearer <eth:syzkaller0>
[ 1266.889028][  T989] hdpvr 9-1:0.0: device init failed
[ 1266.918614][T22748] tipc: Resetting bearer <eth:syzkaller0>
[ 1266.933598][T18608] em28xx 3-1:0.89: Closing input extension
[ 1266.963645][  T989] hdpvr 9-1:0.0: probe with driver hdpvr failed with error -12
[ 1266.984775][T18608] em28xx 3-1:0.89: Deregistering snapshot button
[ 1267.158194][T22748] tipc: Disabling bearer <eth:syzkaller0>
[ 1267.205235][T22750] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1267.228858][T18608] em28xx 3-1:0.89: Freeing device
[ 1267.254681][  T989] usb 9-1: USB disconnect, device number 46
[ 1267.863018][T22753] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4628'.
[ 1267.990158][T22759] binder: 22757:22759 ioctl c0306201 0 returned -14
[ 1268.035292][T22759] binder: 22757:22759 ioctl 80045519 200000000200 returned -22
[ 1268.104728][T22761] binder: 22757:22761 ioctl c0c85666 200000000440 returned -22
[ 1268.824868][    T9] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[ 1269.004428][    T9] usb 3-1: Using ep0 maxpacket: 32
[ 1269.060398][    T9] usb 3-1: config 0 has no interfaces?
[ 1269.142989][    T9] usb 3-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[ 1269.206206][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1269.272674][    T9] usb 3-1: Product: syz
[ 1269.294188][    T9] usb 3-1: Manufacturer: syz
[ 1269.316630][    T9] usb 3-1: SerialNumber: syz
[ 1269.391823][    T9] usb 3-1: config 0 descriptor??
[ 1270.155987][T22809] openvswitch: netlink: IPv4 tun info is not correct
[ 1272.760523][T22835] netlink: 16 bytes leftover after parsing attributes in process `syz.8.4641'.
[ 1273.102491][    T9] usb 3-1: USB disconnect, device number 37
[ 1274.031608][T22856] binder: BINDER_SET_CONTEXT_MGR already set
[ 1274.076290][T22856] binder: 22855:22856 ioctl 4018620d 200000004a80 returned -16
[ 1274.167163][T22859] binder: 22858:22859 ioctl 4018620d 0 returned -22
[ 1274.576201][T22864] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1274.782699][T22866] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1275.397845][   T30] kauditd_printk_skb: 7 callbacks suppressed
[ 1275.397861][   T30] audit: type=1326 audit(1776601681.406:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22870 comm="syz.3.4650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1275.588553][   T30] audit: type=1326 audit(1776601681.436:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22870 comm="syz.3.4650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1275.672227][   T30] audit: type=1326 audit(1776601681.456:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22870 comm="syz.3.4650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1276.016771][   T30] audit: type=1326 audit(1776601681.456:823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22870 comm="syz.3.4650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1276.226022][   T30] audit: type=1326 audit(1776601681.456:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22870 comm="syz.3.4650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1276.362880][   T30] audit: type=1326 audit(1776601681.456:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22870 comm="syz.3.4650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1276.403683][   T30] audit: type=1326 audit(1776601681.456:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22870 comm="syz.3.4650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1276.443133][   T30] audit: type=1326 audit(1776601681.456:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22870 comm="syz.3.4650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1276.497272][   T30] audit: type=1326 audit(1776601681.456:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22870 comm="syz.3.4650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1276.534293][T22883] kvm: kvm [22882]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0xffec00008924
[ 1276.564318][   T30] audit: type=1326 audit(1776601681.456:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22870 comm="syz.3.4650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1276.589088][T22883] kvm: kvm [22882]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0xff5600004f44
[ 1276.605198][T22883] kvm: kvm [22882]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0xffec00001199
[ 1276.628747][T22883] kvm: kvm [22882]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[ 1277.920398][T22897] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3070988179 (3070988179 ns) > initial count (1876204212 ns). Using initial count to start timer.
[ 1279.349429][T22915] binder: 22914:22915 ioctl c0306201 0 returned -14
[ 1280.691230][T22927] binder: 22926:22927 ioctl 4018620d 0 returned -22
[ 1283.987223][T22960] trusted_key: encrypted_key: insufficient parameters specified
[ 1284.671136][T22965] binder: 22964:22965 ioctl c0306201 0 returned -14
[ 1284.693223][T22965] binder: 22964:22965 ioctl 80045519 200000000200 returned -22
[ 1284.718881][T22965] binder: 22964:22965 ioctl c0c85666 200000000440 returned -22
[ 1285.793208][T22975] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4672'.
[ 1285.883348][T22977] binder: 22976:22977 ioctl 4018620d 0 returned -22
[ 1286.556481][T22981] kvm: kvm [22979]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x352e76650000
[ 1286.568274][T22981] kvm: kvm [22979]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x602876650000
[ 1286.588266][T22981] kvm: kvm [22979]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x7f4076650000
[ 1286.608767][T22981] kvm: kvm [22979]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x343576650000
[ 1286.619884][T22981] kvm: kvm [22979]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x184f76650000
[ 1287.568094][T22996] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4677'.
[ 1287.693701][   T30] kauditd_printk_skb: 15 callbacks suppressed
[ 1287.693728][   T30] audit: type=1326 audit(1776601693.696:845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22993 comm="syz.8.4678" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f500539c819 code=0x0
[ 1288.583524][T23007] bond0: (slave bond_slave_1): Releasing backup interface
[ 1290.437313][T23029] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1290.491470][T23029] syzkaller0: entered promiscuous mode
[ 1290.536666][T23029] syzkaller0: entered allmulticast mode
[ 1290.698305][T23034] tipc: Resetting bearer <eth:syzkaller0>
[ 1290.718532][T23029] tipc: Resetting bearer <eth:syzkaller0>
[ 1290.779264][T23029] tipc: Disabling bearer <eth:syzkaller0>
[ 1291.239273][T23038] trusted_key: encrypted_key: insufficient parameters specified
[ 1291.324040][ T5905] usb 9-1: new high-speed USB device number 47 using dummy_hcd
[ 1291.506453][ T5905] usb 9-1: config 220 has an invalid interface number: 76 but max is 2
[ 1291.524481][ T5905] usb 9-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[ 1291.556598][ T5905] usb 9-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1291.576919][ T5905] usb 9-1: config 220 has no interface number 2
[ 1291.600685][ T5905] usb 9-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1291.624025][ T5905] usb 9-1: config 220 interface 0 has no altsetting 0
[ 1291.634427][ T5905] usb 9-1: config 220 interface 76 has no altsetting 0
[ 1291.644584][ T5905] usb 9-1: config 220 interface 1 has no altsetting 0
[ 1291.708971][ T5905] usb 9-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1291.724996][ T5905] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1291.768858][ T5905] usb 9-1: Product: syz
[ 1291.789082][ T5905] usb 9-1: Manufacturer: syz
[ 1291.799189][ T5905] usb 9-1: SerialNumber: syz
[ 1292.330767][ T5905] uvcvideo 9-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[ 1292.344374][ T5905] uvcvideo 9-1:220.0: No valid video chain found.
[ 1292.351023][ T5905] usb 9-1: selecting invalid altsetting 0
[ 1292.368696][ T5905] usb 9-1: selecting invalid altsetting 0
[ 1292.377511][ T5905] usbtest 9-1:220.1: probe with driver usbtest failed with error -22
[ 1292.389608][ T5905] usb 9-1: USB disconnect, device number 47
[ 1293.151992][T23061] GUP no longer grows the stack in syz.8.4691 (23061): 200000004000-200000005000 (200000001000)
[ 1293.190491][T23061] CPU: 1 UID: 0 PID: 23061 Comm: syz.8.4691 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1293.190536][T23061] Tainted: [L]=SOFTLOCKUP
[ 1293.190544][T23061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1293.190557][T23061] Call Trace:
[ 1293.190564][T23061]  <TASK>
[ 1293.190570][T23061]  dump_stack_lvl+0xe8/0x150
[ 1293.190596][T23061]  __get_user_pages+0x2378/0x2720
[ 1293.190631][T23061]  ? __gup_longterm_locked+0xc4e/0x1630
[ 1293.190679][T23061]  ? __gup_longterm_locked+0xc4e/0x1630
[ 1293.190706][T23061]  ? down_read_killable+0x1bb/0x340
[ 1293.190728][T23061]  __gup_longterm_locked+0xdcf/0x1630
[ 1293.190750][T23061]  ? lock_acquire+0x106/0x350
[ 1293.190778][T23061]  gup_fast_fallback+0x1d84/0x20d0
[ 1293.190816][T23061]  ? __pfx_gup_fast_fallback+0x10/0x10
[ 1293.190833][T23061]  ? futex_unqueue+0x22/0x240
[ 1293.190851][T23061]  ? futex_unqueue+0x22/0x240
[ 1293.190868][T23061]  ? futex_unqueue+0x22/0x240
[ 1293.190887][T23061]  ? is_valid_gup_args+0x11f/0x200
[ 1293.190907][T23061]  ? get_user_pages_fast+0x4d/0xb0
[ 1293.190928][T23061]  __iov_iter_get_pages_alloc+0x370/0xa10
[ 1293.190953][T23061]  ? __pfx_pipe_clear_nowait+0x10/0x10
[ 1293.190971][T23061]  iov_iter_get_pages2+0x5e/0xa0
[ 1293.190991][T23061]  __se_sys_vmsplice+0x7c7/0x1620
[ 1293.191012][T23061]  ? ktime_get+0x45/0x220
[ 1293.191030][T23061]  ? __pfx___se_sys_vmsplice+0x10/0x10
[ 1293.191045][T23061]  ? ktime_get+0x45/0x220
[ 1293.191061][T23061]  ? ktime_get+0x45/0x220
[ 1293.191078][T23061]  ? ktime_get+0x1f5/0x220
[ 1293.191111][T23061]  ? trace_irq_disable+0x3b/0x140
[ 1293.191132][T23061]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1293.191151][T23061]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1293.191164][T23061]  do_syscall_64+0x15f/0xf80
[ 1293.191181][T23061]  ? clear_bhb_loop+0x40/0x90
[ 1293.191197][T23061]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1293.191210][T23061] RIP: 0033:0x7f500539c819
[ 1293.191223][T23061] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1293.191235][T23061] RSP: 002b:00007f5006330028 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[ 1293.191251][T23061] RAX: ffffffffffffffda RBX: 00007f5005615fa0 RCX: 00007f500539c819
[ 1293.191260][T23061] RDX: 0000000000000001 RSI: 0000200000000140 RDI: 0000000000000006
[ 1293.191271][T23061] RBP: 00007f5005432c91 R08: 0000000000000000 R09: 0000000000000000
[ 1293.191279][T23061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1293.191287][T23061] R13: 00007f5005616038 R14: 00007f5005615fa0 R15: 00007f500573fa48
[ 1293.191307][T23061]  </TASK>
[ 1293.544687][T23067] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1300.398291][ T1310] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.404950][ T1310] ieee802154 phy1 wpan1: encryption failed: -22
[ 1300.434288][  T989] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[ 1300.594487][  T989] usb 3-1: Using ep0 maxpacket: 16
[ 1300.615709][  T989] usb 3-1: config 166 has an invalid interface number: 177 but max is 1
[ 1300.636356][  T989] usb 3-1: config 166 has an invalid interface number: 34 but max is 1
[ 1300.662940][  T989] usb 3-1: config 166 has no interface number 0
[ 1300.683439][  T989] usb 3-1: config 166 has no interface number 1
[ 1300.697997][  T989] usb 3-1: config 166 interface 177 altsetting 4 has an invalid descriptor for endpoint zero, skipping
[ 1300.721047][  T989] usb 3-1: config 166 interface 177 altsetting 4 has an invalid descriptor for endpoint zero, skipping
[ 1300.748000][  T989] usb 3-1: config 166 interface 34 altsetting 1 has a duplicate endpoint with address 0x9, skipping
[ 1300.787884][  T989] usb 3-1: config 166 interface 34 altsetting 1 has an endpoint descriptor with address 0xA6, changing to 0x86
[ 1300.843451][  T989] usb 3-1: config 166 interface 34 altsetting 1 endpoint 0x86 has invalid maxpacket 23105, setting to 1024
[ 1300.901040][  T989] usb 3-1: config 166 interface 34 altsetting 1 bulk endpoint 0x86 has invalid maxpacket 1024
[ 1300.935857][  T989] usb 3-1: config 166 interface 34 altsetting 1 endpoint 0x85 has an invalid bInterval 0, changing to 7
[ 1300.978292][  T989] usb 3-1: config 166 interface 34 altsetting 1 endpoint 0x85 has invalid wMaxPacketSize 0
[ 1301.023732][  T989] usb 3-1: config 166 interface 34 altsetting 1 has 5 endpoint descriptors, different from the interface descriptor's value: 4
[ 1301.069023][  T989] usb 3-1: config 166 interface 177 has no altsetting 0
[ 1301.091465][  T989] usb 3-1: config 166 interface 34 has no altsetting 0
[ 1301.127114][  T989] usb 3-1: New USB device found, idVendor=0bda, idProduct=0138, bcdDevice=30.12
[ 1301.156543][  T989] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1301.179657][T23149] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4714'.
[ 1301.192331][  T989] usb 3-1: Product: syz
[ 1301.200459][  T989] usb 3-1: Manufacturer: syz
[ 1301.219556][  T989] usb 3-1: SerialNumber: syz
[ 1301.476597][  T989] ums-realtek 3-1:166.177: USB Mass Storage device detected
[ 1301.723757][  T989] ums-realtek 3-1:166.34: USB Mass Storage device detected
[ 1301.850868][  T989] ums-realtek 3-1:166.34: probe with driver ums-realtek failed with error -5
[ 1301.901767][  T989] uvcvideo 3-1:166.34: Found UVC 0.00 device syz (0bda:0138)
[ 1301.928935][  T989] uvcvideo 3-1:166.34: No valid video chain found.
[ 1301.966689][  T989] usb 3-1: USB disconnect, device number 38
[ 1302.842854][T23169] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4719'.
[ 1305.018953][T23192] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1307.960306][T23240] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4731'.
[ 1308.003603][T23240] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4731'.
[ 1308.043654][T23243] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3089888063 (3089888063 ns) > initial count (2126324423 ns). Using initial count to start timer.
[ 1308.454274][T13986] usb 5-1: new high-speed USB device number 82 using dummy_hcd
[ 1308.646010][T13986] usb 5-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[ 1308.703551][T13986] usb 5-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[ 1308.753281][T13986] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1308.803125][T13986] usb 5-1: Product: syz
[ 1308.833272][T13986] usb 5-1: Manufacturer: syz
[ 1308.846498][T13986] usb 5-1: SerialNumber: syz
[ 1308.890369][T13986] usb 5-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state
[ 1309.452681][T13986] usb 5-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1309.511832][T13986] dvbdev: DVB: registering new adapter (774 Friio White ISDB-T USB2.0)
[ 1309.550014][T13986] usb 5-1: media controller created
[ 1309.642345][T13986] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1310.168627][T13986] usb 5-1: USB disconnect, device number 82
[ 1311.697007][T23285] bond0: (slave bond_slave_1): Releasing backup interface
[ 1311.732843][T23285] bond_slave_1: left promiscuous mode
[ 1312.271729][T23286] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1312.279329][T23286] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1312.380896][T23286] bond_slave_0: left promiscuous mode
[ 1312.459548][T23286] batman_adv: batadv0: Interface deactivated: dummy0
[ 1313.212708][T23286] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1313.319799][T23286] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1313.381606][T23302] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4743'.
[ 1313.618679][T23303] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1314.470752][T15860] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1314.548143][T15860] netdevsim netdevsim2 netdevsim0: unset [1, 1] type 2 family 0 port 20004 - 0
[ 1314.736042][T15860] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1314.834814][T15860] netdevsim netdevsim2 netdevsim1: unset [1, 1] type 2 family 0 port 20004 - 0
[ 1314.867017][T15860] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1314.912565][T15860] netdevsim netdevsim2 netdevsim2: unset [1, 1] type 2 family 0 port 20004 - 0
[ 1314.964185][T15860] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1315.008426][T15860] netdevsim netdevsim2 netdevsim3: unset [1, 1] type 2 family 0 port 20004 - 0
[ 1318.012865][   T30] audit: type=1326 audit(1776601724.016:846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23357 comm="syz.2.4754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1318.094138][   T30] audit: type=1326 audit(1776601724.036:847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23357 comm="syz.2.4754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1318.993298][T23379] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4757'.
[ 1324.255093][T23436] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4771'.
[ 1324.658251][T23445] netlink: 'syz.7.4773': attribute type 4 has an invalid length.
[ 1324.787012][T23446] netlink: 'syz.7.4773': attribute type 4 has an invalid length.
[ 1325.250431][   T30] audit: type=1326 audit(1776601731.256:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23450 comm="syz.3.4775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1325.387621][   T30] audit: type=1326 audit(1776601731.276:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23450 comm="syz.3.4775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1325.506496][   T30] audit: type=1326 audit(1776601731.306:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23450 comm="syz.3.4775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1325.544315][T23453] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4775'.
[ 1325.573991][T23453] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4775'.
[ 1325.614352][   T30] audit: type=1326 audit(1776601731.306:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23450 comm="syz.3.4775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1325.734692][   T30] audit: type=1326 audit(1776601731.306:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23450 comm="syz.3.4775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1325.843153][   T30] audit: type=1326 audit(1776601731.306:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23450 comm="syz.3.4775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1325.925494][   T30] audit: type=1326 audit(1776601731.306:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23450 comm="syz.3.4775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1326.043102][   T30] audit: type=1326 audit(1776601731.306:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23450 comm="syz.3.4775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1326.236592][   T30] audit: type=1326 audit(1776601731.306:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23450 comm="syz.3.4775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1326.406704][   T30] audit: type=1326 audit(1776601731.306:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23450 comm="syz.3.4775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cf799c819 code=0x7ffc0000
[ 1326.476334][T23462] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1326.552558][T23465] syzkaller0: entered promiscuous mode
[ 1326.574301][T23465] syzkaller0: entered allmulticast mode
[ 1326.752765][T23465] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4777'.
[ 1326.829810][T23468] tipc: Resetting bearer <eth:syzkaller0>
[ 1327.022562][T23461] tipc: Resetting bearer <eth:syzkaller0>
[ 1327.152034][T23461] tipc: Disabling bearer <eth:syzkaller0>
[ 1330.213586][T23510] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1331.517399][T23525] netlink: 'syz.3.4790': attribute type 4 has an invalid length.
[ 1331.591712][T23526] netlink: 'syz.3.4790': attribute type 4 has an invalid length.
[ 1331.990175][T23529] loop7: detected capacity change from 0 to 7
[ 1332.103995][    C0] blk_print_req_error: 10 callbacks suppressed
[ 1332.104017][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1332.119943][    C0] buffer_io_error: 11 callbacks suppressed
[ 1332.119958][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1332.165742][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 1332.179631][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1332.189254][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1332.243911][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1332.253207][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1332.274522][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1332.284106][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1332.306849][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1332.316494][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1332.336757][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1332.346213][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1332.355735][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1332.365231][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1332.374010][T23529] ldm_validate_partition_table(): Disk read failed.
[ 1332.381630][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1332.391206][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1332.406993][T23534] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1332.414350][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1332.423643][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1332.434252][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1332.443529][T23529] Dev loop7: unable to read RDB block 0
[ 1332.473119][T23534] 8021q: adding VLAN 0 to HW filter on device team0
[ 1332.482741][T23529]  loop7: unable to read partition table
[ 1332.491458][T23529] loop7: partition table beyond EOD, truncated
[ 1332.502096][T23534] batman_adv: batadv0: Interface activated: dummy0
[ 1332.510905][T23529] loop_reread_partitions: partition scan of loop7 (úùƒå¡™‰ü�¾CêjÌ–ã¢P=ý?ã}X‹ºÐ	œëÜ%õ«`ÉæÖ€ù…ˆ{í©Ö�˜Èµ4FLQkÝŠ) failed (rc=-5)
[ 1332.525515][T23534] batadv0: mtu less than device minimum
[ 1332.536509][T23534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1332.548355][T23534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1332.559579][T23534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1332.571169][T23534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1332.582514][T23534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1332.593903][T23534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1332.605261][T23534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1332.616666][T23534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1332.628058][T23534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1333.261127][T23543] bridge0: port 3(syz_tun) entered blocking state
[ 1333.307272][T23543] bridge0: port 3(syz_tun) entered disabled state
[ 1333.348419][T23543] syz_tun: entered allmulticast mode
[ 1333.395285][T23543] syz_tun: entered promiscuous mode
[ 1333.411463][T23543] bridge0: port 3(syz_tun) entered blocking state
[ 1333.418351][T23543] bridge0: port 3(syz_tun) entered forwarding state
[ 1334.367607][T23554] kvm: kvm [23553]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x592ec0000000
[ 1334.393554][T23554] kvm: kvm [23553]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x8428c0000000
[ 1334.427199][T23557] fuse: Unknown parameter 'òÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿ
[ 1334.437397][T23554] kvm: kvm [23553]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0xa340c0000000
[ 1334.831449][T23554] kvm: kvm [23553]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x5835c0000000
[ 1334.842057][T23554] kvm: kvm [23553]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x3c4fc0000000
[ 1337.504599][T23591] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4813'.
[ 1337.544023][ T5939] usb 9-1: new full-speed USB device number 48 using dummy_hcd
[ 1337.687562][T23590] bridge0: port 3(syz_tun) entered disabled state
[ 1337.764674][ T5939] usb 9-1: config 36 has an invalid descriptor of length 0, skipping remainder of the config
[ 1337.805431][ T5939] usb 9-1: config 36 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1337.838700][T23590] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1337.850032][T23590] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1337.894937][ T5939] usb 9-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=3d.29
[ 1337.910420][ T5939] usb 9-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[ 1337.921557][ T5939] usb 9-1: Manufacturer: syz
[ 1337.928823][ T5939] usb 9-1: SerialNumber: syz
[ 1338.722380][T23590] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1338.816684][T23590] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1339.167702][T15859] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1339.186460][ T5939] usbhid 9-1:36.0: couldn't find an input interrupt endpoint
[ 1339.218212][T15859] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1339.255356][ T5939] usb 9-1: USB disconnect, device number 48
[ 1339.351891][T15859] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1339.448284][T15859] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1339.468705][T23592] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1340.020656][T23624] netlink: 'syz.8.4806': attribute type 4 has an invalid length.
[ 1340.088535][T23624] netlink: 'syz.8.4806': attribute type 4 has an invalid length.
[ 1340.111670][ T5939] usb 4-1: new full-speed USB device number 56 using dummy_hcd
[ 1340.390062][ T5939] usb 4-1: config 0 has an invalid interface number: 41 but max is 0
[ 1340.419654][ T5939] usb 4-1: config 0 has no interface number 0
[ 1340.455796][ T5939] usb 4-1: config 0 interface 41 has no altsetting 0
[ 1340.541018][ T5939] usb 4-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[ 1340.585681][ T5939] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1340.622304][ T5939] usb 4-1: Product: syz
[ 1340.643002][ T5939] usb 4-1: Manufacturer: syz
[ 1340.673527][ T5939] usb 4-1: SerialNumber: syz
[ 1340.744897][ T5939] usb 4-1: config 0 descriptor??
[ 1341.660564][ T5939] CoreChips 4-1:0.41 (unnamed net_device) (uninitialized): sr_get_phy_addr : Error reading PHYID register:ffffffe0
[ 1342.296954][T23612] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[ 1342.303533][T23612] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 1342.353325][T23612] vhci_hcd vhci_hcd.0: Device attached
[ 1342.408976][T23641] vhci_hcd: connection closed
[ 1342.411058][  T145] vhci_hcd vhci_hcd.3: stop threads
[ 1342.475874][  T145] vhci_hcd vhci_hcd.3: release socket
[ 1342.503220][  T145] vhci_hcd vhci_hcd.3: disconnect device
[ 1342.564240][T23604] vhci_hcd vhci_hcd.3: vhci_device speed not set
[ 1342.597793][T23652] input: syz1 as /devices/virtual/input/input73
[ 1342.704403][ T5939] CoreChips 4-1:0.41 (unnamed net_device) (uninitialized): Failed to send software reset:ffffffb9
[ 1342.776562][ T5939] CoreChips 4-1:0.41 (unnamed net_device) (uninitialized): Failed to power up PHY: -71
[ 1342.914319][ T5939] CoreChips 4-1:0.41: probe with driver CoreChips failed with error -71
[ 1343.022635][T23656] bond0: (slave bond_slave_1): Releasing backup interface
[ 1343.062276][ T5939] usb 4-1: USB disconnect, device number 56
[ 1343.783965][ T5939] usb 4-1: new high-speed USB device number 57 using dummy_hcd
[ 1343.955844][ T5939] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1344.021457][ T5939] usb 4-1: config 0 has no interfaces?
[ 1344.099181][ T5939] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[ 1344.141456][ T5939] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1344.197224][ T5939] usb 4-1: config 0 descriptor??
[ 1344.424196][T23665] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1344.459582][T23665] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1348.183074][ T5939] usb 4-1: USB disconnect, device number 57
[ 1348.470398][T23702] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1349.084257][T23718] netlink: 'syz.2.4823': attribute type 4 has an invalid length.
[ 1349.133311][T23718] netlink: 'syz.2.4823': attribute type 4 has an invalid length.
[ 1350.661432][T23734] tipc: Failed to remove unknown binding: 66,1,1/1592149375:3786499575/3786499577
[ 1351.776774][T23749] vlan2: entered promiscuous mode
[ 1351.816306][T23749] batadv0: entered promiscuous mode
[ 1353.095044][T23761] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1353.976517][T23774] trusted_key: encrypted_key: insufficient parameters specified
[ 1355.503206][T23782] binder: 23780:23782 ioctl 4018620d 0 returned -22
[ 1355.852677][T23796] bridge0: port 3(syz_tun) entered blocking state
[ 1355.860718][T23796] bridge0: port 3(syz_tun) entered disabled state
[ 1355.924577][T23796] syz_tun: entered promiscuous mode
[ 1356.070970][T23796] bridge0: port 3(syz_tun) entered blocking state
[ 1356.077723][T23796] bridge0: port 3(syz_tun) entered forwarding state
[ 1356.784060][ T5939] usb 9-1: new high-speed USB device number 49 using dummy_hcd
[ 1356.926325][T23803] bond0: (slave veth0_to_hsr): Enslaving as an active interface with an up link
[ 1356.975572][ T5939] usb 9-1: Using ep0 maxpacket: 32
[ 1356.993361][ T5939] usb 9-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[ 1357.028291][ T5939] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1357.106238][ T5939] usb 9-1: config 0 descriptor??
[ 1357.161827][ T5939] gspca_main: sunplus-2.14.0 probing 041e:400b
[ 1357.758901][T23799] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4843'.
[ 1358.357293][T23799] : entered promiscuous mode
[ 1358.879171][ T5939] gspca_sunplus: reg_w_riv err -71
[ 1358.898664][ T5939] sunplus 9-1:0.0: probe with driver sunplus failed with error -71
[ 1358.944352][ T5939] usb 9-1: USB disconnect, device number 49
[ 1361.078624][T23837] net_ratelimit: 11 callbacks suppressed
[ 1361.078637][T23837] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1361.837613][ T1310] ieee802154 phy0 wpan0: encryption failed: -22
[ 1361.844297][ T1310] ieee802154 phy1 wpan1: encryption failed: -22
[ 1363.515449][   T30] kauditd_printk_skb: 39 callbacks suppressed
[ 1363.515469][   T30] audit: type=1326 audit(1776601769.526:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23860 comm="syz.2.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1363.604385][   T30] audit: type=1326 audit(1776601769.526:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23860 comm="syz.2.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1363.659482][   T30] audit: type=1326 audit(1776601769.576:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23860 comm="syz.2.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1363.761748][   T30] audit: type=1326 audit(1776601769.576:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23860 comm="syz.2.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1363.841945][   T30] audit: type=1326 audit(1776601769.576:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23860 comm="syz.2.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1363.917794][   T30] audit: type=1326 audit(1776601769.576:902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23860 comm="syz.2.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1363.997482][   T30] audit: type=1326 audit(1776601769.576:903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23860 comm="syz.2.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1364.060879][   T30] audit: type=1326 audit(1776601769.576:904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23860 comm="syz.2.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1364.117886][   T30] audit: type=1326 audit(1776601769.576:905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23860 comm="syz.2.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1364.211461][   T30] audit: type=1326 audit(1776601769.576:906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23860 comm="syz.2.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1364.762841][T23868] netlink: set zone limit has 4 unknown bytes
[ 1365.115576][T23873] RDS: rds_bind could not find a transport for ::e0:0:0:0:1, load rds_tcp or rds_rdma?
[ 1365.878233][T23878] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1368.773936][ T5912] usb 4-1: new full-speed USB device number 58 using dummy_hcd
[ 1368.925655][ T5912] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1368.960877][ T5912] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1369.004071][ T5912] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1369.030327][ T5912] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1369.062255][ T5912] usb 4-1: Product: syz
[ 1369.080517][ T5912] usb 4-1: Manufacturer: syz
[ 1369.098980][ T5912] usb 4-1: SerialNumber: syz
[ 1369.384877][T23604] usb 4-1: USB disconnect, device number 58
[ 1370.188896][T23930] netlink: 'syz.2.4878': attribute type 10 has an invalid length.
[ 1370.370664][ T5912] usb 9-1: new high-speed USB device number 50 using dummy_hcd
[ 1370.566970][ T5912] usb 9-1: Using ep0 maxpacket: 16
[ 1370.613335][ T5912] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1370.643644][ T5912] usb 9-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[ 1370.700888][ T5912] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1370.775265][T23604] usb 3-1: new high-speed USB device number 39 using dummy_hcd
[ 1370.810751][ T5912] usb 9-1: config 0 descriptor??
[ 1371.009716][T23604] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1371.053124][T23604] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1371.094745][T23927] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1371.134023][T23604] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1371.147514][T23927] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1371.200165][T23927] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1371.239449][T23604] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1371.269237][T23927] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1371.370260][T23921] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[ 1371.483821][T23604] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[ 1371.710800][T23921] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1371.944407][T23921] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1373.390151][ T5912] usbhid 9-1:0.0: can't add hid device: -71
[ 1373.448914][ T5912] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[ 1373.514517][ T5912] usb 9-1: USB disconnect, device number 50
[ 1374.217239][ T5912] usb 3-1: USB disconnect, device number 39
[ 1374.700254][T23955] netlink: set zone limit has 4 unknown bytes
[ 1376.782252][T23970] binder: 23967:23970 ioctl c0306201 2000000003c0 returned -14
[ 1376.786700][T23968] binder: 23966:23968 ioctl c0306201 0 returned -14
[ 1377.764945][T23994] netlink: 'syz.2.4881': attribute type 1 has an invalid length.
[ 1378.596429][T24000] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1380.016311][   T30] kauditd_printk_skb: 27 callbacks suppressed
[ 1380.016330][   T30] audit: type=1326 audit(1776601786.026:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24007 comm="syz.4.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc38119c819 code=0x7ffc0000
[ 1380.108300][   T30] audit: type=1326 audit(1776601786.026:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24007 comm="syz.4.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc38119c819 code=0x7ffc0000
[ 1380.144214][   T30] audit: type=1326 audit(1776601786.056:936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24007 comm="syz.4.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fc38119c819 code=0x7ffc0000
[ 1380.190628][   T30] audit: type=1326 audit(1776601786.196:937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24007 comm="syz.4.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc38119c819 code=0x7ffc0000
[ 1380.216928][   T30] audit: type=1326 audit(1776601786.196:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24007 comm="syz.4.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc38119c819 code=0x7ffc0000
[ 1380.743904][T23603] usb 4-1: new high-speed USB device number 59 using dummy_hcd
[ 1380.913089][T23603] usb 4-1: Using ep0 maxpacket: 16
[ 1380.926608][T23603] usb 4-1: config 0 has no interfaces?
[ 1380.943199][T23603] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1380.973930][T23603] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1381.007608][T23603] usb 4-1: Manufacturer: syz
[ 1381.040376][T23603] usb 4-1: config 0 descriptor??
[ 1381.788750][T24016] Set syz1 is full, maxelem 6117 reached
[ 1383.418769][T23311] usb 4-1: USB disconnect, device number 59
[ 1385.060377][T24051] netlink: set zone limit has 4 unknown bytes
[ 1386.364097][T23603] usb 4-1: new full-speed USB device number 60 using dummy_hcd
[ 1386.525579][T23603] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1386.538867][T23603] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E
[ 1386.565818][T23603] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 10
[ 1386.588764][T23603] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[ 1386.608662][T23603] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[ 1386.639057][T23603] usb 4-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[ 1386.648704][T23603] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[ 1386.663907][T23603] usb 4-1: Product: syz
[ 1386.668205][T23603] usb 4-1: Manufacturer: syz
[ 1386.673027][T23603] usb 4-1: SerialNumber: syz
[ 1386.681743][T23603] usb 4-1: config 0 descriptor??
[ 1386.942456][T23603] radio-si470x 4-1:0.0: DeviceID=0x0000 ChipID=0x0000
[ 1386.949544][T23603] radio-si470x 4-1:0.0: This driver is known to work with firmware version 12, but the device has firmware version 0.
[ 1387.147187][T23603] radio-si470x 4-1:0.0: si470x_get_report: usb_control_msg returned -71
[ 1387.157817][T23603] radio-si470x 4-1:0.0: si470x_get_scratch: si470x_get_report returned -71
[ 1387.167031][T23603] radio-si470x 4-1:0.0: probe with driver radio-si470x failed with error -5
[ 1387.183203][T23603] usb 4-1: USB disconnect, device number 60
[ 1387.504956][T24076] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4909'.
[ 1388.410642][T24084] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1388.603117][T24086] lo: Caught tx_queue_len zero misconfig
[ 1393.706178][T24139] IPVS: set_ctl: invalid protocol: 1 0.0.0.0:0
[ 1393.793939][T23017] usb 3-1: new high-speed USB device number 40 using dummy_hcd
[ 1393.818991][T24132] netlink: set zone limit has 4 unknown bytes
[ 1393.973926][T23017] usb 3-1: Using ep0 maxpacket: 16
[ 1394.008176][T23017] usb 3-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15
[ 1394.052872][T23017] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1394.092597][T23017] usb 3-1: Product: syz
[ 1394.113132][T23017] usb 3-1: Manufacturer: syz
[ 1394.143574][T23017] usb 3-1: SerialNumber: syz
[ 1394.182365][T23017] usb 3-1: config 0 descriptor??
[ 1394.222115][T23017] ssu100 3-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[ 1395.195892][T24148] xt_connbytes: Forcing CT accounting to be enabled
[ 1395.211068][T24148] set match dimension is over the limit!
[ 1395.446830][T23017] usb 3-1: Quatech SSU-100 USB to Serial Driver converter now attached to ttyUSB0
[ 1395.660082][T24134] binder: 24133:24134 ioctl c0306201 200000000040 returned -22
[ 1395.686771][T24134] binder: 24133:24134 ioctl c0306201 200000000640 returned -22
[ 1395.716242][T24134] binder: 24133:24134 ioctl 1260 2000000001c0 returned -22
[ 1395.741485][T23604] usb 3-1: USB disconnect, device number 40
[ 1395.779693][T23604] ssu100 ttyUSB0: Quatech SSU-100 USB to Serial Driver converter now disconnected from ttyUSB0
[ 1395.822606][T23604] ssu100 3-1:0.0: device disconnected
[ 1395.994606][T24155] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1396.461955][T24160] binder: 24158:24160 ioctl 4018620d 0 returned -22
[ 1397.095667][T24166] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1397.871021][T24174] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[ 1398.159917][T24181] input: syz0 as /devices/virtual/input/input74
[ 1401.576070][T24207] ip6t_srh: unknown srh invflags 4000
[ 1403.374744][T24231] netlink: 'syz.8.4932': attribute type 7 has an invalid length.
[ 1403.585561][T23604] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[ 1403.761763][T23604] usb 3-1: config 0 has no interfaces?
[ 1403.782469][T23604] usb 3-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[ 1403.815915][T23604] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1403.901267][T23604] usb 3-1: config 0 descriptor??
[ 1403.931596][T24235] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1404.227677][T23604] usb 3-1: USB disconnect, device number 41
[ 1405.783174][T24248] loop5: detected capacity change from 0 to 7
[ 1405.805328][T24248] Dev loop5: unable to read RDB block 7
[ 1405.822798][T24248]  loop5: AHDI p2
[ 1405.834290][T24248] loop5: partition table partially beyond EOD, truncated
[ 1406.679588][   T30] audit: type=1400 audit(1776601812.686:939): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name="\" pid=24256 comm="syz.2.4941"
[ 1406.807208][T24264] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4941'.
[ 1406.823842][T24264] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4941'.
[ 1406.854585][T23604] usb 5-1: new high-speed USB device number 83 using dummy_hcd
[ 1407.038958][T23604] usb 5-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[ 1407.063316][T23604] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1407.104051][T23604] usb 5-1: config 0 descriptor??
[ 1407.122792][T23604] gspca_main: cpia1-2.14.0 probing 0813:0001
[ 1407.550070][T23604] cpia1 5-1:0.0: unexpected state after lo power cmd: 00
[ 1407.595715][T24269] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3070988179 (3070988179 ns) > initial count (1876204212 ns). Using initial count to start timer.
[ 1408.154721][T24259] vivid-004: disconnect
[ 1408.169450][T24259] vivid-004: reconnect
[ 1408.222873][T23604] gspca_cpia1: usb_control_msg 05, error -71
[ 1408.242346][T23604] cpia1 5-1:0.0: unexpected systemstate: 00
[ 1408.288288][T23604] usb 5-1: USB disconnect, device number 83
[ 1408.875949][T24283] IPVS: set_ctl: invalid protocol: 1 0.0.0.0:0
[ 1408.906540][T24284] ip6t_srh: unknown srh invflags 4000
[ 1412.524309][T23017] usb 9-1: new high-speed USB device number 51 using dummy_hcd
[ 1412.703937][T23017] usb 9-1: Using ep0 maxpacket: 16
[ 1412.721996][T23017] usb 9-1: config 0 interface 0 altsetting 7 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1412.759837][T23017] usb 9-1: config 0 interface 0 altsetting 7 has 1 endpoint descriptor, different from the interface descriptor's value: 25
[ 1412.806372][T23017] usb 9-1: config 0 interface 0 has no altsetting 0
[ 1412.832545][T23017] usb 9-1: New USB device found, idVendor=0c45, idProduct=5112, bcdDevice= 0.00
[ 1412.868647][T23017] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1412.924193][T23017] usb 9-1: config 0 descriptor??
[ 1413.502398][T23017] usbhid 9-1:0.0: can't add hid device: -71
[ 1413.530515][T23017] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[ 1413.591034][T23017] usb 9-1: USB disconnect, device number 51
[ 1413.692548][T24322] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1413.710889][T24322] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1413.732310][T24322] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1413.742602][T24322] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1413.759932][T24322] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1413.795214][ T5843] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1413.812092][ T5843] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1413.822578][ T5843] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1413.837229][ T5843] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1413.846969][ T5843] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1414.898792][T24324] chnl_net:caif_netlink_parms(): no params data found
[ 1415.167878][T24324] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1415.175771][T24324] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1415.184308][T24324] bridge_slave_0: entered allmulticast mode
[ 1415.205433][T24324] bridge_slave_0: entered promiscuous mode
[ 1415.238795][T24324] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1415.261582][T24324] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1415.288573][T24324] bridge_slave_1: entered allmulticast mode
[ 1415.321209][T24324] bridge_slave_1: entered promiscuous mode
[ 1415.433447][T24324] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1415.466631][T24324] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1415.546517][T24324] team0: Port device team_slave_0 added
[ 1415.560079][T24324] team0: Port device team_slave_1 added
[ 1415.626127][T24324] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1415.634310][T24324] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1415.682999][T24324] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1415.704496][T24324] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1415.721610][T24324] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1415.751716][T24324] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1415.917657][ T5843] Bluetooth: hci2: command tx timeout
[ 1416.168069][T24324] hsr_slave_0: entered promiscuous mode
[ 1416.185216][T24324] hsr_slave_1: entered promiscuous mode
[ 1416.204927][T24324] debugfs: 'hsr0' already exists in 'hsr'
[ 1416.238558][T24324] Cannot create hsr debugfs directory
[ 1416.352656][T24348] netlink: 'syz.8.4969': attribute type 12 has an invalid length.
[ 1416.395429][ T5939] usb 5-1: new high-speed USB device number 84 using dummy_hcd
[ 1416.423498][    C0] raw-gadget.0 gadget.4: ignoring, device is not running
[ 1416.485626][T24352] IPVS: set_ctl: invalid protocol: 1 0.0.0.0:0
[ 1416.563937][ T5939] usb 5-1: device descriptor read/64, error -32
[ 1416.844103][ T5939] usb 5-1: new high-speed USB device number 85 using dummy_hcd
[ 1417.620861][ T5939] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1417.994070][ T5843] Bluetooth: hci2: command tx timeout
[ 1418.593932][ T5939] usb 5-1: New USB device found, idVendor=0644, idProduct=8021, bcdDevice= 0.40
[ 1418.656732][ T5939] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1418.673962][ T5939] usb 5-1: Product: syz
[ 1418.689379][ T5939] usb 5-1: Manufacturer: syz
[ 1418.706488][ T5939] usb 5-1: SerialNumber: syz
[ 1419.538842][T24324] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1419.561750][T24324] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1419.583369][T24324] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1419.645076][T24324] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1419.694478][T24324] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1419.752976][T24324] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1419.776729][T24324] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1419.789843][ T5939] snd-usb-us122l 5-1:1.1: usb_set_interface error
[ 1419.815022][ T5939] snd-usb-us122l 5-1:1.1: probe with driver snd-usb-us122l failed with error -22
[ 1419.815090][T24324] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1419.851007][T24395] loop5: detected capacity change from 0 to 7
[ 1419.861884][T24396] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4963'.
[ 1419.943365][ T5939] usb 5-1: USB disconnect, device number 85
[ 1419.990319][T24395]  loop5: p1 < > p4
[ 1420.007060][T24395] loop5: partition table partially beyond EOD, truncated
[ 1420.062263][T19507] udevd[19507]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1420.094366][   T30] audit: type=1326 audit(1776601826.026:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.2.4962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1420.118158][ T5843] Bluetooth: hci2: command tx timeout
[ 1420.188687][   T30] audit: type=1326 audit(1776601826.026:941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.2.4962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1420.249124][   T30] audit: type=1326 audit(1776601826.086:942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.2.4962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1420.300464][   T30] audit: type=1326 audit(1776601826.086:943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.2.4962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1420.365263][   T30] audit: type=1326 audit(1776601826.086:944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.2.4962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1420.428958][   T30] audit: type=1326 audit(1776601826.086:945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.2.4962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1420.482073][   T30] audit: type=1326 audit(1776601826.086:946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.2.4962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1420.531094][   T30] audit: type=1326 audit(1776601826.086:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.2.4962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1420.618770][   T30] audit: type=1326 audit(1776601826.086:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.2.4962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1420.771295][   T30] audit: type=1326 audit(1776601826.096:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.2.4962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9b379c819 code=0x7ffc0000
[ 1421.574218][T19487] udevd[19487]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[ 1421.576307][T19507] udevd[19507]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[ 1421.642788][T24324] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1421.904631][T24324] 8021q: adding VLAN 0 to HW filter on device team0
[ 1421.986267][  T145] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1421.993712][  T145] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1422.047388][  T145] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1422.054547][  T145] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1422.153898][ T5843] Bluetooth: hci2: command tx timeout
[ 1422.226982][T24324] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1422.331656][T24324] veth0_vlan: entered promiscuous mode
[ 1422.362190][T24324] veth1_vlan: entered promiscuous mode
[ 1422.455336][T24324] veth0_macvtap: entered promiscuous mode
[ 1422.477014][T24324] veth1_macvtap: entered promiscuous mode
[ 1422.542676][T24324] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1422.593209][T24324] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1422.685610][T15861] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1422.727956][T15861] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1422.763438][T15861] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1422.808422][T15861] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1423.100466][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1423.113261][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1423.229345][T22820] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1423.243841][T22820] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1423.284616][ T1310] ieee802154 phy0 wpan0: encryption failed: -22
[ 1423.291010][ T1310] ieee802154 phy1 wpan1: encryption failed: -22
[ 1423.644097][T23311] usb 4-1: new high-speed USB device number 61 using dummy_hcd
[ 1423.676389][T23316] usb 3-1: new low-speed USB device number 42 using dummy_hcd
[ 1423.884546][T23311] usb 4-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[ 1423.904469][T23316] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1423.936507][T23311] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1423.967630][T23316] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1424.026047][T23311] usb 4-1: config 0 descriptor??
[ 1424.042670][T23316] usb 3-1: New USB device found, idVendor=0c70, idProduct=f0b6, bcdDevice= 0.00
[ 1424.120517][T23316] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1424.210147][T23316] usb 3-1: config 0 descriptor??
[ 1424.471467][T24443] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1424.508361][T24443] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1424.905627][T24443] hma(sha224): entered promiscuous mode
[ 1424.931602][T23316] hid (null): usage index exceeded
[ 1425.011289][T23316] aquacomputer_d5next 0003:0C70:F0B6.0029: ignoring exceeding usage max
[ 1425.068926][T23316] aquacomputer_d5next 0003:0C70:F0B6.0029: ignoring exceeding usage max
[ 1425.136168][T23316] aquacomputer_d5next 0003:0C70:F0B6.0029: usage index exceeded
[ 1425.175067][T23316] aquacomputer_d5next 0003:0C70:F0B6.0029: item 0 1 2 2 parsing failed
[ 1425.223438][T23316] aquacomputer_d5next 0003:0C70:F0B6.0029: probe with driver aquacomputer_d5next failed with error -22
[ 1425.301369][T23316] usb 3-1: USB disconnect, device number 42
[ 1426.296298][T23311] usb 4-1: Cannot set autoneg
[ 1426.308041][T23311] MOSCHIP usb-ethernet driver 4-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[ 1426.335773][T23311] usb 4-1: USB disconnect, device number 61
[ 1426.741169][T24493] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4981'.
[ 1428.827510][T24525] binder_alloc: 24524: pid 24524 spamming oneway? 1 buffers allocated for a total size of 4096
[ 1428.928020][T24529] binder_alloc: 24524: pid 24524 spamming oneway? 2 buffers allocated for a total size of 5120
[ 1429.001148][T24533] netlink: 'syz.4.4972': attribute type 10 has an invalid length.
[ 1429.084699][T24529] binder: 24524:24529 ioctl c0186e86 200000000140 returned -22
[ 1430.964154][T23605] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[ 1431.157923][T23605] usb 10-1: Using ep0 maxpacket: 32
[ 1431.189291][T23605] usb 10-1: config 0 has an invalid interface number: 184 but max is 0
[ 1431.219028][T23605] usb 10-1: config 0 has no interface number 0
[ 1431.241864][T23605] usb 10-1: config 0 interface 184 has no altsetting 0
[ 1431.272354][T23605] usb 10-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1431.301383][T23605] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1431.335148][T23605] usb 10-1: Product: syz
[ 1431.352979][T23605] usb 10-1: Manufacturer: syz
[ 1431.367581][T23605] usb 10-1: SerialNumber: syz
[ 1431.409628][T23605] usb 10-1: config 0 descriptor??
[ 1432.262167][T24560] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1432.328485][T24560] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1432.396658][T23605] smsc75xx 10-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[ 1432.457645][T23605] smsc75xx 10-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1433.182073][T23605] smsc75xx 10-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000010: -32
[ 1433.221328][T23605] smsc75xx 10-1:0.184 (unnamed net_device) (uninitialized): Failed to read HW_CFG: -32
[ 1433.247193][T23605] smsc75xx 10-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -32
[ 1433.269297][T23605] smsc75xx 10-1:0.184: probe with driver smsc75xx failed with error -32
[ 1433.309193][T23605] usb 10-1: USB disconnect, device number 8
[ 1433.591171][T24595] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4985'.
[ 1433.680449][T24595] random: crng reseeded on system resumption
[ 1434.444443][T23605] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[ 1434.695860][T23605] usb 10-1: Using ep0 maxpacket: 16
[ 1434.839002][T23605] usb 10-1: config 128 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1435.011801][T23605] usb 10-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[ 1435.150315][T23605] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1436.364442][T23605] mcp2221 0003:04D8:00DD.002A: unknown main item tag 0x0
[ 1436.439474][T23605] mcp2221 0003:04D8:00DD.002A: unknown main item tag 0x0
[ 1436.631304][T23605] mcp2221 0003:04D8:00DD.002A: unknown main item tag 0x0
[ 1436.787354][T23605] mcp2221 0003:04D8:00DD.002A: unknown main item tag 0x0
[ 1436.840834][T23605] mcp2221 0003:04D8:00DD.002A: unknown main item tag 0x0
[ 1437.003215][T23605] mcp2221 0003:04D8:00DD.002A: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.9-1/input0
[ 1437.778854][T23605] usb 10-1: USB disconnect, device number 9
[ 1440.022666][T24685] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1441.045238][T24721] netlink: 16 bytes leftover after parsing attributes in process `syz.8.5002'.
[ 1442.536821][T24737] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[ 1442.536821][T24737] The task syz.2.5004 (24737) triggered the difference, watch for misbehavior.
[ 1442.629842][T24738] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[ 1445.451171][T24777] loop5: detected capacity change from 0 to 7
[ 1445.470226][T24778] netlink: 40 bytes leftover after parsing attributes in process `syz.8.5015'.
[ 1445.493393][T24777] Dev loop5: unable to read RDB block 7
[ 1445.518474][T24777]  loop5: unable to read partition table
[ 1445.540758][T24777] loop5: partition table beyond EOD, truncated
[ 1445.561941][T24777] loop_reread_partitions: partition scan of loop5 (þ被xü—ŸÑà– ) failed (rc=-5)
[ 1445.795242][ T5939] usb 3-1: new high-speed USB device number 43 using dummy_hcd
[ 1445.910929][T24179] syz_tun (unregistering): left allmulticast mode
[ 1445.953949][ T5939] usb 3-1: Using ep0 maxpacket: 32
[ 1445.975282][ T5939] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[ 1445.990274][ T5939] usb 3-1: config 0 has no interface number 0
[ 1446.075265][ T5939] usb 3-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=93.d8
[ 1446.085322][ T5939] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1446.099649][ T5939] usb 3-1: Product: syz
[ 1446.165715][T24179] syz_tun (unregistering): left promiscuous mode
[ 1446.186733][ T5939] usb 3-1: Manufacturer: syz
[ 1446.222909][T24179] bridge0: port 3(syz_tun) entered disabled state
[ 1446.255392][ T5939] usb 3-1: SerialNumber: syz
[ 1446.327096][T24793] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5017'.
[ 1446.400923][T23311] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[ 1446.501012][ T5939] usb 3-1: config 0 descriptor??
[ 1446.613844][T23311] usb 10-1: Using ep0 maxpacket: 8
[ 1446.659703][T23311] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1446.677682][T24794] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1446.692148][T23311] usb 10-1: config 0 has no interfaces?
[ 1446.703277][ T5939] usb 3-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[ 1446.735186][T23311] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1446.783645][T23311] usb 10-1: config 0 has no interfaces?
[ 1446.794522][ T5939] usb 3-1: selecting invalid altsetting 1
[ 1446.816552][T23311] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1446.860119][ T5939] usb 3-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[ 1446.878495][T23311] usb 10-1: config 0 has no interfaces?
[ 1446.930359][T23311] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1447.001653][T23311] usb 10-1: config 0 has no interfaces?
[ 1447.003693][ T5939] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1447.031074][T23311] usb 10-1: New USB device found, idVendor=046d, idProduct=08b3, bcdDevice=6d.2a
[ 1447.082139][T23311] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1447.129773][T23311] usb 10-1: config 0 descriptor??
[ 1447.205418][ T5939] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[ 1447.219055][ T5939] usb 3-1: media controller created
[ 1447.298265][ T5939] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1447.784955][T23311] usb 9-1: new high-speed USB device number 52 using dummy_hcd
[ 1448.027978][T23311] usb 9-1: Using ep0 maxpacket: 8
[ 1448.329942][T23311] usb 9-1: config 179 has an invalid interface number: 65 but max is 0
[ 1448.382606][T23311] usb 9-1: config 179 has no interface number 0
[ 1448.402016][T23311] usb 9-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[ 1448.447486][T23311] usb 9-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[ 1448.504573][T23311] usb 9-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1448.550161][T23311] usb 9-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1448.607775][T23311] usb 9-1: config 179 interface 65 has no altsetting 0
[ 1448.639204][T23311] usb 9-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[ 1448.689646][T23311] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1448.721026][ T5939] usb 3-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[ 1449.032823][T24810] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5020'.
[ 1449.291085][ T5939] usb 3-1: USB disconnect, device number 43
[ 1449.600664][T24819] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1449.634050][T23316] usb 4-1: new high-speed USB device number 62 using dummy_hcd
[ 1449.824687][T23316] usb 4-1: Using ep0 maxpacket: 16
[ 1449.861973][T23316] usb 4-1: config 0 has no interfaces?
[ 1449.889161][T23316] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1449.942283][T23316] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1450.010332][T23316] usb 4-1: Manufacturer: syz
[ 1450.057802][T23316] usb 4-1: config 0 descriptor??
[ 1450.124388][ T5939] usb 3-1: new low-speed USB device number 44 using dummy_hcd
[ 1450.307107][ T5939] usb 3-1: config 168 has an invalid descriptor of length 0, skipping remainder of the config
[ 1450.398439][T23316] usb 10-1: USB disconnect, device number 10
[ 1450.445738][ T5939] usb 3-1: config 168 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1450.586210][ T5939] usb 3-1: config 168 has an invalid descriptor of length 0, skipping remainder of the config
[ 1450.647643][T24823] 
[ 1450.650117][T24823] =====================================================
[ 1450.657160][T24823] WARNING: SOFTIRQ-safe -> SOFTIRQ-unsafe lock order detected
[ 1450.664736][T24823] syzkaller #0 Tainted: G             L     
[ 1450.670836][T24823] -----------------------------------------------------
[ 1450.677870][T24823] syz.9.5023/24823 [HC0[0]:SC0[0]:HE0:SE1] is trying to acquire:
[ 1450.685613][T24823] ffff88807d00a440 (&tty->flow.lock){....}-{3:3}, at: stop_tty+0x2f/0x140
[ 1450.694350][T24823] 
[ 1450.694350][T24823] and this task is already holding:
[ 1450.701825][T24823] ffffffff8f208f78 (kbd_event_lock){..-.}-{3:3}, at: kbd_event+0xd6/0x4080
[ 1450.710479][T24823] which would create a new lock dependency:
[ 1450.716472][T24823]  (kbd_event_lock){..-.}-{3:3} -> (&tty->flow.lock){....}-{3:3}
[ 1450.724441][T24823] 
[ 1450.724441][T24823] but this new dependency connects a SOFTIRQ-irq-safe lock:
[ 1450.733906][T24823]  (kbd_event_lock){..-.}-{3:3}
[ 1450.733941][T24823] 
[ 1450.733941][T24823] ... which became SOFTIRQ-irq-safe at:
[ 1450.746732][T24823]   lock_acquire+0x106/0x350
[ 1450.751374][T24823]   _raw_spin_lock+0x2e/0x40
[ 1450.756000][T24823]   kbd_event+0xd6/0x4080
[ 1450.760473][T24823]   input_handle_events_default+0xd4/0x1a0
[ 1450.766313][T24823]   input_pass_values+0x288/0x890
[ 1450.771451][T24823]   input_event_dispose+0x330/0x6b0
[ 1450.776705][T24823]   input_event+0x84/0xc0
[ 1450.781162][T24823]   imon_incoming_packet+0x1ccf/0x31c0
[ 1450.786838][T24823]   usb_rx_callback_intf0+0xba/0x210
[ 1450.792153][T24823]   __usb_hcd_giveback_urb+0x376/0x540
[ 1450.797819][T24823]   dummy_timer+0xbc0/0x4650
[ 1450.802611][T24823]   __hrtimer_run_queues+0x3c0/0xa20
[ 1450.808798][T24823]   hrtimer_run_softirq+0x17a/0x240
[ 1450.814195][T24823]   handle_softirqs+0x22a/0x840
[ 1450.819329][T24823]   __irq_exit_rcu+0xca/0x220
[ 1450.824034][T24823]   irq_exit_rcu+0x9/0x30
[ 1450.828464][T24823]   sysvec_apic_timer_interrupt+0xa6/0xc0
[ 1450.834385][T24823]   asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1450.840652][T24823]   lock_acquire+0x221/0x350
[ 1450.845267][T24823]   page_table_check_clear+0x141/0x4f0
[ 1450.851524][T24823]   __zap_vma_range+0x3641/0x4b40
[ 1450.856641][T24823]   unmap_vmas+0x379/0x530
[ 1450.861136][T24823]   exit_mmap+0x280/0x9e0
[ 1450.865584][T24823]   __mmput+0x118/0x430
[ 1450.870133][T24823]   exit_mm+0x18e/0x250
[ 1450.874497][T24823]   do_exit+0x6a2/0x22c0
[ 1450.879020][T24823]   do_group_exit+0x21b/0x2d0
[ 1450.883781][T24823]   __x64_sys_exit_group+0x3f/0x40
[ 1450.889751][T24823]   x64_sys_call+0x221a/0x2240
[ 1450.894724][T24823]   do_syscall_64+0x15f/0xf80
[ 1450.899604][T24823]   entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1450.905645][T24823] 
[ 1450.905645][T24823] to a SOFTIRQ-irq-unsafe lock:
[ 1450.913120][T24823]  (tasklist_lock){.+.+}-{3:3}
[ 1450.913151][T24823] 
[ 1450.913151][T24823] ... which became SOFTIRQ-irq-unsafe at:
[ 1450.926142][T24823] ...
[ 1450.926152][T24823]   lock_acquire+0x106/0x350
[ 1450.933682][T24823]   _raw_read_lock+0x36/0x50
[ 1450.938273][T24823]   __do_wait+0xde/0x740
[ 1450.942644][T24823]   do_wait+0x1e7/0x510
[ 1450.947428][T24823]   kernel_wait+0xd6/0x1c0
[ 1450.952216][T24823]   call_usermodehelper_exec_work+0xbe/0x230
[ 1450.958205][T24823]   process_scheduled_works+0xb5d/0x1860
[ 1450.963947][T24823]   worker_thread+0xa53/0xfc0
[ 1450.968803][T24823]   kthread+0x388/0x470
[ 1450.973045][T24823]   ret_from_fork+0x514/0xb70
[ 1450.977742][T24823]   ret_from_fork_asm+0x1a/0x30
[ 1450.982949][T24823] 
[ 1450.982949][T24823] other info that might help us debug this:
[ 1450.982949][T24823] 
[ 1450.993450][T24823] Chain exists of:
[ 1450.993450][T24823]   kbd_event_lock --> &tty->flow.lock --> tasklist_lock
[ 1450.993450][T24823] 
[ 1451.006333][T24823]  Possible interrupt unsafe locking scenario:
[ 1451.006333][T24823] 
[ 1451.014772][T24823]        CPU0                    CPU1
[ 1451.020136][T24823]        ----                    ----
[ 1451.025604][T24823]   lock(tasklist_lock);
[ 1451.029966][T24823]                                local_irq_disable();
[ 1451.036740][T24823]                                lock(kbd_event_lock);
[ 1451.043588][T24823]                                lock(&tty->flow.lock);
[ 1451.050656][T24823]   <Interrupt>
[ 1451.054103][T24823]     lock(kbd_event_lock);
[ 1451.058704][T24823] 
[ 1451.058704][T24823]  *** DEADLOCK ***
[ 1451.058704][T24823] 
[ 1451.067100][T24823] 5 locks held by syz.9.5023/24823:
[ 1451.072378][T24823]  #0: ffff88802c322110 (&evdev->mutex){+.+.}-{4:4}, at: evdev_write+0x1ae/0x4c0
[ 1451.081813][T24823]  #1: ffff88802c0e1230 (&dev->event_lock#2){..-.}-{3:3}, at: input_inject_event+0xa4/0x330
[ 1451.092192][T24823]  #2: ffffffff8e95cce0 (rcu_read_lock){....}-{1:3}, at: input_inject_event+0xb5/0x330
[ 1451.102073][T24823]  #3: ffffffff8e95cce0 (rcu_read_lock){....}-{1:3}, at: input_pass_values+0x8d/0x890
[ 1451.112251][T24823]  #4: ffffffff8f208f78 (kbd_event_lock){..-.}-{3:3}, at: kbd_event+0xd6/0x4080
[ 1451.121472][T24823] 
[ 1451.121472][T24823] the dependencies between SOFTIRQ-irq-safe lock and the holding lock:
[ 1451.132107][T24823] -> (kbd_event_lock){..-.}-{3:3} {
[ 1451.137432][T24823]    IN-SOFTIRQ-W at:
[ 1451.141597][T24823]                     lock_acquire+0x106/0x350
[ 1451.148058][T24823]                     _raw_spin_lock+0x2e/0x40
[ 1451.154326][T24823]                     kbd_event+0xd6/0x4080
[ 1451.160403][T24823]                     input_handle_events_default+0xd4/0x1a0
[ 1451.168639][T24823]                     input_pass_values+0x288/0x890
[ 1451.175226][T24823]                     input_event_dispose+0x330/0x6b0
[ 1451.182006][T24823]                     input_event+0x84/0xc0
[ 1451.187936][T24823]                     imon_incoming_packet+0x1ccf/0x31c0
[ 1451.194980][T24823]                     usb_rx_callback_intf0+0xba/0x210
[ 1451.201841][T24823]                     __usb_hcd_giveback_urb+0x376/0x540
[ 1451.209061][T24823]                     dummy_timer+0xbc0/0x4650
[ 1451.215499][T24823]                     __hrtimer_run_queues+0x3c0/0xa20
[ 1451.222904][T24823]                     hrtimer_run_softirq+0x17a/0x240
[ 1451.229680][T24823]                     handle_softirqs+0x22a/0x840
[ 1451.236109][T24823]                     __irq_exit_rcu+0xca/0x220
[ 1451.242371][T24823]                     irq_exit_rcu+0x9/0x30
[ 1451.248826][T24823]                     sysvec_apic_timer_interrupt+0xa6/0xc0
[ 1451.256225][T24823]                     asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1451.264470][T24823]                     lock_acquire+0x221/0x350
[ 1451.270796][T24823]                     page_table_check_clear+0x141/0x4f0
[ 1451.277903][T24823]                     __zap_vma_range+0x3641/0x4b40
[ 1451.284662][T24823]                     unmap_vmas+0x379/0x530
[ 1451.290643][T24823]                     exit_mmap+0x280/0x9e0
[ 1451.296554][T24823]                     __mmput+0x118/0x430
[ 1451.302473][T24823]                     exit_mm+0x18e/0x250
[ 1451.308285][T24823]                     do_exit+0x6a2/0x22c0
[ 1451.314181][T24823]                     do_group_exit+0x21b/0x2d0
[ 1451.320503][T24823]                     __x64_sys_exit_group+0x3f/0x40
[ 1451.327376][T24823]                     x64_sys_call+0x221a/0x2240
[ 1451.333984][T24823]                     do_syscall_64+0x15f/0xf80
[ 1451.340339][T24823]                     entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1451.348075][T24823]    INITIAL USE at:
[ 1451.352103][T24823]                    lock_acquire+0x106/0x350
[ 1451.358673][T24823]                    _raw_spin_lock_irqsave+0x40/0x60
[ 1451.365540][T24823]                    vt_reset_unicode+0x2b/0x160
[ 1451.372050][T24823]                    reset_vc+0x68/0x1b0
[ 1451.377872][T24823]                    vc_init+0x70/0x4a0
[ 1451.383469][T24823]                    con_init+0x377/0x6a0
[ 1451.389271][T24823]                    console_init+0x10b/0x4a0
[ 1451.395352][T24823]                    start_kernel+0x230/0x3e0
[ 1451.401754][T24823]                    x86_64_start_reservations+0x24/0x30
[ 1451.408805][T24823]                    x86_64_start_kernel+0x143/0x1c0
[ 1451.415505][T24823]                    common_startup_64+0x13e/0x147
[ 1451.422282][T24823]  }
[ 1451.424866][T24823]  ... key      at: [<ffffffff8f208f78>] kbd_event_lock+0x18/0xa0
[ 1451.433057][T24823] 
[ 1451.433057][T24823] the dependencies between the lock to be acquired
[ 1451.433070][T24823]  and SOFTIRQ-irq-unsafe lock:
[ 1451.447049][T24823]    -> (tasklist_lock){.+.+}-{3:3} {
[ 1451.453332][T24823]       HARDIRQ-ON-R at:
[ 1451.457660][T24823]                           lock_acquire+0x106/0x350
[ 1451.464522][T24823]                           _raw_read_lock+0x36/0x50
[ 1451.471383][T24823]                           __do_wait+0xde/0x740
[ 1451.477826][T24823]                           do_wait+0x1e7/0x510
[ 1451.484250][T24823]                           kernel_wait+0xd6/0x1c0
[ 1451.490888][T24823]                           call_usermodehelper_exec_work+0xbe/0x230
[ 1451.499143][T24823]                           process_scheduled_works+0xb5d/0x1860
[ 1451.507250][T24823]                           worker_thread+0xa53/0xfc0
[ 1451.514229][T24823]                           kthread+0x388/0x470
[ 1451.520812][T24823]                           ret_from_fork+0x514/0xb70
[ 1451.527805][T24823]                           ret_from_fork_asm+0x1a/0x30
[ 1451.534916][T24823]       SOFTIRQ-ON-R at:
[ 1451.539242][T24823]                           lock_acquire+0x106/0x350
[ 1451.545928][T24823]                           _raw_read_lock+0x36/0x50
[ 1451.552794][T24823]                           __do_wait+0xde/0x740
[ 1451.559378][T24823]                           do_wait+0x1e7/0x510
[ 1451.565890][T24823]                           kernel_wait+0xd6/0x1c0
[ 1451.572507][T24823]                           call_usermodehelper_exec_work+0xbe/0x230
[ 1451.581467][T24823]                           process_scheduled_works+0xb5d/0x1860
[ 1451.589211][T24823]                           worker_thread+0xa53/0xfc0
[ 1451.596084][T24823]                           kthread+0x388/0x470
[ 1451.602778][T24823]                           ret_from_fork+0x514/0xb70
[ 1451.609800][T24823]                           ret_from_fork_asm+0x1a/0x30
[ 1451.617090][T24823]       INITIAL USE at:
[ 1451.621433][T24823]                          lock_acquire+0x106/0x350
[ 1451.628116][T24823]                          _raw_write_lock_irq+0x3d/0x50
[ 1451.635329][T24823]                          copy_process+0x2b5e/0x4450
[ 1451.642203][T24823]                          kernel_clone+0x284/0x8f0
[ 1451.648822][T24823]                          user_mode_thread+0x110/0x180
[ 1451.656456][T24823]                          rest_init+0x23/0x300
[ 1451.662864][T24823]                          start_kernel+0x38a/0x3e0
[ 1451.669446][T24823]                          x86_64_start_reservations+0x24/0x30
[ 1451.677091][T24823]                          x86_64_start_kernel+0x143/0x1c0
[ 1451.684666][T24823]                          common_startup_64+0x13e/0x147
[ 1451.691926][T24823]       INITIAL READ USE at:
[ 1451.696644][T24823]                               lock_acquire+0x106/0x350
[ 1451.703778][T24823]                               _raw_read_lock+0x36/0x50
[ 1451.711109][T24823]                               __do_wait+0xde/0x740
[ 1451.717894][T24823]                               do_wait+0x1e7/0x510
[ 1451.724779][T24823]                               kernel_wait+0xd6/0x1c0
[ 1451.731669][T24823]                               call_usermodehelper_exec_work+0xbe/0x230
[ 1451.740086][T24823]                               process_scheduled_works+0xb5d/0x1860
[ 1451.748435][T24823]                               worker_thread+0xa53/0xfc0
[ 1451.755726][T24823]                               kthread+0x388/0x470
[ 1451.762410][T24823]                               ret_from_fork+0x514/0xb70
[ 1451.769514][T24823]                               ret_from_fork_asm+0x1a/0x30
[ 1451.777329][T24823]     }
[ 1451.780098][T24823]     ... key      at: [<ffffffff8e60a058>] tasklist_lock+0x18/0x40
[ 1451.788180][T24823]     ... acquired at:
[ 1451.792336][T24823]    _raw_read_lock+0x36/0x50
[ 1451.797034][T24823]    send_sigurg+0x12b/0x420
[ 1451.801623][T24823]    sk_send_sigurg+0x6c/0x2e0
[ 1451.806387][T24823]    queue_oob+0x42c/0x4f0
[ 1451.810820][T24823]    unix_stream_sendmsg+0xcb1/0xe80
[ 1451.816122][T24823]    ____sys_sendmsg+0x972/0x9f0
[ 1451.821140][T24823]    ___sys_sendmsg+0x2a5/0x360
[ 1451.826179][T24823]    __x64_sys_sendmsg+0x1bd/0x2a0
[ 1451.831373][T24823]    do_syscall_64+0x15f/0xf80
[ 1451.836138][T24823]    entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1451.842301][T24823] 
[ 1451.844624][T24823]   -> (&f_owner->lock){....}-{3:3} {
[ 1451.850235][T24823]      INITIAL USE at:
[ 1451.854497][T24823]                        lock_acquire+0x106/0x350
[ 1451.861128][T24823]                        _raw_write_lock_irq+0x3d/0x50
[ 1451.868098][T24823]                        __f_setown+0x67/0x370
[ 1451.874439][T24823]                        tty_fasync+0x2db/0x350
[ 1451.880721][T24823]                        do_fcntl+0x1201/0x1a20
[ 1451.887064][T24823]                        __se_sys_fcntl+0xc8/0x150
[ 1451.893577][T24823]                        do_syscall_64+0x15f/0xf80
[ 1451.900075][T24823]                        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1451.908164][T24823]      INITIAL READ USE at:
[ 1451.912751][T24823]                             lock_acquire+0x106/0x350
[ 1451.919612][T24823]                             _raw_read_lock_irqsave+0x48/0x60
[ 1451.927353][T24823]                             send_sigio+0x38/0x370
[ 1451.934127][T24823]                             dnotify_handle_event+0x169/0x440
[ 1451.942126][T24823]                             fsnotify+0x168e/0x1ae0
[ 1451.949417][T24823]                             __fsnotify_parent+0x50d/0x620
[ 1451.957019][T24823]                             notify_change+0xc55/0xf40
[ 1451.964247][T24823]                             do_truncate+0x1c2/0x250
[ 1451.971021][T24823]                             vfs_truncate+0x4b4/0x540
[ 1451.977881][T24823]                             ksys_truncate+0xf3/0x1c0
[ 1451.984828][T24823]                             __x64_sys_truncate+0x5b/0x70
[ 1451.992145][T24823]                             do_syscall_64+0x15f/0xf80
[ 1451.999220][T24823]                             entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1452.007475][T24823]    }
[ 1452.010325][T24823]    ... key      at: [<ffffffff9a527840>] file_f_owner_allocate.__key+0x0/0x20
[ 1452.019762][T24823]    ... acquired at:
[ 1452.023776][T24823]    _raw_read_lock_irqsave+0x48/0x60
[ 1452.029295][T24823]    send_sigio+0x38/0x370
[ 1452.033728][T24823]    kill_fasync+0x24d/0x4d0
[ 1452.038431][T24823]    lease_break_callback+0x26/0x30
[ 1452.043903][T24823]    __break_lease+0x81c/0x1e00
[ 1452.048976][T24823]    vfs_truncate+0x449/0x540
[ 1452.054196][T24823]    ksys_truncate+0xf3/0x1c0
[ 1452.059164][T24823]    __x64_sys_truncate+0x5b/0x70
[ 1452.064506][T24823]    do_syscall_64+0x15f/0xf80
[ 1452.069559][T24823]    entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1452.075908][T24823] 
[ 1452.078328][T24823]  -> (&new->fa_lock){....}-{3:3} {
[ 1452.083541][T24823]     INITIAL USE at:
[ 1452.087654][T24823]                      lock_acquire+0x106/0x350
[ 1452.094025][T24823]                      _raw_write_lock_irq+0x3d/0x50
[ 1452.100827][T24823]                      fasync_remove_entry+0xf1/0x1c0
[ 1452.107875][T24823]                      __tty_hangup+0x26e/0x650
[ 1452.114296][T24823]                      tty_release+0x389/0x1710
[ 1452.120817][T24823]                      __fput+0x44f/0xa60
[ 1452.126784][T24823]                      task_work_run+0x1d9/0x270
[ 1452.133123][T24823]                      exit_to_user_mode_loop+0xed/0x480
[ 1452.140236][T24823]                      do_syscall_64+0x33e/0xf80
[ 1452.146729][T24823]                      entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1452.154376][T24823]     INITIAL READ USE at:
[ 1452.158792][T24823]                           lock_acquire+0x106/0x350
[ 1452.165476][T24823]                           _raw_read_lock_irqsave+0x48/0x60
[ 1452.173044][T24823]                           kill_fasync+0x199/0x4d0
[ 1452.179820][T24823]                           sock_wake_async+0x137/0x160
[ 1452.186848][T24823]                           af_alg_wmem_wakeup+0x3c0/0x440
[ 1452.194043][T24823]                           aead_recvmsg+0xfdb/0x1050
[ 1452.200887][T24823]                           sock_recvmsg+0x172/0x1b0
[ 1452.207564][T24823]                           sock_read_iter+0x251/0x320
[ 1452.214520][T24823]                           vfs_read+0x582/0xa70
[ 1452.221131][T24823]                           ksys_read+0x150/0x270
[ 1452.227639][T24823]                           do_syscall_64+0x15f/0xf80
[ 1452.234578][T24823]                           entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1452.242745][T24823]   }
[ 1452.245473][T24823]   ... key      at: [<ffffffff9a527860>] fasync_insert_entry.__key+0x0/0x20
[ 1452.254785][T24823]   ... acquired at:
[ 1452.258793][T24823]    _raw_read_lock_irqsave+0x48/0x60
[ 1452.264358][T24823]    kill_fasync+0x199/0x4d0
[ 1452.269076][T24823]    __start_tty+0x18c/0x220
[ 1452.273718][T24823]    start_tty+0x26/0x50
[ 1452.278592][T24823]    n_tty_set_termios+0xa7c/0x10a0
[ 1452.283807][T24823]    tty_set_termios+0xdb3/0x1800
[ 1452.289012][T24823]    set_termios+0x566/0x710
[ 1452.293688][T24823]    tty_mode_ioctl+0x4a6/0x7d0
[ 1452.298644][T24823]    tty_ioctl+0x9c5/0xde0
[ 1452.303070][T24823]    __se_sys_ioctl+0xfc/0x170
[ 1452.307843][T24823]    do_syscall_64+0x15f/0xf80
[ 1452.312632][T24823]    entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1452.318726][T24823] 
[ 1452.321073][T24823] -> (&tty->flow.lock){....}-{3:3} {
[ 1452.326561][T24823]    INITIAL USE at:
[ 1452.330485][T24823]                    lock_acquire+0x106/0x350
[ 1452.336755][T24823]                    _raw_spin_lock_irqsave+0x40/0x60
[ 1452.343627][T24823]                    start_tty+0x1b/0x50
[ 1452.349339][T24823]                    n_tty_set_termios+0xa7c/0x10a0
[ 1452.356119][T24823]                    tty_set_termios+0xdb3/0x1800
[ 1452.362808][T24823]                    set_termios+0x566/0x710
[ 1452.369098][T24823]                    tty_mode_ioctl+0x4a6/0x7d0
[ 1452.375429][T24823]                    tty_ioctl+0x9c5/0xde0
[ 1452.381590][T24823]                    __se_sys_ioctl+0xfc/0x170
[ 1452.387747][T24823]                    do_syscall_64+0x15f/0xf80
[ 1452.393988][T24823]                    entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1452.401440][T24823]  }
[ 1452.404107][T24823]  ... key      at: [<ffffffff9a807460>] alloc_tty_struct.__key.35+0x0/0x20
[ 1452.413005][T24823]  ... acquired at:
[ 1452.417010][T24823]    _raw_spin_lock_irqsave+0x40/0x60
[ 1452.423098][T24823]    stop_tty+0x2f/0x140
[ 1452.427352][T24823]    kbd_event+0x2e80/0x4080
[ 1452.432117][T24823]    input_handle_events_default+0xd4/0x1a0
[ 1452.438369][T24823]    input_pass_values+0x288/0x890
[ 1452.443712][T24823]    input_event_dispose+0x330/0x6b0
[ 1452.449213][T24823]    input_inject_event+0x1dc/0x330
[ 1452.454677][T24823]    evdev_write+0x325/0x4c0
[ 1452.459467][T24823]    vfs_write+0x29a/0xb90
[ 1452.463989][T24823]    ksys_write+0x150/0x270
[ 1452.468771][T24823]    do_syscall_64+0x15f/0xf80
[ 1452.473533][T24823]    entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1452.479623][T24823] 
[ 1452.481944][T24823] 
[ 1452.481944][T24823] stack backtrace:
[ 1452.488178][T24823] CPU: 0 UID: 0 PID: 24823 Comm: syz.9.5023 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1452.488199][T24823] Tainted: [L]=SOFTLOCKUP
[ 1452.488204][T24823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1452.488213][T24823] Call Trace:
[ 1452.488221][T24823]  <TASK>
[ 1452.488227][T24823]  dump_stack_lvl+0xe8/0x150
[ 1452.488249][T24823]  __lock_acquire+0x2a94/0x2cf0
[ 1452.488274][T24823]  ? stop_tty+0x2f/0x140
[ 1452.488301][T24823]  lock_acquire+0x106/0x350
[ 1452.488318][T24823]  ? stop_tty+0x2f/0x140
[ 1452.488338][T24823]  _raw_spin_lock_irqsave+0x40/0x60
[ 1452.488353][T24823]  ? stop_tty+0x2f/0x140
[ 1452.488369][T24823]  stop_tty+0x2f/0x140
[ 1452.488387][T24823]  kbd_event+0x2e80/0x4080
[ 1452.488399][T24823]  ? kernel_fpu_end+0x4f/0x80
[ 1452.488413][T24823]  ? blake2s_compress+0x1e17/0x1eb0
[ 1452.488426][T24823]  ? do_raw_spin_unlock+0xf5/0x210
[ 1452.488442][T24823]  ? __pfx_kbd_event+0x10/0x10
[ 1452.488455][T24823]  ? __lock_acquire+0x6b5/0x2cf0
[ 1452.488475][T24823]  ? __pfx_blake2s_compress+0x10/0x10
[ 1452.488486][T24823]  ? finish_task_switch+0x41f/0xbe0
[ 1452.488504][T24823]  ? __lock_acquire+0x6b5/0x2cf0
[ 1452.488522][T24823]  ? __lock_acquire+0x6b5/0x2cf0
[ 1452.488542][T24823]  ? __lock_acquire+0x6b5/0x2cf0
[ 1452.488561][T24823]  ? input_pass_values+0x8d/0x890
[ 1452.488573][T24823]  ? lock_acquire+0x106/0x350
[ 1452.488618][T24823]  ? input_pass_values+0x8d/0x890
[ 1452.488631][T24823]  input_handle_events_default+0xd4/0x1a0
[ 1452.488647][T24823]  ? input_pass_values+0x8d/0x890
[ 1452.488658][T24823]  input_pass_values+0x288/0x890
[ 1452.488671][T24823]  ? input_handle_event+0x70c/0xf30
[ 1452.488689][T24823]  input_event_dispose+0x330/0x6b0
[ 1452.488706][T24823]  input_inject_event+0x1dc/0x330
[ 1452.488723][T24823]  ? input_inject_event+0xb5/0x330
[ 1452.488740][T24823]  evdev_write+0x325/0x4c0
[ 1452.488754][T24823]  ? __lock_acquire+0x6b5/0x2cf0
[ 1452.488772][T24823]  ? __pfx_evdev_write+0x10/0x10
[ 1452.488785][T24823]  ? bpf_lsm_file_permission+0x9/0x20
[ 1452.488801][T24823]  ? security_file_permission+0x75/0x260
[ 1452.488815][T24823]  ? rw_verify_area+0x255/0x4d0
[ 1452.488828][T24823]  ? __pfx_evdev_write+0x10/0x10
[ 1452.488841][T24823]  vfs_write+0x29a/0xb90
[ 1452.488856][T24823]  ? __pfx_vfs_write+0x10/0x10
[ 1452.488869][T24823]  ? __fget_files+0x2a/0x420
[ 1452.488888][T24823]  ? __fget_files+0x2a/0x420
[ 1452.488905][T24823]  ? __fget_files+0x3a0/0x420
[ 1452.488922][T24823]  ? __fget_files+0x2a/0x420
[ 1452.488941][T24823]  ksys_write+0x150/0x270
[ 1452.488955][T24823]  ? __pfx_ksys_write+0x10/0x10
[ 1452.488969][T24823]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1452.488982][T24823]  do_syscall_64+0x15f/0xf80
[ 1452.488998][T24823]  ? clear_bhb_loop+0x40/0x90
[ 1452.489011][T24823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1452.489024][T24823] RIP: 0033:0x7f1e27d9c819
[ 1452.489037][T24823] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1452.489049][T24823] RSP: 002b:00007f1e28b8b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1452.489064][T24823] RAX: ffffffffffffffda RBX: 00007f1e28015fa0 RCX: 00007f1e27d9c819
[ 1452.489074][T24823] RDX: 0000000000002250 RSI: 0000200000000040 RDI: 0000000000000006
[ 1452.489083][T24823] RBP: 00007f1e27e32c91 R08: 0000000000000000 R09: 0000000000000000
[ 1452.489091][T24823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1452.489099][T24823] R13: 00007f1e28016038 R14: 00007f1e28015fa0 R15: 00007f1e2813fa48
[ 1452.489112][T24823]  </TASK>
[ 1452.940094][ T5939] usb 3-1: config 168 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1453.027263][T23603] usb 9-1: USB disconnect, device number 52
[ 1453.270209][T22820] bridge_slave_1: left allmulticast mode
[ 1453.295771][T22820] bridge_slave_1: left promiscuous mode
[ 1453.315297][T22820] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1453.358248][T22820] bridge_slave_0: left allmulticast mode
[ 1453.373910][T22820] bridge_slave_0: left promiscuous mode
[ 1453.381434][T22820] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1454.137339][T22820] bond2 (unregistering): (slave gretap1): Releasing active interface
[ 1454.289818][T22820] bond3 (unregistering): (slave gretap2): Releasing active interface
[ 1454.564426][T22820] bond1 (unregistering): (slave bridge1): Releasing active interface
[ 1454.650056][T22820] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1454.686441][T22820] bond0 (unregistering): Released all slaves
[ 1454.702701][T22820] bond1 (unregistering): Released all slaves
[ 1454.737200][T22820] bond2 (unregistering): Released all slaves
[ 1454.750781][T22820] bond3 (unregistering): Released all slaves
[ 1454.968827][ T5939] usb 3-1: unable to read config index 2 descriptor/start: -71
[ 1454.969306][ T5494] 8021q: adding VLAN 0 to HW filter on device eth11
[ 1454.978061][ T5939] usb 3-1: can't read configurations, error -71
[ 1454.999530][T22998] bridge0: port 3(syz_tun) entered disabled state
[ 1455.058959][T22998] syz_tun (unregistering): left allmulticast mode
[ 1455.065852][T22998] syz_tun (unregistering): left promiscuous mode
[ 1455.072538][T22998] bridge0: port 3(syz_tun) entered disabled state
[ 1455.083160][T22820] tipc: Left network mode
[ 1455.418765][T22820] hsr_slave_0: left promiscuous mode
[ 1455.444620][T22820] hsr_slave_1: left promiscuous mode
[ 1455.450816][T22820] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1455.462257][T22820] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1455.579954][T22820] team0 (unregistering): Port device team_slave_1 removed
[ 1455.615651][T22820] team0 (unregistering): Port device team_slave_0 removed
[ 1455.704810][ T5494] 8021q: adding VLAN 0 to HW filter on device eth12
[ 1455.761107][T24810] bridge0: port 3(syz_tun) entered disabled state
[ 1455.941239][T24810] syz_tun (unregistering): left allmulticast mode
[ 1455.975458][T24810] syz_tun (unregistering): left promiscuous mode
[ 1455.988281][T24810] bridge0: port 3(syz_tun) entered disabled state
[ 1456.065823][ T5494] 8021q: adding VLAN 0 to HW filter on device eth13
[ 1456.111166][T23311] usb 4-1: USB disconnect, device number 62
[ 1456.456001][T22820] IPVS: stop unused estimator thread 0...
[ 1456.598615][ T5494] 8021q: adding VLAN 0 to HW filter on device eth14
[ 1456.665988][T22820] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1456.742088][T22820] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1456.839010][T22820] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1456.969327][T22820] netdevsim netdevsim3  (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1457.389402][ T5494] 8021q: adding VLAN 0 to HW filter on device eth21
[ 1457.748942][ T5494] 8021q: adding VLAN 0 to HW filter on device eth22
[ 1457.773605][T22820] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1457.850603][T22820] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1457.889698][T22820] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1457.959040][T22820] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1458.061481][ T5494] 8021q: adding VLAN 0 to HW filter on device eth23
[ 1458.305917][ T5494] 8021q: adding VLAN 0 to HW filter on device eth24
[ 1458.548562][ T5494] 8021q: adding VLAN 0 to HW filter on device eth25
[ 1458.786490][ T5494] 8021q: adding VLAN 0 to HW filter on device eth26
[ 1459.025538][ T5494] 8021q: adding VLAN 0 to HW filter on device eth27
[ 1459.265175][T22820] bridge_slave_1: left allmulticast mode
[ 1459.271192][T22820] bridge_slave_1: left promiscuous mode
[ 1459.277717][T22820] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1459.290458][T22820] bridge_slave_0: left allmulticast mode
[ 1459.296493][T22820] bridge_slave_0: left promiscuous mode
[ 1459.302430][T22820] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1459.316759][T22820] bridge_slave_1: left allmulticast mode
[ 1459.322641][T22820] bridge_slave_1: left promiscuous mode
[ 1459.331097][T22820] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1459.340297][T22820] bridge_slave_0: left allmulticast mode
[ 1459.347029][T22820] bridge_slave_0: left promiscuous mode
[ 1459.352969][T22820] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1459.368779][T22820] bridge_slave_1: left allmulticast mode
[ 1459.374830][T22820] bridge_slave_1: left promiscuous mode
[ 1459.380577][T22820] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1459.389927][T22820] bridge_slave_0: left allmulticast mode
[ 1459.396118][T22820] bridge_slave_0: left promiscuous mode
[ 1459.402003][T22820] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1459.475243][T22820] bridge_slave_1: left allmulticast mode
[ 1459.481225][T22820] bridge_slave_1: left promiscuous mode
[ 1459.487213][T22820] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1459.496722][T22820] bridge_slave_0: left allmulticast mode
[ 1459.502554][T22820] bridge_slave_0: left promiscuous mode
[ 1459.508698][T22820] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1459.709827][T22820] bond1 (unregistering): (slave gretap1): Releasing active interface
[ 1459.887168][T22820] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1459.897297][T22820] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1459.907984][T22820] bond0 (unregistering): Released all slaves
[ 1459.918643][T22820] bond1 (unregistering): Released all slaves
[ 1460.040023][T22820] bond2 (unregistering): (slave geneve2): Releasing active interface
[ 1460.048499][T22820] geneve2 (unregistering): left promiscuous mode
[ 1460.055178][T22820] geneve2 (unregistering): left allmulticast mode
[ 1460.099439][T22820] bond1 (unregistering): (slave bridge1): Releasing backup interface
[ 1460.107808][T22820] bridge1 (unregistering): left promiscuous mode
[ 1460.265418][T22820] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1460.275459][T22820] bond0 (unregistering): (slave veth0_to_hsr): Releasing backup interface
[ 1460.286166][T22820] bond0 (unregistering): Released all slaves
[ 1460.296605][T22820] bond1 (unregistering): Released all slaves
[ 1460.306973][T22820] bond2 (unregistering): Released all slaves
[ 1460.444718][T22820] bond2 (unregistering): (slave gretap1): Releasing active interface
[ 1460.549298][T22820] bond2 (unregistering): (slave bridge2): Releasing active interface
[ 1460.597298][T22820] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1460.606595][T22820] bond_slave_0: left allmulticast mode
[ 1460.613176][T22820] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1460.623082][T22820] bond_slave_1: left allmulticast mode
[ 1460.629368][T22820] bond0 (unregistering): Released all slaves